Got hacked?

[Jim]

Carlos Macedo Gomes wrote:

SNIP

> Let me know if I can help out.

Thanks to you and everyone else for the advice.  I was curious as to 
what the hacker had done,  but ended up reinstalling.  Overnight I used 
my windows box to download the dvd iso file for Slackware 11.0 and used 
it to nuke the old installation.  Once that was done I took the config 
files from the old installation I had backed up and restored them.

Jon Hanson said:

> If you have a home network, consider plugging your DSL modem directly
> into one PC and using that as a firewall machine. Yes, you can also use
> it as a desktop if you need.

My DSL modem does NAT and port forwarding.  I removed port forwarding 
for port 22.

> Is there a compelling reason you need password authentication for ssh?
> It's very easy to generate public keys and use those. You can even keep
> one on a thumb drive to use if you have to. Then turn OFF password
> authentication (PasswordAuthentication no) in your sshd_config.

I tried to get this working on my windows box, but haven't been able to 
yet.  I changed sshd_config so that sshd listens only on the IP address 
of the nic that's connected only to the windows box.

Hopefully this will make things a bit more difficult for them.
-- 


"That income tax you know it's nothing more than legal robbery"
Sidney "Pa" Larkin