Consenso all'uso dei cookies

SITO1 -- SITO2 -- Forum2 -- CercaGlobale -- Informativa su Cookie e Privacy

Questo Forum1 è in sola lettura -- Usa il Forum2


Valutazione discussione:
  • 0 voto(i) - 0 media
  • 1
  • 2
  • 3
  • 4
  • 5
[ RISOLTO ] Allevamento
#1
Rainbow 
Salve, l'altro giorno ne feci vedere uno solo di sti zombi, ora un allevamento. Però ho fatto caso ad un cosa che avviando il pc ci mette più tempo prima di avviarsi per arrivare a login, se prima faceva tutto in circa 20 secondi ora ci mette circa un minuto. Ho installato anche comodo antivirus, ma sinceramente non credo che facci un granchè.

vedi allegato del monitor di sistema.


Allegati Anteprime
   
Don Basilio e passato per di qua, come sua abitudine. Non date a i cani da guardia carne cruda da mangiare, poi non sanno più quello che fanno. E si riempiono l'interiora di parassiti.
Cita messaggio
#2
@: per info

disistalli molti programmi ?

--------------------------------
Cita messaggio
#3
Ciao, veramente e raro sia installazioni, e a sua volta disistallazioni, molto ma molto raramente scaricare file dalla rete. Dopotutto vado con un HD di 18,6 gb di utilità.
Don Basilio e passato per di qua, come sua abitudine. Non date a i cani da guardia carne cruda da mangiare, poi non sanno più quello che fanno. E si riempiono l'interiora di parassiti.
Cita messaggio
#4
Huh
Da terminale dai ps -efa | grep defunct,posta il risultato

Cita messaggio
#5
Ciao Brunik, ho messo un nuovo allegato. Quello indicato dalla freccia e un i maiuscola o una linea di separazione perche i comandi sono due e ne va dato uno alla volta. Scusa per la precisazione altrimenti ho paura di far casino con il terminale.


Allegati Anteprime
   
Don Basilio e passato per di qua, come sua abitudine. Non date a i cani da guardia carne cruda da mangiare, poi non sanno più quello che fanno. E si riempiono l'interiora di parassiti.
Cita messaggio
#6
è una linea di separazione ... sopra la controbarra o controslash ... alla sx del tasto 1 e lo richiami tenendo premuto contemporaneamente il tasto shift (quello per il maiuscolo - la freccia che guarda verso su sopra il control)

P.S. il comando vero e proprio (pur non conoscendolo) è: ps -efa ... la seconda parte del comando | grep defunct è una specie di filtro ... in questo caso dal responso del comando primario ps -efa ti mostra solo le righe in cui compare la parola defunct.
Si usa per avere un output ristretto e mirato che metta in evidenza subito quello che si desidera vedere
Cita messaggio
#7
Questo e fresco fresco.


Allegati Anteprime
   
Don Basilio e passato per di qua, come sua abitudine. Non date a i cani da guardia carne cruda da mangiare, poi non sanno più quello che fanno. E si riempiono l'interiora di parassiti.
Cita messaggio
#8
E qui i comandi che mi sono stati suggeriti.

vedi allegato


Allegati Anteprime
   
Don Basilio e passato per di qua, come sua abitudine. Non date a i cani da guardia carne cruda da mangiare, poi non sanno più quello che fanno. E si riempiono l'interiora di parassiti.
Cita messaggio
#9
Per ultimo una scansione con Lynis
Codice:
kronos@rzy272yzr ~ $ sudo lynis --check-all -Q
[sudo] password for kronos:

[ Lynis 1.2.9 ]

################################################################################
Lynis comes with ABSOLUTELY NO WARRANTY. This is free software, and you are
welcome to redistribute it under the terms of the GNU General Public License.
See LICENSE file for details about using this software.

Copyright 2007-2009 - Michael Boelen, http://www.rootkit.nl/
################################################################################

[+] Initializing program
------------------------------------
  - Detecting OS...                                           [ DONE ]
  - Clearing log file (/var/log/lynis.log)...                 [ DONE ]

  ---------------------------------------------------
  Program version:           1.2.9
  Operating system:          Linux
  Operating system name:     Debian
  Operating system version:  wheezy/sid
  Kernel version:            3.2.0-23-generic
  Hardware platform:         i686
  Hostname:                  rzy272yzr
  Auditor:                   [Unknown]
  Profile:                   /etc/lynis/default.prf
  Log file:                  /var/log/lynis.log
  Report file:               /var/log/lynis-report.dat
  Report version:            1.0
  ---------------------------------------------------
  - Checking profile file (/etc/lynis/default.prf)...
  - Program update status...                                  [ UPDATE AVAILABLE ]

      ===============================================================================
        Notice: Lynis update available
          Current version : 129   Latest version : 130
          Please update to the latest version for new features, bug fixes, tests
          and baselines.
      ===============================================================================


[+] System Tools
------------------------------------
  - Scanning available tools...
  - Checking system binaries...
    - Checking /bin...                                        [ FOUND ]
    - Checking /sbin...                                       [ FOUND ]
    - Checking /usr/bin...                                    [ FOUND ]
    - Checking /usr/sbin...                                   [ FOUND ]
    - Checking /usr/local/bin...                              [ FOUND ]
    - Checking /usr/local/sbin...                             [ FOUND ]
    - Checking /usr/local/libexec...                          [ NOT FOUND ]
    - Checking /usr/libexec...                                [ NOT FOUND ]
    - Checking /usr/sfw/bin...                                [ NOT FOUND ]
    - Checking /usr/sfw/sbin...                               [ NOT FOUND ]
    - Checking /usr/sfw/libexec...                            [ NOT FOUND ]
    - Checking /opt/sfw/bin...                                [ NOT FOUND ]
    - Checking /opt/sfw/sbin...                               [ NOT FOUND ]
    - Checking /opt/sfw/libexec...                            [ NOT FOUND ]
    - Checking /usr/xpg4/bin...                               [ NOT FOUND ]
    - Checking /usr/css/bin...                                [ NOT FOUND ]
    - Checking /usr/ucb...                                    [ NOT FOUND ]

[+] Boot and services
------------------------------------
  - Checking boot loaders
    - Checking presence GRUB2...                              [ OK ]
    - Checking presence LILO...                               [ NOT FOUND ]
    - Checking presence YABOOT...                             [ NOT FOUND ]
  - Check services at startup (rc2.d)...                      [ DONE ]
        Result: found 22 services

[+] Kernel
------------------------------------
  - Checking default run level...                             [ RUNLEVEL 2 ]
  - Checking CPU support (NX/PAE)
      CPU does not seem to support PAE or No eXecute          [ NO ]
  - Checking kernel version                                   [ DONE ]
  - Checking kernel type                                      [ DONE ]
  - Checking loaded kernel modules                            [ DONE ]
      Found 76 active modules
  - Checking Linux kernel configuration file...               [ FOUND ]
  - Checking for available kernel update...                   [ OK ]
  - Checking core dumps configuration...                      [ ENABLED ]
    - Checking setuid core dumps configuration...             [ DISABLED ]

[+] Memory and processes
------------------------------------
  - Checking /proc/meminfo...                                 [ FOUND ]
  - Searching for dead/zombie processes...                    [ OK ]
  - Searching for IO waiting processes...                     [ OK ]

[+] Users, Groups and Authentication
------------------------------------
  - Search administrator accounts...                          [ OK ]
  - Checking consistency of group files (grpck)...            [ OK ]
  - Checking non unique group ID's...                         [ OK ]
  - Checking non unique group names...                        [ OK ]
  - Checking password file consistency...                     [ OK ]
  - Query system users (non daemons)...                       [ DONE ]
  - Checking NIS+ authentication support                      [ NOT ENABLED ]
  - Checking NIS authentication support                       [ NOT ENABLED ]
  - Checking sudoers file                                     [ FOUND ]
    - Check sudoers file permissions                          [ OK ]
  - Checking PAM password strength tools                      [ SUGGESTION ]
  - Checking PAM configuration files (pam.conf)               [ FOUND ]
  - Checking PAM configuration files (pam.d)                  [ FOUND ]
  - Checking PAM modules                                      [ FOUND ]
  - Checking LDAP module in PAM                               [ NOT FOUND ]
  - Checking accounts without expire date                     [ SUGGESTION ]
  - Checking user password aging                              [ DISABLED ]
  - Determining default umask
    - Checking umask (/etc/profile)                           [ SUGGESTION ]
    - Checking umask (/etc/login.defs)                        [ SUGGESTION ]
    - Checking umask (/etc/init.d/rc)                         [ SUGGESTION ]
  - Checking LDAP authentication support                      [ NOT ENABLED ]

[+] Shells
------------------------------------
  - Checking shells from /etc/shells...
    Result: found 4 shells (valid shells: 4).

[+] File systems
------------------------------------
  - Checking mount points
    - Checking /home mount point...                           [ OK ]
    - Checking /tmp mount point...                            [ SUGGESTION ]
  - Checking for old files in /tmp...                         [ OK ]
  - Checking /tmp sticky bit...                               [ OK ]
  - ACL support root file system...                           [ ENABLED ]
  - Checking Locate database...                               [ FOUND ]

[+] Storage
------------------------------------
  - Checking usb-storage driver (modprobe config)...          [ NOT DISABLED ]
  - Checking firewire ohci driver (modprobe config)...        [ NOT DISABLED ]
  - Check running NFS daemon...                               [ NOT FOUND ]

[+] Software: name services
------------------------------------
  - Checking search domains...                                [ NOT FOUND ]
cat: /etc/resolv.conf: File o directory non esistente
  - Checking /etc/resolv.conf options...                      [ NOT FOUND ]
  - Searching DNS domain name...                              [ UNKNOWN ]
  - Checking nscd status...                                   [ NOT FOUND ]
  - Checking BIND status...                                   [ NOT FOUND ]
  - Checking PowerDNS status...                               [ NOT FOUND ]
  - Checking ypbind status...                                 [ NOT FOUND ]

[+] Ports and packages
------------------------------------
  - Searching package managers...
    - Searching dpkg package manager...                       [ FOUND ]
      - Querying package manager...
  - Checking security repository in sources.list file...      [ OK ]

[+] Networking
------------------------------------
  - Checking configured nameservers...
    - Minimal of 2 responsive nameservers...                  [ WARNING ]
  - Checking default gateway...                               [ DONE ]
  - Checking promiscuous interfaces...                        [ OK ]
  - Checking waiting connections...                           [ OK ]

[+] Printers and Spools
------------------------------------
  - Checking cups daemon...                                   [ RUNNING ]
  - Checking cups configuration file...                       [ OK ]
  - Checking cups addresses/sockets...                        [ FOUND ]

[+] Software: e-mail and messaging
------------------------------------
  - Checking Exim status...                                   [ NOT FOUND ]
  - Checking Postfix status...                                [ NOT FOUND ]
  - Checking Qmail smtpd status...                            [ NOT FOUND ]

[+] Software: firewalls
------------------------------------
  - Checking iptables kernel module...                        [ FOUND ]
    - Checking for empty ruleset...                           [ WARNING ]
    - Checking for unused rules...                            [ OK ]
  - Checking pf configuration...                              [ NOT FOUND ]
  - Checking host based firewall                              [ NOT ACTIVE ]

[+] Software: webserver
------------------------------------
  - Checking Apache...                                        [ NOT FOUND ]
  - Searching nginx process...                                [ NOT FOUND ]

[+] SSH Support
------------------------------------
  - Checking running SSH daemon...                            [ NOT FOUND ]

[+] SNMP Support
------------------------------------
  - Checking running SNMP daemon...                           [ NOT FOUND ]

[+] Databases
------------------------------------
  - MySQL process status...                                   [ NOT FOUND ]
  - PostgreSQL processes status...                            [ NOT FOUND ]
  - Oracle processes status...                                [ NOT FOUND ]

[+] LDAP Services
------------------------------------
  - Checking OpenLDAP instance...                             [ NOT FOUND ]

[+] Software: PHP
------------------------------------
  - Checking PHP...                                           [ NOT FOUND ]

[+] Squid Support
------------------------------------
  - Checking running Squid daemon...                          [ NOT FOUND ]

[+] Logging and files
------------------------------------
  - Checking for a running syslog daemon...                   [ OK ]
    - Checking Syslog-NG status                               [ NOT FOUND ]
    - Checking Metalog status                                 [ NOT FOUND ]
    - Checking RSyslog status                                 [ FOUND ]
    - Checking RFC 3195 daemon status                         [ NOT FOUND ]
  - Checking minilogd instances                               [ NONE ]
  - Checking logrotate presence                               [ OK ]
  - Checking log directories (static list)                    [ DONE ]
lsof: WARNING: can't stat() fuse.gvfs-fuse-daemon file system /home/kronos/.gvfs
      Output information may be incomplete.
  - Checking open log files                                   [ DONE ]
lsof: WARNING: can't stat() fuse.gvfs-fuse-daemon file system /home/kronos/.gvfs
      Output information may be incomplete.
  - Checking deleted files in use                             [ FILES FOUND ]

[+] Insecure services
------------------------------------
  - Checking inetd status...                                  [ NOT ACTIVE ]

[+] Banners and identification
------------------------------------
  - Checking banners...
  - /etc/motd...                                              [ FOUND ]
  - /etc/issue...                                             [ FOUND ]
    - /etc/issue contents...                                  [ WEAK ]
  - /etc/issue.net...                                         [ FOUND ]
    - /etc/issue.net contents...                              [ WEAK ]

[+] Scheduled tasks
------------------------------------
  - Checking crontab/cronjob                                  [ DONE ]
  - Checking atd status                                       [ NOT RUNNING ]

[+] Accounting
------------------------------------
  - Checking accounting information...                        [ NOT FOUND ]
  - Checking auditd                                           [ NOT FOUND ]

[+] Time and Synchronization
------------------------------------
  - Checking running NTP daemon...                            [ NOT FOUND ]
  - Checking NTP client in crontab file...                    [ NOT FOUND ]
  - Checking NTP client in cron.d files...                    [ NOT FOUND ]
  - Checking for a running NTP daemon or client...            [ WARNING ]
  - Checking NTP daemon...                                    [ NOT FOUND ]

[+] Cryptography
------------------------------------
  - Checking SSL certificate expiration...                    [ OK ]

[+] Virtualization
------------------------------------

[+] Security frameworks
------------------------------------
  - Checking presence AppArmor                                [ NOT FOUND ]
  - Checking presence SELinux                                 [ NOT FOUND ]
  - Checking presence grsecurity                              [ NOT FOUND ]

[+] Software: file integrity
------------------------------------
  - Checking AFICK...                                         [ NOT FOUND ]
  - Checking AIDE...                                          [ NOT FOUND ]
  - Checking Osiris...                                        [ NOT FOUND ]
  - Checking Samhain...                                       [ NOT FOUND ]
  - Checking Tripwire...                                      [ NOT FOUND ]
  - Checking presence integrity tool...                       [ NOT FOUND ]

[+] Software: Malware scanners
------------------------------------
  - Checking chkrootkit...                                    [ NOT FOUND ]
  - Checking Rootkit Hunter...                                [ NOT FOUND ]
  - Checking ClamAV scanner...                                [ NOT FOUND ]
  - Checking ClamAV daemon...                                 [ NOT FOUND ]

[+] System Tools
------------------------------------
  - Starting file permissions check...
    /etc/lilo.conf                                            [ NOT FOUND ]
    /root/.ssh                                                [ NOT FOUND ]

[+] Home directories
------------------------------------
  - Checking shell history files...                           [ OK ]

[+] Kernel Hardening
------------------------------------
  - Comparing sysctl key pairs with scan profile...
      - kernel.core_uses_pid (1)                              [ DIFFERENT ]
      - kernel.ctrl-alt-del (0)                               [ OK ]
      - kernel.sysrq (0)                                      [ DIFFERENT ]
      - net.ipv4.conf.all.accept_redirects (0)                [ DIFFERENT ]
      - net.ipv4.conf.all.accept_source_route (0)             [ OK ]
      - net.ipv4.conf.all.bootp_relay (0)                     [ OK ]
      - net.ipv4.conf.all.forwarding (0)                      [ OK ]
      - net.ipv4.conf.all.log_martians (1)                    [ DIFFERENT ]
      - net.ipv4.conf.all.mc_forwarding (0)                   [ OK ]
      - net.ipv4.conf.all.proxy_arp (0)                       [ OK ]
      - net.ipv4.conf.all.rp_filter (1)                       [ OK ]
      - net.ipv4.conf.all.send_redirects (0)                  [ DIFFERENT ]
      - net.ipv4.conf.default.accept_redirects (0)            [ DIFFERENT ]
      - net.ipv4.conf.default.accept_source_route (0)         [ DIFFERENT ]
      - net.ipv4.conf.default.log_martians (1)                [ DIFFERENT ]
      - net.ipv4.icmp_echo_ignore_broadcasts (1)              [ OK ]
      - net.ipv4.icmp_ignore_bogus_error_responses (1)        [ OK ]
      - net.ipv4.tcp_syncookies (1)                           [ OK ]
      - net.ipv4.tcp_timestamps (0)                           [ DIFFERENT ]
      - net.ipv6.conf.all.accept_redirects (0)                [ DIFFERENT ]
      - net.ipv6.conf.all.accept_source_route (0)             [ OK ]
      - net.ipv6.conf.default.accept_redirects (0)            [ DIFFERENT ]
      - net.ipv6.conf.default.accept_source_route (0)         [ OK ]

[+] Hardening
------------------------------------
    - Installed compiler(s)...                                [ FOUND ]
    - Installed malware scanner...                            [ NOT FOUND ]

================================================================================

  -[ Lynis 1.2.9 Results ]-

  Tests performed: 134
  Warnings:
  ----------------------------
   - [03:35:01] Warning: Couldn't find 2 responsive nameservers [test:NETW-2705] [impact:L]
   - [03:35:04] Warning: iptables module(s) loaded, but no rules active [test:FIRE-4512] [impact:L]
   - [03:35:22] Warning: No running NTP daemon or available client found [test:TIME-3104] [impact:M]

  Suggestions:
  ----------------------------
   - [03:32:58] Suggestion: update to the latest stable release.
   - [03:33:46] Suggestion: Install a PAM module for password strength testing like pam_cracklib or pam_passwdqc [test:AUTH-9262]
   - [03:33:47] Suggestion: When possible set expire dates for all password protected accounts [test:AUTH-9282]
   - [03:33:48] Suggestion: Configure password aging limits to enforce password changing on a regular base [test:AUTH-9286]
   - [03:33:48] Suggestion: Default umask in /etc/profile could be more strict like 027 [test:AUTH-9328]
   - [03:33:48] Suggestion: Default umask in /etc/login.defs could be more strict like 027 [test:AUTH-9328]
   - [03:33:49] Suggestion: Default umask in /etc/init.d/rc could be more strict like 027 [test:AUTH-9328]
   - [03:33:50] Suggestion: To decrease the impact of a full /tmp file system, place /tmp on a separated partition [test:FILE-6310]
   - [03:33:51] Suggestion: Disable drivers like USB storage when not used, to prevent unauthorized storage or data theft [test:STRG-1840]
   - [03:33:52] Suggestion: Disable drivers like firewire storage when not used, to prevent unauthorized storage or data theft [test:STRG-1846]
   - [03:35:01] Suggestion: Check your resolv.conf file and fill in a backup nameserver if possible [test:NETW-2705]
   - [03:35:04] Suggestion: Disable iptables kernel module if not used or make sure rules are being used [test:FIRE-4512]
   - [03:35:04] Suggestion: Configure a firewall/packet filter to filter incoming and outgoing traffic [test:FIRE-4590]
   - [03:35:20] Suggestion: Add legal banner to /etc/issue, to warn unauthorized users [test:BANN-7126]
   - [03:35:20] Suggestion: Add legal banner to /etc/issue.net, to warn unauthorized users [test:BANN-7130]
   - [03:35:22] Suggestion: Enable auditd to collect audit information [test:ACCT-9628]
   - [03:35:22] Suggestion: Check if any NTP daemon is running or a NTP client gets executed daily, to prevent big time differences and avoid problems with services like kerberos, authentication or logging differences. [test:TIME-3104]
   - [03:35:33] Suggestion: Harden the system by removing unneeded compilers. This can decrease the chance of customized trojans, backdoors and rootkits to be compiled and installed [test:HRDN-7220]
   - [03:35:33] Suggestion: Harden the system by installing one or malware scanners to perform periodic file system scans [test:HRDN-7230]
================================================================================
  Files:
  - Test and debug information      : /var/log/lynis.log
  - Report data                     : /var/log/lynis-report.dat
================================================================================
  Notice: Lynis update available
  Current version : 129    Latest version : 130
================================================================================
  Hardening index : [40]     [########            ]
================================================================================
  Lynis 1.2.9
  Copyright 2007-2009 - Michael Boelen, http://www.rootkit.nl/
================================================================================
-------------------- FINE ------------------------:huh:


kronos@rzy272yzr ~ $
Don Basilio e passato per di qua, come sua abitudine. Non date a i cani da guardia carne cruda da mangiare, poi non sanno più quello che fanno. E si riempiono l'interiora di parassiti.
Cita messaggio
#10
Quando ti capita,prendi nota del pid del processo e prova a killare
Esempio ultimo caso

sudo kill -9 3137

sudo kill -9 4361

Cita messaggio


Vai al forum:


Utenti che stanno guardando questa discussione: 1 Ospite(i)