summaryrefslogtreecommitdiff
path: root/app-forensics/chkrootkit
diff options
context:
space:
mode:
authorV3n3RiX <venerix@koprulu.sector>2022-01-16 20:27:28 +0000
committerV3n3RiX <venerix@koprulu.sector>2022-01-16 20:27:28 +0000
commit2fd57282f0262ca084e05b0f2c63fbada395d02b (patch)
tree4e0f23cea9ce9fd972e70ebc5214bf36fed465cc /app-forensics/chkrootkit
parentc3bc61051d7f12b4c682efa7a5460bbc8815649e (diff)
gentoo resync : 16.01.2021
Diffstat (limited to 'app-forensics/chkrootkit')
-rw-r--r--app-forensics/chkrootkit/Manifest5
-rw-r--r--app-forensics/chkrootkit/chkrootkit-0.55-r1.ebuild70
-rw-r--r--app-forensics/chkrootkit/files/chkrootkit.service7
-rw-r--r--app-forensics/chkrootkit/files/chkrootkit.timer11
-rw-r--r--app-forensics/chkrootkit/metadata.xml9
5 files changed, 100 insertions, 2 deletions
diff --git a/app-forensics/chkrootkit/Manifest b/app-forensics/chkrootkit/Manifest
index 9c05cd34df38..e8c6b373674f 100644
--- a/app-forensics/chkrootkit/Manifest
+++ b/app-forensics/chkrootkit/Manifest
@@ -1,10 +1,13 @@
AUX chkrootkit-0.55-fcntl_h.patch 656 BLAKE2B 4f7430a1ab7d09e595306bb2c334e6fd8c40015a60054d803aae9b7235240d19de1d27cdadac1d292b0d9cd7dc0573d52024f715e5cb9ff2218b9364508a9728 SHA512 bb9fff9e3affdfafcd190da1ecac706a14b6fb7526a13626853a91655f7e20558a36f8fd77c9cca214e05bace4e413659caa3df620b61f8a85809a14e8cb0980
AUX chkrootkit-0.55-limits_h.patch 174 BLAKE2B 0fedcb310905169f805892f2b6fbcec150dc41f4d0312f8e3458e83b4335799c192b84af8c2587d4105d9e8f7fe21f89386bd1be4b89a9ff5114fd872b44cd50 SHA512 ea055b978433e028285d225186bf7ae589e4899c8d890dad483898581a5553a806b61a3c1c97a76f9c465a0ae61d6a25e6945907dcc84420a78e47542bcfc734
AUX chkrootkit.cron 78 BLAKE2B f43e9a4a0864c3914658298622aaf0e97374e4f8518c085f0c6c1b439583b36567652376a601eb039ca9d6a8bdda0cb18d9c58b36ab61839113048d32ce9fb54 SHA512 6839f3372d28673ee436349a107dc33b77cfd676fd16cda1ccfc5211514e840593d0f106e4e0a9331c4b658860992a9169f3a7cdd75c835a780a41097e7bd758
+AUX chkrootkit.service 140 BLAKE2B 4542f1ab3dbe6108e7d35ae1e094fd822a85838cca372681ba0d48dad943ffce9a584e94d4915f1198d915e91e49eb4363a77bfdd38d8d225e7e30ae2a4fd310 SHA512 696eaec795501e53ee41495d3e41f09a9ec05dc11e0c0055fcb07fd5f4e3c3a1b2cca3b318cca7d6dcecb039a64fd970700c02cf87298f96230bf839942ded9c
+AUX chkrootkit.timer 234 BLAKE2B f46a41bd76707cfbe4e52f32344c44b472f8c1f81ce24162a7f542f01de0f1200a5049e8b856fba31cc6f2be6c48cee645ff7aac9f5a6f54d11703a6ef6e60cc SHA512 587347f87eabdadd351c056443eeeecb15a772f962f17f49098f3311a99c48dc74f626e2a5c2d9e71435a70b36c4ef90aa7fe414313fd1f56ab027df1d5e338f
DIST chkrootkit-0.54-gentoo.diff.xz 4848 BLAKE2B 25d1736bb839533fae36550518b311e52bb38f8a562a63d40629789dc9497b6e71dbc306d1f845b6a5cd586468afa6a7ac4ce8b6f1bfb40d7ac9b0331a55def9 SHA512 6c972b081794681b61b7c67f9a5762ba5d2c0c731c9a2bf9f75e715984edf7022ddcd44d34803eacb58a59e8b21932ffb586cc9fb7998a43393367c2530e353e
DIST chkrootkit-0.54.tar.gz 41461 BLAKE2B 61384fda7db08ca2a52ab060ee4ea3edb7311cb9908599a511459dac22340f28e75d732b10d827aaeed89a1ecb6fc7f69ab8fef970aae5a73bae8c7949944831 SHA512 fe8955ac33abaabf304f5580b6f12929f8bf02329ab442380eaa6298440cf1cb0eee2db8e5667ea7d78b89ee2bceb82c10ebb732a71d6bcdda9400569cd587fd
DIST chkrootkit-0.55-gentoo.patch.bz2 5028 BLAKE2B f8f809252d89b9195601953c6741c9a653b658d86669f149380dc94da91085921f58fef7e6f232cc421cf62f7321630120a85ec4dfdf369d6e92c0a7ae81e0f1 SHA512 bdae4fed6f8c61337e855235bf84b20faa363a3dfad9b2f22a017bd232aaf7f4bc0680f2b5567d6545ef3cb6ce7d41cc2287f4f0a2baf68ce3c56c68df8c77b8
DIST chkrootkit-0.55.tar.gz 42630 BLAKE2B 0e6bc4d411a7836cd8ab72782027e5bd80b5c8845d8de1f48ff57bc0617a368cff2471835a66c30d007f4cfc243639110e0c39e02eecc3ec9c5c0a66a4b7891b SHA512 742dca90a761ecff149d8704cb3a252adfe8f9d5e15dd060e9db4d5f6dcd3820933ae13cbee99ea5a8c6144932cf97c0616a177af3ba5a1726b51bb304e7d63e
EBUILD chkrootkit-0.54.ebuild 1283 BLAKE2B b86b5b2cfe78135e5d9caa6323b2e2ccdc0584c503d84354276c4d1843234e39a598a4e352af6925738595859a8a74ea0700fba44765d7c587c7c03c3d8bdec5 SHA512 beedbb3345b227c9273b4a33de22bca4edd768b1b317a967d27b3da99aa8b45003bfb0f63d65275ba13e0aa9b0988771a5b3cb265da87935b4aa62c46e75368b
+EBUILD chkrootkit-0.55-r1.ebuild 1670 BLAKE2B 79e08c54fd2f95dc97905e272167c1f43a15fa30987e9b57a31de2a5bfacd3a3a51cc54c1f28ca42e6e2befea8d0be85948798c0bc15d60eced8e6f9b8656390 SHA512 18e667f4be878f9c64e2b29b67362135ba5438901145e3cb8601340a80c5dd99b8be2dad70e84c5d6dba19d158b35a5373721670ca22e389536180ed11ff0d94
EBUILD chkrootkit-0.55.ebuild 1384 BLAKE2B 9ae73e3bcea751e6892362f6f24b296ea4e70d2414e6c239e771cb516ebf6bfcbe17fd407148cf4807defb81e61708d0bb2c9c21adb72beb23d18cb606c88dea SHA512 da25a37a7990698c9cc155b69622e780a35b9fd58ff45437ec20febed44062aeb44fb88b8918df87975714e22d293df150f7f70ec3812b9017fc8484e8c3b6d3
-MISC metadata.xml 255 BLAKE2B cb46d75d301b45719f60e2b65db46866085ac1063b958a6d529446a9636d2df6091a78a66926a5077923e01652e6d8e59459fb3486c84c6c62aac27b968dc737 SHA512 6e20a19f2a980d413626b3ff07975a49ba016d4abd97e11be10d116e66b3ebd245758eed147733462ccd72c96ea8b1ad1a198bf374c89783f0e11548bb85c333
+MISC metadata.xml 485 BLAKE2B 0279eb0bff02b31659c964d77b1919ea76f1770c273937aa03ae57be063e5c020c262740e61f7cf8f52f9be2eb7fb88682bbbb0308fb598f042faecbc0eb0b60 SHA512 f7fa5ccde5e81487d89dbbf436f6f56bad6d28ed44f8a65d71d6ad7997756f5916cea4b3d7ab95cedee9317fa7e89f92b8a5f1fd0529366062fe43060a4dba7c
diff --git a/app-forensics/chkrootkit/chkrootkit-0.55-r1.ebuild b/app-forensics/chkrootkit/chkrootkit-0.55-r1.ebuild
new file mode 100644
index 000000000000..0bfac68e7a96
--- /dev/null
+++ b/app-forensics/chkrootkit/chkrootkit-0.55-r1.ebuild
@@ -0,0 +1,70 @@
+# Copyright 2022 Gentoo Authors
+# Distributed under the terms of the GNU General Public License v2
+
+EAPI=8
+
+inherit systemd toolchain-funcs
+
+GENTOO_PATCH="${PN}-0.55-gentoo.patch"
+
+DESCRIPTION="Tool to locally check for signs of a rootkit"
+HOMEPAGE="http://www.chkrootkit.org/"
+SRC_URI="ftp://ftp.pangeia.com.br/pub/seg/pac/${P}.tar.gz"
+SRC_URI+=" https://dev.gentoo.org/~sam/distfiles/${CATEGORY}/${PN}/${GENTOO_PATCH}.bz2"
+
+LICENSE="BSD-2"
+SLOT="0"
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~mips ~ppc ~ppc64 ~s390 ~sparc ~x86"
+IUSE="+cron"
+
+RDEPEND="cron? ( virtual/cron )"
+
+PATCHES=(
+ "${WORKDIR}/${GENTOO_PATCH}"
+ "${FILESDIR}/${P}-fcntl_h.patch"
+ "${FILESDIR}/${P}-limits_h.patch"
+)
+
+src_prepare() {
+ default
+
+ sed -e 's:/var/adm/:/var/log/:g' \
+ -i chklastlog.c || die
+}
+
+src_compile() {
+ emake CC="$(tc-getCC)" STRIP=true sense
+}
+
+src_install() {
+ dosbin chkdirs chklastlog chkproc chkrootkit chkwtmp chkutmp ifpromisc strings-static
+ dodoc ACKNOWLEDGMENTS README*
+
+ if use cron ; then
+ exeinto /etc/cron.weekly
+ newexe "${FILESDIR}"/${PN}.cron ${PN}
+ fi
+
+ systemd_dounit "${FILESDIR}/${PN}.timer" "${FILESDIR}/${PN}.service"
+}
+
+pkg_postinst() {
+ if use cron ; then
+ elog
+ elog "Edit ${EROOT}/etc/cron.weekly/chkrootkit to activate chkrootkit!"
+ elog
+ fi
+
+ if systemd_is_booted || has_version sys-apps/systemd ; then
+ elog
+ elog "To enable the systemd timer, run the following command:"
+ elog " systemctl enable --now chkrootkit.timer"
+ elog
+ fi
+
+ elog
+ elog "Some applications, such as portsentry, will cause chkrootkit"
+ elog "to produce false positives. Read the chkrootkit FAQ at"
+ elog "http://www.chkrootkit.org/ for more information."
+ elog
+}
diff --git a/app-forensics/chkrootkit/files/chkrootkit.service b/app-forensics/chkrootkit/files/chkrootkit.service
new file mode 100644
index 000000000000..a4de628cae4a
--- /dev/null
+++ b/app-forensics/chkrootkit/files/chkrootkit.service
@@ -0,0 +1,7 @@
+[Unit]
+Description=local check for signs of a rootkit
+
+[Service]
+Type=oneshot
+ExecStart=/usr/sbin/chkrootkit -q
+SyslogIdentifier=chkrootkit
diff --git a/app-forensics/chkrootkit/files/chkrootkit.timer b/app-forensics/chkrootkit/files/chkrootkit.timer
new file mode 100644
index 000000000000..0a6c0e5f5c4a
--- /dev/null
+++ b/app-forensics/chkrootkit/files/chkrootkit.timer
@@ -0,0 +1,11 @@
+[Unit]
+Description=Periodic check for signs of a rootkit
+
+[Timer]
+# Run on Sunday at 3:20am, to avoid running afoul of DST changes
+OnCalendar=Sun *-*-* 03:20:00
+RandomizedDelaySec=120
+Persistent=true
+
+[Install]
+WantedBy=timers.target
diff --git a/app-forensics/chkrootkit/metadata.xml b/app-forensics/chkrootkit/metadata.xml
index 8326effd8407..d84e1696a8f4 100644
--- a/app-forensics/chkrootkit/metadata.xml
+++ b/app-forensics/chkrootkit/metadata.xml
@@ -1,7 +1,14 @@
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE pkgmetadata SYSTEM "https://www.gentoo.org/dtd/metadata.dtd">
<pkgmetadata>
- <!-- maintainer-needed -->
+ <maintainer type="person" proxied="yes">
+ <email>martin.dummer@gmx.net</email>
+ <name>Martin Dummer</name>
+ </maintainer>
+ <maintainer type="project" proxied="proxy">
+ <email>proxy-maint@gentoo.org</email>
+ <name>Proxy Maintainers</name>
+ </maintainer>
<use>
<flag name="cron">Install cron script for weekly rootkit scans</flag>
</use>
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-29 08:07:20 +0000