Yes , it is true that the user need to be root to insert any module in
the kernel,apart from this there is a lot of way in which this can be
done. Just visit this url : http://blacksun.box.sk/lkm.html
-koushik
Shuvam Misra wrote:
Statically Linked kernel results performance improvement(fast
Rootkits typically install loadable modules to intercept process
listings and filesystem calls and enable them (the rootkits) to hide
their processes and files. All toward the objective of making the
rootkit more difficult to detect.
Got it. These will not help in gaining initial access, but
Talking about compiling modules, could someone confirm any performance
improvement if a kernel code is statically linked over compiling it as
module ??
-js
___
ilugd mailing list
[EMAIL PROTECTED]
http://frodo.hserus.net/mailman/listinfo/ilugd
