Computer Geeks

Computer Geeks

Geek Shop

Geek News

Geek Stuff

Science Geek

Computer Gaming

Linux Chat

Building Websites

Computer Forums

Computer Help Forum

Computer Hardware Forum

Computer Software Programs


Go Back   Computer Forums > Linux Chat
Reload this Page How do I check if someone attempted to hack my server or not?
FAQ Community Calendar Today's Posts Search

Linux Chat Linux geeks unite! Discuss anything related to the Linux operating system here.

Computer Geeks
» Active Discussions
Computer Geeks
No Threads to Display.
» Other Websites
- Software Publishing

- Server Hardening
Reply
 
Thread Tools Display Modes
  #1  
Old 03-31-2006, 02:36 AM
yetanotherfcw yetanotherfcw is offline
Member
GB Advanced User
  
Join Date: Mar 2006
Posts: 60
Default How do I check if someone attempted to hack my server or not?
I run RHE server, and let's say that I want to check to see if someone attempted to hack my server or not everyday. What do I need to do? What do I need to check?
Reply With Quote
  #2  
Old 04-03-2006, 04:35 AM
Soulwatcher's Avatar
Soulwatcher Soulwatcher is offline
Senior Member
GB GEEK
  
Join Date: Feb 2006
Posts: 309
Send a message via MSN to Soulwatcher
Default
yetanotherfcw sorry about getting back to you late on this one. Some how I over looked this post. The fist thing you would want to do is install RKHunter and CHKRootKIt. Another thing you want to do is check the bash history of root. And make sure theres nothing funny there. After you install RKHunter and CHKRootKIt run them and make sure nothing funny pops up. Also make sure you check over your daily LogWatch and look for anything funny.
Reply With Quote
  #3  
Old 04-03-2006, 04:42 AM
yetanotherfcw yetanotherfcw is offline
Member
GB Advanced User
  
Join Date: Mar 2006
Posts: 60
Default
How difficult is it to install RKHunter and CHKRootKIt? Also should I install both?

... and is LogWatch an application?
Reply With Quote
  #4  
Old 04-03-2006, 05:36 AM
Soulwatcher's Avatar
Soulwatcher Soulwatcher is offline
Senior Member
GB GEEK
  
Join Date: Feb 2006
Posts: 309
Send a message via MSN to Soulwatcher
Default
They are both easy to install, I would run both. Logwatch runs daily chech the root mail folder, I bet its full. Thats where logwatch reports every night.


http://www.eth0.us/rkhunter <------rkhunter install guide

http://www.webhostgear.com/25.html <----- chkrootkit install guide
Reply With Quote
  #5  
Old 05-07-2006, 08:40 AM
rmwebs rmwebs is offline
Member
GB Beginner
  
Join Date: May 2006
Posts: 30
Default
RKHunter is very easy to install... as is chkrootkit
__________________
Own A Forum? - WhichBB
Reply With Quote
Reply

« Previous Thread | Next Thread »

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Powered by vBadvanced CMPS v3.2.3
Computer Geeks Geek Shop Geek News Science Geek Computer Gaming Linux Chat Building Websites
Computer Forums Geek Stuff Computer Help Forum Computer Hardware Forum Computer Software Programs

All times are GMT -5. The time now is 03:32 PM.

Contact Us - Computer Geeks - Archive - Top

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
HTML Help provided by HTML Help Central.