./security/chkrootkit, Locally checks for signs of a rootkit

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 0.50nb1, Package name: chkrootkit-0.50nb1, Maintainer: pkgsrc-users

chkrootkit is a tool to locally check for signs of a rootkit. It
contains:

* chkrootkit: a shell script that checks system binaries for
rootkit modification.
* ifpromisc.c: checks if the network interface is in promiscuous
mode.
* chklastlog.c: checks for lastlog deletions.
* chkwtmp.c: checks for wtmp deletions.
* check_wtmpx.c: checks for wtmpx deletions. (Solaris only)
* chkproc.c: checks for signs of LKM trojans.
* chkdirs.c: checks for signs of LKM trojans.
* strings.c: quick and dirty strings replacement.


Master sites:

SHA1: 0c3f40b2919d25421a90533c2fe6cca81321232c
RMD160: c038cc6ddbc0cf30d3492545bc02b1c95df973f1
Filesize: 37.711 KB

Version history: (Expand)


CVS history: (Expand)


   2015-11-04 02:18:12 by Alistair G. Crooks | Files touched by this commit (434)
Log message:
Add SHA512 digests for distfiles for security category

Problems found locating distfiles:
	Package f-prot-antivirus6-fs-bin: missing distfile fp-NetBSD.x86.32-fs-6.2.3.tar.gz
	Package f-prot-antivirus6-ws-bin: missing distfile fp-NetBSD.x86.32-ws-6.2.3.tar.gz
	Package libidea: missing distfile libidea-0.8.2b.tar.gz
	Package openssh: missing distfile openssh-7.1p1-hpn-20150822.diff.bz2
	Package uvscan: missing distfile vlp4510e.tar.Z

Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden).  All existing
SHA1 digests retained for now as an audit trail.
   2015-04-29 17:55:47 by Christos Zoulas | Files touched by this commit (4)
Log message:
- fix false positive for netstat
- fix compilation mistake
   2014-12-08 15:04:57 by Makoto Fujiwara | Files touched by this commit (5) | Package updated
Log message:
(pkgsrc)
- Add comment on patch-ac (from cvs log)
(upstream)
- Update 0.49 to 0.50
04/30/2014 - Version 0.50 new tests: linuxrootkit-AMD-64-sound
                          Operation Windigo ssh backdoor detection
                         Minor bug fixes
   2014-10-09 16:07:17 by Thomas Klausner | Files touched by this commit (1163)
Log message:
Remove pkgviews: don't set PKG_INSTALLATION_TYPES in Makefiles.
   2014-01-09 12:49:00 by Jonathan Perkin | Files touched by this commit (1)
Log message:
Avoid linking statically on SunOS.
   2013-06-16 12:11:58 by Sergey Svishchev | Files touched by this commit (4) | Package updated
Log message:
Update to 0.49 (released in 2011).  No change log.
   2013-04-06 23:07:37 by Blue Rats | Files touched by this commit (38)
Log message:
"Each sed command should appear in an assignment of its own."
   2012-10-23 20:17:02 by Aleksej Saushev | Files touched by this commit (368)
Log message:
Drop superfluous PKG_DESTDIR_SUPPORT, "user-destdir" is default these days.