View previous topic :: View next topic |
Author |
Message |
pwnell n00b
Joined: 02 Mar 2003 Posts: 29 Location: South Africa
|
Posted: Sun Mar 16, 2003 10:22 pm Post subject: Emerge implementing MD5 checksums??? |
|
|
Hi,
I was reading on security in Linux and something came to my mind. In TripWire I think (I have never used it before) it is possible to create a MD5 hash of important system files and have TripWire check them regularly against its database of (known) good checksums.
Can't one modify emerge so that it has an extra option - say --verify or something - that if specified, it will verify the checksums for each file in the package specified on the command line as determined at compile (merge) time? This way - if an admin suspects his PC to be compromised and he does not run TripWire, he can quickly determine the integrity of the files.
-- Waldo |
|
Back to top |
|
|
Malakin Veteran
Joined: 14 Apr 2002 Posts: 1692 Location: Victoria BC Canada
|
Posted: Sun Mar 16, 2003 11:01 pm Post subject: |
|
|
"man qpkg" lists this. I assume it does what it sounds like it does.
Quote: | -mc, --check-md5 Verify package files md5 |
rpm also does this. |
|
Back to top |
|
|
Sven Vermeulen Retired Dev
Joined: 29 Aug 2002 Posts: 1345 Location: Mechelen, Belgium
|
Posted: Mon Mar 17, 2003 7:06 am Post subject: |
|
|
A sysadmin that wants to check the integrity of his system but refuses to install tripwire - or aide - should, well, let's just say he will have to have a good reason for that
tripwire and aide have far more possibilities then just hashing-checking... |
|
Back to top |
|
|
pwnell n00b
Joined: 02 Mar 2003 Posts: 29 Location: South Africa
|
Posted: Mon Mar 17, 2003 7:21 am Post subject: |
|
|
Sven Vermeulen wrote: | A sysadmin that wants to check the integrity of his system but refuses to install tripwire - or aide - should, well, let's just say he will have to have a good reason for that |
It is not that I am refusing to install it - I was merely interested in having the package manager (emerge) be able to verify the MD5-sums as well... Just feels to me as if it should be integrated with the package manager as well. Btw thanks for the tip on qpkg - I did not know about Gentoolkit.
And I will install TripWire I already have snort on so at least IDS should be covered... |
|
Back to top |
|
|
|