Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
At last my server and networks is safe now and protected by a steel firewall, tons of thanks to "mjakob", who set it all up for me...
mjakob helped me by logining remotely and configured everything needed to put my whole network behinde a firewall..It was just beutifull and he did an excellent job.
Thanks again mjakob and I wish you all the good luck in your career.
A few other things you might want to think about too:
Do you really need Telnet open? I would recomend closing your telnet ports and just using SSH (Secure Shell) instead. Telnet is so open to attacks anyhow. Just having a telnet session open accross the internet is almost an invite to a hack!
Even though it looks like not much else was done to your system, they could have very well gotten user names and passwords and such. I would highly recomend having all the users change their passwors and of course change the root password!
Investigate ANY and ALL software you have loaded on your server systems. Many programs out there create many security holes. You need to find out what ports the software operates on -- check on message boards to find out if any of them have known holes and such. The web gui program you ran is just one instance. Keep an eye on all other software packages you may install and have installed. If you don't know much about a particular piece of software be sure to not install it until you do.
Good luck! Now you have seen how much security measures must be taken! A backup is also very important, but do you really want to be restoring a backup every other day?!? Do your backups too, but be sure and get that firewall installed and such!
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.