Greg Hoglund: The definition of a rootkit

What I find interesting in the news these days are all the so-called experts, who have never coded a rootkit in their life, pontificating about coming up with a definition of rootkits - what is a rootkit, what is it not, when is a rootkit bad, when is it not.. well allow me to weigh in with some simple words. A rootkit is:

A rootkit is a tool that is designed to hide itself and other processes, data, and/or activity on a system.

There, simple! No need for your millions of lost dollars coming up w/ a formal definition backed by academics who can't code an exploit to save their life.

Linked by shanmuga Sunday, 5th February 2006 10:45AM