Originally Posted by Noway2
NO! DO NOT DO THIS!
Dayid, While I understand your advice to be well meaning, LQ Security does NOT advocate this approach. Please avoid making this suggestion!
Yeah, you're right. It'd be stupid to reinstall and secure a server after a security breach. It's much better to just try and rid the user and hope that they didn't leave anything behind... lol
You'll note that I never said to not have backups, to not investigate, to not "find the source" (which is encompassed in "secure server"), etc.