I saw slashdot had a note that skype accesses the /etc/passwd file.
Because I have used skype occasionally I am somewhat concerned. As a
quick and dirty script would this detect such access:
ls -l --time=atime shadow >>somelogfile
ls -l --time=atime passwd >>somelogfile
ls -l --time=ctime shadow >>somelogfile
ls -l --time=ctime passwd >>somelogfile
atime being access and ctime being use. I will play around to see if ls
affects atime. I am more concerned about reading the passwd and
especially shadow file then just listing the directory /etc.
Jim K
_______________________________________________
EUGLUG mailing list
[email protected]
http://www.euglug.org/mailman/listinfo/euglug
