1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
|
From: Richard Lewis <richard.lewis.debian@googlemail.com>
Date: Thu, 17 Oct 2024 22:33:17 +0100
Subject: chkrootkit: chk_tcpd
Includes some work by: Francois Marier <francois@debian.org>
Date: Sun, 9 Jul 2017 18:42:55 +0200
Forwarded: yes
(Forwarded by email: 21 Dec 2024)
chkrootkit | 18 +++++++++---------
1 file changed, 9 insertions(+), 9 deletions(-)
diff --git a/chkrootkit b/chkrootkit
index 8652bef..a6bc118 100755
@@ -2636,26 +2636,26 @@ chk_tcpd () {
STATUS=${NOT_INFECTED}
TCPD_INFECTED_LABEL="p1r0c4|hack|/dev/xmx|/dev/hdn0|/dev/xdta|/dev/tux"
CMD=""
- [ -r ${ROOTDIR}etc/inetd.conf ] &&
- CMD=`${egrep} '^[^#].*tcpd' ${ROOTDIR}etc/inetd.conf | _head -1 | \
- ${awk} '{ print $6 }'`
- if ${ps} auwx | ${egrep} xinetd | ${egrep} -v grep >/dev/null 2>&1; then
- CMD=`loc tcpd tcpd $pth`
+ [ -r "${ROOTDIR}etc/inetd.conf" ] &&
+ CMD=$(${egrep} '^[^#].*tcpd' "${ROOTDIR}etc/inetd.conf" | _head -1 | \
+ "${awk}" '{ print $6 }')
+ if "${ps}" auwx | ${egrep} xinetd | ${egrep} -v grep >/dev/null 2>&1; then
+ CMD=$(loc tcpd tcpd "$pth")
fi
- [ -z "${CMD}" ] && CMD=`loc tcpd tcpd $pth`
+ [ -z "${CMD}" ] && CMD=$(loc tcpd tcpd "$pth")
- [ "tcpd" = "${CMD}" ] && return ${NOT_FOUND};
+ [ "tcpd" = "${CMD}" -o ! -f "${CMD}" ] && return "${NOT_FOUND}";
if [ "${EXPERT}" = "t" ]; then
expertmode_output "${strings} -a ${CMD}"
return 5
fi
- if ${strings} -a ${CMD} | ${egrep} "${TCPD_INFECTED_LABEL}" > /dev/null 2>&1
+ if "${strings}" -a "${CMD}" | ${egrep} "${TCPD_INFECTED_LABEL}" > /dev/null 2>&1
then
STATUS=${INFECTED}
fi
- return ${STATUS}
+ return "${STATUS}"
}
chk_sshd () {
|
