Re: dpkg verify mode for security?

To: amos@dsi.co.il (Amos Shapira)
Cc: debian-devel@lists.debian.org
Subject: Re: dpkg verify mode for security?
From: Chris Fearnley <cjf@netaxs.com>
Date: Thu, 15 May 1997 16:51:07 -0400 (EDT)
Message-id: <[🔎] 199705152051.QAA25764@unix3.netaxs.com>
In-reply-to: <[🔎] 199705132027.XAA00350@birnam.dsi.co.il> from "Amos Shapira" at May 13, 97 11:27:41 pm

'Amos Shapira wrote:'
>
>I was asking over Linux-ISP about doing cleanup after breakins and got
>many "use tripwire" answers, and one which says that RPM has a verify
>mode which checks for files which were changed since they were
>installed.  Can the dpkg maintainers consider adding such a feature
>for Debian?

What does the rpm verify give you?  As far as I can tell it gives a
false sense of security.  Nothing more.  The rpm database is easily
hacked once root access is attained.

Tripwire or something similar is the only viable option.

-- 
Christopher J. Fearnley          |  Linux/Internet Consulting
cjf@netaxs.com                   |  Design Science Revolutionary
http://www.netaxs.com/~cjf       |  Explorer in Universe
ftp://ftp.netaxs.com/people/cjf  |  "Dare to be Naive" -- Bucky Fuller


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-devel-request@lists.debian.org . Trouble? 
e-mail to templin@bucknell.edu .

Reply to:

Follow-Ups:
- Re: dpkg verify mode for security?
  - From: Amos Shapira <amos@dsi.co.il>
- Re: dpkg verify mode for security?
  - From: Tom Lees <tom@lpsg.demon.co.uk>
- Re: dpkg verify mode for security?
  - From: "Darren/Torin/Who Ever..." <torin@daft.com>

References:
- dpkg verify mode for security?
  - From: Amos Shapira <amos@dsi.co.il>

Prev by Date: Re: Problems adding swap files
Next by Date: Search engine for bug-track
Previous by thread: Re: dpkg verify mode for security?
Next by thread: Re: dpkg verify mode for security?
Index(es):
- Date
- Thread