Date: Wed, 12 Aug 1998 02:31:54 -0700 From: Gregory Sutter <gsutter@pobox.com> To: "sysadmin@mfn.org" <sysadmin@mfn.org>, "'freebsd-questions@freebsd.org'" <freebsd-questions@FreeBSD.ORG> Subject: Re: "Intruder Alert"??? Message-ID: <19980812023154.D10322@notabene.zer0.org> In-Reply-To: <01BDC59B.56235200@noc.mfn.org>; from sysadmin@mfn.org on Wed, Aug 12, 1998 at 02:45:40AM -0500 References: <01BDC59B.56235200@noc.mfn.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Aug 12, 1998 at 02:45:40AM -0500, sysadmin@mfn.org wrote: > While sniffing my network in the middle of the night, > trying to figure out what the $^&*^ is going on here > with the crazy NFS problems here, I got the following > on my telnet login (prefaced with a couple of beeps): > > measl@smaug$ su -l root > su: kerberos: not in root's ACL. > Password: > ccd /Security check: INTRUDER ALERT! > > Where does this *come from*? I've never seen nor > heard of it before, so I have no way of trying to > look at whatever triggered it (probably me, but > who knows?). BTW: all looks normal in terms > of who is on and where they are on (as well as what > they are doing). Ponder no more, you've been bitten by the fortune teller! Kinda shocks you at first, until you realize... _if_ you realize. :) edge gsutter /usr/share/games/fortune $cat fortunes | grep "Security check" Security check: INTRUDER ALERT! edge gsutter /usr/share/games/fortune $ Greg -- Gregory S. Sutter Bureaucrats cut red tape -- lengthwise. mailto:gsutter@pobox.com http://www.pobox.com/~gsutter/ PGP DSS public key 0x40AE3052 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19980812023154.D10322>