gs_mon [FREE DISK SPACE STATUS] ALERT hda3 "/" (size:73219 < 135000) OK hda2 "/tmp" (free:125310) OK hda6 "/http" (free:387886) OK hda7 "/usr/local" (free:682588) [MAXIMUM FILE SIZE STATUS] OK /etc (size:633) ALERT /var/log (size:24719 > 5000) OK /usr/local/bin (size:28913) OK /var/log/syslog (size:39) [PROCESS STATUS] OK httpd* 9 (mem:1520,cpu:0.0) ALERT in.tproxyd (process not found) ALERT squid* 1 (mem:50132,cpu:0.1) OK syslogd* 1 (mem:860,cpu:0.0) [NET SERVICE ACTIVITY] OK www.opennet.ru:80 OK www.skyway.ru:80 OK www.linux.opennet.ru:80 OK www.tyumen.ru:80 OK ftp.opennet.ru:21 OK boa.opennet.ru:25 OK boa.opennet.ru:110 ALERT www.opennet.ru:23 (timeout) [NAME SERVER STATUS] OK 195.161.17.65:www.opennet.ru OK ns.tyumen.ru:boa.opennet.ru OK ns.sibtel.ru:pentagon.opennet.ru OK www.opennet.ru:pentagon.opennet.ru ALERT ns.tyumens.ru:boa.opennets.ru (NS not respond) ALERT ns.sibtel.ru:pentagon.opennets.ru (can't find the host) ALERT www.opennets.ru:pentagon.opennet.ru (NS not respond) [NETWORK ECHO REQUEST STATUS] OK boa.opennet.ru OK www.tyumen.ru OK 127.0.0.1 [NETWORK INTERFACE STATUS] ALERT cx0: (DOWN) OK lo: (UP) OK eth0: (UP) OK eth0:0 (UP) OK eth0:1 (UP) OK eth0:2 (UP) OK eth0:3 (UP) [ROUTING STATUS] OK 195.161.17.64 (UP) OK 195.161.17.65 (UP) OK 0.0.0.0 (UP) [CHECK FOR SUID PROGRAM] /bin: /bin/su /bin/mount /bin/umount /bin/ping Num: 4 Sum. size:95836 b /sbin Num: 0 Sum. size:58197 b /usr/bin Num: 25 Sum. size:871828 b /usr/sbin Num: 1 Sum. size:81972 b ALL: Num:30 Sum. size:1107833 b [X FILES] OK (/bin/ping) OK (/bin/su) OK (/bin/login) OK (/usr/bin/passwd) OK (/usr/bin/traceroute) OK (/usr/bin/sudo) OK (/usr/sbin/sendmail) OK (/usr/bin/procmail) OK (/usr/sbin/pppd) [WARNINGS IN LOG FILES] /var/log/syslog--------------------------- Sep 25 12:52:36 periscope kernel: Checking 386/387 coupling... Ok, fpu using exception 16 error reporting. Sep 25 12:52:36 periscope kernel: Linux version 2.0.35 (root@periscope) (gcc version 2.7.2.3) #9 Fri Jul 24 16:24:08 YEKST 1998 Sep 25 12:52:36 periscope kernel: hdd: IRQ probe failed (0) Sep 25 12:52:36 periscope kernel: hdd: IRQ probe failed (0) Sep 25 12:52:36 periscope kernel: VFS: Mounted root (ext2 filesystem) readonly. Sep 25 12:53:32 periscope login[110]: invalid password for `root' on `tty1' Sep 25 20:42:14 periscope wu.ftpd[23498]: refused connect from 195.14.43.67 Sep 25 20:42:36 periscope wu.ftpd[23507]: refused connect from 195.14.43.67 Oct 7 17:13:12 periscope getstatd[16001]: Can't bind. Must be root. Oct 7 17:23:23 periscope getstatd[16139]: Can't bind. Must be root. Oct 10 04:27:11 periscope login[21340]: invalid password for `root' on `ttyp5' from `dialup-28201.dialup.ptt.ru' Oct 12 14:49:52 periscope login[24000]: invalid password for `root' on `tty3'