Thread: Hacked!!!
View Single Post
Old 2nd March 2010, 12:38
SamTzu SamTzu is offline
HowtoForge Supporter
Join Date: Apr 2007
Location: Helsinki
Posts: 438
Thanks: 34
Thanked 56 Times in 39 Posts
Send a message via Skype™ to SamTzu

to: Till

Agreed. I too suspect phpmyadmin. But so far I'm not good enough to find out for certain.

Here is the apt-get upgrade info from one of the hacked servers...
(As you can see phpmyadmin should be updated. It was last updated a few months ago.)

The following packages will be upgraded:
apache2 apache2-doc apache2-mpm-prefork apache2-suexec apache2-utils apache2.2-common base-files bind9-host
dhcp3-client dhcp3-common dnsutils dpkg dpkg-dev fam gzip libapache2-mod-php5 libbind9-40 libc6 libc6-dev
libcups2 libcupsimage2 libdbd-mysql-perl libdns45 libexpat1 libfam0 libgd2-xpm libglib2.0-0 libglib2.0-data
libgnutls26 libhtml-parser-perl libisc45 libisccc40 libisccfg40 libkrb53 libldap-2.4-2 libltdl3 libltdl3-dev
liblwres40 libmysqlclient15-dev libmysqlclient15off libpq5 libssl0.9.8 libthai-data libthai0 libtool
linux-libc-dev locales login mysql-client mysql-client-5.0 mysql-common mysql-server mysql-server-5.0 ntp
ntpdate openssl passwd php-pear php5 php5-cgi php5-cli php5-common php5-curl php5-gd php5-imap php5-mcrypt
php5-mysql phpmyadmin python2.5 python2.5-minimal spamassassin spamc tzdata
73 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
Need to get 96.0MB of archives.
After this operation, 131kB of additional disk space will be used.
Do you want to continue [Y/n]? n

Sami Mattila


Reply With Quote