Web Hosting Forum | Lunarpages
News: July 14, 2008 - New Contest! - Submit Your WordPress Theme Designs, Win BIG!
June 30, 2008 - Submit Your Site for the July 08 Site of the Month Award!
 
Home Help Search Calendar Login Register
*
Welcome, Guest. Please login or register.
Did you miss your activation email? 		July 25, 2008, 06:27:44 PM


Login with username, password and session length


Web Hosting Forum | Lunarpages > Lunarpages Web Hosting - Advanced Assistance > Lunarpages - Dedicated Web Hosting > Lunarpages - Security > Is there an external Virus/trojan scanner (not from inside our system) ?
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Is there an external Virus/trojan scanner (not from inside our system) ?  (Read 723 times)
pstein
Intergalactic Cowboy
*****
Offline Offline

Posts: 53
« on: October 13, 2007, 01:49:52 AM »
When I log into WHM on our ded server there is a trojan scanner - ok.

But this scanner runs within the system which he should verify.

So the probability that root kits manipulate the results of this embedded scanner are high.

Is there something like an external virsu scanner ?

That means our target ded server shout be shutdown temporarily at first and a virus scanner running from a second, clean system should investigate the hard disc and files of our ded Server.

Is this possible ?

Peter
Logged
perestrelka
Administrator
Jedi
*****
Offline Offline

Posts: 980
« Reply #1 on: October 13, 2007, 11:57:00 AM »
Hi,

To manipulate the scanner the attacker must know where it is located and where it stores its databases which is difficult to determine.

Of course you can boot the server up with a bootable CD ROM with a scanner and check the OS using it. It is possible even to mount the / of the server to another machine by NFS and scan all files via network. You need to keep the scanner databases with binary signatures outside the server in the both cases or else the scanning can't be full.
Logged
Kind Regards,
Vlad Artamonov
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.3 | SMF © 2006-2007, Simple Machines LLC
Seo4Smf v0.2 © Webmaster's Talks

Valid XHTML 1.0! Valid CSS! Dilber MC Theme by HarzeM