Numero 4 web-zine anno 2010- Debianizzati.org

Impartendo i comandi:

$ su
# for x in $(ls /var/log/tiger/*.out.1); do echo -e '=======>' $x; cat $x; \
echo -e '\n'; done 
# exit

è possibile consultare il contenuto dei resoconti derivanti dall'ultima verifica eseguita che, nell'installazione del nostro caso d'uso, risulta essere:

=======> /var/log/tiger/check_known.out.1

# Checking for known intrusion signs...
# Testing for promiscuous interfaces with /bin/ip
# Testing for backdoors in inetd.conf

# Performing check of files in system mail spool...


=======> /var/log/tiger/check_listeningprocs.out.1

# Checking listening processes
--WARN-- [lin003w] The process `avahi-daemon' is listening on socket 5353 \
(UDP on every interface) is run by avahi.
--WARN-- [lin003w] The process `avahi-daemon' is listening on socket 54833 \
(UDP on every interface) is run by avahi.
--WARN-- [lin002i] The process `inetd' is listening on socket 517 \
(UDP) on every interface.
--WARN-- [lin002i] The process `inetd' is listening on socket 518 \
(UDP) on every interface.
--WARN-- [lin002i] The process `lisa' is listening on socket 7741 \
(TCP) on every interface.
--WARN-- [lin002i] The process `lisa' is listening on socket 7741 \
(UDP) on every interface.
--WARN-- [lin003w] The process `portmap' is listening on socket 111 \
(TCP on every interface) is run by daemon.
--WARN-- [lin003w] The process `portmap' is listening on socket 111 \
(UDP on every interface) is run by daemon.
--WARN-- [lin003w] The process `rpc.statd' is listening on socket 36600 \
(TCP on every interface) is run by statd.
--WARN-- [lin003w] The process `rpc.statd' is listening on socket 44997 \
(UDP on every interface) is run by statd.
--WARN-- [lin003w] The process `rpc.statd' is listening on socket 861 \
(UDP on every interface) is run by statd.


=======> /var/log/tiger/check_logfiles.out.1

# Checking for existence of log files...
--FAIL-- [logf005f] Log file /var/log/btmp permission should be 660


=======> /var/log/tiger/check_rootdir.out.1

# Performing check of root directory...


=======> /var/log/tiger/check_rootkit.out.1

# Performing check for rookits...
# Running chkrootkit (/usr/sbin/chkrootkit) to perform further checks...


=======> /var/log/tiger/check_root.out.1

# Performing common access checks for root (in /etc/default/login, /securetty, \
and /etc/ttytab...


=======> /var/log/tiger/check_runprocs.out.1

# Checking running processes
--FAIL-- [misc020f] The process 'syslogd' has not been found running in the \
processes table.
--FAIL-- [misc020f] The process 'klogd' has not been found running in the \
processes table.

Tiger