find perm -4000 백도어 잘찾는분계세요? 채택완료

find perm -4000 백도어 잘찾는분계세요? 백도어 잘찾는 TIP 같은거있슬까요?

현재 CENTOS서버에 백도어 있는지 찾는중인데요

find / -user root -perm -4000 -print

검색해보니

밑에와같이 나옵니다

혹시 제서버 검색에 특이한 이상한 백도어 의심 파일있슬까요?

그외 백도어 잘찾는 팁 있슬까요?

/usr/bin/crontab
/usr/bin/umount
/usr/bin/passwd
/usr/bin/staprun
/usr/bin/su
/usr/bin/chsh
/usr/bin/sudo
/usr/bin/pkexec
/usr/bin/mount
/usr/bin/chage
/usr/bin/chfn
/usr/bin/newgrp
/usr/bin/gpasswd

/usr/sbin/usernetctl
/usr/sbin/pam_timestamp_check
/usr/sbin/unix_chkpwd

/usr/lib/polkit-1/polkit-agent-helper-1
/usr/libexec/dbus-1/dbus-daemon-launch-helper

/usr/bin/staprun
/usr/bin/umount
/usr/bin/gpasswd
/usr/bin/passwd
/usr/bin/chage
/usr/bin/crontab
/usr/bin/su
/usr/bin/newgrp
/usr/bin/sudo
/usr/bin/chsh
/usr/bin/mount
/usr/bin/pkexec
/usr/bin/chfn

/usr/sbin/usernetctl
/usr/sbin/unix_chkpwd
/usr/sbin/pam_timestamp_check
/usr/lib64/dbus-1/dbus-daemon-launch-helper
/usr/lib/polkit-1/polkit-agent-helper-1