security issue

[Christoph]

Hugh Rutledge wrote:
> I have updated to wu-ftp_2.5.0 but would like to do a good quick check to
> see whether any trojan horse was left behind.
> 
> Any recommendations?
> 

The best method (of course now it's too late for you) is to install &
run `tripwire` on your system.  This process catalogs every file on
your box with unique MD5 checksum (a signature of sorts).  Later on,
you run it again, and it'll report which files have changed.

For a security admin, it's important to regularly checkpoint you tripwire
data after patches, upgrades or new software installs.

I would be curious to know if the RPM pagackage manager could be utilized 
to compare what's been changed (to some extent)?



+------------------------
| christoph
| linuxguy at ici.net
| http://home.ici.net/~linuxguy


-
Subcription/unsubscription/info requests: send e-mail with
"subscribe", "unsubscribe", or "info" on the first line of the
message body to discuss-request at blu.org (Subject line is ignored).