/var/log/secure - Dev Shed

Dev Shed Forums Sponsor:

Get inside! Sample the range of functionality easily built with JMSL Library for Time Series Data Analysis, Heat Maps, Portfolio Optimization, Monte Carlo Simulation, Stock Price Charting and more. Download Now!

October 25th, 2001, 03:09 AM

skydesigns

Junior Member

Join Date: Oct 2001

Posts: 3

Time spent in forums: < 1 sec
Reputation Power: 0

/var/log/secure

I just moved to a dedicated server - Linux RH 6.2. I was browsing my log
files and found this one: /var/log/secure . It has some accesses from
unknown IP's.

For example:

Oct 24 13:20:49 domain in.ftpd[19532]: connect from 193.253.185.49

What do these mean and should I be worried? How do I know if they actually
got in?

Thanks!

Matt

October 25th, 2001, 03:38 AM

freebsd

Contributing User

Join Date: Jan 2001

Posts: 5

Time spent in forums: < 1 sec
Reputation Power: 0

>> How do I know if they actually
got in?

Check /var/log/ftp.log or equivalent. If that doesn't give you sufficient info. Configure your /etc/syslog.conf and make it to show more verbose logs.

Viewing: Dev Shed Forums > System Administration > Apache Development > /var/log/secure

« Previous Thread | Next Thread »

Thread Tools	Search this Thread
Email this Page	Search this Thread: Advanced Search
Display Modes	Rate This Thread
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode	Rate This Thread:

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts vB code is On Smilies are On [IMG] code is On HTML code is Off

View Your Warnings | New Posts | Latest News | Latest Threads | Shoutbox

Forum Jump