Backtrack (malicious) actions and see VNC access log inside UnRAID

Lukáš Řádek

By Lukáš Řádek
in Security

Recommended Posts

Lukáš Řádek Noob

Lukáš Řádek

Posted
Posted

Hello,

 

I have had a possible malicious login to my UnRAID management (I can see a Share that I do not remember creating) and I am wondering how to get more info about what was happening.

 

The supposed misuse came through VNC to my Windows WM running on UnRAID. I know he was logged in to my WM (using VNC), yet I do not know whether he was inside the management.

 

1) Is there any VNC login log, where I would be able to see when and how many time somebody logged in?

2) Is it possible to see details about Share creation and such.

 

Thanks

Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing