Ask HN: SSHD Rootkit?
Curious if any of the security-minded folk here have heard or looked into this file mentioned in a discusison on webhostingtalk.com :
http://www.webhostingtalk.com/showthread.php?t=1235797
Archive(single page) view for quicker perusing: http://www.webhostingtalk.com/archive/index.php/t-1235797.html
I just submitted this and I guess the post was marked as dead because of the domain name?
1 comment
[ 3.4 ms ] story [ 13.5 ms ] threadAfter being burned in the past, I always install iptables and block incoming connections. Plus I only allow ssh access to certain ip addresses. This means that even in the worst case if a vulnerability lets a rootkit get installed, there isn't much they can do after that.