[COPY] --- ROCK-COPYRIGHT-NOTE-BEGIN --- [COPY] [COPY] This copyright note is auto-generated by ./scripts/Create-CopyPatch. [COPY] Please add additional copyright information _after_ the line containing [COPY] the ROCK-COPYRIGHT-NOTE-END tag. Otherwise it might get removed by [COPY] the ./scripts/Create-CopyPatch script. Do not edit this copyright text! [COPY] [COPY] ROCK Linux: rock-src/package/mnemoc/chkrootkit/chkrootkit.desc [COPY] ROCK Linux is Copyright (C) 1998 - 2006 Clifford Wolf [COPY] [COPY] This program is free software; you can redistribute it and/or modify [COPY] it under the terms of the GNU General Public License as published by [COPY] the Free Software Foundation; either version 2 of the License, or [COPY] (at your option) any later version. A copy of the GNU General Public [COPY] License can be found at Documentation/COPYING. [COPY] [COPY] Many people helped and are helping developing ROCK Linux. Please [COPY] have a look at https://www.rocklinux.org/ and the Documentation/TEAM [COPY] file for details. [COPY] [COPY] --- ROCK-COPYRIGHT-NOTE-END --- [I] Checks for signs of rootkits [T] chkrootkit is a tool to locally check for signs of a rootkit. It contains [T] a chkrootkit: shell script that checks system binaries for rootkit [T] modification. The following tests are made: aliens, asp, bindshell, lkm, [T] rexedcs, sniffer, wted, z2, amd, basename, biff, chfn, chsh, cron, date, [T] du, dirname, echo, egrep, env, find, fingerd, gpm, grep, hdparm, su, [T] ifconfig, inetd, inetdconf, identd, killall, login, ls, mail, mingetty, [T] netstat, named, passwd, pidof, pop2, pop3, ps, pstree, rpcinfo, rlogind, [T] rshd, slogin, sendmail, sshd, syslogd, tar, tcpd, top, telnetd, timed, [T] traceroute, and write. ifpromisc.c checks whether the interface is in [T] promiscuous mode, chklastlog.c checks for lastlog deletions, chkwtmp.c [T] checks for wtmp deletions, check_wtmpx.c checks for wtmpx deletions [T] (Solaris only), and chkproc.c checks for signs of LKM trojans. [U] https://www.chkrootkit.org/ [A] Nelson Murilo [A] Klaus Steding-Jessen [M] Alejandro Mery [C] extra/security [L] OpenSource [S] Stable [V] 0.44 [P] X --?--5---9 233.800 [D] 3041333011 chkrootkit-0.44.tar.gz ftp://ftp.pangeia.com.br/pub/seg/pac/