[vox-tech] Password Security...
Mark Street
vox-tech@lists.lugod.org
Sat, 1 May 2004 11:10:11 -0700
=2D----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Here is the rootkit check I use..
http://www.chkrootkit.org/
On Saturday 01 May 2004 10:17 am, Peter Jay Salzman wrote:
> btw, there are packages that look for the most common root kits. i
> forget what they're called; i'm sure someone here knows. there's a
> couple of them available as deb packages. i'm sure you can freshmeat
> for them. but even so, as long as you were careful to leave everything
> not in /usr/local and /home alone, then backing up /etc and reinstalling
> shouldn't be too painful. this is one of the areas where debian's anal
> notion of "policy" is so useful.
>
> but these packages should be used to LOOK for hackers, not for damage
> control once hackers get in:
>
> the truth is, if you even suspect that they got root access in ANY way
> shape or form (and getting the root password is one out of a billion
> ways to gain root access), then you should really install from scratch.
=2D --=20
Mark Street, RHCE
http://www.oswizards.com
=2D --
Key fingerprint =3D 3949 39E4 6317 7C3C 023E 2B1F 6FB3 06E7 D109 56C0
GPG key http://www.oswizards.com/pubkey.asc
=2D----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
iD8DBQFAk+gIb7MG59EJVsARAkFdAJ9ZqsZH07JCt21ROEH7F9FXwpH7iwCgoT4R
5WD9MIYCcrEZ7bC0C0hnOxs=3D
=3D2Vq1
=2D----END PGP SIGNATURE-----