11/5    When I checked my RH 6.0 Linux machine this morning I had the
        following message on all my xterms:
Message from syslogd@mymachine at Sat Nov  4 05:09:19 2000 ...
mymachine
        /var/log/messages had some stuff like
Nov  4 05:09:19 mymachine 173>Nov  4 05:09:19 rpc.statd[416]: gethostbyname err
or for ^^^^bffff75c 804985090909090687465676274736f6d616e797265206520726f722
0726f66
       followed by blank lines and repeated messages about not being
       able to glue message parts together.  I disabled most services
       like telnet, rlogin, ftp, etc. a long time ago, and I try and
       keep things secure.  Have I been hacked?  Is it time to reinstall?
       \_ Most likely, yes, and yes. What you probably don't realize is that not
          all services your machine provides are handled through inetd. Make sure
          you uninstall any packages with names in the following set: rpc, nfs,
          nfslock, *statd, *lockd, *usersd. Unless you *know* you want to run
          NFS/RPC-affiliated services on your machine, you should NOT have these
          installed -- they account for the majority of breakings on RedHat
          machines due to a ridiculous number of security holes.
          installed -- they account for the majority of break-ins on RedHat
          machines due to a ridiculous number of security holes.  -alexf