Matthew Schumacher wrote:
>
> So how would you install a kernel level root kit without kicking the
> machine? And how would you ensure that the hacked kernel would be
> started on future reboots if changes to the kernel file could be detected?
>
I should have done some reading before I posted:
It seems that some of these rootkits use a kernel module or
kernel-memory-patching to load then they conceal themselves. Pretty
scary stuff.
schu
---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.
Received on Thu Jul 29 00:21:15 2004
This archive was generated by hypermail 2.1.8 : Thu Jul 29 2004 - 00:21:16 AKDT