On Wednesday 14 August 2013 23:07:23 you wrote:
> On 8/14/13 10:34 PM, Christopher Howard wrote:
> My apologies for misconstruing your remarks. As far as rootkits
> (Linux and Unix) I don't have a solution for a workstation or a
> server that is upgraded regularly, though I do monitor my firewall
> installation for changes (from base install) and review my firewall
> logs on a regular basis; I store the firewall logs on an external
> device that is write once only.
>
> --greg
Here is one app, word on the user list for Debian is not reliable..false
positives for some.
pabi@tdewheezy:~/Documents$ apt-cache search rootkit
chkrootkit - rootkit detector
rkhunter - rootkit, backdoor, sniffer and exploit scanner
unhide - Forensic tool to find hidden processes and ports
unhide.rb - Forensic tool to find processes hidden by rootkits
-- Peace, Greg --------- To unsubscribe, send email to <aklug-request@aklug.org> with 'unsubscribe' in the message body.Received on Wed Aug 14 23:00:32 2013
This archive was generated by hypermail 2.1.8 : Wed Aug 14 2013 - 23:00:32 AKDT