Group permissions changed

• Previous message: dave kleiman: "RE: Password "security" - was"Passwords with Lan Manager (LM) under Windows" and "Whitespace in passwords""
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 28 Sep 2005 18:33:28 -0000
To: pen-test@securityfocus.com

---
Fairly recently I noticed my ftp client wouldn't list files in certain directories on my server anymore - so I ssh'd in (it's dedicated), and did a ls -aFl on the files, hoping to see what the problem was - here are a few of the results:
-rw-r--r-- 1 larry 503 371 2005-02-25 08:36 head.php
-rw-r--r-- 1 larry 48 873 2005-09-09 03:23 foot.php
I never set the group ids to 503 or 48, so I checked just to make sure - and no groups with those ids even exist. Is there an exploit/tool that causes this, and should I be worried?
I checked the processes running, and everything seems to be OK - same with any processes connecting to the internet.
I'd appreciate any comments
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 
Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

• Previous message: dave kleiman: "RE: Password "security" - was"Passwords with Lan Manager (LM) under Windows" and "Whitespace in passwords""
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Where is the TCL extension list ? ... And i was really shocked how worse the web sites about tcl have became. ... If you're worried that nobody supports it, then have a look at ActiveState who provide support, and other companies that provide consultancy and training. ... If, instead, your worries are not technical, but are based on the appearance or content of the website, well... ... The Tcl developer exchange website was recently overhauled. ... (comp.lang.tcl) Re: Exchange Server Forwarding to outside SMTP ... No worries - it's really pretty simple to set up. ... > own mail server in as a secondary MX record, ... > KenH wrote: ... > the> company hosting our website also hosts our external email. ... (microsoft.public.exchange2000.admin) Re: Serial communication capture ... However, it worries me not. ... OpenBSD here also for our border router, SIP router, and ftp server. ... Re DoS attacks: my servers are coloco'ed on a phat pipe ), ... (comp.arch.embedded) Re: Group permissions changed ... > I posted this before on the security basics, but haven't recieved a response, and it worries me a bit, so I'm sending this to a few other groups in hopes that someone will have an idea about it. ... 503 and 48 has rights only no need to worry. ... (Focus-Linux) Re: Classic "Thrust" for the GBA ... Heh. ... No worries - that WAS my first posting to this group. ... Yep - I found their website. ... (uk.games.video.misc)