Annoying sysadmin discovery of the day
Someone managed to infect my backup dns server with the winnti trojan. Dunno how – I guess the version of sshd it’s running had the CVE-2018-10933 bug on it. Siiigh. So wipe the server clean and reinstall, maybe with a different version of Centos, and load up the (thankfully small) collection of configuration files I need to run the slave dns.
Maybe I’ll run dropbear instead of openssh this time.