On Thu, Dec 18, 2008 at 08:04:05PM +0100, jul spoke thusly: > (Note: it is not related to packages integrity when installing) > > a small question, is there any way to check integrity of installed > packages'binaries ? > i explain: in the case, i fear my host is compromised and i forgot or > have corrupted mtree files, can i ask pkg manager to say if any > referenced file has a different checksums than recorded. (+CONTENTS file > has md5 and size) > > i know, this does not concern any base binaries which are the stuff that > matter the most, but else ... > If no mtree, i think the last option is comparing with binaries from CD > hoping they didn't changed. > > thanks > Regards
A simple alternative way to check the integrity of files is at: https://calomel.org/ids_mtree.html I use ids.sh out of a nightly cronjob & cuss myself out every time I forget to run the script with 'generate' after changing something, as it doesn't miss anything. At least it hasn't yet. ;) And the plus is, it's done with mtree which is in base instead of using something third-party & having to fart around with another conf file. Denny White -- /"\ ASCII Ribbon Campaign \ / Respect for low technology. X Keep e-mail messages readable by any computer system. / \ Keep it ASCII. =============================================================== GnuPG key : 0x1644E79A | http://wwwkeys.nl.pgp.net Fingerprint: D0A9 AD44 1F10 E09E 0E67 EC25 CB44 F2E5 1644 E79A ===============================================================
