Re: [malware-list] [RFC 0/5] [TALPA] Introtoalinuxinterfaceforonaccess scanning

From: Theodore Tso
Date: Tue Aug 05 2008 - 19:58:36 EST


On Tue, Aug 05, 2008 at 07:48:52PM -0400, Eric Paris wrote:
> I do believe for a number of AV vendors the answer is yes. I will try
> to have some offline conversations with the right people at a number of
> vendors and work to better define the threats that they wish to or
> believe they are able to help mitigate.

OK, and if the malware is running on the machine, does the malware
have root (superuser) access?

- Ted
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/