Overview rkhunter (Rootkit Hunter) is a Unix-based tool that scans for rootkits, backdoors and possible local exploits. It does this by comparing SHA-1 hashes of important files with known good ones in online database, searching for default directories (of rootkits), wrong permissions, hidden files, suspicious strings in kernel modules, and special tests for Linux and FreeBSD. Instructions 1. Log into your …Read More »
The Exim mail server has a lot of options/commands to find out the details of spammers easily from the command line. We can find out the mail queue details, spam mail sender details, spam mail counts etc from the link I mentioned above. Here is a script/piped-command to find out the spam mailing script’s location/folder in the server. It would …Read More »
In this time, we all are aware about the new Open SSL Heartbleed vulnerability. The Heartbleed bug allows anyone on the Internet to read the memory of the systems protected by the vulnerable versions of the OpenSSL software. You will get more details from this link Heartbleed. The open SSL version 1.0.1 version has vulnerabilities except 1.0.1g and other versions. Different communities …Read More »
Maldet also known as Linux Malware Detect virus scanner for Linux. Linux Malware Detect (LMD) is a malware scanner for Linux released under the GNU GPLv2 license, that is designed around the threats faced in shared hosted environments. It uses threat data from network edge intrusion detection systems to extract malware that is actively being used in attacks and generates …Read More »
ConfigServer Firewall : Error starting CSF /sbin/ifconfig (ifconfig binary location) -v does not exist!
Having such issue starting/stopping CSF on RHEL/CentOS 7? # csf -x *WARNING* URLGET set to use LWP but perl module is not installed, reverting to HTTP::Tiny You have an unresolved error when starting csf: Error: /sbin/ifconfig (ifconfig binary location) -v does not exist!, at line 2510 in /usr/sbin/csf You need to restart csf successfully to remove this warning, or delete …Read More »
CSF : It is the abbreviation of Config Server Security & Firewall. CSF is for configuring or managing your server firewall easily and simply. Here is some useful steps to Install , configure and uninstall csf on server with CentOS. Installation Process: SSH to your server and do the following steps as root user. Step 1: Downloading csf package. rm -fv …Read More »
Is there any log entries to find-out directly the total number of connections in server? In some high connection high load servers, this log would be helpful to monitor and tune the server with number of connections on it. We can simply sort out the total number of connections in a port by using the command netstat. There isn’t any …Read More »