Tkil wrote: > As the other responder already pointed out, just updating the box > won't help, not in the face of malicious kernel modules, etc. The one bright note is that we haven't seen any sign of a malicious kernel module - once we were aware of a problem we quickly identified the rogue processes with netstat, lsof and ps.