On March 28, 2002, the campus networking technicians were forced to shut off all network traffic to nature after discovering an intruder had compromised the system. Nature was one of several machines on campus that were infiltrated through a "buffer overflow" vulnerability in one of Solaris' CDE services (dtsvcd). See details from CERT. While we had patched our system as soon as a fix was released in January, it seems probable now that we were infiltrated at some earlier time and secret backdoors onto our system were planted.
We changed all unix passwords. You can pick up your new unix password from you departmental computer support person, or drop by 42 Giannini and we'll get you going.
When you reconnect with secure shell you will find warnings popping up about "changed key". This is to be expected since we re-installed everything from scratch. You should find the way to delete the old ssh key. Also, we're now only running version 2 of ssh and no longer run the less secure version 1. If you need to upgrade your ssh to version 2, go to https://nature.berkeley.edu/ssh.
Watch this page for updates and pointers.