diff --git a/security/chkrootkit/Makefile b/security/chkrootkit/Makefile index 0fb41ad7fbac..8a264424587f 100644 --- a/security/chkrootkit/Makefile +++ b/security/chkrootkit/Makefile @@ -6,7 +6,7 @@ # PORTNAME= chkrootkit -PORTVERSION= 0.40 +PORTVERSION= 0.41 CATEGORIES= security MASTER_SITES= ftp://ftp.pangeia.com.br/pub/seg/pac/ diff --git a/security/chkrootkit/distinfo b/security/chkrootkit/distinfo index 364292b2c26c..92247d7ecd1e 100644 --- a/security/chkrootkit/distinfo +++ b/security/chkrootkit/distinfo @@ -1 +1 @@ -MD5 (chkrootkit-0.40.tar.gz) = 152b45cd70ffcbe7315cb804d6ab70c5 +MD5 (chkrootkit-0.41.tar.gz) = 5f9a43ba218f76f9ab5ce3d559226831 diff --git a/security/chkrootkit/pkg-descr b/security/chkrootkit/pkg-descr index 65ec4f559f12..d80c6438f8b5 100644 --- a/security/chkrootkit/pkg-descr +++ b/security/chkrootkit/pkg-descr @@ -1,19 +1,21 @@ Chkrootkit is a tool to locally check for signs of a rootkit. ------------------------------------------------------------- - Rootkits, Worms and LKMs detected - --------------------------------- - The following rootkits, worms and LKMs are currently detected: - Solaris rootkit, FreeBSD rootkit, lrk3, lrk4, lrk5, lrk6, t0rn (and - t0rn v8), some lrk variants, Ambient's Rootkit for Linux (ARK), Ramen - Worm, rh[67]-shaper, RSHA, Romanian rootkit, RK17, Lion Worm, Adore - Worm, LPD Worm, kenny-rk, Adore LKM, ShitC Worm, Omega Worm, Wormkit - Worm, dsc-rootkit, RST.b, duarawkz, knark LKM, Monkit, Hidrootkit, - Bobkit, Pizdakit, t0rn (v8.0 variant), Showtee, Optickit, T.R.K, - MithRa's Rootkit, George, SucKIT, Scalper Worm, Slapper Worm (and - variants), OpenBSD rk v1, Illogic, SK rootkit, sebek LKM, Romanian - rootkit and LOC rootkit. + It contains: + * chkrootkit: a shell script that checks system binaries for + rootkit modification. + * ifpromisc.c: checks if the network interface is in promiscuous + mode. + * chklastlog.c: checks for lastlog deletions. + * chkwtmp.c: checks for wtmp deletions. + * check_wtmpx.c: checks for wtmpx deletions. (Solaris only) + * chkproc.c: checks for signs of LKM trojans. + * chkdirs.c: checks for signs of LKM trojans. + * strings.c: quick and dirty strings replacement. + + For an updated list of rootkits, worms and LKMs detected by + chkrootkit please visit: http://www.chkrootkit.org/ Nelson Murilo Klaus Steding-Jessen