Path to this page:
./
security/chkrootkit,
Locally checks for signs of a rootkit
Branch: CURRENT,
Version: 0.58b,
Package name: chkrootkit-0.58b,
Maintainer: pkgsrc-userschkrootkit is a tool to locally check for signs of a rootkit. It
contains:
* chkrootkit: a shell script that checks system binaries for
rootkit modification.
* ifpromisc.c: checks if the network interface is in promiscuous
mode.
* chklastlog.c: checks for lastlog deletions.
* chkwtmp.c: checks for wtmp deletions.
* check_wtmpx.c: checks for wtmpx deletions. (Solaris only)
* chkproc.c: checks for signs of LKM trojans.
* chkdirs.c: checks for signs of LKM trojans.
* strings.c: quick and dirty strings replacement.
Required to build:[
pkgtools/cwrappers]
Master sites:
Filesize: 41.95 KB
Version history: (Expand)
- (2023-10-17) Updated to version: chkrootkit-0.58b
- (2023-10-16) Updated to version: chkrootkit-0.50nb2
- (2015-04-29) Updated to version: chkrootkit-0.50nb1
- (2014-12-08) Updated to version: chkrootkit-0.50
- (2013-06-16) Updated to version: chkrootkit-0.49
- (2008-06-02) Updated to version: chkrootkit-0.47nb1
CVS history: (Expand)
2023-10-17 21:24:04 by =?UTF-8?B?RnLDqWTDqXJpYyBGYXViZXJ0ZWF1?= | Files touched by this commit (5) |
Log message:
chkrootkit: Update to 0.58b
pkgsrc changes:
---------------
* Update to latest release.
* Update MASTER_SITES.
upstream changes:
-----------------
10/13/2016 - Version 0.51 Mumblehard backdoor/botnet detection
Linux.Xor.DDoS Malware
Malicious TinyDNS detection
Backdoors.Linux.Mokes.a detection
Minor bug fixes
13/03/2017 - Version 0.52 Linux.Proxy.10 detection
strings.c & chkutmp.c bug fixes
01/25/2019 - Version 0.53 Rocke Monero Miner detection
Added ss support
ifconfig.c bug fixes
Minor bug fixes
12/24/2020 - Version 0.54 PWNLNX4 and 6 Rootkits detection
BTRFS bug fix
Fedora bug fix
Bug fix release
06/10/2021 - Version 0.55 Umbreon Linux Rootkit detection
Kinsing.A Backdoor
RotaJakito Backdoor
Minor bug fixes
12/22/2022 - Version 0.56 Kovid rootkit
Syslogk rootkit
Minor bug fixes
01/13/2023 - Version 0.57 bug fix release
06/29/2023 - Version 0.58
New option to avoid scanning network filesystems (-T)
Linux BPFDoor Malware
Minor buf fixes
|
2023-10-16 22:55:52 by =?UTF-8?B?RnLDqWTDqXJpYyBGYXViZXJ0ZWF1?= | Files touched by this commit (6) |
Log message:
chkrootkit: Fix build on Darwin
|
2021-10-26 13:18:07 by Nia Alarie | Files touched by this commit (605) |
Log message:
security: Replace RMD160 checksums with BLAKE2s checksums
All checksums have been double-checked against existing RMD160 and
SHA512 hashes
Unfetchable distfiles (fetched conditionally?):
./security/cyrus-sasl/distinfo \
cyrus-sasl-dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40d.patch.v2
|
2021-10-07 16:54:50 by Nia Alarie | Files touched by this commit (606) |
Log message:
security: Remove SHA1 hashes for distfiles
|
2018-07-04 15:40:45 by Jonathan Perkin | Files touched by this commit (423) |
Log message:
*: Move SUBST_STAGE from post-patch to pre-configure
Performing substitutions during post-patch breaks tools such as mkpatches,
making it very difficult to regenerate correct patches after making changes,
and often leading to substituted string replacements being committed.
|
2015-11-04 02:18:12 by Alistair G. Crooks | Files touched by this commit (434) |
Log message:
Add SHA512 digests for distfiles for security category
Problems found locating distfiles:
Package f-prot-antivirus6-fs-bin: missing distfile fp-NetBSD.x86.32-fs-6.2.3.tar.gz
Package f-prot-antivirus6-ws-bin: missing distfile fp-NetBSD.x86.32-ws-6.2.3.tar.gz
Package libidea: missing distfile libidea-0.8.2b.tar.gz
Package openssh: missing distfile openssh-7.1p1-hpn-20150822.diff.bz2
Package uvscan: missing distfile vlp4510e.tar.Z
Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden). All existing
SHA1 digests retained for now as an audit trail.
|
2015-04-29 17:55:47 by Christos Zoulas | Files touched by this commit (4) |
Log message:
- fix false positive for netstat
- fix compilation mistake
|
2014-12-08 15:04:57 by Makoto Fujiwara | Files touched by this commit (5) |
Log message:
(pkgsrc)
- Add comment on patch-ac (from cvs log)
(upstream)
- Update 0.49 to 0.50
04/30/2014 - Version 0.50 new tests: linuxrootkit-AMD-64-sound
Operation Windigo ssh backdoor detection
Minor bug fixes
|