[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <1318473268.15397.16.camel@ibis>
Date: Thu, 13 Oct 2011 03:34:28 +0100
From: "Matthew W.S. Bell" <matthew@...ls23.org.uk>
To: Linux Kernel Mailing List <linux-kernel@...r.kernel.org>
Subject: Re kernel.org status: hints on how to check your machine for
intrusion
On Fri, 30 Sep 2011 16:59:24 -0700, Greg KH wrote:
> 2. Verify that your package signatures match what your package manager thinks
> they are.
<snip>
> To do this on a Debian based system, run the following bash snippet:
> dpkg -l \*|while read s n rest; do if [ "$s" == "ii" ]; then echo $n;
> fi; done > ~/tmp.txt
> for f in `cat ~/tmp.txt`; do debsums -s -a $f; done
At least since squeeze, debsums defaults to checking all packages, so
the following is sufficient:
debsums -as
It may also be worth checking the output of:
debsums --list-missing
Matthew W.S. Bell
Download attachment "signature.asc" of type "application/pgp-signature" (491 bytes)
Powered by blists - more mailing lists