Nepravidelne mi vyskočí bezpečnostná hláška (MDV 2009.1 upgraded z 2009.0), že je info vo var/log/security log; pod Krusader-rootom sa tam dostanem a je tam toto:
*** Diff Check, So máj 16 11:48:27 CEST 2009 ***
Security Warning: There are modifications for port listening on your machine :
- Opened ports : tcp 0 0 localhost:7634 *:* LISTEN 2706/hddtemp
- Opened ports : tcp 0 0 *:33787 *:* LISTEN 5075/skype
- Opened ports : udp 0 0 *:33676 *:* 2713/avahi-daemon:
- Opened ports : udp 0 0 *:bootpc *:* 2611/dhclient
- Opened ports : udp 0 0 *:5353 *:* 2713/avahi-daemon:
- Opened ports : udp 0 0 localhost:50159 *:* 5075/skype
- Opened ports : udp 0 0 *:33787 *:* 5075/skype
- Closed ports : tcp 0 0 localhost:7634 *:* LISTEN 2738/hddtemp
- Closed ports : tcp 0 0 *:33787 *:* LISTEN 5104/skype
- Closed ports : udp 0 0 localhost:52156 *:* 5104/skype
- Closed ports : udp 0 0 *:bootpc *:* 2644/dhclient
- Closed ports : udp 0 0 *:50150 *:* 2745/avahi-daemon:
- Closed ports : udp 0 0 *:5353 *:* 2745/avahi-daemon:
- Closed ports : udp 0 0 *:33787 *:* 5104/skype
*** Security Check, So máj 16 11:48:31 CEST 2009 ***
Security Warning: World Writable files found :
- /usr/share/skype/lang/skype_cs.qm
- /usr/share/skype/lang/skype_cs.ts
- /var/lib/lock/sane
- /var/lib/texmf
- /var/lib/xkb
- /var/spool/spamassassin
Security Warning: theses files should not be owned by someone else or writable :
- /root/.config : file is group writable.
- /root/.config : file is group writable.
Security Warning: these home directory should not be owned by someone else or writable :
user=gdm(75) : home directory is group writable.
user=gdm(75) : home directory is group writable.
Permissions changes on system files:
Wrong permissions of /etc/rc.d/init.d/acpid: should be 744
Wrong permissions of /etc/rc.d/init.d/wine: should be 744
Wrong group of /var/log/rpmpkgs: should be adm
Wrong permissions of /var/log/rpmpkgs: should be 640
Wrong group of /var/log/Xorg.0.log.old: should be adm
Wrong permissions of /var/log/Xorg.0.log.old: should be 640
Wrong permissions of /dev: should be 755
Wrong group of /var/log/dmesg.old: should be adm
Wrong permissions of /var/log/dmesg.old: should be 640
Wrong group of /var/log/rpmpkgs.1.gz: should be adm
Wrong permissions of /var/log/rpmpkgs.1.gz: should be 640
Wrong group of /var/log/dmesg: should be adm
Wrong permissions of /var/log/dmesg: should be 640
These are the ports listening on your machine :
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 localhost:7634 *:* LISTEN 2706/hddtemp
tcp 0 0 *:33787 *:* LISTEN 5075/skype
udp 0 0 *:33676 *:* 2713/avahi-daemon:
udp 0 0 *:bootpc *:* 2611/dhclient
udp 0 0 *:5353 *:* 2713/avahi-daemon:
udp 0 0 localhost:50159 *:* 5075/skype
udp 0 0 *:33787 *:* 5075/skype
Z toho všetkého viem, že som do Skype/lang nakopíroval češtinu (ktorú som na ploche rozbalil a potom rovno do zmieneného adresára skopíroval): - /home/oooooo/Plocha/skype_cs.qm
- /home/oooooo/Plocha/skype_cs.ts
Po reštarte PC som to z plochy vymazal, aj fotky po uložení. Ostatnému vo výpise nerozumiem. Je pravda, niektoré písmená sa pri písaní zobrazujú neúplne (teraz sa mi ypsilon zobrazuje bez pravej hornej paličky ak je nad ypsilonom dĺžeň). A na gmaili mi spamer (IP asi Čína) vykradol databázu kontaktov a obťažuje ich reklamou.
Mám nejaké bezpečnostné poškodenia? Nesúhlasia kontrolné súčty?
Čo značí toto bezpečnostné hlásenie?
Pre pridávanie komentárov sa musíte prihlásiť.
teda napriklad subory
- /root/.config : file is group writable.
- /root/.config : file is group writable.
su zapisovatelne skupinou a nemali by byt ani zapisovatelne a vlastnene len rootom
tam hore su popisane nejake otvorene porty pre vstup do tvojho pc
cele sa to nesie v tomto smere
pozorne si to precitaj (alebo daj prelozit z anglictiny ak ju neovladas) a postupne odstranuj dane problemy
na zaciatok odporucam zapnut firewall (naprikald cez GUFW) a blokovat vsetok pristup okrem toho co rucne povolis
Vďaka.