Hello, I'm running current and I had left forgot to turn the ftp knob in inetd.conf off. I came back after a drive to find my /var/ filesystem full. I did not (per sysinstall)have anon ftp on, but someone made lots of bogus directories in /var/ftp/pub anyway. I decided to install /ports/security/chkrootkit after a short google. chkrootkit says it finds 12 processes hidden from ps command and a possible LKM Trojan installed. chkroot also calls ls ps date chsh and chfn "INFECTED" Is chkrootkit giving accurate info for FreeBSD-5 ? Could someone check to see if they get false positives with this script on current. TIA --psglenn __________________________________ Do you Yahoo!? Yahoo! Calendar - Free online calendar with sync to Outlook(TM). http://calendar.yahoo.comReceived on Sat Jun 07 2003 - 22:44:37 UTC
This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:37:11 UTC