how can i get infected by a rootkit
hi all, a very general question:
hello, lets say i am on my user account (ie, non-root) on computer with linux. how can i get infected by a rootkit? there are so many tutorials out there on rootkit detection/prevention/removal but i don't really know specifically how a computer can get infected by a rootkit.
one way i can get infected with rootkits is some exploit letting the attacker open up a shell on my computer (with root access?) and install the rootkits on my computer.
if i am not running as root, how can rootkits that target the kernel successfully attack my computer? lets say i execute some application that is a trojan horse, can my kernel be compromised?
i am wondering how can something i don't have permission to write to (eg, kernel) when i am not running as root be compromised. One way i could find out is to infect my own computer with one but i rather not go there.