Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 23 Aug 2001 12:22:18 +0200 (CEST)
From:      Dan Larsson <dl@tyfon.net>
To:        titus manea <titus@edc.dnttm.ro>
Cc:        <freebsd-security@freebsd.org>
Subject:   Re: Compromised system.
Message-ID:  <20010823122027.P88176-100000@hq1.tyfon.net>
In-Reply-To: <20010823130909.A80836@unix.edc.dnttm.ro>

next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 23 Aug 2001, titus manea wrote:

| You may ls -F and then you will see ./ ../ .   /
| The attacker maybe did a mkdir ".   ";

An easy way to find out what exactly is in the directory one could use the
below perl one-liner:

% cd /suspiscious/directory
% perl -we '$d=".";opendir(D,$d);while($_=readdir(D)){print"($_) "}closedir(D);print"\n"'

|


Regards
+------
Dan Larsson                    DL1999-RIPE
Tyfon Svenska AB | Tel:   +46 8 550 120 21
GPG public key   | finger dl@hq1.tyfon.net


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010823122027.P88176-100000>