So the server was compromised and has a rootkit on it.
Almost all services are shut down, except SSH so I can go in and backup all of the accounts, db's and Cpanel settings.
Here is the problem - cpbackup is not working.
It runs, I get
tar: Removing leading `/' from member names
several times, and then it is done.
In the backup/cpbackup/daily directory are 2 other folders. files and dirs. And thats it.
(I updated to the latest CURRENT and the line in cpbackup is correct as has been noted it should be in another thread.)
Also noted in another thread is the fact that the that tar line happens and it doesnt matter.
In any event, I now have a 12 hour window to get the backup working so I can backup all accounts to a seperate drive on the box, and reinstall the OS.
Anyone have any thoughts or suggestions?
I am at near the end of my rope.
I have searched the forums and the web with little concrete information on what to do.
I would prefer to use cpbackup to make restoring all accounts and settings after the OS install much more pleasant.
Any and all input appreciated.