[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] gmon.out a security issue?

Subject: [cobalt-security] gmon.out a security issue?
From: Jeff Lasman <jblists@xxxxxxxxxxxxx>
Date: Mon, 01 Apr 2002 07:40:59 -0800
Organization: nobaloney.net
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

I'm making this post both here and on cobalt-developers; I'm not sure
where the expertise might reside to answer the question...

One of my colocation clients, who has been hacked several times, notices
that there's a "gmon.out" file, owned by root:siteX, in each directory
of two websites owned by the same client.

There's no reference to either "gmon" out or to gprofs (the program that
produces it) in any of the files on either of the sites.

Anyone have any ideas why or how this file could have appeared on these
two sites?

Jeff
-- 
Jeff Lasman <jblists@xxxxxxxxxxxxx>
Linux and Cobalt/Sun/RaQ Consulting
nobaloney.net
P. O. Box 52672, Riverside, CA  92517
voice: (909) 778-9980  *  fax: (702) 548-9484

Follow-Ups:
- Re: [cobalt-security] gmon.out a security issue?
  - From: Gerald Waugh
- Re: [cobalt-security] gmon.out a security issue?
  - From: Gerald Waugh

Prev by Date: Re: [cobalt-security] messages log file
Next by Date: Re: [cobalt-security] Blocking mail from ip/domain name etc.
Previous by thread: Re: [cobalt-security] Blocking mail from ip/domain name etc.
Next by thread: Re: [cobalt-security] gmon.out a security issue?

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index