LinuxQuestions.org
Support LQ: Use code LQ3 and save $3 on Domain Registration
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices



Reply
 
Search this Thread
Old 06-30-2009, 11:02 AM   #1
britchaz
LQ Newbie
 
Registered: May 2009
Posts: 4

Rep: Reputation: 0
CentOS 5.3 AV and malware problems


Hi guys,

I'm using CentOS 5.3 server with no server GUI and I am looking for a free AV. We have a YouTube-like application on our server called ClipHouse and I think there is a video that embedded malware into that part of the server. I've found the malware in a few index.php files. What do you think I should do?
 
Old 06-30-2009, 12:43 PM   #2
mark_alfred
Senior Member
 
Registered: Jul 2003
Location: Toronto, Ontario, Canada
Distribution: Ubuntu Linux
Posts: 1,073

Rep: Reputation: 103Reputation: 103
Try clamav. The command, once it's installed, is "clamscan". Various options are available too, for instance,

"clamscan --detect-pua --detect-broken -r"

Here, you'll be detecting possibly unwanted applications, along with broken applications, and running it recursively. You can create a log file as well, with the option "-l" followed by a specified file: "-l /home/user/clamscanresult". More information on options is on it's manpage.
 
Old 06-30-2009, 02:12 PM   #3
farslayer
Guru
 
Registered: Oct 2005
Location: Willoughby, Ohio
Distribution: linuxdebian
Posts: 7,232
Blog Entries: 5

Rep: Reputation: 189Reputation: 189
I doubt the malware was inserted from a video file, there are certainly enough other methods to alter php files remotely.

I think you should check to ensure your Cliphouse software is up to date, and the latest version.

Contact DZOIC and find out if there are any known vulnerabilities in their code that would allow your site to be compromised.

Check the install directions for Cliphouse that outline the configuration of your server, and ensure you have all the setting done properly in your PHP, Apache, and MySQL configs.

If you have any other PHP code on your website, ensure that it too is up to date and secure..
 
  


Reply

Tags
antivirus, av, centos5, malware


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] May have contracted malware. Yes, malware. Firefox on Ubuntu Fiesty. Seeking a fix drachenchen Linux - Security 22 08-17-2008 02:05 PM
May have contracted malware. Yes, malware. Firefox on Ubuntu Fiesty. Seeking a fix drachenchen Linux - Security 1 06-12-2008 06:10 AM
CentOS problems phantom_cyph Linux - Distributions 14 09-25-2007 08:14 PM
CENTOS 4.3 - 2 problems jaymc Linux - Newbie 1 05-05-2006 08:13 AM


All times are GMT -5. The time now is 12:21 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration