| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 14 Mar 2011 12:28:11 -0700 From: Justin <wellspring3@...il.com> To: Steven Rostedt <rostedt@...dmis.org> Cc: linux-kernel@...r.kernel.org Subject: Re: milw0rm rootkit Yes, she runs 2.6.34.8-68.fc13.i686.PAE I know this is for the kernel... The C file seems to exploit a vulnerability in the kernel, so I thought I should let the kernel people know so they could patch it upstream. Right? I know the hacker couldnt have gotten in if the security was stronger, but shouldnt the kernel be secured against the rootkit? On Mon, Mar 14, 2011 at 12:08 PM, Steven Rostedt <rostedt@...dmis.org> wrote: > On Sun, Mar 13, 2011 at 07:31:43PM -0700, Justin wrote: >> My mothers computer was hacked with a program that seems to be > > Your mom runs Linux? Which distro? > >> milw0rm. The hacker left the source file in C on her computer. I have >> it and the IP address of the FTP server that he seemed to download it >> from. Who can I give the file to to be sure that it gets patched? And >> is there anything else I should do to help you guys make sure that >> this doesnt happen again? > > This is the Linux kernel mailing list, which I'm pretty sure was not the > cause of the hack, and thus the wrong list. Please contact the people > from the distribution that you are using. > > -- Steve > > >> >> I am not on the list, so please CC me any responses, thanks > -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists