Hi I am not sure if I have found a bug or exploit or what I have found, but
here is an entry I found in my secure logs multiple times
Sep 9 17:00:44 www webmin[8685]: Non-existent login as a a 1 new 1234567890
root from fordf350.never-enuff.net
and I have also found a user root at notty logged in, I have disabled sshd for
now until i find out whats going on, could anyone please tell me if this is
a bug or exploit and if so, how to avoid it.
My System is Mandrake 10.1
2.6.8.1-12mdk-i586-up-1GB
OpenSSH_4.3p1, OpenSSL 0.9.7d 17 Mar 2004
Anything else that i can provide to help?
Thnx
Dickie Bradford
------------------------------------------------------------
(A)bort, (R)etry, (S)mack the @#$&*~ thing!
------------------------------------------------------------
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.5.485 / Virus Database: 269.13.13/998 - Release Date: 9/10/2007
8:48 AM
