LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Fedora (https://www.linuxquestions.org/questions/fedora-35/)
-   -   help intergrity check of installed rpms (https://www.linuxquestions.org/questions/fedora-35/help-intergrity-check-of-installed-rpms-716797/)

vinnie_vinodh 04-04-2009 07:10 AM

help intergrity check of installed rpms
 
Hello
Recently i've tried the rpm integrity check command with -Va ...
So i've got it like this for many

S.5....T c /etc/yum.repos.d/rpmfusion-nonfree-rawhide.repo
S.5...T c /etc/yum.repos.d/rpmfusion-nonfree-updates-testing.repo
S.5....T c /etc/yum.repos.d/rpmfusion-nonfree-updates.repo
S.5....T c /etc/yum.repos.d/rpmfusion-nonfree.repo

>>>The 5 means that there is a change in MD5...
>>>For many others
S.?..... /usr/bin/Xorg
S.?....T c /etc/ppp/chap-secrets
S.?....T c /etc/ppp/pap-secrets
>>>For others its missing or "M" in place of "?" or something like

""thisprelink: /usr/lib/libhippocanvas-1.so.0.0.0: at least one of file's dependencies has changed since prelinking""

>>>>>So wht does this actually mean ???I'm a bit confused .....:confused:

>>>>> How do i have check that the installed rpms are good or integrity checking ??????and how to check integirty of .bin files?????


Sorry for my bad english.....&i'm in a bit hurry

Thanks in Advance For all

unSpawn 04-04-2009 08:20 AM

Quote:

Originally Posted by vinnie_vinodh (Post 3498222)
>>>For others its missing or "M" in place of "?" or something like

""thisprelink: /usr/lib/libhippocanvas-1.so.0.0.0: at least one of file's dependencies has changed since prelinking""

So wht does this actually mean ?

The report attributes you find doing `man rpm`. The question mark means the check couldn't be performed. Did you run the check as root account user? What are the files access permissions? The prelinking message may be due to an error in prelink or package updates and prelink cache not being in sync. Try running prelink and then verify again.


Quote:

Originally Posted by vinnie_vinodh (Post 3498222)
How do i have check that the installed rpms are good or integrity checking ?

RPM is one of the few mature package management systems that includes all the tools you would need to verify your installation. Regardless of any package management used, it's always a good idea to make a backup of your rpm databases and not to rely on just one toolkit or application for verifying system integrity and also install a system integrity checker like Samhain (active) or Aide (passive, also see Osiris or Integrit or even tripwire) or use checking features from say Rootkit Hunter. It's best practice to install such checkers right after installing the OS and before exposing it to any network.


Quote:

Originally Posted by vinnie_vinodh (Post 3498222)
and how to check integirty of .bin files?

See the system integrity checker part above. If that's too much for your taste you could save SHA1 or MD5 hashes (store a copy outside the system) and run manually or as cronjob.

vinnie_vinodh 04-04-2009 12:22 PM

Quote:

Originally Posted by unSpawn (Post 3498275)
The report attributes you find doing `man rpm`. The question mark means the check couldn't be performed. Did you run the check as root account user? What are the files access permissions? The prelinking message may be due to an error in prelink or package updates and prelink cache not being in sync. Try running prelink and then verify again.



RPM is one of the few mature package management systems that includes all the tools you would need to verify your installation. Regardless of any package management used, it's always a good idea to make a backup of your rpm databases and not to rely on just one toolkit or application for verifying system integrity and also install a system integrity checker like Samhain (active) or Aide (passive, also see Osiris or Integrit or even tripwire) or use checking features from say Rootkit Hunter. It's best practice to install such checkers right after installing the OS and before exposing it to any network.



See the system integrity checker part above. If that's too much for your taste you could save SHA1 or MD5 hashes (store a copy outside the system) and run manually or as cronjob.

>>>>Thanks For Info ....

No i have not done it with root permissions....

>>>I've installed tripwire and it seems a bit complicated .....Anyways i'll try others

>>>Is it good to install an rpm package which has no GPG signatures but the sha and md5 seems to be okay.....


All times are GMT -5. The time now is 06:55 PM.