tic67

Active Member
May 8, 2002
29
0
301
I've just been sent the following message from my system:

IMPORTANT: Do not ignore this email.
This message is to inform you that the rpm
package fileutils did not match the expected checksum. This could mean that
your system was compromised (OwN3D). The offending files have been removed
and replaced with the OS default. To be safe you should verify that your
system has not be compromised.


Modified Files:
.......T c /etc/DIR_COLORS
.......T c /etc/profile.d/colorls.csh
.......T c /etc/profile.d/colorls.sh

Is there anything I can do to check what this means?.

Thx,

John
 

Tom Pyles

Well-Known Member
Apr 26, 2002
254
0
316
I too am getting these e-mails...not sure why it started all of a sudden, but worried me to know end. My provider also told me nothing to worry about ;)
 

ecoutez

Well-Known Member
May 23, 2002
152
0
316
This issue is resolved

Nick took a look at one of my RedHat 7.2 boxes exhibiting this behavior and found the problem.

Run /scripts/updatenow and it should be fixed.

- Jason
 

Website Rob

Well-Known Member
Mar 23, 2002
1,504
1
318
Alberta, Canada
cPanel Access Level
Root Administrator
Seems odd that anyone other than the SysAdmin would be wanting to change the files shown in the first post. All they are is for the colours used to display your screen output when in Shell. Most curious.