Re: How to detect whether your machine is compromised?

To: debian-user <debian-user@lists.debian.org>
Subject: Re: How to detect whether your machine is compromised?
From: Raj Kiran Grandhi <grajkiran@gmail.com>
Date: Sat, 06 Oct 2007 05:36:10 +0530
Message-id: <[🔎] 4706D172.9010909@gmail.com>
In-reply-to: <[🔎] 47066419.8000902@gmail.com>
References: <[🔎] 47066419.8000902@gmail.com>

Hi,

Thanks to everyone for contributing several tips. I am looking forwardto a highly educating weekend :) Here is a summary of packages that weresuggested in the various replies:


aide:       Advanced Intrusion Detection Environment - static binary
bastille:   Security hardening tool
chkrootkit: Checks for signs of rootkits on the local system
denyhosts:  an utility to help sys admins thwart ssh hackers
fail2ban:   bans IPs that cause multiple authentication errors
harden:     Makes your system hardened
iftop:      displays bandwidth usage information on an network interface
iptraf:     Interactive Colorful IP LAN Monitor
logcheck:   mails anomalies in the system logfiles to the administrator
ntop:       display network usage in top-like format
rkhunter:   rootkit, backdoor, sniffer and exploit scanner
tiger:      Report system security vulnerabilities
tripwire:   file and directory integrity checker

Thanks
Raj Kiran

Reply to:

References:
- How to detect whether your machine is compromised?
  - From: Raj Kiran Grandhi <grajkiran@gmail.com>

Prev by Date: (solved)Re: how to find out IP address used by router?
Next by Date: Re: console-setup package
Previous by thread: Re: How to detect whether your machine is compromised?
Next by thread: Re: How to detect whether your machine is compromised?
Index(es):
- Date
- Thread