Re: BTTV detection broken in 2.4.0-test11-pre5

Dan Hollis (goemon@anime.net)
Sun, 19 Nov 2000 07:11:15 -0800 (PST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Christer Weinigel: "Re: BTTV detection broken in 2.4.0-test11-pre5"
Previous message: Brian Gerst: "[PATCH] Module cleanups"

On Sun, 19 Nov 2000, Alexander Viro wrote:
> On Sun, 19 Nov 2000, David Lang wrote:
> > there is a rootkit kernel module out there that, if loaded onto your
> > system, can make it almost impossible to detect that your system has been
> > compramised. with module support disabled this isn't possible.
> Yes, it is. Easily. If you've got root you can modify the kernel image and
> reboot the bloody thing. And no, marking it immutable will not help. Open
> the raw device and modify relevant blocks.

Kernel on writeprotected floppy disk...

-Dan

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
Please read the FAQ at http://www.tux.org/lkml/

Next message: Christer Weinigel: "Re: BTTV detection broken in 2.4.0-test11-pre5"
Previous message: Brian Gerst: "[PATCH] Module cleanups"