How to tell if a Linux machine is a zombie?

To: debian-user@lists.debian.org
Subject: How to tell if a Linux machine is a zombie?
From: "Russell L. Harris" <rlharris@oplink.net>
Date: Mon, 8 Jan 2007 13:13:01 -0600
Message-id: <[🔎] 20070108191301.GA555@cromwell.tmiaf>
Mail-followup-to: debian-user@lists.debian.org

Yesterday I read another article bemoaning the large number of Window$
machines which have been commandeered remotely and turned into
spam-spewing zombies.

If I understand the matter correctly, a firewall can protect only
against incoming messages, and is useless against spyware which
"phones home" or zombie-ware which spews email spam.

So, before I preach about the dangers of spyware and zombies to my
buddies using Window$, how can I be certain that my own Debian machine
has not been compromised and has not become a zombie?  Is there a
simple test which I can run on a weekly basis?  

My LAN is protected by a machine running SmoothWall Express 2.0,
acting as a firewall and router.  Would an internal firewall package be
useful in this environment?

RLH

Reply to:

Follow-Ups:
- Re: How to tell if a Linux machine is a zombie?
  - From: Giuseppe Marinelli <xflotmas@gmail.com>
- Re: How to tell if a Linux machine is a zombie?
  - From: Kevin Mark <kevin.mark@verizon.net>
- Re: How to tell if a Linux machine is a zombie?
  - From: Kamaraju Kusumanchi <kamaraju@bluebottle.com>
- Re: How to tell if a Linux machine is a zombie?
  - From: Angelo Bertolli <angelo@freeshell.org>
- RE: How to tell if a Linux machine is a zombie?
  - From: "James Stevenson" <james@stev.org>
- Re: How to tell if a Linux machine is a zombie?
  - From: Hugo Vanwoerkom <hvw59601@care2.com>

Prev by Date: Re: firewall problem? was: www.debian.org down?
Next by Date: Re: firewall problem? was: www.debian.org down?
Previous by thread: Re: Php 5 documentation
Next by thread: Re: How to tell if a Linux machine is a zombie?
Index(es):
- Date
- Thread