/etc/passwd getting corrupted

[handsonhosting]

There shouldn't have been ANY password changes etc, as there is only ONE accounton the machine and it's used strictly as a storage space for myself.
-- What do you store in there, you fishing gear? :D

Hehe.. very close actually It's a fishing video - actually a photo album type thing, oh, and one of the hands-on sites looks like it's on there. Thankfully the outage was limited to about 2 hours or so... just bothers me that a machine that gets little to no traffic keeps me up at night

Got some extra hardware sitting around here if you're interested:
http://www.handsondedicated.com/servers/forsale/

 

[Website Rob]

WHM 11.2.0 cPanel 11.11.0-R16983
CENTOS Enterprise 3.8 i686 - WHM X v3.1.0

WHM 10.8.0 cPanel 10.9.0-R10737
CentOS 4.5 i686 - WHM X v3.1.0

The above are example of what is being used on some of our Servers. Having made manually password changes, I have not experienced the problems mentioned.

Could be, as mentioned earlier, that the problem is with any build previous 16800 but I also have to wonder if 'mod_sec' is being used on the Servers with problems. And if it is, are Rules setup to prevent 'wget' and '=http' exploits?