[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ale] ipv6 dns requests???

Subject: [ale] ipv6 dns requests???
From: ale at spinnerdog.com (David Hamm)
Date: Tue Apr 20 08:14:58 2004
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]> <[email protected]>

I've heard a popular trick of crackers is to use IPV6.  It goes undetected 
since most aren't using it.  You might try using one of the rootkit tools to 
see if the system has been root kited.  

Some security experts suggest deleting the IPV6 modules from /lib/modules 
directories.  You could rename the IPV6 modules and reboot.  There is a 
chance the system might not come back up but if you've been cracked you 
probably want to re-load the system anyway.

http://www.net-security.org/software.php?id=531
http://www.chkrootkit.org/

On Tuesday 20 April 2004 07:54 am, Geoffrey wrote:
> Robert L. Harris wrote:
> > If you do "lsmod" is there anything related to ipv6?  If it's compiled
> > in static you may not be able to disable it.
>
> Yeah, I've got:
>
> ipv6                  227392  -1 (autoclean)
> key                    70456   0 (autoclean) [ipv6]
>
> I tried to remove them, but somethings got them busy.  I shutdown all
> network services, still busy. :(

Follow-Ups:
- [ale] ipv6 dns requests???
  - From: esoteric at 3times25.net (Geoffrey)
- [ale] ipv6 dns requests???
  - From: Robert.L.Harris at rdlg.net (Robert L. Harris)

References:
- [ale] ipv6 dns requests???
  - From: esoteric at 3times25.net (Geoffrey)
- [ale] ipv6 dns requests???
  - From: Robert.L.Harris at rdlg.net (Robert L. Harris)
- [ale] ipv6 dns requests???
  - From: esoteric at 3times25.net (Geoffrey)

Prev by Date: [ale] Free Artwork Site: www.openclipart.org
Next by Date: [ale] Linux Cluster Server Room
Previous by thread: [ale] ipv6 dns requests???
Next by thread: [ale] ipv6 dns requests???
Index(es):
- Date
- Thread