Check if anyone is hacking your linux


Being “hacked” is something that most computer users and network administrators fear. It can mean losing private data that the hacker can use to steal your identity, or the hacker using your computer as a conduit for his own illegal activities. While Linux users can usually keep their systems safe from being compromised by installing software only from sources they trust, one backdoor that Linux users have a harder time preventing hackers from using is “SSHing” into their computer. Luckily, there is an easy way to see if anyone has been trying to hack your Linux machine this way.

 Instructions
    • Open a terminal emulator on your system. Click the main menu (in the upper left-hand corner if you use GNOME, lower left if you use KDE), then click on the “Terminal” icon inside the “Accessories” sub-menu if you use GNOME or the “Utilities” sub-menu if you use KDE.

    • Type “cd /var/log” into the terminal window. This will bring you to the folder in which Linux stores records of failed attempts to log into your computer.

    • Type “grep sshd /var/log/auth.log | less” into the terminal. This command will display the dates and times when sometime tried to remotely log into your computer over the Internet through SSH. If these are times in which you were not trying to log into your own computer, or times in which an authorized user was trying to access her own accounts, then it means that someone has been trying to hack your Linux machine.

About pacesettergraam

A good and realistic person

Posted on April 24, 2012, in linux and tagged , . Bookmark the permalink. Leave a comment.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: