Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Alternative for chattr
Special Forums Cybersecurity Alternative for chattr Post 303038102 by nimafire on Sunday 25th of August 2019 05:19:40 AM
Old 08-25-2019
version of virus that our server and several servers around world is hacked by this virus is more complicated than what they notice on that link,
so you mean there is no way to have lock function instead of chattr ?
its stupid because virus run chattr -i it self to unlock files and import dirty code ,
it unlock cron files and then lock them
 

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

du alternative in perl

I have a perl script that just does a `du -sk -x` and formats it to look groovy ( the argument can be a directory but usually is like /usr/local/* ) #!/usr/bin/perl use strict; use warnings; my $sizes = `du -x -sk @ARGV | sort -n`; my $total = 0; print "MegaBytes Name\n"; for(split... (1 Reply)
Discussion started by: insania
1 Replies

2. IP Networking

Alternative to Port 25

We're in the process of testing a mail server that we hope will replace our current one that's being hosted by our ISP. We learned a few things along the way and would like to avoid them if possible. The biggest hurdle is getting around port 25 (SMTP). Our work force is approx 75% consultants who... (1 Reply)
Discussion started by: sdotsen
1 Replies

3. Shell Programming and Scripting

Alternative for Cron

Hi... I want to know whether if there is any alternative for cron.:confused: I had written a script which checks for all system/application processes every 15 min(placed in cron though). But looks funny - what if cron daemon isn't running!! and expecting that script to update the OUTPUT FILE... (5 Replies)
Discussion started by: reddybs
5 Replies

4. Shell Programming and Scripting

Alternative to grep

How to find a particular line in a file without using grep? (3 Replies)
Discussion started by: proactiveaditya
3 Replies

5. HP-UX

alternative for egrep -o on HP-UX

Hello to all board members!! I have a problem on a HP-UX system. I should write a script. Therefore I need to search after IP addresses in the output of a command. On Debian this works: ifconfig | egrep -o "{1,3}\.{1,3}\.{1,3}\.{1,3}" The script where i need this is not ifconfig, but... (2 Replies)
Discussion started by: vostro
2 Replies

6. Shell Programming and Scripting

Using seq (Or alternative)

I usually just browse the forum/google for answers, however I've been stuck on a problem for a number of hours now and I've decided to join up and actually ask I've searched the forum ad naseum in an attempt to find answer to my query, however so far I have been unsuccessful. I'm no expert... (3 Replies)
Discussion started by: gtc
3 Replies

7. Shell Programming and Scripting

Alternative for ikecert

Hi Folks... Is there an alternative for ikecert(SunOS) - man info - "manipulates the machine's on-filesystem public-key certificate databases" in linux? Can we use pkcs7, pkcs8 or something like that?... I also came across ssh-keygen and ssh-keygen2... My best guess is to use ssh-certtool... (0 Replies)
Discussion started by: ahamed101
0 Replies

8. Shell Programming and Scripting

Alternative for wc -l

Hi techies .. This is my first posting hr .. Am facing a serious performance problem in counting the number of lines in the file. The input files i get will be in some 10 to 15 Gb of size or even sometimes more ..and I will load it to db I have used wc -l to confirm whether the loader... (14 Replies)
Discussion started by: rajesh_2383
14 Replies

9. Solaris

vi alternative

Is there any other editor, installed by 'default' in Sparc Solaris10, besides vi? I'd like to avoid installing anything new. If not, how to make vi more user-friendly? thanks. (8 Replies)
Discussion started by: orange47
8 Replies

10. UNIX for Beginners Questions & Answers

Chattr recursive exclude directory

Attempting to recursive chattr directories while excluding a directory, however the command which works with chown does not seem to with chattr find /mysite/public_html ! -wholename '/mysite/public_html/images' -type d -exec chattr -R +i {} \; find /mysite/public_html -not -path "*/images*"... (2 Replies)
Discussion started by: carnagel
2 Replies

LEARN ABOUT SUSE

vfs_scannedonly

VFS_SCANNEDONLY(8)					    System Administration tools 					VFS_SCANNEDONLY(8)

NAME

       vfs_scannedonly - Ensures that only files that have been scanned for viruses are visible and accessible to the end user.

SYNOPSIS

       vfs objects = scannedonly

DESCRIPTION

       This VFS module is part of the samba(8) suite.

       The vfs_scannedonly VFS module ensures that only files that have been scanned for viruses are visible and accessible to the end user. If
       non-scanned files are found an anti-virus scanning daemon is notified. The anti-virus scanning daemon is not part of the Samba suite.

       Scannedonly comes in two parts: a samba vfs module and (one or more) daemons. The daemon scans files. If a certain file is clean, a second
       file is created with prefix .scanned:. The Samba module simply looks if such a .scanned: file exists, and is newer than the pertinent file.
       If this is the case, the file is shown to the user. If this is not the case, the file is not returned in a directory listing
       (configurable), and cannot be opened (configurable). The Samba vfs module will notify the daemon to scan this file.

       So what happens for the user in the default configuration. The first time a directory is listed, it shows files as 'file is being scanned
       for viruses, but after the first time all files are shown. There is a utility scannedonly_prescan that can help you to prescan all
       directories. When new files are written the daemon is notified immediately after the file is complete.

       If a virus is found by the daemon, a file with a warning message is created in the directory of the user, a warning is sent to the logs,
       and the file is renamed to have prefix .virus:. Files with the .virus: prefix are never shown to the user and all access is denied.

       This module is stackable.

CONFIGURATION

       vfs_scannedonly relies on a anti-virus scanning daemon that listens on the scannedonly socket (unix domain socket or UDP socket).

OPTIONS

       scannedonly:domain_socket = True
	   Whether to use a unix domain socket or not (false reverts to use udp)

       scannedonly:socketname = /var/lib/scannedonly/scan
	   The location of the unix domain socket to connect to

       scannedonly:portnum = 2020
	   The udp port number to connect to

       scannedonly:scanhost = localhost
	   When using UDP the host that runs the scanning daemon (this host needs access to the files!)

       scannedonly:show_special_files = True
	   Whether sockets, devices and fifo's (all not scanned for viruses) should be visible to the user

       scannedonly:rm_hidden_files_on_rmdir = True
	   Whether files that are not visible (.scanned: files, .failed: files and .virus: files) should be deleted if the user tries to remove
	   the directory. If false, the user will get the "directory is not empty" error.

       scannedonly:hide_nonscanned_files = True
	   If false, all non-scanned files are visible in directory listings. If such files are found in a directory listing the scanning daemon
	   is notified that scanning is required. Access to non-scanned files is still denied (see scannedonly:allow_nonscanned_files).

       scannedonly:scanning_message = is being scanned for viruses
	   If non-scanned files are hidden (if scannedonly:hide_nonscanned_files = True), a fake 0 byte file is shown. The filename is the
	   original filename with the message as suffix.

       scannedonly:recheck_time_open = 50
	   If a non-scanned file is opened, the vfs module will wait recheck_tries_open times for recheck_time_open milliseconds for the scanning
	   daemon to create a .scanned: file. For small files that are scanned by the daemon within the time (tries * time) the behavior will be
	   just like on-access scanning.

       scannedonly:recheck_tries_open = 100
	   See recheck_time_open.

       scannedonly:recheck_time_readdir = 50
	   If a non-scanned file is in a directory listing the vfs module notifies the daemon (once for all files that need scanning in that
	   directory), and waits recheck_tries_readdir times for recheck_time_readdir milliseconds. Only used when hide_nonscanned_files is false.

       scannedonly:recheck_tries_readdir = 20
	   See recheck_time_readdir.

       scannedonly:allow_nonscanned_files = False
	   Allow access to non-scanned files. The daemon is notified, however, and special files such as .scanned: files.  .virus: files and
	   .failed: files are not listed.

EXAMPLES

       Enable anti-virus scanning:

		   [homes]
		vfs objects = scannedonly
		scannedonly:hide_nonscanned_files = False

CAVEATS

       This is not true on-access scanning. However, it is very fast for files that have been scanned already.

VERSION

       This man page is correct for version 3.5.0 of the Samba suite.

AUTHOR

       The original Samba software and related utilities were created by Andrew Tridgell. Scannedonly was developed for Samba by Olivier Sessink.
       Samba is now developed by the Samba Team as an Open Source project similar to the way the Linux kernel is developed.

Samba 3.5							    06/18/2010							VFS_SCANNEDONLY(8)
All times are GMT -4. The time now is 07:22 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy