Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Introduction to Linux - A Hands on Guide
This guide was created as an overview of the Linux Operating System, geared toward new users as an exploration tour and getting started guide, with exercises at the end of each chapter.
For more advanced trainees it can be a desktop reference, and a collection of the base knowledge needed to proceed with system and network administration. This book contains many real life examples derived from the author's experience as a Linux system and network administrator, trainer and consultant. They hope these examples will help you to get a better understanding of the Linux system and that you feel encouraged to try out things on your own.
Click Here to receive this Complete Guide absolutely free.
I have been running a fedora C2 webserver at home for a while just to host some family photos and what not.. Last night it was hacked? All directorys are now GONE!! I do have a backup but would like to find an address of the attacker.. how would I go about finding this ?
Second if all directory where gone only root could do this.
NO MATTER WHAT HANGS ON THE INTERNET IT NEEDS TO BE SECURED AND UPDATED AT A DAY BASES IF NOT 24/7
If you dont know what youre doing make sure you find out ASAP.
All main distro are at default not so mega secure as man may think.
Examples some service should not be on at default ssh should not run at v1 and a choice for running no firewall is stupid, login thru root thru ssh and so on.
i think you had it on the internet with a ssh port open and a bloody simpel password like god ;-( dont make users like test with password test
if you do youre fucked for sure within 30 days.
This is not a flame i realy hope you will learn from it and make sure it wont happen again.
Makes the world much saver.
Use the basic rules :
use long and no simpel passwords
close ssh for v1 and use allow user .... (no root)
use chkconfig --level 345 yum on
update at daily bases auto
etc etc look it up.
did you know there are in the world every 1 second 2 attacks on major systems of the internet.
This is mainly done thru a machine that was hacked like yours.
I think the hacker (script kiddie) screwed up his own script :-)
On my webserver i get 40.000 hack attemps on my ssh only a WEEK if i installed FC basic.
with help of tools like portsentry etc etc it is reduced to under 10 mostly 0
But youre server could be used if hacked to take part of a DDOS atack on the whitehouse, NASA, or in our country the dutch goverment internet sites.
If this happens youre provider must take youre DSL connection offlline and this is costing you money so that why in typing the whole to long story ;-)