RHCE Series: Build a simple RPM that packages a single file.

Alright, so this is a little more in depth than creating a simple package, but I figured I could full-fill the Red Hat requirement and create a little bit of documentation on how to create the rpm for OpenNHRP in one swoop. :)

Share on FacebookTweet about this on TwitterShare on LinkedInShare on RedditEmail this to someone

October 25, 2012

Posted In: Linux, OpenNHRP, RHCE Study Notes, RPM

Think that you have a compromised Red Hat based system?

Use RPM to search for modified binaries.

rpm -Va | grep ^..5

This one-liner will use the RPM database to compare md5sums of all installed files and will give you a report of all files that have been changed from the default install. Configuration files may not be a big deal, but binaries with md5sums that don’t match is a dead give away of a compromised system.

Share on FacebookTweet about this on TwitterShare on LinkedInShare on RedditEmail this to someone

October 13, 2012

Posted In: Linux, RPM, Security