Re: Detecting rootkits?

From: Susan Bradley, CPA aka Ebitz SBS Rocks [MVP] (sbradcpa_at_pacbell.net)
Date: 07/21/03

• Next message: diane: "website changed ie configuration and added toolbar"
• Previous message: TC: "Re: Encrypted files recovery- drive crash"
• In reply to: JasonW: "Detecting rootkits?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Sun, 20 Jul 2003 15:49:55 -0700

Root kit is typically a "Unix" term. If someone has enabled the guest account
or has the password to the Administrator account, they they "own" a Windows box.

In general Download Microsoft Baseline Security Advisor
Microsoft Baseline Security Analyzer V1.1:
http://www.microsoft.com/technet/security/tools/Tools/mbsahome.asp?frame=true

GFI LANguard Network Security Scanner:
http://www.gfi.com/downloads/downloads.asp?pid=8&lid=1
This scans your system for trojans, etc.

JasonW wrote:

> Does anyone have a recommendation for testing for the presence of rootkit on
> a Windows system?
> I went to www.chkrootkit.org, but they seem to concentrate on UNIX based
> systems.
>
> This is a fairly new subject for me, so if anyone has some experience or can
> direct me towards more information, I'd appreciate it.
>
> -JasonW

--
"Don't lose sight of security.  Security is a state of being, not a
state of budget.  He with the most firewalls still does not win.
Put down that honeypot and keep up to date on your patches.  Demand
better security from vendors and hold them responsible.  Use what
you have, and make sure you know how to use it properly and effectively."
  ~ Rain Forest Puppy
http://www.wiretrip.net/rfp/txt/evolution.txt

• Next message: diane: "website changed ie configuration and added toolbar"
• Previous message: TC: "Re: Encrypted files recovery- drive crash"
• In reply to: JasonW: "Detecting rootkits?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

• Re: Unix vs. Windows Security
  ... and b) security will mean Internet security. ... There are some core issues
  at the heart of the UNIX vs. Windows security ... Neither were ever designed to
  be secure. ... (comp.security.misc)
• Re: Apple Computer sides with Satan
  ... Unix was better than contemporaneous Windows by a wide margin. ... I'm
  sure there were security issues with Solaris. ... was less secure than Microsoft
  without that actually being the case. ... (sci.astro.amateur)
• Re: Linux security
  ... Security hacks which are replicated ... like ACLs and SELinux and the
  like. ... The Windows XP defaults are insane. ... The UNIX defaults, however,
  are equally insane in the other direction. ... (Ubuntu)
• [Full-Disclosure] Counseling not to use Windows (was Re:Anonymoussurfing my ass!)
  ... they bounce at the mail gateway. ... Cracked Windows boxes are so much
  of a problem that they've become ... Unix admins have 30 years of experience under their
  ... > belts telling them what is good security practice and what is not. ...
  (Full-Disclosure)
• [Full-Disclosure] Counseling not to use Windows (was Re:Anonymoussurfing my ass!)
  ... they bounce at the mail gateway. ... Cracked Windows boxes are so much
  of a problem that they've become ... Unix admins have 30 years of experience under their
  ... > belts telling them what is good security practice and what is not. ...
  (Full-Disclosure)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint