Page 3 of 3 FirstFirst 123
Results 51 to 61 of 61
  1. #51

    ok...

    OK i did this...

    all of the code from the first page...
    but the blocking certain ip's form ssh.. didnt wanna go that far...

    BUT when it rebooted... i couldnt connect via ssh...

    could ping all day but i had to have the host disable iptables so i could get in...

    What can i show you to get some help...

  2. #52
    Its also a good idea to lock down the compilers:

    Disable Compilers:
    chmod 000 /usr/bin/*cc*

    Enable:
    chmod 700 /usr/bin/*cc*

    Hope that helps too!

  3. #53
    (2)use the below script to mail the sysadmin to when another user with uid 0 is created
    =========================================
    The below script will mail user when another user with uid 0 is added
    -------------------------script----------------------------------
    #!/bin/sh
    #
    # This script must be owned by root or at least setuid 0
    # It will scan the system and mail the root user when another user gains uid 0.

    for id in `awk 'FS=":" {if(($3 == 0 && $1 != "root" )) \
    print $1}' /etc/passwd`
    do

    echo 'ALERT Login ID' `echo ${id}` 'has uid 0 !!' `date "+Detected On Date :%D Time :%r"` | mail -s "ALERT: User `echo ${id}` has UID O" blessen@blessen.com

    done
    -----------------------------------------------------------------
    ========================================================
    What shall you call this file and where should it be stored

  4. #54
    Join Date
    Sep 2002
    Location
    Top Secret
    Posts
    14,135
    Originally posted by xathras
    What shall you call this file and where should it be stored
    What you call it isn't that important. Be creative though, as that will be most often looked for by hackers. Make it something that is checked every day, at minimum through cron.
    Tom Whiting, WHMCS Guru extraordinaire
    Linux problems? WHMCS Problems? Give me a shout
    Check out my WHMCS Addons

  5. #55
    Join Date
    Jun 2004
    Posts
    46
    I followed your tutorial, except for the DENYing SSH access (I never know what IP or DNS i'll be logging in from) proceded to reboot my server - and now it appears to be down permnantly, no access is able to get in from the ouside.. any ideas? it has been down for 20 minutes now...

  6. #56
    Join Date
    Sep 2002
    Location
    Top Secret
    Posts
    14,135
    This is something that I use on all servers I manage (I wouldn't recommend, or write something that I don't ) and I've never had it cause any problems except for the complaints about not being able to ping it.

    As far as why it is down and not returning, have the DC hook a console up to it, more information can always be obtained that way.
    Tom Whiting, WHMCS Guru extraordinaire
    Linux problems? WHMCS Problems? Give me a shout
    Check out my WHMCS Addons

  7. #57
    Join Date
    Mar 2003
    Location
    California USA
    Posts
    13,681
    It might be doing a FSCK/
    Steven Ciaburri | Industry's Best Server Management - Rack911.com
    Software Auditing - 400+ Vulnerabilities Found - Quote @ https://www.RACK911Labs.com
    Fully Managed Dedicated Servers (Las Vegas, New York City, & Amsterdam) (AS62710)
    FreeBSD & Linux Server Management, Security Auditing, Server Optimization, PCI Compliance

  8. #58
    Join Date
    Jun 2004
    Posts
    46
    well - I called the datacenter, they said the server was hung on a process - reboot, and it's running fine... cest la vie, hopefully that problem won't come up again.

  9. #59
    Join Date
    Feb 2003
    Location
    Potsdam, NY
    Posts
    648
    Gecko been screwing the TAU server? Too much lizard porn

  10. #60
    Join Date
    Jun 2004
    Posts
    46
    lol, no 2uantum, I don't really work at TAU anymore.. although I still keep my stash of lizard porn on there.

  11. #61
    Join Date
    Aug 2004
    Posts
    49
    Thankyou. All of these tips worked on my server without flaws.

Page 3 of 3 FirstFirst 123

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •