Network Security: Detailed info on Group permissions changed

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Focus-Linux

[Top] [All Lists]

Group permissions changed

from [sf_submit] Network Security

[Permanent Link]

Subject:	Group permissions changed
Date:	28 Sep 2005 18:33:24 -0000

I posted this before on the security basics, but haven't recieved a response, 
and it worries me a bit, so I'm sending this to a few other groups in hopes 
that someone will have an idea about it.

---

Fairly recently I noticed my ftp client wouldn't list files in certain 
directories on my server anymore - so I ssh'd in (it's dedicated), and did a ls 
-aFl on the files, hoping to see what the problem was - here are a few of the 
results:

-rw-r--r-- 1 larry 503 371 2005-02-25 08:36 head.php
-rw-r--r-- 1 larry 48 873 2005-09-09 03:23 foot.php

I never set the group ids to 503 or 48, so I checked just to make sure - and no 
groups with those ids even exist. Is there an exploit/tool that causes this, 
and should I be worried?

I checked the processes running, and everything seems to be OK - same with any 
processes connecting to the internet.

I'd appreciate any comments

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Group permissions changed, sf_submit <= Re: Group permissions changed, Alan McKinnon Re: Group permissions changed, Eduardo Tongson Re: Group permissions changed, Glynn Clements Re: Group permissions changed, joop gerritse Re: Group permissions changed, Jan Slupski Re: Group permissions changed, System Administrator

Previous by Date:	RE: Securing Fedora Core 4, Shay Wilson
Next by Date:	Re: Group permissions changed, Alan McKinnon
Previous by Thread:	Securing Fedora Core 4, AragonX
Next by Thread:	Re: Group permissions changed, Alan McKinnon
Indexes:	[Date] [Thread] [Top] [All Lists]