Am 28.09.2005 um 09:45 schrieb [EMAIL PROTECTED]: > Good time for all. > > I run chkrootkit and it returns : > ... > Checking `bindshell'... INFECTED (PORTS: 3049) > ... > > What I need to do ? Links are welcome.
You will probably want to find out, whether your system is infected or not. The chkrootkit tool regularly produces false alarms. Find out, which process has opened that port. "netstat -tulpe" will show you all processes which listen on a tcp or udp port. You need to run this as root. Regards, Dennis -- Send personal mail to [EMAIL PROTECTED] only. Off-list mails to [EMAIL PROTECTED] will not reach me. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
