Jump to letter: [
ABCDEFGHIJKLMNOPQRSTUVWXYZ
]
chkrootkit - Tool to locally check for signs of a rootkit
chkrootkit is a tool to locally check for signs of a rootkit.
It contains:
* chkrootkit: shell script that checks system binaries for
rootkit modification.
* ifpromisc: checks if the network interface is in promiscuous mode.
* chklastlog: checks for lastlog deletions.
* chkwtmp: checks for wtmp deletions.
* chkproc: checks for signs of LKM trojans.
* chkdirs: checks for signs of LKM trojans.
* strings: quick and dirty strings replacement.
* chkutmp: checks for utmp deletions.
Packages
| Name |
Version |
Release |
Type |
Size |
Built |
| chkrootkit |
0.48 |
7.el5 |
src |
64 KiB |
Wed Apr 16 23:51:50 2008 |
Changelog
- * Thu Apr 17 22:00:00 2008 Manuel "lonely wolf" Wolfshant <wolfy{%}fedoraproject{*}org> - 0.48-7
- build for EPEL based on latest fedora-devel version; includes "Build with large
file API (#441638)"
- * Tue Mar 18 22:00:00 2008 Michael Schwendt <mschwendt{%}fedoraproject{*}org> - 0.48-6
- Delete the "suspect PHP files" check. Not only does it trigger
SIGPIPE for file names which contain special unescaped characters,
the second half is doubtful (it doesn't print any filenames and
gets confused by binary file contents).
- * Tue Feb 12 22:00:00 2008 Michael Schwendt <mschwendt{%}fedoraproject{*}org> - 0.48-5
- Fix the empty warning of the shell history files anomalies check.
- Initialise two variables in chkdirs.c to silence compiler.