Re: [malware-list] [RFC 0/5] [TALPA] Introtoalinuxinterfaceforonaccess scanning

From: Theodore Tso
Date: Tue Aug 05 2008 - 19:58:36 EST

Next message: Matthew Garrett: "Re: [PATCH] Add Intel ACPI IGD OpRegion support"
Previous message: Theodore Tso: "Re: [malware-list] [RFC 0/5] [TALPA] Introtoalinuxinterfaceforonaccess scanning"
In reply to: Eric Paris: "Re: [malware-list] [RFC 0/5] [TALPA] Introtoalinuxinterfaceforonaccess scanning"
Next in thread: Greg KH: "Re: [malware-list] [RFC 0/5] [TALPA] Introtoalinuxinterfaceforonaccess scanning"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Aug 05, 2008 at 07:48:52PM -0400, Eric Paris wrote:
> I do believe for a number of AV vendors the answer is yes. I will try
> to have some offline conversations with the right people at a number of
> vendors and work to better define the threats that they wish to or
> believe they are able to help mitigate.

OK, and if the malware is running on the machine, does the malware
have root (superuser) access?

- Ted
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Matthew Garrett: "Re: [PATCH] Add Intel ACPI IGD OpRegion support"
Previous message: Theodore Tso: "Re: [malware-list] [RFC 0/5] [TALPA] Introtoalinuxinterfaceforonaccess scanning"
In reply to: Eric Paris: "Re: [malware-list] [RFC 0/5] [TALPA] Introtoalinuxinterfaceforonaccess scanning"
Next in thread: Greg KH: "Re: [malware-list] [RFC 0/5] [TALPA] Introtoalinuxinterfaceforonaccess scanning"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]