科技回声

28304283409234将近 3 年前

Seems to only relate to RHEL 6, or derivatives of, such as CentOS 6. Yes: 6. Which is as EOL as enterprise software gets: <a href="https://access.redhat.com/support/policy/updates/errata#Life_Cycle_Dates" rel="nofollow">https://access.redhat.com/support/policy/updates/errata#Life...</a>

评论 #31807195 未加载

评论 #31807102 未加载

评论 #31809978 未加载

rollcat将近 3 年前

OpenBSD has removed loadable kernel modules back in 2014; macOS is aggressively moving in the same direction. Meanwhile - is running a Linux system without module support even viable these days?<p>$ du -sh /lib/modules/$(uname -r)<p>294M /lib/modules/5.10.0-15-amd64

评论 #31811740 未加载

评论 #31810913 未加载

评论 #31810938 未加载

评论 #31809045 未加载

评论 #31809009 未加载

评论 #31829293 未加载

评论 #31810721 未加载

wazari972将近 3 年前

> To load the rootkit into kernel space, it is necessary to approximately match the kernel version used for compiling; it does not have to be strictly the same.<p>>> vermagic=2.6.32-696.23.1.el6.x86_64 SMP mod_unload modversions<p>do you know why they say "approximately match"? I thought it had to match exactly so that the kernel accepts to load the module

评论 #31807732 未加载

评论 #31810990 未加载

Linux Threat Hunting: ‘Syslogk’ a kernel rootkit found in the wild

3 条评论

Linux Threat Hunting: ‘Syslogk’ a kernel rootkit found in the wild

3 条评论