Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

Emerge implementing MD5 checksums???
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
pwnell
n00b
n00b


Joined: 02 Mar 2003
Posts: 29
Location: South Africa
PostPosted: Sun Mar 16, 2003 10:22 pm    Post subject: Emerge implementing MD5 checksums??? Reply with quote
Hi,

I was reading on security in Linux and something came to my mind. In TripWire I think (I have never used it before) it is possible to create a MD5 hash of important system files and have TripWire check them regularly against its database of (known) good checksums.

Can't one modify emerge so that it has an extra option - say --verify or something - that if specified, it will verify the checksums for each file in the package specified on the command line as determined at compile (merge) time? This way - if an admin suspects his PC to be compromised and he does not run TripWire, he can quickly determine the integrity of the files.

-- Waldo
Back to top
View user's profile Send private message
Malakin
Veteran
Veteran


Joined: 14 Apr 2002
Posts: 1692
Location: Victoria BC Canada
PostPosted: Sun Mar 16, 2003 11:01 pm    Post subject: Reply with quote
"man qpkg" lists this. I assume it does what it sounds like it does.
Quote:
-mc, --check-md5 Verify package files md5


rpm also does this.
Back to top
View user's profile Send private message
Sven Vermeulen
Retired Dev
Retired Dev


Joined: 29 Aug 2002
Posts: 1345
Location: Mechelen, Belgium
PostPosted: Mon Mar 17, 2003 7:06 am    Post subject: Reply with quote
A sysadmin that wants to check the integrity of his system but refuses to install tripwire - or aide - should, well, let's just say he will have to have a good reason for that ;-)

tripwire and aide have far more possibilities then just hashing-checking...
Back to top
View user's profile Send private message
pwnell
n00b
n00b


Joined: 02 Mar 2003
Posts: 29
Location: South Africa
PostPosted: Mon Mar 17, 2003 7:21 am    Post subject: Reply with quote
Sven Vermeulen wrote:
A sysadmin that wants to check the integrity of his system but refuses to install tripwire - or aide - should, well, let's just say he will have to have a good reason for that ;-)


It is not that I am refusing to install it - I was merely interested in having the package manager (emerge) be able to verify the MD5-sums as well... Just feels to me as if it should be integrated with the package manager as well. Btw thanks for the tip on qpkg - I did not know about Gentoolkit.

And I will install TripWire ;) I already have snort on so at least IDS should be covered...
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2024 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy