View Single Post
Old 2nd January 2007, 19:32
falko falko is offline
Super Moderator
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,751 Times in 2,581 Posts

Originally Posted by lubod
Since both these seemingly false routes and entries in hosts.deny blocking some of the same addresses like appeared at the same time, is it likely it was hacked?
You should check that:

Originally Posted by lubod
and installed portsentry to guard against attempts at hacking
It's possible that these routes are created by Portsentry. Can you disable it and reboot the system (make sure Portsentry doesn't start automatically at boot time).

Originally Posted by lubod
Output of ls -la /etc/network/if-up.d
What's in each of the files?

Originally Posted by lubod
I guess in your next question is about /etc/network/interfaces, because there is no networking in /etc.
Yes, right.

What's in /etc/iptables.up.rules?
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!


nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote