[BlueOnyx:01735] Re: Sendmail attack, again (ideas for a more permanent solution)

[David Wineman]

Another thought is to "freeze" the program environment.  In the windows and
SUSE world there is a product called Deep Freeze which does this.  Since most
of the "data" is organized in the home directory and un-executable is it
possible to freeze the environment until changes are needed, unfreeze it for
the changes and then refreeze it.  If someone hacks the machine like they did
in this case and a simple reboot cures it all including root kits.