Sorry for continuing this thread, but I just came
across:
http://www.securityfocus.com/templates/forum_message.html?forum=2&head=32&id
=32
which includes the following description of a Linux
crackin:
"Readers should also note how although a key binary in the cracked machine
had been modified, tripwire and an assortment of other booby traps failed to
detect this had happened. Even a close-up manual inspection (comparing file
contents with a trusted backup, playing with it's name) could not detect any
odd behavior. This trick, and others equally spooky were achieved by clever
manipulation of the OS's kernel code (dynamicly, through a module). "
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
