|
|
HP-UX Reference Volume 2 of 5 > ppdfck(1M) |
|
NAMEpdfck — compare Product Description File to File System DESCRIPTIONpdfck is a program that compares the file descriptions in a PDF (Product Description File) to the actual files on the file system. It is intended as a tool to audit the file system and detect corruption and/or tampering. Differences found are reported in the format described in the pdfdiff(1M) manual entry. (Size growth (-p option) is not reported.) For a detailed explanation of the PDF fields see pdf(4). The command pdfck -r /pseudoroot /system/AL_CORE/pdf is roughly equivalent to mkpdf -r /pseudoroot /system/AL_CORE/pdf - | \ pdfdiff /system/AL_CORE/pdf - Optionspdfck recognizes the following options:
EXAMPLESThe following output indicates tampering with /usr/bin/cat: /usr/bin/cat: mode(-r-xr-xr-x -> -r-sr-xr-x)(became suid), size(27724 -> 10345), checksum(1665 -> 398) WARNINGUse of PDFs is discouraged since this functionality is obsolete and is being replaced with Software Distributor (see sd(4)). |
|