Search results

  1. A

    secondary super user

    thanks, but the point is if i add one user abc, password 1234 and use usermod -a -G sudo abc, but user abc don't know root password, he can't have root priviliedges, my goal is to let user abc to have all root priviledges without knowing root password
  2. A

    secondary super user

    no, I want second root, not through sudo, i want another root, for example xyz with uid=0, group id=0, root group
  3. A

    which line of configuration got changed

    I have read the book, but there is no command for that, anyone knows?
  4. A

    secondary super user

    we already have root account, we want to create another root user , by using user add command, it will create a normal user, then we change group to root, is there a simple step we can directly create another super user by using user add? ,
  5. A

    which line of configuration got changed

    we noticed that one config file in /etc/ got changed, but this configuration files got more than 20 lines, we don't know which portion is changed, and we don't have the old file to do comparision, in red hat linux, do we have some command to check file change history with detail? thanks
  6. A

    prev value of lsattr

    we noticed that lsattr of sshd_conf is changed, can we find out what's the previous value of lsattr of sshd_conf ? how to check the sshd_conf file attribute change history? thanks
  7. A

    display error

    I now use . ~/.bashrc, it executes, but error still the same, i use ctrl+D, now it is in "$" prompt , but error still the same, any suggestion
  8. A

    recover deleted log

    our secure log from July.13--July.20 is deleted, the rest secure logs are fine in the /var/log, may i know the steps to recover it?
  9. A

    rootsh, bash_history and secure log

    may i know the difference between rootsh, bash_history of root account and secure log? currently i have a suspect file B, which is created by root, I want to know how this file B is generated, can I check rootsh? thanks
  10. A

    display error

    I'm in /var/log directory, so should i type: cd root, then . / bashrc or directly type bashrc?
  11. A

    display error

    if i type clear , it shows in the screen like
  12. A

    display error

    in the console, i type cat /var/log/secure-20180516.gz, it display a lot of unreadable character on the screen, after that, the new command i type in all display wrongly, also the hostname appears human not readble character, any way to recover. thanks
  13. A

    list of files changed from certain date

    find command can't list newly created files, but changed files can, so how to find newly created files (say the last ten days)
  14. A

    deleted files by account

    Hi, I checked the link, it didn't mention how to check deleted files by user, i trt -mtime 10, to check modified files within 10 days, but it is not deleted file ? pls respond, thanks
  15. A

    tracing root cause of new malicious user created

    I run red hat linux for friends use, it is a ftp server with port 21,22,443, 80 open,I only have few accounts, last sunday, I find a new account mbit is created, then antivirus check and found a lot of malware, I didn't download movie torrent, in etc/passwd, account mbit is there. correct one...
  16. A

    tracing root cause of new malicious user created

    Thanks for your reply, as my thread is asking the root cause, your answer is more on mitigation part, so I'm investigation how root is comprimised and steps we need to check in order to find root cause, are you able to share idea on this part?
  17. A

    deleted files by account

    so if someone is using Ubuntu, can this be done?
  18. A

    command history of other account with time

    I don't have agreement with red hat, but i think command and methodology should be the same for any kinds of liunix, so if someone is using Ubntu, he/she can still share the idea. the solution will be more or less similar
  19. A

    deleted files by account

    I want to list all the binary execuatable and document files deleted by account mter for the past month in red hat linux, can this be done? thanks
Top