Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: system log files and core files?
Top Forums UNIX for Dummies Questions & Answers system log files and core files? Post 47181 by Optimus_P on Wednesday 4th of February 2004 12:28:24 PM
Old 02-04-2004
Quote:
Originally posted by Westy564

I find myself in this position, my /var/adm/messages file says that "sshd: fatal: local: This server does not support your new ssh version." I know ssh stands for secure shell, I know my sshd daemon is running, it's suppose to be more secure than telnet, because telnet uses clear text. I know I'm running an early version of ssh that should be updated. I look on Cert's site and see that even the latest version of ssh still has holes in it that can be exploited. I know that hackers scan forums such as this one, for messages from people like me, so they can find potential victims. My boss wants to know have we been hacked, who's trying to use this version of ssh. Isn't there a log file you can search that will tell you when someone has logged into the system. My thoughts, gee, if they're smart enough to hack into the system, hack the root password, then they're smart enough to cover up their tracks. Maybe some training is in order here, if you want the answer to that question. Maybe we should be installing Tripwire or something like it to help monitor the system. Opps out of the question, the budget don't have dollars for training or Tripwire. Your so right when you say on some days it's not even worth showing up.
now you have posted a question that hasnt been answered.

you should look @ satan, cops, or possably tripwire.
there are an abundant amount of utilities on the market that can monitor a server for various styles of attacks.

its hard to determine if you have been hacked if you dont have anything in place to watch for abnormalities.

as far as being sarcastic. no. im just blunt and to the point.
 

9 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

What are core files and how can I delete them when am performing system maintenance??

Help me How can I go about doing this. also, if you have any idea of other files I can delete and what I can do to improve the performance of a system thats running too slow (6 Replies)
Discussion started by: IMPORTANT
6 Replies

2. UNIX for Advanced & Expert Users

What can be done with core files???

please help me, what can i do with the bountiful amount of core files our systems seem to have on occassional basis?? how do I analyze it and determine why the core file was dumped by the application that dumped it. the operating systems we use are solaris, DG-UX and linux red hat systems. (5 Replies)
Discussion started by: TRUEST
5 Replies

3. UNIX for Advanced & Expert Users

Analyzing System Core Files?

can some tell me how to do this. I mean, i tried finding this out on my own but when I checked the man pages, i got a truckload of commands available pertaining to this task which in turn got me confused. so my question is, if there is a simple straight forward(not necessarily easy) way to... (2 Replies)
Discussion started by: TRUEST
2 Replies

4. AIX

where i can find Log files of system

Hello world please, i would like to know where i can find all of : 1 Every connexion whith FTP 2 Every connexion whith telnet 3 Every connexion whith RCP 4 Every event when crash will arrive thanks in advance (1 Reply)
Discussion started by: mktahar
1 Replies

5. Solaris

System Log Files ?!

Hi , OS: Solaris 9 Where can I find the most important Log files in my system ?! I need to monitor the errors and also for auditing .. Regards Adel (1 Reply)
Discussion started by: ArabOracle.com
1 Replies

6. UNIX for Dummies Questions & Answers

hp ux core files

what are core files?? Can I safely delete them??? Please, help (2 Replies)
Discussion started by: ldaliosmane
2 Replies

7. UNIX for Dummies Questions & Answers

How to know where the core files come from?

Hi, I am trying to use "find / -name core -print | xargs rm -f " ,but it would delete all core files including some core files we do not want to delete. I search privious posts,someone said "To check what a core file came from - use the file command" I used man page to search file command,but... (9 Replies)
Discussion started by: lemon_06
9 Replies

8. Shell Programming and Scripting

AIX system.... deleting files in remote directory after retrieving files

Hi Friends, I am new to this , I am working on AIX system and my scenario is to retrive the files from remote system and remove the files from the remote system after retreving files. I can able to retrieve the files but Can't remove files in remote system. Please check my code and help me out... (3 Replies)
Discussion started by: vinayparakala
3 Replies

9. UNIX for Beginners Questions & Answers

Find all .sh files in file system and need to replace the string inside .sh files

Hi All, I need to write a script to find all "*.sh" files in /home file system and if any string find "*.sh" files with the name vijay@gmail.com need to replace with vijay.bhaskar@gmail.com. I just understood about the find the command to search .sh files. Please help me on this. find / -name... (3 Replies)
Discussion started by: bhas85
3 Replies

LEARN ABOUT DEBIAN

glance-control

GLANCE-CONTROL(1)						      Glance							 GLANCE-CONTROL(1)

NAME

       glance-control - Glance Daemon Control Helper

GLANCE DAEMON START
/STOP/RELOAD HELPER
   SYNOPSIS
	  glance-control [options] <SERVER> <COMMAND> [CONFPATH]

       Where <SERVER> is one of:
	  all, api, registry, scrubber

       And command is one of:
	  start, stop, shutdown, restart, reload, force-reload

       And CONFPATH is the optional configuration file to use.

   OPTIONS
	  --version
		 show program's version number and exit

	  -h, --help
		 show this help message and exit

	  --config-file=PATH
		 Path  to  a config file to use. Multiple config files can be specified, with values in later files taking precedence. The default
		 files used are: []

	  -d, --debug
		 Print debugging output

	  --nodebug
		 Do not print debugging output

	  -v, --verbose
		 Print more verbose output

	  --noverbose
		 Do not print more verbose output

	  --log-config=PATH
		 If this option is specified, the logging configuration file specified is used and overrides any other logging options	specified.
		 Please see the Python logging module documentation for details on logging configuration files.

	  --log-format=FORMAT
		 A logging.Formatter log message format string which may use any of the available logging.LogRecord attributes. Default: none

	  --log-date-format=DATE_FORMAT
		 Format string for %(asctime)s in log records. Default: none

	  --log-file=PATH
		 (Optional) Name of log file to output to. If not set, logging will go to stdout.

	  --log-dir=LOG_DIR
		 (Optional) The directory to keep log files in (will be prepended to --logfile)

	  --use-syslog
		 Use syslog for logging.

	  --nouse-syslog
		 Do not use syslog for logging.

	  --syslog-log-facility=SYSLOG_LOG_FACILITY
		 syslog facility to receive log lines

	  --pid-file=PATH
		 File to use as pid file. Default: /var/run/glance/$server.pid

   SEE ALSO
       o OpenStack Glance

   BUGS
       o Glance is sourced in Launchpad so you can view current bugs at OpenStack Glance

AUTHOR

       OpenStack

COPYRIGHT

       2010-present, OpenStack, LLC.

2012.1.1							  March 14, 2013						 GLANCE-CONTROL(1)
All times are GMT -4. The time now is 03:46 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy