well if you cant afford to have a down time you need to do few more
thing then what other gurus have said like below : -
1) set up logwatch to have full server log for any traffic
2) get CSF ( config server firewall ) and install as it s having
plugin for both Cpanel & Webmin
3) now root kits are scary specially if they have put some kernel root
kit so you need to monitor what all ports are opened and what kind of
traffic is going out again CSF is very good at that.
4) Disable FTP server at all
5) Allow only sftp connections
6) Disable the shell access to all of the users on server
7) Disable Sudo
8) Disable root access
9) change ssh port
10) get the latest kernel and install it from source and boot server
on that kernel until you do a reinstall
Regards
On 12/8/2010 3:57 PM, Sudhanwa Jogalekar wrote:
On Wed, Dec 8, 2010 at 3:17 PM, abhishek jain
<abhishek.netj...@gmail.com> wrote:
hi,
This is christmas / season time and clean install is not possible as there
will be downtime, i will have to wait for this until mid jan,
On Tue, Dec 7, 2010 at 10:11 PM, Ravi Kumar<ra2...@gmail.com> wrote:
Because we cannot remember the state of files, and cannot be 100% sure that
no rootkit or other exploits is left in some corner of server.
what is* root kit*? please clarify, may be i need to check my server
manually each suspected file,
Hmmm
If you are not aware of root kits and other similar things, better
reinstall the server RIGHT NOW. Even Christmas time will be too late.
A few hours of downtime for technical reasons is usually acceptable
for all(management and users).
-Sudhanwa
we can re-install the whole linux if we want.
This is not a compulsion, but an advice to have a clean install.
-=Ravi=-
thanks
abhishek
_______________________________________________
Ilugd mailing list
Ilugd@lists.linux-delhi.org
http://frodo.hserus.net/mailman/listinfo/ilugd
_______________________________________________
Ilugd mailing list
Ilugd@lists.linux-delhi.org
http://frodo.hserus.net/mailman/listinfo/ilugd
