Re: malware defense

Jeffrey B. Siegal (jbs@quiotix.com)
Sat, 04 Dec 1999 07:13:03 +0000

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Alex Belits: "Re: malware defense"
Previous message: jgarzik@mandrakesoft.com: "How to get around sb sound dependency?"
Maybe in reply to: andrew@daviel.org: "malware defense"
Next in thread: Jeffrey B. Siegal: "Re: malware defense"

Alex Belits wrote:
> I assume that after intruder/script/trojan/virus got root access, there
> is nothing reasonable that can be done except wiping out and reinstalling
> the system IMNSHO efforts should be made only to prevent that from
> happening, not to find a way to fight already lost battle.

Well, no. You can reboot from non-writable media containing a known-good
kernel and signature checker and use that to check signatures on the rest of
your system.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Alex Belits: "Re: malware defense"
Previous message: jgarzik@mandrakesoft.com: "How to get around sb sound dependency?"
Maybe in reply to: andrew@daviel.org: "malware defense"
Next in thread: Jeffrey B. Siegal: "Re: malware defense"