Strange. I remember that I have never installed or activated rwhod. On performing an Internet security scanning, this one appeared running and I have no idea if it was under xinetd. This was a highly vulnerable daemon which could result in buffer overflow.
What I could do is to chmod /usr/sbin/rwhod and /etc/rc.d/init.d/rwhod to make the binary and script not executable.
No comments:
Post a Comment