Slashdot Mirror


Windows Rootkits

GuidoJ writes "The Register is running an article by Kevin Poulsen of SecurityFocus Online about rootkits in Windows NT. While rootkits are a well-known issue in Unix and Linux systems, they have rarely been found on compromised Windows machines. According to the article, Windows NT backdoors have always been 'trivial', and they have caused enough havoc already. Imagine what a stealthy rootkit could do!"

9 of 322 comments (clear)

  1. And all this time by antis0c · · Score: 5, Funny

    I thought Windows WAS a rootkit.

    --

    ..There's a-dooin's a-transpirin'
  2. Is this new??? by TopShelf · · Score: 4, Funny

    I thought this was called "Windows Update"...

    --
    Stop by my site where I write about ERP systems & more
  3. This shows that Windows by ksheka · · Score: 4, Funny

    ...is approaching parity with Linux.

    --
    alias uptime="echo '5:33pm up 22342352324 days, 6:28, 2124315623 users, load average: 2432.40, 12312.31, 123123.19'"
  4. Heh...that's one way to decrease install size.. by A_Non_Moose · · Score: 4, Funny

    quote:
    "The stealth driver in my mind is the scary concept," says Mertens. "You can hide an elephant with it."


    So the first thing they do is hide the \winnt folder?
    .

    --
    Have you read the moderator guidelines? Well, have you, PUNK? (and I want a Karma: Gnarly option)
  5. Terminology by gmuslera · · Score: 3, Funny

    For what the article say, it is more a BSODkit than anything else.

  6. Re:rootkit my ass by Anonymous Coward · · Score: 3, Funny

    But why would you do that? Delerious you are! That would be so hard to command.Compare that to a simple telnet session.

  7. Why install a rootkit? by CoyoteGuy · · Score: 3, Funny

    Why install a rootkit when there are so many other, much easier vulnerabilities to exploit? I mean, come on... What haxx0r has time to write a rootkit, when they have oodles of options at their fingertips? It's the difference between a script kiddie and a real h@xx0r..

    If it were me, I would just find a buffer overflow, and have some fun..

    --
    Slashdot.. Land of nerds, trolls, and FlameBait..
  8. Re:How do you know Bill didn't? by Imperator · · Score: 4, Funny
    With closed source code, how do you know that there isn't a root kit included?
    Because China is getting access to the code, and if there's one code review team to make Microsoft trustworthy, it's the Chinese government.
    --

    Gates' Law: Every 18 months, the speed of software halves.
  9. The very best line from the article: by shrikel · · Score: 3, Funny

    "I'm absolutely, one hundred percent positive that there's probably ten more that we haven't seen publicly,"

    --
    Any sufficiently simple magic can be passed off as mere advanced technology.