Successful Shell Attack Detected - Unix SSH Initial Connetion Detection
High Nessus Network Monitor Plugin ID 6160
SynopsisA successful shell attack was detected.
DescriptionAn SSH session was observed which may be an initial connection which may also be present in a command line shell of a successful buffer overflow.
SolutionThe command activity observed is indicative of a possible compromise. Consider performing a full audit of the system to investigate further.