On Mon, Mar 31, 2003 at 07:03:38PM +0200, Clement Hermann wrote: > Verifying a package compares information about the > installed files in the package with information about the > files taken from the package metadata stored in the rpm > database. Among other things, verifying compares the > size, MD5 sum, permissions, type, owner and group of each > file. Any discrepencies are displayed. Files that were > not installed from the package, for example, documentation > files excluded on installation using the "--excludedocs" > option, will be silently ignored. > > This could enable dpkg to alert if something is wrong, an maybe even to > restore > permissions/ownership when needed. > also, We could use it to check which package(s) is corrupted when a loss > of data occurs, > and, last but not least, we could check wether a basic rootkit was > installed and replaced some binaries/libraries. > > The file existence/permission check could be done with the actual .deb > format, I suppose, but we need a new field in the master control file to > put md5 information. I'm not sure how difficult it can be to implement. dpkg may support this directly someday, but for now: debsums - Verify installed package files against MD5 checksums. -- .''`. ** Debian GNU/Linux ** | Andrew Suffield : :' : http://www.debian.org/ | Dept. of Computing, `. `' | Imperial College, `- -><- | London, UK
Attachment:
pgprSamsboDDL.pgp
Description: PGP signature