On Tue, 21 Mar 2006 16:20:46 -0200, Adriano Carvalho said: > 2) Hide ssh service. How ? Try SAdoor > (http://packetstormsecurity.org/UNIX/penetration/rootkits/index6.html) > > From packetstorm: > "SADoor is a non-listening remote administration tool for Unix systems. It > sets up a listener in non-promiscuous mode for a specific sequence of packets > arriving to the interface before allowing command mode. The commands are sent > Blowfish encoded in the TCP payload and decoded and passed on to system(3)." > > Its cool, and good to hide some services...
Of course, if the password is ever compromised, you'll then be left wondering how things are getting run, because you forgot you installed it. :)
pgpcaCWYteKzr.pgp
Description: PGP signature
