Results 1 to 2 of 2
Hi.
Using Fedora Core, I've just noticed that my /var/log/ directory contents dissapeared. If I type 'last' I get this message:
-------
last: /var/log/wtmp: No such file or directory
Perhaps ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
- 01-04-2008 #1Just Joined!
- Join Date
- Dec 2006
- Posts
- 11
My /var/log/ directory contents dissapeared!
Hi.
Using Fedora Core, I've just noticed that my /var/log/ directory contents dissapeared. If I type 'last' I get this message:
-------
last: /var/log/wtmp: No such file or directory
Perhaps this file was removed by the operator to prevent logging last info.
--------
and I've got these contents when 'll' at '/var/log':
------
total 252
-rw-r----- 1 mysql mysql 240568 Jan 4 09:48 mysqld.log
-rw-r--r-- 1 root root 13758 Jan 4 04:02 rpmpkgs
drwx------ 2 root root 1024 Dec 18 2004 samba
------
This server is exposed to Internet, and '/var/log' directory contained lot of files some days ago
Any suggestion? Thank you very much.
- 01-05-2008 #2Linux Guru
- Join Date
- Jun 2004
- Location
- The Keystone State
- Posts
- 2,629
Hmmm... files yesterday but gone today.
I find it alarming that files in the log diretory disappear.
Compromised comes to mind.
Start digging to find out. If the server isn't really needed for client access remove it from the Internet.
If you have the resources place it behind a firewall and log all connection.
Might give you a tip on what it/they is trying to do.
Reply With Quote 
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
