![]() ![]() ![]() For the following examples, I assume that you are running from the top level of your home folder (just enter cd to get to it), and that you do not want to search the files in the root directory.ġ) To find all files NOT owned by your logged on user in your home folder, type: find ~ -type f ! -user $USERġ.1) To find all files that do not belong to any legitimate user (they should not exist), type: find ~ -type f -nouserĢ) As files on the system have three timestamps called mtime (file modification time), ctime (inode change time and permissions), and atime (file access time), these can be queried to find out how files have been modified. It is possible to quickly find files not owned by your user in your home folder and also at what time any files were accessed by using the find command (use -type f for files and -type d for directories). ![]() ![]() I assume that you don't think that your computer has been totally compromised (to check who has been running sudo commands see /var/log/auth.log). ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |