Greetings Matt: I don't know Slackware, but if it uses RPM's, then there might be a check like
rpm -Va 2>/dev/null | grep '^S.5' I'm not sure if it is a false positive or not as I've seen machines "just" connected to the Internet start getting attacked in five minutes or so; and http://www.dshield.org/ used to have an area (maybe they still do) that shows the average time for a hacker to break into a not purposely hardened and kept hardened box (typically in under 15 minutes). Thank you.
