Thread: Connect software questions (rootkit?)
View Single Post
Old 09-03-2007, 03:26 AM   #29
Alexander Turcic
Fully Converged
Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.
 
Alexander Turcic's Avatar
 
Posts: 18,175
Karma: 14021202
Join Date: Oct 2002
Location: Switzerland
Device: Too many to count here.
Some more background regarding the "new" discovered rootkit:

http://www.securityfocus.com/archive.../30/0/threaded

Quote:
That is not exactly new news.

The devices are old and all that is "rootkit-like" about them is the
fact that they interact with the kernel in order to hide their own files
from corruption.

Not everything that interacts with the kernel is a rootkit. Or would
anyone want to classify GRSecurity as a rootkit? RBAC will let you hide
parts of your filesystem as well...
Alexander Turcic is offline   Reply With Quote