Hello,
One of my dedicated server's root access has been compromised due to which i could not SSH the server. How should i troubleshoot this issue ? Kindly suggest. Could you please suggest me probable troubleshooting steps which i could follow on server to resolve this issue ? Regards, Linux Admin |
Quote:
*If you however tried to convey you found out the machine was compromised earlier or in a different way then you should have been much, much clearer about it and follow the same checklist and give us more nfo. For the sake of efficiency I expect your next reply to be complete and verbose, listing the steps you took and relevant stdout / stderr output etc, etc. |
Quote:
1.check ssh config where /etc/ssh/sshd_and configuration PermitRootLogin is no.If that is yes or commented then seems like your root password has been changed.Then go to run level 1 in boot time and reset the password. Anyway you have to log terminal machine itself to do these all.. :) |
All times are GMT -5. The time now is 09:54 PM. |