[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Possible hacked?!

Subject: Re: [cobalt-users] Possible hacked?!
From: Gerald Waugh <gwaugh@xxxxxxxxxxxxxxxxxxxxxxx>
Date: Sat Jun 7 12:29:01 2003
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

On Sat, 7 Jun 2003, Ren[ISO-8859-1] é Mølsted wrote:

> Hi everybody
> Does anybody know what this message covers:
>
> --SNIP--
> Jun  6 17:52:16 ns1 proftpd[8271]: 213.xxx.xxx.xxx
> (0xc3f9c758.banxr3.ras.tele.dk[195.249.199.88]) - FTP session opened.
> Jun  6 17:52:17 ns1 proftpd[8271]: 213.xxx.xxx.xxx
> (0xc3f9c758.banxr3.ras.tele.dk[195.249.199.88]) - ProFTPD terminating
> (signal 11)

signal 11 is kind of ODD!
Was it a legitimate user accessing ftp?
Do you get this error often?

> Jun  6 17:52:22 ns1 proftpd[8272]: AllowChmod is deprecated, and will not
> work consistantly, use <Limit SITE_CHMOD> instead.

Comment out the Chmod line in /etc/proftpd.conf

Gerald
--
http://frontstreetnetworks.com | http://store.raqware.com
  Front Street Networks LLC, 229 Front Street, Ste.#C
  New Haven, CT 06513-3203 | phone: +1-203-785-0699

Follow-Ups:
- Re: [cobalt-users] Possible hacked?!
  - From: Leslie Herps
- Re: [cobalt-users] Possible hacked?!
  - From: René Mølsted

References:
- [cobalt-users] Possible hacked?!
  - From: René Mølsted

Prev by Date: Re: [cobalt-users] Possible hacked?!
Next by Date: Re: [cobalt-users] Possible hacked?!
Previous by thread: Re: [cobalt-users] Possible hacked?!
Next by thread: Re: [cobalt-users] Possible hacked?!

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index