|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: chkrotkit 4.1 and FreeBSD 4.5
From: Alex Povolotsky (tarkhil
webmail.sub.ru)
Date: Thu Sep 11 2003 - 03:50:02 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Thu, 11 Sep 2003 10:57:44 +0400
Alex Povolotsky <tarkhilwebmail.sub.ru> wrote:
AP> Hello!
AP>
AP> I've found that on two FreeBSD 4.5-RELEASE boxes chkrootkit finds:
AP>
AP> Checking `chfn'... INFECTED
AP> Checking `chsh'... INFECTED
AP> Checking `date'... INFECTED
AP> Checking `ls'... INFECTED
AP> Checking `ps'... INFECTED
AP>
AP> recompiling, say, ls from souces didn't help. False positive or
AP> source changed as well?
False positive. chkrootkit for some reason I could not understand thinks that 4.5-RELEASE is 5.*
--
Alex.
_______________________________________________
freebsd-securityfreebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribefreebsd.org"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]