Re: How to Protect against Rootkits?

[pabrantes () pabrantes net]

Hello Yousef,

Well not opening "dodgy attachments" might help you in most of the cases, but rootkits are now comming in worms and 
also, like you said, from "trusted" sources, like the example of sony drm you gave. Although there are others, like 
norton's antivirus rootkit and Mr. & Mrs Smith DVD (once again related to DRM issues). 

So even taking special care regarding security it's always better, from time to time to run a rootkit scanner, just in 
case. You can check http://www.sysinternals.com/Utilities/RootkitRevealer.html 
where you can download a scanner called RootKitRevealer, f-secure also have one - called black light - which you can 
find in their page, although it's paied, but you can try a trial version.

Best regards,

Paulo Abrantes

# select * from www_places;
+---------------+--------------------------------+
| Description   | URL                            |                       
+---------------+--------------------------------+ 
| Blog          | http://www.pabrantes.net       |           
| Photo Gallery | http://pabrantes.deviantart.com|             
+---------------+--------------------------------+
2 rows in set (0.01 sec)


---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Tailor your education to your own professional goals with degree 
customizations including Emergency Management, Business Continuity Planning, 
Computer Emergency Response Teams, and Digital Investigations. 

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------