By lcruz
Some script is inserting at my iptables a rule to accept every traffic. That totally invalidate my next rejecting rules.
So is there some way to prevent that the script to add rules or find out the script or source who is inserting that rule?
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
Your server maybe hacked If it is through the web server, upload directory is the most possible place /tmp, or configured upload directories If it is through SSH, init scripts should be checked
The following command may help: sudo find / -type f -executable -exec grep -il “iptables” {} ; -print
It is hard to recover a compromised server, backup db & user uploaded content, then rebuild the server maybe easier.
Become a contributor for community
Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.
DigitalOcean Documentation
Full documentation for every DigitalOcean product.
Resources for startups and AI-native businesses
The Wave has everything you need to know about building a business, from raising funding to marketing your product.
The developer cloud
Scale up as you grow — whether you're running one virtual machine or ten thousand.
Get started for free
Sign up and get $200 in credit for your first 60 days with DigitalOcean.*
*This promotional offer applies to new accounts only.