[BlueOnyx:01735] Re: Sendmail attack, again (ideas for a more permanent solution)

David Wineman dw at abadata.com
Thu Jul 16 04:29:20 PET 2009


Another thought is to "freeze" the program environment.  In the windows and
SUSE world there is a product called Deep Freeze which does this.  Since most
of the "data" is organized in the home directory and un-executable is it
possible to freeze the environment until changes are needed, unfreeze it for
the changes and then refreeze it.  If someone hacks the machine like they did
in this case and a simple reboot cures it all including root kits.



More information about the Blueonyx mailing list