On Fri, 19 Jan 2007, Michael Holzt wrote: > I just found this bug report and i would like to add to the "It also looks > remarkably like something left by a break-in or rootkit.". In fact the > chkrootkit package _does_ warn about this file and identifies it as a > possible rootkit:
Having just upgraded my webserver to Edgy I got exactly this warning which sent a chill down my spine. The reason is that chkrootkit will flag any file under /lib (amongst other places) that starts with a . (along with other patterns). So I'd just like to echo that it would be nice if this file was renamed to something that didn't give chkrootkit the heebie jeebies.. :-) cheers, Chris -- Chris Samuel : http://www.csamuel.org/ : Melbourne, VIC This email may come with a PGP signature as a file. Do not panic. For more info see: http://en.wikipedia.org/wiki/OpenPGP
pgp2PZoJuKzxP.pgp
Description: PGP signature