Author Topic: Command Line (often faked in exploits):  (Read 13898 times)

0 Members and 1 Guest are viewing this topic.

Offline
*
Command Line (often faked in exploits):
« on: October 19, 2015, 01:50:24 AM »
why error :
Command Line (often faked in exploits):

/usr/sbin/mysqld --basedir=/usr --datadir=/var/lib/mysql --plugin-dir=/usr/lib64/mysql/plugin --user=mysql --log-error=/var/lib/mysql/xxxx.xxxx.err.com.err --pid-file=/var/lib/mysql/xxxx.xxxx.com.pid --wsrep_start_position=00000000-0000-0000-0000-000000000000:-1

regular_text: /dev/null
regular_text: /var/lib/mysql/xxxx.xxxx.err
regular_text: /var/lib/mysql/xxxx.xxxx.com.err
regular_text: /var/lib/mysql/ibdata1
regular_text: /tmp/ibOrSrco (deleted)
regular_text: /tmp/ibmSAwg0 (deleted)
regular_text: /tmp/ib2SrBkC (deleted)
regular_text: /tmp/ib2cdVtQ (deleted)
regular_text: /var/lib/mysql/ib_logfile0

Offline
*
Re: Command Line (often faked in exploits):
« Reply #1 on: October 19, 2015, 05:06:42 AM »
and this notifications is where ?
AntiDDoS Protection (web + mail)
http://centos-webpanel.com/website-ddos-protection-proxy

Join our Development Team and get paid !
http://centos-webpanel.com/develope-modules-for-cwp


Services Monitoring & RBL Monitoring
http://centos-webpanel.com/services-monitor


Do you need Fast and FREE Support included for your CWP linux server?
http://centos-webpanel.com/noc-partner-list
Installation Instructions
http://centos-webpanel.com/installation-instructions
Get Fast Support Here
http://centos-webpanel.com/support-services

Offline
*
Re: Command Line (often faked in exploits):
« Reply #2 on: October 20, 2015, 02:46:13 AM »
The notification sent in my email report

Offline
*
Re: Command Line (often faked in exploits):
« Reply #3 on: October 20, 2015, 05:44:24 AM »
you should check with your system admin if that is a valid mysql process and if it is then you can whitelist it in
/etc/csf/csf.pignore
AntiDDoS Protection (web + mail)
http://centos-webpanel.com/website-ddos-protection-proxy

Join our Development Team and get paid !
http://centos-webpanel.com/develope-modules-for-cwp


Services Monitoring & RBL Monitoring
http://centos-webpanel.com/services-monitor


Do you need Fast and FREE Support included for your CWP linux server?
http://centos-webpanel.com/noc-partner-list
Installation Instructions
http://centos-webpanel.com/installation-instructions
Get Fast Support Here
http://centos-webpanel.com/support-services

Offline
*
Re: Command Line (often faked in exploits):
« Reply #4 on: October 23, 2015, 03:01:15 AM »
I have to check the directory / usr / sbin / mysqld but not in /etc/csf/csf.pignore
if I could ask for a description of the details because I am still a newbie, please help thanks before

Offline
*****
Re: Command Line (often faked in exploits):
« Reply #5 on: November 10, 2015, 07:30:31 AM »
Hello.

He is meant you should the line /usr/sbin/mysqld in your /etc/csf.pignore .
Also can you write here full message?
You can ask me to solve any problem with your server for some money in pm  ;)
Services Monitoring & RBL Monitoring
http://centos-webpanel.com/services-monitor
Join our Development Team and get paid !
http://centos-webpanel.com/develope-modules-for-cwp

Installation Instructions
http://centos-webpanel.com/installation-instructions
Get Fast Support Here
http://centos-webpanel.com/support-services