Date: Mon, 17 Oct 2005 14:22:55 -0500 From: Paul Schmehl <pauls@utdallas.edu> To: questions@freebsd.org Subject: chkrootkit Message-ID: <9418EAA207FFABD51C8A52A1@utd59514.utdallas.edu>
next in thread | raw e-mail | index | archive | help
Out of curiosity more than anything else, I installed chkrootkit on a server I maintain and ran it. It returned this: Checking `bindshell'... INFECTED (PORTS: 465) I'm running smtps on that server, so this is apparently a false positive. Has anyone else seen this? Paul Schmehl (pauls@utdallas.edu) Adjunct Information Security Officer University of Texas at Dallas AVIEN Founding Member http://www.utdallas.edu/ir/security/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?9418EAA207FFABD51C8A52A1>