0

I am looking for some instructions or guidelines to use in rebuilding a Unix machine that has been compromised. If anyone knows of any links to pages that have either rebuild or how to re-install the OS, please share.

thanks

4
Contributors
3
Replies
4
Views
13 Years
Discussion Span
Last Post by alc6379
0

You might start here where you'll find lots of experts on Unix as well as links to BLOG's dealing in just Unix. Go to:

I'm not a Unix guy, so this is all I can offer. Good Luck!

0

Are you looking to save what is currently on the system or start from scratch??

The first steps are identifying what, if anything, was affected and might still be causing damage.

Look in /tmp, /var/run, /var/tmp. Check for any process that you know shouldn't be running or anything that looks suspicious (like eggdrop).

Change your passwords (all of them)

If whats on the box doesn't matter much, I'd reformat and reinstall.

0

If the box has been compromised, save your data, and reinstall. That's the only real way to ensure that there aren't remnants from some r00tkit laying around.

This topic has been dead for over six months. Start a new discussion instead.
Have something to contribute to this discussion? Please be thoughtful, detailed and courteous, and be sure to adhere to our posting rules.