lör 2007-02-24 klockan 08:28 +0100 skrev Henrik Nordstrom:
> To diagnose after you have made changes somehow stopping the abuse then
> checking all logs in detail is the only available, or maybe tcpdump
> looking for users still trying to access the service and from that
> derive how they gained access in the first place..
One educated guess: Maybe the port dansguardian is listening on is
accessible from the outside.
Regards
Henrik
This archive was generated by hypermail pre-2.1.9 : Thu Mar 01 2007 - 12:00:01 MST