no to answer your question. but a similiar one regarding rootkits. I want
have a bag of statically linked self contained binaries ( like in a floppy)
is there a pointer to find something like this or do I need a floppybased
distro. I want to use it to have a comparison from the original I can take
with me everywhere. It makes sense to me but I can't find something like
it..

john

rabbit wrote:

> Has anyone encountered a rootkit that creates a user by the name
> of "UncleSteve" ?
>
> Some damn fool was trying to telnet into one of my boxes and forgot
> to shutoff identd while they were at it. Unclesteve was the user name
> gathered by tcp-wrappers. And finger(of all things!) was all I needed
> to verify the presence of that account on the source box...
>
> And no, telneting into my boxes is not an option, so I'm not worried
> about the guy getting in...I'm just wondering if maybe the source of
> the probe was a rooted box to begin with, or if it's just some twit.
>
> --rabbit
>
> ___________________________________________________________________
> Jon Cortmaior (jon0def.com)| 0def Design Associates | unix geek
> -------------------------------------------------------------------
> ACADEME, n. An ancient school where morality and philosophy were taught.
> ACADEMY, n. [from ACADEME] A modern school where football is taught.
> ______________________________________________________
> rabbitpoorrabbit.com http://www.poorrabbit.com

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]