Hi, I just saw this bug when browsing through old bugs, and I thought I should give a little info hopefully to help resolve it.
I have a colocated system where Debian runs from a chroot. For various reasons, there are a few daemons (kernel logging daemons, specifically) that still run from outside the chroot. I installed chkrootkit in the chroot, and it periodically reports a possible LKM trojan, because it sees the process in /proc but cannot access it since it's outside the chroot. I'm not sure if it's possible to fix this, unless there's a way to tell chkrootkit to ignore certain processes. (But this may be open to exploits.) Hope this helps. T -- Don't drink and derive. Alcohol and algebra don't mix. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
