check for root kit
There is a very small possibility that someone has intruded into our
network. I would like to test my 3 woody machines for possible root
kits. What is the best way of doing this? Should I check the md5sum of
programs such as find, ps and ifconfig against the packaged versions?
Also, is there any way of checking for a kernel module type root kit?
To UNSUBSCRIBE, email to firstname.lastname@example.org
with a subject of "unsubscribe". Trouble? Contact email@example.com