Linux Trojan - hypothetically speaking...

Grant email at
Fri Sep 19 15:05:49 PDT 2003

All the win32 trojans spreading over internet got me to thinking...

What features would a linux trojan have?

Would you write it in obfuscated sh script? Or a i386 binary?

You could assume sendmail semantics for further propagation, but where 
to get the addresses? Maybe grep for patterns that are email address 
like. That would probably yield all sorts of goodies. Try this 3-liner, 
for instance, you might be surprised.

grep -h -I -E -r -o \
'[_-.[:alpha:]]{2,}@[_-.[:alpha:]]*.com' ~/.. \
| sort -u

More information about the lfs-chat mailing list