Mailinglist Archive: opensuse-security (220 mails)

< Previous Next >
Re: [suse-security] Intrusion
  • From: MALDENER.de@xxxxxxxxxxx (Michael Maldener)
  • Date: Wed, 26 Nov 2003 13:55:00 +0100
  • Message-id: <200311261355.00505.MALDENER.de@xxxxxxxxxxx>
Dear Linuxfriends,
Am Montag, 24. November 2003 17:42 schrieb Dieter Kirchner:
> U might use "lsattr / |less" first, look for files with flag "a u i" set
> (these are 99% infected).
I studied man chattr:
#When a file with the `u' attribute set is deleted, its contents are saved.
But where are they saved?
#This allows the user to ask for its undeletion.
Where should I ask? ;-)

chattr is for ext2
I use ext3, the file protected with u can be deleted.
Does chattr work only with ext2, it should work with ext3?
Or is nor still implemented?
Thank you ...
--
# MfG Michael Maldener + Das beste Linux ist die Pluralitaet aller Linuxica ;)

< Previous Next >