Differences

This shows you the differences between two versions of the page.

--- computing:security:detect_root_logins [2013/03/22 13:05]
gcooper created
+++ computing:security:detect_root_logins [2014/02/07 12:37] (current)
gcooper
@@ Line 1: / Line 1: @@
 ====== Root Login Detection ======
+http://web.archive.org/web/20080109214340/http://www.cert.org/tech_tips/intruder_detection_checklist.html
 ===== Linux =====
-You can use these commands to check your Linux server for root logins. You cannot trust these commands to definitively show that your server has not been cracked as careful crackers may manipulate the output shown.
+You can use these commands to check your Linux server for root logins. You cannot trust these commands to definitively show that your server has not been hacked or cracked as careful crackers may manipulate the output shown.
 ==== Check a Linux Server for Root Logins ====
@@ Line 42: / Line 44: @@
 whois domain.com
 </file>
+==== Linux Malware Detect ====
+http://www.limecanvas.com/installing-linux-malware-detect-centos-6-vps/
+http://www.tecmint.com/install-linux-malware-detect-lmd-in-rhel-centos-and-fedora/
+==== Root Kit Hunter ====
+http://daniel-farm.com/install-linux-rkhunter-rootkit-hunter-rhel-centos-fedora/
+http://www.tecmint.com/install-linux-rkhunter-rootkit-hunter-in-rhel-centos-and-fedora/
+http://hackingbuzz.com/hunt-rootkits-with-rootkit-hunter-tool/
+<file>
+yum install rkhunter
+rkhunter --update
+rkhunter --propupd
+rkhunter --help
+rkhunter --check
+</file>

Virtual Architects Support Wiki