BLU Discuss list archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

possible hacking?

Subject: possible hacking?
From: kentborg at borg.org (Kent Borg)
Date: Wed, 25 Jan 2006 11:54:19 -0500
In-reply-to: <43D7A132.1060809@napc.com>; from gmongardi@napc.com on Wed, Jan 25, 2006 at 11:02:58AM -0500
References: <20060125131145.44A971838E0@olduvai.blu.org> <1892.192.168.2.251.1138196167.squirrel@envoy.ci.net> <20060125134940.GA3301@io.pong.be> <20060125100211.B29549@redline.comcast.net> <20060125105529.Q17353@borg.org> <43D7A132.1060809@napc.com>

On Wed, Jan 25, 2006 at 11:02:58AM -0500, Grant M. wrote:
> Kent Borg wrote:
> > On my basement server I have ssh on the regular port, but I use strong
> > passwords.
> 
> We had an issue where we were compromised because of a keylogger on a
> customer's server (we ssh'd into one of our servers from the client
> machine as root, and the password was logged).

I go to great lengths to never type my passwords except on
keyboards/computers I control.  Given that notebook computers can be
small and network connections are commonly available, this is
practical.

-kb, the Kent who is at work, logged into his basement server from his
own notebook.

P.S.  In a pinch it is pretty safe to boot from a Knoppix CD and
look for hardware keyboard loggers.

Follow-Ups:
- possible hacking?
  - From: blu at scrunch.net (Bob BLU)

References:
- possible hacking?
  - From: richb at pioneer.ci.net (Rich Braun)
- possible hacking?
  - From: ward at pong.be (Ward Vandewege)
- possible hacking?
  - From: jkinz at kinz.org (Jeff Kinz)
- possible hacking?
  - From: kentborg at borg.org (Kent Borg)
- possible hacking?
  - From: gmongardi at napc.com (Grant M.)

Prev by Date: possible hacking?
Next by Date: possible hacking?
Previous by thread: possible hacking?
Next by thread: possible hacking?
Index(es):
- Date
- Thread


BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Boston Linux & Unix / webmaster@blu.org