TalkPHP - View Single Post

ioan1k · 08-07-2009, 03:38 PM

It's a bruteforce attack, they are running the attack from a server hosted on
http://www.rapidswitch.com/ ... contact them explain what has happened and give them the log information you have and I'm sure their they will disable this idiots server.

As for the attacks is this a hosted server or your own personal machine?

If it is your own machine you could just simple disable remote access to the shell if it is your own machine.

If it is a hosted server my recommendations are to disable access to the root login if it is not already done so until this is handled and update passwords for any users with access to any vulnerable areas.

08-07-2009, 03:38 PM	#5 (permalink)
ioan1k The Contributor Join Date: Mar 2009 Location: US Posts: 76 Thanks: 0	It's a bruteforce attack, they are running the attack from a server hosted on http://www.rapidswitch.com/ ... contact them explain what has happened and give them the log information you have and I'm sure their they will disable this idiots server. As for the attacks is this a hosted server or your own personal machine? If it is your own machine you could just simple disable remote access to the shell if it is your own machine. If it is a hosted server my recommendations are to disable access to the root login if it is not already done so until this is handled and update passwords for any users with access to any vulnerable areas. __________________ My Portfolio - Work - Need freelance Work? I've been developing 5 years now, and I learn something new everyday