[ Date Index ]
[ Thread Index ]
[ <= Previous by date /
thread ]
[ Next by date /
thread => ]
Re: [LUG] viruses and protecting against them
- To: list@xxxxxxxxxxxxx
- Subject: Re: [LUG] viruses and protecting against them
- From: Simon Waters <simon@xxxxxxxxxxxxxx>
- Date: Wed, 14 Nov 2018 09:59:07 +0000
- Delivered-to: dclug@xxxxxxxxxxxxxxxxxxxxx
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=dclug.org.uk; s=1538993161; h=Sender:Content-Transfer-Encoding:Content-Type :Reply-To:List-Subscribe:List-Help:List-Post:List-Unsubscribe:List-Id:Subject :MIME-Version:References:In-Reply-To:Message-ID:Date:To:From:Cc:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Owner:List-Archive; bh=mga6FW9w+EwONkQvuFjHuJROqulhHPPS4G2iRnHGIWk=; b=mH4HE+U6Uu6p28UNG+Z/G1dH2q uA/TE1HmvGK6Uq1B4AUzOG90efytbKLlmrBDKIK4xVoeVKwbAfRav5snvaey881DhzBvZQ1oE2Me+ 7UUs8A6Yvm++pkpvgN9IDlSG4QPIcEbLxfeVBFpmHw3ONbZx0IQXjDg7iFIyCA4NjJrE=;
On Wednesday, 14 November 2018 08:14:33 GMT Pentiddy wrote:
> Hi all,
> still seem to be having a few issues, and wondered if you might be able
> to comment on the following entries in the syslog...
The entries don't look suspicious to me.
That said I'd still always advocate a clean build, because bad stuff has a
habit of hiding well.
First Linux malware I hit loaded kernel modules and modified the file utilities
to make it hard to find it existed, they were clever but easily bypassed if you
suspected the box was infected in the first place, but to casual inspection it
all looked normal.
--
The Mailing List for the Devon & Cornwall LUG
https://mailman.dclug.org.uk/listinfo/list
FAQ: http://www.dcglug.org.uk/listfaq