Re: [SLUG] Need help, I appear to victim of mischief

From: Smitty (a.smitty@verizon.net)
Date: Mon Aug 19 2002 - 21:09:48 EDT

Next message: Paul M Foster: "Re: [SLUG] Looking for an answer to RCS"
Previous message: Brian Coyle: "Re: [SLUG] Need help, I appear to victim of mischief"
In reply to: Brian Coyle: "Re: [SLUG] Need help, I appear to victim of mischief"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

On Monday 19 August 2002 20:49, you wrote:
> On Saturday 17 August 2002 23:31, Smitty wrote:
> > The one I downloaded required a very quick compile.
> > Have you tried it?
>
> Yes, I've used ckrootkit for many moons. That's why I pointed out
> the warning about false positives.
>
> It seems I was confusing this with lionfind
>
> http://www.sans.org/y2k/lion.htm
>
> My appologies.
>
>
> FWIW, the chkrootkit script will run without compiling, but you'll miss
> out on a couple of minor tests. ;)

True, but if those _minor_ tests show evidence or a trojaned binary or a
rootkit, is it not worth a compile which one can count in a few seconds?
Smitty

Next message: Paul M Foster: "Re: [SLUG] Looking for an answer to RCS"
Previous message: Brian Coyle: "Re: [SLUG] Need help, I appear to victim of mischief"
In reply to: Brian Coyle: "Re: [SLUG] Need help, I appear to victim of mischief"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 16:31:40 EDT