We're having this problem as well, also on RHEL4. Does anyone have an idea of how their machines were compromised initially? We don't want to open up the same vulnerability again. I've attached the three /bin/mount* files we found on the compromised machine. There were other similarly compromised binaries as well, such as touch, basename and cat.
-Tom
Moderator's note: I have just approved the attachment so it should now be available for downloading. Download it with caution! It is suspected of being malware. --- Perderabo
well, I'm completely stumped so I'm hopeful that someone here may have an answer...one of my development machines is running Solaris 8 and I've been trying to create a folder in /apps. it gives me this message:
mkdir: Failed to make directory "*******"; Operation not applicable
I've tried... (2 Replies)
when ever i trying to give df -k from user showing permisson denied for one directory named samba.if i trying to give from root user samba directory is opening.
shut@praveen#df -k
df: cannot statvfs /samba/tcgt_tendering: Permission denied
if i give from root user (df -k)
... (4 Replies)
first off let me introduce myself. My name is Eric and I am new to linux, I am taking an advanced linux administration class and we are tasked with creating a script to add new users that anyone can run, has to check for the existence of a directory. if the directory does not exist then it has... (12 Replies)
Hi All,
I am trying to uninstall jdk 1.5 from my Solaris 10 64 bit but some how was not successful.so tried to delete the folder of jdk from /usr but its throughing error as:
Unable to remove directory jdk: Read-only file system
Even I tried to create a dir in /usr but its not allowing me... (4 Replies)
unable to chnage the ownership as group does not exist
ls -ltr
drwxr-xr-x 2 1520291 remote 1024 Sep 25 2014 img
root@servername#chown content:remote img
chown: img: Not owner (1 Reply)
Hi all,
i have a folder, with tons of files containing as following,
on /my/folder/jobs/
some_name_2016-01-17-22-38-58_some name_0_0.zip.done
some_name_2016-01-17-22-40-30_some name_0_0.zip.done
some_name_2016-01-17-22-48-50_some name_0_0.zip.done
and these can be lots of similar files,... (6 Replies)
Hi All,
We have main directory called "head"
under this we have several sub directories and under these directories we have sub directories.
My requirement is I have to find the SQL files which are having the string "procedure" under "head" directory and sub directories as well.
And create... (14 Replies)
I am getting the below error when cd to a directory.
cd /u/Mont
/bin/ksh: cd: /u/Mont:
ls -ltrd /u/Mont
lrwxrwxrwx 1 user1 testuser 5 Dec 1 11:39 /u/Mont -> Mont
uname -a
SunOS mymac 5.11 11.2 sun4v sparc sun4v
Can you please resolve the error and explain why is it... (1 Reply)
I have a script, which is checking if file exists and move it to another directory
if
then
mkdir -p ${LOCL_FILES_DIR}/cool_${Today}/monthly
mv report_manual_alloc_rpt_A_I_ASSIGNMENT.${Today}*.csv ${LOCL_FILES_DIR}/cool_${Today}/monthly
... (9 Replies)
In the below I am trying to create a parent directory using the R_2019 line from f1 if what above it is not empty.
I then create sub-directories under each parent if there is a match between $2 of f1 and $2. Inside each sub-folder the matching paths in $3 and $4 in f2are printed. If there is no... (2 Replies)
Discussion started by: cmccabe
2 Replies
LEARN ABOUT CENTOS
ike.preshared
ike.preshared(4) File Formats ike.preshared(4)NAME
ike.preshared - pre-shared keys file for IKE
SYNOPSIS
/etc/inet/secret/ike.preshared
DESCRIPTION
The /etc/inet/secret/ike.preshared file contains secret keying material that two IKE instances can use to authenticate each other. Because
of the sensitive nature of this data, it is kept in the /etc/inet/secret directory, which is only accessible by root.
Pre-shared keys are delimited by open-curly-brace ({) and close-curly-brace (}) characters. There are five name-value pairs required inside
a pre-shared key:
Name Value Example
localidtype IP localidtype IP
remoteidtype IP remoteidtype IP
localid IP-address localid 10.1.1.2
remoteid IP-address remoteid 10.1.1.3
key hex-string 1234567890abcdef
Comment lines with # appearing in the first column are also legal.
Files in this format can also be used by the ikeadm(1M) command to load additional pre-shared keys into a running an in.iked(1M) process.
EXAMPLES
Example 1: A Sample ike.preshared File
The following is an example of an ike.preshared file:
#
# Two pre-shared keys between myself, 10.1.1.2, and two remote
# hosts. Note that names are not allowed for IP addresses.
#
# A decent hex string can be obtained by performing:
# od -x </dev/random | head
#
{
localidtype IP
localid 10.1.1.2
remoteidtype IP
remoteid 10.21.12.4
key 4b656265207761732068657265210c0a
}
{
localidtype IP
localid 10.1.1.2
remoteidtype IP
remoteid 10.9.1.25
key 536f20776572652042696c6c2c2052656e65652c20616e642043687269732e0a
}
SECURITY
If this file is compromised, all IPsec security associations derived from secrets in this file will be compromised as well. The default
permissions on ike.preshared are 0600. They should stay this way.
ATTRIBUTES
See attributes(5) for descriptions of the following attributes:
+-----------------------------+-----------------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+-----------------------------+-----------------------------+
|Availability |SUNWcsr |
+-----------------------------+-----------------------------+
SEE ALSO od(1), ikeadm(1M), in.iked(1M), ipseckey(1M), attributes(5), random(7D)SunOS 5.10 15 Oct 2001 ike.preshared(4)