[1768] in linux-security and linux-alert archive
[linux-security] Re: Re: Re: Re: Bind Overrun Bug and Linux
daemon@ATHENA.MIT.EDU (Wietse Venema)
Fri May 22 16:45:13 1998
Date: Fri, 22 May 1998 13:41:20 -0400 (EDT)
From: wietse@porcupine.org (Wietse Venema)
In-reply-to: <3565781F.3F48650B@wisper.net>
To: linux-security@redhat.com
Cc: linux-security@redhat.com
Resent-From: linux-security@redhat.com
Reply-To: linux-security@redhat.com
Leigh Porter:
> I keep a secret store of such handy things as ls, ps etc on all my systems and
> every
> night I have a process check the md5sum of every config/binary/lib on the box
> and report any problems to me.
>
> No it's not fun :)
Beware, the kernel open() routine does not necessarily give you
the same file as the kernel exec() routine. Your checksum does
not necessarily apply to the file being executed.
Wietse
--
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------
To unsubscribe: mail -s unsubscribe test-list-request@redhat.com < /dev/null