CentOS, Linux / December 26, 2021 / ashishpsk / 0
The log files generated in a Linux environment can typically be classified into four different categories: Application Logs Event Logs Service Logs System Logs /var/log/messages This log file contains generic system activity logs.It is mainly used to store informational and non-critical system messages.In Debian-based systems, /var/log/syslog directory serves the same purpose. /var/log/auth.log All authentication-related events
CentOS, Linux / December 26, 2021 / ashishpsk / 0
Check outbound connections: If you only want outbound tcp connections, I think you can use That will show all connections whose destination is not your localhost. You can add your internal ip, say netstat -nputw should do the trick. Add c for continuous updating. To capture the RAW packets This will capture all the raw packets,
CentOS, Hosting, Linux / December 26, 2021 / ashishpsk / 0
Server running slow – this is an obvious sign you might getting hacked. Especially if you haven’t changed anything else on the site and traffic is still the same. Check for high server (CPU) load grep processor /proc/cpuinfo | wc -l. Unnecessary if your webhosting control panel already has a GUI for this. Anything at or above
CentOS, Hosting, Linux / December 26, 2021 / ashishpsk / 0
I have a process named “stealth” that has infected my server (slamming my CPU) To get a list of all current active connections, you can use the netstatcommand: With the -a parameter, we tell the command to show all connections(including the LISTENING ones), instead of only those who are connected. The -n parameter shows the different port numbers used Now, to find out
CentOS, Linux / October 6, 2021 / ashishpsk / 0
If the output is empty, the port is not in use. Find the process or service listening on a particular port in Linux as follows (specify the port). Using lsof Command: Using fuser: To find out the PID of a process, you can use pidof Assuming you already know the PID of a process, you can print its name using
CentOS, Linux / October 6, 2021 / ashishpsk / 0
Use the following one-line command to open the open the firewall ports: Run the following command to allow traffic on port 80: If you wish to remove the rule that was recently added,You can use below command If you do not wish to open port publicly, You can open the port for a Single IP.
CentOS, Linux / October 5, 2021 / ashishpsk / 0
For RPM based systems: For DEB based systems: Once you get the Apache PID, use the following command to get it. Once you have Apache PID, use the following proc file system to identify it. As per the below output the httpd process has been running since Oct 5 12:20
CentOS, Linux / October 5, 2021 / ashishpsk / 0
A quick way to check your httpd.conf file is: Script for restarting Apache when server load is over 100 When the load is high run this command and let us know the output: Below is the cPanel graceful Apache restart command: