
#################################################################################
#
# README and FAQ
#
#################################################################################
#
# Note: Please check the website for the
#       most actual version of this document.
#
#################################################################################
#

Project Members:
- Michael Boelen (Project leader / founder)

Translators:
- Dutch, English : Michael Boelen <michael AT rootkit.nl>
- Swedish        : Daniel Olsson <danielolsson14 AT hotmail.com>

#
#################################################################################
#
# FAQ
#
#################################################################################
#

Q: What is Rootkit Hunter?
A: It is an easy-to-use tool which checks machines running UNIX (clones) for the
   presence of rootkits and other unwanted tools.


Q: Rootkit Hunter tells me there is something wrong with my system, what to do?
A: If your system is infected with an rootkit, it's almost impossible to clean 
   it up (lets say with a full warranty it's clean). Never trust a machine which
   has been infected with a rootkit, because hiding is his main purpose.

   A clean install of the system is recommended after backing up the full system.
   So follow the next steps:
   1. Get the host offline
   2. Backup your data (as much as possible, including binaries and logfiles)
   3. Verify the integrity of this data
   4. Install your host with a fresh install
   5. Investigate the old log files and the possible used tools. Also investigate
      the services which were vulnerable at the time of hack.


Q: My operating system isn't supported! Can you add support for it?
A: Yes and no. Please use the contact form (http://www.rootkit.nl/contact/) and
   fill in which operating system you're using (include system architecture!).


Q: Can I help with the development of this project?
A: Everyone can help, but only with the following parts:
- Testing the application by using it on your server(s)
- Donate a (temporary) shell account so I can test on foreign/untested operating
  systems (like non-i386 architectures)
- Sent tips, trics or ideas about future options of Rootkit Hunter


See the website for the latest FAQ



