chkrootkir LKM Trojan ?

[redwolf963]

I like all the input.There is a way java,or javascript,actionscript thru
cross site scripting,to own a router that uses HTTP or HTTPS as it's
interface.Pretty simple method,too.

I had thought I was secure by having javasript blocked on unknown sites
with an extension on firefox,but xss can read session cookies and steal
your info that way.Pretty sneaky and dangerous.

Still don't know whether to reinstall or try other rootkit detection
methods:Blacklight from F-Secure(I think,or F-Prot).Also I have a few
hard disks around,so I might even try a little forensics on it.

I have the luxury of time to do this,so could keep you posted on
findings:real trojan and how I got it,or false positive.Hopefully it's
the latter.

Thanks, redwolf963


-- 
redwolf963