>5) Look for odd things; one way I have seen backdoors and pieces hidden is
>to create 'hidden' directories - esp. popular in /dev. Here are a couple
>of commands:
>
> find / -name '. ' -print
> find /dev -type f -o -type d -print
This reminded me.... you should check and verify all of the SUID and SGID
files on your system. Here's one for checking SUID.
find / -perm +4000 -print
Here's one for checking SGID
find / -perm +2000 -print
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list