Richard Davis
asked on
Strange file in my cgi-bin
I have never seen this file in my cgi-bin directory before and since nobody is allowed access to this server, I can't help but wonder the worst.
Has anyone ever seen a file called 'edit.core' before? This file is 831488 bytes in size and appears to be either compiled code or something along those lines.
I don't know if it belongs to some other software I have installed in my server, but it's definitely nothing I directly recall having put there myself, yet it's user:group is root:wheel.
Any ideas will be extremely appreciated.
Thanks
Has anyone ever seen a file called 'edit.core' before? This file is 831488 bytes in size and appears to be either compiled code or something along those lines.
I don't know if it belongs to some other software I have installed in my server, but it's definitely nothing I directly recall having put there myself, yet it's user:group is root:wheel.
Any ideas will be extremely appreciated.
Thanks
I can`t say I know much about this, but from what I recall , this should be ok. Thease files are needed for linux managment, and if anyone knows more, just tell the guy. I just wanted to calm down
ASKER
Thanks for the response, guruyaya.
Well, I have FreeBSD, but it probably is unix in general, perhaps. The only confusing part about this though is that I have two servers, both FreeBSD 5.4, both running Apache2.x, MySQL 4, but only one of them has this file in their cgi-bin directory. So, this is what raised my suspiscions about it possibly being either a hack or something else to provide remote access to my server.
Well, I have FreeBSD, but it probably is unix in general, perhaps. The only confusing part about this though is that I have two servers, both FreeBSD 5.4, both running Apache2.x, MySQL 4, but only one of them has this file in their cgi-bin directory. So, this is what raised my suspiscions about it possibly being either a hack or something else to provide remote access to my server.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Outstanding suggestion!
I ran that file command and it came back with this;
cgi-bin/edit.core: ELF 32-bit LSB core file Intel 80386, version 1 (FreeBSD), FreeBSD-style, from 'edit'
does that mean that I was using the edit command when this took place? I use that command for just about everything except when I need to use vi for chpass stuff.
I ran that file command and it came back with this;
cgi-bin/edit.core: ELF 32-bit LSB core file Intel 80386, version 1 (FreeBSD), FreeBSD-style, from 'edit'
does that mean that I was using the edit command when this took place? I use that command for just about everything except when I need to use vi for chpass stuff.
ASKER
So, I should safely be able to delete this file then, correct?
Thanks a million for that response, also. :)
Thanks a million for that response, also. :)
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for your response also patspam.
Although I have been running these servers for a few years now, it seems a never ending learning curve. Always something new coming up to twist your brain around for a bit.
Well, since you completed the answer to my final secondary question, I'm going to split the points between you and sleep_furiously since his initial response pretty much was the needed answer to the brunt of my worries. But thank you very much for partaking in this solution though. :)
Take care for now guys/gals.
~Adrian
Although I have been running these servers for a few years now, it seems a never ending learning curve. Always something new coming up to twist your brain around for a bit.
Well, since you completed the answer to my final secondary question, I'm going to split the points between you and sleep_furiously since his initial response pretty much was the needed answer to the brunt of my worries. But thank you very much for partaking in this solution though. :)
Take care for now guys/gals.
~Adrian