diff options
author | edwin <edwin@FreeBSD.org> | 2003-09-04 21:03:05 +0800 |
---|---|---|
committer | edwin <edwin@FreeBSD.org> | 2003-09-04 21:03:05 +0800 |
commit | a0ceef84ce1b5957a58026924230b9cf33b0fbdb (patch) | |
tree | d97f8f5e232e437164692711a74363af3569f5c9 /security/chkrootkit | |
parent | 0afb979d51d4fbee599ba3d2fd4e29f457e8e95c (diff) | |
download | freebsd-ports-gnome-a0ceef84ce1b5957a58026924230b9cf33b0fbdb.tar.gz freebsd-ports-gnome-a0ceef84ce1b5957a58026924230b9cf33b0fbdb.tar.zst freebsd-ports-gnome-a0ceef84ce1b5957a58026924230b9cf33b0fbdb.zip |
Teach security/chkrootkit
I finnaly got fed up with that FAQ about chkrootkit. The
solution was either to add a Q+A to the FAQ or fix the port.
This introduce a new variable, FreeBSD5, that is set to
"yes" if we're running FreeBSD 5 or higher.
This variable is used to fix the tests of the following
binaries, so they would DTRT on FreeBSD 5: chfn chsh date
ls ps
I also fixed a bug in the cheking of vdir, but it's irrelevant
for FreeBSD.
Informed maintainer.
PR: ports/55919
Submitted by: Yonatan@xpert.com <Yonatan@xpert.com>
Diffstat (limited to 'security/chkrootkit')
-rw-r--r-- | security/chkrootkit/Makefile | 4 | ||||
-rw-r--r-- | security/chkrootkit/files/patch-chkrootkit | 84 |
2 files changed, 84 insertions, 4 deletions
diff --git a/security/chkrootkit/Makefile b/security/chkrootkit/Makefile index f58f906cc250..5772d0a95ad7 100644 --- a/security/chkrootkit/Makefile +++ b/security/chkrootkit/Makefile @@ -23,10 +23,6 @@ BINMODE= 0700 .include <bsd.port.pre.mk> -.if ${OSVERSION} >= 500000 -IGNORE= "Reports false positives on 5.x" -.endif - pre-patch: ${REINPLACE_CMD} -e "s/^CC/#CC/; s/^CFLAGS/#CFLAGS/" ${WRKSRC}/Makefile ${REINPLACE_CMD} -e \ diff --git a/security/chkrootkit/files/patch-chkrootkit b/security/chkrootkit/files/patch-chkrootkit new file mode 100644 index 000000000000..684a30e781a2 --- /dev/null +++ b/security/chkrootkit/files/patch-chkrootkit @@ -0,0 +1,84 @@ +--- chkrootkit.orig Sun Aug 24 12:04:58 2003 ++++ chkrootkit Sun Aug 24 12:08:26 2003 +@@ -1020,8 +1020,10 @@ + STATUS=${INFECTED} + fi;; + FreeBSD) ++ TMP="2" ++ if [ "${FreeBSD5}" = "yes" ]; then TMP="1"; fi + if [ `${strings} -a ${CMD} | \ +- ${egrep} -c "${GENERIC_ROOTKIT_LABEL}"` -ne 2 ] ++ ${egrep} -c "${GENERIC_ROOTKIT_LABEL}"` -ne "${TMP}" ] + then + STATUS=${INFECTED} + fi;; +@@ -1053,7 +1055,9 @@ + fi + fi;; + FreeBSD) +- if [ `${strings} -a ${CMD} | ${egrep} -c "${GENERIC_ROOTKIT_LABEL}"` -ne 2 ] ++ TMP="2" ++ if [ "${FreeBSD5}" = "yes" ] ; then TMP="1"; fi ++ if [ `${strings} -a ${CMD} | ${egrep} -c "${GENERIC_ROOTKIT_LABEL}"` -ne "${TMP}" ] + then + STATUS=${INFECTED} + fi;; +@@ -1264,7 +1268,10 @@ + return 5 + fi + +- if ${strings} -a ${CMD} | ${egrep} "${LS_INFECTED_LABEL}" >/dev/null 2>&1 ++ TMP="0" ++ if [ "${FreeBSD5}" = "yes" ] ; then TMP="1"; fi ++ if [ `${strings} -a ${CMD} | \ ++ ${egrep} -c "${LS_INFECTED_LABEL}"` -ne "${TMP}" ] + then + STATUS=${INFECTED} + fi +@@ -1342,7 +1349,10 @@ + return 5 + fi + +- if ${strings} -a ${CMD} | ${egrep} "${PS_I_L}" >/dev/null 2>&1 ++ TMP="0" ++ if [ "${FreeBSD5}" = "yes" ] ; then TMP="1"; fi ++ if [ `${strings} -a ${CMD} | \ ++ ${egrep} -c "${PS_I_L}"` -ne "${TMP}" ] + then + STATUS=${INFECTED} + fi +@@ -1560,7 +1570,10 @@ + return 5 + fi + +- if ${strings} -a ${CMD} | ${egrep} "${GENERIC_ROOTKIT_LABEL}" > /dev/null 2>&1 ++ TMP="0" ++ if [ "${FreeBSD5}" = "yes" ] ; then TMP="2"; fi ++ if [ `${strings} -a ${CMD} | \ ++ ${egrep} -c "${GENERIC_ROOTKIT_LABEL}"` -ne "${TMP}" ] + then + STATUS=${INFECTED} + fi +@@ -1750,7 +1763,7 @@ + STATUS=${NOT_INFECTED} + CMD=`loc vdir vdir $pth` + VDIR_INFECTED_LABEL="/lib/volc" +- if [ -r ${CMD} ]; then ++ if [ ! -r ${CMD} ]; then + return ${NOT_FOUND} + fi + +@@ -2323,6 +2336,13 @@ + + SYSTEM=`${uname} -s` + VERSION=`${uname} -r` ++ ++if [ "${SYSTEM}" = "FreeBSD" ] ; then ++ if [ -n '`uname -r | grep "^5"`' ] ; then ++ FreeBSD5="yes" ++ fi ++fi ++ + if [ "${SYSTEM}" != "FreeBSD" -a ${SYSTEM} != "OpenBSD" ] ; then + V=44 + else |