Linux Lite Forums General Security & Bug Fixes v
Are they false ?


LINUX LITE 7.2 FINAL RELEASED - SEE RELEASE ANNOUNCEMENTS SECTION FOR DETAILS


Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Linear Mode
Are they false ?
bitsnpcs Offline
Platinum Member
*****
Posts: 3,237
Threads: 125
Joined: Jul 2014
Reputation: 0
#30
11-16-2017, 08:35 PM (This post was last modified: 11-16-2017, 08:39 PM by bitsnpcs.)
I have done searching it says chkrootkit Ebury is a known false positive, relate to -G

To test for Ebury older versions using shared memory segments I ran

Code:
sudo find /lib* -type f -name libns2.so

Clean

To test for Ebury newer version using Unix domain sockets I ran

Code:
sudo netstat -nap | grep "@/proc/udevd"

Clean

To prevent false positive due to added -G it uses -e Gg in this command, where I found an explanation of the command on Ubuntu threads.

Code:
ssh -G 2>&1 | grep -e illegal -e unknown -e Gg > /dev/null && echo "System clean" || echo "System infected"

The result was -

[Image: screen2.png]
Website Find
Reply


Messages In This Thread
Are they false ? - by bitsnpcs - 11-09-2017, 03:30 PM
Re: Are they false ? - by rokytnji - 11-09-2017, 05:46 PM
Re: Are they false ? - by bitsnpcs - 11-09-2017, 08:08 PM
Re: Are they false ? - by newtusmaximus - 11-11-2017, 02:09 PM
Re: Are they false ? - by trinidad - 11-11-2017, 02:17 PM
Re: Are they false ? - by bitsnpcs - 11-11-2017, 03:19 PM
Re: Are they false ? - by newtusmaximus - 11-11-2017, 03:29 PM
Re: Are they false ? - by newtusmaximus - 11-11-2017, 03:54 PM
Re: Are they false ? - by trinidad - 11-11-2017, 04:14 PM
Re: Are they false ? - by newtusmaximus - 11-11-2017, 04:35 PM
Re: Are they false ? - by bitsnpcs - 11-11-2017, 06:34 PM
Re: Are they false ? - by trinidad - 11-11-2017, 08:00 PM
Re: Are they false ? - by trinidad - 11-11-2017, 08:38 PM
Re: Are they false ? - by Vera - 11-11-2017, 09:00 PM
Re: Are they false ? - by trinidad - 11-11-2017, 09:26 PM
Re: Are they false ? - by bitsnpcs - 11-11-2017, 11:47 PM
Re: Are they false ? - by rokytnji - 11-12-2017, 04:44 AM
Re: Are they false ? - by ian_r_h - 11-12-2017, 09:21 AM
Re: Are they false ? - by trinidad - 11-12-2017, 03:24 PM
Re: Are they false ? - by newtusmaximus - 11-12-2017, 11:43 PM
Re: Are they false ? - by bitsnpcs - 11-14-2017, 08:54 PM
Re: Are they false ? - by Valtam - 11-15-2017, 02:41 AM
Re: Are they false ? - by bitsnpcs - 11-15-2017, 04:52 AM
Re: Are they false ? - by trinidad - 11-15-2017, 12:47 PM
Re: Are they false ? - by bitsnpcs - 11-15-2017, 02:12 PM
Re: Are they false ? - by bitsnpcs - 11-15-2017, 10:20 PM
Re: Are they false ? - by bitsnpcs - 11-16-2017, 12:23 AM
Re: Are they false ? - by JmaCWQ - 11-16-2017, 04:23 AM
Re: Are they false ? - by bitsnpcs - 11-16-2017, 07:32 PM
Re: Are they false ? - by bitsnpcs - 11-16-2017, 08:35 PM
Re: Are they false ? - by trinidad - 11-16-2017, 09:16 PM
Re: Are they false ? - by TheDead - 11-16-2017, 09:53 PM
Re: Are they false ? - by bitsnpcs - 11-16-2017, 10:22 PM
Re: Are they false ? - by JmaCWQ - 11-17-2017, 06:26 AM

Forum Jump:


Users browsing this thread: 15 Guest(s)