It's unclear from your post whether or not your server was compromised. There's a difference between being attacked (which happens all the time) and being compromised. The first is just a... [by TrevorH]
I access the network through a connection which is most likely compromised by a MITM attack. I can't do much about it. What steps should I take to lessen the influence of this attack. I'm especially concerned about the attacker messing with repository links and compromising my system.
Three questions which I hope someone can help answer:
How do I know if my server is already compromised due to the Shellshock bug?
If it was compromised, is there a particular folder where I should look for malicious files?
How does a malicious file look like?
I have a server connected to the internet placed in a DMZ that was running ProFTPD. A couple of weeks ago there was a security threat uncovered that would grant access to external users through a buffer overflow.