|
Hi, I am kindy new to using Debian
and was wondering if anyone could help me. I was looking in my
/etc/rc2.d directory to see what kind of services were installed on my server. The contents of my rc2.d
directory is as follows S10distwatchd S20courier-authdaemon S20nfs-kernel-server S89cron S10sysklogd S20courier-pop
S20pptpd
S89watchd S11klogd
S20courier-pop-ssl S20samba
S91apache S14ppp
S20exim S20ssh
S91apache-ssl S15bind9
S20inetd
S21nfs-common
S99rmnologin S15lwresd S20lpd
S23killd
S99stop-bootlogd S18portmap S20makedev
S50proftpd S19sshd S20mysql
S89atd I couldn’t find a man
page for distwatchd and just tried to run it which gave the following result : benspagina:/etc/rc2.d#
/etc/init.d/distwatchd FUCK: Got signal 11 while
manipulating kernel! Searching for this last
sentence I found all sorts of pages talking about compromised servers. So I downloaded chkrootkit,
but this said my system was clean. Is there a chance my system
is compromised? I hope anyone can help me. Greets, Ben |