G'day, thanks > Try 'find / -name "attacklog.sh" -print' > > On Thu, 2002-07-25 at 08:31, Todd Kirk wrote: > > > > Hello, > > > > > > > > Didn't find anything in archives or google, but saw > 'attacklog.sh' > > > > listed briefly in 'top'. I have only seen it today and only > > > saw it once. > > > > Anyone know what it is? > > > > > > I haven't heard of that one either, what kind of machine > do you have? > > > > > > > It is a RAQ4R, another user recommended I run 'locate > attacklog.sh'. My > > locate db was corrupted, have tried to rebuild and here > same thing still > > - > > > > [root cron.daily]# ./slocate.cron > > Thu Jul 25 16:05:35 EST 2002 - Start SLocate > > Thu Jul 25 16:05:50 EST 2002 - SLocate completed > > [root cron.daily]# locate attacklog.sh > > locate: decode_db() aborted. Corrupt database?
Thanks I can see from the bottom line that this is a bandwidth monitoring script my partner has installed. Stupid me I forgot about our MRTG scripts and cron jobs...D'OH! APOLOGISES TO EVERYONE! Thanks for the find command too. [root /proc]# find / -name "attacklog.sh" -print find: /proc/6/fd: Permission denied find: /proc/7/fd: Permission denied find: /proc/8/fd: Permission denied find: /proc/9/fd: Permission denied find: /proc/10/fd: Permission denied /etc/mrtg/attacklog.sh Regards, Todd Kirk _______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
