Linux

chkrootkit: false positive on port 465

On my Debian Etch server I’ve got Zimbra Open Source Edition mail solution installed and when I use chkrootkit to scan for rootkits it reports the following Checking `bindshell’… INFECTED (PORTS: 465) After a quick research I realized that this port 465 is SMTP over SSL on a Zimbra installation. Further investigation reveals that port […]

Read More
Security

Script to unmount Busy Devices

First the script tries to umount the drive normally. If that fails, it tries to restart famd which is the most common problem. If that fails it tries to restart xinetd. If that fails it uses the command fuser -ki which asks you if you want to kill each process that’s using that folder. Be […]

Read More