Full Disclosure mailing list archives
Re: Betr.: RE: Automated ssh scanning
From: Blue Boar <BlueBoar () thievco com>
Date: Thu, 26 Aug 2004 18:49:01 -0700
VeNoMouS wrote:
LOL that file is infected with rst.b and you ran it?? hope it was inside a chroot() other wise time to replace every elf binary >:)
Who, me? No. I opened it with Notepad, as indicated in my mail.If you've been following the thread, you'll see the bit where it was run is a paste from an earlier note showing the history file. In this case, it was the original attacker/script that did so, I believe.
BB
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- RE: Betr.: RE: Automated ssh scanning Todd Towles (Aug 26)
- Re: Betr.: RE: Automated ssh scanning Blue Boar (Aug 26)
- Re: Betr.: RE: Automated ssh scanning VeNoMouS (Aug 26)
- Re: Betr.: RE: Automated ssh scanning Blue Boar (Aug 26)
- Re: Betr.: RE: Automated ssh scanning Henrik Persson (Aug 27)
- Re: Betr.: RE: Automated ssh scanning Henrik Persson (Aug 27)
- Re: Betr.: RE: Automated ssh scanning Andrew Farmer (Aug 27)
- Re: Betr.: RE: Automated ssh scanning Christian (Aug 27)
- Re: Betr.: RE: Automated ssh scanning VeNoMouS (Aug 26)
- Re: Betr.: RE: Automated ssh scanning Blue Boar (Aug 26)