DaemonForums - View Single Post - Linux rootkits abuse SSH service

Thread: Linux rootkits abuse SSH service

View Single Post

#1 (View Single Post)

Old

27th February 2013

J65nko

J65nko is offline

Administrator

Join Date: May 2008

Location: Budel - the Netherlands

Posts: 4,131

Default

Linux rootkits abuse SSH service

From http://h-online.com/-1810569

Quote:

Security specialists at the Internet Storm Center have reported on a very special backdoor which is currently being found on compromised Linux servers where the attackers have manipulated a library in the SSH service. Apparently, mainly RPM-based systems are affected, but how the attackers get into the server is not yet known.

__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump

Reply With Quote