Rootkit Hunter
mehul
mehul.forums at gmail.com
Sat Dec 23 03:20:18 UTC 2006
On 12/23/06, Martin Marcher <martin.marcher at openforce.com> wrote:
>
> Hello,
>
> Am 22.12.2006 um 20:59 schrieb Tony Brezovski:
>
> > http://en.wikipedia.org/wiki/Rkhunter
>
> also look for 'chkrootkit' another one that is quite commonly used...
>
But how good are they in detecting rootkits? While going through a
thread on gentoo forums(sorry don't have that url now), I read that
it's quite possible to hijack important processes and also 'contaminate'
these rootkit checkers. So, it's better to use them from a live system
than from the system that could be compromised?
Also, can these apps detect all rootkits?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20061223/e809b840/attachment.html>
More information about the ubuntu-users
mailing list