Date: Tue, 28 Jan 2003 15:16:07 +0000 From: Sascha Luck <bofh@online.ie> To: freebsd-security@freebsd.org Subject: chkrootkit & FBSD-5 Message-ID: <200301281516.16413.bofh@online.ie> In-Reply-To: <20030128085617.L167@woody.ops.uunet.co.za> References: <20030128085617.L167@woody.ops.uunet.co.za>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello all, on my CURRENT boxes, chkrootkit (v0.38) reports the following binaries as INFECTED: chfn chsh date ls ps as well as 7 hidden PIDs. recompiling/reinstalling the binaries seems to have no effect. I'm tempted to regard these as false positives - anyone else notice this behaviour? Cheers, s. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE+Np6951unZWdvDMoRAolEAJ9N4yRBVoAvvymU2/biCIFhynbM1QCgktNM UDLIuG8N6gdbMFc5IxGu5KM= =J7vD -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200301281516.16413.bofh>