Debian
 » 
Debian Security

dt_ssh5

View: New views
2 Messages — Rating Filter:   Alert me  

dt_ssh5

by Bernie Dolan-3 :: Rate this Message:

Reply to Author | View Threaded | Show Only this Message

Hi,
I recently became aware of the executable:
    dt_ssh5
in my /tmp subdirectory.

Seems this is a botnet that is trying brute force attacks from my server.  Has anybody else seen this?

Thanks for the prompt response.


-  
When a machine begins to run without human aid, it is time to scrap it -
whether it be a factory or a government.  ~Alexander Chase


Re: dt_ssh5

by Henri Salo-5 :: Rate this Message:

Reply to Author | View Threaded | Show Only this Message

On Wed, 04 Nov 2009 09:30:35 -0500
Bernie Dolan <bd3@...> wrote:

> Hi,
> I recently became aware of the executable:
>     dt_ssh5
> in my /tmp subdirectory.
>
> Seems this is a botnet that is trying brute force attacks from my
> server.  Has anybody else seen this?
>
> Thanks for the prompt response.
>
>
> -  
> When a machine begins to run without human aid, it is time to scrap
> it - whether it be a factory or a government.  ~Alexander Chase

Yes, for example grumpy bsd guy as you can see from:
<http://bsdly.blogspot.com/2009/10/third-time-uncharmed.html>. Could
you email me the file, thanks?

---
Henri Salo


--
To UNSUBSCRIBE, email to debian-security-REQUEST@...
with a subject of "unsubscribe". Trouble? Contact listmaster@...

Free embeddable forum powered by Nabble Forum Help