hello all, given the recent debian, gentoo and fsf/savannah cracks, is there a constantly updated root kit detection kit somewhere? something like antivirus, intending to detect everything and doing its best to be continually updated. i know that something like this, in binary, can be dangerous in itself since generally it'll run as root so it can read everything on the disk... so of course i'm looking for source, something distributed by someone ethical, and audited by paranoid people who don't trust the maintainer :).
if there isn't one, there should be... there's a project for all those college kids who hang out on cracker IRC channels and mailing lists :). monitor for all the new rootkits, add them to the database, help secure the net :). tiger -- Gerald Timothy Quimpo gquimpo*hotmail.com tiger*sni*ph http://bopolissimus.sni.ph Public Key: "gpg --keyserver pgp.mit.edu --recv-keys 672F4C78" include/asm-sparc/solerrno.h:#define SOL_ENETDOWN 127 /* Your subnet is on fire */ /usr/src/linux/include/asm-sparc/solerrno.h -- Philippine Linux Users' Group (PLUG) Mailing List [EMAIL PROTECTED] (#PLUG @ irc.free.net.ph) Official Website: http://plug.linux.org.ph Searchable Archives: http://marc.free.net.ph . To leave, go to http://lists.q-linux.com/mailman/listinfo/plug . Are you a Linux newbie? To join the newbie list, go to http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie
