I'm having some Apache issues: over the last two days, it's mysteriously begun shutting down in the middle of the night, with the message:
"caught SIGTERM, shutting down"
Now, I am aware that this could be log rotation related... I also found mention of a rather nasty Roundcube exploit when I was searching for it.
I've just upgraded Roundcube as advised. I think that I managed to avoid being exploited (I'd luckily set wget and friends to 700, so hopefully nothing was downloaded to be run). There is certainly nothing sitting in /tmp, and no noticeably abnormal processes running. Is there anything else I should be looking for?
Back to the original problem - could the traffic attempting to exploit the Roundcube issue be related to the Apache issues, or should I be looking in other directions?
Thanks,
"caught SIGTERM, shutting down"
Now, I am aware that this could be log rotation related... I also found mention of a rather nasty Roundcube exploit when I was searching for it.
I've just upgraded Roundcube as advised. I think that I managed to avoid being exploited (I'd luckily set wget and friends to 700, so hopefully nothing was downloaded to be run). There is certainly nothing sitting in /tmp, and no noticeably abnormal processes running. Is there anything else I should be looking for?
Back to the original problem - could the traffic attempting to exploit the Roundcube issue be related to the Apache issues, or should I be looking in other directions?
Thanks,