[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[ossec-list] Re: false alarm??
yes, check the mailing list archive the issue has been reported. (it's a false possitive)
On 8/8/06, Stephen Hawkins <
ng0g@xxxxxxxxx> wrote:
ossec-list,
I am running SuSE 10.0. I got the exact same alarm that the person who was in
the /. posting about ossec did. See below:
-------------------------cut----------------------------------
OSSEC HIDS Notification.
2006 Aug 08 06:54:50
Received From: linux->rootcheck
Rule: 14 fired (level 8) -> "Rootkit detection engine message"
Portion of the log(s):
Rootkit 'ZK' detected by the presence of file
'/etc/sysconfig/console/load.zk'.
-------------------------------cut-------------------------------------
Has anyone figured out what this is coming from?
Thanks,
Steve
--
73 49 111 01001001
Steve Hawkins NG0G
ng0g@xxxxxxxx
OSSEC home |
Main Index |
Thread Index
OSSEC project: www.ossec.net.
Mailling list information: http://www.ossec.net/en/mailing_lists.html.