On Wednesday 01 September 2004 03:04 am, Andrew Graupe wrote: > I've heard that it is only possible to be really sure if you have a > guaranteed clean copy of the basic UNIX utilities, because skilled > hackers will replace some of the utilities chkrootkit uses with hacked > copies that will cover their actions. Any suggestions on how to do this?
You can use a program like tripwire to watch for applications that have changed since installation (of course it's best to set it up on a fresh install...) Also check into Bastille Linux (www.bastille-linux.org) which you can use to harden your system. -- Peter Pankonin, digitalcrucible There are 10 kinds of people in the world, those who understand binary, and those who don't. _______________________________________________ clug-talk mailing list [EMAIL PROTECTED] http://clug.ca/mailman/listinfo/clug-talk_clug.ca
