Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: securing a remote box
Special Forums Cybersecurity securing a remote box Post 20956 by thehoghunter on Wednesday 8th of May 2002 09:52:11 AM
Old 05-08-2002
First, you have already been hacked - whether it was from an inside source or outside. You need to build a new server (if possible) and replace the old keeping the old for investigation into who did what.

If you can't do that, then disconnect the server, rebuild it, shut off all services after rebuilding but add ssh to the server. Insure your version of Sendmail is set up to not allow relays. Make sure your group is the only one with root. Don't allow root remote logins. Put it back on-line.

Check out the following links:

To check if you are a open-relay:
Network Abuse Clearinghouse

If you are using Sendmail:
Sendmail


Solaris 7 may have the Sunscreen Lite product for free - use it and
read up on securing your Solaris server.


If you are running more than Sendmail on the server, remove the other apps and put them on their own box. The more a hacker has to use against you the worst off you are.
Search Sunsolve BigAdmin
thehoghunter
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Beginner: Securing a Unix box

Newbie in the Unix world here....trying to load Solaris 2.8 AGAIN, and trying to secure the box this time. Any suggestions anyone? Any tips? Appreciate your help, gurus! TIA, trigeek8888 (2 Replies)
Discussion started by: trigeek8888
2 Replies

2. UNIX for Dummies Questions & Answers

remote x session to a server box w/no IO

I am trying to connect to a unix server box and start an X session. It has kde and xfree86 installed. However, since it is just a server, sitting somehwere in another state probably on top of and below other servers, it has no mouse,keyboard,or monitor attached to it. When I try to startx, I... (2 Replies)
Discussion started by: SnakeO
2 Replies

3. Shell Programming and Scripting

issue a ping on a remote box

Hi there I am running a script on a central box (boxA) that will send a remote request to boxB to perform a ping test to an ip note: I am not pinging boxB from boxA but sending a request over ssh to get boxB to perform a ping test ! The thing is, I want the script back at boxA to know... (4 Replies)
Discussion started by: hcclnoodles
4 Replies

4. Shell Programming and Scripting

Pop up dialog box on remote computers

I need to send out messages to over 100 clients in my sector. I want it to pop up a dialog box letting them know to save work and log out. I have the reboot script created just need the warning please. Thanks (35 Replies)
Discussion started by: deaconf19
35 Replies

5. UNIX for Dummies Questions & Answers

Transferring files Permission issues in remote box

Hi, I have a directory 'data' which is a symbolic link to /var/opt/store/rawdata/appname on a remote box. I am not able to SFTP some files from my local box to this dir. in the remote box. Also I am not able to copy or move the files in the robot id home dir. in remote box to this data dir... (2 Replies)
Discussion started by: vharsha
2 Replies

6. Linux

Securing remote connections

Hi all, I have a couple of questions I've been searching on internet but I didn't find a suitable solution. The aim is that I'd like to access to my home Linux (an 8.04 Ubuntu) from outside. I already achieved with ssh, but I'd like to secure as much as I can. These are questions: The... (2 Replies)
Discussion started by: AlbertGM
2 Replies

7. Linux

How to find remote Linux box login account without login in to that box?

Hi, How to find remote Linux box login account without login in to that box? I don't have login account at my remote Linux box. But I need who are all having login account. How do I findout? Thanks, --Muthu. (3 Replies)
Discussion started by: Muthuselvan
3 Replies

8. Cybersecurity

securing AIX box

Guys, i want to securing AIX after install by scrath. Is anybody can inform about the standard port which used by AIX? (0 Replies)
Discussion started by: michlix
0 Replies

9. Shell Programming and Scripting

Establishing remote connection to a Xserver from a UNIX Box

Hello Guys , I have been working on a script where we are looking to connect a remote Xserver from a Unix box. Once a connection is made , i need to run several commands on remote machine to check various stuffs. As per my knowledge on unix (which is like a drop in ocean) , i found SSH as a... (7 Replies)
Discussion started by: himanshu sood
7 Replies

10. Shell Programming and Scripting

Notify when the script run(hourly)on my jump-box only when there is a failure on my remote-box

Team, Presently I have a script, which i have set up cron on one of my Jump-boxes,and gives me the output on every hourly basis,fetching the data from the remote machine.Basically it gives me the list of all active users logged and its count once we execute the script.Here the count is... (6 Replies)
Discussion started by: whizkidash
6 Replies

LEARN ABOUT BSD

rlogin

RLOGIN(1C)																RLOGIN(1C)

NAME

       rlogin - remote login

SYNOPSIS

       rlogin rhost [ -ec ] [ -8 ] [ -L ] [ -l username ]
       rhost [ -ec ] [ -8 ] [ -L ] [ -l username ]

DESCRIPTION

       Rlogin connects your terminal on the current local host system lhost to the remote host system rhost.

       Each  host  has	a  file /etc/hosts.equiv which contains a list of rhost's with which it shares account names.  (The host names must be the
       standard names as described in rsh(1C).)  When you rlogin as the same user on an equivalent host, you don't need to give a password.   Each
       user may also have a private equivalence list in a file .rhosts in his login directory.	Each line in this file should contain an rhost and
       a username separated by a space, giving additional cases where logins without passwords are to be permitted.  If the  originating  user	is
       not  equivalent	to  the  remote  user, then a login and password will be prompted for on the remote machine as in login(1).  To avoid some
       security problems, the .rhosts file must be owned by either the remote user or root.

       The remote terminal type is the same as your local terminal type (as given in your environment TERM variable).  The terminal or window size
       is  also copied to the remote system if the server supports the option, and changes in size are reflected as well.  All echoing takes place
       at the remote site, so that (except for delays) the rlogin is transparent.  Flow control via ^S and ^Q and flushing of input and output	on
       interrupts  are	handled  properly.   The  optional argument -8 allows an eight-bit input data path at all times; otherwise parity bits are
       stripped except when the remote side's stop and start characters are other than ^S/^Q.  The argument -L allows the rlogin session to be run
       in  litout  mode.   A  line  of the form ``~.'' disconnects from the remote host, where ``~'' is the escape character.  Similarly, the line
       ``~^Z'' (where ^Z, control-Z, is the suspend character) will suspend the rlogin session.  Substitution  of  the	delayed-suspend  character
       (normally  ^Y)  for  the  suspend character suspends the send portion of the rlogin, but allows output from the remote system.  A different
       escape character may be specified by the -e option.  There is no space separating this option flag and the argument character.

SEE ALSO

       rsh(1C)

FILES

       /usr/hosts/*	   for rhost version of the command

BUGS

       More of the environment should be propagated.

4.2 Berkeley Distribution					   May 12, 1986 							RLOGIN(1C)
All times are GMT -4. The time now is 09:20 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy