Is there a way to audit the installation footprint of a package on one computer from a second computer?<br></div></div>
I understand that I can run the following command to verify the
installation footpring of a package:
dpkg -V <package>
The reason why I am carrying out this audit is, however, because I somehow suspect that the system could be compromised.
If the attacker has managed to subvert <package>, he could also have
managed to subvert the dpkg audit command itself. Therefore, I cannot trust the self-referential audit:
dpkg -V dpkg
Therefore, I want to run the self-audit of the dpkg command from another system.
So, I mount the disk of this computer as folder /mnt/audit in my second computer, which I still trust. Now, I want to audit the installation foot print of dpkg in /mnt/audit from this second computer.
What command do I execute next on my second computer? Is there an option
that allows me to do something similar to the following:
dpkg -V dpkg --remote-target /mnt/audit
Is there a way to audit the installation footprint of a package on one computer from a second computer?
Is there a way to audit the installation footprint of a package on one computer from a second computer?
dpkg -V <package>
The reason why I am carrying out this audit is, however, because I somehow suspect that the system could be compromised.
I understand that I can run the following command to verify the
installation footpring of a package:
dpkg -V <package>
The reason why I am carrying out this audit is, however, because I somehow suspect that the system could be compromised.
If the attacker has managed to subvert <package>, he could also have
managed to subvert the dpkg audit command itself. Therefore, I cannot trust the self-referential audit:
dpkg -V dpkg
Therefore, I want to run the self-audit of the dpkg command from another system.
So, I mount the disk of this computer as folder /mnt/audit in my second computer, which I still trust. Now, I want to audit the installation foot print of dpkg in /mnt/audit from this second computer.
What command do I execute next on my second computer? Is there an option
that allows me to do something similar to the following:
dpkg -V dpkg --remote-target /mnt/audit
Is there a way to audit the installation footprint of a package on one computer from a second computer?
dpkg -V dpkg<br><br>Therefore, I want to run the self-audit of the dpkg command from another system.<br><br><div>So, I mount the disk of this computer as folder /mnt/audit in my second computer, which I still trust. Now, I want to audit theinstallation foot print of dpkg in /mnt/audit from this second computer.</div><div><br></div><div>What command do I execute next on my second computer? Is there an option that allows me to do something similar to the following:</div><br><div>dpkg -V dpkg
So, I mount the disk of this computer as folder /mnt/audit in my second computer, which I still trust. Now, I want to audit the installation foot print of dpkg in /mnt/audit from this second computer.
Sysop: | Keyop |
---|---|
Location: | Huddersfield, West Yorkshire, UK |
Users: | 296 |
Nodes: | 16 (2 / 14) |
Uptime: | 65:16:58 |
Calls: | 6,654 |
Files: | 12,200 |
Messages: | 5,331,838 |