speedy
06-15-2007, 06:43 AM
A lot of times when servers get hacked, they use one or more of the programs we will cover here. We are going to disable them for anyone other then root (owner).
run these commands, one at a time:
#Disable C Compilers
-----command-----
chmod 700 /usr/bin/*++*
chmod 700 /usr/bin/*cc*
-----command-----
#Turn off commands that allow users to download or retrieve foreign files
-----command-----
chmod 750 /usr/bin/rcp
chmod 750 /usr/bin/wget
chmod 750 /usr/bin/links
chmod 700 /usr/bin/scp
-----command-----
#Lock down mounting and unmounting
-----command-----
chmod 4750 /bin/mount
chmod 4750 /bin/umount
-----command-----
You can also chmod to 000 if you want to completely disable them, just remember to chmod them back "on" if you want to use any of them.
run these commands, one at a time:
#Disable C Compilers
-----command-----
chmod 700 /usr/bin/*++*
chmod 700 /usr/bin/*cc*
-----command-----
#Turn off commands that allow users to download or retrieve foreign files
-----command-----
chmod 750 /usr/bin/rcp
chmod 750 /usr/bin/wget
chmod 750 /usr/bin/links
chmod 700 /usr/bin/scp
-----command-----
#Lock down mounting and unmounting
-----command-----
chmod 4750 /bin/mount
chmod 4750 /bin/umount
-----command-----
You can also chmod to 000 if you want to completely disable them, just remember to chmod them back "on" if you want to use any of them.