Site Navigation

Date:      Fri, 21 May 2004 15:57:46 -0400
From:      "Peter C. Lai" <sirmoo@cowbert.net>
To:        RazorOnFreeBSD <yann.luppo@attglobal.net>
Cc:        freebsd-security@freebsd.org
Subject:   Re: Hacked or not ?
Message-ID:  <20040521195746.GE46542@cowbert.net>
In-Reply-To: <021f01c43f3a$e7eb7f40$0f01a8c0@razor>
References:  <021f01c43f3a$e7eb7f40$0f01a8c0@razor>

---

index | next in thread | previous in thread | raw e-mail

---

[-- Attachment #1 --]
> ioctl(1,TIOCGETA,0xbfbff534)                        = 0 (0x0)
> ioctl(1,TIOCGWINSZ,0xbfbff5a8)                    = 0 (0x0)
> getuid()                                                        = 0 (0x0)
> readlink("etc/malloc.conf",0xbfbff490,63)        ERR#2 'No such file or directory'         #SUSPICIOUS
> mmap(0x0,4096,0x3,0x1002,-1,0x0)              = 671666176 (0x2808d000)
> break(0x809b000)                                        = 0 (0x0)
> break(0x809c000)                                        = 0 (0x0)
> break(0x809d000)                                        = 0 (0x0)
> break(0x809e000)                                        = 0 (0x0)
> ...........................................................................................and so on!

Looks normal to me here...not really sure why that is suspicious to you.
(it's just trying to load malloc.conf for malloc options).

-- 
Peter C. Lai
University of Connecticut
Dept. of Molecular and Cell Biology
Yale University School of Medicine
SenseLab | Research Assistant
http://cowbert.2y.net/


[-- Attachment #2 --]
0��	*�H��

���0��

10	+0	*�H��


��0��0�:�
�0
	*�H��


0b10	UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CA0
040414064257Z
050414064257Z0D10UThawte Freemail Member1!0	*�H��

	
sirmoo@cowbert.net0�
"0
	*�H��



�
0�

�

�n�͛��=�3
�Z�os�$us��];H����T	M�J�5-	��z��������ړ�շ��h�K�@������n!�,@�:�C��E��u>���� �ޅd/�'i�����:�ؔ��3n7W�h�}��H1H� нdb����&޻T����U�7�	���Z#9�iˤ$�݅�(:^*�O��.�}'8`�+�(�V#*DZq�FT�-r�%�ʸU1���~�����X�Wq^׷�'�pL��N�v�5�

�/0-0U0�sirmoo@cowbert.net0U

�00
	*�H��


�����VD�+P�yfP���Qd�A2Z�
��LH�˳��`��…���|���,��̀�
5���'�]J��D�U�5�KW6��2��[���2^9�-�R����p�u�沎�6��8�0�?0���


0
	*�H��


0��10	UZA10UWestern Cape10U	Cape Town10U
Thawte Consulting1(0&UCertification Services Division1$0"UThawte Personal Freemail CA1+0)	*�H��

	
personal-freemail@thawte.com0
030717000000Z
130716235959Z0b10	UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CA0��0
	*�H��



��0����Ħ<UsU�N�ʙZh�up��������[�v�:a�Q�
��P
0�cZ,�p����+�Z�?qV˯<���6$*�+��w=�+��>�@�dק���e��*T�H���<a@dr`��

���0��0U

�0

�
0CU<0:08�6�4�2http://crl.thawte.com/ThawtePersonalFreemailCA.crl0U
0)U"0 �010UPrivateLabel2-1380
	*�H��


��H��P��.�
�f�g�����C���L!��6�-�6/��P �p<���ab��:~�����t�%P�b��'qW%�ݩ�9�� Oe_�������N���4�[5Mw�V!x��!5�$��F�]_eO1�D0�@

0i0b10	UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CA�0	+���0	*�H��

	1	*�H��


0	*�H��

	1
040521195746Z0#	*�H��

	1g�����y��+�;�3z2�e0R	*�H��

	1E0C0
*�H��
0*�H��
�0
*�H��

@0+0
*�H��

(0
	*�H��



�
���_�°��q�סv��wY�U>(������%�[7�X�y'�Lo�)
���x�XN�	�ԭv�%�Lt��K�@N�t�fS)��bl��/�|�Q�AI�D%>�|�����	'�
kPk�9��0X:N�W��6��T�:���MH�!\�*O��Oj��5-4�9$�W� g����X��}#UOm�T�B�[���8��Q�!�3�g�7��bX2�/$�Ò`��Z>��'�y��4�i(Y�I�	�z��Ky

help

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040521195746.GE46542>

Legal Notices | © 1995-2025 The FreeBSD Project. All rights reserved.

Contact