Hi again. Well, reading the file $PORTSDIR/infrastructure/mk/bsd.port.mk, i can see that you can get if a binarie is compromised by:
cksum -b -a sha256 /usr/local/bin/program and see if this is equal to the +CONTETS file, if not, then, the binary maybe compromised ( i think, but not sure ). Sorry for my bad english. bye. 2008/12/18, Guillermo Bernaldo de Quiros Maraver <debug...@gmail.com>: > Hi all. > > i think, that, you can use chkrootkit for this, you can see more about > this software in their home page or in google. > > if you want to know more about this software, see the home page: > http://www.chkrootkit.org/ > > bye. > > 2008/12/18, jul <jul_...@yahoo.fr>: >> (Note: it is not related to packages integrity when installing) >> >> a small question, is there any way to check integrity of installed >> packages'binaries ? >> i explain: in the case, i fear my host is compromised and i forgot or >> have corrupted mtree files, can i ask pkg manager to say if any >> referenced file has a different checksums than recorded. (+CONTENTS file >> has md5 and size) >> >> i know, this does not concern any base binaries which are the stuff that >> matter the most, but else ... >> If no mtree, i think the last option is comparing with binaries from CD >> hoping they didn't changed. >> >> thanks >> Regards
