Hey there!
Found this in my logwatch report. Checked out /var/log/secure and found these two entries I personally didn't do:
Dec 30 21:02:30 localhost usermod[30054]: add 'apache' to group 'users'
Dec 30 21:02:30 localhost usermod[30054]: add 'apache' to shadow group 'users'
Has my Amahi box been compromised? Thanks for your help!
Odd find in authentication log
Re: Odd find in authentication log
I would say no it has not been compromised. I am unsure why that log entry showed up, but seriously doubt someone accessed your box and did it.
ßîgƒσστ65
Applications Manager
My HDA: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz on MSI board, 16GB RAM, 1TBx1+2TBx2+4TBx2
Applications Manager
My HDA: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz on MSI board, 16GB RAM, 1TBx1+2TBx2+4TBx2
Who is online
Users browsing this forum: No registered users and 36 guests