I found this article on the internet. Source: [url=http://www.securelist.com/en/blog/625/The_Mystery_of_Duqu_Part_Six_The_Command_and_Control_servers]The Mystery of Duqu[/url].
Can anyone tell me how this was possible. And if it is still possible?
Thanks
The Mystery of Duqu CentOS 5xxx
The Mystery of Duqu CentOS 5xxx
This is discussed on the CentOS mailing list as well. Here is a [url=http://lists.centos.org/pipermail/centos/2011-November/120361.html]post[/url] by Johnny Hughes.
-
- Posts: 2
- Joined: 2011/12/03 15:44:07
Re: The Mystery of Duqu CentOS 5xxx
Still under investigation. No answer yet.
-
- Retired Moderator
- Posts: 18276
- Joined: 2006/12/13 20:15:34
- Location: Tidewater, Virginia, North America
- Contact:
Re: The Mystery of Duqu CentOS 5xxx
No solid answer, but apparently also no evidence of a fully patched current CentOS system with a solid root password and reasonable ssh security measures in place being compromised, as far as I can see.