[CentOS] Centos 5.3 -> Apache - Under Attack ? Oh hell....
William L. Maltby
CentOS4Bill at triad.rr.comWed Jun 3 15:15:41 UTC 2009
- Previous message: [CentOS] Centos 5.3 -> Apache - Under Attack ? Oh hell....
- Next message: [CentOS] Centos 5.3 -> Apache - Under Attack ? Oh hell....
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Wed, 2009-06-03 at 11:06 -0400, William L. Maltby wrote: > <snip> I just thought of this too. There are two IDs tracked by the system. Effective (EUID) and the real ID (UID). If the process has changed UID, by either suid bit or by program call (I think it has to start as root for that to happen?), you can run ps with a flag that will show you the real and/or EUID. That might provide a clue as well. HTH -- Bill
- Previous message: [CentOS] Centos 5.3 -> Apache - Under Attack ? Oh hell....
- Next message: [CentOS] Centos 5.3 -> Apache - Under Attack ? Oh hell....
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
More information about the CentOS mailing list