ports/66660: NEW PORT: rkhunter
Radim Kolar
hsn at netmag.cz
Sat May 15 11:30:36 UTC 2004
>Number: 66660
>Category: ports
>Synopsis: NEW PORT: rkhunter
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: update
>Submitter-Id: current-users
>Arrival-Date: Sat May 15 04:30:35 PDT 2004
>Closed-Date:
>Last-Modified:
>Originator: Radim Kolar
>Release: FreeBSD 5.2.1-RELEASE-p6 i386
>Organization:
Sanatana Dharma
>Environment:
System: FreeBSD asura.bsd 5.2.1-RELEASE-p6 FreeBSD 5.2.1-RELEASE-p6 #7: Mon May 10 17:15:51 CEST 2004 root at asura.bsd:/usr/src/sys/i386/compile/UP i386
>Description:
Here comes a port of Rootkit detector http://www.rootkit.nl/.
I have not checked ports tree for about a week, it may be ported by somebody else.
>How-To-Repeat:
>Fix:
# This is a shell archive. Save it in a file, remove anything before
# this line, and then unpack it by entering "sh file". Note, it may
# create directories; files and directories will be owned by you and
# have default permissions.
#
# This archive contains:
#
# rkhunter/
# rkhunter/Makefile
# rkhunter/pkg-descr
# rkhunter/distinfo
#
echo c - rkhunter/
mkdir -p rkhunter/ > /dev/null 2>&1
echo x - rkhunter/Makefile
sed 's/^X//' >rkhunter/Makefile << 'END-of-rkhunter/Makefile'
X# New ports collection makefile for: rkhunter
X# Date created: 14 May 2004
X# Whom: Radim Kolar
X#
X# $FreeBSD$
X#
X
XPORTNAME= rkhunter
XPORTVERSION= 1.0.8
XCATEGORIES= security
XMASTER_SITES= http://downloads.rootkit.nl/
X
XMAINTAINER= ports at freebsd.org
XCOMMENT= Rootkit detection tool
X
XRUN_DEPENDS=${SITE_PERL}/${PERL_ARCH}/Digest/SHA1.pm:${PORTSDIR}/security/p5-Digest-SHA1
X
XWRKSRC= ${WRKDIR}/${PORTNAME}
XUSE_PERL5= yes
XNO_BUILD= yes
X
XPLIST_DIRS= rkhunter/scripts rkhunter/db rkhunter/docs rkhunter/tmp rkhunter
XPLIST_FILES= rkhunter/scripts/check_modules.pl \
X rkhunter/scripts/check_port.pl \
X rkhunter/scripts/filehashmd5.pl \
X rkhunter/scripts/filehashsha1.pl \
X bin/rkhunter \
X etc/rkhunter.conf \
X rkhunter/scripts/showfiles.pl \
X rkhunter/db/backdoorports.dat \
X rkhunter/db/mirrors.dat \
X rkhunter/db/os.dat \
X rkhunter/db/defaulthashes.dat \
X rkhunter/db/md5blacklist.dat \
X rkhunter/docs/CHANGELOG \
X rkhunter/docs/README \
X rkhunter/docs/WISHLIST
X
XMAN8= rkhunter.8
XMANCOMPRESSED= no
X
Xdo-install:
X cd ${WRKSRC} && ./installer.sh
X ${INSTALL_MAN} ${WRKSRC}/files/development/rkhunter.8 ${MAN8PREFIX}/man/man8
X
X.include <bsd.port.mk>
END-of-rkhunter/Makefile
echo x - rkhunter/pkg-descr
sed 's/^X//' >rkhunter/pkg-descr << 'END-of-rkhunter/pkg-descr'
XRootkit Hunter is scanning tool to ensure you for about 99.9% you're
Xclean of nasty tools.
X
XThis tool scans for rootkits, backdoors and local exploits by running
Xtests like:
X
X- MD5/SHA1 hash compare
X- Look for default files used by rootkits
X- Wrong file permissions for binaries
X- Look for suspected strings in LKM and KLD modules
X- Look for hidden files
X- Optional scan within plaintext and binary files
X
XWWW: http://www.rootkit.nl/
END-of-rkhunter/pkg-descr
echo x - rkhunter/distinfo
sed 's/^X//' >rkhunter/distinfo << 'END-of-rkhunter/distinfo'
XMD5 (rkhunter-1.0.8.tar.gz) = bc1006d36e5b2674985c9396b5c46c95
XSIZE (rkhunter-1.0.8.tar.gz) = 77582
END-of-rkhunter/distinfo
exit
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-ports-bugs
mailing list