Re: Should I install chkrootkit?

To: debian-user@lists.debian.org
Subject: Re: Should I install chkrootkit?
From: Jerry Stuckle <jstuckle@attglobal.net>
Date: Sat, 07 Jun 2014 22:35:58 -0400
Message-id: <[🔎] 5393CC0E.5080505@attglobal.net>
In-reply-to: <[🔎] CAPTjJmo3sd6aQLWjQGSJnL2mvVEVJMquLmqH1y_enr2kuUPJZg@mail.gmail.com>
References: <[🔎] 1401881925.65741.YahooMailNeo@web141002.mail.bf1.yahoo.com> <[🔎] 1402079729.799.10.camel@archlinux> <[🔎] 8ec50caad72e0b23d144e236667852e3.squirrel@mail.vcn.bc.ca> <[🔎] 201406070936.39075.lisi.reisz@gmail.com> <[🔎] 20140607113426.6ac0b8f6@mydesk> <[🔎] 539361B9.7060607@attglobal.net> <[🔎] BAY179-W14A658D738C67715966A5FEB2E0@phx.gbl> <[🔎] 5393C2DD.2010507@walnut.gen.nz> <[🔎] 5393C3C1.90600@attglobal.net> <[🔎] 5393C66E.2040509@walnut.gen.nz> <[🔎] CAPTjJmocEexX=-e36+EO0-eG-mz730zR9b7z4giRm5in6M7GWg@mail.gmail.com> <[🔎] 5393C910.4060500@attglobal.net> <[🔎] CAPTjJmo3sd6aQLWjQGSJnL2mvVEVJMquLmqH1y_enr2kuUPJZg@mail.gmail.com>

On 6/7/2014 10:28 PM, Chris Angelico wrote:

On Sun, Jun 8, 2014 at 12:23 PM, Jerry Stuckle <jstuckle@attglobal.net> wrote:

You can also look at the headers and see where the posting comes from.

I agree signing would help - but you're right, I don't know who many
people's public keys are - either here or anywhere else.


Yeah, the From address is @outlook.com rather than @attglobal.net.
While it is of course possible to forge headers like that, it is an
extra step, and requires a bit more effort than "hey, I can sign up
for a free email service with someone else's name".

Re message signing: http://xkcd.com/1181/

ChrisA


Chris,

Very cute - I can always use a good laugh :)

But there are also things which are even harder to forge - fields withinthe headers themselves. A quick comparison of those fields in thismessage vs. one of the fraud's headers will show huge differences.


Jerry

Reply to:

References:
- Should I install chkrootkit?
  - From: Horatio Leragon <hleragon@yahoo.com>
- Re: Should I install chkrootkit?
  - From: Ralf Mardorf <ralf.mardorf@alice-dsl.net>
- Re: Should I install chkrootkit?
  - From: latinfo@vcn.bc.ca
- Re: Should I install chkrootkit?
  - From: Lisi Reisz <lisi.reisz@gmail.com>
- Re: Should I install chkrootkit?
  - From: Steve Litt <slitt@troubleshooters.com>
- Re: Should I install chkrootkit?
  - From: Jerry Stuckle <jstuckle@attglobal.net>
- RE: Should I install chkrootkit?
  - From: Jerry Stuckle <j.stuckle@outlook.com>
- Re: Should I install chkrootkit?
  - From: Richard Hector <richard@walnut.gen.nz>
- Re: Should I install chkrootkit?
  - From: Jerry Stuckle <jstuckle@attglobal.net>
- Re: Should I install chkrootkit?
  - From: Richard Hector <richard@walnut.gen.nz>
- Re: Should I install chkrootkit?
  - From: Chris Angelico <rosuav@gmail.com>
- Re: Should I install chkrootkit?
  - From: Jerry Stuckle <jstuckle@attglobal.net>
- Re: Should I install chkrootkit?
  - From: Chris Angelico <rosuav@gmail.com>

Prev by Date: Re: Should I install chkrootkit?
Next by Date: Re: Should I install chkrootkit?
Previous by thread: Re: Should I install chkrootkit?
Next by thread: Re: Should I install chkrootkit?
Index(es):
- Date
- Thread