Linux Security: Mysterious Server Corruption- How to track it down with log files
Posted on 2013-06-14
I have had the following mysterious problem that has completely corrupted my godaddy server twice in the last two weeks.
Godaddy's tech support gave us this explanation:
"We reviewed the account as to why we couldn't connect via ssh after a reboot and we discovered that all of your files and directories in your server have been modified to 777 permissions. This basically broke you server entirely and this will require a re-provision of your server".
Do you have any advice about how to stop this happening in the future by doing some of the following:
a) Examining the existing log files
b) Raising the detail level of the log files
c) Using a server Telnet client other than PuTTY.exe
d) Some other strategy
We rent our own dedicated server from godaddy "Dedicated Hosting Economy Linux CentOS - i3" . We also pay a monthly fee for cPanel on top of that.