Date: Wed, 30 May 2001 09:36:11 -0400 From: Andrew Barros <abarros@tjhsst.edu> To: Bigby Findrake <bigby@ephemeron.org> Cc: freebsd-security@FreeBSD.ORG Subject: Re: freebsd rootkit Message-ID: <20010530093611.C27126@tjhsst.edu> In-Reply-To: <Pine.BSF.4.21.0105291533150.57736-100000@home.ephemeron.org>; from bigby@ephemeron.org on Tue, May 29, 2001 at 03:34:29PM -0700 References: <20010529134040.R98104-100000@awww.jeah.net> <Pine.BSF.4.21.0105291533150.57736-100000@home.ephemeron.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--t0UkRYy7tHLRMCai Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Someone should add it in ports. It would be rooting and then cleaning up really easy. :-) -ajb On Tue, May 29, 2001 at 03:34:29PM -0700, Bigby Findrake wrote: ->On Tue, 29 May 2001, Chris Byrnes wrote: -> ->> That's not a wise request on a list like this. Backup, format and ->> reinstall. -> ->Why not? Surely you're not suggesting that a rootkit is a bad thing, or ->that no one here would help him find one - wouldn't that be rather silly ->of us? If we knew where one was, wouldn't it make the most sense to make ->sure that anyone could get there hands on it? Isn't that (among other ->ways) how open software advances? I can't count the number of times I've ->seen security people make the argument that everyone should own lockpicks. -> ->If I misunderstood, you, Chris, what did you mean? -> ->>=20 ->>=20 ->> Chris Byrnes (chris@JEAH.net) ->> JEAH Communications, LLC (www.JEAH.net) ->> Call toll-free! 1-866-AWW-JEAH ->>=20 ->>=20 ->> On Wed, 30 May 2001, Lim Seng Chor wrote: ->>=20 ->> > sorry, you all misunderstood me... : ( ->> > ->> > i am the system admin of my site here, and i am suspecting my ->> > user is compromising my system files. i would like to check on ->> > what the files availble in rootkit, and see whether my users are ->> > using that or not. ->> > it is just for security audit purpose.... ->> > ->> > stop xxxxxxx me please.... ->> > ->> > To Unsubscribe: send mail to majordomo@FreeBSD.org ->> > with "unsubscribe freebsd-security" in the body of the message ->> > ->>=20 ->>=20 ->> To Unsubscribe: send mail to majordomo@FreeBSD.org ->> with "unsubscribe freebsd-security" in the body of the message ->>=20 -> -> ->To Unsubscribe: send mail to majordomo@FreeBSD.org ->with "unsubscribe freebsd-security" in the body of the message ---end quoted text--- --=20 Andrew Barros <abarros@tjhsst.edu> PGP Key Fingerprint: D3B8 0800 C45A 143E 5CF0 E112 0A1B AB36 B655 1FB8 --t0UkRYy7tHLRMCai Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.3 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE7FPdLChurNrZVH7gRAlsKAJ9tjP/VuxpVJILD6YVq2aD9ebxAuQCeOn2k Mc6uyES1nvvRn4gl4x3TLzw= =6VR1 -----END PGP SIGNATURE----- --t0UkRYy7tHLRMCai-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010530093611.C27126>