[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] How to Nail a hidden process.

Subject: Re: [cobalt-users] How to Nail a hidden process.
From: "Steve Werby" <steve-lists@xxxxxxxxxxxx>
Date: Mon Apr 15 23:57:01 2002
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

"MAHESH PATIL" <mahesh_patil_99@xxxxxxxxx> wrote:
> my doubt :  Whether any process running in a system
> can hide from  ps -aux.

Yes, if a hacker used a rootkit to get into your system, then installed a
LKM (Loadable Kernel Module).  See the program LCAP which can prevent this
(to a degree) and grab the program Lsof (stands for LiSt of Open Files,
clever, eh?) and run it and see if you can find anything.  Once you've done
that report your findings and we can be of further assistance.

--
Steve Werby
President, Befriend Internet Services LLC
http://www.befriend.com/

References:
- [cobalt-users] How to Nail a hidden process.
  - From: MAHESH PATIL

Prev by Date: [cobalt-users] Copying Files
Next by Date: RE: [cobalt-users] How to Nail a hidden process.
Previous by thread: [cobalt-users] How to Nail a hidden process.
Next by thread: RE: [cobalt-users] How to Nail a hidden process.

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index