I keep getting alerts from IFD on a specific site, I've already used Wordfence and actually purchased a License for cPanels premium Wordpress management solution that is suppose to help users secure sites better.
Neither is reporting any issues with the site, but I do believe the IFD alert to be accurate. The site its self doesn't show signs of being compromised on the front end. But naturally that doesn't mean much.
So how on earth would one recommend tracking this down as I get about 10 alerts a day
, it is only this specific site.
Time: Sun Sep 12 21:01:17 2021 -0700
File: /tmp/systemd-private-2f987fdd375f437992f1fe75de0dc7d6-ea-php73-php-fpm.service-MK8fRi/tmp/alfacgiapi/getheader.alfa
Reason: Script, starts with #!
Owner: SITEUSER:SITEUSER (1010:1011)
Action: No action taken
Neither is reporting any issues with the site, but I do believe the IFD alert to be accurate. The site its self doesn't show signs of being compromised on the front end. But naturally that doesn't mean much.
So how on earth would one recommend tracking this down as I get about 10 alerts a day
Time: Sun Sep 12 21:01:17 2021 -0700
File: /tmp/systemd-private-2f987fdd375f437992f1fe75de0dc7d6-ea-php73-php-fpm.service-MK8fRi/tmp/alfacgiapi/getheader.alfa
Reason: Script, starts with #!
Owner: SITEUSER:SITEUSER (1010:1011)
Action: No action taken