The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

[hackcheck] apachelinux has a uid 0 account

Discussion in 'EasyApache' started by maaking, May 15, 2007.

  1. maaking

    maaking Member

    Joined:
    May 28, 2004
    Messages:
    15
    Likes Received:
    0
    Trophy Points:
    1
    hello,

    i got this message from cpanel:

    IMPORTANT: Do not ignore this email.
    This message is to inform you that the account apachelinux has user id 0 (root privs).
    This could mean that your system was compromised (OwN3D). To be safe you should
    verify that your system has not been compromised.

    what does it mean?

    regards
     
  2. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,446
    Likes Received:
    195
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Do you have an account named apachelinux? Does he have shell access you gave the account?

    If not, you might do best to have a security expert inspect your server.
     
  3. IberHosting

    IberHosting Well-Known Member

    Joined:
    Jun 1, 2005
    Messages:
    124
    Likes Received:
    0
    Trophy Points:
    16
    For me, looks like his server has been rooted and who hacked it has created an username called apachelinux with uid 0, so he can have full root permissions, and the user doenst look very suspicious. I suggest you, if you dont have the proper knowledge, hire a management company to look into the issue.
     

Share This Page