Beefy Boxes and Bandwidth Generously Provided by pair Networks
Just another Perl shrine
 
PerlMonks  

md5sum check

by w3b (Beadle)
on Mar 23, 2006 at 05:57 UTC ( [id://538658]=sourcecode: print w/replies, xml ) Need Help??
Category: Utility Scripts
Author/Contact Info w3b@da-mail.net
Description: When we have extraneous user in computer, we are in state of emergency. Bad guy can modify file like /etc/ssh/sshd_config or /etc/passwd... I don't want to check checksum every day, so i write script which do it for me :) In .sumlog we write checksum::patch to file, and that's all 
#!/usr/bin/perl
use warnings;
use strict;

if(-e '.sumlog'){
        open (FILE, '.sumlog');
        my @records =<FILE>;

        foreach my $record(@records){
                chomp($record);
                my @arty = split('::',$record);

                open(MD5, "md5sum $arty[1] |");
                my $wyn = <MD5>;

                my @act = split('  ',$wyn);

                if ($act[0] eq $arty[0]){
                        print $arty[1]."... ok \n";
                } else {
                        print $arty[1]."... not ok \n";

                }
        }
} else {
        open (FILE, '>>.sumlog');
        open (COMM, "md5sum /etc/ssh/sshd_config |");

        my @comm = split(' ', <COMM>);
        print FILE $comm[0].'::'.$comm[1];

        print "Write checksum::patch to file in .sumlog\n";
}
Replies are listed 'Best First'.
Re: md5sum check
by thor (Priest) on Mar 23, 2006 at 10:35 UTC
    This is all well and fine, but if someone has the savy to be able to alter your /etc/passwd file, they're likely not going to be tripped up by editing this thing as well. As for me, I like Tripwire. It's free for non-commercial use and does a very robust job of integrity checking.

    thor

    The only easy day was yesterday

[reply]
Re: md5sum check
by davidrw (Prior) on Mar 23, 2006 at 15:38 UTC
    An alternative to the md5sum pipe is to use Digest::MD5 and keep it all perl: 
    use Digest::MD5;
foreach my $record(@records){
  chomp($record);
  my @arty = split('::',$record);
  open MD5, '<', $arty[1];
  binmode MD5;
  my $act = Digest::MD5->new->addfile(*MD5)->hexdigest;
  printf "%s... %s \n", $arty[1], ($act eq $arty[0] ? "ok" : "not ok")
+;
  close MD5;
}

    [download]
[reply]
[d/l]
[select]
Re: md5sum check
by wazoox (Prior) on Mar 23, 2006 at 16:36 UTC
    In case you're interested in a more comprehensive integrity checking tool written in perl, have a look to afick (another file integrity checker).
[reply]
      Thx for link i will visit this site =] maybe later i will write somethink interesting;P
[reply]

Back to Code Catacombs

Log In?
Username:
Password:

What's my password?
Create A New User
Domain Nodelet?

www.com | www.net | www.org
Node Status?
node history
Node Type: sourcecode [id://538658]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this?Last hourOther CB clients
Other Users?
Others musing on the Monastery: (9)
As of 2024-04-19 16:33 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    No recent polls found