[packages/tiger] new, version 3.2.1
glen
glen at pld-linux.org
Wed Jun 26 21:58:30 CEST 2013
commit 1d52b1938e697e5a4a7b802d3fab1cbba5c2802d
Author: Elan Ruusamäe <glen at delfi.ee>
Date: Wed Jun 26 22:57:32 2013 +0300
new, version 3.2.1
created from resurected fedora package
85a28a12162ea3cc283aa6399196b81f69336b53
tiger-3.2.1-autotools.patch | 920 ++++
tiger-3.2.1-config.patch | 282 +
tiger-3.2.1-doc.patch | 4602 ++++++++++++++++
tiger-3.2.1-fixes.patch | 508 ++
tiger-3.2.1-gcc4.patch | 23 +
tiger-3.2.1-scripts.patch | 12283 ++++++++++++++++++++++++++++++++++++++++++
tiger.cron | 4 +
tiger.ignore | 82 +
tiger.ignore.server | 16 +
tiger.spec | 126 +
10 files changed, 18846 insertions(+)
---
diff --git a/tiger.spec b/tiger.spec
new file mode 100644
index 0000000..d77d471
--- /dev/null
+++ b/tiger.spec
@@ -0,0 +1,126 @@
+Summary: Security auditing on UNIX systems
+Name: tiger
+Version: 3.2.1
+Release: 0.1
+License: GPL+
+Group: Applications/System
+Source0: http://savannah.nongnu.org/download/tiger/%{name}-%{version}.tar.gz
+# Source0-md5: 7c4d6dc7c56b3b6f8fa349eca7f8e41d
+URL: http://www.nongnu.org/tiger/
+Source2: %{name}.cron
+Source3: %{name}.ignore
+Source4: %{name}.ignore.server
+Patch0: %{name}-3.2.1-autotools.patch
+Patch1: %{name}-3.2.1-config.patch
+Patch2: %{name}-3.2.1-doc.patch
+Patch3: %{name}-3.2.1-scripts.patch
+Patch4: %{name}-3.2.1-fixes.patch
+Patch5: %{name}-3.2.1-gcc4.patch
+BuildRequires: autoconf
+BuildRequires: recode
+Requires: bash
+Requires: crondaemon
+BuildRoot: %{tmpdir}/%{name}-%{version}-root-%(id -u -n)
+
+%define no_install_post_check_tmpfiles 1
+
+%description
+TIGER, or the "tiger" scripts, is a set of Bourne shell scripts, C
+programs and data files which are used to perform a security audit of
+UNIX systems. It is designed to hopefully be easy to use, easy to
+understand and easy to enhance.
+
+%prep
+%setup -q -n %{name}
+%patch0 -p1
+%patch1 -p1
+%patch2 -p1
+%patch3 -p1
+%patch4 -p1
+%patch5 -p1
+
+find -name "*.rpmorig" -o -name "*.orig" -o -name "*.old" -delete
+
+recode ISO-8859-1..UTF-8 man/tiger.8.in
+
+# Remove CVS dirs, sort by reverse, because there's dirs like CVS/CVS/Foo
+find -type d -name CVS -print0 | sort -zr | xargs -0 rm -r
+
+install -d examples
+cp -p cronrc tigerrc tigerrc-all tigerrc-dist tigerrc-TAMU \
+ site-sample site-saturn %{SOURCE4} examples
+
+%build
+autoreconf -i
+%configure \
+ --with-tigerhome=%{_libdir}/%{name} \
+ --with-tigerwork=%{_localstatedir}/run/tiger/work \
+ --with-tigerlog=%{_localstatedir}/log/tiger \
+ --with-tigerbin=%{_sbindir} \
+ --with-tigerconfig=%{_sysconfdir}/tiger
+
+%{__make}
+
+%install
+rm -rf $RPM_BUILD_ROOT
+install -d $RPM_BUILD_ROOT{/etc/cron.d,%{_sysconfdir}/%{name}/templates}
+%{__make} -j1 install \
+ DESTDIR=$RPM_BUILD_ROOT
+
+cp -p %{SOURCE2} $RPM_BUILD_ROOT/etc/cron.d/tiger
+cp -p %{SOURCE3} $RPM_BUILD_ROOT%{_sysconfdir}/%{name}/tiger.ignore
+cp -p version.h $RPM_BUILD_ROOT%{_libdir}/%{name}
+
+ln -s %{_sbindir}/tigexp $RPM_BUILD_ROOT%{_libdir}/%{name}/tigexp
+
+# Perm fixes
+chmod +x $RPM_BUILD_ROOT%{_libdir}/%{name}/systems/Linux/2/check_*
+
+# Unwanted OS
+rm -r $RPM_BUILD_ROOT%{_libdir}/%{name}/systems/{AIX,HPUX,IRIX,NeXT,SunOS,UNICOS,UNICOSMK,Tru64,MacOSX}
+# Documentation (in %doc)
+rm -r $RPM_BUILD_ROOT%{_libdir}/%{name}/html
+rm -r $RPM_BUILD_ROOT%{_libdir}/%{name}/doc
+
+%clean
+rm -rf $RPM_BUILD_ROOT
+
+%files
+%defattr(644,root,root,755)
+%doc USING BUGS.EXTERN DESCRIPTION CREDITS README README.1st README.hostids
+%doc README.ignore README.linux README.signatures README.sources
+%doc README.time README.unsupported README.writemodules TODO
+%doc examples html
+%dir %{_sysconfdir}/%{name}
+%config(noreplace) %verify(not md5 mtime size) %{_sysconfdir}/%{name}/cronrc
+%config(noreplace) %verify(not md5 mtime size) %{_sysconfdir}/%{name}/tiger.ignore
+%config(noreplace) %verify(not md5 mtime size) %{_sysconfdir}/%{name}/tigerrc
+%config(noreplace) %verify(not md5 mtime size) /etc/cron.d/tiger
+%attr(755,root,root) %{_sbindir}/tiger
+%attr(755,root,root) %{_sbindir}/tigercron
+%attr(755,root,root) %{_sbindir}/tigexp
+%{_mandir}/man8/tiger.8*
+%{_mandir}/man8/tigercron.8*
+%{_mandir}/man8/tigexp.8*
+%dir %{_localstatedir}/run/tiger
+%dir %{_localstatedir}/log/tiger
+
+%dir %{_libdir}/%{name}
+%{_libdir}/%{name}/version.h
+%dir %{_libdir}/%{name}/bin
+%attr(755,root,root) %{_libdir}/%{name}/bin/*
+%{_libdir}/%{name}/config
+%{_libdir}/%{name}/initdefs
+%{_libdir}/%{name}/syslist
+%{_libdir}/%{name}/systems
+%{_libdir}/%{name}/tigexp
+
+%dir %{_libdir}/%{name}/scripts
+%attr(755,root,root) %{_libdir}/%{name}/scripts/*_run
+%attr(755,root,root) %{_libdir}/%{name}/scripts/check_*
+%attr(755,root,root) %{_libdir}/%{name}/scripts/find_files
+%dir %{_libdir}/%{name}/scripts/sub
+%attr(755,root,root) %{_libdir}/%{name}/scripts/sub/check_*
+
+%dir %{_libdir}/%{name}/util
+%attr(755,root,root) %{_libdir}/%{name}/util/*
diff --git a/tiger-3.2.1-autotools.patch b/tiger-3.2.1-autotools.patch
new file mode 100644
index 0000000..7e1b5e8
--- /dev/null
+++ b/tiger-3.2.1-autotools.patch
@@ -0,0 +1,920 @@
+--- tiger-3.2.1.orig/c/Makefile
++++ tiger-3.2.1/c/Makefile
+@@ -1,3 +1,4 @@
++# Generated automatically from Makefile.in by configure.
+ # Makefile for tiger binaries
+ #
+ #
+@@ -22,15 +23,17 @@
+ # been added later)
+ BINLIST=getpermit snefru md5 testsuid realpath
+ COPTS= -DNEEDGETWD
++INSTALL=/usr/bin/install -c
++CC=gcc
+
+ all: ${BINLIST}
+
+ install: all
+- cp ${BINLIST} ../bin/
++ $(INSTALL) -m0755 ${BINLIST} ../bin/
+
+
+ % : %.c
+- gcc ${COPTS} -o $@ $<
++ $(CC) $(CFLAGS) ${COPTS} -o $@ $<
+
+ clean:
+ -rm -f ${BINLIST}
+--- tiger-3.2.1.orig/c/Makefile.in
++++ tiger-3.2.1/c/Makefile.in
+@@ -0,0 +1,40 @@
++# Makefile for tiger binaries
++#
++#
++# Makefile for tiger binaries - A UN*X security checking system
++# Copyright (C) 2002 Javier Fernandez-Sanguino Pen~a <jfs at computer.org>
++#
++# This program is free software; you can redistribute it and/or modify
++# it under the terms of the GNU General Public License as published by
++# the Free Software Foundation; either version 1, or (at your option)
++# any later version.
++#
++# This program is distributed in the hope that it will be useful,
++# but WITHOUT ANY WARRANTY; without even the implied warranty of
++# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
++# GNU General Public License for more details.
++#
++# Please see the file `COPYING' for the complete copyright notice.
++#
++
++# For some reason snefru and md5 were received wrongly
++# and they could not be compiled at first (they have
++# been added later)
++BINLIST=getpermit snefru md5 testsuid realpath
++COPTS= -DNEEDGETWD
++INSTALL=@INSTALL@
++CC=@CC@
++
++all: ${BINLIST}
++
++install: all
++ $(INSTALL) -m0755 ${BINLIST} ../bin/
++
++
++% : %.c
++ $(CC) $(CFLAGS) ${COPTS} -o $@ $<
++
++clean:
++ -rm -f ${BINLIST}
++
++distclean: clean
+--- tiger-3.2.1.orig/configure
++++ tiger-3.2.1/configure
+@@ -532,6 +532,312 @@
+
+
+
++# Extract the first word of "gcc", so it can be a program name with args.
++set dummy gcc; ac_word=$2
++echo $ac_n "checking for $ac_word""... $ac_c" 1>&6
++echo "configure:539: checking for $ac_word" >&5
++if eval "test \"`echo '$''{'ac_cv_prog_CC'+set}'`\" = set"; then
++ echo $ac_n "(cached) $ac_c" 1>&6
++else
++ if test -n "$CC"; then
++ ac_cv_prog_CC="$CC" # Let the user override the test.
++else
++ IFS="${IFS= }"; ac_save_ifs="$IFS"; IFS=":"
++ ac_dummy="$PATH"
++ for ac_dir in $ac_dummy; do
++ test -z "$ac_dir" && ac_dir=.
++ if test -f $ac_dir/$ac_word; then
++ ac_cv_prog_CC="gcc"
++ break
++ fi
++ done
++ IFS="$ac_save_ifs"
++fi
++fi
++CC="$ac_cv_prog_CC"
++if test -n "$CC"; then
++ echo "$ac_t""$CC" 1>&6
++else
++ echo "$ac_t""no" 1>&6
++fi
++
++if test -z "$CC"; then
++ # Extract the first word of "cc", so it can be a program name with args.
++set dummy cc; ac_word=$2
++echo $ac_n "checking for $ac_word""... $ac_c" 1>&6
++echo "configure:569: checking for $ac_word" >&5
++if eval "test \"`echo '$''{'ac_cv_prog_CC'+set}'`\" = set"; then
++ echo $ac_n "(cached) $ac_c" 1>&6
++else
++ if test -n "$CC"; then
++ ac_cv_prog_CC="$CC" # Let the user override the test.
++else
++ IFS="${IFS= }"; ac_save_ifs="$IFS"; IFS=":"
++ ac_prog_rejected=no
++ ac_dummy="$PATH"
++ for ac_dir in $ac_dummy; do
++ test -z "$ac_dir" && ac_dir=.
++ if test -f $ac_dir/$ac_word; then
++ if test "$ac_dir/$ac_word" = "/usr/ucb/cc"; then
++ ac_prog_rejected=yes
++ continue
++ fi
++ ac_cv_prog_CC="cc"
++ break
++ fi
++ done
++ IFS="$ac_save_ifs"
++if test $ac_prog_rejected = yes; then
++ # We found a bogon in the path, so make sure we never use it.
++ set dummy $ac_cv_prog_CC
++ shift
++ if test $# -gt 0; then
++ # We chose a different compiler from the bogus one.
++ # However, it has the same basename, so the bogon will be chosen
++ # first if we set CC to just the basename; use the full file name.
++ shift
++ set dummy "$ac_dir/$ac_word" "$@"
++ shift
++ ac_cv_prog_CC="$@"
++ fi
++fi
++fi
++fi
++CC="$ac_cv_prog_CC"
++if test -n "$CC"; then
++ echo "$ac_t""$CC" 1>&6
++else
++ echo "$ac_t""no" 1>&6
++fi
++
++ if test -z "$CC"; then
++ case "`uname -s`" in
++ *win32* | *WIN32*)
++ # Extract the first word of "cl", so it can be a program name with args.
++set dummy cl; ac_word=$2
++echo $ac_n "checking for $ac_word""... $ac_c" 1>&6
++echo "configure:620: checking for $ac_word" >&5
++if eval "test \"`echo '$''{'ac_cv_prog_CC'+set}'`\" = set"; then
++ echo $ac_n "(cached) $ac_c" 1>&6
++else
++ if test -n "$CC"; then
++ ac_cv_prog_CC="$CC" # Let the user override the test.
++else
++ IFS="${IFS= }"; ac_save_ifs="$IFS"; IFS=":"
++ ac_dummy="$PATH"
++ for ac_dir in $ac_dummy; do
++ test -z "$ac_dir" && ac_dir=.
++ if test -f $ac_dir/$ac_word; then
++ ac_cv_prog_CC="cl"
++ break
++ fi
++ done
++ IFS="$ac_save_ifs"
++fi
++fi
++CC="$ac_cv_prog_CC"
++if test -n "$CC"; then
++ echo "$ac_t""$CC" 1>&6
++else
++ echo "$ac_t""no" 1>&6
++fi
++ ;;
++ esac
++ fi
++ test -z "$CC" && { echo "configure: error: no acceptable cc found in \$PATH" 1>&2; exit 1; }
++fi
++
++echo $ac_n "checking whether the C compiler ($CC $CFLAGS $LDFLAGS) works""... $ac_c" 1>&6
++echo "configure:652: checking whether the C compiler ($CC $CFLAGS $LDFLAGS) works" >&5
++
++ac_ext=c
++# CFLAGS is not in ac_cpp because -g, -O, etc. are not valid cpp options.
++ac_cpp='$CPP $CPPFLAGS'
++ac_compile='${CC-cc} -c $CFLAGS $CPPFLAGS conftest.$ac_ext 1>&5'
++ac_link='${CC-cc} -o conftest${ac_exeext} $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS 1>&5'
++cross_compiling=$ac_cv_prog_cc_cross
++
++cat > conftest.$ac_ext << EOF
++
++#line 663 "configure"
++#include "confdefs.h"
++
++main(){return(0);}
++EOF
++if { (eval echo configure:668: \"$ac_link\") 1>&5; (eval $ac_link) 2>&5; } && test -s conftest${ac_exeext}; then
++ ac_cv_prog_cc_works=yes
++ # If we can't run a trivial program, we are probably using a cross compiler.
++ if (./conftest; exit) 2>/dev/null; then
++ ac_cv_prog_cc_cross=no
++ else
++ ac_cv_prog_cc_cross=yes
++ fi
++else
++ echo "configure: failed program was:" >&5
++ cat conftest.$ac_ext >&5
++ ac_cv_prog_cc_works=no
++fi
++rm -fr conftest*
++ac_ext=c
++# CFLAGS is not in ac_cpp because -g, -O, etc. are not valid cpp options.
++ac_cpp='$CPP $CPPFLAGS'
++ac_compile='${CC-cc} -c $CFLAGS $CPPFLAGS conftest.$ac_ext 1>&5'
++ac_link='${CC-cc} -o conftest${ac_exeext} $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS 1>&5'
++cross_compiling=$ac_cv_prog_cc_cross
++
++echo "$ac_t""$ac_cv_prog_cc_works" 1>&6
++if test $ac_cv_prog_cc_works = no; then
++ { echo "configure: error: installation or configuration problem: C compiler cannot create executables." 1>&2; exit 1; }
++fi
++echo $ac_n "checking whether the C compiler ($CC $CFLAGS $LDFLAGS) is a cross-compiler""... $ac_c" 1>&6
++echo "configure:694: checking whether the C compiler ($CC $CFLAGS $LDFLAGS) is a cross-compiler" >&5
++echo "$ac_t""$ac_cv_prog_cc_cross" 1>&6
++cross_compiling=$ac_cv_prog_cc_cross
++
++echo $ac_n "checking whether we are using GNU C""... $ac_c" 1>&6
++echo "configure:699: checking whether we are using GNU C" >&5
++if eval "test \"`echo '$''{'ac_cv_prog_gcc'+set}'`\" = set"; then
++ echo $ac_n "(cached) $ac_c" 1>&6
++else
++ cat > conftest.c <<EOF
++#ifdef __GNUC__
++ yes;
++#endif
++EOF
++if { ac_try='${CC-cc} -E conftest.c'; { (eval echo configure:708: \"$ac_try\") 1>&5; (eval $ac_try) 2>&5; }; } | egrep yes >/dev/null 2>&1; then
++ ac_cv_prog_gcc=yes
++else
++ ac_cv_prog_gcc=no
++fi
++fi
++
++echo "$ac_t""$ac_cv_prog_gcc" 1>&6
++
++if test $ac_cv_prog_gcc = yes; then
++ GCC=yes
++else
++ GCC=
++fi
++
++ac_test_CFLAGS="${CFLAGS+set}"
++ac_save_CFLAGS="$CFLAGS"
++CFLAGS=
++echo $ac_n "checking whether ${CC-cc} accepts -g""... $ac_c" 1>&6
++echo "configure:727: checking whether ${CC-cc} accepts -g" >&5
++if eval "test \"`echo '$''{'ac_cv_prog_cc_g'+set}'`\" = set"; then
++ echo $ac_n "(cached) $ac_c" 1>&6
++else
++ echo 'void f(){}' > conftest.c
++if test -z "`${CC-cc} -g -c conftest.c 2>&1`"; then
++ ac_cv_prog_cc_g=yes
++else
++ ac_cv_prog_cc_g=no
++fi
++rm -f conftest*
++
++fi
++
++echo "$ac_t""$ac_cv_prog_cc_g" 1>&6
++if test "$ac_test_CFLAGS" = set; then
++ CFLAGS="$ac_save_CFLAGS"
++elif test $ac_cv_prog_cc_g = yes; then
++ if test "$GCC" = yes; then
++ CFLAGS="-g -O2"
++ else
++ CFLAGS="-g"
++ fi
++else
++ if test "$GCC" = yes; then
++ CFLAGS="-O2"
++ else
++ CFLAGS=
++ fi
++fi
++
++ac_aux_dir=
++for ac_dir in $srcdir $srcdir/.. $srcdir/../..; do
++ if test -f $ac_dir/install-sh; then
++ ac_aux_dir=$ac_dir
++ ac_install_sh="$ac_aux_dir/install-sh -c"
++ break
++ elif test -f $ac_dir/install.sh; then
++ ac_aux_dir=$ac_dir
++ ac_install_sh="$ac_aux_dir/install.sh -c"
++ break
++ fi
++done
++if test -z "$ac_aux_dir"; then
++ { echo "configure: error: can not find install-sh or install.sh in $srcdir $srcdir/.. $srcdir/../.." 1>&2; exit 1; }
++fi
++ac_config_guess=$ac_aux_dir/config.guess
++ac_config_sub=$ac_aux_dir/config.sub
++ac_configure=$ac_aux_dir/configure # This should be Cygnus configure.
++
++# Find a good install program. We prefer a C program (faster),
++# so one script is as good as another. But avoid the broken or
++# incompatible versions:
++# SysV /etc/install, /usr/sbin/install
++# SunOS /usr/etc/install
++# IRIX /sbin/install
++# AIX /bin/install
++# AIX 4 /usr/bin/installbsd, which doesn't work without a -g flag
++# AFS /usr/afsws/bin/install, which mishandles nonexistent args
++# SVR4 /usr/ucb/install, which tries to use the nonexistent group "staff"
++# ./install, which can be erroneously created by make from ./install.sh.
++echo $ac_n "checking for a BSD compatible install""... $ac_c" 1>&6
++echo "configure:789: checking for a BSD compatible install" >&5
++if test -z "$INSTALL"; then
++if eval "test \"`echo '$''{'ac_cv_path_install'+set}'`\" = set"; then
++ echo $ac_n "(cached) $ac_c" 1>&6
++else
++ IFS="${IFS= }"; ac_save_IFS="$IFS"; IFS=":"
++ for ac_dir in $PATH; do
++ # Account for people who put trailing slashes in PATH elements.
++ case "$ac_dir/" in
++ /|./|.//|/etc/*|/usr/sbin/*|/usr/etc/*|/sbin/*|/usr/afsws/bin/*|/usr/ucb/*) ;;
++ *)
++ # OSF1 and SCO ODT 3.0 have their own names for install.
++ # Don't use installbsd from OSF since it installs stuff as root
++ # by default.
++ for ac_prog in ginstall scoinst install; do
++ if test -f $ac_dir/$ac_prog; then
++ if test $ac_prog = install &&
++ grep dspmsg $ac_dir/$ac_prog >/dev/null 2>&1; then
++ # AIX install. It has an incompatible calling convention.
++ :
++ else
++ ac_cv_path_install="$ac_dir/$ac_prog -c"
++ break 2
++ fi
++ fi
++ done
++ ;;
++ esac
++ done
++ IFS="$ac_save_IFS"
++
++fi
++ if test "${ac_cv_path_install+set}" = set; then
++ INSTALL="$ac_cv_path_install"
++ else
++ # As a last resort, use the slow shell script. We don't cache a
++ # path for INSTALL within a source directory, because that will
++ # break other packages using the cache if that directory is
++ # removed, or if the path is relative.
++ INSTALL="$ac_install_sh"
++ fi
++fi
++echo "$ac_t""$INSTALL" 1>&6
++
++# Use test -z because SunOS4 sh mishandles braces in ${var-val}.
++# It thinks the first close brace ends the variable substitution.
++test -z "$INSTALL_PROGRAM" && INSTALL_PROGRAM='${INSTALL}'
++
++test -z "$INSTALL_SCRIPT" && INSTALL_SCRIPT='${INSTALL_PROGRAM}'
++
++test -z "$INSTALL_DATA" && INSTALL_DATA='${INSTALL} -m 644'
++
++
+ test "x$prefix" != "xNONE" || prefix=/usr/local
+
+ # Check whether --with-tigerhome or --without-tigerhome was given.
+@@ -608,6 +914,7 @@
+
+
+
++
+ trap '' 1 2 15
+ cat > confcache <<\EOF
+ # This file is a shell script that caches the results of configure
+@@ -719,8 +1026,10 @@
+ done
+
+ ac_given_srcdir=$srcdir
++ac_given_INSTALL="$INSTALL"
+
+ trap 'rm -fr `echo "Makefile
++ c/Makefile
+ man/tiger.8
+ man/tigercron.8" | sed "s/:[^ ]*//g"` conftest*; exit 1' 1 2 15
+ EOF
+@@ -754,6 +1063,11 @@
+ s%@oldincludedir@%$oldincludedir%g
+ s%@infodir@%$infodir%g
+ s%@mandir@%$mandir%g
++s%@CC@%$CC%g
++s%@INSTALL_PROGRAM@%$INSTALL_PROGRAM%g
++s%@INSTALL_SCRIPT@%$INSTALL_SCRIPT%g
++s%@INSTALL_DATA@%$INSTALL_DATA%g
++s%@install@%$install%g
+ s%@tigerhome@%$tigerhome%g
+ s%@tigerwork@%$tigerwork%g
+ s%@tigerlog@%$tigerlog%g
+@@ -805,6 +1119,7 @@
+ cat >> $CONFIG_STATUS <<EOF
+
+ CONFIG_FILES=\${CONFIG_FILES-"Makefile
++ c/Makefile
+ man/tiger.8
+ man/tigercron.8"}
+ EOF
+@@ -841,6 +1156,10 @@
+ top_srcdir="$ac_dots$ac_given_srcdir" ;;
+ esac
+
++ case "$ac_given_INSTALL" in
++ [/$]*) INSTALL="$ac_given_INSTALL" ;;
++ *) INSTALL="$ac_dots$ac_given_INSTALL" ;;
++ esac
+
+ echo creating "$ac_file"
+ rm -f "$ac_file"
+@@ -856,6 +1175,7 @@
+ s%@configure_input@%$configure_input%g
+ s%@srcdir@%$srcdir%g
+ s%@top_srcdir@%$top_srcdir%g
++s%@INSTALL@%$INSTALL%g
+ " $ac_file_inputs | (eval "$ac_sed_cmds") > $ac_file
+ fi; done
+ rm -f conftest.s*
+--- tiger-3.2.1.orig/configure.in
++++ tiger-3.2.1/configure.in
+@@ -4,6 +4,9 @@
+ dnl for to make sure it's in the right directory.
+ AC_INIT(tiger)
+
++AC_PROG_CC
++AC_PROG_INSTALL
++
+ test "x$prefix" != "xNONE" || prefix=/usr/local
+
+ AC_ARG_WITH(tigerhome, [ --with-tigerhome=LOCATION Location of all Tiger files],
+@@ -42,6 +45,7 @@
+ tigerlogdir=`eval echo $tigerlog`
+ tigerconfigdir=`eval echo $tigerconfig`
+ tigerhomedir=`eval echo $tigerhome`
++AC_SUBST(install)
+ AC_SUBST(tigerhome)
+ AC_SUBST(tigerwork)
+ AC_SUBST(tigerlog)
+@@ -52,5 +56,6 @@
+ AC_SUBST(tigerconfigdir)
+ AC_SUBST(tigerhomedir)
+ AC_OUTPUT(Makefile
++ c/Makefile
+ man/tiger.8
+ man/tigercron.8)
+--- tiger-3.2.1.orig/Makefile.in
++++ tiger-3.2.1/Makefile.in
+@@ -21,6 +21,9 @@
+ mandir=@mandir@
+ # To avoid troubles with some systems..
+ SHELL = /bin/sh
++# Installation program
++INSTALL=@INSTALL@
++CC=@CC@
+
+ # This directory will contain the 'tiger', 'tigercron', 'tigexp'
+ # scripts, config files, the 'scripts' subdirectory which will
+@@ -54,6 +57,10 @@
+ #
+ TIGERCONFIG=@tigerconfig@
+ #
++# Where do manpages go to
++#
++TIGERMANDIR=@mandir@
++#
+ #------------------------------------------------------------------------
+ #
+ # End of user customization...
+@@ -61,7 +68,7 @@
+ #------------------------------------------------------------------------
+ #
+
+-PLATFORM_SCRIPTS=$(shell find ./systems/ -type f)
++PLATFORM_SCRIPTS=$$(find ./systems/ -type f)
+
+ BINARIES=./tiger \
+ ./tigexp \
+@@ -89,6 +96,8 @@
+ ./scripts/check_netrc \
+ ./scripts/check_network \
+ ./scripts/check_nisplus \
++ ./scripts/check_ntp \
++ ./scripts/check_omniback \
+ ./scripts/check_passwd \
+ ./scripts/check_passwdformat \
+ ./scripts/check_path \
+@@ -116,11 +125,13 @@
+ $(PLATFORM_SCRIPTS)
+
+ CONFIGFILES=./tigerrc \
+- ./cronrc \
++ ./cronrc
+
+ MISCFILES=./initdefs \
+- ./check.tbl \
+ ./syslist \
++ ./check.d/README \
++ ./util/buildbins \
++ ./util/buildconf \
+ ./util/difflogs \
+ ./util/flogit \
+ ./util/genmsgidx \
+@@ -130,19 +141,29 @@
+ ./util/getfs-std \
+ ./util/gethostinfo \
+ ./util/getnetgroup \
++ ./util/getpermit \
++ ./util/installsig \
+ ./util/logit \
++ ./util/mkfilelst \
++ ./util/mksig \
+ ./util/setsh \
+ ./util/sgrep
+
+ MISCDIRS=./bin \
++ ./check.d \
+ ./doc \
+ ./html \
+- ./man \
+ ./scripts/sub \
+ ./systems
+
+ all:
++ @if [ ! -d bin ]; then \
++ mkdir bin; \
++ fi
+ cd c && $(MAKE) install
++ @if [ ! -d html ]; then \
++ mkdir html; \
++ fi
+ cd util && sh doc2html
+ ./util/genmsgidx
+
+@@ -182,6 +203,19 @@
+ mkdir -p $(DESTDIR)$(TIGERCONFIG); \
+ chmod 700 $(DESTDIR)$(TIGERCONFIG); \
+ fi
++ @echo "Creating $(TIGERMANDIR)..."
++ @if [ ! -d $(DESTDIR)$(TIGERMANDIR) ]; then \
++ mkdir -p $(DESTDIR)$(TIGERMANDIR); \
++ mkdir -p $(DESTDIR)$(TIGERMANDIR)/man8; \
++ chmod 755 $(DESTDIR)$(TIGERMANDIR); \
++ chmod 755 $(DESTDIR)$(TIGERMANDIR)/man8; \
++ fi
++
++installmanpages:
++ @echo "Copying manpages..."
++ $(INSTALL) -m 0444 man/tiger.8 $(DESTDIR)$(TIGERMANDIR)/man8
++ $(INSTALL) -m 0444 man/tigexp.8 $(DESTDIR)$(TIGERMANDIR)/man8
++ $(INSTALL) -m 0444 man/tigercron.8 $(DESTDIR)$(TIGERMANDIR)/man8
+
+ installbinaries:
+ @echo "Copying binaries..."
+@@ -198,8 +232,7 @@
+ installconfig:
+ @echo "Copying configuration files..."
+ @for file in $(CONFIGFILES); do \
+- cp $$file $(DESTDIR)$(TIGERCONFIG)/$$file; \
+- chmod 640 $(DESTDIR)$(TIGERCONFIG)/$$file; \
++ $(INSTALL) -m 0640 $$file $(DESTDIR)$(TIGERCONFIG)/$$file; \
+ done
+ @echo "Copying general configuration..."
+ @sed -e 's%^TigerLogDir=.*$$%TigerLogDir="'$(TIGERLOGS)'"%' \
+@@ -210,13 +243,13 @@
+ ./config >$(DESTDIR)$(TIGERHOME)/config
+ @chmod 644 $(DESTDIR)$(TIGERHOME)/config
+
+-install: installdirs installbinaries installconfig
++install: installdirs installbinaries installconfig installmanpages
+ cd c && $(MAKE) install
+- @echo "Copying miscellaneus dirs..."
++ @echo "Copying miscellaneous dirs..."
+ @for dir in $(MISCDIRS); do \
+ tar cf - $$dir | (cd $(DESTDIR)$(TIGERHOME); tar xpf -); \
+ done
+- @echo "Copying miscellaneus files..."
++ @echo "Copying miscellaneous files..."
+ @for file in $(MISCFILES); do \
+ cp -p $$file $(DESTDIR)$(TIGERHOME)/$$file; \
+ done
+--- tiger-3.2.1.orig/install.sh
++++ tiger-3.2.1/install.sh
+@@ -0,0 +1,312 @@
++##
++## install -- Install a program, script or datafile
++## Copyright (c) 1997-2004 Ralf S. Engelschall <rse at engelschall.com>
++##
++## This file is part of shtool and free software; you can redistribute
++## it and/or modify it under the terms of the GNU General Public
++## License as published by the Free Software Foundation; either version
++## 2 of the License, or (at your option) any later version.
++##
++## This file is distributed in the hope that it will be useful,
++## but WITHOUT ANY WARRANTY; without even the implied warranty of
++## MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
++## General Public License for more details.
++##
++## You should have received a copy of the GNU General Public License
++## along with this program; if not, write to the Free Software
++## Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307,
++## USA, or contact Ralf S. Engelschall <rse at engelschall.com>.
++##
++
++str_tool="install"
++str_usage="[-v|--verbose] [-t|--trace] [-d|--mkdir] [-c|--copy] [-C|--compare-copy] [-s|--strip] [-m|--mode <mode>] [-o|--owner <owner>] [-g|--group <group>] [-e|--exec <sed-cmd>] <file> [<file> ...] <path>"
++arg_spec="1+"
++opt_spec="v.t.d.c.C.s.m:o:g:e+"
++opt_alias="v:verbose,t:trace,d:mkdir,c:copy,C:compare-copy,s:strip,m:mode,o:owner,g:group,e:exec"
++opt_v=no
++opt_t=no
++opt_d=no
++opt_c=no
++opt_C=no
++opt_s=no
++opt_m="0755"
++opt_o=""
++opt_g=""
++opt_e=""
++
++. ./sh.common
++
++# special case: "shtool install -d <dir> [...]" internally
++# maps to "shtool mkdir -f -p -m 755 <dir> [...]"
++if [ "$opt_d" = yes ]; then
++ cmd="$0 mkdir -f -p -m 755"
++ if [ ".$opt_o" != . ]; then
++ cmd="$cmd -o '$opt_o'"
++ fi
++ if [ ".$opt_g" != . ]; then
++ cmd="$cmd -g '$opt_g'"
++ fi
++ if [ ".$opt_v" = .yes ]; then
++ cmd="$cmd -v"
++ fi
++ if [ ".$opt_t" = .yes ]; then
++ cmd="$cmd -t"
++ fi
++ for dir in "$@"; do
++ eval "$cmd $dir" || shtool_exit $?
++ done
++ shtool_exit 0
++fi
++
++# determine source(s) and destination
++argc=$#
++srcs=""
++while [ $# -gt 1 ]; do
++ srcs="$srcs $1"
++ shift
++done
++dstpath="$1"
++
++# type check for destination
++dstisdir=0
++if [ -d $dstpath ]; then
++ dstpath=`echo "$dstpath" | sed -e 's:/$::'`
++ dstisdir=1
++fi
++
++# consistency check for destination
++if [ $argc -gt 2 ] && [ $dstisdir = 0 ]; then
++ echo "$msgprefix:Error: multiple sources require destination to be directory" 1>&2
++ shtool_exit 1
++fi
++
++# iterate over all source(s)
++for src in $srcs; do
++ dst=$dstpath
++
++ # if destination is a directory, append the input filename
++ if [ $dstisdir = 1 ]; then
++ dstfile=`echo "$src" | sed -e 's;.*/\([^/]*\)$;\1;'`
++ dst="$dst/$dstfile"
++ fi
++
++ # check for correct arguments
++ if [ ".$src" = ".$dst" ]; then
++ echo "$msgprefix:Warning: source and destination are the same - skipped" 1>&2
++ continue
++ fi
++ if [ -d "$src" ]; then
++ echo "$msgprefix:Warning: source \`$src' is a directory - skipped" 1>&2
++ continue
++ fi
++
++ # make a temp file name in the destination directory
++ dsttmp=`echo $dst |\
++ sed -e 's;[^/]*$;;' -e 's;\(.\)/$;\1;' -e 's;^$;.;' \
++ -e "s;\$;/#INST@$$#;"`
++
++ # verbosity
++ if [ ".$opt_v" = .yes ]; then
++ echo "$src -> $dst" 1>&2
++ fi
++
++ # copy or move the file name to the temp name
++ # (because we might be not allowed to change the source)
++ if [ ".$opt_C" = .yes ]; then
++ opt_c=yes
++ fi
++ if [ ".$opt_c" = .yes ]; then
++ if [ ".$opt_t" = .yes ]; then
++ echo "cp $src $dsttmp" 1>&2
++ fi
++ cp $src $dsttmp || shtool_exit $?
++ else
++ if [ ".$opt_t" = .yes ]; then
++ echo "mv $src $dsttmp" 1>&2
++ fi
++ mv $src $dsttmp || shtool_exit $?
++ fi
++
++ # adjust the target file
++ if [ ".$opt_e" != . ]; then
++ sed='sed'
++ OIFS="$IFS"; IFS="$ASC_NL"; set -- $opt_e; IFS="$OIFS"
++ for e
++ do
++ sed="$sed -e '$e'"
++ done
++ cp $dsttmp $dsttmp.old
++ chmod u+w $dsttmp
++ eval "$sed <$dsttmp.old >$dsttmp" || shtool_exit $?
++ rm -f $dsttmp.old
++ fi
++ if [ ".$opt_s" = .yes ]; then
++ if [ ".$opt_t" = .yes ]; then
++ echo "strip $dsttmp" 1>&2
++ fi
++ strip $dsttmp || shtool_exit $?
++ fi
++ if [ ".$opt_o" != . ]; then
++ if [ ".$opt_t" = .yes ]; then
++ echo "chown $opt_o $dsttmp" 1>&2
++ fi
++ chown $opt_o $dsttmp || shtool_exit $?
++ fi
++ if [ ".$opt_g" != . ]; then
++ if [ ".$opt_t" = .yes ]; then
++ echo "chgrp $opt_g $dsttmp" 1>&2
++ fi
++ chgrp $opt_g $dsttmp || shtool_exit $?
++ fi
++ if [ ".$opt_m" != ".-" ]; then
++ if [ ".$opt_t" = .yes ]; then
++ echo "chmod $opt_m $dsttmp" 1>&2
++ fi
++ chmod $opt_m $dsttmp || shtool_exit $?
++ fi
++
++ # determine whether to do a quick install
++ # (has to be done _after_ the strip was already done)
++ quick=no
++ if [ ".$opt_C" = .yes ]; then
++ if [ -r $dst ]; then
++ if cmp -s $src $dst; then
++ quick=yes
++ fi
++ fi
++ fi
++
++ # finally, install the file to the real destination
++ if [ $quick = yes ]; then
++ if [ ".$opt_t" = .yes ]; then
++ echo "rm -f $dsttmp" 1>&2
++ fi
++ rm -f $dsttmp
++ else
++ if [ ".$opt_t" = .yes ]; then
++ echo "rm -f $dst && mv $dsttmp $dst" 1>&2
++ fi
++ rm -f $dst && mv $dsttmp $dst
++ fi
++done
++
++shtool_exit 0
++
++##
++## manual page
++##
++
++=pod
++
++=head1 NAME
++
++B<shtool install> - B<GNU shtool> install(1) command
++
++=head1 SYNOPSIS
++
++B<shtool install>
++[B<-v>|B<--verbose>]
++[B<-t>|B<--trace>]
++[B<-d>|B<--mkdir>]
++[B<-c>|B<--copy>]
++[B<-C>|B<--compare-copy>]
++[B<-s>|B<--strip>]
++[B<-m>|B<--mode> I<mode>]
++[B<-o>|B<--owner> I<owner>]
++[B<-g>|B<--group> I<group>]
++[B<-e>|B<--exec> I<sed-cmd>]
++I<file> [I<file> ...]
++I<path>
++
++=head1 DESCRIPTION
++
++This command installs a one or more I<file>s to a given target I<path>
++providing all important options of the BSD install(1) command.
++The trick is that the functionality is provided in a portable way.
++
++=head1 OPTIONS
++
++The following command line options are available.
++
++=over 4
++
++=item B<-v>, B<--verbose>
++
++Display some processing information.
++
++=item B<-t>, B<--trace>
++
++Enable the output of the essential shell commands which are executed.
++
++=item B<-d>, B<--mkdir>
++
++To maximize BSD compatiblity, the BSD "B<shtool> C<install -d>" usage is
++internally mapped to the "B<shtool> C<mkdir -f -p -m 755>" command.
++
++=item B<-c>, B<--copy>
++
++Copy the I<file> to the target I<path>. Default is to move.
++
++=item B<-C>, B<--compare-copy>
++
++Same as B<-c> except if the destination file already exists and is
++identical to the source file, no installation is done and the target
++remains untouched.
++
++=item B<-s>, B<--strip>
++
++This option strips program executables during the installation, see
++strip(1). Default is to install verbatim.
++
++=item B<-m>, B<--mode> I<mode>
++
++The file mode applied to the target, see chmod(1). Setting mode to
++"C<->" skips this step and leaves the operating system default which is
++usually based on umask(1). Some file modes require superuser privileges
++to be set. Default is 0755.
++
++=item B<-o>, B<--owner> I<owner>
++
++The file owner name or id applied to the target, see chown(1). This
++option requires superuser privileges to execute. Default is to skip this
++step and leave the operating system default which is usually based on
++the executing uid or the parent setuid directory.
++
++=item B<-g>, B<--group> I<group>
++
++The file group name or id applied to the target, see chgrp(1). This
++option requires superuser privileges to execute to the fullest extend,
++otherwise the choice of I<group> is limited on most operating systems.
++Default is to skip this step and leave the operating system default
++which is usually based on the executing gid or the parent setgid
++directory.
++
++=item B<-e>, B<--exec> I<sed-cmd>
++
++This option can be used one or multiple times to apply one or more
++sed(1) commands to the file contents during installation.
++
++=back
++
++=head1 EXAMPLE
++
++ # Makefile
++ install:
++ :
++ shtool install -c -s -m 4755 foo $(bindir)/
++ shtool install -c -m 644 foo.man $(mandir)/man1/foo.1
++ shtool install -c -m 644 -e "s/@p@/$prefix/g" foo.conf $(etcdir)/
++
++=head1 HISTORY
++
++The B<GNU shtool> B<install> command was originally written by Ralf S.
++Engelschall E<lt>rse at engelschall.comE<gt> in 1997 for B<GNU shtool>. It
++was prompted by portability issues in the installation procedures of
++B<OSSP> libraries.
++
++=head1 SEE ALSO
++
++shtool(1), umask(1), chmod(1), chown(1), chgrp(1), strip(1), sed(1).
++
++=cut
++
diff --git a/tiger-3.2.1-config.patch b/tiger-3.2.1-config.patch
new file mode 100644
index 0000000..9987648
--- /dev/null
+++ b/tiger-3.2.1-config.patch
@@ -0,0 +1,282 @@
+# Default configuration
+--- ./site-sample.config 2003-09-03 14:09:14.000000000 +0200
++++ ./site-sample 2005-08-07 17:12:40.000000000 +0200
+@@ -86,4 +86,4 @@
+ #
+ # Define where Integrit is installed (if you use it)
+ #
+-#INTEGRIT=/usr/local/bin/aide
++#INTEGRIT=/usr/local/bin/integrit
+--- ./tigerrc-TAMU.config 2002-06-14 10:51:31.000000000 +0200
++++ ./tigerrc-TAMU 2005-08-07 17:12:40.000000000 +0200
+@@ -15,6 +15,7 @@
+ # you don't want performed.
+ #
+ Tiger_Check_PASSWD=Y # Fast
++Tiger_Check_PASSWD_FORMAT=N # Fast - not needed if on systems with pwck
+ Tiger_Check_GROUP=Y # Fast
+ Tiger_Check_ACCOUNTS=Y # Time varies on # of users
+ Tiger_Check_RHOSTS=Y # Time varies on # of users
+@@ -141,6 +142,11 @@
+ #
+ Tiger_Crack_Local=N
+ #
++# Who sends output from 'tigercron'?
++# Default is "root@$HOSTNAME" (gets expanded by tigercron)
++#
++# Tiger_Mail_FROM="root@`uname -n`"
++#
+ # Who gets output from 'tigercron'?
+ #
+ Tiger_Mail_RCPT=root
+--- ./cronrc.config 2003-09-19 16:24:41.000000000 +0200
++++ ./cronrc 2005-08-07 17:12:40.000000000 +0200
+@@ -28,7 +28,16 @@
+ # ----------------------------------------------------------------------
+ # Check for known intrusion signs every 8 hours
+ #
+-0,8,16 * * check_known check_rootkit check_finddeleted check_logfiles check_runprocs check_rootdir check_root
++0,8,16 * * check_known check_rootkit check_logfiles check_runprocs check_rootdir check_root
++# [experimental]
++# Check_finddeleted is very verbose and needs to be adjusted so we run
++# it less often, admins that want to run it more often are suggested
++# to look up how does the ignore mechanism works. In busy servers many
++# false positives might appear because of normal user access.
++# Some applications might generate false positives too due to the
++# way they behave. Also, this script requires LSOF, so only enable
++# it if you have it installed.
++#1 * * check_finddeleted
+ # ----------------------------------------------------------------------
+ # Make system-specific checks every day at 1 am
+ # Notice: System specific checks can be enabled in the
+@@ -68,7 +77,7 @@
+ # ----------------------------------------------------------------------
+ # Check for system configuration once a month
+ #
+-1 2 * check_services check_signatures check_umask check_ftpusers check_embedded check_exrc
++1 2 * check_services check_umask check_ftpusers check_embedded check_exrc
+ #
+ # ----------------------------------------------------------------------
+ # Run a password cracker against the local passwords once a month
+--- ./tigerrc-dist.config 2003-05-05 15:14:34.000000000 +0200
++++ ./tigerrc-dist 2005-08-07 17:12:40.000000000 +0200
+@@ -9,6 +9,7 @@
+ #
+ TigerNoBuild=Y # C files are corrupted (ouch.)
+ Tiger_Check_PASSWD=Y # Fast
++Tiger_Check_PASSWD_FORMAT=N # Fast - not needed if on systems with pwck
+ Tiger_Check_PASSWD_SHADOW=Y # Time varies on # of users
+ Tiger_Check_PASSWD_NIS=N # Time varies on # of users
+ Tiger_Check_GROUP=Y # Fast
+@@ -209,6 +210,11 @@
+ #
+ Tiger_Crack_Local=Y
+ #
++# Who sends output from 'tigercron'?
++# Default is "root@$HOSTNAME" (gets expanded by tigercron)
++#
++# Tiger_Mail_FROM="root@`uname -n`"
++#
+ # Who gets output from 'tigercron'?
+ #
+ Tiger_Mail_RCPT=root
+--- ./check.tbl.config 2002-06-14 10:51:31.000000000 +0200
++++ ./check.tbl 2005-08-07 17:12:40.000000000 +0200
+@@ -22,4 +22,4 @@
+ # Add other checks that should be attempted for all systems
+ # here. One script name per line.
+ #
+-check_sendmail
++#check_sendmail
+--- ./tigerrc.config 2003-10-07 00:18:12.000000000 +0200
++++ ./tigerrc 2005-08-07 17:13:26.000000000 +0200
+@@ -7,8 +7,16 @@
+ # Select checks to perform. Specify 'N' (uppercase) for checks
+ # you don't want performed.
+ #
++# Notice this does not affect which checks will be performed through
++# the cron job (Tiger's cronrc file governs that, usually under
++# /usr/local/etc/tiger or /etc/tiger), it only affects which
++# checks will be performed when running the full security checks
++# (i.e. 'tiger')
++#
++#
+ TigerNoBuild=Y # C files are corrupted (ouch.)
+ Tiger_Check_PASSWD=Y # Fast
++Tiger_Check_PASSWD_FORMAT=N # Fast - not needed if on systems with pwck
+ Tiger_Check_PASSWD_SHADOW=Y # Time varies on # of users
+ Tiger_Check_PASSWD_NIS=N # Time varies on # of users
+ Tiger_Check_GROUP=Y # Fast
+@@ -19,11 +27,11 @@
+ Tiger_Check_CRON=Y # Fast
+ Tiger_Check_ANONFTP=Y # Fast
+ Tiger_Check_EXPORTS=Y # Fast
+-Tiger_Check_INETD=Y # Fast
++Tiger_Check_INETD=Y # Fast for inetd, Varies on xinetd
+ Tiger_Check_SERVICES=Y # Could be faster, not bad though
+ Tiger_Check_KNOWN=Y # Fast
+ Tiger_Check_PERMS=Y # Could be faster, not bad though
+-Tiger_Check_SIGNATURES=Y # Several minutes
++Tiger_Check_SIGNATURES=N # Several minutes
+ Tiger_Check_FILESYSTEM=Y # Time varies on disk space... can be hours
+ Tiger_Check_ROOTDIR=Y # Fast, only 2 checks
+ Tiger_Check_ROOT_ACCESS=Y # Fast
+@@ -37,7 +45,7 @@
+ Tiger_Check_LISTENING=Y # Fast
+ Tiger_Check_SYSTEM=Y # Depends on the specific system checks
+ Tiger_Check_RUNPROC=N # Fast, needs to be customized per system
+-Tiger_Check_DELETED=Y # Depends on the number of processes on the
++Tiger_Check_DELETED=N # Depends on the number of processes on the
+ # system
+ Tiger_Check_APACHE=N # Fast
+ Tiger_Check_SSH=Y # Fast
+@@ -46,6 +54,9 @@
+ Tiger_Check_EXRC=N # Depends on the size of the filesystem
+ Tiger_Check_ROOTKIT=Y # Slow if chkrootkit is available
+ Tiger_Check_FTPUSERS=Y # Fast
++Tiger_Check_OMNIBACK=N # Fast
++Tiger_Check_NTP=Y # Fast
++
+ # OS specific checks
+ # You can comment them if they are not appropiate to your system but
+ # they will not run if you are running a different OS
+@@ -181,7 +192,7 @@
+ # What accounts are considered administrative (beyond root)
+ # (likely to not be used by humans, and therefore have impossible passwords)
+ # List of usernames separated by '|'... no whitespaces
+-Tiger_Admin_Accounts='adm|bin|daemon|games|lp|mail|news|operator|sync|sys|uucp|man|proxy|majordom|postgres|www-data|operator|irc|gnats'
++Tiger_Admin_Accounts='bin|daemon|adm|lp|sync|shutdown|halt|mail|news|uucp|operator|games|gopher|ftp|nobody|dbus|vcsa|nscd|rpm|haldaemon|netdump|sshd|rpc|rpcuser|nfsnobody|mailnull|smmsp|pcap|apache|xfs|ntp|gdm|postfix|cacti|mach|mysql|named|clamav|zope|openvpn|dovecot'
+ #
+ # If an embedded pathname refers to an executable file, this executable
+ # will in turn be checked. This will continue "recursively" until
+@@ -219,7 +230,7 @@
+ # Who do you allow to own system files.
+ # List of usernames separated by '|'... no whitespace
+ #
+-Tiger_Embedded_OK_Owners='root|bin|uucp|sys|daemon'
++Tiger_Embedded_OK_Owners='root|bin|uucp|sys|daemon|rpm'
+ #Tiger_Embedded_OK_Owners=root
+ #
+ # What groups can have write access to system files?
+@@ -238,7 +249,7 @@
+ # Who can own executables in 'root's PATH?
+ # List of usernames separated by '|'... no whitespace
+ #
+-Tiger_ROOT_PATH_OK_Owners='root|uucp|bin|news|sys|daemon'
++Tiger_ROOT_PATH_OK_Owners='root|uucp|bin|news|sys|daemon|rpm'
+ # If you are paranoid:
+ #Tiger_ROOT_PATH_OK_Owners='root'
+ # If you are running HP-UX
+@@ -253,13 +264,13 @@
+ # Who can own things in other users PATH?
+ # List of usernames separated by '|'... no whitespace
+ #
+-Tiger_PATH_OK_Owners='root|bin|daemon|uucp|sys|adm'
++Tiger_PATH_OK_Owners=$Tiger_ROOT_PATH_OK_Owners
+ #
+ # What groups can have write access to executables in non-root user PATH?
+ # List of group names separated by '|'... no whitespace.
+ # No value means no groups should have write access.
+ #
+-Tiger_PATH_OK_Group_Write=
++eval Tiger_PATH_OK_Group_Write='$Tiger_ROOT_PATH_OK_Group_Write'
+ #
+ # Should 'tiger' wait for Crack to finish? If set to 'Y' it will wait
+ # until it finishes. If set to 'N', it will collect the output if
+@@ -274,6 +285,11 @@
+ #
+ Tiger_Crack_Local=Y
+ #
++# Who sends output from 'tigercron'?
++# Default is "root@$HOSTNAME" (gets expanded by tigercron)
++#
++# Tiger_Mail_FROM="root@`uname -n`"
++#
+ # Who gets output from 'tigercron'?
+ #
+ Tiger_Mail_RCPT=root
+@@ -285,12 +301,12 @@
+ #
+ # File system scan - things to look for
+ #
+-Tiger_FSScan_Setuid=Y # Setuid executables
+-Tiger_FSScan_Setgid=Y # Setgid executables
++Tiger_FSScan_Setuid=N # Setuid executables
++Tiger_FSScan_Setgid=N # Setgid executables
+ Tiger_FSScan_Devs=Y # device files
+ Tiger_FSScan_SymLinks=Y # strange symbolic links
+ Tiger_FSScan_ofNote=Y # weird filenames
+-Tiger_FSScan_WDIR=Y # world writable directories
++Tiger_FSScan_WDIR=N # world writable directories
+ Tiger_FSScan_Unowned=Y # files with undefined owners/groups
+ #
+ # Should we scan read-only filesystems
+@@ -303,7 +319,7 @@
+ # Note that .rhosts and .netrc need not appear here, as they will
+ # be checked by scan_rhosts or scan_netrc.
+ #
+-USERDOTFILES=".alias .kshrc .cshrc .profile .login .mailrc .exrc .emacs .forward .tcshrc .zshenv .zshrc .zlogin .zprofile .rcrc .bashrc .bash_profile .inputrc .xinitrc .fvwm2rc .Xsession .Xclients .less"
++USERDOTFILES=".alias .kshrc .cshrc .profile .login .mailrc .exrc .emacs .forward .tcshrc .zshenv .zshrc .zlogin .zprofile .rcrc .bashrc .bash_profile .bash_logout .inputrc .xinitrc .fvwm2rc .Xsession .Xclients .less .kde"
+ #
+ # Rhost sites which are expected to be in the .rhosts files.
+ # Anything that doesn't match will be reported. The patterns
+@@ -316,7 +332,8 @@
+ # Debian GNU/Linux: default is 999, users are generated over 1000
+ # Solaris: default should be 99, users are generated over 100
+ # HP-UX (?): default should be 499, users are generated over 500
+-Tiger_Accounts_Trust=999
++# Fedora : default should be 499, users are generated over 500
++Tiger_Accounts_Trust=499
+ #
+ # These SSH directive variables are used to specify "allowed" values
+ # for the SSH Daemon.
+@@ -324,7 +341,7 @@
+ # be left blank to ignore the check.
+ Tiger_SSH_Protocol='1|2'
+ Tiger_SSH_RhostsAuthentication='no'
+-Tiger_SSH_PasswordAuthentication='no'
++Tiger_SSH_PasswordAuthentication='yes|no'
+ #
+ # Should we give warnings on services that listen on all interfaces?
+ # (i.e. those that have not been configured to listen only on one)
+@@ -353,10 +370,16 @@
+ # seen in the process table will generate a FAIL:
+ #
+ # The process list below is just an example (useful for Linux)
+-# change it to suit your needs
+-# Tiger_Running_Procs='syslogd cron atd klogd'
++# change it to suit your needs. You can use either the process name
++# or the full path name
++Tiger_Running_Procs='syslogd crond atd klogd'
++# or
++# Tiger_Running_Procs='/sbin/syslogd /usr/sbin/atd /usr/sbin/crond /sbin/klogd'
+ #
+ # Should we optimize DPKG checks? (by not using dpkg but looking on
+ # the file database at /var/lib/dpkg?)
+ #
+ Tiger_DPKG_Optimize=Y
++
++# Devices are not only in /dev when udev is enabled :
++FS_DEVDIRS="/dev /etc/udev/devices"
+--- ./tigerrc-all.config 2003-10-07 00:02:56.000000000 +0200
++++ ./tigerrc-all 2005-08-07 17:12:40.000000000 +0200
+@@ -9,6 +9,7 @@
+ #
+ TigerNoBuild=Y # C files are corrupted (ouch.)
+ Tiger_Check_PASSWD=Y # Fast
++Tiger_Check_PASSWD_FORMAT=N # Fast - not needed if on systems with pwck
+ Tiger_Check_PASSWD_SHADOW=Y # Time varies on # of users
+ Tiger_Check_PASSWD_NIS=N # Time varies on # of users
+ Tiger_Check_GROUP=Y # Fast
+@@ -274,6 +275,11 @@
+ #
+ Tiger_Crack_Local=Y
+ #
++# Who sends output from 'tigercron'?
++# Default is "root@$HOSTNAME" (gets expanded by tigercron)
++#
++# Tiger_Mail_FROM="root@`uname -n`"
++#
+ # Who gets output from 'tigercron'?
+ #
+ Tiger_Mail_RCPT=root
diff --git a/tiger-3.2.1-doc.patch b/tiger-3.2.1-doc.patch
new file mode 100644
index 0000000..fc7b791
--- /dev/null
+++ b/tiger-3.2.1-doc.patch
@@ -0,0 +1,4602 @@
+# Mainly typos
+diff -ru tiger.orig/CHANGES tiger/CHANGES
+--- tiger.orig/CHANGES 2009-03-08 14:41:39.000000000 +0000
++++ tiger/CHANGES 2009-03-08 14:48:36.000000000 +0000
+@@ -1,6 +1,15 @@
+ NOTE: To read changes made to the Debian package (since
+ August 23rd 2001) see the changelog.Debian file
+
++Changes (v 3.2.2)
++(Unreleased)
++----------------
++- Applied patches from Ryan Bradetich to fix Makefiles in HPUX
++- Fixed bashisms in scripts
++- Fixed YPCAT calls
++[TODO: write more of the changes done here]
++
++
+ Changes (v 3.2.1)
+ ----------------
+ - New checks:
+diff -ru tiger.orig/doc/accounts.txt tiger/doc/accounts.txt
+--- tiger.orig/doc/accounts.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/accounts.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -98,10 +98,6 @@
+ %acc015w
+ The listed login ID has a duplicate home directory with another login
+ ID. This should be remedied to prevent permission problems.
+-%acc016w
+-The listed login ID does not have password aging enabled. Good
+-password management practices indicate that passwords should not
+-be static, but rather should be changed on a regular basis.
+ %acc017w
+ The listed login ID does not have corresponding entries in both the
+ /etc/passwd and /etc/shadow databases. This may indicate tampering
+@@ -113,7 +109,7 @@
+ typical search paths.
+ %acc019w
+ The listed login ID may be missing a login program initialization
+-file. This file controls the behavour of the login process and of
++file. This file controls the behaviour of the login process and of
+ many important environment variables.
+ %acc020w
+ The listed login ID does not have a valid login program or shell.
+diff -ru tiger.orig/doc/aide.txt tiger/doc/aide.txt
+--- tiger.orig/doc/aide.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/aide.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -5,7 +5,7 @@
+ cannot make use of in the current Tiger version. Please supply a custom
+ configuration file using Tiger_Run_AIDE_CFG_OVERRIDE and/or make sure
+ no variable substitution is used in the Aide configuration file.
+-%aide003w
++%aide003wsum
+ Aide detected changes in filesystem integrity. This line is only the summary.
+ %aide003w
+ Aide detected, by checking against the files' the attributes in the database,
+diff -ru tiger.orig/doc/anonftp.txt tiger/doc/anonftp.txt
+--- tiger.orig/doc/anonftp.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/anonftp.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -3,16 +3,16 @@
+ and hence there is nothing to check.
+ %ftp002a
+ There is a .rhosts file in the top level of the anonymous ftp
+-directories. This can allow unauthorized 'rlogin's or 'rsh's to
++directory. This can allow unauthorized 'rlogin's or 'rsh's to
+ occur to the ftp account. This indicates a possible intrusion.
+ The contents of the file are listed immediately following the message.
+ The machine should be checked for other signs of intrusion and should
+ be cleaned up. The .rhosts file should be removed.
+ %ftp003w
+-The etc/passwd file in the anonymous ftp directories appears to
++The etc/passwd file in the anonymous ftp directory appears to
+ contain valid entries in the password field. If these are valid,
+ then the file can be retrieved and a password cracking program
+-run against it. The etc/passwd file in the anonymous ftp directories
++run against it. The etc/passwd file in the anonymous ftp directory
+ should simply have a '*' in the password field, and should only
+ include entries for the 'ftp' and 'root' accounts.
+
+@@ -96,4 +96,7 @@
+
+ See CERT advisory CA-93:10 for information on setting up an anonymous
+ FTP server.
+-
++%ftp011w
++The 'ftp' account appears to have a valid shell. A valid shell is not
++required for the 'ftp' user and can be safely set to /bin/false,
++/sbin/nologin, etc.
+diff -ru tiger.orig/doc/config.txt tiger/doc/config.txt
+--- tiger.orig/doc/config.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/config.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -1,12 +1,12 @@
+ %con001c
+-The configuration file listed was not read in because it was
++The configuration file listed was not read because it was
+ a directory.
+ %con002c
+-The configuration file listed was not read in because it is
++The configuration file listed was not read because it was
+ not owned by `root'. This is to prevent someone from
+ modifying the configuration file.
+ %con003c
+-The configuration file listed was not read in because it is
++The configuration file listed was not read because it was
+ writable by non-root users. This is to prevent someone from
+ modifying the configuration file.
+ %con004c
+@@ -50,6 +50,11 @@
+ defined. Since the variable is needed for the module to run, it
+ will probably exit. This is a configuration problem. It is
+ necessary to add the variable to the tigerrc configuration file.
++%con010c
++The filesystem is not recognised by Tiger as a local filesystem
++for this operating system and will not be analysed by it. If this
++is a local filesystem then the configuration script for this
++operating system needs to be modified.
+ %init001e
+ The indicated variable, which should specifies the pathname to a command,
+ does not have a value. This message should not appear on platforms
+@@ -95,7 +100,7 @@
+ These scripts can only be invoked by the top level scripts.
+ %init009e
+ The script wanted to use a temporary script which already exists, this
+-might mean somebody created it to make use of an (fortunately unexistant)
++might mean somebody created it to make use of a (fortunately non-existent)
+ race condition. The script will not proceed further since it will not
+ use a file which it did not create itself.
+ %util001e
+@@ -112,5 +117,8 @@
+ The indicated file exists, but can not be read. This usually happens
+ if you do not run the scripts from an account with super-user privileges.
+ %run001e
+-A needed file cannot be read, probably due to insuficient priviledges.
++A needed file cannot be read, probably due to insufficient privileges.
++Make sure that Tiger is run by the superuser (root) account.
++%run002e
++A needed command cannot be executed, probably due to insufficient privileges.
+ Make sure that Tiger is run by the superuser (root) account.
+diff -ru tiger.orig/doc/cron.txt tiger/doc/cron.txt
+--- tiger.orig/doc/cron.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/cron.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -25,4 +25,17 @@
+ particular, possibly recurring time. It can be very useful, but also
+ has a very real potential for abuse by either users or system crackers.
+ Users can be restricted to use cron by creating a /etc/cron.allow
+-file holding only system administrators.
++(holding only system administrators) or a /etc/cron.deny file
++(listing which users are not allowed access). Depending on the site
++configuration if none exist either only root will be able to setup
++cron tasks or all users will be permitted. In many systems the
++default is to allow access to all users.
++%cron006w
++Cron is not restricted to a given user. It is usually good to restrict
++cron as much as possible since this system has a real potential by
++abuse by either users or system crackers. Consider removing the user
++from the allowed cron list if it is not strictly needed.
++%cron007i
++Cron is restricted to a given user. This is usually good, since
++restricting cron prevents this system from being
++abused by either users or system crackers.
+diff -ru tiger.orig/doc/embed.txt tiger/doc/embed.txt
+--- tiger.orig/doc/embed.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/embed.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -69,11 +69,11 @@
+ The executable is group writable, world writable or both. This can
+ enable an intruder to gain unauthorized privileges if they are able to
+ overwrite the executable.
+-%embed003i
++%embed004i
+ See the 'embed' explanation for an explanation of the format of the
+ embedded references.
+
+ The file or directory is group writable, world writable or both. This
+ may indicate a vulnerability in the system. It will be necessary to
+ study the file and programs in which the pathname was found to
+-determine whether there
++determine whether there is a problem.
+diff -ru tiger.orig/doc/explain.idx tiger/doc/explain.idx
+--- tiger.orig/doc/explain.idx 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/explain.idx 2009-03-08 14:48:36.000000000 +0000
+@@ -16,14 +16,20 @@
+ acc013w accounts.txt 86 94
+ acc014f accounts.txt 96 97
+ acc015w accounts.txt 99 100
+-acc016w accounts.txt 102 104
+-acc017w accounts.txt 106 108
+-acc018w accounts.txt 110 113
+-acc019w accounts.txt 115 117
+-acc020w accounts.txt 119 125
+-acc022w accounts.txt 127 130
+-acc023w accounts.txt 132 134
+-acc024f accounts.txt 136 $
++acc017w accounts.txt 102 104
++acc018w accounts.txt 106 109
++acc019w accounts.txt 111 113
++acc020w accounts.txt 115 116
++acc021w accounts.txt 118 121
++acc022w accounts.txt 123 126
++acc023w accounts.txt 128 130
++acc024f accounts.txt 132 $
++aide001i aide.txt 2 2
++aide002e aide.txt 4 7
++aide003wsum aide.txt 9 9
++aide003w aide.txt 11 14
++aide004w aide.txt 16 23
++aide005w aide.txt 25 $
+ ali001i aliases.txt 2 4
+ ali002f aliases.txt 6 7
+ ali003 aliases.txt 9 11
+@@ -44,7 +50,8 @@
+ ftp008w anonftp.txt 70 77
+ ftp009w anonftp.txt 79 84
+ ftp010f anonftp.txt 86 91
+-ftp010w anonftp.txt 93 $
++ftp010w anonftp.txt 93 98
++ftp011w anonftp.txt 100 $
+ rationale background.txt 2 $
+ con001c config.txt 2 3
+ con002c config.txt 5 7
+@@ -55,24 +62,29 @@
+ con007c config.txt 37 41
+ con008e config.txt 43 47
+ con009e config.txt 49 52
+-init001e config.txt 54 68
+-init002e config.txt 70 75
+-init003c config.txt 77 78
+-init004e config.txt 80 81
+-init005e config.txt 83 86
+-init006e config.txt 88 89
+-init007e config.txt 91 92
+-init008e config.txt 94 95
+-util001e config.txt 97 99
+-util002e config.txt 101 102
+-post001e config.txt 104 105
+-read001i config.txt 107 108
+-run001e config.txt 110 $
++con010c config.txt 54 57
++init001e config.txt 59 73
++init002e config.txt 75 80
++init003c config.txt 82 83
++init004e config.txt 85 86
++init005e config.txt 88 91
++init006e config.txt 93 94
++init007e config.txt 96 97
++init008e config.txt 99 100
++init009e config.txt 102 105
++util001e config.txt 107 109
++util002e config.txt 111 112
++post001e config.txt 114 115
++read001i config.txt 117 118
++run001e config.txt 120 121
++run002e config.txt 123 $
+ cron001w cron.txt 2 4
+ cron002 cron.txt 6 10
+ cron003 cron.txt 12 16
+ cron004w cron.txt 18 22
+-cron005w cron.txt 24 $
++cron005w cron.txt 24 32
++cron006w cron.txt 34 37
++cron007i cron.txt 39 $
+ deb001e debian.txt 2 $
+ embed embed.txt 2 9
+ embed001w embed.txt 11 18
+@@ -82,40 +94,68 @@
+ embed003w embed.txt 49 55
+ embed003i embed.txt 57 64
+ embed004w embed.txt 66 71
+-embed003i embed.txt 73 $
++embed004i embed.txt 73 $
+ fsys001f filesys.txt 2 10
+ fsys002w filesys.txt 12 21
+ fsys003c filesys.txt 23 26
+-fsys004i filesys.txt 28 29
++fsys004a filesys.txt 28 29
+ fsys005a filesys.txt 31 34
+ fsys006a filesys.txt 36 39
+ fsys007i filesys.txt 41 52
+-fsys008i filesys.txt 54 56
++fsys008f filesys.txt 54 56
+ fsys009w filesys.txt 58 60
+ fsys010w filesys.txt 62 66
+-fsys011i filesys.txt 68 $
++fsys011a filesys.txt 68 69
++fsys0012w filesys.txt 71 $
+ grp001w group.txt 2 3
+ grp002w group.txt 5 7
+ grp003w group.txt 9 9
+ grp004w group.txt 11 12
+ grp005w group.txt 14 16
+ grp006w group.txt 18 $
++trust001w hpux.txt 2 9
++trust002w hpux.txt 11 $
+ inet001e inetd.txt 2 5
+ inet002f inetd.txt 7 11
+ inet003w inetd.txt 13 17
+ inet004i inetd.txt 19 21
+ inet005w inetd.txt 23 26
+-inet006f inetd.txt 28 33
+-inet007w inetd.txt 35 39
+-inet008 inetd.txt 41 43
+-inet009 inetd.txt 45 47
+-inet010i inetd.txt 49 50
+-inet011i inetd.txt 52 54
+-inet012w inetd.txt 56 56
+-inet013w inetd.txt 58 58
+-inet014i inetd.txt 60 61
+-inet015i inetd.txt 63 65
+-inet016f inetd.txt 67 $
++inet006f inetd.txt 28 41
++inet007w inetd.txt 43 47
++inet008 inetd.txt 49 51
++inet009 inetd.txt 53 55
++inet010i inetd.txt 57 58
++inet011i inetd.txt 60 62
++inet012w inetd.txt 64 68
++inet013w inetd.txt 70 74
++inet014i inetd.txt 76 77
++inet015i inetd.txt 79 81
++inet016f inetd.txt 83 86
++inet017w inetd.txt 88 93
++inet018w inetd.txt 95 100
++inet019a inetd.txt 102 109
++inet020f inetd.txt 111 116
++inet021f inetd.txt 118 123
++inet022w inetd.txt 125 135
++inet023w inetd.txt 137 155
++inet024w inetd.txt 157 162
++inet025w inetd.txt 164 170
++inet026w inetd.txt 172 176
++inet027w inetd.txt 178 182
++inet098w inetd.txt 184 189
++inet099w inetd.txt 191 195
++inet100w inetd.txt 197 204
++xnet001e inetd.txt 206 210
++xnet002e inetd.txt 212 215
++xnet003e inetd.txt 217 221
++xnet004i inetd.txt 223 225
++xnet005i inetd.txt 227 $
++integ001i integrit.txt 2 2
++integ002e integrit.txt 4 7
++integ003wsum integrit.txt 9 10
++integ003w integrit.txt 12 15
++integ004w integrit.txt 17 24
++integ005w integrit.txt 26 $
+ issue001w issue.txt 2 4
+ issue002w issue.txt 6 $
+ kis001a known.txt 2 5
+@@ -129,7 +169,9 @@
+ kis009w known.txt 46 53
+ kis010w known.txt 55 60
+ kis011f known.txt 62 72
+-kis012w known.txt 74 $
++kis012w known.txt 74 82
++kis013a known.txt 84 87
++kis014a known.txt 89 $
+ lin001w linux.txt 2 5
+ lin002i linux.txt 7 9
+ lin003w linux.txt 11 17
+@@ -141,21 +183,22 @@
+ lin009i linux.txt 49 53
+ lin010f linux.txt 55 58
+ lin011f linux.txt 60 62
+-lin012w linux.txt 64 72
+-lin013f linux.txt 74 77
+-lin014f linux.txt 79 84
+-lin015w linux.txt 86 89
+-lin016f linux.txt 91 97
+-lin017w linux.txt 99 102
+-lin018w linux.txt 104 $
+-logf001f logfiles.txt 2 3
+-logf002f logfiles.txt 5 6
+-logf003f logfiles.txt 8 9
+-logf004f logfiles.txt 11 12
+-logf005w logfiles.txt 14 15
+-logf005w logfiles.txt 17 18
+-logf006f logfiles.txt 20 21
+-logf007w logfiles.txt 23 $
++lin012w linux.txt 64 73
++lin013f linux.txt 75 78
++lin014f linux.txt 80 86
++lin015w linux.txt 88 91
++lin016f linux.txt 93 100
++lin017w linux.txt 102 106
++lin018w linux.txt 108 115
++lin019f linux.txt 117 $
++logf001f logfiles.txt 2 5
++logf002f logfiles.txt 7 10
++logf003f logfiles.txt 12 15
++logf004f logfiles.txt 17 20
++logf005f logfiles.txt 22 23
++logf005w logfiles.txt 25 26
++logf006f logfiles.txt 28 31
++logf007f logfiles.txt 33 $
+ ca9122f misc.txt 2 7
+ ca9122w misc.txt 9 15
+ ca9122i misc.txt 17 29
+@@ -163,7 +206,7 @@
+ misc002w misc.txt 47 55
+ misc003f misc.txt 57 64
+ misc004w misc.txt 66 70
+-misc005w misc.txt 72 73
++misc005e misc.txt 72 73
+ misc006w misc.txt 75 88
+ misc007w misc.txt 90 93
+ misc008w misc.txt 95 119
+@@ -183,11 +226,25 @@
+ misc020f misc.txt 232 233
+ misc021w misc.txt 235 236
+ misc022f misc.txt 238 239
+-misc023w misc.txt 241 $
++misc023w misc.txt 241 243
++misc024e misc.txt 245 250
++misc025e misc.txt 252 $
++ndd001f ndd.txt 2 9
++ndd002f ndd.txt 11 15
++ndd003w ndd.txt 17 21
++ndd004f ndd.txt 23 26
++ndd005w ndd.txt 28 32
++ndd006w ndd.txt 34 37
++ndd007f ndd.txt 39 44
++ndd008f ndd.txt 46 52
++ndd009f ndd.txt 54 61
++ndd010f ndd.txt 63 70
++ndd011w ndd.txt 72 $
+ nrc001f netrc.txt 2 8
+ nrc002w netrc.txt 10 14
+ nrc003w netrc.txt 16 17
+-nrc004a netrc.txt 19 $
++nrc004a netrc.txt 19 22
++nrc005w netrc.txt 24 $
+ netw001f network.txt 2 2
+ netw002f network.txt 4 6
+ netw003f network.txt 8 10
+@@ -232,17 +289,27 @@
+ pass006w passwd.txt 22 24
+ pass007w passwd.txt 26 27
+ pass008e passwd.txt 29 30
+-pass009e passwd.txt 32 33
+-pass010w passwd.txt 35 $
++pass009f passwd.txt 32 33
++pass010w passwd.txt 35 36
++pass011f passwd.txt 38 39
++pass012w passwd.txt 41 43
++pass013w passwd.txt 45 46
++pass014w passwd.txt 48 52
++pass015w passwd.txt 54 55
++pass016w passwd.txt 57 58
++pass017w passwd.txt 60 63
++pass018f passwd.txt 65 68
++pass19w passwd.txt 70 72
++pass20w passwd.txt 74 $
+ path001w paths.txt 2 5
+-path002w paths.txt 7 14
+-path003i paths.txt 16 18
+-path004w paths.txt 20 25
+-path005w paths.txt 27 34
+-path006w paths.txt 36 44
+-path007w paths.txt 46 49
+-path008i paths.txt 51 57
+-path009w paths.txt 59 $
++path002w paths.txt 7 18
++path003i paths.txt 20 22
++path004w paths.txt 24 29
++path005w paths.txt 31 38
++path006w paths.txt 40 48
++path007w paths.txt 50 53
++path008i paths.txt 55 61
++path009w paths.txt 63 $
+ pcap001i pcap.txt 2 4
+ pcap002i pcap.txt 6 7
+ pcap002w pcap.txt 9 11
+@@ -278,23 +345,29 @@
+ perm022w permissions.txt 141 143
+ perm023a permissions.txt 145 147
+ perm024a permissions.txt 149 152
+-perm025w permissions.txt 154 $
+-dev001 pxt.txt 2 2
+-dev002 pxt.txt 4 8
+-boot01 pxt.txt 10 11
+-boot02 pxt.txt 13 14
+-boot03 pxt.txt 16 17
+-ptch01 pxt.txt 19 20
+-ptch02 pxt.txt 22 23
+-ptch03 pxt.txt 25 27
+-ptch04 pxt.txt 29 33
+-ptch05e pxt.txt 35 40
+-osv001 pxt.txt 42 44
+-osv002 pxt.txt 46 48
+-osv003 pxt.txt 50 52
+-osv004 pxt.txt 54 57
+-sum001 pxt.txt 59 63
+-trip01 pxt.txt 65 $
++perm025w permissions.txt 154 159
++perm26f permissions.txt 161 164
++perm27f permissions.txt 166 170
++perm28f permissions.txt 172 178
++perm29f permissions.txt 180 190
++perm30f permissions.txt 192 $
++dev001f pxt.txt 2 2
++dev002f pxt.txt 4 8
++dev003w pxt.txt 10 13
++boot01 pxt.txt 15 16
++boot02 pxt.txt 18 19
++boot03w pxt.txt 21 22
++ptch01f pxt.txt 24 25
++ptch02f pxt.txt 27 28
++ptch03 pxt.txt 30 32
++ptch04w pxt.txt 34 38
++ptch05e pxt.txt 40 45
++osv001f pxt.txt 47 49
++osv002f pxt.txt 51 53
++osv003w pxt.txt 55 57
++osv004w pxt.txt 59 62
++sum001f pxt.txt 64 68
++trip01f pxt.txt 70 $
+ curry references.txt 2 4
+ garfinkel references.txt 6 $
+ rcmd001f rhosts.txt 2 5
+@@ -306,13 +379,23 @@
+ rcmd007w rhosts.txt 44 45
+ rcmd008a rhosts.txt 47 51
+ rcmd009f rhosts.txt 53 56
+-rcmd010i rhosts.txt 58 59
++rcmd010w rhosts.txt 58 59
+ rcmd011f rhosts.txt 61 70
+ rcmd012f rhosts.txt 72 74
+ rcmd013w rhosts.txt 76 81
+-rcmd015w rhosts.txt 83 $
+-rootdir001f rootdir.txt 2 3
+-rootdir002f rootdir.txt 5 $
++rcmd015w rhosts.txt 83 86
++rcmd016w rhosts.txt 88 92
++rcmd017a rhosts.txt 94 102
++rcmd018a rhosts.txt 104 $
++rootdir001f rootdir.txt 2 4
++rootdir002f rootdir.txt 6 6
++rootdir003f rootdir.txt 8 $
++rootkit001f rootkit.txt 2 6
++rootkit002f rootkit.txt 8 12
++rootkit003w rootkit.txt 14 18
++rootkit004w rootkit.txt 20 23
++rootkit005a rootkit.txt 25 28
++rootkit006a rootkit.txt 30 $
+ root001w root.txt 2 5
+ root002w root.txt 7 8
+ root003w root.txt 10 $
+@@ -336,4 +419,10 @@
+ sig018w signature.txt 146 151
+ sig019w signature.txt 153 162
+ sig020w signature.txt 164 167
+-sig021w signature.txt 169 $
++sig021w signature.txt 169 175
++sig022f signature.txt 177 $
++ssh001w ssh.txt 2 3
++ssh002w ssh.txt 5 8
++ssh003w ssh.txt 10 13
++ssh004w ssh.txt 15 16
++ssh005e ssh.txt 18 $
+diff -ru tiger.orig/doc/filesys.txt tiger/doc/filesys.txt
+--- tiger.orig/doc/filesys.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/filesys.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -24,7 +24,7 @@
+ all setuid programs will be listed. When fully configured for a
+ platform, only those setuid programs that do not appear in the
+ distribution will be listed.
+-%fsys004i
++%fsys004a
+ The listed programs are setuid, but are not in the database of
+ setuid programs which appear in the OS distribution.
+ %fsys005a
+@@ -50,7 +50,7 @@
+ chown -R joeuser /home/joeuser
+
+ could potentially change the owner of a system file to 'joeuser'.
+-%fsys008i
++%fsys008f
+ The listed directories are world writable. These provide a location
+ for intruders to store files. They should be checked for unusual
+ files.
+@@ -64,6 +64,10 @@
+ the Operating System. Even on systems where this is corrected, the
+ difficulties in writing a truly secure setgid script make them very
+ undesirable.
+-%fsys011i
++%fsys011a
+ The listed programs are setgid, but are not in the database of
+ setgid programs which appear in the OS distribution.
++%fsys0012w
++The listed program is not owned by an administrative user. The
++majority of SUID programs should probably be owned by an
++administrative user.
+diff -ru tiger.orig/doc/group.txt tiger/doc/group.txt
+--- tiger.orig/doc/group.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/group.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -18,5 +18,3 @@
+ The group files have integrity issues as found by 'grpck -r'. This
+ can lead to looping of password manipulation programs and to allow
+ unexpected access to resources.
+-
+-
+diff -ru tiger.orig/doc/inetd.txt tiger/doc/inetd.txt
+--- tiger.orig/doc/inetd.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/inetd.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -25,8 +25,8 @@
+ be checked, and if anything unusual is found, the system should
+ be checked for other signs of intrusion.
+ %inet006f
+-The 'rexd' service is very insecure and should never be enabled.
+-Known rexd servers have little or no security in their design
++The 'rexd' (or 'exec') service is very insecure and should never be
++enabled. Known rexd servers have little or no security in their design
+ or implementation. Intruders can exploit this service to execute
+ commands as any user.
+
+@@ -61,7 +61,7 @@
+ This should be checked to see if it is a valid addition. If it
+ is not, it should be removed.
+ %inet012w
+-The 'sysstat' service is enabled, this system provides a considerable
++The 'systat' service is enabled, this system provides a considerable
+ number of information to remote anonymous users.
+ Consider disabling it by editing the inetd.conf file,
+ removing the 'systat' entry, and sending a HUP signal to the
+@@ -80,7 +80,7 @@
+ by using tcp wrappers. This has been changed from default installation
+ (which did not provide it) but is probably a better setup.
+ %inet016f
+-The listed entry was protected by tcp wrappers by the systema but has,
++The listed entry was protected by tcp wrappers by the system but has,
+ for some unknown reason, changed to no longer be protected by them. Make
+ sure that the service is secured since, if not using tcp wrappers,
+ access control for it might be disabled.
+@@ -168,10 +168,22 @@
+ Consider disabling it by editing the inetd.conf file,
+ removing the 'echo' and/or 'chargen' entries, and sending a HUP signal to the
+ 'inetd' process.
++%inet026w
++The linuxconf service can be utilized for remote administration.
++
++Consider disabling it by editing the inetd.conf file,
++removing the 'linuxconf' entry, and sending a HUP signal to the
++'inetd' process.
++%inet027w
++The 'identd or auth' service is enabled, this system provides a considerable
++number of information to remote anonymous users.
++
++Consider disabling it by editing the inetd.conf file, removing the 'auth' entry,
++and sending a HUP signal to the 'inetd' process.
+ %inet098w
+ Services that pass sensitive information (including passwords) should
+ be replaced with the family of programs that comprise secure shell (ssh)
+-which use strong encryption based on public-key criptography.
++which use strong encryption based on public-key cryptography.
+
+ You can use the freely-available OpenSSH implementation at
+ http://www.openssh.org
+@@ -181,3 +193,37 @@
+ improve logging.
+ The listed entry was protected by tcp wrappers by the default installation
+ and is currently protected this way too. This is a good thing!
++%inet100w
++The inetd services does not have logging enabled. Adding logging to the
++inetd services will help identify potential mis-use of system system resources.
++
++To enable logging for the inetd service add the -l option in the inetd startup
++scripts.
++
++To enable logging for the xinetd services add the log_type, log_on_success
++and/or log_on_failure to the /etc/xinetd.conf file.
++%xnet001e
++The script cannot find an xinetd configuration file in this system. This
++might happen if Xinetd is not installed of if the XINETDCONF configuration
++variable is not properly defined. The script will try to find this configuration
++file in standard locations (/etc/xinetd.conf) but if it's not there
++you will need to define it in the siterc configuration file.
++%xnet002e
++A directory which is being included by the XINETDCONF configuration file
++is not really a directory. This prevents the script from analysing all
++the active services and might be a configuration issue. Please check
++Xinetd's configuration file.
++%xnet003e
++The script cannot read the xined configuration file in this system. This
++should not usually happen since the script should be running with
++root privileges. In order to analyse the configuration file you need
++to run this script as a user who can read all the Xinetd configuration
++files.
++%xnet004i
++The service is enabled in the Xinetd configuration file. You should verify
++that services enabled in the server are legitimate and consider disabling
++unused services in order to minimise exposure (and associated risk)
++%xnet005i
++The service is disabled in the Xinetd configuration file. This is usually
++a good thing, since this limits exposure of the server and prevents
++external attacks.
+diff -ru tiger.orig/doc/integrit.txt tiger/doc/integrit.txt
+--- tiger.orig/doc/integrit.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/integrit.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -5,7 +5,7 @@
+ Tiger cannot make use of in the current Tiger version. Please supply a custom
+ configuration file using Tiger_Run_AIDE_CFG_OVERRIDE and/or make sure
+ no variable substitution is used in the Integrit configuration file.
+-%integ003w
++%integ003wsum
+ Integrit detected changes in filesystem integrity. This line is only the
+ summary.
+ %integ003w
+diff -ru tiger.orig/doc/known.txt tiger/doc/known.txt
+--- tiger.orig/doc/known.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/known.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -44,7 +44,7 @@
+ of intrusion.
+ %kis009w
+ There is an .exrc file outside of any user's home directory. This file can
+-be loaded inadvertenly by a user if executing an editor in that directory
++be loaded inadvertently by a user if executing an editor in that directory
+ and could introduce unexpected commands through it.
+ Note that in all modern versions of vi, you have to set the exrc option
+ in your home's directory .exrc file before vi will read the exrc in
+@@ -74,11 +74,12 @@
+ An application in the system is using a deleted file. This might be an
+ indication of an intruder executing rogue processes and removing the files
+ from disk so that they cannot be traced or detected by the local administrator.
+-This has been observerd both in intruders running password cracking programs
++This has been observed both in intruders running password cracking programs
+ or worms propagating through remote attacks.
+ This also can happen if a local application is using shared libraries which have
+ been upgraded but the service itself has not been restarted in order to
+-use the new libraries.
++use the new libraries. Notice that if there was a vulnerability in the
++library and the server was not restarted the system is still vulnerable.
+ %kis013a
+ A interface is set up on promiscuous mode, this is a common method
+ used by attackers to capture user account and and password information.
+diff -ru tiger.orig/doc/linux.txt tiger/doc/linux.txt
+--- tiger.orig/doc/linux.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/linux.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -49,7 +49,7 @@
+ The kernel will answer (per configuration) to ICMP echo requests in any
+ interface. You might want to configure it to not answer to this requests
+ and thus make it more "invisible". Do it with:
+-# sysctl -w net.ipv4.icmp_echo_ignore_all=1
++ # sysctl -w net.ipv4.icmp_echo_ignore_all=1
+ Note, however, that this violates RFCs.
+ %lin010f
+ The system will answer to ICMP broadcast echo messages. This is considered
+@@ -59,28 +59,30 @@
+ %lin011f
+ The system is configured to answer to bad formatted ICMP messages. This
+ behavior is not recommended, please unconfigure it with:
+-# sysctl -w net.ipv4.icmp_ignore_bogus_error_responses = 1
++ # sysctl -w net.ipv4.icmp_ignore_bogus_error_responses = 1
+ %lin012w
+ The system is configured to accept ICMP redirects, this might or might
+ not be necessary in your network topology. If you have multiple routers
+ to which connect through to outside locations it might be necessary,
+-otherwise remote it since an attacker could send bogus ICMP redirection
++otherwise remove it since an attacker could send bogus ICMP redirection
+ messages to try to route the outgoing network packets to other systems
+ (including his own) and thus allowing for man in the middle or
+ denial of service attacks:
+ # sysctl -w net.ipv4.conf.all.accept_redirects = 0
++and:
+ # sysctl -w net.ipv4.conf.default.accept_redirects = 0
+ %lin013f
+ It is common to protect systems against Denial of Service attacks using
+ SYN packets (commonly known as "SYN flooding") by activating support
+-of TCP syncookies. Note, however, that activating this violates some RFCS:
++of TCP syncookies. Note, however, that activating this violates some RFCs:
+ # sysctl -w net.ipv4.tcp_syncookies = 1
+ %lin014f
+ It is possible to send IP spoofed packets from this machine. Spoofed
+ packets are commonly used by trojans that make use of compromised hosts
+-to deliver denial of service, man in the middle or conection hijacking.
++to deliver denial of service, man in the middle or connection hijacking.
+ You should consider configuring your kernel to not permit this:
+ # sysctl -w net.ipv4.conf.all.rp_filter = 2
++and:
+ # sysctl -w net.ipv4.conf.default.rp_filter = 2
+ %lin015w
+ IP forwarding is the option that permits the system to act as a router
+@@ -94,11 +96,13 @@
+ circumstances or otherwise an attacker could try to bypass the traffic
+ filtering that is done on the network:
+ # sysctl -w net.ipv4.conf.all.accept_source_route = 0
++and:
+ # sysctl -w net.ipv4.conf.default.accept_source_route = 0
+ %lin017w
+-Suspicious packets recieved by the kernel should be logged to detect
++Suspicious packets received by the kernel should be logged to detect
+ incoming attacks. To activate this logging capability:
+ # sysctl -w net.ipv4.conf.all.log_martians = 1
++and:
+ # sysctl -w net.ipv4.conf.default.log_martians = 1
+ %lin018w
+ The "weak end host" description in the RFC1122 permits multihomed systems
+@@ -108,4 +112,17 @@
+ For 2.2 kernels remove this option with:
+ # echo 1 > /proc/sys/net/ipv4/conf/eth1/hidden
+ For 2.4 and later kernels you might need to patch the kernel or configure
+-your firewalling rules properly.
++your firewalling rules properly (i.e. defining anti-spoofing rules).
++%lin019f
++The system has no firewalling rules in place to limit access to network
++services and protocols. Considering configuring a set of local firewall
++rules adapted to your needs. There are multiple firewall generation software
++you can use to generate these (such as Bastille, Shorewall, Firestarter,
++or Knetfiler).
++Local firewall rules can be used to block undesired incoming and outgoing
++traffic and can be useful to prevent access to network services that are
++listening on all system interfaces, only want to be used from specific
++hosts (or interfaces) and lack capabilities to either restrict its
++use to specific local network IP addresses or hosts.
++If the system is multi-home a local firewall configuration will prevent
++spoofing attacks due to "weak end host" issues.
+diff -ru tiger.orig/doc/logfiles.txt tiger/doc/logfiles.txt
+--- tiger.orig/doc/logfiles.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/logfiles.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -18,7 +18,7 @@
+ server can be listed. This is accessed by the command "who".
+ It might not exist due to a system configuration error or an
+ intruder that has tried to cover this tracks by removing it.
+-%logf005w
++%logf005f
+ The log file does not have proper permissions set. It is recommended that
+ you change the permissions to those suggested for these file.
+ %logf005w
+@@ -29,12 +29,12 @@
+ on the server.
+ It might not exist due to a system configuration error or an
+ intruder that has tried to cover this tracks by removing it.
+-%logf006f
++%logf007f
+ The log file "messages" should exist to show a trace of the system logs
+ (including reboots and kernel messages), it is also often used by the
+ syslog daemon to log information. The contents of the "messages" logfile
+ depends upon the configuration of the syslog.conf and varies by
+-distribution and/or system administrator preferrence.
++distribution and/or system administrator preference.
+ It might not exist if you have configured your system to use a
+ different file for logging or if an intruder has tried to cover
+ his tracks by removing it since the messages file might contain
+diff -ru tiger.orig/doc/misc.txt tiger/doc/misc.txt
+--- tiger.orig/doc/misc.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/misc.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -68,8 +68,8 @@
+ execute commands which allow them to read and modify memory, boot
+ alternate OS's etc. See the 'eeprom' man page for information
+ on securing the PROM monitor.
+-%misc005w
+-The listed security check file from a check.tbl file does not
++%misc005e
++The listed security check file from a check.d/ file does not
+ exist.
+ %misc006w
+ The NFS mount daemon is running with port checking disabled.
+@@ -198,21 +198,21 @@
+ %misc016w
+
+ The `ie', `le', and `qe' device files can be used to snoop packets
+-from the network (ethernet in these cases). This ability should be
++from the network (Ethernet in these cases). This ability should be
+ restricted. The permissions on the listed files should be 0600. The
+ Solaris package facility will occasionally reset these permissions to
+ what they are defined to be in in the /var/sadm/install/contents file.
+-Therefore, they must be changed there as well. The file is an ascii
++Therefore, they must be changed there as well. The file is an ASCII
+ file and can be edited with any editor.
+ %misc017w
+
+ The `ie', `le', and `qe' device files can be used to snoop packets
+-from the network (ethernet in these cases). This ability should be
++from the network (Ethernet in these cases). This ability should be
+ restricted. The listed device files should be owned by root and only
+ readable/writable by root in order to restrict access. The Solaris
+ package facility will occasionally reset the ownership and permissions to
+ what they are defined to be in in the /var/sadm/install/contents file.
+-Therefore, they must be changed there as well. The file is an ascii
++Therefore, they must be changed there as well. The file is an ASCII
+ file and can be edited with any editor.
+ %misc017f
+ The umask settings used in the boot scripts is insecure.
+@@ -221,7 +221,7 @@
+ permissions are 022 or 022.
+ %misc018w
+ There are two umask settings in the boot scripts, this probably means
+-that only one of them will be valid. Check the appropiate file to
++that only one of them will be valid. Check the appropriate file to
+ fix this issue.
+ %misc019w
+ Tiger was unable to found any umask settings to be used in the boot
+@@ -236,19 +236,19 @@
+ that there are umask entries set in the configuration file.
+ %misc022f
+ The umask setting in the configuration file is insecure. Umask must be
+-set as to prevent public write (ie. either 002 or 022).
++set as to prevent public write (i.e. either 002 or 022).
+ %misc023w
+ There are more than two umask entries in the configuration file. Please
+ check if the umask settings are secure (to prevent public write, suggested
+ values are either 002 or 022).
+-%misc024f
++%misc024e
+ The script will not be run since it belongs to a different owner than the
+ one running the Tiger program (or script). Since running this script might
+ introduce a risk (if the script was dropped in a directory that Tiger searches
+ for by an attacker to have it run) it will not be executed.
+ This might be a problem in the installation of Tiger so you should recheck
+ the script owner and permissions.
+-%misc025f
++%misc025e
+ The script will not be run since it is not executable. This might be a problem
+ with the installation of Tiger so you should recheck the script's file owner
+ and permissions.
+diff -ru tiger.orig/doc/ndd.txt tiger/doc/ndd.txt
+--- tiger.orig/doc/ndd.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/ndd.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -69,8 +69,8 @@
+ services.
+ # ndd -set /dev/ip ip_respond_to_timestamp 0
+ %ndd011w
+-This option determins if HP-UX will include explanitory text in the
+-RST segement it sends. This text is helpful for debugging, but is also
++This option determines if HP-UX will include explanatory text in the
++RST segment it sends. This text is helpful for debugging, but is also
+ useful to potential intruders.
+ To disable this do:
+ # ndd -set /dev/tcp tcp_text_in_resets 0
+diff -ru tiger.orig/doc/network.txt tiger/doc/network.txt
+--- tiger.orig/doc/network.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/network.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -1,11 +1,11 @@
+ %netw001f
+-The listed file is world writeable. chomd -ow file to correct.
++The listed file is world writable. chmod -ow file to correct.
+ %netw002f
+ The listed file is not owned by an 'administrative' account.
+ Change the ownership, or add your admin user to 'Tiger_Admin_Accounts'
+ list of valid administrative users.
+ %netw003f
+-The inetd daemon is not configured with loggin enabled. If xinetd
++The inetd daemon is not configured with login enabled. If xinetd
+ based, add the 'filelog' or 'syslog' options in /etc/sysconfig/xinetd
+ configuration file.
+ %netw004f
+diff -ru tiger.orig/doc/passwd.txt tiger/doc/passwd.txt
+--- tiger.orig/doc/passwd.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/passwd.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -28,7 +28,7 @@
+ %pass008e
+ The password file was not generated and cannot be analysed. This might
+ probably happen due to Tiger not running with full administrative access.
+-%pass009e
++%pass009f
+ The format of a given configuration file used for user (or group)
+ authentication has some inconsistency that might be a security vulnerability.
+ %pass010w
+@@ -61,8 +61,17 @@
+ account. This should be checked to see if it is legitimate. In any
+ case, having login ID's with a user ID of zero tends to lead to security
+ problems, and should be avoided (except for 'root')
+-%pass18f
++%pass018f
+ The listed administrative login should have an impossible password.
+ Files owned by this login ID may reside in critical system directories
+ and compromise of this account could lead to trojan executables in
+ typical search paths.
++%pass19w
++The listed login ID does not have password aging enabled. Good
++password management practices indicate that passwords should not
++be static, but rather should be changed on a regular basis.
++%pass20w
++The listed login ID is not configured to use shadow passwords. This
++indicates the specified login ID has its cypher text publicly available
++and is subject to brute force password cracking, even though shadow
++passwords are implimented on the system.
+diff -ru tiger.orig/doc/paths.txt tiger/doc/paths.txt
+--- tiger.orig/doc/paths.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/paths.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -9,7 +9,7 @@
+ executables and spread by `root'. Often these executables are owned by
+ `bin', `uucp' or other system accounts. If these commands are never
+ used by root, then this is not a problem. If they are, you should
+-consider changing the owner to `root'. Because of SMI's recent decission
++consider changing the owner to `root'. Because of SMI's recent decision
+ to install most /usr/sbin/* and /usr/bin/* executables
+ as owned by `bin', this account will not flag a warning.
+
+diff -ru tiger.orig/doc/pcap.txt tiger/doc/pcap.txt
+--- tiger.orig/doc/pcap.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/pcap.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -14,6 +14,6 @@
+ group or world write permissions. This may represent a security
+ vulnerability.
+ %pcap003w
+-The indicated executable associsated with a printer control has
++The indicated executable associated with a printer control has
+ group or world write permissions. This may represent a security
+ vulnerability, as it may be possible to replace the executable.
+diff -ru tiger.orig/doc/permissions.txt tiger/doc/permissions.txt
+--- tiger.orig/doc/permissions.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/permissions.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -160,7 +160,7 @@
+ %perm26f
+ The file '/etc/login.access' provides finer control over user
+ access, it can be modified to allow or disallow remote access
+-to priviledged accounts. If this file is writable by non-root
++to privileged accounts. If this file is writable by non-root
+ users, then unauthorized access or privileges may be obtained.
+ %perm27f
+ The file '/etc/login.conf' is used by default on some BSD systems,
+diff -ru tiger.orig/doc/pxt.txt tiger/doc/pxt.txt
+--- tiger.orig/doc/pxt.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/pxt.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -1,6 +1,6 @@
+-%dev001
++%dev001f
+ Tape devices used for backups should not have world permissions.
+-%dev002
++%dev002f
+ Devices that have improper (world) permissions might be accessed by
+ any system user. This might open security holes if these are shared
+ devices or hold binaries (disks for example). The administrator should
+@@ -17,20 +17,20 @@
+ %boot02
+ The grub configuration file (/boot/grub/grub.conf) should have
+ permissions limiting access to only the owner (usually root).
+-%boot03
++%boot03w
+ A boot loader configuration file could not be found. That means
+ that neither /etc/lilo.conf nor /boot/grub/grub.conf exists.
+-%ptch01
++%ptch01f
+ AutoRPM has determined that there are updated packages waiting
+ to be installed.
+-%ptch02
++%ptch02f
+ apt-get has determined that there are updated packages waiting
+ to be installed.
+ %ptch03
+ The machine does not appear to be a RedHat or Debian system.
+ This test can currently only determine current patch levels
+ if it can find autorpm or apt-get.
+-%ptch04
++%ptch04w
+ No patch management tool could be found on the system.
+ The scripts looks for autorpm followed by apt-get. If either
+ one is found it is used to determine if updated packages
+@@ -43,31 +43,31 @@
+ will be done only on the current available list of packages (which
+ might not be up-to-date). Make sure that you are running the tool
+ as an administrative user.
+-%osv001
++%osv001f
+ The operating system version appears to be less than RedHat 6.2
+ Due to security enhancements and fixes available in recent releases,
+ running an older version of RedHat is strongly discouraged.
+-%osv002
++%osv002f
+ The operating system version appears to be less than Debian 3.0
+ Due to security enhancements and fixes available in recent releases,
+ running an older version of Debian is strongly discouraged.
+-%osv003
++%osv003w
+ The machine does not appear to be a RedHat or Debian system.
+ This test can not suggest a recommended version number for your
+ operating system.
+-%osv004
++%osv004w
+ The machine is running an unreleased version of Debian GNU/Linux.
+ This version is not supported by the security team so it might not
+-be up-to-date security wase (support is only provided for the latest
++be up-to-date security wise (support is only provided for the latest
+ release). That is, "run at your own risk".
+-%sum001
++%sum001f
+ The system does not appear to require a password during single-user
+ mode boot. Either add a password to your boot loader or add the line:
+ ~~:S:wait:/sbin/sulogin
+-to your /etc/inittab file. This line should be added immeditaly before
++to your /etc/inittab file. This line should be added immediately before
+ the line containing "rc 0".
+-%trip01
++%trip01f
+ Tripwire has detected an inconsistency in the noted file. This file
+ has been modified in some way since the database was built -- either
+-upgraded, removed or tampered with. If this modification is legitmate
++upgraded, removed or tampered with. If this modification is legitimate
+ please refresh the tripwire database by running "tripwire --update"
+diff -ru tiger.orig/doc/rhosts.txt tiger/doc/rhosts.txt
+--- tiger.orig/doc/rhosts.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/rhosts.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -54,7 +54,7 @@
+ security hole. It allows anyone to login to the machine as any
+ user except `root'. This needs to be removed immediately. Note
+ that SunOS 4.x systems ship with the '+' entry.
+-%rcmd010i
++%rcmd010w
+ The contents of the /etc/hosts.equiv file is listed. The hosts
+ listed here should be examined for correctness.
+ %rcmd011f
+@@ -86,7 +86,7 @@
+ command.
+ %rcmd016w
+ The user has an .rhosts file. The use of rhosts files is not a recommended
+-method for secure access to remote hosts, you should consider wether or
++method for secure access to remote hosts, you should consider whether or
+ not the user needs to have an .rhosts file and, in any case, consider
+ the use of safer replacement for the 'r' commands including public-key
+ cryptography programs (such as SSH implementations)
+diff -ru tiger.orig/doc/rootdir.txt tiger/doc/rootdir.txt
+--- tiger.orig/doc/rootdir.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/rootdir.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -1,6 +1,8 @@
+ %rootdir001f
+-The inode for the root directory is not on inode 2. This is a security
+-breach. To check the inode number, use "stat /" command.
++The root directory is not at the beginning of a filesystems.
++This usually indicates the output of the Tiger reports might
++be suspect. (i.e. Tiger was possibly run inside a chroot, etc).
+ %rootdir002f
+ The permissions for the root directory are not secure.
+-
++%rootdir003f
++The ownership of the root directory is not secure.
+diff -ru tiger.orig/doc/rootkit.txt tiger/doc/rootkit.txt
+--- tiger.orig/doc/rootkit.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/rootkit.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -14,12 +14,12 @@
+ The 'chkrootkit' program has detected a suspicious directory
+ which might be an indication of an intrusion.
+ A full analysis of the system is recommended to determine the
+-presence of further signs of intrusion since a rookit might have
++presence of further signs of intrusion since a rootkit might have
+ been installed.
+-%rootkit004f
++%rootkit004w
+ The 'chkrootkit' program has detected a possible rootkit installation
+ A full analysis of the system is recommended to determine the
+-presence of further signs of intrusion since a rookit might have
++presence of further signs of intrusion since a rootkit might have
+ been installed.
+ %rootkit005a
+ The 'chkrootkit' program has detected a rootkit installation
+@@ -29,10 +29,10 @@
+ %rootkit006a
+ A rootkit is installed by intruders in systems which have been
+ successfully compromised and in which they have obtained full
+-administrator priviledges. The installation of a rookit is
++administrator privileges. The installation of a rootkit is
+ an indication of a major system compromise.
+
+-If the installation of a rookit is confirmed you are encouraged
++If the installation of a rootkit is confirmed you are encouraged
+ to power off the system and follow the steps outlined by
+ Steps for Recovering from a UNIX or NT System Compromise
+ (http://www.cert.org/tech_tips/root_compromise.html)
+diff -ru tiger.orig/doc/root.txt tiger/doc/root.txt
+--- tiger.orig/doc/root.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/root.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -8,5 +8,5 @@
+ "root" should be added to this file.
+ %root003w
+ The root user should not have the message capability turned on. This
+-could lead to inadvertant modification of files with the root user is
++could lead to inadvertent modification of files with the root user is
+ logged in.
+diff -ru tiger.orig/doc/signature.txt tiger/doc/signature.txt
+--- tiger.orig/doc/signature.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/signature.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -176,7 +176,7 @@
+ %sig022f
+ The patchdiag.xref files is not available in the configuration directory. This
+ means that the script cannot proceed further since it does not have any
+-information of which are the appropiate patches for this system.
++information of which are the appropriate patches for this system.
+
+ Please download the patchdiag file from Sunsolve, you can use, for example,
+ the following link:
+diff -ru tiger.orig/doc/ssh.txt tiger/doc/ssh.txt
+--- tiger.orig/doc/ssh.txt 2009-03-08 14:41:39.000000000 +0000
++++ tiger/doc/ssh.txt 2009-03-08 14:48:36.000000000 +0000
+@@ -8,12 +8,12 @@
+ and no.
+ %ssh003w
+ The RhostsAuthentication directive determines if .rhosts or
+-/etc/hosts.equiv is sufficent authentication. This option
++/etc/hosts.equiv is sufficient authentication. This option
+ only applies to protocol version 1 and is generally believed
+ to be insecure.
+ %ssh004w
+ The PasswordAuthentication directive determines if passwords
+-are a sufficent authentication.
++are a sufficient authentication.
+ %ssh005e
+ The variable SSHD_CONFIG is not defined which means that you have
+ not setup (or the system has been enable to find) your SSH configuration
+diff -ru tiger.orig/html/accounts.html tiger/html/accounts.html
+--- tiger.orig/html/accounts.html 2009-03-08 14:41:40.000000000 +0000
++++ tiger/html/accounts.html 2009-03-08 14:48:36.000000000 +0000
+@@ -316,22 +316,6 @@
+
+
+ </PRE><HR>
+-<A NAME="acc016w"><P><B>Code [acc016w]</B><P>
+-The listed login ID does not have password aging enabled. Good
+-password management practices indicate that passwords should not
+-be static, but rather should be changed on a regular basis.
+-<PRE>
+-
+-
+-
+-
+-
+-
+-
+-
+-
+-
+-</PRE><HR>
+ <A NAME="acc017w"><P><B>Code [acc017w]</B><P>
+ The listed login ID does not have corresponding entries in both the
+ /etc/passwd and /etc/shadow databases. This may indicate tampering
+@@ -367,7 +351,7 @@
+ </PRE><HR>
+ <A NAME="acc019w"><P><B>Code [acc019w]</B><P>
+ The listed login ID may be missing a login program initialization
+-file. This file controls the behavour of the login process and of
++file. This file controls the behaviour of the login process and of
+ many important environment variables.
+ <PRE>
+
+@@ -384,7 +368,19 @@
+ <A NAME="acc020w"><P><B>Code [acc020w]</B><P>
+ The listed login ID does not have a valid login program or shell.
+ Usually these are defined in /etc/shells.
+-$acc021w
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="acc021w"><P><B>Code [acc021w]</B><P>
+ The listed login ID appears to be dormant. Files in the home
+ directory of this user have not been modified in the specified
+ period of time and after investigation the account may need to
+diff -ru tiger.orig/html/anonftp.html tiger/html/anonftp.html
+--- tiger.orig/html/anonftp.html 2009-03-08 14:41:40.000000000 +0000
++++ tiger/html/anonftp.html 2009-03-08 14:48:36.000000000 +0000
+@@ -26,7 +26,7 @@
+ </PRE><HR>
+ <A NAME="ftp002a"><P><B>Code [ftp002a]</B><P>
+ There is a .rhosts file in the top level of the anonymous ftp
+-directories. This can allow unauthorized 'rlogin's or 'rsh's to
++directory. This can allow unauthorized 'rlogin's or 'rsh's to
+ occur to the ftp account. This indicates a possible intrusion.
+ The contents of the file are listed immediately following the message.
+ The machine should be checked for other signs of intrusion and should
+@@ -44,10 +44,10 @@
+
+ </PRE><HR>
+ <A NAME="ftp003w"><P><B>Code [ftp003w]</B><P>
+-The etc/passwd file in the anonymous ftp directories appears to
++The etc/passwd file in the anonymous ftp directory appears to
+ contain valid entries in the password field. If these are valid,
+ then the file can be retrieved and a password cracking program
+-run against it. The etc/passwd file in the anonymous ftp directories
++run against it. The etc/passwd file in the anonymous ftp directory
+ should simply have a '*' in the password field, and should only
+ include entries for the 'ftp' and 'root' accounts.
+ <P>
+@@ -251,4 +251,19 @@
+ <P>
+ See CERT advisory CA-93:10 for information on setting up an anonymous
+ FTP server.
+-<P>
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="ftp011w"><P><B>Code [ftp011w]</B><P>
++The 'ftp' account appears to have a valid shell. A valid shell is not
++required for the 'ftp' user and can be safely set to /bin/false,
++/sbin/nologin, etc.
+diff -ru tiger.orig/html/config.html tiger/html/config.html
+--- tiger.orig/html/config.html 2009-03-08 14:41:40.000000000 +0000
++++ tiger/html/config.html 2009-03-08 14:48:36.000000000 +0000
+@@ -10,7 +10,7 @@
+ </PRE><HR>
+ <CENTER><H2> Documents for config</H2></CENTER>
+ <A NAME="con001c"><P><B>Code [con001c]</B><P>
+-The configuration file listed was not read in because it was
++The configuration file listed was not read because it was
+ a directory.
+ <PRE>
+
+@@ -25,7 +25,7 @@
+
+ </PRE><HR>
+ <A NAME="con002c"><P><B>Code [con002c]</B><P>
+-The configuration file listed was not read in because it is
++The configuration file listed was not read because it was
+ not owned by `root'. This is to prevent someone from
+ modifying the configuration file.
+ <PRE>
+@@ -41,7 +41,7 @@
+
+ </PRE><HR>
+ <A NAME="con003c"><P><B>Code [con003c]</B><P>
+-The configuration file listed was not read in because it is
++The configuration file listed was not read because it was
+ writable by non-root users. This is to prevent someone from
+ modifying the configuration file.
+ <PRE>
+@@ -169,6 +169,23 @@
+
+
+ </PRE><HR>
++<A NAME="con010c"><P><B>Code [con010c]</B><P>
++The filesystem is not recognised by Tiger as a local filesystem
++for this operating system and will not be analysed by it. If this
++is a local filesystem then the configuration script for this
++operating system needs to be modified.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
+ <A NAME="init001e"><P><B>Code [init001e]</B><P>
+ The indicated variable, which should specifies the pathname to a command,
+ does not have a value. This message should not appear on platforms
+@@ -308,6 +325,23 @@
+
+
+ </PRE><HR>
++<A NAME="init009e"><P><B>Code [init009e]</B><P>
++The script wanted to use a temporary script which already exists, this
++might mean somebody created it to make use of a (fortunately non-existent)
++race condition. The script will not proceed further since it will not
++use a file which it did not create itself.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
+ <A NAME="util001e"><P><B>Code [util001e]</B><P>
+ The attempt to compile the signature checking program (SNEFRU) failed.
+ This will prevent the tests of the integrity of system binaries from
+@@ -370,5 +404,20 @@
+
+ </PRE><HR>
+ <A NAME="run001e"><P><B>Code [run001e]</B><P>
+-A needed file cannot be read, probably due to insuficient priviledges.
++A needed file cannot be read, probably due to insufficient privileges.
++Make sure that Tiger is run by the superuser (root) account.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="run002e"><P><B>Code [run002e]</B><P>
++A needed command cannot be executed, probably due to insufficient privileges.
+ Make sure that Tiger is run by the superuser (root) account.
+diff -ru tiger.orig/html/cron.html tiger/html/cron.html
+--- tiger.orig/html/cron.html 2009-03-08 14:41:40.000000000 +0000
++++ tiger/html/cron.html 2009-03-08 14:48:36.000000000 +0000
+@@ -84,4 +84,41 @@
+ particular, possibly recurring time. It can be very useful, but also
+ has a very real potential for abuse by either users or system crackers.
+ Users can be restricted to use cron by creating a /etc/cron.allow
+-file holding only system administrators.
++(holding only system administrators) or a /etc/cron.deny file
++(listing which users are not allowed access). Depending on the site
++configuration if none exist either only root will be able to setup
++cron tasks or all users will be permitted. In many systems the
++default is to allow access to all users.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="cron006w"><P><B>Code [cron006w]</B><P>
++Cron is not restricted to a given user. It is usually good to restrict
++cron as much as possible since this system has a real potential by
++abuse by either users or system crackers. Consider removing the user
++from the allowed cron list if it is not strictly needed.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="cron007i"><P><B>Code [cron007i]</B><P>
++Cron is restricted to a given user. This is usually good, since
++restricting cron prevents this system from being
++abused by either users or system crackers.
+diff -ru tiger.orig/html/embed.html tiger/html/embed.html
+--- tiger.orig/html/embed.html 2009-03-08 14:41:40.000000000 +0000
++++ tiger/html/embed.html 2009-03-08 14:48:36.000000000 +0000
+@@ -176,11 +176,11 @@
+
+
+ </PRE><HR>
+-<A NAME="embed003i"><P><B>Code [embed003i]</B><P>
++<A NAME="embed004i"><P><B>Code [embed004i]</B><P>
+ See the 'embed' explanation for an explanation of the format of the
+ embedded references.
+ <P>
+ The file or directory is group writable, world writable or both. This
+ may indicate a vulnerability in the system. It will be necessary to
+ study the file and programs in which the pathname was found to
+-determine whether there
++determine whether there is a problem.
+diff -ru tiger.orig/html/filesys.html tiger/html/filesys.html
+--- tiger.orig/html/filesys.html 2009-03-08 14:41:40.000000000 +0000
++++ tiger/html/filesys.html 2009-03-08 14:48:36.000000000 +0000
+@@ -71,7 +71,7 @@
+
+
+ </PRE><HR>
+-<A NAME="fsys004i"><P><B>Code [fsys004i]</B><P>
++<A NAME="fsys004a"><P><B>Code [fsys004a]</B><P>
+ The listed programs are setuid, but are not in the database of
+ setuid programs which appear in the OS distribution.
+ <PRE>
+@@ -145,7 +145,7 @@
+
+
+ </PRE><HR>
+-<A NAME="fsys008i"><P><B>Code [fsys008i]</B><P>
++<A NAME="fsys008f"><P><B>Code [fsys008f]</B><P>
+ The listed directories are world writable. These provide a location
+ for intruders to store files. They should be checked for unusual
+ files.
+@@ -195,6 +195,22 @@
+
+
+ </PRE><HR>
+-<A NAME="fsys011i"><P><B>Code [fsys011i]</B><P>
++<A NAME="fsys011a"><P><B>Code [fsys011a]</B><P>
+ The listed programs are setgid, but are not in the database of
+ setgid programs which appear in the OS distribution.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="fsys0012w"><P><B>Code [fsys0012w]</B><P>
++The listed program is not owned by an administrative user. The
++majority of SUID programs should probably be owned by an
++administrative user.
+diff -ru tiger.orig/html/group.html tiger/html/group.html
+--- tiger.orig/html/group.html 2009-03-08 14:41:40.000000000 +0000
++++ tiger/html/group.html 2009-03-08 14:48:36.000000000 +0000
+@@ -89,5 +89,3 @@
+ The group files have integrity issues as found by 'grpck -r'. This
+ can lead to looping of password manipulation programs and to allow
+ unexpected access to resources.
+-<P>
+-<P>
+diff -ru tiger.orig/html/inetd.html tiger/html/inetd.html
+--- tiger.orig/html/inetd.html 2009-03-08 14:41:40.000000000 +0000
++++ tiger/html/inetd.html 2009-03-08 14:48:36.000000000 +0000
+@@ -96,12 +96,20 @@
+
+ </PRE><HR>
+ <A NAME="inet006f"><P><B>Code [inet006f]</B><P>
+-The 'rexd' service is very insecure and should never be enabled.
++The 'rexd' (or 'exec') service is very insecure and should never be
++enabled. Known rexd servers have little or no security in their design
++or implementation. Intruders can exploit this service to execute
++commands as any user.
++<P>
+ It should be disabled immediately by editing the inetd.conf file
+ and removing the 'rexd' entry, and sending a HUP signal to the
+ 'inetd' process.
+ <P>
+ For AIX systems, CERT Advisory CA-92:05 is applicable.
++<P>
++Notice that some intruders may turn on a service
++that you previously thought you had turned off, or replace
++the inetd program with a Trojan horse program.
+ <PRE>
+
+
+@@ -196,7 +204,11 @@
+
+ </PRE><HR>
+ <A NAME="inet012w"><P><B>Code [inet012w]</B><P>
+-sysstat enabled
++The 'systat' service is enabled, this system provides a considerable
++number of information to remote anonymous users.
++Consider disabling it by editing the inetd.conf file,
++removing the 'systat' entry, and sending a HUP signal to the
++'inetd' process.
+ <PRE>
+
+
+@@ -210,7 +222,11 @@
+
+ </PRE><HR>
+ <A NAME="inet013w"><P><B>Code [inet013w]</B><P>
+-netstat enabled
++The 'netstat' service is enabled, this system provides a considerable
++number of information to remote anonymous users.
++Consider disabling it by editing the inetd.conf file,
++removing the 'netstat' entry, and sending a HUP signal to the
++'inetd' process.
+ <PRE>
+
+
+@@ -255,7 +271,378 @@
+
+ </PRE><HR>
+ <A NAME="inet016f"><P><B>Code [inet016f]</B><P>
+-The listed entry was protected by tcp wrappers by the systema but has,
++The listed entry was protected by tcp wrappers by the system but has,
+ for some unknown reason, changed to no longer be protected by them. Make
+ sure that the service is secured since, if not using tcp wrappers,
+ access control for it might be disabled.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="inet017w"><P><B>Code [inet017w]</B><P>
++The inetd configuration file permissions is not 600. This is the recommended
++setting by CERT's 'UNIX Security Checklist v2.0'. You should check that the
++file permissions on that file are correct.
++If an attacker can access the file due to lack of file permissions it might
++enable him to add new lines to the file which would, when inetd is restarted,
++allow him to introduce backdoors in the system.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="inet018w"><P><B>Code [inet018w]</B><P>
++The inetd configuration file can be written by any user of a given group since
++the file permissions ensure this. If the group is not an administrative group
++you should consider changing its permissions to 600.
++If the group includes untrusted users, one of them could
++add new lines to the file which would, when inetd is restarted,
++allow him to introduce backdoors in the system.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="inet019a"><P><B>Code [inet019a]</B><P>
++The inetd configuration file can be written by any user of the system.
++This makes it possible for any user to add new lines to the file which
++would, when inetd is restarted, allow him to introduce backdoors in the
++system.
++You should review your inetd configuration file to determine if there are
++suspicious services enabled since this might indicate that an intrusion
++has taken placed on the system. Also change the file permissions to restrict
++this misuse.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="inet020f"><P><B>Code [inet020f]</B><P>
++The inetd configuration file is not owned by root which is usually the owner
++of this file in most systems. This might indicate that the system has
++been affected by an intrusion and permissions of both the file and
++the directory it is stored in should be reviewed. Also review the content
++of this file in order to check if there are suspicious services enabled
++since this might indicate that an intrusion has taken place.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="inet021f"><P><B>Code [inet021f]</B><P>
++TCP wrappers do not seem to be installed in the system since the 'tcpd' program
++is not found in the system. Tcp wrappers allows you to monitor and filter
++incoming requests for common network services (through the use of the
++hosts.allow and hosts.deny files) and can be used to 'wrap' services either
++running through the inetd or in rc.d files.
++It is available via anonymous FTP from: ftp://ftp.porcupine.org/pub/security/
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="inet022w"><P><B>Code [inet022w]</B><P>
++The tftpd service is enabled, disable tftp if not needed by
++commenting it out from the file /etc/inetd.conf and restarting the
++inetd process.
++<P>
++If the tftpd service is required, create a separate partition to
++store the files to be served by tftp and limit the tftp daemon
++to the directory where this partition is mounted. Also make sure
++that the files in the tftpd area are not writable.
++<P>
++If it is not required, disable it by editing the inetd.conf file,
++removing the 'tftp' entry, and sending a HUP signal to the 'inetd' process.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="inet023w"><P><B>Code [inet023w]</B><P>
++The 'finger' service is enabled, this system provides a considerable
++number of information to remote anonymous users. An
++intruder can obtain quite a number of information about a remote host.
++Also, if improperly configured it can be used to create a 'finger war'
++DoS loop and can be used to do indirect finger requests
++(that is contact remote servers when a remote user sends a request
++for 'user at other_host@your_host')
++<P>
++You should make sure that you have an up-to-date version of fingerd.
++Do not use a version of fingerd that is older than 16 October, 2000.
++For more information consult the AusCERT ESB available at
++ftp://ftp.auscert.org.au/pub/auscert/ESB/ESB-2000.286
++<P>
++Consider disabling it unless it is considered essentially
++by editing the inetd.conf file, removing the 'finger' entry,
++and sending a HUP signal to the 'inetd' process.
++<P>
++If you cannot remove finger consider reducing the content by replacing
++it with a version which only offers restricted information.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="inet024w"><P><B>Code [inet024w]</B><P>
++The 'rusers' service is enabled, this system provides a considerable
++number of information to remote anonymous users.
++<P>
++Consider disabling it by editing the inetd.conf file,
++removing the 'rusers' entry, and sending a HUP signal to the
++'inetd' process.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="inet025w"><P><B>Code [inet025w]</B><P>
++The 'echo' and 'chargen' UDP servers are potentially problematic
++since they can be used to setup ping-pong DoS attacks targeted at
++other systems by means of IP address spoofing.
++<P>
++Consider disabling it by editing the inetd.conf file,
++removing the 'echo' and/or 'chargen' entries, and sending a HUP signal to the
++'inetd' process.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="inet026w"><P><B>Code [inet026w]</B><P>
++The linuxconf service can be utilized for remote administration.
++<P>
++Consider disabling it by editing the inetd.conf file,
++removing the 'linuxconf' entry, and sending a HUP signal to the
++'inetd' process.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="inet027w"><P><B>Code [inet027w]</B><P>
++The 'identd or auth' service is enabled, this system provides a considerable
++number of information to remote anonymous users.
++<P>
++Consider disabling it by editing the inetd.conf file, removing the 'auth' entry,
++and sending a HUP signal to the 'inetd' process.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="inet098w"><P><B>Code [inet098w]</B><P>
++Services that pass sensitive information (including passwords) should
++be replaced with the family of programs that comprise secure shell (ssh)
++which use strong encryption based on public-key cryptography.
++<P>
++You can use the freely-available OpenSSH implementation at
++http://www.openssh.org
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="inet099w"><P><B>Code [inet099w]</B><P>
++The indicated service is not protected by tcp wrappers or xinetd access
++control. The use of this facility is encouraged to limit access and to
++improve logging.
++The listed entry was protected by tcp wrappers by the default installation
++and is currently protected this way too. This is a good thing!
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="inet100w"><P><B>Code [inet100w]</B><P>
++The inetd services does not have logging enabled. Adding logging to the
++inetd services will help identify potential mis-use of system system resources.
++<P>
++To enable logging for the inetd service add the -l option in the inetd startup
++scripts.
++<P>
++To enable logging for the xinetd services add the log_type, log_on_success
++and/or log_on_failure to the /etc/xinetd.conf file.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="xnet001e"><P><B>Code [xnet001e]</B><P>
++The script cannot find an xinetd configuration file in this system. This
++might happen if Xinetd is not installed of if the XINETDCONF configuration
++variable is not properly defined. The script will try to find this configuration
++file in standard locations (/etc/xinetd.conf) but if it's not there
++you will need to define it in the siterc configuration file.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="xnet002e"><P><B>Code [xnet002e]</B><P>
++A directory which is being included by the XINETDCONF configuration file
++is not really a directory. This prevents the script from analysing all
++the active services and might be a configuration issue. Please check
++Xinetd's configuration file.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="xnet003e"><P><B>Code [xnet003e]</B><P>
++The script cannot read the xined configuration file in this system. This
++should not usually happen since the script should be running with
++root privileges. In order to analyse the configuration file you need
++to run this script as a user who can read all the Xinetd configuration
++files.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="xnet004i"><P><B>Code [xnet004i]</B><P>
++The service is enabled in the Xinetd configuration file. You should verify
++that services enabled in the server are legitimate and consider disabling
++unused services in order to minimise exposure (and associated risk)
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="xnet005i"><P><B>Code [xnet005i]</B><P>
++The service is disabled in the Xinetd configuration file. This is usually
++a good thing, since this limits exposure of the server and prevents
++external attacks.
+diff -ru tiger.orig/html/known.html tiger/html/known.html
+--- tiger.orig/html/known.html 2009-03-08 14:41:40.000000000 +0000
++++ tiger/html/known.html 2009-03-08 14:48:36.000000000 +0000
+@@ -151,7 +151,7 @@
+ </PRE><HR>
+ <A NAME="kis009w"><P><B>Code [kis009w]</B><P>
+ There is an .exrc file outside of any user's home directory. This file can
+-be loaded inadvertenly by a user if executing an editor in that directory
++be loaded inadvertently by a user if executing an editor in that directory
+ and could introduce unexpected commands through it.
+ Note that in all modern versions of vi, you have to set the exrc option
+ in your home's directory .exrc file before vi will read the exrc in
+@@ -217,8 +217,53 @@
+ An application in the system is using a deleted file. This might be an
+ indication of an intruder executing rogue processes and removing the files
+ from disk so that they cannot be traced or detected by the local administrator.
+-This has been observerd both in intruders running password cracking programs
++This has been observed both in intruders running password cracking programs
+ or worms propagating through remote attacks.
+ This also can happen if a local application is using shared libraries which have
+ been upgraded but the service itself has not been restarted in order to
+-use the new libraries.
++use the new libraries. Notice that if there was a vulnerability in the
++library and the server was not restarted the system is still vulnerable.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="kis013a"><P><B>Code [kis013a]</B><P>
++A interface is set up on promiscuous mode, this is a common method
++used by attackers to capture user account and and password information.
++For related information, see CERT advisory CA-94:01 available in
++http://www.cert.org/advisories/CA-94.01.ongoing.network.monitoring.attacks.html
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="kis014a"><P><B>Code [kis014a]</B><P>
++A shell entry (/bin/sh or /bin/csh) has been defined in inetd.conf, this is
++a common method used by attackers to introduce system backdoors and may
++exploits run the following code:
++<P>
++echo 'ingreslock stream tcp nowait root /bin/sh sh -i' > /tmp/bob; /usr/sbin/inetd -s /tmp/bob
++<P>
++You should check all if the inetd running in the system is using a modified
++configuration file and check all the programs specified in either that
++configuration file or /etc/inetd.conf to verify that they are correct
++and have not been replaced by Trojan horse programs.
++Also check for legitimate services that you have commented
++out in your /etc/inetd.conf. Intruders may turn on a service
++that you previously thought you had turned off, or replace
++the inetd program with a Trojan horse program.
+diff -ru tiger.orig/html/linux.html tiger/html/linux.html
+--- tiger.orig/html/linux.html 2009-03-08 14:41:40.000000000 +0000
++++ tiger/html/linux.html 2009-03-08 14:48:36.000000000 +0000
+@@ -207,11 +207,12 @@
+ The system is configured to accept ICMP redirects, this might or might
+ not be necessary in your network topology. If you have multiple routers
+ to which connect through to outside locations it might be necessary,
+-otherwise remote it since an attacker could send bogus ICMP redirection
++otherwise remove it since an attacker could send bogus ICMP redirection
+ messages to try to route the outgoing network packets to other systems
+ (including his own) and thus allowing for man in the middle or
+ denial of service attacks:
+ # sysctl -w net.ipv4.conf.all.accept_redirects = 0
++and:
+ # sysctl -w net.ipv4.conf.default.accept_redirects = 0
+ <PRE>
+
+@@ -228,7 +229,7 @@
+ <A NAME="lin013f"><P><B>Code [lin013f]</B><P>
+ It is common to protect systems against Denial of Service attacks using
+ SYN packets (commonly known as "SYN flooding") by activating support
+-of TCP syncookies. Note, however, that activating this violates some RFCS:
++of TCP syncookies. Note, however, that activating this violates some RFCs:
+ # sysctl -w net.ipv4.tcp_syncookies = 1
+ <PRE>
+
+@@ -245,9 +246,10 @@
+ <A NAME="lin014f"><P><B>Code [lin014f]</B><P>
+ It is possible to send IP spoofed packets from this machine. Spoofed
+ packets are commonly used by trojans that make use of compromised hosts
+-to deliver denial of service, man in the middle or conection hijacking.
++to deliver denial of service, man in the middle or connection hijacking.
+ You should consider configuring your kernel to not permit this:
+ # sysctl -w net.ipv4.conf.all.rp_filter = 2
++and:
+ # sysctl -w net.ipv4.conf.default.rp_filter = 2
+ <PRE>
+
+@@ -285,6 +287,7 @@
+ circumstances or otherwise an attacker could try to bypass the traffic
+ filtering that is done on the network:
+ # sysctl -w net.ipv4.conf.all.accept_source_route = 0
++and:
+ # sysctl -w net.ipv4.conf.default.accept_source_route = 0
+ <PRE>
+
+@@ -299,9 +302,10 @@
+
+ </PRE><HR>
+ <A NAME="lin017w"><P><B>Code [lin017w]</B><P>
+-Suspicious packets recieved by the kernel should be logged to detect
++Suspicious packets received by the kernel should be logged to detect
+ incoming attacks. To activate this logging capability:
+ # sysctl -w net.ipv4.conf.all.log_martians = 1
++and:
+ # sysctl -w net.ipv4.conf.default.log_martians = 1
+ <PRE>
+
+@@ -323,4 +327,29 @@
+ For 2.2 kernels remove this option with:
+ # echo 1 > /proc/sys/net/ipv4/conf/eth1/hidden
+ For 2.4 and later kernels you might need to patch the kernel or configure
+-your firewalling rules properly.
++your firewalling rules properly (i.e. defining anti-spoofing rules).
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="lin019f"><P><B>Code [lin019f]</B><P>
++The system has no firewalling rules in place to limit access to network
++services and protocols. Considering configuring a set of local firewall
++rules adapted to your needs. There are multiple firewall generation software
++you can use to generate these (such as Bastille, Shorewall, Firestarter,
++or Knetfiler).
++Local firewall rules can be used to block undesired incoming and outgoing
++traffic and can be useful to prevent access to network services that are
++listening on all system interfaces, only want to be used from specific
++hosts (or interfaces) and lack capabilities to either restrict its
++use to specific local network IP addresses or hosts.
++If the system is multi-home a local firewall configuration will prevent
++spoofing attacks due to "weak end host" issues.
+diff -ru tiger.orig/html/logfiles.html tiger/html/logfiles.html
+--- tiger.orig/html/logfiles.html 2009-03-08 14:41:40.000000000 +0000
++++ tiger/html/logfiles.html 2009-03-08 14:48:36.000000000 +0000
+@@ -12,6 +12,8 @@
+ <A NAME="logf001f"><P><B>Code [logf001f]</B><P>
+ The log file "wtmp" should exist to show an audit trail of which user has
+ logged into the server. This file is accessed by the command "last".
++It might not exist due to a system configuration error or an
++intruder that has tried to cover this tracks by removing it.
+ <PRE>
+
+
+@@ -27,6 +29,8 @@
+ <A NAME="logf002f"><P><B>Code [logf002f]</B><P>
+ The log file "btmp" should exist to log a list of bad logins.
+ This file is accessed using the command "lastb".
++It might not exist due to a system configuration error or an
++intruder that has tried to cover this tracks by removing it.
+ <PRE>
+
+
+@@ -42,6 +46,8 @@
+ <A NAME="logf003f"><P><B>Code [logf003f]</B><P>
+ The log file "lastlog" should exist to show a user's most recent login
+ session on the server. This file is accessed by the command "lastlog".
++It might not exist due to a system configuration error or an
++intruder that has tried to cover this tracks by removing it.
+ <PRE>
+
+
+@@ -57,6 +63,8 @@
+ <A NAME="logf004f"><P><B>Code [logf004f]</B><P>
+ The log file "utmp" should exist so that a list of current users on the
+ server can be listed. This is accessed by the command "who".
++It might not exist due to a system configuration error or an
++intruder that has tried to cover this tracks by removing it.
+ <PRE>
+
+
+@@ -69,9 +77,9 @@
+
+
+ </PRE><HR>
+-<A NAME="logf005w"><P><B>Code [logf005w]</B><P>
++<A NAME="logf005f"><P><B>Code [logf005f]</B><P>
+ The log file does not have proper permissions set. It is recommended that
+-you change the permissions to those suggested.
++you change the permissions to those suggested for these file.
+ <PRE>
+
+
+@@ -100,8 +108,10 @@
+
+ </PRE><HR>
+ <A NAME="logf006f"><P><B>Code [logf006f]</B><P>
+-The umask setting in the configuration file is insecure. Umask must be
+-set as to prevent public write (ie. either 002 or 022).
++The log file "loginlog" should exist to show a user login attempts
++on the server.
++It might not exist due to a system configuration error or an
++intruder that has tried to cover this tracks by removing it.
+ <PRE>
+
+
+@@ -114,7 +124,13 @@
+
+
+ </PRE><HR>
+-<A NAME="logf007w"><P><B>Code [logf007w]</B><P>
+-There are more than two umask entries in the configuration file. Please
+-check if the umask settings are secure (to prevent public write, suggested
+-values are either 002 or 022).
++<A NAME="logf007f"><P><B>Code [logf007f]</B><P>
++The log file "messages" should exist to show a trace of the system logs
++(including reboots and kernel messages), it is also often used by the
++syslog daemon to log information. The contents of the "messages" logfile
++depends upon the configuration of the syslog.conf and varies by
++distribution and/or system administrator preference.
++It might not exist if you have configured your system to use a
++different file for logging or if an intruder has tried to cover
++his tracks by removing it since the messages file might contain
++bad login attempts from local users and remote hosts.
+diff -ru tiger.orig/html/misc.html tiger/html/misc.html
+--- tiger.orig/html/misc.html 2009-03-08 14:41:40.000000000 +0000
++++ tiger/html/misc.html 2009-03-08 14:48:36.000000000 +0000
+@@ -163,8 +163,8 @@
+
+
+ </PRE><HR>
+-<A NAME="misc005w"><P><B>Code [misc005w]</B><P>
+-The listed security check file from a check.tbl file does not
++<A NAME="misc005e"><P><B>Code [misc005e]</B><P>
++The listed security check file from a check.d/ file does not
+ exist.
+ <PRE>
+
+@@ -437,11 +437,11 @@
+ <A NAME="misc016w"><P><B>Code [misc016w]</B><P>
+ <P>
+ The `ie', `le', and `qe' device files can be used to snoop packets
+-from the network (ethernet in these cases). This ability should be
++from the network (Ethernet in these cases). This ability should be
+ restricted. The permissions on the listed files should be 0600. The
+ Solaris package facility will occasionally reset these permissions to
+ what they are defined to be in in the /var/sadm/install/contents file.
+-Therefore, they must be changed there as well. The file is an ascii
++Therefore, they must be changed there as well. The file is an ASCII
+ file and can be edited with any editor.
+ <PRE>
+
+@@ -458,12 +458,12 @@
+ <A NAME="misc017w"><P><B>Code [misc017w]</B><P>
+ <P>
+ The `ie', `le', and `qe' device files can be used to snoop packets
+-from the network (ethernet in these cases). This ability should be
++from the network (Ethernet in these cases). This ability should be
+ restricted. The listed device files should be owned by root and only
+ readable/writable by root in order to restrict access. The Solaris
+ package facility will occasionally reset the ownership and permissions to
+ what they are defined to be in in the /var/sadm/install/contents file.
+-Therefore, they must be changed there as well. The file is an ascii
++Therefore, they must be changed there as well. The file is an ASCII
+ file and can be edited with any editor.
+ <PRE>
+
+@@ -496,7 +496,7 @@
+ </PRE><HR>
+ <A NAME="misc018w"><P><B>Code [misc018w]</B><P>
+ There are two umask settings in the boot scripts, this probably means
+-that only one of them will be valid. Check the appropiate file to
++that only one of them will be valid. Check the appropriate file to
+ fix this issue.
+ <PRE>
+
+@@ -559,7 +559,7 @@
+ </PRE><HR>
+ <A NAME="misc022f"><P><B>Code [misc022f]</B><P>
+ The umask setting in the configuration file is insecure. Umask must be
+-set as to prevent public write (ie. either 002 or 022).
++set as to prevent public write (i.e. either 002 or 022).
+ <PRE>
+
+
+@@ -576,3 +576,38 @@
+ There are more than two umask entries in the configuration file. Please
+ check if the umask settings are secure (to prevent public write, suggested
+ values are either 002 or 022).
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="misc024e"><P><B>Code [misc024e]</B><P>
++The script will not be run since it belongs to a different owner than the
++one running the Tiger program (or script). Since running this script might
++introduce a risk (if the script was dropped in a directory that Tiger searches
++for by an attacker to have it run) it will not be executed.
++This might be a problem in the installation of Tiger so you should recheck
++the script owner and permissions.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="misc025e"><P><B>Code [misc025e]</B><P>
++The script will not be run since it is not executable. This might be a problem
++with the installation of Tiger so you should recheck the script's file owner
++and permissions.
+diff -ru tiger.orig/html/netrc.html tiger/html/netrc.html
+--- tiger.orig/html/netrc.html 2009-03-08 14:41:40.000000000 +0000
++++ tiger/html/netrc.html 2009-03-08 14:48:36.000000000 +0000
+@@ -67,3 +67,19 @@
+ that an intrusion has occurred. The directory should be examined
+ for unusual files. The system should also be checked for other
+ signs of intrusion. The directory should be renamed or removed.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="nrc005w"><P><B>Code [nrc005w]</B><P>
++The user has a .netrc file, you should avoid usage of these files unless
++absolutely necessary since they can contain sensible information which
++could be used by a local intruder.
+diff -ru tiger.orig/html/network.html tiger/html/network.html
+--- tiger.orig/html/network.html 2009-03-08 14:41:40.000000000 +0000
++++ tiger/html/network.html 2009-03-08 14:48:36.000000000 +0000
+@@ -10,7 +10,7 @@
+ </PRE><HR>
+ <CENTER><H2> Documents for network</H2></CENTER>
+ <A NAME="netw001f"><P><B>Code [netw001f]</B><P>
+-The listed file is world writeable. chomd -ow file to correct.
++The listed file is world writable. chmod -ow file to correct.
+ <PRE>
+
+
+@@ -40,7 +40,7 @@
+
+ </PRE><HR>
+ <A NAME="netw003f"><P><B>Code [netw003f]</B><P>
+-The inetd daemon is not configured with loggin enabled. If xinetd
++The inetd daemon is not configured with login enabled. If xinetd
+ based, add the 'filelog' or 'syslog' options in /etc/sysconfig/xinetd
+ configuration file.
+ <PRE>
+diff -ru tiger.orig/html/passwd.html tiger/html/passwd.html
+--- tiger.orig/html/passwd.html 2009-03-08 14:41:40.000000000 +0000
++++ tiger/html/passwd.html 2009-03-08 14:48:36.000000000 +0000
+@@ -135,7 +135,7 @@
+
+
+ </PRE><HR>
+-<A NAME="pass009e"><P><B>Code [pass009e]</B><P>
++<A NAME="pass009f"><P><B>Code [pass009f]</B><P>
+ The format of a given configuration file used for user (or group)
+ authentication has some inconsistency that might be a security vulnerability.
+ <PRE>
+@@ -153,3 +153,164 @@
+ <A NAME="pass010w"><P><B>Code [pass010w]</B><P>
+ The listed groupname occurs more than once in the same file. This
+ indicates a configuration problem and should be corrected.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="pass011f"><P><B>Code [pass011f]</B><P>
++The listed username has an empty password string. This will allow any user
++to gain access to the account without being prompted for a password.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="pass012w"><P><B>Code [pass012w]</B><P>
++The listed home directory is specified for multiple users. This can lead to
++denial-of-service and unexpected resource usage (i.e. shell initialization
++files, etc) if not corrected.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="pass013w"><P><B>Code [pass013w]</B><P>
++The listed username is not using an acceptable, cryptographic method for the
++password hash.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="pass014w"><P><B>Code [pass014w]</B><P>
++The listed login ID is disabled in some manner ('*' in passwd field, etc),
++but the login shell for the login ID is a valid shell (from /etc/shells
++or the system equivalent). A valid shell can potentially enable the
++login ID to continue to be used. The login shell should be changed
++to something that doesn't exist, or to something like /bin/false.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="pass015w"><P><B>Code [pass015w]</B><P>
++The listed login ID does not have a valid login program or shell.
++Usually these are defined in /etc/shells.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="pass016w"><P><B>Code [pass016w]</B><P>
++The listed login ID should not have "/" (system root directory)
++as its home drive. This is a possible security hole.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="pass017w"><P><B>Code [pass017w]</B><P>
++The listed login ID has a user ID of zero (0) and is not the 'root'
++account. This should be checked to see if it is legitimate. In any
++case, having login ID's with a user ID of zero tends to lead to security
++problems, and should be avoided (except for 'root')
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="pass018f"><P><B>Code [pass018f]</B><P>
++The listed administrative login should have an impossible password.
++Files owned by this login ID may reside in critical system directories
++and compromise of this account could lead to trojan executables in
++typical search paths.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="pass19w"><P><B>Code [pass19w]</B><P>
++The listed login ID does not have password aging enabled. Good
++password management practices indicate that passwords should not
++be static, but rather should be changed on a regular basis.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="pass20w"><P><B>Code [pass20w]</B><P>
++The listed login ID is not configured to use shadow passwords. This
++indicates the specified login ID has its cypher text publicly available
++and is subject to brute force password cracking, even though shadow
++passwords are implimented on the system.
+diff -ru tiger.orig/html/paths.html tiger/html/paths.html
+--- tiger.orig/html/paths.html 2009-03-08 14:41:40.000000000 +0000
++++ tiger/html/paths.html 2009-03-08 14:48:36.000000000 +0000
+@@ -32,9 +32,13 @@
+ executables and spread by `root'. Often these executables are owned by
+ `bin', `uucp' or other system accounts. If these commands are never
+ used by root, then this is not a problem. If they are, you should
+-consider changing the owner to `root'. Because of SMI's recent decission
+-to install most /usr/sbin/accessdb /usr/sbin/addgroup /usr/sbin/adduser /usr/sbin/apt-setup /usr/sbin/arp /usr/sbin/arp2ethers /usr/sbin/arpfetch /usr/sbin/arpsnmp /usr/sbin/arpwatch /usr/sbin/atd /usr/sbin/atrun /usr/sbin/base-config /usr/sbin/bihourly /usr/sbin/bonobo-activation-sysconf /usr/sbin/chat /usr/sbin/checksecurity /usr/sbin/chkrootkit /usr/sbin/chpasswd /usr/sbin/chroot /usr/sbin/cleanup-info /usr/sbin/cpgr /usr/sbin/cppw /usr/sbin/cron /usr/sbin/cron-apt /usr/sbin/cvs-pserver /usr/sbin/cytune /usr/sbin/debootstrap /usr/sbin/delgroup /usr/sbin/deluser /usr/sbin/dmassagevendor /usr/sbin/dpasswd /usr/sbin/dpkg-divert /usr/sbin/dpkg-preconfigure /usr/sbin/dpkg-reconfigure /usr/sbin/dpkg-statoverride /usr/sbin/dumbnet /usr/sbin/editkeep /usr/sbin/elvtune /usr/sbin/exicyclog /usr/sbin/exigrep /usr/sbin/exim /usr/sbin/eximconfig /usr/sbin/exim_dbmbuild /usr/sbin/exim_dumpdb /usr/sbin/exim_fixdb /usr/sbin/exim_lock /usr/sbin/eximstats /usr/sbin/exim_tidydb /usr/sbin/exim-upgrade-to-r3 /usr/sbin/exinext /usr/sbin/exiqsumm /usr/sbin/exiwhat /usr/sbin/fdutilsconfig /usr/sbin/ftpasswd /usr/sbin/ftpshut /usr/sbin/ftpstats /usr/sbin/gdmaskpass /usr/sbin/gdmconfig /usr/sbin/gdmopen /usr/sbin/gdm-restart /usr/sbin/gdm-safe-restart /usr/sbin/gdm-stop /usr/sbin/gnome-pty-helper /usr/sbin/gpm /usr/sbin/gpmconfig /usr/sbin/gpm-microtouch-setup /usr/sbin/gpm-mouse-test /usr/sbin/groupadd /usr/sbin/groupdel /usr/sbin/groupmod /usr/sbin/grpck /usr/sbin/grpconv /usr/sbin/grpunconv /usr/sbin/hping /usr/sbin/hping2 /usr/sbin/huntd /usr/sbin/iconvconfig /usr/sbin/identd /usr/sbin/ikeygen /usr/sbin/in.comsat /usr/sbin/inetd /usr/sbin/in.identtestd /usr/sbin/install-docs /usr/sbin/install-info /usr/sbin/install-keymap /usr/sbin/install-menu /usr/sbin/install-sgmlcatalog /usr/sbin/invoke-rc.d /usr/sbin/ipmasqadm /usr/sbin/ircflush /usr/sbin/ircio /usr/sbin/ispellconfig /usr/sbin/keytab-lilo /usr/sbin/liloconfig /usr/sbin/lilo_find_mbr /usr/sbin/locale-gen /usr/sbin/logcheck /usr/sbin/logrotate /usr/sbin/logtail /usr/sbin/lpc /usr/sbin/lpd /usr/sbin/lpf /usr/sbin/lsof /usr/sbin/MAKEFLOPPIES /usr/sbin/makejail /usr/sbin/massagevendor /usr/sbin/mkboot /usr/sbin/mklost+found /usr/sbin/mkrescue /usr/sbin/mksmbpasswd /usr/sbin/modconf /usr/sbin/newusers /usr/sbin/nmbd /usr/sbin/orphaner /usr/sbin/pac /usr/sbin/pam_tally /usr/sbin/paperconfig /usr/sbin/popularity-contest /usr/sbin/pppconfig /usr/sbin/pppd /usr/sbin/pppdump /usr/sbin/pppoe /usr/sbin/pppoeconf /usr/sbin/pppoe-relay /usr/sbin/pppoe-server /usr/sbin/pppoe-sniff /usr/sbin/pppstats /usr/sbin/proftpd /usr/sbin/pwck /usr/sbin/pwconv /usr/sbin/pwunconv /usr/sbin/ramsize /usr/sbin/rdev /usr/sbin/readprofile /usr/sbin/remove-default-ispell /usr/sbin/remove-default-wordlist /usr/sbin/rmail /usr/sbin/rmt /usr/sbin/rootflags /usr/sbin/rsmtp /usr/sbin/runq /usr/sbin/safe_finger /usr/sbin/samhain /usr/sbin/select-default-ispell /usr/sbin/select-default-wordlist /usr/sbin/sendmail /usr/sbin/setvesablank /usr/sbin/smbd /usr/sbin/snort /usr/sbin/snort-stat /usr/sbin/sshd /usr/sbin/su-to-root /usr/sbin/syslogd-listfiles /usr/sbin/syslog-facility /usr/sbin/tcpd /usr/sbin/tcpdchk /usr/sbin/tcpdmatch /usr/sbin/tcpdump /usr/sbin/termwrap /usr/sbin/texconfig /usr/sbin/tiger /usr/sbin/tigercron /usr/sbin/tigexp /usr/sbin/traceroute /usr/sbin/try-from /usr/sbin/tunelp /usr/sbin/tzconfig /usr/sbin/tzsetup /usr/sbin/update-alternatives /usr/sbin/update-catalog /usr/sbin/update-default-aspell /usr/sbin/update-default-ispell /usr/sbin/update-default-wordlist /usr/sbin/update-dictcommon-aspell /usr/sbin/update-fmtutil /usr/sbin/update-fonts-alias /usr/sbin/update-fonts-dir /usr/sbin/update-fonts-scale /usr/sbin/update-gdkpixbuf-loaders /usr/sbin/update-gtk-immodules /usr/sbin/update-inetd /usr/sbin/update-ispell-dictionary /usr/sbin/update-mime /usr/sbin/update-mozilla-chrome /usr/sbin/update-pango-modules /usr/sbin/update-pangox-aliases /usr/sbin/update-passwd /usr/sbin/update-pciids /usr/sbin/update-rc.d /usr/sbin/update-texmf /usr/sbin/update-updmap /usr/sbin/update-xpdfrc /usr/sbin/useradd /usr/sbin/userdel /usr/sbin/usermod /usr/sbin/validlocale /usr/sbin/vcstime /usr/sbin/vidmode /usr/sbin/vigr /usr/sbin/vipw /usr/sbin/visudo /usr/sbin/wm-menu-config /usr/sbin/wrepld /usr/sbin/writevt /usr/sbin/wserv /usr/sbin/zic and /usr/bin/[ /usr/bin/411toppm /usr/bin/822-date /usr/bin/a2p /usr/bin/a5booklet /usr/bin/abiword /usr/bin/abw2html.pl /usr/bin/access /usr/bin/aclocal /usr/bin/acme /usr/bin/acme-properties /usr/bin/acpi_available /usr/bin/activation-client /usr/bin/addftinfo /usr/bin/addr2line /usr/bin/afm2tfm /usr/bin/afmtodit /usr/bin/allcm /usr/bin/allec /usr/bin/allneeded /usr/bin/amstex /usr/bin/analog /usr/bin/anytopnm /usr/bin/apm_available /usr/bin/appletproxy /usr/bin/apropos /usr/bin/apt-cache /usr/bin/apt-cdrom /usr/bin/apt-config /usr/bin/apt-extracttemplates /usr/bin/apt-ftparchive /usr/bin/apt-get /usr/bin/apt-sortpkgs /usr/bin/ar /usr/bin/ar86 /usr/bin/archer /usr/bin/ark /usr/bin/arrow /usr/bin/artscat /usr/bin/artsc-config /usr/bin/artsd /usr/bin/artsdsp /usr/bin/artsmessage /usr/bin/artsplay /usr/bin/artsrec /usr/bin/artsshell /usr/bin/artswrapper /usr/bin/as /usr/bin/as86 /usr/bin/asciitopgm /usr/bin/aserver /usr/bin/aspell /usr/bin/aspell-import /usr/bin/at /usr/bin/atktopbm /usr/bin/atq /usr/bin/atrm /usr/bin/audiofile-config /usr/bin/autoconf /usr/bin/autoconf2.13 /usr/bin/autoconf2.50 /usr/bin/autoconf-wrapper /usr/bin/autoheader /usr/bin/autoheader2.13 /usr/bin/autoheader2.50 /usr/bin/autom4te /usr/bin/automake /usr/bin/autopoint /usr/bin/autoproject /usr/bin/autoreconf /usr/bin/autoreconf2.13 /usr/bin/autoreconf2.50 /usr/bin/autoscan /usr/bin/autoscan2.13 /usr/bin/autoupdate /usr/bin/autoupdate2.13 /usr/bin/aviplay /usr/bin/awk /usr/bin/b2m /usr/bin/b2m.emacs20 /usr/bin/basename /usr/bin/bashbug /usr/bin/batch /usr/bin/bc /usr/bin/bdftops /usr/bin/berkeley_db3_svc /usr/bin/bibindex /usr/bin/biblook /usr/bin/bibtex /usr/bin/bibtool /usr/bin/biff /usr/bin/binstats /usr/bin/bioradtopgm /usr/bin/bison /usr/bin/bison.yacc /usr/bin/bitchx /usr/bin/BitchX /usr/bin/bmptoppm /usr/bin/bonobo-activation-empty-server /usr/bin/bonobo-activation-run-query /usr/bin/bonobo-application-x-mines /usr/bin/bonobo-audio-ulaw /usr/bin/bonobo-moniker-gunzip /usr/bin/bonobo-moniker-http /usr/bin/bonobo-selector /usr/bin/bonobo-slay /usr/bin/bonobo-text-plain /usr/bin/brushtopbm /usr/bin/bts /usr/bin/build /usr/bin/buildhash /usr/bin/bunzip2 /usr/bin/bzcat /usr/bin/bzcmp /usr/bin/bzdiff /usr/bin/bzegrep /usr/bin/bzfgrep /usr/bin/bzgrep /usr/bin/bzip2 /usr/bin/bzip2recover /usr/bin/bzless /usr/bin/bzmore /usr/bin/c++ /usr/bin/c2man /usr/bin/c2ph /usr/bin/c89 /usr/bin/cal /usr/bin/calendar /usr/bin/camlidl /usr/bin/camlp4 /usr/bin/camlp4o /usr/bin/camlp4o.opt /usr/bin/camlp4r /usr/bin/camlp4r.opt /usr/bin/cam-mktop /usr/bin/captoinfo /usr/bin/castellanizar /usr/bin/catalogmanager /usr/bin/catchsegv /usr/bin/catman /usr/bin/cc /usr/bin/ccmtcnvt /usr/bin/CDDBSlave2 /usr/bin/cddb-slave2-properties /usr/bin/cddb-track-editor /usr/bin/cdecl /usr/bin/c++filt /usr/bin/cflow /usr/bin/chage /usr/bin/charset /usr/bin/chattr /usr/bin/checkbash /usr/bin/checkXML /usr/bin/chfn /usr/bin/chilight /usr/bin/chkdupexe /usr/bin/chktri /usr/bin/chsh /usr/bin/chvt /usr/bin/ci /usr/bin/cjpeg /usr/bin/cksum /usr/bin/clear /usr/bin/cmp /usr/bin/cmuwmtopbm /usr/bin/co /usr/bin/cobfusc /usr/bin/codepage /usr/bin/col /usr/bin/colcrt /usr/bin/collateindex.pl /usr/bin/colrm /usr/bin/column /usr/bin/comm /usr/bin/compose /usr/bin/configurewrapper /usr/bin/consolechars /usr/bin/convert-metadata.db /usr/bin/cpan /usr/bin/cpif /usr/bin/cpp /usr/bin/cpp-2.95 /usr/bin/cpp-3.0 /usr/bin/cpp-3.2 /usr/bin/cpp-3.3 /usr/bin/crontab /usr/bin/crossbow /usr/bin/csplit /usr/bin/cstr /usr/bin/ctags /usr/bin/ctags.emacs20 /usr/bin/ctangle /usr/bin/cundecl /usr/bin/cunloop /usr/bin/cups-config /usr/bin/cupsdconf /usr/bin/cupsdoprint /usr/bin/cut /usr/bin/cvs /usr/bin/cweave /usr/bin/cxref /usr/bin/cxref-cc /usr/bin/cxref-query /usr/bin/db3_archive /usr/bin/db3_checkpoint /usr/bin/db3_deadlock /usr/bin/db3_dump /usr/bin/db3_dump185 /usr/bin/db3_load /usr/bin/db3_printlog /usr/bin/db3_recover /usr/bin/db3_stat /usr/bin/db3_upgrade /usr/bin/db3_verify /usr/bin/db_archive /usr/bin/db_checkpoint /usr/bin/db_deadlock /usr/bin/db_dump /usr/bin/db_dump185 /usr/bin/dbforge /usr/bin/dbforge.gui /usr/bin/db_load /usr/bin/db_printlog /usr/bin/db_recover /usr/bin/db_stat /usr/bin/dc /usr/bin/dch /usr/bin/dcop /usr/bin/dcopclient /usr/bin/dcopfind /usr/bin/dcopidl /usr/bin/dcopidl2cpp /usr/bin/dcopobject /usr/bin/dcopref /usr/bin/dcopserver /usr/bin/dcopserver_shutdown /usr/bin/dcopstart /usr/bin/ddate /usr/bin/ddd /usr/bin/deallocvt /usr/bin/debc /usr/bin/debchange /usr/bin/debclean /usr/bin/debconf /usr/bin/debconf2pot /usr/bin/debconf2po-update /usr/bin/debconf-communicate /usr/bin/debconf-copydb /usr/bin/debconf-getlang /usr/bin/debconf-gettextize /usr/bin/debconf-loadtemplate /usr/bin/debconf-mergetemplate /usr/bin/debconf-show /usr/bin/debconf-updatepo /usr/bin/debdiff /usr/bin/debi /usr/bin/debiandoc2dvi /usr/bin/debiandoc2html /usr/bin/debiandoc2info /usr/bin/debiandoc2latex /usr/bin/debiandoc2latexdvi /usr/bin/debiandoc2latexpdf /usr/bin/debiandoc2latexps /usr/bin/debiandoc2pdf /usr/bin/debiandoc2ps /usr/bin/debiandoc2texinfo /usr/bin/debiandoc2text /usr/bin/debiandoc2textov /usr/bin/debian-gnome-upgrade-check /usr/bin/debit /usr/bin/deb-make /usr/bin/deborphan /usr/bin/debpkg /usr/bin/debrelease /usr/bin/debrsign /usr/bin/debsign /usr/bin/debstd /usr/bin/debuild /usr/bin/defoma /usr/bin/defoma-app /usr/bin/defoma-font /usr/bin/defoma-hints /usr/bin/defoma-id /usr/bin/defoma-psfont-installer /usr/bin/defoma-reconfigure /usr/bin/defoma-subst /usr/bin/defoma-user /usr/bin/devdump /usr/bin/dexconf /usr/bin/dh_builddeb /usr/bin/dh_clean /usr/bin/dh_compress /usr/bin/dh_fixperms /usr/bin/dh_gencontrol /usr/bin/dh_install /usr/bin/dh_installcatalogs /usr/bin/dh_installchangelogs /usr/bin/dh_installcron /usr/bin/dh_installdeb /usr/bin/dh_installdebconf /usr/bin/dh_installdefoma /usr/bin/dh_installdirs /usr/bin/dh_installdocs /usr/bin/dh_installemacsen /usr/bin/dh_installexamples /usr/bin/dh_installinfo /usr/bin/dh_installinit /usr/bin/dh_installlogrotate /usr/bin/dh_installman /usr/bin/dh_installmanpages /usr/bin/dh_installmenu /usr/bin/dh_installmime /usr/bin/dh_installmodules /usr/bin/dh_installpam /usr/bin/dh_installwm /usr/bin/dh_installxfonts /usr/bin/dh_link /usr/bin/dh_listpackages /usr/bin/dh_make /usr/bin/dh_makeshlibs /usr/bin/dh_md5sums /usr/bin/dh_movefiles /usr/bin/dh_ocamlld /usr/bin/dh_perl /usr/bin/dh_python /usr/bin/dh_shlibdeps /usr/bin/dh_strip /usr/bin/dh_suidregister /usr/bin/dh_testdir /usr/bin/dh_testroot /usr/bin/dh_testversion /usr/bin/dh_undocumented /usr/bin/dialog /usr/bin/diff /usr/bin/diff3 /usr/bin/diffpp /usr/bin/diffstat /usr/bin/dig /usr/bin/dircolors /usr/bin/dirname /usr/bin/diskd /usr/bin/diskseekd /usr/bin/djpeg /usr/bin/dmp /usr/bin/dnet-config /usr/bin/dns-helper /usr/bin/docbook-to-man /usr/bin/dotlockfile /usr/bin/dpkg /usr/bin/dpkg2folder /usr/bin/dpkg-architecture /usr/bin/dpkg-awk /usr/bin/dpkg-break /usr/bin/dpkg-buildpackage /usr/bin/dpkg-checkbuilddeps /usr/bin/dpkg-deb /usr/bin/dpkg-depcheck /usr/bin/dpkg-distaddfile /usr/bin/dpkg-genbuilddeps /usr/bin/dpkg-genchanges /usr/bin/dpkg-gencontrol /usr/bin/dpkg-iaquery /usr/bin/dpkg-make-index /usr/bin/dpkg-name /usr/bin/dpkg-parsechangelog /usr/bin/dpkg-query /usr/bin/dpkg-scanpackages /usr/bin/dpkg-scansources /usr/bin/dpkg-shlibdeps /usr/bin/dpkg-source /usr/bin/dpkg-split /usr/bin/dprofpp /usr/bin/drkonqi /usr/bin/dscverify /usr/bin/dselect /usr/bin/dsirc /usr/bin/du /usr/bin/dumbnet-config /usr/bin/dumpkeys /usr/bin/dupload /usr/bin/dvi2fax /usr/bin/dvicopy /usr/bin/dvidvi /usr/bin/dvihp /usr/bin/dvilj /usr/bin/dvilj2p /usr/bin/dvilj4 /usr/bin/dvilj4l /usr/bin/dvilj6 /usr/bin/dvipdf /usr/bin/dvipdfm /usr/bin/dvipdft /usr/bin/dvips /usr/bin/dvired /usr/bin/dvitomp /usr/bin/dvitype /usr/bin/e2pall /usr/bin/ebb /usr/bin/edit /usr/bin/editor /usr/bin/efstool /usr/bin/einitex /usr/bin/eject /usr/bin/elatex /usr/bin/emacs /usr/bin/emacs20 /usr/bin/emacs-20.7 /usr/bin/emacsclient /usr/bin/emacsclient.emacs20 /usr/bin/enc2xs /usr/bin/enscript /usr/bin/entrigraph /usr/bin/env /usr/bin/eog /usr/bin/eog-image-viewer /usr/bin/epeire /usr/bin/eperl /usr/bin/eps2eps /usr/bin/epsffit /usr/bin/epstopdf /usr/bin/eqn /usr/bin/eqn2graph /usr/bin/esd /usr/bin/esd-config /usr/bin/etags /usr/bin/etags.emacs20 /usr/bin/etex /usr/bin/eview /usr/bin/evim /usr/bin/evirtex /usr/bin/ex /usr/bin/expand /usr/bin/expiry /usr/bin/expr /usr/bin/extensionproxy /usr/bin/extractres /usr/bin/eyuvtoppm /usr/bin/factor /usr/bin/faillog /usr/bin/faked /usr/bin/fakeroot /usr/bin/fc-cache /usr/bin/fc-list /usr/bin/fdf2tan /usr/bin/fdformat /usr/bin/fdlist /usr/bin/fdmount /usr/bin/fdmountd /usr/bin/fdrawcmd /usr/bin/fdumount /usr/bin/fgconsole /usr/bin/fiascotopnm /usr/bin/fig2dev /usr/bin/fig2ps2tex /usr/bin/filan /usr/bin/file /usr/bin/file-roller /usr/bin/filesharelist /usr/bin/fileshareset /usr/bin/find /usr/bin/find2perl /usr/bin/findaffix /usr/bin/finger /usr/bin/fitstopnm /usr/bin/fix_bs_and_del /usr/bin/fixdlsrps /usr/bin/fixfmps /usr/bin/fixincludes /usr/bin/fixmacps /usr/bin/fixpsditps /usr/bin/fixpspps /usr/bin/fixscribeps /usr/bin/fixtpps /usr/bin/fixwfwps /usr/bin/fixwpps /usr/bin/fixwwps /usr/bin/flea /usr/bin/flex /usr/bin/floppycontrol /usr/bin/floppymeter /usr/bin/fmt /usr/bin/fmtutil /usr/bin/fold /usr/bin/font2c /usr/bin/font2psf /usr/bin/fontexport /usr/bin/fontimport /usr/bin/fontinst /usr/bin/formail /usr/bin/fort /usr/bin/free /usr/bin/freetype-config /usr/bin/fribidi /usr/bin/from /usr/bin/fstopgm /usr/bin/ftp /usr/bin/ftpcount /usr/bin/ftptop /usr/bin/ftpwho /usr/bin/funzip /usr/bin/g++ /usr/bin/g++-2.95 /usr/bin/g++-3.2 /usr/bin/g3topbm /usr/bin/gaim /usr/bin/gaim-remote /usr/bin/gawk /usr/bin/gcc /usr/bin/gcc-2.95 /usr/bin/gcc-3.0 /usr/bin/gcc-3.2 /usr/bin/gcc-3.3 /usr/bin/gccbug /usr/bin/gccbug-3.0 /usr/bin/gccbug-3.2 /usr/bin/gccbug-3.3 /usr/bin/gconfd-1 /usr/bin/gconfigger /usr/bin/gconf-sanity-check-1 /usr/bin/gconftool /usr/bin/gconftool-1 /usr/bin/gconftool-2 /usr/bin/gcov /usr/bin/gcov-2.95 /usr/bin/gcov-3.0 /usr/bin/gcov-3.2 /usr/bin/gcov-3.3 /usr/bin/gdb /usr/bin/gdbserver /usr/bin/gdialog /usr/bin/gdk-pixbuf-query-loaders /usr/bin/gdm /usr/bin/gdmchooser /usr/bin/gdmflexiserver /usr/bin/gdmgreeter /usr/bin/gdmlogin /usr/bin/gdmmktemp /usr/bin/gdmphotosetup /usr/bin/gdmsetup /usr/bin/gdmthemetester /usr/bin/gdmXnest /usr/bin/gdmXnestchooser /usr/bin/gemtopbm /usr/bin/gemtopnm /usr/bin/gencat /usr/bin/gendiff /usr/bin/gendoc /usr/bin/genksyms /usr/bin/geqn /usr/bin/GET /usr/bin/getafm /usr/bin/getconf /usr/bin/get-edid /usr/bin/getent /usr/bin/getfdprm /usr/bin/gethostip /usr/bin/getkeycodes /usr/bin/getopt /usr/bin/gettext /usr/bin/gettextize /usr/bin/gfloppy /usr/bin/gfplus /usr/bin/gfserver /usr/bin/gftodvi /usr/bin/gftopk /usr/bin/gftype /usr/bin/giftopnm /usr/bin/gimp /usr/bin/gimp-1.2 /usr/bin/gimp-remote /usr/bin/gimp-remote-1.2 /usr/bin/gkb_xmmap /usr/bin/glade /usr/bin/glibcbug /usr/bin/glib-config /usr/bin/glib-genmarshal /usr/bin/glib-gettextize /usr/bin/glib-mkenums /usr/bin/gman /usr/bin/gmc /usr/bin/gmc-client /usr/bin/gnome-accessibility-keyboard-properties /usr/bin/gnome-background-properties /usr/bin/gnome-bug /usr/bin/gnome-calculator /usr/bin/gnome-cd /usr/bin/gnome-character-map /usr/bin/gnome-config /usr/bin/gnome-control-center /usr/bin/gnome-db2html /usr/bin/gnome-default-applications-properties /usr/bin/gnome-desktop-item-edit /usr/bin/gnome-dictionary /usr/bin/gnome-doc /usr/bin/gnome-dump-metadata /usr/bin/gnome-file-types-properties /usr/bin/gnome-font-install /usr/bin/gnome-font-properties /usr/bin/gnome-gen-mimedb /usr/bin/gnome-help /usr/bin/gnome-keybinding-properties /usr/bin/gnome-keyboard-properties /usr/bin/gnome-mkstub /usr/bin/gnome-mouse-properties /usr/bin/gnome-moz-remote /usr/bin/gnome-name-service /usr/bin/gnome-network-preferences /usr/bin/gnome-panel /usr/bin/gnome-panel-preferences /usr/bin/gnome-panel-screenshot /usr/bin/gnome-search-tool /usr/bin/gnome_segv /usr/bin/gnome-session /usr/bin/gnome-session-properties /usr/bin/gnome-session-save /usr/bin/gnome-settings-daemon /usr/bin/gnome-smproxy /usr/bin/gnome-sound-properties /usr/bin/gnome-sound-recorder /usr/bin/gnome-sudo /usr/bin/gnome-system-log /usr/bin/gnome-system-monitor /usr/bin/gnome-terminal /usr/bin/gnome-terminal.wrapper /usr/bin/gnome-theme-manager /usr/bin/gnome-ui-properties /usr/bin/gnome-volume-control /usr/bin/gnome-window-properties /usr/bin/gnome-wm /usr/bin/gnosamba /usr/bin/gnutls-cli /usr/bin/gnutls-cli-debug /usr/bin/gnutls-serv /usr/bin/gnutls-srpcrypt /usr/bin/goad-browser /usr/bin/gobject-query /usr/bin/gouldtoppm /usr/bin/gpasswd /usr/bin/gpg /usr/bin/gpg-convert-from-106 /usr/bin/gpgsplit /usr/bin/gpgv /usr/bin/gpic /usr/bin/gprof /usr/bin/grep-excuses /usr/bin/grn /usr/bin/grodvi /usr/bin/groff /usr/bin/groffer /usr/bin/grog /usr/bin/grolbp /usr/bin/grolj4 /usr/bin/grops /usr/bin/grotty /usr/bin/groups /usr/bin/gs /usr/bin/gsftopk /usr/bin/gs-gnu /usr/bin/gshell /usr/bin/gst-complete /usr/bin/gst-compprep /usr/bin/gst-feedback /usr/bin/gst-inspect /usr/bin/gst-launch /usr/bin/gst-launch-ext /usr/bin/gst-md5sum /usr/bin/gstreamer-properties /usr/bin/gst-register /usr/bin/gst-visualise /usr/bin/gst-xmllaunch /usr/bin/gtbl /usr/bin/gtk-config /usr/bin/gtk-query-immodules-2.0 /usr/bin/gview /usr/bin/gvim /usr/bin/gvimdiff /usr/bin/h2ph /usr/bin/h2xs /usr/bin/hd /usr/bin/head /usr/bin/HEAD /usr/bin/help2man /usr/bin/hexdump /usr/bin/hipstopgm /usr/bin/host /usr/bin/hostid /usr/bin/hpcdtoppm /usr/bin/hpftodit /usr/bin/html2text /usr/bin/htmltoc /usr/bin/hyperlatex /usr/bin/icombine /usr/bin/icontopbm /usr/bin/iconv /usr/bin/iconx /usr/bin/id /usr/bin/ident /usr/bin/ifnames /usr/bin/ifnames2.13 /usr/bin/igawk /usr/bin/ijoin /usr/bin/ilbmtoppm /usr/bin/imagetops /usr/bin/imgsize /usr/bin/imgtoppm /usr/bin/imlib-config /usr/bin/includeres /usr/bin/indent /usr/bin/indxbib /usr/bin/info /usr/bin/infobrowser /usr/bin/infocmp /usr/bin/infokey /usr/bin/infotocap /usr/bin/inimf /usr/bin/inimpost /usr/bin/iniomega /usr/bin/initex /usr/bin/install /usr/bin/instant /usr/bin/ipcrm /usr/bin/ipcs /usr/bin/irc /usr/bin/ircII /usr/bin/iselect /usr/bin/isodump /usr/bin/isoinfo /usr/bin/isovfy /usr/bin/ispell /usr/bin/ispell-wrapper /usr/bin/itclsh /usr/bin/itclsh3.1 /usr/bin/itkwish /usr/bin/itkwish3.1 /usr/bin/jade /usr/bin/jbigtopnm /usr/bin/jmacs /usr/bin/joe /usr/bin/join /usr/bin/jpegtopnm /usr/bin/jpegtran /usr/bin/jpico /usr/bin/jstar /usr/bin/kab2kabc /usr/bin/kaccess /usr/bin/kaddprinterwizard /usr/bin/kappfinder /usr/bin/karbon /usr/bin/karm /usr/bin/kate /usr/bin/kbabel /usr/bin/kbabeldict /usr/bin/kbanner.kss /usr/bin/kbdconfig /usr/bin/kbd_mode /usr/bin/kblankscrn.kss /usr/bin/kblob.kss /usr/bin/kbouboule.kss /usr/bin/kbuildsycoca /usr/bin/kcalc /usr/bin/kcharselect /usr/bin/kchart /usr/bin/kcheckpass /usr/bin/kcminit /usr/bin/kcmshell /usr/bin/kcolorchooser /usr/bin/kcoloredit /usr/bin/kconf_update /usr/bin/kcontrol /usr/bin/kcookiejar /usr/bin/kcron /usr/bin/kdb2html /usr/bin/kdcop /usr/bin/kde3 /usr/bin/kdebugdialog /usr/bin/kde-config /usr/bin/kded /usr/bin/kdeeject /usr/bin/kdeinit /usr/bin/kdeinit_shutdown /usr/bin/kdeinit_wrapper /usr/bin/kdepasswd /usr/bin/kdeprintfax /usr/bin/kdesktop /usr/bin/kdesktop_lock /usr/bin/kdesu /usr/bin/kdesud /usr/bin/kdesu_stub /usr/bin/kde-update-menu /usr/bin/kdf /usr/bin/kdialog /usr/bin/kdict /usr/bin/kdoc /usr/bin/kdontchangethehostname /usr/bin/kedit /usr/bin/keditbookmarks /usr/bin/keditfiletype /usr/bin/keuphoria.kss /usr/bin/kfile /usr/bin/kfind /usr/bin/kflux.kss /usr/bin/kfmclient /usr/bin/kfmexec /usr/bin/kformula /usr/bin/kfountain.kss /usr/bin/kghostview /usr/bin/kgravity.kss /usr/bin/khelpcenter /usr/bin/khexedit /usr/bin/khotkeys /usr/bin/kicker /usr/bin/kiconedit /usr/bin/killall /usr/bin/kill_mldonkey /usr/bin/kimage_concat /usr/bin/kinfocenter /usr/bin/kinstalltheme /usr/bin/kio_devices_mounthelper /usr/bin/kio_http_cache_cleaner /usr/bin/kioslave /usr/bin/kio_uiserver /usr/bin/kit /usr/bin/kivio /usr/bin/kjobviewer /usr/bin/kjots /usr/bin/klauncher /usr/bin/klines.kss /usr/bin/klipper /usr/bin/klocaldomainurifilterhelper /usr/bin/klorenz.kss /usr/bin/kmail /usr/bin/kmailservice /usr/bin/kmatrix.kss /usr/bin/kmenuedit /usr/bin/kmorph3d.kss /usr/bin/knewstickerstub /usr/bin/knode /usr/bin/knotes /usr/bin/knotify /usr/bin/koconverter /usr/bin/konqueror /usr/bin/konsole /usr/bin/konsole_grantpty /usr/bin/kontour /usr/bin/korn /usr/bin/koscript /usr/bin/koshell /usr/bin/kpac_dhcp_helper /usr/bin/kpackage /usr/bin/kpager /usr/bin/kpaint /usr/bin/kpartsaver.kss /usr/bin/kpersonalizer /usr/bin/kpipes.kss /usr/bin/kpm /usr/bin/kpolygon.kss /usr/bin/kprconverter.pl /usr/bin/kpresenter /usr/bin/kprinter /usr/bin/kpsepath /usr/bin/kpsestat /usr/bin/kpsetool /usr/bin/kpsewhich /usr/bin/kpsexpand /usr/bin/kpyro.kss /usr/bin/krandom.kss /usr/bin/krdb /usr/bin/kreadconfig /usr/bin/krock.kss /usr/bin/kruler /usr/bin/kscience.kss /usr/bin/ksendbugmail /usr/bin/kshell /usr/bin/ksirc /usr/bin/kslidescreen.kss /usr/bin/kslideshow.kss /usr/bin/ksmserver /usr/bin/ksnapshot /usr/bin/ksolarwinds.kss /usr/bin/kspace.kss /usr/bin/ksplash /usr/bin/kspread /usr/bin/kstart /usr/bin/ksvgtopng /usr/bin/kswarm.kss /usr/bin/ksysguard /usr/bin/ksysguardd /usr/bin/ksystraycmd /usr/bin/ksysv /usr/bin/ktelnetservice /usr/bin/kthesaurus /usr/bin/ktimer /usr/bin/ktip /usr/bin/kudesigner /usr/bin/kugar /usr/bin/kuser /usr/bin/kview /usr/bin/kvm.kss /usr/bin/kwave.kss /usr/bin/kwebdesktop /usr/bin/kwikdisk /usr/bin/kwin /usr/bin/kwmtheme /usr/bin/kword /usr/bin/kwrapper /usr/bin/kwrite /usr/bin/kwrited /usr/bin/kxkb /usr/bin/kxsconfig /usr/bin/kxsrun /usr/bin/lablgl /usr/bin/labltk /usr/bin/lacheck /usr/bin/lambda /usr/bin/last /usr/bin/lastb /usr/bin/lastlog /usr/bin/latex /usr/bin/latex2html /usr/bin/lcf /usr/bin/ld /usr/bin/ld86 /usr/bin/ldd /usr/bin/lddlibc4 /usr/bin/leaftoppm /usr/bin/less /usr/bin/lessecho /usr/bin/lessfile /usr/bin/lesskey /usr/bin/lesspipe /usr/bin/lex /usr/bin/lexgrog /usr/bin/libart2-config /usr/bin/libart-config /usr/bin/libgcrypt-config /usr/bin/libglade-config /usr/bin/libglade-convert /usr/bin/libglade-xgettext /usr/bin/libgnutls-config /usr/bin/libgnutls-extra-config /usr/bin/libIDL-config /usr/bin/libnetcfg /usr/bin/libpng12-config /usr/bin/libpng-config /usr/bin/libtool /usr/bin/libtoolize /usr/bin/linc-cleanup-sockets /usr/bin/linda /usr/bin/link /usr/bin/links /usr/bin/links.main /usr/bin/lintian /usr/bin/lintian-info /usr/bin/linux_logo /usr/bin/lispmtopgm /usr/bin/lkbib /usr/bin/lnusertemp /usr/bin/loadshlib /usr/bin/locale /usr/bin/localedef /usr/bin/locate /usr/bin/lockfile /usr/bin/lockfile-create /usr/bin/lockfile-remove /usr/bin/lockfile-touch /usr/bin/logger /usr/bin/logname /usr/bin/look /usr/bin/lookbib /usr/bin/lorder /usr/bin/lpq /usr/bin/lpr /usr/bin/lprm /usr/bin/lptest /usr/bin/lrelease /usr/bin/lsattr /usr/bin/lsof /usr/bin/lspgpot /usr/bin/lss16toppm /usr/bin/ltrace /usr/bin/lupdate /usr/bin/lwp-download /usr/bin/lwp-mirror /usr/bin/lwp-request /usr/bin/lwp-rget /usr/bin/lynx /usr/bin/lz /usr/bin/m4 /usr/bin/macptopbm /usr/bin/mad /usr/bin/mag /usr/bin/magic2mime /usr/bin/mail /usr/bin/Mail /usr/bin/mail-files /usr/bin/mail-lock /usr/bin/mailq /usr/bin/mailshar /usr/bin/mailstat /usr/bin/mail-touchlock /usr/bin/mail-unlock /usr/bin/mailx /usr/bin/make /usr/bin/make_driver_db_cups /usr/bin/make_driver_db_lpr /usr/bin/makeindex /usr/bin/makeinfo /usr/bin/makekdedoc /usr/bin/makempx /usr/bin/makempy /usr/bin/makepasswd /usr/bin/MakeTeXPK /usr/bin/man /usr/bin/mandb /usr/bin/manpath /usr/bin/mattrib /usr/bin/mawk /usr/bin/mbadblocks /usr/bin/mcat /usr/bin/mcd /usr/bin/mcheck /usr/bin/mcomp /usr/bin/mcookie /usr/bin/mcopidl /usr/bin/mcopy /usr/bin/mcp /usr/bin/md5sum /usr/bin/md5sum.textutils /usr/bin/mdatopbm /usr/bin/mdel /usr/bin/mdeltree /usr/bin/mdetect /usr/bin/mdir /usr/bin/mdu /usr/bin/meinproc /usr/bin/merge /usr/bin/mergechanges /usr/bin/mesg /usr/bin/mf /usr/bin/mf-nowin /usr/bin/mformat /usr/bin/mft /usr/bin/mfw /usr/bin/mgrtopbm /usr/bin/mib2c /usr/bin/minfo /usr/bin/mkafmmap /usr/bin/mkcamlp4 /usr/bin/mkfifo /usr/bin/mkfontdesc /usr/bin/mkhybrid /usr/bin/mkindex /usr/bin/mkisofs /usr/bin/mkmanifest /usr/bin/mk_modmap /usr/bin/mkocp /usr/bin/mkofm /usr/bin/mkpasswd /usr/bin/mktexfmt /usr/bin/mktexlsr /usr/bin/mktexmf /usr/bin/mktexpk /usr/bin/mktextfm /usr/bin/mkzftree /usr/bin/mlabel /usr/bin/mlchat /usr/bin/mlchat_say /usr/bin/mldonkey /usr/bin/mldonkey_gui /usr/bin/mldonkey_gui2 /usr/bin/mldonkey_previewer /usr/bin/mldonkey_submit /usr/bin/mln /usr/bin/mmd /usr/bin/mmount /usr/bin/mmove /usr/bin/mmroff /usr/bin/mmv /usr/bin/moc /usr/bin/moc-qt2 /usr/bin/moc-qt3 /usr/bin/moniker-test /usr/bin/mozilla /usr/bin/mozilla-1.3 /usr/bin/mp4h /usr/bin/mpack /usr/bin/mpage /usr/bin/mpartition /usr/bin/mpost /usr/bin/mpto /usr/bin/mptopdf /usr/bin/mrd /usr/bin/mren /usr/bin/msgattrib /usr/bin/msgcat /usr/bin/msgcmp /usr/bin/msgcomm /usr/bin/msgconv /usr/bin/msgen /usr/bin/msgexec /usr/bin/msgfilter /usr/bin/msgfmt /usr/bin/msggrep /usr/bin/msginit /usr/bin/msgmerge /usr/bin/msgunfmt /usr/bin/msguniq /usr/bin/mshowfat /usr/bin/mtools /usr/bin/mtoolstest /usr/bin/mtr /usr/bin/mtrace /usr/bin/mtvtoppm /usr/bin/mtype /usr/bin/munchlist /usr/bin/munpack /usr/bin/mutt /usr/bin/muttbug /usr/bin/mutt_dotlock /usr/bin/mxtar /usr/bin/mzip /usr/bin/namei /usr/bin/nano /usr/bin/nautilus /usr/bin/nautilus-file-management-properties /usr/bin/nautilus-server-connect /usr/bin/nawk /usr/bin/ncal /usr/bin/neotoppm /usr/bin/neqn /usr/bin/net /usr/bin/netkit-ftp /usr/bin/net-snmp-config /usr/bin/newaliases /usr/bin/newer /usr/bin/newgrp /usr/bin/new-object /usr/bin/nex /usr/bin/ngettext /usr/bin/nice /usr/bin/nl /usr/bin/nm /usr/bin/nm86 /usr/bin/nmap /usr/bin/nmblookup /usr/bin/nodefs /usr/bin/nohup /usr/bin/noindex /usr/bin/noroff /usr/bin/noroots /usr/bin/notangle /usr/bin/nountangle /usr/bin/noweave /usr/bin/noweb /usr/bin/nroff /usr/bin/nsgmls /usr/bin/nslookup /usr/bin/nspluginscan /usr/bin/nspluginviewer /usr/bin/nsupdate /usr/bin/nuweb2noweb /usr/bin/nvi /usr/bin/nview /usr/bin/oaf-client /usr/bin/oafd /usr/bin/oaf-empty-server /usr/bin/oaf-run-query /usr/bin/oaf-slay /usr/bin/oaf-sysconf /usr/bin/objcopy /usr/bin/objdump /usr/bin/objdump86 /usr/bin/objinfo /usr/bin/ocaml /usr/bin/ocamlbrowser /usr/bin/ocamlc /usr/bin/ocamlc.opt /usr/bin/ocamlcp /usr/bin/ocamlcvs /usr/bin/ocamldebug /usr/bin/ocamldep /usr/bin/ocamldoc /usr/bin/ocamldoc.opt /usr/bin/ocamldot /usr/bin/ocamlfind /usr/bin/ocaml-ldconf /usr/bin/ocamllex /usr/bin/ocamllex.opt /usr/bin/ocamlmklib /usr/bin/ocamlmktop /usr/bin/ocamlopt /usr/bin/ocamlopt.opt /usr/bin/ocamlprof /usr/bin/ocamlrun /usr/bin/ocamltags /usr/bin/ocamlweb /usr/bin/ocamlyacc /usr/bin/ocpp /usr/bin/od /usr/bin/odvicopy /usr/bin/odvips /usr/bin/odvitype /usr/bin/ofm2opl /usr/bin/omega /usr/bin/omfonts /usr/bin/omom-edit /usr/bin/omom-gen /usr/bin/on_ac_power /usr/bin/open /usr/bin/opencdk-config /usr/bin/openvt /usr/bin/opl2ofm /usr/bin/orbit-config /usr/bin/orbit-idl /usr/bin/otangle /usr/bin/otp2ocp /usr/bin/outocp /usr/bin/over /usr/bin/ovf2ovp /usr/bin/ovp2ovf /usr/bin/oxdvi /usr/bin/oxdvi.bin /usr/bin/oxdvi.real /usr/bin/pager /usr/bin/palmtopnm /usr/bin/pamcut /usr/bin/pamfile /usr/bin/pamoil /usr/bin/panel-test-applets /usr/bin/pango-querymodules /usr/bin/paperconf /usr/bin/parse-edid /usr/bin/passwd /usr/bin/paste /usr/bin/patch /usr/bin/patgen /usr/bin/pathchk /usr/bin/pbmclean /usr/bin/pbmlife /usr/bin/pbmmake /usr/bin/pbmmask /usr/bin/pbmpage /usr/bin/pbmpscale /usr/bin/pbmreduce /usr/bin/pbmtext /usr/bin/pbmto10x /usr/bin/pbmtoascii /usr/bin/pbmtoatk /usr/bin/pbmtobbnbg /usr/bin/pbmtocmuwm /usr/bin/pbmtoepsi /usr/bin/pbmtoepson /usr/bin/pbmtog3 /usr/bin/pbmtogem /usr/bin/pbmtogo /usr/bin/pbmtoicon /usr/bin/pbmtolj /usr/bin/pbmtomacp /usr/bin/pbmtomda /usr/bin/pbmtomgr /usr/bin/pbmtonokia /usr/bin/pbmtopgm /usr/bin/pbmtopi3 /usr/bin/pbmtoplot /usr/bin/pbmtoppa /usr/bin/pbmtopsg3 /usr/bin/pbmtoptx /usr/bin/pbmtowbmp /usr/bin/pbmtox10bm /usr/bin/pbmtoxbm /usr/bin/pbmtoybm /usr/bin/pbmtozinc /usr/bin/pbmupc /usr/bin/pcdindex /usr/bin/pcre-config /usr/bin/pcretest /usr/bin/pcxtoppm /usr/bin/pdbedit /usr/bin/pdf2dsc /usr/bin/pdf2ps /usr/bin/pdfeinitex /usr/bin/pdfelatex /usr/bin/pdfetex /usr/bin/pdfevirtex /usr/bin/pdffonts /usr/bin/pdfimages /usr/bin/pdfinfo /usr/bin/pdfinitex /usr/bin/pdflatex /usr/bin/pdfopt /usr/bin/pdftex /usr/bin/pdftopbm /usr/bin/pdftops /usr/bin/pdftosrc /usr/bin/pdftotext /usr/bin/pdfvirtex /usr/bin/perl /usr/bin/perl5.8.0 /usr/bin/perlbug /usr/bin/perlcc /usr/bin/perldoc /usr/bin/perldoc.stub /usr/bin/perlivp /usr/bin/pf2afm /usr/bin/pfb2pfa /usr/bin/pfbtops /usr/bin/pftp /usr/bin/pgawk /usr/bin/pgmbentley /usr/bin/pgmcrater /usr/bin/pgmedge /usr/bin/pgmenhance /usr/bin/pgmhist /usr/bin/pgmkernel /usr/bin/pgmnoise /usr/bin/pgmnorm /usr/bin/pgmoil /usr/bin/pgmramp /usr/bin/pgmslice /usr/bin/pgmtexture /usr/bin/pgmtofs /usr/bin/pgmtolispm /usr/bin/pgmtopbm /usr/bin/pgmtoppm /usr/bin/pgp /usr/bin/pgp5 /usr/bin/pgpe /usr/bin/pgpk /usr/bin/pgps /usr/bin/pgpv /usr/bin/pgrep /usr/bin/pi1toppm /usr/bin/pi3topbm /usr/bin/pic /usr/bin/pic2graph /usr/bin/pic2tpic /usr/bin/piconv /usr/bin/pinky /usr/bin/pjtoppm /usr/bin/pk2bm /usr/bin/pkg-config /usr/bin/pkill /usr/bin/pktogf /usr/bin/pktype /usr/bin/pl2pm /usr/bin/plain-gmc /usr/bin/plog /usr/bin/plotchangelog /usr/bin/pltotf /usr/bin/pmap /usr/bin/pngtopnm /usr/bin/pnmalias /usr/bin/pnmarith /usr/bin/pnmcat /usr/bin/pnmcomp /usr/bin/pnmconvol /usr/bin/pnmcrop /usr/bin/pnmcut /usr/bin/pnmdepth /usr/bin/pnmenlarge /usr/bin/pnmfile /usr/bin/pnmflip /usr/bin/pnmgamma /usr/bin/pnmhisteq /usr/bin/pnmhistmap /usr/bin/pnmindex /usr/bin/pnminterp /usr/bin/pnminterp-gen /usr/bin/pnminvert /usr/bin/pnmmargin /usr/bin/pnmmontage /usr/bin/pnmnlfilt /usr/bin/pnmnoraw /usr/bin/pnmpad /usr/bin/pnmpaste /usr/bin/pnmpsnr /usr/bin/pnmrotate /usr/bin/pnmscale /usr/bin/pnmscalefixed /usr/bin/pnmshear /usr/bin/pnmsmooth /usr/bin/pnmsplit /usr/bin/pnmtile /usr/bin/pnmtoddif /usr/bin/pnmtofiasco /usr/bin/pnmtofits /usr/bin/pnmtojbig /usr/bin/pnmtojpeg /usr/bin/pnmtopalm /usr/bin/pnmtoplainpnm /usr/bin/pnmtopng /usr/bin/pnmtops /usr/bin/pnmtorast /usr/bin/pnmtorle /usr/bin/pnmtosgi /usr/bin/pnmtosir /usr/bin/pnmtotiff /usr/bin/pnmtotiffcmyk /usr/bin/pnmtoxwd /usr/bin/po2debconf /usr/bin/pod2html /usr/bin/pod2latex /usr/bin/pod2man /usr/bin/pod2text /usr/bin/pod2usage /usr/bin/podchecker /usr/bin/podselect /usr/bin/poff /usr/bin/pon /usr/bin/pooltype /usr/bin/POST /usr/bin/poster /usr/bin/post-grohtml /usr/bin/ppm3d /usr/bin/ppmbrighten /usr/bin/ppmchange /usr/bin/ppmcie /usr/bin/ppmcolormask /usr/bin/ppmdim /usr/bin/ppmdist /usr/bin/ppmdither /usr/bin/ppmfade /usr/bin/ppmflash /usr/bin/ppmforge /usr/bin/ppmhist /usr/bin/ppmlabel /usr/bin/ppmmake /usr/bin/ppmmix /usr/bin/ppmnorm /usr/bin/ppmntsc /usr/bin/ppmpat /usr/bin/ppmquant /usr/bin/ppmquantall /usr/bin/ppmqvga /usr/bin/ppmrelief /usr/bin/ppmshadow /usr/bin/ppmshift /usr/bin/ppmspread /usr/bin/ppmtoacad /usr/bin/ppmtobmp /usr/bin/ppmtoeyuv /usr/bin/ppmtogif /usr/bin/ppmtoicr /usr/bin/ppmtoilbm /usr/bin/ppmtojpeg /usr/bin/ppmtoleaf /usr/bin/ppmtolj /usr/bin/ppmtolss16 /usr/bin/ppmtomap /usr/bin/ppmtomitsu /usr/bin/ppmtompeg /usr/bin/ppmtoneo /usr/bin/ppmtopcx /usr/bin/ppmtopgm /usr/bin/ppmtopi1 /usr/bin/ppmtopict /usr/bin/ppmtopj /usr/bin/ppmtopuzz /usr/bin/ppmtorgb3 /usr/bin/ppmtosixel /usr/bin/ppmtotga /usr/bin/ppmtouil /usr/bin/ppmtowinicon /usr/bin/ppmtoxpm /usr/bin/ppmtoyuv /usr/bin/ppmtoyuvsplit /usr/bin/ppmtv /usr/bin/pr /usr/bin/pre-grohtml /usr/bin/preparetips /usr/bin/print /usr/bin/printenv /usr/bin/printf /usr/bin/procan /usr/bin/procmail /usr/bin/ps2ascii /usr/bin/ps2epsi /usr/bin/ps2frag /usr/bin/ps2pdf /usr/bin/ps2pdf12 /usr/bin/ps2pdf13 /usr/bin/ps2pdf14 /usr/bin/ps2pdfwr /usr/bin/ps2pk /usr/bin/ps2ps /usr/bin/psbook /usr/bin/psed /usr/bin/psfaddtable /usr/bin/psfgettable /usr/bin/psfstriptable /usr/bin/psidtopgm /usr/bin/pslatex /usr/bin/psmerge /usr/bin/psnup /usr/bin/psresize /usr/bin/psselect /usr/bin/pstoedit /usr/bin/pstoimg /usr/bin/pstopnm /usr/bin/pstops /usr/bin/pstree /usr/bin/pstree.x11 /usr/bin/pstruct /usr/bin/ptked /usr/bin/ptksh /usr/bin/ptx /usr/bin/pydoc /usr/bin/pydoc2.1 /usr/bin/pydoc2.2 /usr/bin/pygettext /usr/bin/pygettext2.1 /usr/bin/pygettext2.2 /usr/bin/pygtk-codegen-1.2 /usr/bin/python /usr/bin/python2.1 /usr/bin/python2.2 /usr/bin/qembed /usr/bin/qmake /usr/bin/qrttoppm /usr/bin/qt2kdoc /usr/bin/querybts /usr/bin/rainbow /usr/bin/rainbow-ac /usr/bin/rainbow-be /usr/bin/rainbow-pr /usr/bin/rainbow-rank /usr/bin/rainbow-stats /usr/bin/ranlib /usr/bin/rar /usr/bin/rasttopnm /usr/bin/rawtopgm /usr/bin/rawtoppm /usr/bin/rcp /usr/bin/rcs /usr/bin/rcs2log /usr/bin/rcs-checkin /usr/bin/rcs-checkin.emacs20 /usr/bin/rcsclean /usr/bin/rcsdiff /usr/bin/rcsfreeze /usr/bin/rcsmerge /usr/bin/rdjpgcom /usr/bin/readelf /usr/bin/red /usr/bin/refer /usr/bin/release /usr/bin/remsync /usr/bin/rename /usr/bin/renice /usr/bin/rep /usr/bin/replay /usr/bin/report /usr/bin/reportbug /usr/bin/report.gui /usr/bin/rep-remote /usr/bin/reset /usr/bin/rev /usr/bin/rgb3toppm /usr/bin/rgrep /usr/bin/rgview /usr/bin/rgvim /usr/bin/rjoe /usr/bin/rletopnm /usr/bin/rlog /usr/bin/rlogin /usr/bin/rmccmt /usr/bin/routef /usr/bin/routel /usr/bin/rpcclient /usr/bin/rpcgen /usr/bin/rpcinfo /usr/bin/rpm /usr/bin/rpm2cpio /usr/bin/rpmbuild /usr/bin/rpmdb /usr/bin/rpme /usr/bin/rpmi /usr/bin/rpmquery /usr/bin/rpmsign /usr/bin/rpmu /usr/bin/rpmverify /usr/bin/rsh /usr/bin/rstartd /usr/bin/rubibtex /usr/bin/rumakeindex /usr/bin/run-mailcap /usr/bin/run-with-aspell /usr/bin/rview /usr/bin/rvim /usr/bin/s2p /usr/bin/savelog /usr/bin/sawfish /usr/bin/sawfish-client /usr/bin/sawfish-ui /usr/bin/sbigtopgm /usr/bin/scp /usr/bin/scr-bx /usr/bin/screen /usr/bin/screendump /usr/bin/screensaver-properties-capplet /usr/bin/script /usr/bin/scrollkeeper-config /usr/bin/scrollkeeper-extract /usr/bin/scrollkeeper-gen-seriesid /usr/bin/scrollkeeper-get-cl /usr/bin/scrollkeeper-get-content-list /usr/bin/scrollkeeper-get-extended-content-list /usr/bin/scrollkeeper-get-index-from-docpath /usr/bin/scrollkeeper-get-toc-from-docpath /usr/bin/scrollkeeper-get-toc-from-id /usr/bin/scrollkeeper-install /usr/bin/scrollkeeper-preinstall /usr/bin/scrollkeeper-rebuilddb /usr/bin/scrollkeeper-uninstall /usr/bin/scrollkeeper-update /usr/bin/sdiff /usr/bin/secpolicy /usr/bin/see /usr/bin/select-default-iwrap /usr/bin/sensible-browser /usr/bin/sensible-editor /usr/bin/sensible-pager /usr/bin/seq /usr/bin/setfdprm /usr/bin/setkeycodes /usr/bin/set-language-env /usr/bin/setleds /usr/bin/setmetamode /usr/bin/setsid /usr/bin/setterm /usr/bin/sfconvert /usr/bin/sfinfo /usr/bin/sftp /usr/bin/sg /usr/bin/sgitopnm /usr/bin/sgml2xml /usr/bin/sgmlnorm /usr/bin/sgmlspl /usr/bin/sha1sum /usr/bin/shar /usr/bin/showcfont /usr/bin/showchar /usr/bin/showkey /usr/bin/shred /usr/bin/signchanges /usr/bin/sirtopnm /usr/bin/size /usr/bin/size86 /usr/bin/skill /usr/bin/sl2h /usr/bin/sldtoppm /usr/bin/slice /usr/bin/sliceprint /usr/bin/slogin /usr/bin/smbcacls /usr/bin/smbclient /usr/bin/smbcontrol /usr/bin/smbgroupedit /usr/bin/smb-nat /usr/bin/smbpasswd /usr/bin/smbspool /usr/bin/smbstatus /usr/bin/smbtar /usr/bin/smbtree /usr/bin/snice /usr/bin/socat /usr/bin/soelim /usr/bin/sort /usr/bin/spam /usr/bin/spctoppm /usr/bin/spent /usr/bin/splain /usr/bin/split /usr/bin/splitfont /usr/bin/sputoppm /usr/bin/sq /usr/bin/ssh /usr/bin/ssh-add /usr/bin/ssh-agent /usr/bin/ssh-argv0 /usr/bin/ssh-copy-id /usr/bin/ssh-keygen /usr/bin/ssh-keyscan /usr/bin/startkde /usr/bin/stat /usr/bin/states /usr/bin/strace /usr/bin/strfile /usr/bin/strings /usr/bin/strip /usr/bin/sudo /usr/bin/sum /usr/bin/superformat /usr/bin/symlinks /usr/bin/syslinux /usr/bin/syslinux2ansi /usr/bin/t1mapper /usr/bin/tac /usr/bin/tack /usr/bin/tail /usr/bin/tangle /usr/bin/tasksel /usr/bin/tbl /usr/bin/tclsh /usr/bin/tclsh8.3 /usr/bin/tclsh8.4 /usr/bin/tcsh /usr/bin/tdbbackup /usr/bin/tee /usr/bin/telnet /usr/bin/telnet.netkit /usr/bin/test /usr/bin/testparm /usr/bin/testprns /usr/bin/tex /usr/bin/texconfig /usr/bin/texdoc /usr/bin/texdoctk /usr/bin/texexec /usr/bin/texexpand /usr/bin/texfind /usr/bin/texfont /usr/bin/texhash /usr/bin/texi2dvi /usr/bin/texi2html /usr/bin/texi2pdf /usr/bin/texindex /usr/bin/texlinks /usr/bin/texshow /usr/bin/texutil /usr/bin/tfmtodit /usr/bin/tftopl /usr/bin/tgatoppm /usr/bin/tgz /usr/bin/thinkjettopbm /usr/bin/thumbpdf /usr/bin/tic /usr/bin/tie /usr/bin/tifftopnm /usr/bin/time /usr/bin/tixindex /usr/bin/tixindex4.1 /usr/bin/tixindex8.1 /usr/bin/tixwish /usr/bin/tixwish4.1 /usr/bin/tixwish8.1 /usr/bin/tklanguage /usr/bin/tload /usr/bin/toe /usr/bin/top /usr/bin/topcameleon /usr/bin/touch /usr/bin/tput /usr/bin/tr /usr/bin/traceroute /usr/bin/traceroute.lbl /usr/bin/transfig /usr/bin/tree /usr/bin/troff /usr/bin/tryaffix /usr/bin/tset /usr/bin/tsort /usr/bin/ttf2afm /usr/bin/ttfadmin.sh /usr/bin/ttftool /usr/bin/tty /usr/bin/tzselect /usr/bin/ucf /usr/bin/uic /usr/bin/uic-qt2 /usr/bin/uic-qt3 /usr/bin/ul /usr/bin/unexpand /usr/bin/unicode_start /usr/bin/unicode_stop /usr/bin/uniq /usr/bin/unison /usr/bin/unison-gtk /usr/bin/unlink /usr/bin/unrar /usr/bin/unshar /usr/bin/unsq /usr/bin/unstr /usr/bin/untex /usr/bin/untrigraph /usr/bin/unzip /usr/bin/unzipsfx /usr/bin/updatedb /usr/bin/update-menus /usr/bin/updmap /usr/bin/uptime /usr/bin/uscan /usr/bin/user-ja-conf /usr/bin/users /usr/bin/use_tags /usr/bin/uudecode /usr/bin/uuencode /usr/bin/uuidgen /usr/bin/uupdate /usr/bin/uz /usr/bin/vacation /usr/bin/vftovp /usr/bin/vi /usr/bin/view /usr/bin/vim /usr/bin/vimdiff /usr/bin/vimtutor /usr/bin/virmf /usr/bin/virmpost /usr/bin/viromega /usr/bin/virtex /usr/bin/vmstat /usr/bin/volname /usr/bin/vptovf /usr/bin/vt-is-UTF8 /usr/bin/vumeter /usr/bin/w /usr/bin/w3c /usr/bin/wall /usr/bin/watch /usr/bin/wbmptopbm /usr/bin/wc /usr/bin/weave /usr/bin/webbot /usr/bin/wget /usr/bin/whatis /usr/bin/whereis /usr/bin/which /usr/bin/whiptail /usr/bin/who /usr/bin/whoami /usr/bin/whois /usr/bin/widget /usr/bin/winicontoppm /usr/bin/wish /usr/bin/wish8.3 /usr/bin/wish8.4 /usr/bin/wmb /usr/bin/wmd /usr/bin/wmk /usr/bin/wml /usr/bin/wmu /usr/bin/wmxmms /usr/bin/word-list-compress /usr/bin/w.procps /usr/bin/write /usr/bin/wrjpgcom /usr/bin/www /usr/bin/www-browser /usr/bin/X11 /usr/bin/xanim /usr/bin/xargs /usr/bin/xbitchx /usr/bin/xbmtopbm /usr/bin/xchat /usr/bin/xdfcopy /usr/bin/xdfformat /usr/bin/xdvi /usr/bin/xdvi.bin /usr/bin/xdvi.real /usr/bin/xdvizilla /usr/bin/xfig /usr/bin/xgettext /usr/bin/ximtoppm /usr/bin/xml2man /usr/bin/xmlcatalog /usr/bin/xml-config /usr/bin/xmlizer /usr/bin/xmllint /usr/bin/xmlproc_parse /usr/bin/xmlproc_parse.python2.1-xml /usr/bin/xmlproc_parse.python2.2-xml /usr/bin/xmlproc_val /usr/bin/xmlproc_val.python2.1-xml /usr/bin/xmlproc_val.python2.2-xml /usr/bin/xmms /usr/bin/xpdf /usr/bin/xpdf.bin /usr/bin/xpmtoppm /usr/bin/xscreensaver /usr/bin/xscreensaver-command /usr/bin/xscreensaver-demo /usr/bin/xscreensaver-getimage /usr/bin/xscreensaver-getimage-file /usr/bin/xscreensaver-getimage-video /usr/bin/xscreensaver.kss /usr/bin/x-session-manager /usr/bin/xsltproc /usr/bin/xsubpp /usr/bin/x-terminal-emulator /usr/bin/xvfb-run /usr/bin/xvminitoppm /usr/bin/xwdtopnm /usr/bin/x-window-manager /usr/bin/x-www-browser /usr/bin/xxd /usr/bin/yacc /usr/bin/ybmtopbm /usr/bin/yelp /usr/bin/yelp-pregenerate /usr/bin/yes /usr/bin/yuvsplittoppm /usr/bin/yuvtoppm /usr/bin/yyextract /usr/bin/yyref /usr/bin/zdump /usr/bin/zeisstopnm /usr/bin/zip /usr/bin/zipcloak /usr/bin/zipgrep /usr/bin/zipinfo /usr/bin/zipnote /usr/bin/zipsplit /usr/bin/zsoelim /usr/bin/zxpdf executables
++consider changing the owner to `root'. Because of SMI's recent decision
++to install most /usr/sbin/ab /usr/sbin/ab2 /usr/sbin/accessdb /usr/sbin/acpid /usr/sbin/addgnupghome /usr/sbin/addgroup /usr/sbin/add-shell /usr/sbin/adduser /usr/sbin/apache /usr/sbin/apacheconfig /usr/sbin/apachectl /usr/sbin/apache-modconf /usr/sbin/apmd /usr/sbin/apt-setup /usr/sbin/arp /usr/sbin/arp2ethers /usr/sbin/arpfetch /usr/sbin/arpsnmp /usr/sbin/arpwatch /usr/sbin/aspell-autobuildhash /usr/sbin/atd /usr/sbin/atrun /usr/sbin/authenumerate /usr/sbin/backup-simple /usr/sbin/base-config /usr/sbin/bihourly /usr/sbin/biosdecode /usr/sbin/bonobo-activation-sysconf /usr/sbin/buildd-make-chroot /usr/sbin/changeaudiocddev /usr/sbin/chat /usr/sbin/check_forensic /usr/sbin/checkgid /usr/sbin/checkgid2 /usr/sbin/checkpc /usr/sbin/checksecurity /usr/sbin/chkrootkit /usr/sbin/chpasswd /usr/sbin/chroot /usr/sbin/cleanup-info /usr/sbin/coldnamed /usr/sbin/courierauthtest /usr/sbin/courierlogger /usr/sbin/couriertcpd /usr/sbin/cpgr /usr/sbin/cppw /usr/sbin/Crack /usr/sbin/Crack-Reporter /usr/sbin/cramfsck /usr/sbin/cron /usr/sbin/cruft /usr/sbin/cvs-pserver /usr/sbin/cytune /usr/sbin/debootstrap /usr/sbin/debsums_gen /usr/sbin/delgroup /usr/sbin/deluser /usr/sbin/dmassagevendor /usr/sbin/dmidecode /usr/sbin/dpasswd /usr/sbin/dpkg-divert /usr/sbin/dpkg-preconfigure /usr/sbin/dpkg-reconfigure /usr/sbin/dpkg-statoverride /usr/sbin/dumbnet /usr/sbin/editkeep /usr/sbin/elvtune /usr/sbin/ethtool /usr/sbin/exicyclog /usr/sbin/exigrep /usr/sbin/exim4 /usr/sbin/exim_checkaccess /usr/sbin/exim_convert4r4 /usr/sbin/exim_dbmbuild /usr/sbin/exim_dumpdb /usr/sbin/exim_fixdb /usr/sbin/exim_lock /usr/sbin/eximstats /usr/sbin/exim_tidydb /usr/sbin/exinext /usr/sbin/exipick /usr/sbin/exiqgrep /usr/sbin/exiqsumm /usr/sbin/exiwhat /usr/sbin/fancontrol /usr/sbin/fdutilsconfig /usr/sbin/filefrag /usr/sbin/foomatic-addpjloptions /usr/sbin/foomatic-cleanupdrivers /usr/sbin/foomatic-fix-xml /usr/sbin/foomatic-getpjloptions /usr/sbin/foomatic-kitload /usr/sbin/foomatic-nonumericalids /usr/sbin/foomatic-preferred-driver /usr/sbin/foomatic-printermap-to-gimp-print-xml /usr/sbin/foomatic-replaceoldprinterids /usr/sbin/fping /usr/sbin/fping6 /usr/sbin/fstab-sync /usr/sbin/ftpasswd /usr/sbin/ftpquota /usr/sbin/ftpshut /usr/sbin/ftpstats /usr/sbin/gdmconfig /usr/sbin/gnome-pty-helper /usr/sbin/gpm /usr/sbin/gpmconfig /usr/sbin/gpm-microtouch-setup /usr/sbin/gpm-mouse-test /usr/sbin/groupadd /usr/sbin/groupdel /usr/sbin/groupmod /usr/sbin/grpck /usr/sbin/grpconv /usr/sbin/grpunconv /usr/sbin/hald /usr/sbin/hddtemp /usr/sbin/hping /usr/sbin/hping2 /usr/sbin/huntd /usr/sbin/i2cdetect /usr/sbin/i2cdump /usr/sbin/i2cset /usr/sbin/iconvconfig /usr/sbin/identd /usr/sbin/idswakeup /usr/sbin/ikeygen /usr/sbin/in.comsat /usr/sbin/inetd /usr/sbin/in.identtestd /usr/sbin/in.ntalkd /usr/sbin/install-docs /usr/sbin/install-info /usr/sbin/install-keymap /usr/sbin/install-menu /usr/sbin/install-sgmlcatalog /usr/sbin/in.talkd /usr/sbin/invoke-rc.d /usr/sbin/ipmasqadm /usr/sbin/iptraf /usr/sbin/ircflush /usr/sbin/ircio /usr/sbin/irqtune /usr/sbin/isadump /usr/sbin/isaset /usr/sbin/ispell-autobuildhash /usr/sbin/ispellconfig /usr/sbin/iwu /usr/sbin/kernel-packageconfig /usr/sbin/keytab-lilo /usr/sbin/liloconfig /usr/sbin/lilo_find_mbr /usr/sbin/locale-gen /usr/sbin/localepurge /usr/sbin/logcheck /usr/sbin/logresolve /usr/sbin/logresolve2 /usr/sbin/logrotate /usr/sbin/logtail /usr/sbin/lpc /usr/sbin/lpd /usr/sbin/lpdomatic /usr/sbin/lprng_certs /usr/sbin/lprng_index_certs /usr/sbin/lsof /usr/sbin/lsusb /usr/sbin/magicfilter /usr/sbin/magicfilterconfig /usr/sbin/MAKEFLOPPIES /usr/sbin/makejail /usr/sbin/makeuserdb /usr/sbin/massagevendor /usr/sbin/memtest /usr/sbin/mkboot /usr/sbin/mkcramfs /usr/sbin/mkinitrd /usr/sbin/mklost+found /usr/sbin/mkrescue /usr/sbin/mksmbpasswd /usr/sbin/modconf /usr/sbin/modules-config /usr/sbin/mysqld /usr/sbin/nessus-adduser /usr/sbin/nessus-check-signature /usr/sbin/nessusd /usr/sbin/nessus-mkcert /usr/sbin/nessus-rmuser /usr/sbin/nessus-update-plugins /usr/sbin/nessus-update-plugins-gpl /usr/sbin/newusers /usr/sbin/nmbd /usr/sbin/ntpd /usr/sbin/ntpdate /usr/sbin/ntp-keygen /usr/sbin/ntptime /usr/sbin/ntp-wait /usr/sbin/oinkmaster /usr/sbin/orphaner /usr/sbin/ownership /usr/sbin/p0f /usr/sbin/packit /usr/sbin/pam_getenv /usr/sbin/pam_tally /usr/sbin/paperconfig /usr/sbin/pbuilder /usr/sbin/pconf_detect /usr/sbin/popcon-largest-unused /usr/sbin/popularity-contest /usr/sbin/pppconfig /usr/sbin/pppd /usr/sbin/pppdump /usr/sbin/pppoe /usr/sbin/pppoeconf /usr/sbin/pppoe-discovery /usr/sbin/pppoe-relay /usr/sbin/pppoe-server /usr/sbin/pppoe-sniff /usr/sbin/pppstats /usr/sbin/proftpd /usr/sbin/pw2userdb /usr/sbin/pwck /usr/sbin/pwconv /usr/sbin/pwmconfig /usr/sbin/pwunconv /usr/sbin/qic02conf /usr/sbin/ramsize /usr/sbin/rdev /usr/sbin/readprofile /usr/sbin/remove-default-ispell /usr/sbin/remove-default-wordlist /usr/sbin/remove-shell /usr/sbin/rmail /usr/sbin/rmt /usr/sbin/rmt-tar /usr/sbin/rootflags /usr/sbin/rotatelogs /usr/sbin/rotatelogs2 /usr/sbin/rscsi /usr/sbin/rsmtp /usr/sbin/runas /usr/sbin/runq /usr/sbin/rvnamed /usr/sbin/safe_finger /usr/sbin/samhain /usr/sbin/saned /usr/sbin/select-default-ispell /usr/sbin/select-default-wordlist /usr/sbin/sendmail /usr/sbin/sensors-detect /usr/sbin/setvesablank /usr/sbin/sharedindexinstall /usr/sbin/sharedindexsplit /usr/sbin/smbd /usr/sbin/snort /usr/sbin/snort-stat /usr/sbin/spamd /usr/sbin/spfd /usr/sbin/split-logfile /usr/sbin/sshd /usr/sbin/su-to-root /usr/sbin/synaptic /usr/sbin/sync-available /usr/sbin/syslog2eximlog /usr/sbin/syslogd-listfiles /usr/sbin/syslog-facility /usr/sbin/sysv-rc-conf /usr/sbin/tcpd /usr/sbin/tcpdchk /usr/sbin/tcpdmatch /usr/sbin/tcpdump /usr/sbin/termwrap /usr/sbin/texconfig /usr/sbin/tickadj /usr/sbin/tiger /usr/sbin/tigercron /usr/sbin/tigexp /usr/sbin/tmpreaper /usr/sbin/traceroute /usr/sbin/try-from /usr/sbin/tunelp /usr/sbin/tzconfig /usr/sbin/tzsetup /usr/sbin/update-alternatives /usr/sbin/update-catalog /usr/sbin/update-default-aspell /usr/sbin/update-default-ispell /usr/sbin/update-default-wordlist /usr/sbin/update-dictcommon-aspell /usr/sbin/update-exim4.conf /usr/sbin/update-exim4.conf.template /usr/sbin/update-exim4defaults /usr/sbin/update-flashplugin /usr/sbin/update-fmtutil /usr/sbin/update-fonts-alias /usr/sbin/update-fonts-dir /usr/sbin/update-fonts-scale /usr/sbin/update-gdkpixbuf-loaders /usr/sbin/update-gtk-immodules /usr/sbin/update-inetd /usr/sbin/update-ispell-dictionary /usr/sbin/update-lilo /usr/sbin/update-mime /usr/sbin/update-mozilla-chrome /usr/sbin/update-openoffice-dicts /usr/sbin/update-pango-modules /usr/sbin/update-pangox-aliases /usr/sbin/update-passwd /usr/sbin/update-rc.d /usr/sbin/update-texmf /usr/sbin/update-updmap /usr/sbin/update-usbids /usr/sbin/update-xmlcatalog /usr/sbin/update-xpdfrc /usr/sbin/usbmodules /usr/sbin/useradd /usr/sbin/userdb /usr/sbin/userdbpw /usr/sbin/userdel /usr/sbin/usermod /usr/sbin/validlocale /usr/sbin/vchkpw2userdb /usr/sbin/vcstime /usr/sbin/vidmode /usr/sbin/vigr /usr/sbin/vipw /usr/sbin/visudo /usr/sbin/vpddecode /usr/sbin/w3camd /usr/sbin/wm-menu-config /usr/sbin/writevt /usr/sbin/wserv /usr/sbin/zic and /usr/bin/[ /usr/bin/411toppm /usr/bin/822-date /usr/bin/a2p /usr/bin/a2ps /usr/bin/a2ps-lpr-wrapper /usr/bin/a52dec /usr/bin/a5booklet /usr/bin/aalib-config /usr/bin/aaxine /usr/bin/abiword /usr/bin/AbiWord-2.2 /usr/bin/abw2html /usr/bin/access /usr/bin/aclocal /usr/bin/aclocal-1.4 /usr/bin/aclocal-1.6 /usr/bin/aclocal-1.7 /usr/bin/acpi /usr/bin/acpi_available /usr/bin/acpi_listen /usr/bin/activation-client /usr/bin/acyclic /usr/bin/addftinfo /usr/bin/addr2line /usr/bin/addresses /usr/bin/adnshost /usr/bin/adnslogres /usr/bin/adnsresfilter /usr/bin/afm2tfm /usr/bin/afmdiff.awk /usr/bin/afmtodit /usr/bin/alexandria /usr/bin/alien /usr/bin/allcm /usr/bin/allec /usr/bin/allneeded /usr/bin/amor /usr/bin/amstex /usr/bin/amule /usr/bin/amuleweb /usr/bin/amulewebDLG /usr/bin/analog /usr/bin/animate /usr/bin/anytopnm /usr/bin/apm /usr/bin/apm_available /usr/bin/apmsleep /usr/bin/appletproxy /usr/bin/appletviewer /usr/bin/apropos /usr/bin/apt-cache /usr/bin/apt-cdrom /usr/bin/apt-config /usr/bin/apt-extracttemplates /usr/bin/apt-file /usr/bin/apt-ftparchive /usr/bin/apt-get /usr/bin/aptitude /usr/bin/apt-listchanges /usr/bin/apt-sortpkgs /usr/bin/ar /usr/bin/ar86 /usr/bin/archer /usr/bin/ark /usr/bin/arrow /usr/bin/artsbuilder /usr/bin/artscat /usr/bin/artsc-config /usr/bin/artscontrol /usr/bin/artsd /usr/bin/artsdsp /usr/bin/artsmessage /usr/bin/artsplay /usr/bin/artsrec /usr/bin/artsshell /usr/bin/artswrapper /usr/bin/as /usr/bin/as86 /usr/bin/asciitopgm /usr/bin/ascii-xfr /usr/bin/aserver /usr/bin/asn1Coding /usr/bin/asn1Decoding /usr/bin/asn1Parser /usr/bin/aspell /usr/bin/aspell-import /usr/bin/at /usr/bin/atktopbm /usr/bin/atlantikdesigner /usr/bin/atq /usr/bin/atrm /usr/bin/atsar /usr/bin/audiofile-config /usr/bin/autoconf /usr/bin/autoconf2.13 /usr/bin/autoconf2.50 /usr/bin/autoheader /usr/bin/autoheader2.13 /usr/bin/autoheader2.50 /usr/bin/autom4te /usr/bin/automake /usr/bin/automake-1.4 /usr/bin/automake-1.6 /usr/bin/automake-1.7 /usr/bin/autopoint /usr/bin/autopsy /usr/bin/autoreconf /usr/bin/autoreconf2.13 /usr/bin/autoreconf2.50 /usr/bin/autoscan /usr/bin/autoscan2.13 /usr/bin/autoupdate /usr/bin/autoupdate2.13 /usr/bin/avg-pkg-build-time /usr/bin/aviplay /usr/bin/awk /usr/bin/b2m /usr/bin/b2m.emacs21 /usr/bin/b2m.xemacs21 /usr/bin/basename /usr/bin/bashbug /usr/bin/batch /usr/bin/baz /usr/bin/bazaar-gpg-check /usr/bin/bc /usr/bin/bcomps /usr/bin/bdftops /usr/bin/beep /usr/bin/berkeley_db3_svc /usr/bin/berkeley_db4.2_svc /usr/bin/bg5conv /usr/bin/bg5latex /usr/bin/bg5+latex /usr/bin/bibindex /usr/bin/biblook /usr/bin/bibtex /usr/bin/bibtool /usr/bin/biff /usr/bin/binstats /usr/bin/bioradtopgm /usr/bin/bison /usr/bin/bison.yacc /usr/bin/bitchx /usr/bin/BitchX /usr/bin/bluefish /usr/bin/bmp2tiff /usr/bin/bmptopnm /usr/bin/bmptoppm /usr/bin/bochs /usr/bin/bochs-bin /usr/bin/bogomips /usr/bin/bonobo-activation-run-query /usr/bin/bonobo-application-x-mines /usr/bin/bonobo-audio-ulaw /usr/bin/bonobo-browser /usr/bin/bonobo-moniker-gunzip /usr/bin/bonobo-moniker-http /usr/bin/bonobo-selector /usr/bin/bonobo-slay /usr/bin/bonobo-text-plain /usr/bin/boot-admin /usr/bin/brushtopbm /usr/bin/bsd-write /usr/bin/btcompletedir /usr/bin/btcompletedir.bittorrent /usr/bin/btdownloadcurses /usr/bin/btdownloadcurses.bittorrent /usr/bin/btdownloadheadless /usr/bin/btdownloadheadless.bittorrent /usr/bin/btedit /usr/bin/btlaunchmany /usr/bin/btlaunchmany.bittorrent /usr/bin/btlaunchmanycurses /usr/bin/btlaunchmanycurses.bittorrent /usr/bin/btmakemetafile /usr/bin/btmakemetafile.bittorrent /usr/bin/btreannounce /usr/bin/btreannounce.bittorrent /usr/bin/btrename /usr/bin/btrename.bittorrent /usr/bin/bts /usr/bin/btshowmetainfo /usr/bin/btshowmetainfo.bittorrent /usr/bin/bttrack /usr/bin/bttrack.bittorrent /usr/bin/bug-buddy /usr/bin/buildhash /usr/bin/bunzip2 /usr/bin/burnBX /usr/bin/burnK6 /usr/bin/burnK7 /usr/bin/burnMMX /usr/bin/burnP5 /usr/bin/burnP6 /usr/bin/bwm /usr/bin/bximage /usr/bin/bzcat /usr/bin/bzcmp /usr/bin/bzdiff /usr/bin/bzegrep /usr/bin/bzexe /usr/bin/bzfgrep /usr/bin/bzgrep /usr/bin/bzip2 /usr/bin/bzip2recover /usr/bin/bzless /usr/bin/bzmore /usr/bin/c++ /usr/bin/c2man /usr/bin/c2ph /usr/bin/c89 /usr/bin/c99 /usr/bin/cadubi /usr/bin/cal /usr/bin/calendar /usr/bin/camlidl /usr/bin/camlp4 /usr/bin/camlp4o /usr/bin/camlp4o.opt /usr/bin/camlp4r /usr/bin/camlp4r.opt /usr/bin/cancel /usr/bin/captoinfo /usr/bin/card /usr/bin/cardos-info /usr/bin/castellanizar /usr/bin/catalogmanager /usr/bin/catchsegv /usr/bin/catman /usr/bin/cc /usr/bin/ccal /usr/bin/ccmtcnvt /usr/bin/ccomps /usr/bin/cdadd /usr/bin/cdbackup /usr/bin/cdbakeoven /usr/bin/cdbodialogloader /usr/bin/cdbosetuptool /usr/bin/cdbs-edit-patch /usr/bin/cdcd /usr/bin/cdclose /usr/bin/cdctrl /usr/bin/cdda2mp3 /usr/bin/cdda2ogg /usr/bin/cdda2wav /usr/bin/cddb-slave2-properties /usr/bin/cdecl /usr/bin/cdeject /usr/bin/cdinfo /usr/bin/cdir /usr/bin/cdloop /usr/bin/cdown /usr/bin/cdparanoia /usr/bin/cdpause /usr/bin/cdplay /usr/bin/cdrdao /usr/bin/cdrecord /usr/bin/cdrecord.mmap /usr/bin/cdrecord.shm /usr/bin/cdreset /usr/bin/cdrestore /usr/bin/cdrtoaster /usr/bin/cdshuffle /usr/bin/cdstop /usr/bin/cdvolume /usr/bin/cdxa2mpeg /usr/bin/cef5conv /usr/bin/cef5latex /usr/bin/cefconv /usr/bin/ceflatex /usr/bin/cefsconv /usr/bin/cefslatex /usr/bin/celestrongps /usr/bin/c++filt /usr/bin/cflow /usr/bin/cg_annotate /usr/bin/chage /usr/bin/charmap /usr/bin/charset /usr/bin/chattr /usr/bin/checkbash /usr/bin/checkbashisms /usr/bin/checkrestart /usr/bin/cheops /usr/bin/chfn /usr/bin/chilight /usr/bin/chkdupexe /usr/bin/chktri /usr/bin/chsh /usr/bin/chvt /usr/bin/ci /usr/bin/circo /usr/bin/cjpeg /usr/bin/cksum /usr/bin/clear /usr/bin/clips /usr/bin/clusterdb /usr/bin/cm2rem /usr/bin/cmp /usr/bin/cmuwmtopbm /usr/bin/co /usr/bin/cobfusc /usr/bin/codepage /usr/bin/col /usr/bin/colcrt /usr/bin/coldsync /usr/bin/collateindex.pl /usr/bin/colrm /usr/bin/column /usr/bin/combinediff /usr/bin/comm /usr/bin/compare /usr/bin/comp_err /usr/bin/compile_et /usr/bin/compose /usr/bin/composeglyphs /usr/bin/composite /usr/bin/conjure /usr/bin/consolechars /usr/bin/ControlPanel /usr/bin/convert /usr/bin/courier-config /usr/bin/cpan /usr/bin/cpif /usr/bin/cpp /usr/bin/cpp-2.95 /usr/bin/cpp-3.2 /usr/bin/cpp-3.3 /usr/bin/createdb /usr/bin/createdisk /usr/bin/createlang /usr/bin/createuser /usr/bin/c_rehash /usr/bin/crontab /usr/bin/crossbow /usr/bin/cryptoflex-tool /usr/bin/csplit /usr/bin/csslint /usr/bin/csslint-0.6 /usr/bin/cstr /usr/bin/ctags /usr/bin/ctags.emacs21 /usr/bin/ctangle /usr/bin/cue2toc /usr/bin/cundecl /usr/bin/cunloop /usr/bin/cups-config /usr/bin/cupsdconf /usr/bin/cupsdoprint /usr/bin/curl /usr/bin/curl-config /usr/bin/cut /usr/bin/cvs /usr/bin/cvsaskpass /usr/bin/cvs-debc /usr/bin/cvs-debi /usr/bin/cvs-debrelease /usr/bin/cvs-debuild /usr/bin/cvsservice /usr/bin/cw /usr/bin/cweave /usr/bin/cwgen /usr/bin/cxref /usr/bin/cxref-cc /usr/bin/cxref-cpp /usr/bin/cxref-cpp-configure /usr/bin/cxref-cpp.upstream /usr/bin/cxref-query /usr/bin/daemon /usr/bin/dash-search /usr/bin/datastat /usr/bin/db2dvi /usr/bin/db2html /usr/bin/db2pdf /usr/bin/db2ps /usr/bin/db2rtf /usr/bin/db3_archive /usr/bin/db3_checkpoint /usr/bin/db3_deadlock /usr/bin/db3_dump /usr/bin/db3_dump185 /usr/bin/db3_load /usr/bin/db3_printlog /usr/bin/db3_recover /usr/bin/db3_stat /usr/bin/db3_upgrade /usr/bin/db3_verify /usr/bin/db4.2_archive /usr/bin/db4.2_checkpoint /usr/bin/db4.2_deadlock /usr/bin/db4.2_dump /usr/bin/db4.2_load /usr/bin/db4.2_printlog /usr/bin/db4.2_recover /usr/bin/db4.2_stat /usr/bin/db4.2_upgrade /usr/bin/db4.2_verify /usr/bin/db_archive /usr/bin/db_checkpoint /usr/bin/db_deadlock /usr/bin/db_dump /usr/bin/db_dump185 /usr/bin/dbforge /usr/bin/dbforge.gui /usr/bin/dbiprof /usr/bin/dbiproxy /usr/bin/db_load /usr/bin/dbmmanage /usr/bin/dbmmanage2 /usr/bin/db_printlog /usr/bin/db_recover /usr/bin/dbs-edit-patch /usr/bin/db_stat /usr/bin/dbus-cleanup-sockets /usr/bin/dbus-daemon-1 /usr/bin/dbverify /usr/bin/dc /usr/bin/dcalc /usr/bin/dcat /usr/bin/dch /usr/bin/dcop /usr/bin/dcopclient /usr/bin/dcopfind /usr/bin/dcopobject /usr/bin/dcopquit /usr/bin/dcopref /usr/bin/dcopserver /usr/bin/dcopserver_shutdown /usr/bin/dcopstart /usr/bin/ddate /usr/bin/ddd /usr/bin/deallocvt /usr/bin/debc /usr/bin/debchange /usr/bin/debclean /usr/bin/debconf /usr/bin/debconf2pot /usr/bin/debconf2po-update /usr/bin/debconf-communicate /usr/bin/debconf-copydb /usr/bin/debconf-getlang /usr/bin/debconf-get-selections /usr/bin/debconf-gettextize /usr/bin/debconf-loadtemplate /usr/bin/debconf-mergetemplate /usr/bin/debconf-set-selections /usr/bin/debconf-show /usr/bin/debconf-updatepo /usr/bin/debdiff /usr/bin/debget /usr/bin/debi /usr/bin/debiandoc2docbookxml /usr/bin/debiandoc2dvi /usr/bin/debiandoc2html /usr/bin/debiandoc2info /usr/bin/debiandoc2latex /usr/bin/debiandoc2latexdvi /usr/bin/debiandoc2latexpdf /usr/bin/debiandoc2latexps /usr/bin/debiandoc2pdf /usr/bin/debiandoc2ps /usr/bin/debiandoc2texinfo /usr/bin/debiandoc2text /usr/bin/debiandoc2textov /usr/bin/debian-mirrors /usr/bin/debman /usr/bin/debmirror /usr/bin/deborphan /usr/bin/debpkg /usr/bin/debrelease /usr/bin/debrsign /usr/bin/debsign /usr/bin/debstd /usr/bin/debsums /usr/bin/debugsh /usr/bin/debuild /usr/bin/debuild-pbuilder /usr/bin/deb-update-applet-gui /usr/bin/deb-update-applet-tui /usr/bin/defoma /usr/bin/defoma-app /usr/bin/defoma-font /usr/bin/defoma-hints /usr/bin/defoma-id /usr/bin/defoma-psfont-installer /usr/bin/defoma-reconfigure /usr/bin/defoma-subst /usr/bin/defoma-user /usr/bin/degrep /usr/bin/dehtmldiff /usr/bin/deliverquota /usr/bin/deliverquota.courier /usr/bin/desktop-file-install /usr/bin/desktop-file-validate /usr/bin/devdump /usr/bin/dexconf /usr/bin/dfgrep /usr/bin/dglob /usr/bin/dgrep /usr/bin/dh_builddeb /usr/bin/dh_clean /usr/bin/dh_compress /usr/bin/dh_desktop /usr/bin/dh_fixperms /usr/bin/dh_gconf /usr/bin/dh_gencontrol /usr/bin/dh_install /usr/bin/dh_installcatalogs /usr/bin/dh_installchangelogs /usr/bin/dh_installcron /usr/bin/dh_installdeb /usr/bin/dh_installdebconf /usr/bin/dh_installdefoma /usr/bin/dh_installdirs /usr/bin/dh_installdocs /usr/bin/dh_installemacsen /usr/bin/dh_installexamples /usr/bin/dh_installinfo /usr/bin/dh_installinit /usr/bin/dh_installkpatches /usr/bin/dh_installlogcheck /usr/bin/dh_installlogrotate /usr/bin/dh_installman /usr/bin/dh_installmanpages /usr/bin/dh_installmenu /usr/bin/dh_installmime /usr/bin/dh_installmodules /usr/bin/dh_installpam /usr/bin/dh_installppp /usr/bin/dh_installwm /usr/bin/dh_installxfonts /usr/bin/dh_installxmlcatalogs /usr/bin/dh_link /usr/bin/dh_listpackages /usr/bin/dh_make /usr/bin/dh-make-perl /usr/bin/dh_makeshlibs /usr/bin/dh_md5sums /usr/bin/dh_movefiles /usr/bin/dh_perl /usr/bin/dh_python /usr/bin/dh_scrollkeeper /usr/bin/dh_shlibdeps /usr/bin/dh_strip /usr/bin/dh_suidregister /usr/bin/dh_testdir /usr/bin/dh_testroot /usr/bin/dh_testversion /usr/bin/dh_undocumented /usr/bin/dh_usrlocal /usr/bin/dia /usr/bin/dia-gnome /usr/bin/dialog /usr/bin/dia-normal /usr/bin/dict /usr/bin/dictl /usr/bin/diff /usr/bin/diff3 /usr/bin/diffpp /usr/bin/diffstat /usr/bin/dig /usr/bin/dijkstra /usr/bin/dircolors /usr/bin/directomatic /usr/bin/dirmngr /usr/bin/dirmngr-client /usr/bin/dirname /usr/bin/dirsplit /usr/bin/discover-config /usr/bin/disdvi /usr/bin/diskd /usr/bin/diskseekd /usr/bin/disk_sreset /usr/bin/disk_stat /usr/bin/display /usr/bin/djpeg /usr/bin/djscript /usr/bin/dlpsh /usr/bin/dls /usr/bin/dmp /usr/bin/dnet-config /usr/bin/dns_browse /usr/bin/dns-helper /usr/bin/dns_tree /usr/bin/docbook2dvi /usr/bin/docbook2html /usr/bin/docbook2man /usr/bin/docbook2pdf /usr/bin/docbook2ps /usr/bin/docbook2rtf /usr/bin/docbook2tex /usr/bin/docbook2texi /usr/bin/docbook2txt /usr/bin/docbook-to-man /usr/bin/docker /usr/bin/dos2unix /usr/bin/dot /usr/bin/dot2gxl /usr/bin/dotlockfile /usr/bin/dotneato-config /usr/bin/dotty /usr/bin/do_unlinks /usr/bin/doxygen /usr/bin/doxytag /usr/bin/dpatch /usr/bin/dpatch-convert-diffgz /usr/bin/dpatch-edit-patch /usr/bin/dpatch-get-origtargz /usr/bin/dpatch-list-patch /usr/bin/dpigs /usr/bin/dpkg /usr/bin/dpkg2folder /usr/bin/dpkg-architecture /usr/bin/dpkg-awk /usr/bin/dpkg-break /usr/bin/dpkg-buildpackage /usr/bin/dpkg-checkbuilddeps /usr/bin/dpkg-deb /usr/bin/dpkg-depcheck /usr/bin/dpkg-distaddfile /usr/bin/dpkg-genbuilddeps /usr/bin/dpkg-genchanges /usr/bin/dpkg-gencontrol /usr/bin/dpkg-iaquery /usr/bin/dpkg-make-index /usr/bin/dpkg-name /usr/bin/dpkg-parsechangelog /usr/bin/dpkg-query /usr/bin/dpkg-scanpackages /usr/bin/dpkg-scansources /usr/bin/dpkg-shlibdeps /usr/bin/dpkg-source /usr/bin/dpkg-split /usr/bin/dprofpp /usr/bin/dpsch-auto-cronapt /usr/bin/dpsch-backupclean /usr/bin/dpsch-cvsclean /usr/bin/dpsch-gencvsignore /usr/bin/dpsch-gendepends /usr/bin/dpsch-genpkg /usr/bin/dpsch-installcfengine /usr/bin/dpsch-installcronapt /usr/bin/dpsch-installgroups /usr/bin/dpsch-installpatch /usr/bin/dpsch-installskel /usr/bin/dpsch-installuserpatch /usr/bin/dpsch-installusers /usr/bin/dpsch-installuserskel /usr/bin/dpsch-listbinpkgs /usr/bin/dpsch-showfirstbinpkg /usr/bin/dpsyco-applypatch /usr/bin/dpsyco-patch /usr/bin/dpsyco-skel /usr/bin/drkonqi /usr/bin/dropdb /usr/bin/droplang /usr/bin/dropuser /usr/bin/dscverify /usr/bin/dselect /usr/bin/dsirc /usr/bin/du /usr/bin/dubdv /usr/bin/dumbnet-config /usr/bin/dumphint /usr/bin/dumpkeys /usr/bin/dupload /usr/bin/dvconnect /usr/bin/dvi2fax /usr/bin/dvi2tty /usr/bin/dvicopy /usr/bin/dvidvi /usr/bin/dvihp /usr/bin/dvilj /usr/bin/dvilj2p /usr/bin/dvilj4 /usr/bin/dvilj4l /usr/bin/dvilj6 /usr/bin/dvipdf /usr/bin/dvipdfm /usr/bin/dvipdft /usr/bin/dvipng /usr/bin/dviprint /usr/bin/dvips /usr/bin/dvired /usr/bin/dvitomp /usr/bin/dvitype /usr/bin/dzgrep /usr/bin/e2pall /usr/bin/ebb /usr/bin/ebrowse /usr/bin/ebrowse.emacs21 /usr/bin/echo-client-2 /usr/bin/ed2k /usr/bin/ed2k.amule /usr/bin/ed2k.wrapper /usr/bin/ed2k.xmule /usr/bin/edit /usr/bin/editcap /usr/bin/editclient /usr/bin/editdiff /usr/bin/editor /usr/bin/efax /usr/bin/efix /usr/bin/efstool /usr/bin/egroupwarewizard /usr/bin/einitex /usr/bin/eject /usr/bin/elatex /usr/bin/elinks /usr/bin/ellcc /usr/bin/ellcc.xemacs21 /usr/bin/emacs /usr/bin/emacs21 /usr/bin/emacs21-x /usr/bin/emacsclient /usr/bin/emacsclient.emacs21 /usr/bin/enc2xs /usr/bin/enchant /usr/bin/enchant-lsmod /usr/bin/encodedv /usr/bin/enscript /usr/bin/entrigraph /usr/bin/env /usr/bin/envsubst /usr/bin/eog /usr/bin/eperl /usr/bin/epiphany /usr/bin/eps2eps /usr/bin/epsffit /usr/bin/epstopdf /usr/bin/eqn /usr/bin/eqn2graph /usr/bin/erb1.8 /usr/bin/esd /usr/bin/esd-config /usr/bin/espdiff /usr/bin/etags /usr/bin/etags.emacs21 /usr/bin/etags.xemacs21 /usr/bin/etex /usr/bin/etherape /usr/bin/ethereal /usr/bin/ethstatus /usr/bin/euro-test /usr/bin/eview /usr/bin/evim /usr/bin/evince /usr/bin/evince-thumbnailer /usr/bin/evirtex /usr/bin/evolution /usr/bin/evolution-2.2 /usr/bin/ex /usr/bin/exifautotran /usr/bin/expand /usr/bin/expiry /usr/bin/expr /usr/bin/extcheck /usr/bin/extconv /usr/bin/extensionproxy /usr/bin/extract_a52 /usr/bin/extractkmdr /usr/bin/extractres /usr/bin/extresso /usr/bin/ext_skel /usr/bin/ext_skel4 /usr/bin/eyuvtoppm /usr/bin/factor /usr/bin/faillog /usr/bin/faked-sysv /usr/bin/faked-tcp /usr/bin/fakeroot /usr/bin/fakeroot-sysv /usr/bin/fakeroot-tcp /usr/bin/fax /usr/bin/fax2ps /usr/bin/fax2tiff /usr/bin/fbxine /usr/bin/fc-cache /usr/bin/fc-list /usr/bin/fc-match /usr/bin/fdf2tan /usr/bin/fdformat /usr/bin/fdlist /usr/bin/fdmount /usr/bin/fdmountd /usr/bin/fdp /usr/bin/fdrawcmd /usr/bin/fdumount /usr/bin/fdupes /usr/bin/feedbrowser /usr/bin/ffind /usr/bin/ffmpeg /usr/bin/ffmpeg-config /usr/bin/ffplay /usr/bin/ffserver /usr/bin/fiascotopnm /usr/bin/fig2dev /usr/bin/fig2ps2tex /usr/bin/filan /usr/bin/file /usr/bin/file-roller /usr/bin/filesharelist /usr/bin/fileshareset /usr/bin/filterdiff /usr/bin/find /usr/bin/find2perl /usr/bin/findaffix /usr/bin/finger /usr/bin/fitstopnm /usr/bin/fix_bs_and_del /usr/bin/fixcvsdiff /usr/bin/fixdlsrps /usr/bin/fixfmps /usr/bin/fixincludes /usr/bin/fixmacps /usr/bin/fixmswrd.pl /usr/bin/fixnt /usr/bin/fixps /usr/bin/fixpsditps /usr/bin/fixpspps /usr/bin/fixscribeps /usr/bin/fixtpps /usr/bin/fixwfwps /usr/bin/fixwpps /usr/bin/fixwwps /usr/bin/flac /usr/bin/flashkard /usr/bin/flawfinder /usr/bin/flex /usr/bin/fliccd /usr/bin/flipdiff /usr/bin/floppycontrol /usr/bin/floppymeter /usr/bin/fls /usr/bin/fmt /usr/bin/fmtutil /usr/bin/fold /usr/bin/font2c /usr/bin/font2psf /usr/bin/fontexport /usr/bin/fontimport /usr/bin/fontinst /usr/bin/foomatic-combo-xml /usr/bin/foomatic-compiledb /usr/bin/foomatic-configure /usr/bin/foomatic-datafile /usr/bin/foomatic-gswrapper /usr/bin/foomatic-gui /usr/bin/foomatic-perl-data /usr/bin/foomatic-ppdfile /usr/bin/foomatic-ppd-options /usr/bin/foomatic-printjob /usr/bin/foomatic-rip /usr/bin/formail /usr/bin/fort /usr/bin/fping /usr/bin/fping6 /usr/bin/free /usr/bin/freetype-config /usr/bin/fribidi /usr/bin/fribidi-config /usr/bin/from /usr/bin/fromdos /usr/bin/fsstat /usr/bin/fstopgm /usr/bin/ftdump1 /usr/bin/fterror /usr/bin/ftlint1 /usr/bin/ftmetric /usr/bin/ftp /usr/bin/ftpcount /usr/bin/ftpdctl /usr/bin/ftptop /usr/bin/ftpwho /usr/bin/ftsbit /usr/bin/ftstring1 /usr/bin/ftstrpnm /usr/bin/ftstrtto /usr/bin/fttimer1 /usr/bin/ftview1 /usr/bin/ftzoom /usr/bin/funzip /usr/bin/g++ /usr/bin/g++-2.95 /usr/bin/g++-3.2 /usr/bin/g++-3.3 /usr/bin/g3topbm /usr/bin/gabber /usr/bin/gaim /usr/bin/gaim-remote /usr/bin/gamma4scanimage /usr/bin/gawk /usr/bin/gbklatex /usr/bin/gc /usr/bin/gcalctool /usr/bin/gcc /usr/bin/gcc-2.95 /usr/bin/gcc-3.2 /usr/bin/gcc-3.3 /usr/bin/gccbug /usr/bin/gccbug-3.2 /usr/bin/gccbug-3.3 /usr/bin/gconfd-1 /usr/bin/gconf-editor /usr/bin/gconfigger /usr/bin/gconf-merge-tree /usr/bin/gconf-sanity-check-1 /usr/bin/gconftool /usr/bin/gconftool-1 /usr/bin/gconftool-2 /usr/bin/gcov /usr/bin/gcov-2.95 /usr/bin/gcov-3.2 /usr/bin/gcov-3.3 /usr/bin/gda-config-tool /usr/bin/gda-report-test /usr/bin/gda-run /usr/bin/gda-test /usr/bin/gdb /usr/bin/gdbserver /usr/bin/gdbtui /usr/bin/gdialog /usr/bin/gdk-pixbuf-config /usr/bin/gdk-pixbuf-csource /usr/bin/gdk-pixbuf-query-loaders /usr/bin/gdm /usr/bin/gdmchooser /usr/bin/gdmflexiserver /usr/bin/gdmgreeter /usr/bin/gdmlogin /usr/bin/gdmphotosetup /usr/bin/gdmsetup /usr/bin/gdmthemetester /usr/bin/gdmXnest /usr/bin/gdmXnestchooser /usr/bin/gedi /usr/bin/gemtopbm /usr/bin/gemtopnm /usr/bin/gencat /usr/bin/gendiff /usr/bin/genksyms /usr/bin/genresscript /usr/bin/geqn /usr/bin/GET /usr/bin/getafm /usr/bin/getafm-freetype /usr/bin/getconf /usr/bin/get-edid /usr/bin/getent /usr/bin/getfdprm /usr/bin/gethostip /usr/bin/getkeycodes /usr/bin/getls-lR /usr/bin/getopt /usr/bin/getpeername /usr/bin/gettext /usr/bin/gettextize /usr/bin/gettext.sh /usr/bin/gfloppy /usr/bin/gfplus /usr/bin/gfserver /usr/bin/gftodvi /usr/bin/gftopk /usr/bin/gftype /usr/bin/ggv /usr/bin/ghns /usr/bin/gif2tiff /usr/bin/giftopnm /usr/bin/gimp /usr/bin/gimp-2.2 /usr/bin/gimpprint-config /usr/bin/gimp-remote /usr/bin/gimp-remote-2.2 /usr/bin/gkrellm /usr/bin/gksu /usr/bin/gksudo /usr/bin/gksuexec /usr/bin/glade-2 /usr/bin/glib-config /usr/bin/glib-genmarshal /usr/bin/glib-gettextize /usr/bin/glib-mkenums /usr/bin/gnome-about /usr/bin/gnome-accessibility-keyboard-properties /usr/bin/gnome-at-properties /usr/bin/gnome-audio-profiles-properties /usr/bin/gnome-background-properties /usr/bin/gnome-bug /usr/bin/gnome-calculator /usr/bin/gnome-cd /usr/bin/gnome-cd-properties /usr/bin/gnome-character-map /usr/bin/gnome-config /usr/bin/gnome-control-center /usr/bin/gnome-cups-add /usr/bin/gnome-cups-icon /usr/bin/gnome-cups-manager /usr/bin/gnome-db2html /usr/bin/gnome-default-applications-properties /usr/bin/gnome-desktop-item-edit /usr/bin/gnome-dictionary /usr/bin/gnome-display-properties /usr/bin/gnome-doc /usr/bin/gnome-doc-prepare /usr/bin/gnome-dump-metadata /usr/bin/gnome-font-install /usr/bin/gnome-font-properties /usr/bin/gnome-font-viewer /usr/bin/gnome-gen-mimedb /usr/bin/gnome-gv /usr/bin/gnome-help /usr/bin/gnome-keybinding-properties /usr/bin/gnome-keyboard-properties /usr/bin/gnome-keyring-daemon /usr/bin/gnomemeeting /usr/bin/gnomemeeting-config-tool /usr/bin/gnome-menu-spec-test /usr/bin/gnome-mkstub /usr/bin/gnome-mouse-properties /usr/bin/gnome-moz-remote /usr/bin/gnome-name-service /usr/bin/gnome-nettool /usr/bin/gnome-network-preferences /usr/bin/gnome-open /usr/bin/gnome-panel /usr/bin/gnome-panel-screenshot /usr/bin/gnome-pilot-make-password /usr/bin/gnome-screenshot /usr/bin/gnome-search-tool /usr/bin/gnome_segv /usr/bin/gnome-session /usr/bin/gnome-session-properties /usr/bin/gnome-session-remove /usr/bin/gnome-session-save /usr/bin/gnome-settings-daemon /usr/bin/gnome-smproxy /usr/bin/gnome-sound-properties /usr/bin/gnome-sound-recorder /usr/bin/gnome-sudo /usr/bin/gnome-system-log /usr/bin/gnome-system-monitor /usr/bin/gnome-terminal /usr/bin/gnome-terminal.wrapper /usr/bin/gnome-text-editor /usr/bin/gnome-theme-manager /usr/bin/gnome-theme-thumbnailer /usr/bin/gnome-thumbnail-font /usr/bin/gnome-typing-monitor /usr/bin/gnome-ui-properties /usr/bin/gnomevfs-cat /usr/bin/gnomevfs-copy /usr/bin/gnomevfs-info /usr/bin/gnomevfs-ls /usr/bin/gnomevfs-mkdir /usr/bin/gnomevfs-mv /usr/bin/gnomevfs-rm /usr/bin/gnome-video-thumbnailer /usr/bin/gnome-volume-control /usr/bin/gnome-window-properties /usr/bin/gnome-wm /usr/bin/gnuattach /usr/bin/gnuattach.xemacs21 /usr/bin/gnuclient /usr/bin/gnuclient.xemacs21 /usr/bin/gnudoit /usr/bin/gnudoit.xemacs21 /usr/bin/gnumeric /usr/bin/gnuplot /usr/bin/goad-browser /usr/bin/gobject-query /usr/bin/gouldtoppm /usr/bin/gpasswd /usr/bin/gpdf /usr/bin/gpg /usr/bin/gpg2 /usr/bin/gpg-agent /usr/bin/gpgconf /usr/bin/gpg-convert-from-106 /usr/bin/gpg-error /usr/bin/gpg-error-config /usr/bin/gpgp /usr/bin/gpgsm /usr/bin/gpgsm-gencert.sh /usr/bin/gpgsplit /usr/bin/gpgv /usr/bin/gpgv2 /usr/bin/gpic /usr/bin/gpilot-applet /usr/bin/gpilotd /usr/bin/gpilotd-control-applet /usr/bin/gpilotd-session-wrapper /usr/bin/gpilot-install-file /usr/bin/gprof /usr/bin/gqcam /usr/bin/gramps /usr/bin/grep-aptavail /usr/bin/grep-available /usr/bin/grep-changelog /usr/bin/grep-changelog.emacs21 /usr/bin/grep-dctrl /usr/bin/grepdiff /usr/bin/grep-excuses /usr/bin/grep-status /usr/bin/gretl /usr/bin/gretlcli /usr/bin/gretl_x11 /usr/bin/grn /usr/bin/grodvi /usr/bin/groff /usr/bin/groffer /usr/bin/grog /usr/bin/grolbp /usr/bin/grolj4 /usr/bin/grops /usr/bin/grotty /usr/bin/groups /usr/bin/groupwarewizard /usr/bin/gs /usr/bin/gsbj /usr/bin/gsdj /usr/bin/gsdj500 /usr/bin/gsftopk /usr/bin/gs-gpl /usr/bin/gshell /usr/bin/gslj /usr/bin/gslp /usr/bin/gsnd /usr/bin/gst-complete /usr/bin/gst-complete-0.8 /usr/bin/gst-compprep-0.6 /usr/bin/gst-compprep-0.8 /usr/bin/gst-feedback /usr/bin/gst-feedback-0.8 /usr/bin/gst-inspect /usr/bin/gst-inspect-0.8 /usr/bin/gst-launch /usr/bin/gst-launch-0.8 /usr/bin/gst-launch-ext /usr/bin/gst-launch-ext-0.8 /usr/bin/gst-md5sum /usr/bin/gst-md5sum-0.8 /usr/bin/gstreamer-properties /usr/bin/gst-register-0.6 /usr/bin/gst-register-0.8 /usr/bin/gst-typefind /usr/bin/gst-typefind-0.8 /usr/bin/gst-visualise /usr/bin/gst-visualise-0.8 /usr/bin/gst-xmlinspect /usr/bin/gst-xmlinspect-0.8 /usr/bin/gst-xmllaunch /usr/bin/gst-xmllaunch-0.8 /usr/bin/gtbl /usr/bin/gthumb /usr/bin/gtk-config /usr/bin/gtk-query-immodules-2.0 /usr/bin/gtksee /usr/bin/gtk-update-icon-cache /usr/bin/guards /usr/bin/gucharmap /usr/bin/gv /usr/bin/gvcolor /usr/bin/gvpack /usr/bin/gvpr /usr/bin/gxditview /usr/bin/gxine /usr/bin/gxine_client /usr/bin/gxl2dot /usr/bin/h2ph /usr/bin/h2xs /usr/bin/hal-get-property /usr/bin/hal-set-property /usr/bin/hattrib /usr/bin/hbf2gf /usr/bin/hcd /usr/bin/hcopy /usr/bin/hd /usr/bin/hdel /usr/bin/hdir /usr/bin/head /usr/bin/HEAD /usr/bin/help2man /usr/bin/helpviewer /usr/bin/helpztags /usr/bin/hexdump /usr/bin/hfind /usr/bin/hformat /usr/bin/hinotes /usr/bin/hipstopgm /usr/bin/hls /usr/bin/hman /usr/bin/hmkdir /usr/bin/hmount /usr/bin/honeyd /usr/bin/honeydctl /usr/bin/host /usr/bin/hostid /usr/bin/hpcdtoppm /usr/bin/hpftodit /usr/bin/hpset /usr/bin/hpwd /usr/bin/hrename /usr/bin/hrmdir /usr/bin/ht /usr/bin/htdbm /usr/bin/htdigest /usr/bin/htdigest2 /usr/bin/htlatex /usr/bin/html2png /usr/bin/html2text /usr/bin/HtmlConverter /usr/bin/htmltoc /usr/bin/htpasswd /usr/bin/htpasswd2 /usr/bin/httex /usr/bin/httexi /usr/bin/httpush /usr/bin/humount /usr/bin/hvol /usr/bin/hyperlatex /usr/bin/i386-linux-cpp /usr/bin/i386-linux-cpp-3.2 /usr/bin/i386-linux-g++ /usr/bin/i386-linux-g++-3.2 /usr/bin/i386-linux-gcc /usr/bin/i386-linux-gcc-3.2 /usr/bin/i486-linux-gnu-cpp-3.3 /usr/bin/i486-linux-gnu-g++-3.3 /usr/bin/i486-linux-gnu-gcc-3.3 /usr/bin/ical2vcal /usr/bin/icat /usr/bin/icat-sleuthkit /usr/bin/icombine /usr/bin/icontopbm /usr/bin/iconv /usr/bin/iconx /usr/bin/icotool /usr/bin/id /usr/bin/ident /usr/bin/identify /usr/bin/idlj /usr/bin/ietf2datebook /usr/bin/ifind /usr/bin/ifnames /usr/bin/ifnames2.13 /usr/bin/igal /usr/bin/igawk /usr/bin/ijoin /usr/bin/ilbmtoppm /usr/bin/ils /usr/bin/ils-sleuthkit /usr/bin/im /usr/bin/im2.3 /usr/bin/imagetops /usr/bin/img2png /usr/bin/img2py /usr/bin/img2xpm /usr/bin/imgsize /usr/bin/img_stat /usr/bin/imgtoppm /usr/bin/imlib-config /usr/bin/import /usr/bin/includeres /usr/bin/indent /usr/bin/indiserver /usr/bin/indxbib /usr/bin/info /usr/bin/infobrowser /usr/bin/infocmp /usr/bin/infokey /usr/bin/infotocap /usr/bin/inimf /usr/bin/inimpost /usr/bin/iniomega /usr/bin/initex /usr/bin/install /usr/bin/install-datebook /usr/bin/install-expenses /usr/bin/install-hinote /usr/bin/install-memo /usr/bin/install-menu /usr/bin/install-netsync /usr/bin/install-todo /usr/bin/install-todos /usr/bin/install-user /usr/bin/instant /usr/bin/instmodsh /usr/bin/interdiff /usr/bin/intltool-extract /usr/bin/intltoolize /usr/bin/intltool-merge /usr/bin/intltool-prepare /usr/bin/intltool-update /usr/bin/iostat /usr/bin/ipcalc /usr/bin/ipcrm /usr/bin/ipcs /usr/bin/ipv4calc /usr/bin/irb /usr/bin/irb1.8 /usr/bin/irc /usr/bin/ircII /usr/bin/irkick /usr/bin/isamchk /usr/bin/isamlog /usr/bin/iselect /usr/bin/isodump /usr/bin/isoinfo /usr/bin/isovfy /usr/bin/ispell /usr/bin/ispell-wrapper /usr/bin/istat /usr/bin/itclsh /usr/bin/itclsh3.1 /usr/bin/jack_bufsize /usr/bin/jack_connect /usr/bin/jackd /usr/bin/jack_disconnect /usr/bin/jack_freewheel /usr/bin/jack_impulse_grabber /usr/bin/jack_load /usr/bin/jack_lsp /usr/bin/jack_metro /usr/bin/jack_monitor_client /usr/bin/jackrec /usr/bin/jack_showtime /usr/bin/jack_simple_client /usr/bin/jackstart /usr/bin/jack_transport /usr/bin/jack_unload /usr/bin/jade /usr/bin/jadetex /usr/bin/jar /usr/bin/jarsigner /usr/bin/java /usr/bin/javac /usr/bin/javadoc /usr/bin/javah /usr/bin/javap /usr/bin/javaws /usr/bin/jcat /usr/bin/jdb /usr/bin/jls /usr/bin/jmacs /usr/bin/joe /usr/bin/join /usr/bin/jpegexiforient /usr/bin/jpegtopnm /usr/bin/jpegtran /usr/bin/jpico /usr/bin/jstar /usr/bin/juk /usr/bin/jw /usr/bin/k3b /usr/bin/k3bsetup /usr/bin/kab2kabc /usr/bin/kabc2mutt /usr/bin/kaboodle /usr/bin/kaccess /usr/bin/kaddprinterwizard /usr/bin/kaddressbook /usr/bin/kalarm /usr/bin/kalarmd /usr/bin/kalzium /usr/bin/kandy /usr/bin/kandy_client /usr/bin/kappfinder /usr/bin/karbon /usr/bin/karm /usr/bin/kate /usr/bin/kaudiocreator /usr/bin/kbabel /usr/bin/kbabeldict /usr/bin/kbanner.kss /usr/bin/kbd-config /usr/bin/kbd_mode /usr/bin/kblankscrn.kss /usr/bin/kblob.kss /usr/bin/kbruch /usr/bin/kbuildsycoca /usr/bin/kbxutil /usr/bin/kcalc /usr/bin/kcharselect /usr/bin/kchart /usr/bin/kcheckpass /usr/bin/kclock.kss /usr/bin/kcminit /usr/bin/kcmshell /usr/bin/kcolorchooser /usr/bin/kcoloredit /usr/bin/kconfig_compiler /usr/bin/kconf_update /usr/bin/kcontrol /usr/bin/kcontroledit /usr/bin/kcookiejar /usr/bin/kcron /usr/bin/kdat /usr/bin/kdcop /usr/bin/kdebugdialog /usr/bin/kde-config /usr/bin/kded /usr/bin/kdeeject /usr/bin/kdeinit /usr/bin/kdeinit_shutdown /usr/bin/kdeinit_wrapper /usr/bin/kdeinstallktheme /usr/bin/kde-menu /usr/bin/kdepasswd /usr/bin/kdeprintfax /usr/bin/kdesktop /usr/bin/kdesktop_lock /usr/bin/kdessh /usr/bin/kdesu /usr/bin/kdesud /usr/bin/kdesu_stub /usr/bin/kdf /usr/bin/kdialog /usr/bin/kdict /usr/bin/kdoc /usr/bin/kdontchangethehostname /usr/bin/kdvi /usr/bin/kedit /usr/bin/keditfiletype /usr/bin/keduca /usr/bin/keducabuilder /usr/bin/keuphoria.kss /usr/bin/keytool /usr/bin/kfax /usr/bin/kfile /usr/bin/kfind /usr/bin/kfiresaver.kss /usr/bin/kfloppy /usr/bin/kflux.kss /usr/bin/kfmexec /usr/bin/kfontinst /usr/bin/kfontview /usr/bin/kformula /usr/bin/kfountain.kss /usr/bin/kget /usr/bin/kghostview /usr/bin/kgpg /usr/bin/kgpgcertmanager /usr/bin/kgrantpty /usr/bin/kgravity.kss /usr/bin/khangman /usr/bin/khc_indexbuilder /usr/bin/khelpcenter /usr/bin/khexedit /usr/bin/khotkeys /usr/bin/khotnewstuff /usr/bin/kicker /usr/bin/kiconedit /usr/bin/kig /usr/bin/killall /usr/bin/kimage_concat /usr/bin/kinfocenter /usr/bin/kinstalltheme /usr/bin/kio_devices_mounthelper /usr/bin/kioexec /usr/bin/kio_http_cache_cleaner /usr/bin/kioslave /usr/bin/kio_uiserver /usr/bin/kit /usr/bin/kitchensync /usr/bin/kiten /usr/bin/kitengen /usr/bin/kivio /usr/bin/kjobviewer /usr/bin/kjots /usr/bin/klaptop_acpi_helper /usr/bin/klaptop_check /usr/bin/klatin /usr/bin/klauncher /usr/bin/klettres /usr/bin/klines.kss /usr/bin/klinkstatus /usr/bin/klipper /usr/bin/klocaldomainurifilterhelper /usr/bin/klorenz.kss /usr/bin/kmail /usr/bin/kmail_antivir.sh /usr/bin/kmail_clamav.sh /usr/bin/kmailcvt /usr/bin/kmail_fprot.sh /usr/bin/kmail_sav.sh /usr/bin/kmailservice /usr/bin/kmdr2po /usr/bin/kmdr-editor /usr/bin/kmdr-executor /usr/bin/kmdr-plugins /usr/bin/kmenuedit /usr/bin/kmessedwords /usr/bin/kmid /usr/bin/kmix /usr/bin/kmixctrl /usr/bin/kmplot /usr/bin/knewstickerstub /usr/bin/knode /usr/bin/knotes /usr/bin/koconverter /usr/bin/kodo /usr/bin/kolabwizard /usr/bin/kolourpaint /usr/bin/konsole /usr/bin/konsolekalendar /usr/bin/kontact /usr/bin/kooka /usr/bin/kopete /usr/bin/kopete_latexconvert.sh /usr/bin/korgac /usr/bin/korganizer /usr/bin/korganizerIn /usr/bin/korn /usr/bin/koscript /usr/bin/koshell /usr/bin/kpac_dhcp_helper /usr/bin/kpackage /usr/bin/kpager /usr/bin/kpaint /usr/bin/kpalmdoc /usr/bin/kpartsaver.kss /usr/bin/kpdf /usr/bin/kpendulum.kss /usr/bin/kpercentage /usr/bin/kpersonalizer /usr/bin/kpilot /usr/bin/kpilotDaemon /usr/bin/kpm /usr/bin/kpolygon.kss /usr/bin/kpovmodeler /usr/bin/kppp /usr/bin/kppplogview /usr/bin/kprconverter.pl /usr/bin/kpresenter /usr/bin/kprinter /usr/bin/kpsepath /usr/bin/kpsestat /usr/bin/kpsetool /usr/bin/kpsewhich /usr/bin/kpsexpand /usr/bin/krandom.kss /usr/bin/krandrinithack /usr/bin/krandrtray /usr/bin/krb5-config /usr/bin/krdb /usr/bin/krdc /usr/bin/kreadconfig /usr/bin/krec /usr/bin/kregexpeditor /usr/bin/krfb /usr/bin/krfb_httpd /usr/bin/krita /usr/bin/krotation.kss /usr/bin/kruler /usr/bin/kscd /usr/bin/kscience.kss /usr/bin/ksendbugmail /usr/bin/kshell /usr/bin/ksig /usr/bin/ksirc /usr/bin/kslideshow.kss /usr/bin/ksmserver /usr/bin/ksnapshot /usr/bin/ksolarwinds.kss /usr/bin/kspace.kss /usr/bin/ksplash /usr/bin/kspread /usr/bin/kstars /usr/bin/kstart /usr/bin/ksvgtopng /usr/bin/kswarm.kss /usr/bin/ksymoops /usr/bin/ksync /usr/bin/ksysguard /usr/bin/ksysguardd /usr/bin/ksystraycmd /usr/bin/ksysv /usr/bin/kteatime /usr/bin/ktelnetservice /usr/bin/kthesaurus /usr/bin/ktimer /usr/bin/ktip /usr/bin/ktnef /usr/bin/ktouch /usr/bin/ktradertest /usr/bin/kturtle /usr/bin/ktux /usr/bin/kudesigner /usr/bin/kugar /usr/bin/kuickshow /usr/bin/kuser /usr/bin/kverbos /usr/bin/kview /usr/bin/kviewshell /usr/bin/kvoctrain /usr/bin/kwalletmanager /usr/bin/kwave.kss /usr/bin/kweatherreport /usr/bin/kweatherservice /usr/bin/kwebdesktop /usr/bin/kwifimanager /usr/bin/kwikdisk /usr/bin/kwin /usr/bin/kwin_killer_helper /usr/bin/kwin_rules_dialog /usr/bin/kword /usr/bin/kwordquiz /usr/bin/kworldclock /usr/bin/kwrapper /usr/bin/kwrite /usr/bin/kwriteconfig /usr/bin/kxkb /usr/bin/kxsconfig /usr/bin/kxsrun /usr/bin/lablgl /usr/bin/lablglut /usr/bin/labltk /usr/bin/lacheck /usr/bin/lambda /usr/bin/langen2kvtml /usr/bin/last /usr/bin/lastb /usr/bin/lastlog /usr/bin/latex /usr/bin/latex2html /usr/bin/lcf /usr/bin/ld /usr/bin/ld86 /usr/bin/ldd /usr/bin/lddlibc4 /usr/bin/leaftoppm /usr/bin/lefty /usr/bin/less /usr/bin/lessecho /usr/bin/lessfile /usr/bin/lesskey /usr/bin/lesspipe /usr/bin/lex /usr/bin/lexgrog /usr/bin/libart2-config /usr/bin/libart-config /usr/bin/libgcrypt-config /usr/bin/libglade-config /usr/bin/libglade-convert /usr/bin/libglade-xgettext /usr/bin/libgnutls-config /usr/bin/libgnutls-extra-config /usr/bin/libIDL-config /usr/bin/libIDL-config-2 /usr/bin/libnetcfg /usr/bin/libnet-config /usr/bin/libpng12-config /usr/bin/libpng-config /usr/bin/libtasn1-config /usr/bin/libtool /usr/bin/libtoolize /usr/bin/libusb-config /usr/bin/linda /usr/bin/line /usr/bin/link /usr/bin/links /usr/bin/links.main /usr/bin/lintian /usr/bin/lintian-info /usr/bin/linuxdoc /usr/bin/linux_logo /usr/bin/lispmtopgm /usr/bin/list_audio_tracks /usr/bin/lkbib /usr/bin/llexec /usr/bin/llines /usr/bin/lneato /usr/bin/lnkforward /usr/bin/lnusertemp /usr/bin/loadshlib /usr/bin/locale /usr/bin/localedef /usr/bin/locate /usr/bin/lockfile /usr/bin/lockfile-create /usr/bin/lockfile-remove /usr/bin/lockfile-touch /usr/bin/lockvc /usr/bin/lockvs /usr/bin/logger /usr/bin/logname /usr/bin/look /usr/bin/lookbib /usr/bin/lorder /usr/bin/lore /usr/bin/lore2.3 /usr/bin/lp /usr/bin/lpq /usr/bin/lpr /usr/bin/lprm /usr/bin/lprsetup.sh /usr/bin/lpstat /usr/bin/lrelease /usr/bin/lsattr /usr/bin/lsdev /usr/bin/lsdiff /usr/bin/lshal /usr/bin/lskpatches /usr/bin/lsof /usr/bin/lspci /usr/bin/lspgpot /usr/bin/lss16toppm /usr/bin/lsusb /usr/bin/ltrace /usr/bin/lupdate /usr/bin/lwp-download /usr/bin/lwp-mirror /usr/bin/lwp-request /usr/bin/lwp-rget /usr/bin/lx200_16 /usr/bin/lx200autostar /usr/bin/lx200classic /usr/bin/lx200generic /usr/bin/lx200gps /usr/bin/lx200xed /usr/bin/lynx /usr/bin/lynx.stable /usr/bin/lyx /usr/bin/lyx-qt /usr/bin/lz /usr/bin/m4 /usr/bin/macptopbm /usr/bin/mactime /usr/bin/mactime-sleuthkit /usr/bin/mad /usr/bin/madison-lite /usr/bin/mag /usr/bin/magicdev /usr/bin/mail /usr/bin/Mail /usr/bin/maildiracl /usr/bin/maildirkw /usr/bin/maildirmake /usr/bin/maildirmake.courier /usr/bin/mail-files /usr/bin/mail-lock /usr/bin/mailmail /usr/bin/mailmail2.3 /usr/bin/mailq /usr/bin/mailshar /usr/bin/mailstat /usr/bin/mail-touchlock /usr/bin/mail-unlock /usr/bin/mailx /usr/bin/make /usr/bin/makedat /usr/bin/make_driver_db_cups /usr/bin/make_driver_db_lpr /usr/bin/makeindex /usr/bin/makeinfo /usr/bin/makekdedoc /usr/bin/makekdewidgets /usr/bin/make-kpkg /usr/bin/make-memtest86-boot-floppy /usr/bin/makempx /usr/bin/makempy /usr/bin/makepasswd /usr/bin/MakeTeXPK /usr/bin/man /usr/bin/man2html /usr/bin/mandb /usr/bin/manhole /usr/bin/manhole2.3 /usr/bin/manpath /usr/bin/mattrib /usr/bin/mawk /usr/bin/mbadblocks /usr/bin/mbmon /usr/bin/mbmon-rrd /usr/bin/mcat /usr/bin/mcd /usr/bin/mcheck /usr/bin/mcomp /usr/bin/mcookie /usr/bin/mcopy /usr/bin/mcp /usr/bin/md5sum /usr/bin/mdatopbm /usr/bin/mdel /usr/bin/mdeltree /usr/bin/mdetect /usr/bin/mdir /usr/bin/mdu /usr/bin/meinproc /usr/bin/memos /usr/bin/merge /usr/bin/mergecap /usr/bin/mergechanges /usr/bin/mesg /usr/bin/metaflac /usr/bin/mev /usr/bin/mf /usr/bin/mf-nowin /usr/bin/mformat /usr/bin/mft /usr/bin/mfw /usr/bin/mgrtopbm /usr/bin/midisend /usr/bin/minfo /usr/bin/minicom /usr/bin/mini-inetd /usr/bin/mirror /usr/bin/mirror-master /usr/bin/mirrors /usr/bin/mk4ht /usr/bin/mkafmmap /usr/bin/mkcamlp4 /usr/bin/mk_cmds /usr/bin/mkfifo /usr/bin/mkfontdesc /usr/bin/mkhybrid /usr/bin/mkindex /usr/bin/mkisofs /usr/bin/mkls-lR /usr/bin/mkmanifest /usr/bin/mk_modmap /usr/bin/mkocp /usr/bin/mkofm /usr/bin/mkpasswd /usr/bin/mktap /usr/bin/mktap2.3 /usr/bin/mktexfmt /usr/bin/mktexlsr /usr/bin/mktexmf /usr/bin/mktexpk /usr/bin/mktextfm /usr/bin/mkzftree /usr/bin/mlabel /usr/bin/mlchat /usr/bin/mlchat_say /usr/bin/mln /usr/bin/mmd /usr/bin/mmencode /usr/bin/mmls /usr/bin/mmount /usr/bin/mmove /usr/bin/mmroff /usr/bin/mmstat /usr/bin/mmv /usr/bin/moc /usr/bin/moc-qt2 /usr/bin/moc-qt3 /usr/bin/mogrify /usr/bin/money2qif /usr/bin/moniker-test /usr/bin/montage /usr/bin/movemail /usr/bin/mozilla-1.7.8 /usr/bin/mozilla-suite /usr/bin/mp3burn /usr/bin/mp3-decoder /usr/bin/mp4h /usr/bin/mpack /usr/bin/mpage /usr/bin/mpartition /usr/bin/mpeglibartsplay /usr/bin/mpg123 /usr/bin/mpg321 /usr/bin/mpost /usr/bin/mpstat /usr/bin/mpto /usr/bin/mptopdf /usr/bin/mrd /usr/bin/mren /usr/bin/mrmlsearch /usr/bin/msgattrib /usr/bin/msgcat /usr/bin/msgcmp /usr/bin/msgcomm /usr/bin/msgconv /usr/bin/msgen /usr/bin/msgexec /usr/bin/msgfilter /usr/bin/msgfmt /usr/bin/msggrep /usr/bin/msginit /usr/bin/msgmerge /usr/bin/msgunfmt /usr/bin/msguniq /usr/bin/mshowfat /usr/bin/msql2mysql /usr/bin/mtools /usr/bin/mtoolstest /usr/bin/mtr /usr/bin/mtrace /usr/bin/mtvtoppm /usr/bin/mtype /usr/bin/multicd /usr/bin/munchlist /usr/bin/munpack /usr/bin/mutt /usr/bin/mutt_dotlock /usr/bin/mxtar /usr/bin/myisamchk /usr/bin/myisam_ftdump /usr/bin/myisamlog /usr/bin/myisampack /usr/bin/my_print_defaults /usr/bin/mysql /usr/bin/mysqlaccess /usr/bin/mysqladmin /usr/bin/mysqlbinlog /usr/bin/mysqlbug /usr/bin/mysqlcheck /usr/bin/mysql_config /usr/bin/mysql_convert_table_format /usr/bin/mysqld_multi /usr/bin/mysqld_safe /usr/bin/mysqldump /usr/bin/mysqldumpslow /usr/bin/mysql_explain_log /usr/bin/mysql_find_rows /usr/bin/mysql_fix_extensions /usr/bin/mysql_fix_privilege_tables /usr/bin/mysqlhotcopy /usr/bin/mysqlimport /usr/bin/mysql_install_db /usr/bin/mysqlmanager /usr/bin/mysqlmanagerc /usr/bin/mysqlmanager-pwgen /usr/bin/mysql_secure_installation /usr/bin/mysql_setpermission /usr/bin/mysqlshow /usr/bin/mysql_tableinfo /usr/bin/mysqltest /usr/bin/mysql_waitpid /usr/bin/mysql_zap /usr/bin/mzip /usr/bin/namei /usr/bin/nano /usr/bin/nasl /usr/bin/nasl-config /usr/bin/native2ascii /usr/bin/nautilus-cd-burner /usr/bin/nawk /usr/bin/ncal /usr/bin/ncftp /usr/bin/ncftp3 /usr/bin/ncftpbatch /usr/bin/ncftpbookmarks /usr/bin/ncftpget /usr/bin/ncftpls /usr/bin/ncftpput /usr/bin/ncftpspooler /usr/bin/neato /usr/bin/neotoppm /usr/bin/neqn /usr/bin/nessus /usr/bin/nessus-build /usr/bin/nessus-config /usr/bin/nessus-fetch /usr/bin/nessus-mkcert-client /usr/bin/nessus-mkrand /usr/bin/net /usr/bin/netkit-ftp /usr/bin/netselect /usr/bin/network-admin /usr/bin/newaliases /usr/bin/newer /usr/bin/newgrp /usr/bin/new-object /usr/bin/nex /usr/bin/ngettext /usr/bin/nice /usr/bin/nl /usr/bin/nm /usr/bin/nm86 /usr/bin/nmap /usr/bin/nmblookup /usr/bin/nmicmpd /usr/bin/nmtrapd /usr/bin/noatun /usr/bin/noatunsynaescope.bin /usr/bin/noatuntippecanoe.bin /usr/bin/noatuntyler.bin /usr/bin/nodefs /usr/bin/nohup /usr/bin/noindex /usr/bin/nop /usr/bin/normalize /usr/bin/normalize-mp3 /usr/bin/normalize-ogg /usr/bin/noroff /usr/bin/noroots /usr/bin/notangle /usr/bin/nountangle /usr/bin/noweave /usr/bin/noweb /usr/bin/noweb2lyx /usr/bin/nroff /usr/bin/nsgmls /usr/bin/nslookup /usr/bin/nspluginscan /usr/bin/nspluginviewer /usr/bin/nsupdate /usr/bin/ntpdc /usr/bin/ntpq /usr/bin/ntpsweep /usr/bin/ntptrace /usr/bin/ntsc-cc /usr/bin/nuweb2noweb /usr/bin/nvi /usr/bin/nview /usr/bin/oaf-client /usr/bin/oafd /usr/bin/oaf-empty-server /usr/bin/oaf-run-query /usr/bin/oaf-slay /usr/bin/oaf-sysconf /usr/bin/objcopy /usr/bin/objdump /usr/bin/objdump86 /usr/bin/ocaml /usr/bin/ocamlbrowser /usr/bin/ocamlc /usr/bin/ocamlc.opt /usr/bin/ocamlcp /usr/bin/ocamlcvs /usr/bin/ocamldebug /usr/bin/ocamldep /usr/bin/ocamldep.opt /usr/bin/ocamldoc /usr/bin/ocamldoc.opt /usr/bin/ocamldot /usr/bin/ocamlfind /usr/bin/ocamllex /usr/bin/ocamllex.opt /usr/bin/ocamlmklib /usr/bin/ocamlmktop /usr/bin/ocamlobjinfo /usr/bin/ocamlopt /usr/bin/ocamlopt.opt /usr/bin/ocamlprof /usr/bin/ocamlrun /usr/bin/ocamltags /usr/bin/ocamlweb /usr/bin/ocamlyacc /usr/bin/ocpp /usr/bin/od /usr/bin/odvicopy /usr/bin/odvips /usr/bin/odvitype /usr/bin/ofm2opl /usr/bin/ogg123 /usr/bin/oggdec /usr/bin/oggenc /usr/bin/ogginfo /usr/bin/ogonkify /usr/bin/omega /usr/bin/omfonts /usr/bin/omom-edit /usr/bin/omom-gen /usr/bin/on_ac_power /usr/bin/onsgmls /usr/bin/open /usr/bin/opencdk-config /usr/bin/openjade /usr/bin/openjade-1.4devel /usr/bin/opensc-explorer /usr/bin/opensc-tool /usr/bin/openssl /usr/bin/openssl_fips_fingerprint /usr/bin/openuniverse /usr/bin/openvt /usr/bin/opl2ofm /usr/bin/orbit2-config /usr/bin/orbit-config /usr/bin/orbit-idl /usr/bin/orbit-idl-2 /usr/bin/osgmlnorm /usr/bin/ospam /usr/bin/ospcat /usr/bin/ospent /usr/bin/osx /usr/bin/otangle /usr/bin/otp2ocp /usr/bin/outocp /usr/bin/over /usr/bin/ovf2ovp /usr/bin/ovp2ovf /usr/bin/oxdvi /usr/bin/oxdvi.bin /usr/bin/oxdvi.real /usr/bin/pack_isam /usr/bin/pads /usr/bin/pads-report /usr/bin/pager /usr/bin/pal2rgb /usr/bin/palmtopnm /usr/bin/pamcut /usr/bin/pamdeinterlace /usr/bin/pamdice /usr/bin/pamfile /usr/bin/pamoil /usr/bin/pamstack /usr/bin/pamstretch /usr/bin/pamstretch-gen /usr/bin/panel-test-applets /usr/bin/pango-querymodules /usr/bin/paperconf /usr/bin/par /usr/bin/parse-edid /usr/bin/passwd /usr/bin/paste /usr/bin/patch /usr/bin/patgen /usr/bin/pathchk /usr/bin/paxtest /usr/bin/pbmclean /usr/bin/pbmlife /usr/bin/pbmmake /usr/bin/pbmmask /usr/bin/pbmpage /usr/bin/pbmpscale /usr/bin/pbmreduce /usr/bin/pbmtext /usr/bin/pbmtextps /usr/bin/pbmto10x /usr/bin/pbmtoascii /usr/bin/pbmtoatk /usr/bin/pbmtobbnbg /usr/bin/pbmtocmuwm /usr/bin/pbmtoepsi /usr/bin/pbmtoepson /usr/bin/pbmtog3 /usr/bin/pbmtogem /usr/bin/pbmtogo /usr/bin/pbmtoicon /usr/bin/pbmtolj /usr/bin/pbmtomacp /usr/bin/pbmtomda /usr/bin/pbmtomgr /usr/bin/pbmtonokia /usr/bin/pbmtopgm /usr/bin/pbmtopi3 /usr/bin/pbmtoplot /usr/bin/pbmtoppa /usr/bin/pbmtopsg3 /usr/bin/pbmtoptx /usr/bin/pbmtowbmp /usr/bin/pbmtox10bm /usr/bin/pbmtoxbm /usr/bin/pbmtoybm /usr/bin/pbmtozinc /usr/bin/pbmupc /usr/bin/pcdindex /usr/bin/pcimodules /usr/bin/pcre-config /usr/bin/pcretest /usr/bin/pcxtoppm /usr/bin/pdb /usr/bin/pdb2.2 /usr/bin/pdb2.3 /usr/bin/pdb2.4 /usr/bin/pdbedit /usr/bin/pdebuild /usr/bin/pdf2dsc /usr/bin/pdf2ps /usr/bin/pdfeinitex /usr/bin/pdfelatex /usr/bin/pdfetex /usr/bin/pdfevirtex /usr/bin/pdffonts /usr/bin/pdfimages /usr/bin/pdfinfo /usr/bin/pdfinitex /usr/bin/pdfjadetex /usr/bin/pdflatex /usr/bin/pdfopt /usr/bin/pdftex /usr/bin/pdftoppm /usr/bin/pdftops /usr/bin/pdftosrc /usr/bin/pdftotext /usr/bin/pdfvirtex /usr/bin/pdiff /usr/bin/perl /usr/bin/perl5.8.7 /usr/bin/perlbug /usr/bin/perlcc /usr/bin/perldoc /usr/bin/perldoc.stub /usr/bin/perlivp /usr/bin/perror /usr/bin/pf2afm /usr/bin/pfb2pfa /usr/bin/pfbtopfa /usr/bin/pfbtops /usr/bin/pftp /usr/bin/pg /usr/bin/pgawk /usr/bin/pg_config /usr/bin/pg_dump /usr/bin/pg_dumpall /usr/bin/pgmbentley /usr/bin/pgmcrater /usr/bin/pgmedge /usr/bin/pgmenhance /usr/bin/pgmhist /usr/bin/pgmkernel /usr/bin/pgmnoise /usr/bin/pgmnorm /usr/bin/pgmoil /usr/bin/pgmramp /usr/bin/pgmslice /usr/bin/pgmtexture /usr/bin/pgmtofs /usr/bin/pgmtolispm /usr/bin/pgmtopbm /usr/bin/pgmtoppm /usr/bin/pgp /usr/bin/pgp5 /usr/bin/pgpe /usr/bin/pgpgpg /usr/bin/pgpk /usr/bin/pgps /usr/bin/pgpv /usr/bin/pgrep /usr/bin/pg_restore /usr/bin/pg_wrapper /usr/bin/php /usr/bin/php4 /usr/bin/php4-cgi /usr/bin/php-cgi /usr/bin/php-config /usr/bin/php-config4 /usr/bin/phpextdist /usr/bin/phpextdist4 /usr/bin/phpize /usr/bin/phpize4 /usr/bin/pi1toppm /usr/bin/pi3topbm /usr/bin/pia /usr/bin/pic /usr/bin/pic2graph /usr/bin/pic2tpic /usr/bin/pico /usr/bin/piconv /usr/bin/pi-csd /usr/bin/pi-getram /usr/bin/pi-getrom /usr/bin/pi-getromtoken /usr/bin/pike /usr/bin/pike7.2 /usr/bin/pike7.2-config /usr/bin/pilconvert.py /usr/bin/pildriver.py /usr/bin/pilfile.py /usr/bin/pilfont.py /usr/bin/pilot-addresses /usr/bin/pilot-archive /usr/bin/pilot-clip /usr/bin/pilot-datebook /usr/bin/pilot-dedupe /usr/bin/pilot-file /usr/bin/pilot-foto /usr/bin/pilot-manager /usr/bin/PilotManager /usr/bin/pilot-prc /usr/bin/pilot-schlep /usr/bin/pilot-undelete /usr/bin/pilot-xfer /usr/bin/pilprint.py /usr/bin/pinentry /usr/bin/pinentry-qt /usr/bin/pinentry-x11 /usr/bin/pinky /usr/bin/pi-nredir /usr/bin/pitchplay /usr/bin/pjtoppm /usr/bin/pk2bm /usr/bin/pkcs11-tool /usr/bin/pkcs15-crypt /usr/bin/pkcs15-init /usr/bin/pkcs15-tool /usr/bin/pkg-config /usr/bin/pkgs_to_mmin /usr/bin/pkill /usr/bin/pktogf /usr/bin/pktype /usr/bin/pl2pm /usr/bin/planner /usr/bin/playdv /usr/bin/plog /usr/bin/plotchangelog /usr/bin/pltotf /usr/bin/pmap /usr/bin/pmount /usr/bin/pmount-hal /usr/bin/pngtopnm /usr/bin/pnmalias /usr/bin/pnmarith /usr/bin/pnmcat /usr/bin/pnmcolormap /usr/bin/pnmcomp /usr/bin/pnmconvol /usr/bin/pnmcrop /usr/bin/pnmcut /usr/bin/pnmdepth /usr/bin/pnmenlarge /usr/bin/pnmfile /usr/bin/pnmflip /usr/bin/pnmgamma /usr/bin/pnmhisteq /usr/bin/pnmhistmap /usr/bin/pnmindex /usr/bin/pnminterp /usr/bin/pnminterp-gen /usr/bin/pnminvert /usr/bin/pnmmargin /usr/bin/pnmmontage /usr/bin/pnmnlfilt /usr/bin/pnmnoraw /usr/bin/pnmnorm /usr/bin/pnmpad /usr/bin/pnmpaste /usr/bin/pnmpsnr /usr/bin/pnmquant /usr/bin/pnmremap /usr/bin/pnmrotate /usr/bin/pnmscale /usr/bin/pnmscalefixed /usr/bin/pnmshear /usr/bin/pnmsmooth /usr/bin/pnmsplit /usr/bin/pnmtile /usr/bin/pnmtoddif /usr/bin/pnmtofiasco /usr/bin/pnmtofits /usr/bin/pnmtojpeg /usr/bin/pnmtopalm /usr/bin/pnmtoplainpnm /usr/bin/pnmtopng /usr/bin/pnmtops /usr/bin/pnmtorast /usr/bin/pnmtorle /usr/bin/pnmtosgi /usr/bin/pnmtosir /usr/bin/pnmtotiff /usr/bin/pnmtotiffcmyk /usr/bin/pnmtoxwd /usr/bin/po2debconf /usr/bin/po2xml /usr/bin/pod2html /usr/bin/pod2latex /usr/bin/pod2man /usr/bin/pod2text /usr/bin/pod2usage /usr/bin/podchecker /usr/bin/podebconf-display-po /usr/bin/podebconf-report-po /usr/bin/podselect /usr/bin/poff /usr/bin/policytool /usr/bin/pon /usr/bin/pooltype /usr/bin/popbugs /usr/bin/POST /usr/bin/poster /usr/bin/post-grohtml /usr/bin/pphs /usr/bin/ppm2tiff /usr/bin/ppm3d /usr/bin/ppmbrighten /usr/bin/ppmchange /usr/bin/ppmcie /usr/bin/ppmcolormask /usr/bin/ppmcolors /usr/bin/ppmdim /usr/bin/ppmdist /usr/bin/ppmdither /usr/bin/ppmfade /usr/bin/ppmflash /usr/bin/ppmforge /usr/bin/ppmhist /usr/bin/ppmlabel /usr/bin/ppmmake /usr/bin/ppmmix /usr/bin/ppmnorm /usr/bin/ppmntsc /usr/bin/ppmpat /usr/bin/ppmquant /usr/bin/ppmquantall /usr/bin/ppmqvga /usr/bin/ppmrainbow /usr/bin/ppmrelief /usr/bin/ppmshadow /usr/bin/ppmshift /usr/bin/ppmspread /usr/bin/ppmtoacad /usr/bin/ppmtobmp /usr/bin/ppmtoeyuv /usr/bin/ppmtogif /usr/bin/ppmtoicr /usr/bin/ppmtoilbm /usr/bin/ppmtojpeg /usr/bin/ppmtoleaf /usr/bin/ppmtolj /usr/bin/ppmtolss16 /usr/bin/ppmtomap /usr/bin/ppmtomitsu /usr/bin/ppmtompeg /usr/bin/ppmtoneo /usr/bin/ppmtopcx /usr/bin/ppmtopgm /usr/bin/ppmtopi1 /usr/bin/ppmtopict /usr/bin/ppmtopj /usr/bin/ppmtopuzz /usr/bin/ppmtorgb3 /usr/bin/ppmtosixel /usr/bin/ppmtotga /usr/bin/ppmtouil /usr/bin/ppmtowinicon /usr/bin/ppmtoxpm /usr/bin/ppmtoyuv /usr/bin/ppmtoyuvsplit /usr/bin/ppmtv /usr/bin/pr /usr/bin/precat /usr/bin/pre-grohtml /usr/bin/prename /usr/bin/preparetips /usr/bin/preunzip /usr/bin/prezip /usr/bin/prezip-bin /usr/bin/print /usr/bin/printafm /usr/bin/printenv /usr/bin/printf /usr/bin/printnodetest /usr/bin/procan /usr/bin/procinfo /usr/bin/procmail /usr/bin/prove /usr/bin/prune /usr/bin/ps2ascii /usr/bin/ps2epsi /usr/bin/ps2frag /usr/bin/ps2image /usr/bin/ps2pdf /usr/bin/ps2pdf12 /usr/bin/ps2pdf13 /usr/bin/ps2pdf14 /usr/bin/ps2pdfwr /usr/bin/ps2pk /usr/bin/ps2ps /usr/bin/psbook /usr/bin/pscan /usr/bin/psed /usr/bin/psfaddtable /usr/bin/psfgettable /usr/bin/psfstriptable /usr/bin/psidtopgm /usr/bin/pslatex /usr/bin/psmandup /usr/bin/psmerge /usr/bin/psnup /usr/bin/psql /usr/bin/psresize /usr/bin/psselect /usr/bin/psset /usr/bin/pstoedit /usr/bin/pstoimg /usr/bin/pstopnm /usr/bin/pstops /usr/bin/pstree /usr/bin/pstree.x11 /usr/bin/pstruct /usr/bin/ptar /usr/bin/ptked /usr/bin/ptksh /usr/bin/ptx /usr/bin/pumount /usr/bin/pv.sh /usr/bin/pwdx /usr/bin/pyalacarte /usr/bin/pyalamode /usr/bin/pycrust /usr/bin/pydoc /usr/bin/pydoc2.2 /usr/bin/pydoc2.3 /usr/bin/pydoc2.4 /usr/bin/pygettext /usr/bin/pygettext2.2 /usr/bin/pygettext2.3 /usr/bin/pygettext2.4 /usr/bin/pygtk-codegen-2.0 /usr/bin/pygtk-demo /usr/bin/pyshell /usr/bin/python /usr/bin/python2.2 /usr/bin/python2.3 /usr/bin/python2.4 /usr/bin/pywrap /usr/bin/qemacs /usr/bin/qembed /usr/bin/qmake /usr/bin/qrttoppm /usr/bin/qt2kdoc /usr/bin/quanta /usr/bin/querybts /usr/bin/quilt /usr/bin/quinn-diff /usr/bin/rainbow /usr/bin/rainbow-ac /usr/bin/rainbow-be /usr/bin/rainbow-pr /usr/bin/rainbow-rank /usr/bin/rainbow-stats /usr/bin/ranlib /usr/bin/rapidsvn /usr/bin/rar /usr/bin/ras2tiff /usr/bin/rasttopnm /usr/bin/rats /usr/bin/raw2tiff /usr/bin/rawtopgm /usr/bin/rawtoppm /usr/bin/rc-alert /usr/bin/rcp /usr/bin/rcs /usr/bin/rcs2log /usr/bin/rcs-checkin /usr/bin/rcs-checkin.emacs21 /usr/bin/rcs-checkin.xemacs21 /usr/bin/rcsclean /usr/bin/rcsdiff /usr/bin/rcsfreeze /usr/bin/rcsmerge /usr/bin/rdjpgcom /usr/bin/readcd /usr/bin/readelf /usr/bin/read-expenses /usr/bin/read-ical /usr/bin/readmult /usr/bin/read-notepad /usr/bin/read-palmpix /usr/bin/read-todos /usr/bin/realvncpasswd /usr/bin/realvncpasswd.real /usr/bin/recode /usr/bin/recountdiff /usr/bin/red /usr/bin/rediff /usr/bin/refer /usr/bin/reLyX /usr/bin/rem2ps /usr/bin/remind /usr/bin/reminders /usr/bin/remsync /usr/bin/rename /usr/bin/renice /usr/bin/rep /usr/bin/replace /usr/bin/report /usr/bin/reportbug /usr/bin/report.gui /usr/bin/rep-remote /usr/bin/reset /usr/bin/resolveip /usr/bin/resolve_stack_dump /usr/bin/rev /usr/bin/rgb2ycbcr /usr/bin/rgb3toppm /usr/bin/rgettext /usr/bin/rgrep /usr/bin/rhythmbox /usr/bin/rjoe /usr/bin/rletopnm /usr/bin/rlog /usr/bin/rlogin /usr/bin/rmccmt /usr/bin/rmic /usr/bin/rmid /usr/bin/rmiregistry /usr/bin/rmsgfmt /usr/bin/rootv /usr/bin/routef /usr/bin/routel /usr/bin/rpcclient /usr/bin/rpcgen /usr/bin/rpcinfo /usr/bin/rpm /usr/bin/rpm2cpio /usr/bin/rpmbuild /usr/bin/rpmdb /usr/bin/rpme /usr/bin/rpmi /usr/bin/rpmquery /usr/bin/rpmsign /usr/bin/rpmu /usr/bin/rpmverify /usr/bin/rrdcgi /usr/bin/rrdtool /usr/bin/rrdupdate /usr/bin/rsh /usr/bin/rssclient /usr/bin/rssservice /usr/bin/rstartd /usr/bin/rsync /usr/bin/rtf2rtf /usr/bin/rubibtex /usr/bin/ruby /usr/bin/ruby1.8 /usr/bin/ruby-glade-create-template /usr/bin/rumakeindex /usr/bin/run-mailcap /usr/bin/runscript /usr/bin/run-with-aspell /usr/bin/rview /usr/bin/rvim /usr/bin/s2p /usr/bin/sadf /usr/bin/sa-learn /usr/bin/sane-find-scanner /usr/bin/sar /usr/bin/sar.sysstat /usr/bin/savelog /usr/bin/sawfish /usr/bin/sawfish-client /usr/bin/sawfish-ui /usr/bin/sbigtopgm /usr/bin/sbuild /usr/bin/scanimage /usr/bin/scantv /usr/bin/sccmap /usr/bin/sc-copykeys /usr/bin/scdaemon /usr/bin/scotty /usr/bin/scotty3.0.0 /usr/bin/scp /usr/bin/scr-bx /usr/bin/screen /usr/bin/screendump /usr/bin/script /usr/bin/scriptreplay /usr/bin/scrollkeeper-config /usr/bin/scrollkeeper-extract /usr/bin/scrollkeeper-gen-seriesid /usr/bin/scrollkeeper-get-cl /usr/bin/scrollkeeper-get-content-list /usr/bin/scrollkeeper-get-extended-content-list /usr/bin/scrollkeeper-get-index-from-docpath /usr/bin/scrollkeeper-get-toc-from-docpath /usr/bin/scrollkeeper-get-toc-from-id /usr/bin/scrollkeeper-install /usr/bin/scrollkeeper-preinstall /usr/bin/scrollkeeper-rebuilddb /usr/bin/scrollkeeper-uninstall /usr/bin/scrollkeeper-update /usr/bin/sdiff /usr/bin/sdl-config /usr/bin/secpolicy /usr/bin/see /usr/bin/select-default-iwrap /usr/bin/sendip /usr/bin/sensible-browser /usr/bin/sensible-editor /usr/bin/sensible-pager /usr/bin/sensors /usr/bin/seq /usr/bin/serialver /usr/bin/setfdprm /usr/bin/setkeycodes /usr/bin/set-language-env /usr/bin/setleds /usr/bin/setlogcons /usr/bin/setmetamode /usr/bin/setpci /usr/bin/setsid /usr/bin/setterm /usr/bin/sfconvert /usr/bin/sfinfo /usr/bin/sftp /usr/bin/sg /usr/bin/sgitopnm /usr/bin/sgml2html /usr/bin/sgml2info /usr/bin/sgml2latex /usr/bin/sgml2lyx /usr/bin/sgml2rtf /usr/bin/sgml2txt /usr/bin/sgml2xml /usr/bin/sgmlcheck /usr/bin/sgmldiff /usr/bin/sgmlnorm /usr/bin/sgmlpre /usr/bin/sgmlsasp /usr/bin/sgmlspl /usr/bin/sha1sum /usr/bin/shar /usr/bin/shell-quote /usr/bin/showcfont /usr/bin/showchar /usr/bin/showkey /usr/bin/shred /usr/bin/shtool /usr/bin/shtoolize /usr/bin/sigfind /usr/bin/sirtopnm /usr/bin/size /usr/bin/size86 /usr/bin/sjisconv /usr/bin/sjislatex /usr/bin/skill /usr/bin/sl2h /usr/bin/slabtop /usr/bin/sldtoppm /usr/bin/slice /usr/bin/sliceprint /usr/bin/slogin /usr/bin/sloxwizard /usr/bin/smbcacls /usr/bin/smbclient /usr/bin/smbcontrol /usr/bin/smbcquotas /usr/bin/smb-nat /usr/bin/smbpasswd /usr/bin/smbspool /usr/bin/smbstatus /usr/bin/smbtar /usr/bin/smbtree /usr/bin/smime_keys /usr/bin/snice /usr/bin/socat /usr/bin/sodipodi /usr/bin/soelim /usr/bin/sort /usr/bin/sorter /usr/bin/sound-juicer /usr/bin/spacechart /usr/bin/spam /usr/bin/spamassassin /usr/bin/spamc /usr/bin/spctoppm /usr/bin/spent /usr/bin/sperl5.8.7 /usr/bin/spfqtool /usr/bin/spfquery /usr/bin/spikeproxy /usr/bin/splain /usr/bin/splint /usr/bin/split /usr/bin/split2po /usr/bin/splitdiff /usr/bin/splitfont /usr/bin/spotlight2kvtml /usr/bin/sputoppm /usr/bin/sq /usr/bin/srch_strings /usr/bin/ssconvert /usr/bin/ssh /usr/bin/ssh-add /usr/bin/ssh-agent /usr/bin/ssh-argv0 /usr/bin/ssh-copy-id /usr/bin/ssh-keygen /usr/bin/ssh-keyscan /usr/bin/ssindex /usr/bin/st4topgm /usr/bin/starconvert /usr/bin/starpkg /usr/bin/starplot /usr/bin/startkde /usr/bin/stat /usr/bin/states /usr/bin/stegbreak /usr/bin/stegdetect /usr/bin/strace /usr/bin/strfile /usr/bin/strings /usr/bin/strip /usr/bin/subtitles /usr/bin/sudo /usr/bin/sudoedit /usr/bin/suidperl /usr/bin/sum /usr/bin/superformat /usr/bin/su-to-root /usr/bin/svgdisplay /usr/bin/svn /usr/bin/svnadmin /usr/bin/svndumpfilter /usr/bin/svnlook /usr/bin/svnserve /usr/bin/svnversion /usr/bin/swappo /usr/bin/symlinks /usr/bin/sync-plan /usr/bin/syslinux /usr/bin/syslinux2ansi /usr/bin/t1asm-freetype /usr/bin/t1mapper /usr/bin/t4ht /usr/bin/tac /usr/bin/tack /usr/bin/tagpending /usr/bin/tail /usr/bin/talk /usr/bin/tangle /usr/bin/tap2deb /usr/bin/tap2deb2.3 /usr/bin/tap2rpm /usr/bin/tap2rpm2.3 /usr/bin/tapconvert /usr/bin/tapconvert2.3 /usr/bin/tasksel /usr/bin/tbl /usr/bin/tclsh /usr/bin/tclsh8.3 /usr/bin/tclsh8.4 /usr/bin/tcpbug /usr/bin/tcpconnect /usr/bin/tcpflow /usr/bin/tcplisten /usr/bin/tcpstat /usr/bin/tcsh /usr/bin/tdbbackup /usr/bin/tee /usr/bin/telnet /usr/bin/telnet.netkit /usr/bin/test /usr/bin/test-moniker /usr/bin/testmxlookup /usr/bin/testparm /usr/bin/testprns /usr/bin/testrb1.8 /usr/bin/tetex-xwarn /usr/bin/tex /usr/bin/tex4ht /usr/bin/tex4ht-ht /usr/bin/texconfig /usr/bin/texdoc /usr/bin/texdoctk /usr/bin/texexec /usr/bin/texexpand /usr/bin/texfind /usr/bin/texfont /usr/bin/texhash /usr/bin/texi2dvi /usr/bin/texi2dvi4a2ps /usr/bin/texi2html /usr/bin/texi2pdf /usr/bin/texindex /usr/bin/texlinks /usr/bin/texshow /usr/bin/text2pcap /usr/bin/texutil /usr/bin/tfmtodit /usr/bin/tftopl /usr/bin/tgatoppm /usr/bin/tgz /usr/bin/themus-theme-applier /usr/bin/thinkjettopbm /usr/bin/thumbnail /usr/bin/thumbpdf /usr/bin/tic /usr/bin/tidy /usr/bin/tie /usr/bin/tiff2bw /usr/bin/tiff2pdf /usr/bin/tiff2ps /usr/bin/tiff2rgba /usr/bin/tiffcmp /usr/bin/tiffcp /usr/bin/tiffdither /usr/bin/tiffdump /usr/bin/tiffinfo /usr/bin/tiffmedian /usr/bin/tiffset /usr/bin/tiffsplit /usr/bin/tifftopnm /usr/bin/t-im /usr/bin/t-im2.3 /usr/bin/time /usr/bin/time-admin /usr/bin/tixindex /usr/bin/tixindex8.1 /usr/bin/tixwish /usr/bin/tixwish8.1 /usr/bin/tkined /usr/bin/tkined1.5.0 /usr/bin/tklanguage /usr/bin/tkmktap /usr/bin/tkmktap2.3 /usr/bin/tkremind /usr/bin/tload /usr/bin/toc2cddb /usr/bin/toc2cue /usr/bin/todos /usr/bin/toe /usr/bin/toolame /usr/bin/top /usr/bin/totem /usr/bin/totem-video-thumbnailer /usr/bin/touch /usr/bin/tp_tagger /usr/bin/tput /usr/bin/tr /usr/bin/traceroute /usr/bin/traceroute.lbl /usr/bin/transfig /usr/bin/transxx /usr/bin/tred /usr/bin/tree /usr/bin/trial /usr/bin/trial2.3 /usr/bin/trm /usr/bin/troff /usr/bin/tryaffix /usr/bin/trytime /usr/bin/tset /usr/bin/tsort /usr/bin/ttf2afm /usr/bin/ttf2bdf /usr/bin/ttf2pfb /usr/bin/ttf2pk /usr/bin/ttf2tfm /usr/bin/ttfbanner /usr/bin/tty /usr/bin/twistd /usr/bin/twistd2.3 /usr/bin/twopi /usr/bin/txt2man /usr/bin/tzselect /usr/bin/ucf /usr/bin/udevinfo /usr/bin/udevtest /usr/bin/uic /usr/bin/uic-qt2 /usr/bin/uic-qt3 /usr/bin/ul /usr/bin/unexpand /usr/bin/unflatten /usr/bin/unicode_start /usr/bin/unicode_stop /usr/bin/uniq /usr/bin/unison /usr/bin/unison2.10.2 /usr/bin/unison2.10.2-gtk /usr/bin/unison2.9.1 /usr/bin/unison-gtk /usr/bin/unix2dos /usr/bin/unix-lpr.sh /usr/bin/unlink /usr/bin/unrar /usr/bin/unshar /usr/bin/unsq /usr/bin/unstr /usr/bin/untex /usr/bin/untrigraph /usr/bin/unwrapdiff /usr/bin/unzip /usr/bin/unzipsfx /usr/bin/updatedb /usr/bin/update-desktop-database /usr/bin/update-lyxrc /usr/bin/update-menus /usr/bin/update-menus.real /usr/bin/update-mime-database /usr/bin/update-pciids /usr/bin/update-perl-sax-parsers /usr/bin/update-sourcedeps /usr/bin/updmap /usr/bin/uptime /usr/bin/usbmodules /usr/bin/uscan /usr/bin/user-ja-conf /usr/bin/users /usr/bin/users-admin /usr/bin/uudecode /usr/bin/uuencode /usr/bin/uuidgen /usr/bin/uupdate /usr/bin/uz /usr/bin/v4l-conf /usr/bin/v4lctl /usr/bin/v4ldriver /usr/bin/v4l-info /usr/bin/v4lphilips /usr/bin/vacation /usr/bin/vacuumdb /usr/bin/valgrind /usr/bin/valgrind.bin /usr/bin/valgrind-listener /usr/bin/vcdimager /usr/bin/vcd-info /usr/bin/vcdxbuild /usr/bin/vcdxgen /usr/bin/vcdxminfo /usr/bin/vcdxrip /usr/bin/vcut /usr/bin/vftovp /usr/bin/vi /usr/bin/vidcat /usr/bin/view /usr/bin/vim /usr/bin/vimdiff /usr/bin/vimtutor /usr/bin/vino-preferences /usr/bin/virmf /usr/bin/virmpost /usr/bin/viromega /usr/bin/virtex /usr/bin/VisualOS /usr/bin/vmstat /usr/bin/vncpasswd /usr/bin/vncviewer /usr/bin/volname /usr/bin/vorbiscomment /usr/bin/vptovf /usr/bin/vt-is-UTF8 /usr/bin/vumeter /usr/bin/w /usr/bin/w3c /usr/bin/w3m /usr/bin/w3mman /usr/bin/wall /usr/bin/watch /usr/bin/watchgnupg /usr/bin/wbmptopbm /usr/bin/wc /usr/bin/wdiff /usr/bin/weave /usr/bin/webbot /usr/bin/weblint /usr/bin/websetroot /usr/bin/websetroot2.3 /usr/bin/wftopfa /usr/bin/wget /usr/bin/whatis /usr/bin/whereis /usr/bin/which /usr/bin/whiptail /usr/bin/who /usr/bin/whoami /usr/bin/whois /usr/bin/widget /usr/bin/winicontoppm /usr/bin/wish /usr/bin/wish8.3 /usr/bin/wish8.4 /usr/bin/wmb /usr/bin/wmd /usr/bin/wmk /usr/bin/wml /usr/bin/wmu /usr/bin/wmxmms /usr/bin/wnpp-alert /usr/bin/word-list-compress /usr/bin/workman2cddb.pl /usr/bin/w.procps /usr/bin/wrestool /usr/bin/write /usr/bin/wrjpgcom /usr/bin/www /usr/bin/www-browser /usr/bin/X11 /usr/bin/xargs /usr/bin/xawtv /usr/bin/xawtv-remote /usr/bin/xbitchx /usr/bin/xbmtopbm /usr/bin/xcdroast /usr/bin/xchat /usr/bin/xdfcopy /usr/bin/xdfformat /usr/bin/xdvi /usr/bin/xdvi.bin /usr/bin/xdvi.real /usr/bin/xdvizilla /usr/bin/xemacs /usr/bin/xemacs21 /usr/bin/xemacs-21.4.17-mule /usr/bin/xemacs21-mule /usr/bin/xephemdbd /usr/bin/xf86gammacfg /usr/bin/xfig /usr/bin/xft-config /usr/bin/xgettext /usr/bin/ximtoppm /usr/bin/xine /usr/bin/xine-bugreport /usr/bin/xine-check /usr/bin/xine-remote /usr/bin/xkeycaps /usr/bin/xmbmon /usr/bin/xminicom /usr/bin/xml2-config /usr/bin/xml2po /usr/bin/xml2pot /usr/bin/xml-config /usr/bin/xmlproc_parse /usr/bin/xmlproc_parse.python2.3-xml /usr/bin/xmlproc_val /usr/bin/xmlproc_val.python2.3-xml /usr/bin/xmms /usr/bin/xmovie /usr/bin/xpdf /usr/bin/xpdf.bin /usr/bin/xplanet /usr/bin/xpmtoppm /usr/bin/xrced /usr/bin/xscreensaver /usr/bin/xscreensaver-command /usr/bin/xscreensaver-demo /usr/bin/xscreensaver-getimage /usr/bin/xscreensaver-getimage-file /usr/bin/xscreensaver-getimage-video /usr/bin/xscreensaver-gl-helper /usr/bin/xscreensaver-text /usr/bin/x-session-manager /usr/bin/xsltproc /usr/bin/xsubpp /usr/bin/x-terminal-emulator /usr/bin/xtightvncviewer /usr/bin/xvfb-run /usr/bin/xvidcap /usr/bin/xvminitoppm /usr/bin/xvncviewer /usr/bin/xwdtopnm /usr/bin/x-window-manager /usr/bin/x-www-browser /usr/bin/xxd /usr/bin/yacc /usr/bin/yada /usr/bin/yaf-cdda /usr/bin/yaf-mpgplay /usr/bin/yaf-splay /usr/bin/yaf-tplay /usr/bin/yaf-vorbis /usr/bin/yaf-yuv /usr/bin/ybmtopbm /usr/bin/yelp /usr/bin/yes /usr/bin/ysh /usr/bin/ytalk /usr/bin/yuvsplittoppm /usr/bin/yuvtoppm /usr/bin/yyextract /usr/bin/yyref /usr/bin/zdump /usr/bin/zeisstopnm /usr/bin/zenity /usr/bin/zgv /usr/bin/zip /usr/bin/zipcloak /usr/bin/zipgrep /usr/bin/zipinfo /usr/bin/zipnote /usr/bin/zipsplit /usr/bin/zsoelim /usr/bin/zxpdf executables
+ as owned by `bin', this account will not flag a warning.
++<P>
++Linux (notably RedHat) operating environments violate this convention
++with printer (lp*) and rpm programs among others.
++Changing ownership in this case may be problematic.
+ <PRE>
+
+
+diff -ru tiger.orig/html/pcap.html tiger/html/pcap.html
+--- tiger.orig/html/pcap.html 2009-03-08 14:41:40.000000000 +0000
++++ tiger/html/pcap.html 2009-03-08 14:48:36.000000000 +0000
+@@ -73,6 +73,6 @@
+
+ </PRE><HR>
+ <A NAME="pcap003w"><P><B>Code [pcap003w]</B><P>
+-The indicated executable associsated with a printer control has
++The indicated executable associated with a printer control has
+ group or world write permissions. This may represent a security
+ vulnerability, as it may be possible to replace the executable.
+diff -ru tiger.orig/html/permissions.html tiger/html/permissions.html
+--- tiger.orig/html/permissions.html 2009-03-08 14:41:40.000000000 +0000
++++ tiger/html/permissions.html 2009-03-08 14:48:36.000000000 +0000
+@@ -528,3 +528,101 @@
+ loss of 'arp -a' functionality for a normal user account. (On SunOS 5.x
+ systems, even this functionality isn't lost... there is no reason for
+ 'arp' to be setgid). This is a minor loss of functionality.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="perm26f"><P><B>Code [perm26f]</B><P>
++The file '/etc/login.access' provides finer control over user
++access, it can be modified to allow or disallow remote access
++to privileged accounts. If this file is writable by non-root
++users, then unauthorized access or privileges may be obtained.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="perm27f"><P><B>Code [perm27f]</B><P>
++The file '/etc/login.conf' is used by default on some BSD systems,
++it can be used to set up user environment and to set policy and
++accounting restrictions. Since this file provides control over user
++access, if this file is writable by non-root
++users, then unauthorized access or privileges may be obtained.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="perm28f"><P><B>Code [perm28f]</B><P>
++The file '/etc/login.defs' is used by default on some Linux systems,
++it can be used to set up user environment and to set policy and
++accounting restrictions (such as password aging), as it defines
++configuration control definitions for the login package.
++Since this file provides control over user access, if this file
++is writable by non-root users, then unauthorized access or privileges
++may be obtained.
++<PRE>
++
++
++
++
++
++
++
++
++
++
++</PRE><HR>
++<A NAME="perm29f"><P><B>Code [perm29f]</B><P>
++The configuration files for PAM (Pluggable Authentication Modules)
++are used by default on many Unix systems, it can be used to set up
++the environment for some services and defined the policy for its
++access. Since this file provides control over user access, if this file
<Skipped 14939 lines>
================================================================
---- gitweb:
http://git.pld-linux.org/gitweb.cgi/packages/tiger.git/commitdiff/1d52b1938e697e5a4a7b802d3fab1cbba5c2802d
More information about the pld-cvs-commit
mailing list