had an exploit on my server which was luckily cuaght in time, i saw whmxtra offers a search feature that searches through all filenames for dodgy names such as "paypal" or "ebay", however it seems to come with a load of features i don't think i need, i would just like the search feature.
so, is there a script out there that can do just that? or is there a way to do that via a command line in putty? i know i can search inside a file for a specific string
Or alternatively, if you are doing this once a day, enable the slocate (updatedb) run every midnight and use the command locate to search for the filenames you want. Search is much faster than find, but the files are cached until you update the slocate database.
hadn't thought of rounding it down to public_html, thanks.
i suppose for a deeper scan i would want to search file contents, in the case of a phishing site using files with different names, but i had one put on my server that used paypal in it's name, and through, albeit somewhat limited, research i saw in most phishing cases the filenames always have the target site in the name. What prompted me to search file names, apart from the hack into my server, was that i came across whmexpress, which does this search function
say if i were to search file contents, i would searching for the same key terms wouldn't i? "paypal" "ebay" etc etc?
Originally Posted by Scott.Mc
Technically wouldn't you want to search the files contents and not the name?