From f0160a0b7815836970248660501440b20952ece8 Mon Sep 17 00:00:00 2001 From: adrianp Date: Mon, 2 Jan 2006 18:42:18 +0000 Subject: Update chkrootkit to 0.46a Add a MESSAGE about false-positive results on non-supported platforms Helps to address PR# 31813 reported by Eric Mumpower From the README: 02/22/2005 - Version 0.45 chkproc.c: better support for Linux threads. New rootkit detected: Fu, Kenga3, ESRK. New test: chkutmp. -n option improvement. Minor bug fixes. 10/26/2005 - Version 0.46 chkproc.c: more fixes to better support Linux threads. chkutmp.c: improved execution speed. chkwtmp.c: segfault fixed. New rootkit detected: rootedoor. Mac OS X support added. Minor bug fixes. 10/28/2005 - Version 0.46a chkproc.c: bug fix for FreeBSD: chkproc was sending a SIGXFSZ (kill -25) to init, causing a reboot. --- security/chkrootkit/MESSAGE | 11 +++++++++++ security/chkrootkit/Makefile | 4 ++-- security/chkrootkit/distinfo | 9 ++++----- security/chkrootkit/patches/patch-ac | 13 ------------- 4 files changed, 17 insertions(+), 20 deletions(-) create mode 100644 security/chkrootkit/MESSAGE delete mode 100644 security/chkrootkit/patches/patch-ac (limited to 'security/chkrootkit') diff --git a/security/chkrootkit/MESSAGE b/security/chkrootkit/MESSAGE new file mode 100644 index 00000000000..489f8db5e4c --- /dev/null +++ b/security/chkrootkit/MESSAGE @@ -0,0 +1,11 @@ +=========================================================================== +$NetBSD: MESSAGE,v 1.1 2006/01/02 18:42:18 adrianp Exp $ + +Please note that using chkrootkit on a non-supported platform may lead +to false positive results. + +chkrootkit has been tested on: Linux 2.0.x, 2.2.x, 2.4.x and 2.6.x, +FreeBSD 2.2.x, 3.x, 4.x and 5.x, OpenBSD 2.x and 3.x., NetBSD 1.6.x, +Solaris 2.5.1, 2.6, 8.0 and 9.0, HP-UX 11, Tru64, BSDI and Mac OS X. + +=========================================================================== diff --git a/security/chkrootkit/Makefile b/security/chkrootkit/Makefile index a0600f4496f..37c9ec1d5d4 100644 --- a/security/chkrootkit/Makefile +++ b/security/chkrootkit/Makefile @@ -1,7 +1,7 @@ -# $NetBSD: Makefile,v 1.9 2005/12/05 20:50:55 rillig Exp $ +# $NetBSD: Makefile,v 1.10 2006/01/02 18:42:18 adrianp Exp $ # -DISTNAME= chkrootkit-0.44 +DISTNAME= chkrootkit-0.46a CATEGORIES= security MASTER_SITES= ftp://ftp.pangeia.com.br/pub/seg/pac/ diff --git a/security/chkrootkit/distinfo b/security/chkrootkit/distinfo index 280e3f56844..b03bd0021a1 100644 --- a/security/chkrootkit/distinfo +++ b/security/chkrootkit/distinfo @@ -1,8 +1,7 @@ -$NetBSD: distinfo,v 1.5 2005/02/24 13:10:05 agc Exp $ +$NetBSD: distinfo,v 1.6 2006/01/02 18:42:18 adrianp Exp $ -SHA1 (chkrootkit-0.44.tar.gz) = 54610d8dac4d0585306d95be5a55c2ac02c5fec6 -RMD160 (chkrootkit-0.44.tar.gz) = 8a6fc38b300ed2ada879e15d7abe008914e16b75 -Size (chkrootkit-0.44.tar.gz) = 34163 bytes +SHA1 (chkrootkit-0.46a.tar.gz) = 5213b107cda5e5165da463650885efe8c15a14d2 +RMD160 (chkrootkit-0.46a.tar.gz) = 9016abfd7cd3d986aec86722c9a9b88dea7bf49b +Size (chkrootkit-0.46a.tar.gz) = 37140 bytes SHA1 (patch-aa) = c47ecb09d02c710727420a3adfb7d8b62d721f2d SHA1 (patch-ab) = 109a43494bda8d0966164b7684f63a6a83f2d829 -SHA1 (patch-ac) = 857ac79001fd5fc4f3f88e905af212fab63e3d06 diff --git a/security/chkrootkit/patches/patch-ac b/security/chkrootkit/patches/patch-ac deleted file mode 100644 index c772abd4483..00000000000 --- a/security/chkrootkit/patches/patch-ac +++ /dev/null @@ -1,13 +0,0 @@ -$NetBSD: patch-ac,v 1.1 2004/09/28 10:41:59 adrianp Exp $ - ---- chkrootkit.orig Wed Sep 22 11:03:02 2004 -+++ chkrootkit Wed Sep 22 11:04:02 2004 -@@ -1175,7 +1175,7 @@ - $1 >= 3.0) print 1; else print 0}'` -eq 1 ] && \ - STATUS=${NOT_INFECTED} || STATUS=${INFECTED};; - 2) [ "${SYSTEM}" = "FreeBSD" -o ${SYSTEM} = "NetBSD" -o ${SYSTEM} = \ --"OpenBSD" -a `echo ${V} | ${awk} '{ if ($1 >= 2.8) print 1; print 0 }'` -eq 1 ] && STATUS=${NOT_INFECTED} || STATUS=${INFECTED};; -+"OpenBSD" -a `echo ${V} | ${awk} '{ if ($1 >= 2.8) print 1; else print 0 }'` -eq 1 ] && STATUS=${NOT_INFECTED} || STATUS=${INFECTED};; - 7) [ "${SYSTEM}" = "HP-UX" ] && STATUS=${NOT_INFECTED} || STATUS=${INFECTED};; - *) STATUS=${INFECTED};; - esac -- cgit v1.2.3