Bug 491193

Summary: provide boot cd to md5sum core system files
Product: [openSUSE] openSUSE 11.1 Reporter: Elmar Stellnberger <estellnb>
Component: BasesystemAssignee: Security Team bot <security-team>
Status: VERIFIED INVALID QA Contact: E-mail List <qa-bugs>
Severity: Enhancement    
Priority: P5 - None    
Version: Final   
Target Milestone: ---   
Hardware: All   
OS: openSUSE 11.1   
See Also: https://fate.suse.com/306508
Whiteboard:
Found By: --- Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Elmar Stellnberger 2009-04-01 16:48:09 UTC 
User-Agent:       Mozilla/5.0 (compatible; Konqueror/3.5; Linux) KHTML/3.5.10 (like Gecko) SUSE

  Provide a boot cd that downloads and compares the md5sums of all relevant core files in order to check them (for the current update-state of the system). 
  Programs like chkrootkit or rkhunter can only check for a certain number of known rootkits, slightly modified ones can not be detected.

i.e. provide a program like debsums for OpenSuse and also provide a ready-to-download iso image because a cracker can alter debsums or susesums as well.

Reproducible: Always
Comment 1 Elmar Stellnberger 2009-04-01 16:52:27 UTC 
sha1 may be a better choice than md5sum
Comment 3 Thomas Biege 2009-04-14 16:24:30 UTC 
This looks more like a feature request. Please use FATE.
Comment 4 Elmar Stellnberger 2009-04-14 16:30:55 UTC 
Unfortunately I do not have access to Fate. If you think of it as a good idea and in a fact it certainly is, please post it for me on OpenFate. How else should we make sure whether a Suse-installation has been hacked or not?? rpm -qva, chkrootkit & co won`t do the job! ... and it is a really important topic, isn`t it?
Comment 5 Elmar Stellnberger 2009-07-07 09:15:36 UTC 
see https://features.opensuse.org/306508 for an openfate entry.