Re: chkrootkit message

To: debian-user@lists.debian.org
Subject: Re: chkrootkit message
From: Reco <recoverym4n@gmail.com>
Date: Tue, 24 Jun 2014 11:40:37 +0400
Message-id: <[🔎] 20140624074036.GA10463@x101h>
In-reply-to: <[🔎] 20140623182815.GH29355@copernicus.demon.co.uk>
References: <[🔎] 53A7DF52.6080603@mi.parisdescartes.fr> <[🔎] 20140623155614.GA14580@x101h> <[🔎] 20140623182815.GH29355@copernicus.demon.co.uk>

On Mon, Jun 23, 2014 at 07:28:15PM +0100, Brian wrote:
> There is no well-documented case of chrootkit ever giving a true
> positive; false positives are its stock in trade. What do you expect of
> a program which searches for things which do not exist or which have no
> relevance (if they ever had) on a modern Linux?

Indeed. rkhunter is the way to go IMO, not chrootkit.

Reco

Reply to:

References:
- chkrootkit message
  - From: François Patte <francois.patte@mi.parisdescartes.fr>
- Re: chkrootkit message
  - From: Reco <recoverym4n@gmail.com>
- Re: chkrootkit message
  - From: Brian <ad44@cityscape.co.uk>

Prev by Date: Re: Progress on my new Debian box
Next by Date: Re: raid/mdadm help
Previous by thread: Re: chkrootkit message
Next by thread: Re: chkrootkit message
Index(es):
- Date
- Thread