Date: Sat, 12 Jun 2004 13:44:45 +0200 From: "Peter Rosa" <prosa@pro.sk> To: "FreeBSD Security" <freebsd-security@freebsd.org> Subject: Hacked or not appendice Message-ID: <019101c45072$a8b9cfe0$3501a8c0@pro.sk>
next in thread | raw e-mail | index | archive | help
Hi all again, I must add, there are no log entries after June 9, 2004. "LKM" message first apeared June 8, 2004, after this day, there is nothing in /var/messages, /var/security ..... How could I look for suspicious LKM module ? How could I find it, if the machine is hacked and I can not believe "ls", "find" etc. commands ? Peter Rosa
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?019101c45072$a8b9cfe0$3501a8c0>