Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 30 May 2001 07:18:09 -0700
From:      "Dan Graaff" <subscribed@de-net.org>
To:        <freebsd-security@FreeBSD.ORG>
Subject:   RE: freebsd rootkit
Message-ID:  <INECLODDPGBFIAKPNFKHCECACCAA.subscribed@de-net.org>
In-Reply-To: <Pine.LNX.4.21.0105301501240.6527-100000@pkl.net>
next in thread | previous in thread | raw e-mail | index | archive | help 
rik,

Humor or not, the idea is to not be compromised to begin with.. I think if
it were added to the ports tree it would NOT increase the chances of you
being rooted, because if you WERE being attacked by someone whos intent is
to root you.. you'd be rooted anyway! Thats the whole problem with the gun
laws.. those who want guns will get them legally or illegally... the ports
collection is a convienience, not something hackers rely on, or even use...

-Dan Graaff / Digital
The DE-Network

-----Original Message-----
From: owner-freebsd-security@FreeBSD.ORG
[mailto:owner-freebsd-security@FreeBSD.ORG]On Behalf Of rich@rdrose.org
Sent: Wednesday, May 30, 2001 7:10 AM
To: freebsd-security@FreeBSD.ORG
Subject: Re: freebsd rootkit


On Wed, 30 May 2001, Andrew Barros wrote:
> Someone should add it in ports.

Now, to me, that seems like a *reallly* bad idea. Imagine the situation:
Some not so nice person keeps an eye on the ports tree for software with
vulnerabilites that are not yet fixed, or indeed uses FreeBSD and keeps an
up to date ports tree. They will see the words "rootkit".

Can you imagine that? The look on their face. They'll re-read it. They'll
stop and think for a moment. They'll re-read it again. Then, this thought
will fly through their mind: "If I ever break into a FreeBSD machine, I've
got a free rootkit. I don't even need to bother covering my tracks
cleverly anymore".

I would suggest *not* putting the rootkit in the ports tree, if only to
save those who have only just installed FreeBSD and are just learning the
Unix world.

rik



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?INECLODDPGBFIAKPNFKHCECACCAA.subscribed>