Slashdot Mirror


A Look at BSD Rootkits

blackbearnh writes "Windows has a reputation for being easily exploited by rootkits, but just because you're using Linux or BSD doesn't mean you're safe from infection. In an interview on O'Reilly's ONLamp site, Joseph Kong (author of Designing BSD Rootkits ), talks about how to build and defend against Rootkits under BSD. 'I know a lot of people who refer to rootkits and rootkit-detectors as being in a big game of cat and mouse. However, it's really more like follow the leader — with rootkit authors always being the leader. Kind of grim, but that's really how it is. Until someone reveals how a specific (or certain class of) rootkit works, nobody thinks about protecting that part of the system. And when they do, the rootkit authors just find a way around it. This is what I meant earlier when I said rootkit hunting is hard — as you really have to validate the integrity of the entire system.'"

2 of 98 comments (clear)

  1. Illegal Book? by Numbah+One · · Score: 5, Funny

    is this book illegal in Germany?

  2. Re:Pardon me, but I'm not surprised by jalet · · Score: 5, Funny

    > based on my penetration testing and signature analysis.
    > E. Wyatt Tomlinson

    OK, so we finally analyzed your signature above, and now we would like to proceed with the penetration testing of you.

    Please advise.

    --
    Votez ecolo : Chiez dans l'urne !