Skip site navigation (1)Skip section navigation (2)
Date:      Sat, 23 Jun 2012 13:36:42 +0700
From:      Erich Dollansky <erichfreebsdlist@ovitrap.com>
To:        RetspaN Code <silent24_2007@yahoo.com>, freebsd-questions@freebsd.org
Subject:   Re: I have a problem to my server running under FreeBSD 8.1 p-1 release
Message-ID:  <201206231336.42768.erichfreebsdlist@ovitrap.com>
In-Reply-To: <1340432642.15254.YahooMailNeo@web190405.mail.sg3.yahoo.com>
References:  <1340379530.49640.YahooMailNeo@web190402.mail.sg3.yahoo.com> <201206231315.28209.erich@alogreentechnologies.com> <1340432642.15254.YahooMailNeo@web190405.mail.sg3.yahoo.com>

next in thread | previous in thread | raw e-mail | index | archive | help
Hi,

On Saturday 23 June 2012 13:24:02 RetspaN Code wrote:
> Hello,
> 
> Intruder already block, but my problem is the intruder before they get
> block they load their exploit file to my machine that cause of my machine
> /usr/src directory is set to read only i can't upload or put any file on
> that folder saying permission denied. How to repair some of my files are
> need to update. specially freebsd files. the user intruder can't login
> anymore to the machine thru terminal using root access coz direct root
> login access is disabled already. and ttys also set to IS or "insecure".
> So my problem now is this how to fix that issue? so that i can update my
> server machine to the latest. i want to upgrade my 8.1 to 9.0 it is
> possible without problem after updates?

chmod would be your friend.

But you still do not know what kind of software is now running outside of your 
control.

I would not even trust the compiler or even ls anymore on such a system.

erich



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201206231336.42768.erichfreebsdlist>