Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
L
L
lssssssssssl2022-03-17 12:39:37
linux
lssssssssssl, 2022-03-17 12:39:37

What to look for on the server after hacking?

We lost access to the server via ssh, the user password was changed. The password has been reset. Purely visually, everything on the server is the same as before. What should you pay attention to if, purely theoretically, someone malicious was on the server and, perhaps, left something behind?
And could the password be reset by itself?
ubuntu server 20.04

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
K
ky0, 2022-03-17
@lsssssssssl

In such cases, it is better to reinstall the OS to hell, IMHO.

Report
R
Ruslan Fedoseev, 2022-03-18
@martin74ua

to replace the server

Similar questions
D
Denis Balandin2019-12-04 10:18:49
How do I replace the "Add to Cart" button for a specific brand? 2Reply
A
Anton Kurilov2017-08-08 15:38:07
How to move one flexbox? 3Reply
P
papabig2017-09-22 10:34:59
How do site copy scripts work? 2Reply
D
Danil2020-03-14 19:16:34
How to create custom macros for text in PHP? 7Reply
V
Vasiliy_M2018-01-17 10:24:07
Do I need to specify vendor_name/package_name when creating a package? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question