Has my System been Compromised?
Hello,
5 days ago I tried an experiment. I currently run a music server called Subsonic that runs in a Java machine. My expirement was to make a chroot jail for it. So created a dir /subsonic and copied -a /lib64 and some /usr/bin/ and /bin files into it the chroot directory. The experiment failed so I deleted that chroot directory.
Since then I rested my passwords.
Today I ran AIDE check(I keep the aide bin and aide database on a seperate usb key for security) and what can be found on the attached file.
I what I am worried about most is /lib64 and /usr/bin.
Can anyone help, please?
Last edited by dman777; 05-14-2011 at 01:57 AM.
|