 Home |
Capital PC User Group (CPCUG) |
Webmail (SSL) |
|
Events
Resources
Leadership Opportunities About CPCUG |
News From CPCUG's Internet Services Director (ISD)
On December 18th, someone logged into the Investment sig account, first initiated a password scan on the server, and then was able to gain access to the kernel and hack it. The result was a server crash. Because someone hacked the password file, and did administrative functions on the box, no files could be trusted on the drive, the OS needed to be built from the ground up, and all user files have to be scanned to make sure no trojan’s [sic] are put back on the server. Dial up and DSL connectivity was NOT affected at all. It remained in continual service. What we've completed with respect to the CPCUG.ORG server. 1. All user password files have been reset, and 95% of all users have had core email service restored. 2. We're in the process of having a 3rd party do an analysis of the complete drive, to make sure we don't have any trojans on the drive, they'll take off the unaffected files, put them on alternate media, and we'll restore from that media. The expected steps are as follows: 1. First restoral [sic] of old email. I expect that in the next day or two. 2. CPCUG Web site, hopefully by weeks end, absent any problems. 3. Listserv -- We've started this while waiting for the files to be scanned, and may have it done before #2. 4. User home directories. More information as we get it. Scott |
Member Benefits
|
Capital PC User Group, Inc. |