Dailydave mailing list archives
Re: Britney and Kevin are Chaotic
From: joanna <joanna () invisiblethings org>
Date: Fri, 27 May 2005 09:15:55 +0200
El Nahual wrote:
Fastly and stupidly saying, there is a nice solution to stop all malware and virus and bds, sign your shit and get anal on getting it to work, you can heck out the stuff on www.se46.se we are coding the unix version of it (so i wont get that tramped once it gets known)
attacker exploits some bug in the legitimate (certified) system process; the shellcode downloads and installs rootkit in the system; the rootkit makes traditional HIDSes, like Tripwire and probably your se46 (idea seems quite similar to thing called "Windows Software Restriction Policies" btw), completely blind to what is happening in the system...
what I would like to stress is that file system integrity is just the very beginning of host-based IDS. even if desktop computers are concerned.
joanna. _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com https://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- Re: Britney and Kevin are Chaotic, (continued)
- Re: Britney and Kevin are Chaotic Steve Lord (May 26)
- Re: Britney and Kevin are Chaotic Chris Anley (May 26)
- Re: Britney and Kevin are Chaotic byte_jump (May 26)
- Re: Britney and Kevin are Chaotic Chris Anley (May 26)
- Re: Britney and Kevin are Chaotic Adam Shostack (May 26)
- Re: Britney and Kevin are Chaotic byte_jump (May 26)
- Re: Britney and Kevin are Chaotic Holden Williamson (May 26)
- Re: Britney and Kevin are Chaotic dan (May 26)
- Re: Britney and Kevin are Chaotic Andrew R. Reiter (May 26)
- RE: Britney and Kevin are Chaotic El Nahual (May 26)
- Re: Britney and Kevin are Chaotic joanna (May 27)
- RE: Britney and Kevin are Chaotic El Nahual (May 27)
- Re: Britney and Kevin are Chaotic joanna (May 27)
- Re: Britney and Kevin are Chaotic Steve Lord (May 26)
- Re: Britney and Kevin are Chaotic Steve Lord (May 27)