Successful Shell Attack Detected - Linux 'passwd' Command Changed Password
High Nessus Network Monitor Plugin ID 6143
SynopsisA successful shell attack was detected.
DescriptionA 'passwd' command occurred in a TCP session normally used for a standard service. This indicate that successful compromise of this service has occurred.
SolutionThe command activity observed is indicative of a possible compromise. Consider performing a full audit of the system to investigate further.