|
|||||||||
|
|||||||||
| |||||||||
|
|
|
| |||||||||
 |
|
|
«
Previous Thread
|
Next Thread
»
|
Thread Tools | Search this Thread | Rate Thread | Display Modes |
Dev Shed Forums Sponsor:
|
|
|
|
#1
November 29th, 2005, 02:00 PM
|
|||
|
|||
|
No Mode, Zero File size File
Hey all,
I'm not a sysadmin by any stretch, but I am fairly comfortable on Unix. Today I saw a file with a very funky name, a zero filesize, and NO MODE. I cannot change the mode, even though I am logged in as the user that supposedly owns the file. And since it has no mode, I can't access it at all. I'm just curious if anyone has ever seen anything like this before and can explain what it is and where it comes from. The output from 'ls -l': Code:
---------- 1 user group 0 Nov 22 19:24 œ+¤ÿ=íp One coworker theorized that it may have been a fault from some kind of memory I/O since there is a fair amount of C++ development going on on this box. Thoughts?
__________________
- dsb -  Perl Guy Last edited by dsb : November 30th, 2005 at 10:11 AM.
|
|
#2
November 29th, 2005, 02:08 PM
|
|||
|
|||
|
Is the machine conntected to the internet in any way?
__________________
-- Manuel Hirsch - Linux, FreeBSD, programming, administration articles, tutorials and more.
|
|
#4
November 29th, 2005, 02:56 PM
|
|||
|
|||
|
Quote:
Sorry to tell you.... - PWNED  i.e. somebody cracked your system and is probably using it for his own purposes now. Check your traffic, you may be hosting p0rn, warez, a spam server, or other stuff like that now... M.
|
|
#6
November 29th, 2005, 03:35 PM
|
||||
|
||||
|
Quote:
1. There is very few other conditions that could cause this. High load is not one of them unless you have got a broken kernel, broken hardware, or something. 2. You can not change the file's mode. Probably a rootkit is preventing this. Another possible idea would be a filesystem problem which should be fixed by running "fsck". 3. Sorry, but.... Quote:
You came here to ask in a forum instead of asking your sysadmin. So I assume you don't have one. Are you administrating this server yourself? If you don't have a few years of experience in unix administration, running a server connected to the internet calls for crackers... When was the last time you installed updates? And what did you do to secure/harden the server? Since you said that you are not an admin, I assume you did neither. Which makes a close to 100% probability for a cracker IMHO. If this isn't true, then please forgive my overhasty conclusions M.
|
|
#7
November 29th, 2005, 03:52 PM
|
|||
|
|||
|
Those are reasonable conclusions so now worries
 .No, I'm not administering the system myself, but I'm not sure who is. I'm looking into that now. THis is a system that I use and I happen to notice this funky file (and another that we WERE able to remove by changing its mode). I'll take your theories to the admin (when I find him hehehe ). THanks for the tips.
|
|
| Viewing: Dev Shed Forums > Operating Systems > UNIX Help > No Mode, Zero File size File |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
 |
|
|
Del.icio.us
Digg
Google
Spurl
Blink
Furl
Simpy
Y! MyWeb
Linear Mode
