[Centos] Think someone has got into my server...

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 

Are you running PortSentry? If you are, that may give you a false positive
on Port 465.  

-----Original Message-----
From: centos-bounces@xxxxxxxxxxx [mailto:centos-bounces@xxxxxxxxxxx] On
Behalf Of WipeOut
Sent: 11 January 2005 18:19
To: CentOS discussion and information list
Subject: [Centos] Think someone has got into my server...

I have just run chkrootkit on my server and have the following two
suspicious entries..

Searching for suspicious files and dirs, it may take a while...
/usr/lib/perl5/5.8.0/i386-linux-thread-multi/.packlist

and further down..

Checking `bindshell'... INFECTED (PORTS:  465)

Anyone have any advice for getting rid of it??

Later..


_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxxx
http://lists.caosity.org/mailman/listinfo/centos
[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux