Re: Exploit or trojan
From: Steve Bremer (steveb_at_nebcoinc.com)
To: firstname.lastname@example.org Date: Fri, 19 Dec 2003 09:16:10 -0600
> A little addition here: Some Linux backdoors (Suckit, for example)
> doesn't work as a kernel module. It just opens /dev/kmem and patch it
> on the fly.
Using this method also requires more precision. If it's not done
properly, it can create stability problems as was the case when some
of the Debian servers were compromised.
System & Security Administrator