Simple and convenient: chkrootkit and rootkitRootkit utility chkrootkit and rootkitHunter is old rootkit detection program.
Obviously, in a not writable external device at run time, they are more trusted tools, such as from a CD or write protect USB drive run-time. I like the SD card, it is because the write protection switch. These two programs can search known rooktkit, backdoor and local vulnerability exploits, and can be found in a limited number of suspicious activity. We need to run these tools of reason is that they can view the file system on/proc, ps and other important activities. Although they are not used for network, but it can quickly scan the PC. Versatile: TripwireTripwire is an intrusion detection and data integrity of the product, which allows users to build a performance optimization settings basic server status. It does not preclude a damage incident, but it can be the present state of the State and the ideal, compared to determine whether any accidental or deliberate changes. If any changes have been detected, it will be reduced to the minimum running obstacle. If you need to control on Linux or UNIX server changes, you have three options: open source Tripwire, Tripwire, a server version of Tripwire Enterprise Edition. Although these three products have some things in common, but they have a large number of different aspects, making this product can meet the requirements of the different IT environments. If open source Tripwire for monitoring a small number of servers is appropriate, because it does not require centralized control and reporting; the server version of Tripwire for those only in Linux/UNIX/Windows platform requires the server to monitor and provide detailed reports and optimization centralized server management, IT is an ideal solution; while the Enterprise Edition Tripwire for UNIX/Linux/Windows servers, databases, network devices, desktops, and directory servers securely audit configuration of the IT organization is the best choice.
No comments:
Post a Comment