Monthly Archives: August 2010

Malware Detector – Maldet

It is quite a common view that your server eventually will be the target of unethical hackers. They will try their best to hack into your server, inject their codes, and get the right to brag among their buddies (pathetic). There so many ways on how they gain access to the server but usually thanks to any accounts that used old scripts that often open for exploits.

You might often heard these terms:
1) trojan
2) mysql injection
3) shell script
4) rootkit

and a few more which only hackers know the way to hack your server. Well, today i’ll try to introduce a recommended application to scan possible malware codes that have been injected to your server, MALDET.

Upon login into ssh, type:
wget http://www.rfxn.com/downloads/maldetect-current.tar.gz

Extract the file:
tar xfz maldetect-current.tar.gz

Opens the folder:
cd maldetect-*

and install:
./install.sh

That’s it. Next is to scan the suspected folders in your server. For example:
maldet -a /home/username/public_html

The option -a means to scan all files and folders inside. You also can type -h for the available options.

When it finished, the link to the report will looks like this:
maldet –report 050910-1534.21135

Copy and paste the exact line in your ssh. If there were any hits, it will show in the report. Use it accordingly.

Disclaimer: Don’t fully depends on the maldet for malware detection. Maldet can’t detect every kind of malware, so some time the best way is to go through every files and check its modified date or suspicious file name.

Multi-tasking Screen in CentOS

Have you ever experience the needs to multi-task in a single screen while the current SSH screen already occupied with the current task?

Ever experience a sudden internet outrage after spending almost 4 hours on cPanel installation via SSH? When you got your connection back, you’ll found out that you had to start the installation back from zero.

Worry no more. Apparently there is a great tool that can be installed in the server that can ease up your life. Presenting, Screen (yes, it is an obvious name). By using Screen, you can create multiple screens that suits your need in a single main screen. You are able to run it simultaneously at the same time and don’t have to worry if your internet sudden disconnect when you are connecting via SSH. You can continue your screens back when you are back online.

First of all, lets install the screen by typing:
yum install screen

You can start using screen by just typing:
screen

To list out all available screen:
screen -ls

Then it will looks like this:
root@server [/home/]# screen -ls
There are screens on:
23513.pts-1.server     (Detached)
18174.pts-2.server     (Detached)

To re-attach the screen:
screen -r screenname

To detach the screen:
screen -d

Then this message will appear:
[detached]

Alternatively, you can use keyboard shortcuts to manipulate the screen.

Use this if you want to create new screen:
CTRL + a + c

Use this if you want to view the next screen:
CTRL + a + n

Use this if you want to view previous screen:
CTRL + a + p

Use this if you want to detach the screen:
CTRL + a + d

Finally, to terminate the screen, just type:
exit

Then it will appear this:
[screen is terminating]

Have fun!