07-24-2019
Turn on logging including router logging and closely monitor the logs.
Create a honeypot to lure the hackers into your logging traps, if you are interested to discover who is responsible.
Good job on keeping your backups up to date!
This User Gave Thanks to Neo For This Post:
3 More Discussions You Might Find Interesting
1. Linux
Hi,
i think someone has hacked my server, the following rules used to come which i haven't put. Please help me i couldnt find out how this rules are apply,
i think someone has put an script which generates enables the rules.
But after restarting the iptables everything seems to be working... (0 Replies)
Discussion started by: naik_mit
0 Replies
2. Cybersecurity
One of the most important ways to keep tou machine secure is to know when it has been broken into. The less time hackers have on your system, the less they can do to it, and the greater you chancens of kicking them off and repairing the damage.
The more sophisticated the hacker, the less likely... (8 Replies)
Discussion started by: binhnx2000
8 Replies
3. Cybersecurity
Hi,
There is a recent case whereby it was reported that one of the production servers was hacked on port 1521. However, I am not sure how this was possible, as I checked that the OS firewall (iptables) is on :
# /etc/init.d/iptables status
Table: nat
Chain PREROUTING (policy ACCEPT)
num ... (7 Replies)
Discussion started by: anaigini45
7 Replies
LEARN ABOUT REDHAT
postlog
POSTLOG(1) General Commands Manual POSTLOG(1)
NAME
postlog - Postfix-compatible logging utility
SYNOPSIS
postlog [-iv] [-c config_dir] [-p priority] [-t tag] [text...]
DESCRIPTION
The postlog command implements a Postfix-compatible logging interface for use in, for example, shell scripts.
By default, postlog logs the text given on the command line as one record. If no text is specified on the command line, postlog reads from
standard input and logs each input line as one record.
Logging is sent to syslogd(8); when the standard error stream is connected to a terminal, logging is sent there as well.
The following options are implemented:
-c config_dir
Read the main.cf configuration file in the named directory instead of the default configuration directory.
-i Include the process ID in the logging tag.
-p priority
Specifies the logging severity: info (default), warn, error, fatal, or panic.
-t tag Specifies the logging tag, that is, the identifying name that appears at the beginning of each logging record.
-v Enable verbose logging for debugging purposes. Multiple -v options make the software increasingly verbose.
SEE ALSO
syslogd(8) syslog daemon.
LICENSE
The Secure Mailer license must be distributed with this software.
AUTHOR(S)
Wietse Venema
IBM T.J. Watson Research
P.O. Box 704
Yorktown Heights, NY 10598, USA
POSTLOG(1)