I'm not sure if anyone else here reads TechRepublic but I read an article recently that was very intriguing. Basically, what happened was a company hired a consultant to intentionally try to break into their network to report any potential security issues so they could be resolved. Not a bad idea for those that have the need. When this consultant took on the project, he found the network was already being hacked. So, he 'hacked the hacker' as the article is written and this article is well worth the read. This helps to show what basics should be conducted for keeping your network secure and also what you can do to resolve this type of situation should it occur on your network.

TechRepublic article (http://techrepublic.com.com/5100-6329-5055990.html)

you can download Nmap here
http://www.insecure.org/nmap/nmap_download.html

And run this against your server and wonder why you don't have http access anymore. This will trip bastille. We have had a handful of users who "didn't know what it did, but wondered if there server was secure". So don't run nmap unless you know what you are doing, and then ask first.

Chet