SPECS: chkrootkit-inetd.patch
Kamil Jakubowski
jakubowski.kamil at 3vnet.pl
Sat Jan 14 19:35:25 CET 2006
Patch chkrootkit-inetd.patch zmienia nazwe zmiennej SHELL na SHELL_
w funkcji chk_inetdconf ().
Powod.
Zmienna SHELL nie moze byc ustawiona na /bin/rbash,
czyli restricted shell.
Blad wystepuje gdy istnieje plik /etc/inetd.conf
oraz w /etc/shells mamy /bin/rbash
skrypt nie konczy zadania.
Uzywany shell na root KSH.
-------------- next part --------------
--- chkrootkit 2006-01-10 18:20:50.888138750 +0100
+++ chkrootkit.new 2006-01-10 18:31:42.396855500 +0100
@@ -2359,12 +2359,12 @@
fi
if [ -r ${ROOTDIR}etc/inetd.conf ]; then
- for SHELL in ${SHELLS}; do
- cat ${ROOTDIR}etc/inetd.conf | ${egrep} -v "^#" | ${egrep} "^.*stream.*tcp.*nowait.*$SHELL.*" > /dev/null
+ for SHELL_ in ${SHELLS}; do
+ cat ${ROOTDIR}etc/inetd.conf | ${egrep} -v "^#" | ${egrep} "^.*stream.*tcp.*nowait.*$SHELL_.*" > /dev/null
if [ ${?} -ne 1 ]; then
if [ "${EXPERT}" = "t" ]; then
echo "Backdoor shell record(s) in /etc/inetd.conf: "
- cat ${ROOTDIR}etc/inetd.conf | ${egrep} -v "^#" | ${egrep} "^.*stream.*tcp.*nowait.*$SHELL.*"
+ cat ${ROOTDIR}etc/inetd.conf | ${egrep} -v "^#" | ${egrep} "^.*stream.*tcp.*nowait.*$SHELL_.*"
fi
STATUS=${INFECTED}
fi
-------------- next part --------------
--- chkrootkit.spec 2006-01-10 12:31:29.000000000 +0100
+++ chkrootkit.spec.new 2006-01-10 19:17:31.640672500 +0100
@@ -18,6 +18,7 @@
Patch3: %{name}-wtmp.patch
Patch4: %{name}-usebash.patch
Patch5: %{name}-utmpx.patch
+Patch6: %{name}-inetd.patch
# Patch5-md5: 0dfeda71b081eaa8c316eca1f81b21f0
URL: http://www.chkrootkit.org/
BuildRequires: glibc-static
@@ -65,6 +66,7 @@
%patch3 -p1
%patch4 -p1
%patch5 -p1
+%patch6 -p0
%build
CC="%{__cc}"
More information about the pld-devel-pl
mailing list