Path: utzoo!mnetor!uunet!husc6!mailrus!nrl-cmf!ames!pasteur!agate!thoth9.berkeley.edu!jmm
From: jmm@thoth9.berkeley.edu
Newsgroups: comp.sys.mac.programmer
Subject: Re: Patching traps in LSC
Message-ID: <7715@agate.BERKELEY.EDU>
Date: 16 Mar 88 01:53:26 GMT
References: <7679@agate.BERKELEY.EDU> <18033@think.UUCP>
Sender: usenet@agate.BERKELEY.EDU
Reply-To: jmm@thoth9.berkeley.edu.UUCP ()
Organization: UC Berkeley, Celtic Studies program
Lines: 11

The reason I wanted to know about the PTCH resources is that I'm fiddling
around with intercepting all attempts to write new resources into the
System file.  It seems as if the viruses currently being discussed install
some sort of resource where it doesn't belong, and I thought that some
sort of watchdog for resources could be installed using patches.
Any comments, anyone?  Does this seem to be a reasonable thing to do?
And where I can get an infected system to experiement with?
/ James Moore		/    	|  jmm@bartleby.berkeley.edu
/ 			/	|--------------------------------------------|
/ Ma ta Gaeilge agut,	/	|   Nil aon speis ag Ollscoile na	     |
/ scriobh i!		/	|   California im bharulacha fein.           |