On Wed, 06 May 2009 21:44:16 +0200, Carlos E. R. wrote:
I think jdd may refer to the checksum that the rpm database keeps and which can be used to learn if a file has been changed since installed. However, if you want to use checksums for security checking, you have to store them in external, RO media, and use a live CD to do the checking, not the system which is being audited.
Perhaps, I don't know if the rpm database uses md5sum or not, but even if it does, the md5sum algorithm is well known and could be implemented into the piece of software that's checking. Of course that also assumes that all executables are accounted for in the rpm database. So on my system, blender would be, but wings3d wouldn't be. It seems a better strategy to do a checksum the first time a program the protection software (I won't call it 'firewall' since that seems to be confusing some people) sees it run, ask if the program should be allowed to do what it wants, and save that result until (and unless) the checksum changes. Jim -- Jim Henderson Please keep on-topic replies on the list so everyone benefits -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org