[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] Re: chkrootkit entry??

Subject: [cobalt-security] Re: chkrootkit entry??
From: Bruce Timberlake <bruce@xxxxxxxxxx>
Date: Fri, 30 May 2003 21:02:34 -0700
Organization: BRTNet.org
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

> I am a bit concerned as I ran chkrootkit and everything looked OK until
> it got to the last few lines and it came up with these entries for
> sniffer
>
> Checking `sniffer'...
> eth0 is not promisc
> eth0:1 is not promisc

This is the end of a test to see if your NICs have been put into 
"promiscuous" mode for sniffing traffic on the same subnet.  You *want* to 
see "not promisc"

References:
- [cobalt-security] chkrootkit entry??
  - From: Dick Wuzinya

Prev by Date: [cobalt-security] chkrootkit entry??
Next by Date: RE: [cobalt-security] XTR Update 16343 kills ASP Service
Previous by thread: [cobalt-security] chkrootkit entry??
Next by thread: [cobalt-security] Post-restore chkrootkit reports

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index