I have a friend (of a friend) who administering a dedicated RH server we contracted from an ISP. In the beginning I was given a user ID and password, but I never used it, I went through the administrator always.

A month or two later the administrator seems to have suffered an intrusion, and feels that it is me, principally because the intrusion comes from the same range of IP addresses I typically use (my ISP gives me a dynamic IP address) and that I have a password.

This is all I know. Is it reasonable to link my knowledge of the password and the IP together and accuse of intrusion? Does he have a point?

I've seen no fishy business on my own machines, so it's all highly odd. But what can I say in my defence? Can the IP evidence be called coincidence?

hi there

he must be having some logs wiht him and u might be haivng some on you machine
u can check both of them and see of they are not the same

first se what is the time of intrusion that he claims
then u can check whether u were online at that time from ur machine or u were on that machine

regards

If you didn't do it, tell him to fluck himself and not worry about it.
Without the proper logs (or the ability to READ the proper logs) he is just speculating. Ask him to prove it, or stfu about it.