Security Basics mailing list archives
Re: rootedrooted
From: Deb <deb.mailinglist () gmail com>
Date: Fri, 17 Nov 2006 13:25:23 +0530
Hi, You could do the following: 1) Do a clean install of slackware. 2) Close all the ports not needed. Such as time, auth and ssh. 3) Make sure that X does not allow remote connection. Someting like blocking the 6000 port will do the trick. 4) Run a firewall with a default policy of drop. 5) Do not install packages from unverified repositories on the web. Hope this helps Deb On 11/16/06, Dev Null <devj.nullj () gmail com> wrote:
I have slackware version 10.1.0 installed on an Intel P-IV for some time now and I use this system as desktop. No particular services running on this machine except tcp 37 time tcp 113 auth tcp 22 ssh and occasionally I run X on this system as well and some time download email. Today, I switched on my system and did some usual work. I was busy working with papers and the monitor went off in the standby mode. After sometime when I touched the keyboard the screen came back on. But what made me write this post was a message below that appeared on the prompt: $ rootedrooted exactly as above. I don't think that it appeared by some accident pressing of some keys. (1)How to determine that somebody really rooted this machine? (2)I would like to know what to do next if so? Thank you! --------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
--------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINEThe NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life.
http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
Current thread:
- rootedrooted Dev Null (Nov 16)
- Re: rootedrooted Alexey Vesnin (Nov 17)
- Re: rootedrooted Deb (Nov 17)
- <Possible follow-ups>
- Re: rootedrooted Dev Null (Nov 17)