[Chester LUG] worried - hacked?
Paul Williams
wilp4a at hotmail.co.uk
Wed May 21 16:36:54 UTC 2008
cheers.
> Date: Wed, 21 May 2008 17:35:41 +0100
> From: e-mail at mcrilly.co.uk
> To: chester at mailman.lug.org.uk
> Subject: Re: [Chester LUG] worried - hacked?
>
> Depends on your distro? Ubuntu, sudo apt-get remove chkrootkit
>
> On 5/21/08, Paul Williams <wilp4a at hotmail.co.uk> wrote:
> >
> > Thanks for the advice. got chkrootkit, getting rkhunter next.
> >
> > ran chkrootkit. no problems found. to uninstall it I use rm?
> >
> > folder downloaded to is:
> >
> > /home/imajica/Downloads/chkrootkit-0.48#
> >
> > a little advice on rm here would go a long way!
> >
> >
> > Date: Wed, 21 May 2008 16:12:46 +0100
> > From: e-mail at mcrilly.co.uk
> > To: chester at mailman.lug.org.uk
> > Subject: Re: [Chester LUG] worried - hacked?
> >
> > Debian/Ubuntu is a deb based system, not an RPM based system as I'm sure you
> > know. Try synaptic, aptitude and or apt-get (the man pages, that is)
> >
> >
> > On 5/21/08, David Holden <dh at iucr.org> wrote:
> > On Wednesday 21 May 2008, Bryn Salisbury wrote:
> >> Michael,
> >>
> >> 2008/5/21 Michael Crilly <e-mail at mcrilly.co.uk>:
> >
> >> > My bad, I was looking at the log wrong. I thought a process was being
> >> > executed by this 'Mark' but it was, in actual fact, crontab running the
> >> > process.
> >>
> >> Ah, you had me worried there for a second. :)
> >
> >>
> >> > Still, nothing wrong with running a chkrootkit and rkhunter every now
> >> > and
> >> > then. Don't forget to remove them after installing them so the binary's
> >> > themselves don't become infected.
> >
> >>
> >> I agree, no harm in running them every once in a while. Better safe than
> >> sorry.
> >>
> >> B
> >>
> >> _______________________________________________
> >> Chester mailing list
> >> Chester at mailman.lug.org.uk
> >
> >> https://mailman.lug.org.uk/mailman/listinfo/chester
> >
> > anyone know if debian/ubuntu has a similar command to "rpm -Va", i.e. verify
> > all packages.
> >
> >
> > Dave.
> >
> >
> > --
> > Dr. David Holden.
> >
> > See: <http://www.gnu.org/philosophy/no-word-attachments.html>
> > regarding Word or PowerPoint. GPG key available on request.
> >
> > -------------------------------------------------------------
> >
> > _______________________________________________
> > Chester mailing list
> > Chester at mailman.lug.org.uk
> >
> > https://mailman.lug.org.uk/mailman/listinfo/chester
> >
> >
> > --
> > M. T. Crilly
> > http://www.mcrilly.co.uk/
> >
> > _________________________________________________________________
> >
> > http://clk.atdmt.com/UKM/go/msnnkmgl0010000002ukm/direct/01/
>
> --
> Sent from Google Mail for mobile | mobile.google.com
>
> M. T. Crilly
> http://www.mcrilly.co.uk/
>
> _______________________________________________
> Chester mailing list
> Chester at mailman.lug.org.uk
> https://mailman.lug.org.uk/mailman/listinfo/chester
_________________________________________________________________
http://clk.atdmt.com/UKM/go/msnnkmgl0010000009ukm/direct/01/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.lug.org.uk/pipermail/chester/attachments/20080521/7809449b/attachment.html>
More information about the Chester
mailing list