> Just noticed some clown logged into my mysql account and set up a cron
MySQL has a shell? Forgive my ignorance, as I am not a linux or unix
guru, but I would not suspect that you could actually log in as mysql
with a shell and fool around...