Greetings Matt:
I don't know Slackware, but if it uses RPM's, then there might be a
check like
rpm -Va 2>/dev/null | grep '^S.5'
I'm not sure if it is a false positive or not as I've seen machines
"just" connected to the Internet start getting attacked in five
minutes or so; and
http://www.dshield.org/ used to have an area (maybe
they still do) that shows the average time for a hacker to break into
a not purposely hardened and kept hardened box (typically in under 15
minutes).
Thank you.