[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: can netstat be infected
On Tue, 10 Jul 2012, Darrel wrote:
> I have a recent installation of NetBSD beta, which has been rebuilt
> chkrootkit reports that fstat is infected:
netstat not fstat.
> Checking `mingetty'... not found
> Checking `netstat'... INFECTED
> Checking `named'... not infected
The chkrootkit looks for a pattern in the strings output.
strings -a /usr/bin/netstat | egrep
So why does it think it is infected for you?
The package message says "Please note that using chkrootkit on a
non-supported platform may lead to false positive results." It is only
documented to have been tested on NetBSD for version 1.6.x.
Main Index |
Thread Index |