Well, We got attacked at our company today, we have discovered that someone was using our web site to launch attacks at others causing some DNS's to ban our address. We have cleared out the rascal, and had to change our IP address. We have updated our DNS account and are awaiting the update to hit all the internet. Kids...sheesh !! DD
Hmmm...I was wondering why I got a pic of two nekkid chicks tounging each other when I cliked on the link to your bio...not that I'm complaining, or anything...
Could you guys try to access my companies web server? We need to see if DNS has updated. Click here Thanks, DD
still no dice...unfortunate. just curious, as a network security type of guy, what attack did they use?
They uploaded a Mirc file hidden on our directory and were not attacking us per se but using our address to launch attacks. They were getting in through our FTP site. We had an old FTP account that we left open as some stuff was needed by the General public....not anymore. What alerted us was that our access to various BBS servers was blocked, and we wondered why..took a look at our server and noticed a bunch of weird apps running and they were hidden. So we did a scan some tracing and discovered the guy in Denmark hacking in and using our bandwidth...we shut him down and changed our IP to another one to avoid the blocks that have been put in place. A very long day to say the least. DD
yall allowed upload rights to an (what i assume was) an anonymous ftp account? or did they manage to get past the deny write access rights? I ask at this point because of my open anonymous ftp account on my server. I havent checked it lately, but I imagine I need to just to make sure that no one has used a similar method on my ftp server.
Not to mention that the guy was storing stolen passwords on our server. We have tons of .wpl files that are passwords for Win 98 machines. We moved those and shut him down....hopefully he is done with our site...but we will be watching much closer now. Also we are switching to a more secure router...we have a linksys one but that is not sufficient anymore. Oh well. DD
Curses....8 hours....man, I will have a lot of mail bouncing than. Your mail won't bounce... The other server will try for about 2 days before returning it if it can't get a collection. It'll all slowly flow in.
