Malware iri kukura paLinux uye rootkits idambudziko ye * nix masisitimu kwenguva yakareba. Haisi chokwadi kuti * nix masisitimu haafanire kuve neantivirus kana kuregeredza kuchengetedzeka, uyo anofunga kuti izvi zvakaipa kwazvo. Kunyangwe zvakachengeteka uye mukana wekumisikidza uchititendera kuti tivadzivirire nenzira iri nani, hatifanire kuregeredza chengetedzo, nekuti izvi zvinoita kuti titambure.
Neichi chikonzero, tinokupa matatu matatu akanaka maturusi ayo achabvisa malware uye rootkit kubva kuLinux distro. Izvi mapurojekiti matatu achatibatsira kuchengetedza system yedu yakachena kutyisidzira. Imwe yemapurojekiti aya chkrootkit, raira rekushandisa tambo iyo inotibatsira kuona rootkits. Imwe ndeye Lynis, chishandiso chakanaka chekuongorora chengetedzo uye zvakare inoshanda seye rootkit scanner. Pakupedzisira tichaona ISPProject, scanner yemaseva ewebhu anotibatsira kuongorora malware.
Para gadza chkrootkit tinoita zvinotevera:
wget --pasive-ftp ftp://ftp.pangeia.com/br/pub/seg/pac/chkrootkit.tar.gz tar xvfz chkrootkit.tar.gz cd chkrootkit-*/ make sense cd .. mv chkrootkit-<version>/ /usr/local/chrootkit ln -s /usr/local/chkrootkit/chkrootkit /usr/local/bin/chkrootkit
Para Shandisa, chete:
chkrootkit
Chimwe chishandiso ndiLynis sezvatakataura, kuiisa:
cd /tmp wget https://cisofy.com/files/lynis-2.1.1.tar.gz tar xvfz lynis-2.1.1.tar.gz mv lynis /usr/local/ ln -s /usr/local/lynis/lynis /usr/local/bin/lynis lynis update info
Zvino, tinogona shandisa iyo kuteedzera yedu system:
lynis audit system
Pakupedzisira, iyo ISPProtect web chishandiso, iyo iwe yauchazoda kuti iwe waimbove uine PHP yakaiswa pakombuta yedu, kana isu tisinayo kare, isai iyo pamberi:
mkdir -p /usr/local/ispprotect chown -R root:root /usr/local/ispprotect chmod -R 750 /usr/local/ispprotect cd /usr/local/ispprotect wget http://www.ispprotect.com/download/ispp_scan.tar.gz tar xzf ispp_scan.tar.gz rm -f ispp_scan.tar.gz ln -s /usr/local/ispprotect/ispp_scan /usr/local/bin/ispp_scan
Ichi chishandiso chekupedzisira chakanyanya kunaka kune tarisa makomputa anoita semaseva. Uye kuishandisa:
ispp_scan
Rkhunter akakwirira kupfuura Chkrootkit. Ive nekuchenjerera neChkrootkit, inowanzopa manyepo ekunyepa, iyo yekuisa yakanaka kwazvo uye kunyanya katsamba kuti ugadzire yako wega distro. : D
Mhoro, hongu, kune zvakawanda kupfuura izvo zvandakaisa muchinyorwa ... Uye sekutaura kwako, ini ndakakanganwa kutaura pamusoro pezvakanaka zvenhema, asi ichokwadi kuti dzimwe nguva inoona mafaira ekufungidzira asiri emidzi midzi.
Thanks!
Ini ndinemi kuti Rkhunter ari pamusoro, nekuda kwemanyepo enhema. Chero zvazvingaitika, zvingave zvakanaka kuti iwe utaure zvaunofanira kuita kana malware akawanikwa mune ese Chkrootkit kana chirongwa cheRkhunter, uye kana kuburikidza nezvirongwa izvi bug kana malware isingakwanise kubviswa mune unix kana linux nharaunda, chii matanho ekutevera anotevera. Ndinodawo kuziva kana munzvimbo idzi dzeAntimalware yeunix zvese chirongwa cheRkhunter kana Chkrootkit chiri kutendeka zvakadii uye kana izvo zvadzokororwa zvichiramba zvichitsanangurwa nemarware, nekuti sekuziva kwangu, kwavo kuvandudzwa kwezvirongwa izvi kunoitwa nekukurumidza Nguva nenguva, mwedzi inogona kutopfuura pakati pekuvandudzwa.
Ini zvakare ndaida kuziva kana Clamav antivirus yemaunix uye linux enharaunda uko kwekuchengetedzeka kwekuchengetedza kuri kwakajairika kupfuura Rkhunter neChkrootkit kana ichingoshanda chete kuona uye kubvisa kutyisidzira kwemahwindo mune imwe nharaunda nharaunda, kana iyo inobvisa zvese kutyisidzira kwemawindows uye zvakare nezve unix nharaunda panguva imwe chete. Ndatenda
Ndine kusava nechokwadi kwakafanana naJosé. Asi hei, ndinofungidzira kuti izvozvi zvavari "kutirwisa" isu zvakanyanya kuchabuda rumwe ruzivo rwekuti tingachengetedza sei Linux.
Dzazvino nhau dzeLinux maererano nekuchengeteka kwako:
http://www.redeszone.net/2016/02/17/un-fallo-en-la-libreria-c-de-gnu-expone-la-seguridad-de-miles-de-aplicaciones-y-dispositivos-linux/
Dzazvino nhau nezvekutyisidzirwa kwekuchengetedza:
http://www.redeszone.net/2016/02/17/wajam-un-adware-que-se-utiliza-para-distribuir-troyanos-y-exploits/
Maitiro ekubvisa Wajam:
https://www.bugsfighter.com/es/remove-wajam-ads/
Nei ndichifanira kurodha pasi chkrootkit kubva kune isingazivikanwe uye isinganzwisisike wget - pasive-ftp ftp://ftp.pangeia.com/br/pub/seg/pac/chkrootkit.tar.gz, kana ndinayo mumabhuku eUbuntu.