That message refer to packet capture not to normal listening.
So said: are you sure that httpd is the legit one?
If so, that could be something similar to
http://comments.gmane.org/gmane.comp.documentfoundation.libreoffice.user/23104,
perhaps.
W.
- Original Message -
From: absolutely
Hey,
recently Hetzner (www.hetzner.de) found at least one of their boxes was running
an undetected sshd backdoor.
http://pastie.org/8015553
The malicious code used in the backdoor exclusively infects the RAM. First
analysis suggests that the malicious code directly infiltrates running Apache
Have you tried configuring BINDIR in rkhunter.conf? ;)
On 17/11/2010 14:58, Roberto wrote:
I havenot BINDIR, only commented one.
However I have ./ in my PATH environment var, it's not allowed by new
rkhunter?
Sent from my iPhone
Sent from my iPhone
On 17/11/2010, at 14:26, William
On 17/11/2010 15:09, John Horne wrote:
On Wed, 2010-11-17 at 14:26 +0100, William Maddler wrote:
Hint: tried looking at actual BINDIR configuration? ;)
On 17/11/2010 13:55, Roberto wrote:
Hello
After install the new 1.3.8 version I get this:
Invalid BINDIR configuration option: Invalid
On 03/11/2010 10:46 PM, unsp...@hushmail.com wrote:
On Wed, 10 Mar 2010 12:34:24 +0100 William Maddler
n...@maddler.net wrote:
since about a week I'm getting alerts about hidden processes found
on my system (Debian 5.0 stable 32bit).
I've just found that reported PIDs are Postfix (2.5.5