Slashdot Mirror

← Back to Stories (view on slashdot.org)

Rootkit Packaged for Debian

Posted by CmdrTaco on from the simplifying-the-0wnzing-process dept.

Erich writes "Debian Developer Simon Richter announced in this posting to debian-devel that he Intends to Package (ITP) a R00tk1t for Debian Linux. The rootkit will make use of debian mechanisms such as diversions to divert the original /bin/ls commands and replace them cleanly by the modified versions. Even reinstalling or upgrading the file-utils package (containing /bin/ls) will then not remove the modified /bin/ls and the rootkit will stay active, being probably the first upgrade-resistant rootkit! This rootkit will then be easy to install by doing "apt-get install rootkit" - a major useability aspect for our fellow wannabe-hackers, making Debian the premier choice for them."

1 of 125 comments (clear)

  1. News for nerds by Lxy · · Score: 2, Redundant

    Unless it's April 1st, then we just make up crap. Apparently there's no anonymous posting available today either.

    --

    There is no reasonable defense against an idiot with an agenda
    :wq