-diff -Nur chkrootkit-0.39a.orig/chkrootkit chkrootkit-0.39a/chkrootkit
---- chkrootkit-0.39a.orig/chkrootkit Thu Jan 30 23:45:57 2003
-+++ chkrootkit-0.39a/chkrootkit Sat Feb 8 16:49:10 2003
-@@ -130,22 +130,22 @@
- return ${NOT_TESTED}
+diff -Nur chkrootkit-0.48.orig/chkrootkit chkrootkit-0.48/chkrootkit
+--- chkrootkit-0.48.orig/chkrootkit 2007-12-17 19:54:42.000000000 +0100
++++ chkrootkit-0.48/chkrootkit 2008-01-02 15:48:19.000000000 +0100
+@@ -158,23 +158,23 @@
fi
+ if [ "${EXPERT}" = "t" ]; then
+- expertmode_output "./ifpromisc" -v
++ expertmode_output "/usr/bin/chkrootkit-ifpromisc" -v
+ return 5
+ fi
- if [ ! -x ./ifpromisc ]; then
- echo "not tested: can't exec ./ifpromisc"
-+ if [ ! -x /usr/bin/ifpromisc ]; then
++ if [ ! -x /usr/bin/chkrootkit-ifpromisc ]; then
+ echo "not tested: can't exec /usr/bin/chkrootkit-ifpromisc"
return ${NOT_TESTED}
+ else
+- [ "${QUIET}" != "t" ] && ./ifpromisc -v || ./ifpromisc -q
++ [ "${QUIET}" != "t" ] && /usr/bin/chkrootkit-ifpromisc -v || /usr/bin/chkrootkit-ifpromisc -q
fi
+ }
- if [ "${EXPERT}" = "t" ]; then
-- expertmode_output "./ifpromisc"
-+ expertmode_output "/usr/bin/chkrootkit-ifpromisc"
- return 5
+ chkutmp() {
+- if [ ! -x ./chkutmp ]; then
+- echo "not tested: can't exec ./chkutmp"
++ if [ ! -x /usr/bin/chkrootkit-chkutmp ]; then
++ echo "not tested: can't exec /usr/bin/chkrootkit-chkutmp"
+ return ${NOT_TESTED}
+ fi
+- if ./chkutmp
++ if /usr/bin/chkrootkit-chkutmp
+ then
+ if [ "${QUIET}" != "t" ]; then echo "chkutmp: nothing deleted"; fi
fi
- echo
-- ./ifpromisc
-+ /usr/bin/chkrootkit-ifpromisc
+@@ -182,8 +182,8 @@
}
z2 () {
return ${NOT_TESTED}
fi
-@@ -153,31 +153,31 @@
- LASTLOG=`loc lastlog lastlog "${ROOTDIR}var/log ${ROOTDIR}var/adm"`
+@@ -196,32 +196,32 @@
+ fi
if [ "${EXPERT}" = "t" ]; then
- expertmode_output "./chklastlog -f ${WTMP} -l ${LASTLOG}"
- if ./chklastlog -f ${WTMP} -l ${LASTLOG}
+ if /usr/bin/chkrootkit-chklastlog -f ${WTMP} -l ${LASTLOG}
then
- if [ "${QUIET}" != "t" ]; then echo "nothing deleted"; fi
+ if [ "${QUIET}" != "t" ]; then echo "chklastlog: nothing deleted"; fi
fi
}
+ expertmode_output "/usr/bin/chkrootkit-check_wtmpx"
return 5
fi
-- if ./check_wtmpx
-+ if /usr/bin/chkrootkit-check_wtmpx
- then
- if [ "${QUIET}" != "t" ]; then \
- echo "nothing deleted in /var/adm/wtmpx"; fi
-@@ -187,12 +187,12 @@
+ if [ -f ${ROOTDIR}var/adm/wtmp ]; then
+- if ./check_wtmpx
++ if /usr/bin/chkrootkit-check_wtmpx
+ then
+ if [ "${QUIET}" != "t" ]; then \
+ echo "check_wtmpx: nothing deleted in /var/adm/wtmpx"; fi
+@@ -232,12 +232,12 @@
WTMP=`loc wtmp wtmp "${ROOTDIR}var/log ${ROOTDIR}var/adm"`
if [ "${EXPERT}" = "t" ]; then
- if ./chkwtmp -f ${WTMP}
+ if /usr/bin/chkrootkit-chkwtmp -f ${WTMP}
then
- if [ "${QUIET}" != "t" ]; then echo "nothing deleted"; fi
+ if [ "${QUIET}" != "t" ]; then echo "chkwtmp: nothing deleted"; fi
fi
-@@ -231,8 +231,8 @@
+@@ -275,8 +275,8 @@
prog=""
- if [ \( "${SYSTEM}" = "Linux" -o \( "${SYSTEM}" = "FreeBSD" -a \
- ${V} -gt 43 \) \) -a "${ROOTDIR}" = "/" ]; then
-- [ ! -x ./chkproc ] && prog="./chkproc"
-- [ ! -x ./chkdirs ] && prog="$prog ./chkdirs"
-+ [ ! -x /usr/bin/chkrootkit-chkproc ] && prog="/usr/bin/chkrootkit-chkproc"
-+ [ ! -x /usr/bin/chkrootkit-chkdirs ] && prog="$prog /usr/bin/chkrootkit-chkdirs"
- if [ "$prog" != "" ]; then
- # echo "not tested: can't exec $prog"
- return ${NOT_TESTED}
-@@ -241,7 +241,7 @@
- if [ "${EXPERT}" = "t" ]; then
- [ -r /proc/ksyms ] && ${egrep} -i "adore|sebek" < /proc/ksyms 2>/dev/null
- [ -d /proc/knark ] && ${ls} -la /proc/knark 2> /dev/null
-- expertmode_output "./chkproc -v -v"
-+ expertmode_output "/usr/bin/chkrootkit-chkproc -v -v"
- return 5
+ if [ \( "${SYSTEM}" = "Linux" -o \( "${SYSTEM}" = "FreeBSD" -a \
+ `echo ${V} | ${awk} '{ if ($1 > 4.3 || $1 < 6.0) print 1; else print 0 }'` -eq 1 \) \) -a "${ROOTDIR}" = "/" ]; then
+- [ -x ./chkproc -a "`find /proc | wc -l`" -gt 1 ] && prog="./chkproc"
+- [ -x ./chkdirs ] && prog="$prog ./chkdirs"
++ [ -x /usr/bin/chkrootkit-chkproc -a "`find /proc | wc -l`" -gt 1 ] && prog="/usr/bin/chkrootkit-chkproc"
++ [ -x /usr/bin/chkrootkit-chkdirs ] && prog="$prog /usr/bin/chkrootkit-chkdirs"
+ if [ "$prog" = "" ]; then
+ echo "not tested: can't exec $prog"
+ return ${NOT_TESTED}
+@@ -288,7 +288,7 @@
+ PV=`$ps -V 2>/dev/null| $cut -d " " -f 3 |${awk} -F . '{ print $1 "." $2 $3 }' | ${awk} '{ if ($0 > 3.19) print 3; else if ($0 < 2.015) print 1; else print 2 }'`
+ [ "$PV" = "" ] && PV=2
+ [ "${SYSTEM}" = "SunOS" ] && PV=0
+- expertmode_output "./chkproc -v -v -p $PV"
++ expertmode_output "/usr/bin/chkrootkit-chkproc -v -v -p $PV"
+ return 5
fi
-@@ -262,7 +262,7 @@
- echo "Warning: Knark LKM installed"
+@@ -315,7 +315,7 @@
+ if [ "${DEBUG}" = "t" ]; then
+ ${echo} "*** PV=$PV ***"
fi
-
-- if ./chkproc
-+ if /usr/bin/chkrootkit-chkproc
- then
- if [ "${QUIET}" != "t" ]; then echo "nothing detected"; fi
+- if ./chkproc -p ${PV}; then
++ if /usr/bin/chkrootkit-chkproc -p ${PV}; then
+ if [ "${QUIET}" != "t" ]; then echo "chkproc: nothing detected"; fi
+ else
+ echo "chkproc: Warning: Possible LKM Trojan installed"
+@@ -324,7 +324,7 @@
+ for i in /usr/share /usr/bin /usr/sbin /lib; do
+ [ -d $i ] && dirs="$dirs $i"
+ done
+- if ./chkdirs $dirs; then
++ if /usr/bin/chkrootkit-chkdirs $dirs; then
+ if [ "${QUIET}" != "t" ]; then echo "chkdirs: nothing detected"; fi
else
-@@ -1350,18 +1350,18 @@
+ echo "chkdirs: Warning: Possible LKM Trojan installed"
+@@ -1690,18 +1690,18 @@
if [ "${SYSTEM}" = "Linux" ]
then
-- if [ ! -x ./strings ]; then
+- if [ ! -x ./strings-static ]; then
- printn "can't exec ./strings-static, "
-+ if [ ! -x /usr/bin/chkrootkit-strings ]; then
++ if [ ! -x /usr/bin/chkrootkit-strings-static ]; then
+ printn "can't exec /usr/bin/chkrootkit-strings-static, "
return ${NOT_TESTED}
fi
if [ "${EXPERT}" = "t" ]; then
-- expertmode_output "./strings -a ${CMD}"
-+ expertmode_output "/usr/bin/chkrootkit-strings -a ${CMD}"
+- expertmode_output "./strings-static -a ${CMD}"
++ expertmode_output "/usr/bin/chkrootkit-strings-static -a ${CMD}"
return 5
fi
projects / packages / chkrootkit.git / blobdiff