Izixhobo ezintathu ukuskena iRootkit kunye neMalware kwiLinux

Isaac

Imizuzu ye2

Ingcambu

I-Malware iyakhula kwiLinux kwaye i-rootkits yingxaki Iinkqubo ze-nix ixesha elide. Akuyonyani ukuba iinkqubo ze-nix akufuneki zibenayo i-antivirus okanye zingakhathaleli ukhuseleko, ocinga ukuba oku kuphosakele kakhulu. Nangona zikhuselekile kwaye iimeko zoqwalaselo zisivumela ukuba sizikhusele ngendlela engcono, akufuneki silutyeshele ukhuseleko, kuba oku kusenza sengozini.

Ngesi sizathu, sikubonisa izixhobo ezintathu ezilungileyo eziza kususa i-malware kunye ne-rootkit kwi-Linux distro yethu. Ezi Iiprojekthi ezintathu ziya kusinceda sigcine inkqubo yethu icocekile kwizisongelo. Enye yezi projekthi yi-chkrootkit, isixhobo somgca wokuyalela esiya kuthi sincede sibone i-rootkits. Enye yiLynis, isixhobo esifanelekileyo sokuphicothwa kokhuseleko kwaye ikwasebenza njenge-scankit scanner. Okokugqibela siza kubona i-ISPProject, iskena kwiiseva zewebhu eziya kusinceda sivavanye i-malware.

ukuba fakela chkrootkit senza oku kulandelayo:

wget --pasive-ftp ftp://ftp.pangeia.com/br/pub/seg/pac/chkrootkit.tar.gz

tar xvfz chkrootkit.tar.gz

cd chkrootkit-*/

make sense

cd ..

mv chkrootkit-<version>/ /usr/local/chrootkit
ln -s /usr/local/chkrootkit/chkrootkit /usr/local/bin/chkrootkit

ukuba Yisebenzise, kuphela:

chkrootkit

Esinye isixhobo nguLynis njengoko besitshilo, ukuyifaka:

cd /tmp

wget https://cisofy.com/files/lynis-2.1.1.tar.gz

tar xvfz lynis-2.1.1.tar.gz

mv lynis /usr/local/

ln -s /usr/local/lynis/lynis /usr/local/bin/lynis

lynis update info

Ngoku, sinako yisebenzise ukulandelela inkqubo yethu:

lynis audit system

Ekugqibeleni, Isixhobo sewebhu se-ISPProtect, Uyakufuna ngaphambili ukuba ufake i-PHP kwikhompyuter yethu, ukuba asikabinayo, yifake ngaphambili:

mkdir -p /usr/local/ispprotect

chown -R root:root /usr/local/ispprotect

chmod -R 750 /usr/local/ispprotect

cd /usr/local/ispprotect

wget http://www.ispprotect.com/download/ispp_scan.tar.gz

tar xzf ispp_scan.tar.gz

rm -f ispp_scan.tar.gz

ln -s /usr/local/ispprotect/ispp_scan /usr/local/bin/ispp_scan

Esi sixhobo sokugqibela silunge ngakumbi skena iikhompyuter ezisebenza njengeeseva. Ukuyisebenzisa:

ispp_scan

Shiya uluvo lwakho

Idilesi yakho ye email aziyi kupapashwa. ezidingekayo ziphawulwe *

*

*

  1. Inoxanduva lwedatha: I-AB Internet Networks 2008 SL
  2. Injongo yedatha: Ulawulo lwe-SPAM, ulawulo lwezimvo.
  3. Umthetho: Imvume yakho
  4. Unxibelelwano lwedatha: Idatha ayizukuhanjiswa kubantu besithathu ngaphandle koxanduva lomthetho.
  5. Ukugcinwa kweenkcukacha
  6. Amalungelo: Ngalo naliphi na ixesha unganciphisa, uphinde uphinde ucime ulwazi lwakho.

  1.   UFrederick sitsho
    yenzayo 8 iminyaka

    URkhunter uphakame kakhulu kuneChkrootkit. Lumka ngeChkrootkit, ihlala inika iimposiso ezingezizo, igalelo lilungile kwaye ngakumbi inqaku lokwenza eyakho i-distro. : D

    Phendula kwi-federico
    1.    UIsake PE sitsho
      yenzayo 8 iminyaka

      Molo, ewe, zininzi kunezo ndizibeke kwinqaku… Kwaye njengoko usitsho, ndilibele ukugqabaza ngeemposiso ezingezizo, kodwa kuyinyani ukuba ngamanye amaxesha ifumanisa iifayile ezikrokrisayo ezingazizo iingcambu.

      Nibuliso!

      Phendula u-Isaac PE
  2.   Amagama aqhelekileyo kunye aqhelekanga eneenfayile JOSÉ sitsho
    yenzayo 8 iminyaka

    Ndikunye nawe ukuba uRkhunter uphezulu, kumxholo weemposiso ezingezizo. Ngayiphi na imeko, kuya kuba kuhle kuwe ukuba uphawule ngento omele uyenze xa kwenzeka ukuba i-malware ifumaneke kwi-Chkrootkit okanye kwinkqubo ye-Rkhunter, kwaye ukuba kwezi nkqubo i-bug okanye i-malware ayinakususwa kwindawo ye-unix okanye ye-linux, yintoni amanyathelo alandelayo. Ndingathanda nokwazi ukuba kwezi ndawo ze-Antimalware ze-unix zombini inkqubo yeRkhunter okanye yeChkrootkit inokuthenjwa kangakanani kwaye ukuba uhlaziyo luhlala lukhona kwiingcaciso ze-malware, kuba ngokokwazi kwam, uhlaziyo lwale nkqubo luhlaziywa ngokukhawuleza okukhulu Rhoqo emva kwexesha, iinyanga zisenokudlula phakathi kohlaziyo.
    Ndifuna nokwazi ukuba i-Clamav antivirus ye-unix kunye ne-linux bume apho uhlaziyo lokhuselo luqheleke ngakumbi kuneRkhunter kunye neChkrootkit ukuba isebenza kuphela ekufumaneni nasekupheliseni izoyikiso zeewindows kwimeko ye-unix, okanye ishenxisa zombini izoyikiso zeewindows kunye ne-unix iimeko ngaxeshanye. Enkosi

    Phendula JOSE
  3.   URubén sitsho
    yenzayo 8 iminyaka

    Andithandabuzi njengoJosé. Kodwa ke, ndicinga ukuba ngoku "behlasela" thina ngakumbi kuya kuphuma ulwazi ngakumbi malunga nendlela yokukhusela iLinux.

    Phendula uRubén
  4.   Amagama aqhelekileyo kunye aqhelekanga eneenfayile JOSÉ sitsho
    yenzayo 8 iminyaka

    Iindaba zamva nje zeLinux ngokubhekisele kukhuseleko lwakho:
    http://www.redeszone.net/2016/02/17/un-fallo-en-la-libreria-c-de-gnu-expone-la-seguridad-de-miles-de-aplicaciones-y-dispositivos-linux/

    Phendula JOSE
  5.   Amagama aqhelekileyo kunye aqhelekanga eneenfayile JOSÉ sitsho
    yenzayo 8 iminyaka

    Iindaba zamva nje ngezisongelo zokhuseleko:
    http://www.redeszone.net/2016/02/17/wajam-un-adware-que-se-utiliza-para-distribuir-troyanos-y-exploits/

    Phendula JOSE
  6.   Amagama aqhelekileyo kunye aqhelekanga eneenfayile JOSÉ sitsho
    yenzayo 8 iminyaka

    Uyisusa njani i-Wajam:
    https://www.bugsfighter.com/es/remove-wajam-ads/

    Phendula JOSE
  7.   Ngoku sitsho
    yenzayo 8 iminyaka

    Kutheni le nto kufuneka ndikhuphele i-chkrootkit kwindawo engaziwayo kunye ne-wget -pasive-ftp ftp://ftp.pangeia.com/br/pub/seg/pac/chkrootkit.tar.gz, ukuba ndinayo kwii-Ubuntu zokugcina.

    Phendula kuJuanjp2012