linux hacked...

classic Classic list List threaded Threaded
3 messages Options
Reply | Threaded
Open this post in threaded view
|

linux hacked...

lgcmn
hello, i am having serious issues w/Linux...ubuntu...and my boot sticks seem to be corrupted now as well - we were actually hacked and it seems that we are still being attacked...i'm not a professional, so have no way of proving, but i was running netstat and wireshark and i could see the hits and 1 ip addr in particular had many bad comments when researched...kept getting several hits from same (also firefox browser made calls to same ip) and a few others...also saw, when i had no browser open, link to our router, link to localhost on my machine, finally noticed that the bootsticks started off allowing me to create bootable drives, and now, the options aren't allowed...there are other things that have happened, but it just sounds a little off the deep end...bottom line is we need to get our pc back online...

so my question is, do you feel that openbsd will be negatively affected by any bad coding / scripts that have been installed on the machine as Linux seems to have been...

thank you for any insights...

Reply | Threaded
Open this post in threaded view
|

Re: linux hacked...

Raul Miller
You  haven't provided enough information to give a definitive answer.

Installing OpenBSD should get you up and working again. But you'll
need to study the documentation and learn how to pull information from
logs and generally be able to keep an eye on things if you want other
people to be able to help you.

Thanks,

--
Raul

On Wed, Aug 14, 2019 at 10:22 AM lgcmn <[hidden email]> wrote:
>
> hello, i am having serious issues w/Linux...ubuntu...and my boot sticks seem to be corrupted now as well - we were actually hacked and it seems that we are still being attacked...i'm not a professional, so have no way of proving, but i was running netstat and wireshark and i could see the hits and 1 ip addr in particular had many bad comments when researched...kept getting several hits from same (also firefox browser made calls to same ip) and a few others...also saw, when i had no browser open, link to our router, link to localhost on my machine, finally noticed that the bootsticks started off allowing me to create bootable drives, and now, the options aren't allowed...there are other things that have happened, but it just sounds a little off the deep end...bottom line is we need to get our pc back online...
>
> so my question is, do you feel that openbsd will be negatively affected by any bad coding / scripts that have been installed on the machine as Linux seems to have been...
>
> thank you for any insights...
>

Reply | Threaded
Open this post in threaded view
|

Re: linux hacked...

Ingo Schwarze
In reply to this post by lgcmn
Hi,

lgcmn wrote on Tue, Aug 13, 2019 at 11:05:01AM -0500:

> so my question is, do you feel that openbsd will be negatively
> affected by any bad coding / scripts that have been installed
> on the machine as Linux seems to have been...

If the exploitable bug that got your machine owned is contained in
third-party software and you run that third-party software on
OpenBSD, that third-party software may be just as exploitable on
OpenBSD as on Linux.  Or it might be harder to attack if any of the
exploit mitigation techniques that OpenBSD contains are relevant.
Without precise information what exactly got exploited, i don't
think that a more precise answer is possible.

In general, how hard it is to successfully attack a machine depends
more strongly on whether the machine is well-maintained or poorly
maintained and poorly configured, and on which third-party software
you have installed and are using, than on which operating system
you are using (of course, unless it is a known-bad operating system
like Microsoft Windows where there are very large numbers of
exploitable bugs in the first place and long delays before patches
are released to fix them).

You won't be surprised to hear that many people on this list hold
the opinion that properly maintaining an OpenBSD system is easier
and takes less time than doing the same with Linux, and that it is
likely harder to attack it if both are well-maintained.  But that
doesn't mean it is absolutely secure no matter what.  And it also
means that any system can only be secure when you know how to
properly maintain it; that also applies to OpenBSD.

Besides, such differences may not matter if you run sufficiently
bad third-party software on top of it.

Yours,
  Ingo