One of the most unpleasant situations for a sysadmin is to have a server breached. When that happens, invaders usually install a rootkit which will ensure the continuity of their access to the computer.
Chkrootkit is a utility that checks for signs of rootkits in the server where it runs. It can identify over 60 different kinds of rootkits and variants, and can be run from cron daily (or hourly), giving an early warning in case of problems.
Note: Systems security is not a simple matter. Utilities like chkrootkit can help tremendously, but are not a substitute for a comprehensive security policy and careful maintenance of your servers.
[Permalink] |
![[Digg Me]](/images/digg.png)
|
![[Add to del.icio.us]](/images/delicious.png)
|
![[Submit to reddit]](/images/reddit.png)
|
![[Submit to ma.gnolia.com]](/images/magnoliacom.png)
|
![[Submit to FURL]](/images/furl.png)
