Various ways of detecting rootkits in GNU/Linux
This is a detailed review of two scripts which are available for Linux and Unix alike which does a good job of detecting if your computer is infected by a rootkit. A rootkit is a (collection of) tool(s) a hacker installs on a victim computer after gaining initial access. It generally consists of network sniffers, log-cleaning scripts, and trojaned replacements of core system utilities such as ps, netstat, ifconfig, and killall.
Read the article
(Submitted by sas Wed Dec 20, 2006 )
Our content can be syndicated: Main page Mac Page
Copyright 1999-2005 Noel Davis. Noel also runs web sites about sailing and kayaking.
All trademarks are the property of their owners.
All articles are owned by their author