What did it do that couldn't get out of the /dev directory? It's not windows, but suppose if the device files are made to be busy, they won't delete. I've heard sometimes isps run sniffers, suppose the major pay equivalent in windows is declude junkmail buster, running with the imail smtp server, sniffing out bad messages and deleting them on the spot. I know of it as a friend had an isp who appended a note of it's use to the x-headers. He switched to aol to get away from that, as it filters yahoogroups, and probably almost anything that doesn't have your address seen in the to header, real rotten. They should make it so users can get that off their account, but there's always someone else to choose if you don't like what your provider does. At 08:47 PM 12/19/01 -0600, you wrote: >Your descriptive profile is incorrect. I know this because of some first >hand experience. A hacker put linsniffer on my system and it repeatedly >broke email sessions and deleted the inbox messages. One time when I was >rebooting I noticed the error linsniffer can't run. So I search my system >documentation for linsniffer using locate man and info. locate was the >only tool to find anything and it was a subdirectory that couldn't be >deleted off of my /dev directory /dev/ida/linsniffer that contained lots >of files. So I wiped the speakup system out and later did some web >research on linsniffer. I found a site called http://www.attrition.org >that referenced linsniffer. So these hackers are writing their own web >sites too and making the information and probably the scripts available to >anyone that can do a web download. > > > > > >_______________________________________________ > >Blinux-list@redhat.com >https://listman.redhat.com/mailman/listinfo/blinux-list > >