basara55
asked on
Scan for malicious code on server
Hi ,one of the users on our server is sending spam from our server thru php or cgi script.
Because in our log it only shows that apache has sent an email.
How can I find out which user is sending it or is there some programs or scripts that will allow me to scan for malicious mail sending scirpts?
Thanks
Because in our log it only shows that apache has sent an email.
How can I find out which user is sending it or is there some programs or scripts that will allow me to scan for malicious mail sending scirpts?
Thanks
ASKER
Well yes thats the problem I am having , How can I find out there is trizillion scripts and users on the server.
what server side scripting language are avilable on the server?
ASKER
php , jsp , cgi (perl)
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
The apache logfile in /var/log will show you which user accessed what by their ip addresses.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
> This question has been classified as abandoned because there are no comments in the last 21 days.
lol, last post from May 2004
BTW I think my answer provided a usable solution....
lol, last post from May 2004
BTW I think my answer provided a usable solution....
>>lol, last post from May 2004
Well... it is at least 2004 :)) Not older :)
Well... it is at least 2004 :)) Not older :)
> BTW I think my answer provided a usable solution....
so I do ...
so I do ...
then check the log for which ip is requesting this folder
?