I have discovered that a gamer has hacked into my web server through a backdoor left open by my predecessor. I have closed the door, but when I try to delete the folders left behind I receive "Access Denied", or when I try to take ownership I receive "Unable to Find File...". I have removed most of the files to obtain enough space to continue operations but would like to remove this threat entirely. Also for FYI the folders go thirty deep, and some have no names (or hidden names), some start with a " ~ ", or a" ; " or a " . ". I am really baffled, so if there is someone who may assist me or direct me as to where to look it would be greatly appreciated. Thank You, Gary Mlinek Sr. Network Analyst Madonna University (734) 432-5462
Have the Hacker install a new Kernel!? see at www.chkrootkit.org and check your system Am Montag, den 14.02.2005, 08:20 -0500 schrieb Mlinek, Gary:> I have discovered that a gamer has hacked into my web server through a > backdoor left open by my predecessor. I have closed the door, but when I > try to delete the folders left behind I receive "Access Denied", or when > I try to take ownership I receive "Unable to Find File...". I have > removed most of the files to obtain enough space to continue operations > but would like to remove this threat entirely. Also for FYI the folders > go thirty deep, and some have no names (or hidden names), some start > with a " ~ ", or a" ; " or a " . ". I am really baffled, so if there is > someone who may assist me or direct me as to where to look it would be > greatly appreciated. > > > > Thank You, > > Gary Mlinek > > Sr. Network Analyst > > Madonna University > > (734) 432-5462 > > >
I believe you mean "cracked". Please don't confuse "crackers" with "hackers". On Mon, 14 Feb 2005, Mlinek, Gary wrote:> Date: Mon, 14 Feb 2005 08:20:56 -0500 > From: "Mlinek, Gary" <gmlinek@madonna.edu> > To: samba@lists.samba.org > Subject: [Samba] Hackers on my Web server > > I have discovered that a gamer has hacked into my web server through a > backdoor left open by my predecessor. I have closed the door, but when I > try to delete the folders left behind I receive "Access Denied", or when > I try to take ownership I receive "Unable to Find File...". I have > removed most of the files to obtain enough space to continue operations > but would like to remove this threat entirely. Also for FYI the folders > go thirty deep, and some have no names (or hidden names), some start > with a " ~ ", or a" ; " or a " . ". I am really baffled, so if there is > someone who may assist me or direct me as to where to look it would be > greatly appreciated. > > > > Thank You, > > Gary Mlinek > > Sr. Network Analyst > > Madonna University > > (734) 432-5462 > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba >-- J. L. Blank, Systems Administrator, twu.net
> -----Original Message----- > From: JLB [mailto:jlb@twu.net]> I believe you mean "cracked". > Please don't confuse "crackers" with "hackers".I think you lost that debate a long time ago. From www.m-w.com: Main Entry: hack?er Pronunciation: 'ha-k&r Function: noun 1 : one that hacks 2 : a person who is inexperienced or unskilled at a particular activity <a tennis hacker> 3 : an expert at programming and solving problems with a computer 4 : a person who illegally gains access to and sometimes tampers with information in a computer system Main Entry: crack?er Pronunciation: 'kra-k&r Function: noun 1 chiefly dialect : a bragging liar : BOASTER 2 : something that makes a cracking or snapping noise: as a : FIRECRACKER b : the snapping end of a whiplash : SNAPPER c : a paper holder for a party favor that pops when the ends are pulled sharply 3 plural : NUTCRACKER 4 : a dry thin crispy baked bread product that may be leavened or unleavened 5 a usually disparaging : a poor usually Southern white b capitalized : a native or resident of Florida or Georgia -- used as a nickname 6 : the equipment in which cracking (as of petroleum) is carried out