[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-security] Chkrootkit Report Warning
- Subject: [cobalt-security] Chkrootkit Report Warning
- From: enrique <enriquevega@xxxxxxx>
- Date: Mon, 10 Sep 2001 12:15:38 -0400
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
I have a concern with the report I received this morning from
chkrootkit. It is a warning about shell history files dealing with "//."
I don't understand why I would have a double slash directory listing.
Can anyone give me an idea? Below is a partial listing from the report:
Searching for anomalies in shell history files... Warning: `//var/tmp
//var/log/httpd
//var/spool/mail/kfarley
//etc/localtime
//etc/rc.d/init.d/pmfirewall
//etc/rc.d/init.d/webmin
//etc/rc.d/rc0.d/K90mysql
...
Could this be a hacked secondary file system?
enrique