Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Last night, I had a pop-up asking the root pass, when I looked at the details, I saw "unknown" as source/name, and I canceled the login.
Possibly an attack. Cat I trace this back? Does that leave traces?
Of course, I'm not nifected/hacked as I denied this access, but is THIS how attacks (can) occur in Linux? Of course, windoze would have gone flat on its back for this...
Last night, I had a pop-up asking the root pass, when I looked at the details, I saw "unknown" as source/name, and I canceled the login.
Possibly an attack. Cat I trace this back? Does that leave traces?
Of course, I'm not nifected/hacked as I denied this access, but is THIS how attacks (can) occur in Linux? Of course, windoze would have gone flat on its back for this...
Eh, just curious...
Thor
"pop-up"? on a webpage or? How did you receive this pop-up? what application where you using when this happened?
It was the system pop-up, the one you get when you try to do something big, such as changing the firewall settings for example, I was about to do a security update (ssl and C°) but of course, I am very frequently on the net, my Firefox is open to a lot of stuff, including Facebook at the time.
Since I did'nt see any source I could trust I canceled the login. Possibly avoiding a system-wide infection...I guess.
It was the system pop-up, the one you get when you try to do something big, such as changing the firewall settings for example
I'm unimpressed with your wording of the question and your reply to my question (what app..?). Sounds like you tried to make a change to your config via a gui and your system asked for your password. This is normal.
Now if you where at a website and your browser asked for your root password sounds like you should try another website.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
Attack from [unknown]
