Re: security thru checksums?

To: debian-user@lists.debian.org
Subject: Re: security thru checksums?
From: Ben Collins <bmc@it.larc.nasa.gov>
Date: Wed, 18 Nov 1998 13:27:47 -0500
Message-id: <[🔎] 19981118132746.A27866@it.larc.nasa.gov>
In-reply-to: <[🔎] 13907.2700.265917.866220@cookie.forte.com>; from Cliff Draper on Wed, Nov 18, 1998 at 09:57:32AM -0800
References: <[🔎] 13907.2700.265917.866220@cookie.forte.com>

On Wed, Nov 18, 1998 at 09:57:32AM -0800, Cliff Draper wrote:
> Is there an option to dpkg (or it's friends) to verify that what's
> currently installed is the same as what should be installed?  In other
> words, if random cracker person decides to break into my system and
> change login, ls, and ps, can I compare from a .deb file that those
> programs are correct or not (using md5 checksums or some such)?
> 
> I don't acutally suspect my system was broken into, but a friend of
> mine was as such and I want to be prepared.

There is the debsums package which checks the packages files against the
md5sum list that came with it. There is also a program with debsums that
will generate the md5sum list for packages that didn't come with one. IMHO
i think that packages should be required to come with md5sums but this is
not the case right now. You can also look at /var/lib/dpkg/info/*.md5sums.

-- 
-----    -- - -------- --------- ----  -------  -----  - - ---   --------
Ben Collins <b.m.collins@larc.nasa.gov>                  Debian GNU/Linux
UnixGroup Admin - Jordan Systems Inc.                 bcollins@debian.org
------ -- ----- - - -------   ------- -- The Choice of the GNU Generation

Reply to:

References:
- security thru checksums?
  - From: Cliff Draper <cliffwd@forte.com>

Prev by Date: Re: partition table on dos zip disks
Next by Date: Re: Console mode with >80x24 possible?
Previous by thread: security thru checksums?
Next by thread: Re: security thru checksums?
Index(es):
- Date
- Thread