Red Squirrel
No Lifer
Is there a way I can find a log of files deleted and by what user/IP (if network) ?
I noticed one of my folders was empty and I highly doubt it's me that deleted it by accident as I have not been working near that folder. I think somehow someone broke into my router and brute forced my SAM account and got into my intranet directory. Only my user has write access to that drive, but the folder was completely empty.
I was able to restore a backup that ran yesterday so thank God for backups, but it's still a very serious issue that files just randomly go missing like this. 😱 I need some kind of log to know exactly what gets deleted and when, any way to get that?
Also what would be a good article or book you would recomend on securing a linux box? I'll be running my site on a dedicated server, which will mean a server wide open to online so with my curent knowledge of linux it would be hacked in minutes. I really need to learn how to beef up security in linux, so any help would be apreciated, thanks.
I noticed one of my folders was empty and I highly doubt it's me that deleted it by accident as I have not been working near that folder. I think somehow someone broke into my router and brute forced my SAM account and got into my intranet directory. Only my user has write access to that drive, but the folder was completely empty.
I was able to restore a backup that ran yesterday so thank God for backups, but it's still a very serious issue that files just randomly go missing like this. 😱 I need some kind of log to know exactly what gets deleted and when, any way to get that?
Also what would be a good article or book you would recomend on securing a linux box? I'll be running my site on a dedicated server, which will mean a server wide open to online so with my curent knowledge of linux it would be hacked in minutes. I really need to learn how to beef up security in linux, so any help would be apreciated, thanks.
