[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] amd root?

Subject: [cobalt-security] amd root?
From: Jeff Lasman <jblists@xxxxxxxxxxxxx>
Date: Mon, 04 Feb 2002 19:14:38 -0800
Organization: nobaloney.net
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

On one customer system chkrootkit is reporting "amd" and "syslogd" are
both infected.

His box is a RaQ3; my other RaQ3 boxes don't have an "amd" file.  The
syslogd in question is NOT the standard one; it's in a different place,
and is in addition to the standard one.

I did some Google searches, but haven't found the answer.  Has anyone
come across this?  Does anyone know what it is?

Thanks.

Jeff
-- 
Jeff Lasman <jblists@xxxxxxxxxxxxx>
Linux and Cobalt/Sun/RaQ Consulting
nobaloney.net
P. O. Box 52672, Riverside, CA  92517
voice: (909) 778-9980  *  fax: (702) 548-9484

Follow-Ups:
- Re: [cobalt-security] amd root?
  - From: Mel_Lester_Jr.
- Re: [cobalt-security] amd root?
  - From: Michael Stauber

Prev by Date: [cobalt-security] Mail from my RAQ...
Next by Date: Re: [cobalt-security] amd root?
Previous by thread: [cobalt-security] Secureing PHP
Next by thread: Re: [cobalt-security] amd root?

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index