LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 10-23-2004, 09:06 PM   #1
b_s
LQ Newbie
 
Registered: Aug 2002
Location: California
Distribution: Mandrake, SuSe 9.2
Posts: 25

Rep: Reputation: 15
root user has command start_fish_server


I was arrowing back through my root user commands when I was doing some house cleaning and noticed that the root user had this, something I have NEVER done::

[root@localhost b]# echo; /bin/sh -c start_fish_server > /dev/null 2>/dev/null; perl .fishsrv.pl d6799524259f170980dc2b3b9b2811d7 2>/dev/null; perl -e '$|=1; print "### 100 transfer fish server\n"; while(<STDIN>) { last if /^__END__/; $code.=$_; } exit(eval($code));' 2>/dev/null; 2>&1;echo '### 000'

#FISH

Does anyone know what this is? ???
 
Old 10-24-2004, 01:16 AM   #2
Capt_Caveman
Senior Member
 
Registered: Mar 2003
Distribution: Fedora
Posts: 3,658

Rep: Reputation: 69
See here under kdebase/kioslave/fish/fish.cpp

Last edited by Capt_Caveman; 10-24-2004 at 01:17 AM.
 
Old 10-24-2004, 09:01 PM   #3
b_s
LQ Newbie
 
Registered: Aug 2002
Location: California
Distribution: Mandrake, SuSe 9.2
Posts: 25

Original Poster
Rep: Reputation: 15
Are there any programs that would legitimatly use this fish server, or have I been hacked? Thanks for your reply
 
Old 10-25-2004, 12:35 AM   #4
Capt_Caveman
Senior Member
 
Registered: Mar 2003
Distribution: Fedora
Posts: 3,658

Rep: Reputation: 69
I'm not that familliar with it, but it's used by kio_fish. It's a graphical ssh interface that allows for simple file transfers (drag&drop). It's included as part of kdebase. Here's a pic and brief description:

http://www.jennings.homelinux.net/kio_fish.html

If you're concerned about it, check the output of the 'who' command to see who is currently logged in as well as last -i to see when remote logins occured.
 
Old 06-09-2005, 04:28 AM   #5
b_s
LQ Newbie
 
Registered: Aug 2002
Location: California
Distribution: Mandrake, SuSe 9.2
Posts: 25

Original Poster
Rep: Reputation: 15
Thumbs up

I just installed the Kiosk utilily after months of not using it. After I started setting up my 4 year olds profile and it asked me for the root password and such, I noticed that it used the fish server. So for anyone who is paraiod or curious enough to notice the strange code that I found, it belongs to the Kiosk program. Which is very useful, I dont have to edit config files to limit a user now
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
root permissons to user command line chaitu_iiit Linux - Software 7 11-09-2004 07:54 AM
KDE command work as user, not root. mooreted Slackware 6 04-08-2004 03:21 PM
Need a command so that non-root user can see interfaces that are up/down ming0 Slackware 5 02-02-2004 06:49 PM
changing to root user without command line kaega2 Linux - Software 3 11-28-2003 04:14 PM
Is their a way to run a command as root..or another user.. in php BaerRS Programming 2 04-25-2002 03:38 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 03:45 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration