Language Selection

English French German Italian Portuguese Spanish

Rootkit levels of infection and mitigation

Filed under
HowTos

Hackers don many disguises in order to sneak past IT security guards. The rootkit, one of the most effective disguises, not only masks the intruder, but covers his trail.

The rootkit's origins are deeply rooted in early methods of "backdooring" Unix-based workstations and servers. Current examples encompass a variety of functions and features that further improve upon existing methods (where they don't redefine them outright). Today, the term rootkit is divorced from operating system dependency. While a strong security implementation can help mitigate the effectiveness of rootkit installation, removal of such malware is -- unfortunately -- an inexact science, and usually requires a drive format and full re-installation of the original operating system to ensure a clean and proper restoration.

Understanding this basic principle illustrates precisely why attempts to remove a determined rootkit can be impractical. The very tools used to identify such threats are susceptible to direct manipulation by these threats. One such popular tool used for rootkit detection is chkrootkit[1], which can currently identify 60 known Linux-based rootkits.

Full Story.

More in Tux Machines

Wireless-enabled i.MX6 SBC offers remote IoT management

Eurotech’s “CPU-351-13″ SBC runs Linux on Freescale’s i.MX6 SoC, and offers ZigBee, GPS, extended temperature operation, remote IoT management, and more. Eurotech has been promoting the concept of managed Internet of Things devices long before “IoT” became the latest craze. The Yocto Linux ready CPU-351-13 single board computer is the latest of its embedded boards that can be remote controlled using its Everyware Software Framework (ESF) and Everyware Cloud Client. Other Everyware-enabled products from Eurotech include last year’s Intel Atom E3800 based Catalyst BT module. Read more

Today in Techrights

Leftovers: Software

  • gimp-paint-studio addon soon on Gnome Software Center
    Image speaks itself. gimp-paint-studio package just got an metainfo needed for Gnome Software Center as add-on for Gimp based on related Richard Hughes' blog. The updated package will be shortly available in Rawhide and also in Fedora 21 updates-testing repository. It will not be included for Fedora 20 due to the preview release of Gnome Software lacking addons support. Next step will be contacting upstream adding that metainfo. Hopefully other add-ons maintainers for applications such as Inkscape and Blender will do the same to bring a richful experiences to users.
  • CD Audio Grabbers - Graphical Based
    CD audio grabbers are designed to extract ("rip") the raw digital audio (in a format commonly called CDDA) from a compact disc to a file or other output. This type of software enables a user to encode the digital audio into a variety of formats, and download and upload disc info from freedb, an internet compact disc database.
  • tinyfugue: Rime of the ancient adventurer

today's howtos