Do you run rkhunter? On 11/14/19 9:40 AM, Christopher Wensink wrote: > How do you know when a Linux system has been compromised? > > Every day I watch our systems with all the typical tools, ps, top, who, > I watch firewall / IPS logs, I have logwatch setup and mailing daily > summaries to me and I dive deeper into logs if something looks suspicious. > > What am I missing or not looking at that you security gurus are looking at? > > I subscribe to the centos and SANS newsletters, and I try to keep > current on all technology with credible sources of articles online and > with the Lynda library. > > What other sources of information do you use to stay current about the > latest threats and technology updates? > > I appreciate the feedback. > > Chris _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx https://lists.centos.org/mailman/listinfo/centos
Re: how to know when a system is compromised
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: how to know when a system is compromised
- From: SternData <subscribed-lists@xxxxxxxxxxxxx>
- Date: Thu, 14 Nov 2019 09:48:11 -0600
- In-reply-to: <7e629362-ab0e-b45e-7464-9698876bccd4@five-star-plastics.com>
- References: <7e629362-ab0e-b45e-7464-9698876bccd4@five-star-plastics.com>
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.2.0
- Follow-Ups:
- Re: how to know when a system is compromised
- From: Christopher Wensink
- Re: how to know when a system is compromised
- References:
- how to know when a system is compromised
- From: Christopher Wensink
- how to know when a system is compromised
- Prev by Date: how to know when a system is compromised
- Next by Date: Re: how to know when a system is compromised
- Previous by thread: how to know when a system is compromised
- Next by thread: Re: how to know when a system is compromised
- Index(es):
 |