-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wednesday, 2009-05-06 at 20:02 -0000, Jim Henderson wrote:
On Wed, 06 May 2009 21:44:16 +0200, Carlos E. R. wrote:
I think jdd may refer to the checksum that the rpm database keeps and which can be used to learn if a file has been changed since installed. However, if you want to use checksums for security checking, you have to store them in external, RO media, and use a live CD to do the checking, not the system which is being audited.
Perhaps, I don't know if the rpm database uses md5sum or not,
It does.
but even if it does, the md5sum algorithm is well known and could be implemented into the piece of software that's checking.
Of course that also assumes that all executables are accounted for in the rpm database.
They are. All files, executables or not. Have a look at man rpm, "verify-options". - -- Cheers, Carlos E. R. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) iEYEARECAAYFAkoB9m8ACgkQtTMYHG2NR9X8JwCfSQcVWYZSsTFHfEG/9hy1UFKs nhQAnRqfZ0NYHVbAa8Xe6xno47dKyJ5X =/M16 -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org