It's unclear from your post whether or not your server was compromised. There's a difference between being attacked (which happens all the time) and being compromised. The first is just a... [by TrevorH]
I have a server connected to the internet placed in a DMZ that was running ProFTPD. A couple of weeks ago there was a security threat uncovered that would grant access to external users through a buffer overflow.
a few days ago (June 19) a server that I manage has suffered an attack.
Analyzing the log I discovered that there were several attempts to access a web scanner called w00tw00t.at.ISC.SANS.DFind
I set the firewall to prevent further visits from this scanner.
The problem is that the server is compromised, however, in the sense that surely someone has gained access to the server and has damag
The Webmaster on my company website is trying to tell me (and my bosses) that I have compromised the site by using the same email password on the company site as I do on others - ie my bank etc . I know I should have different ones but I can't remember them all!
Is it right that I have compromised the company website? How did the website know it was the same password?