Im a bit scared since last time I checked the routing table in one of my boxes I found the following:
$ netstat -nr
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt Iface
192.168.0.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 192.168.0.1 0.0.0.0 UG 0 0 0 eth0
Normally (as in my other box) the routing table looks like:
$ netstat -nr
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt Iface
192.168.0.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 192.168.0.1 0.0.0.0 UG 0 0 0 eth0
As it is evident I found a new destination included, 169.254.0.0, which I have no idea where it comes from. On my understanding there is no other reason for the routing table of a box to have more than 3 entries: eth0 the lo and the line of the gateway.
What does this mean? have I been hacked? Is my security compromised? what should I do? Is it because of the dhcp server?
Sorry for the long email and thanks a lot for any advice.
-- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
