* Aleksandr A.Babaylov <[EMAIL PROTECTED]> [000522 08:30] wrote:
> Alfred Perlstein writes:
> > > 2- how I can write somthing in a file that nobody can
> > > see them
> > > my mean: in crontab adding some command that this is
> > > hidden.
> > impossible(*) afaik.
> possible if use similar to linux emulator method
> to redirect open(2) - but it is TOO expansive
> and kernel need to be changed IMHO for this
Why not just trojan cron or any other deamon to periodically execute
some program?
After a compromise it's best to just reinstall and audit the rest of
your machines.
--
-Alfred Perlstein - [[EMAIL PROTECTED]|[EMAIL PROTECTED]]
"I have the heart of a child; I keep it in a jar on my desk."
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
