Пакет ima-evm-integrity-check: Информация
Default inline alert: Версия в репозитории: 0.7.5-alt1
Исходный пакет: ima-evm-integrity-check
Версия: 0.7.2-alt1
Собран: 17 мая 2024 г. 17:04 в задании #348308
Категория: Система/База
Сообщить об ошибке в пакетеДомашняя страница:
Лицензия: GPLv2+
О пакете: Проверка целостности IMA/EVM
Описание:
This package make use of the IMA and EVM technologies from the Linux integrity subsystem. Basically IMA and EVM provide the following functionality: - measurement (hashing) of file content as it is accessed and keeping track of this information in an audit log; - appraisal of files, which allows to prevent access when a measurement (hash) or digital signature does not match the expected value. This package requires kernel with corresponding config options enabled.
Список rpm-пакетов, предоставляемых данным srpm-пакетом:
ima-evm-integrity-check (noarch)
make-initrd-integrity (noarch)
ima-evm-integrity-check (noarch)
make-initrd-integrity (noarch)
Сопровождающий: Paul Wolneykien
Последнее изменение
17 мая 2024 г. Paul Wolneykien 0.7.2-alt1
- Fixed manpage sections. - Fix: Explicitly insert GOST kernel modules for Streebog hashes. - Fix: Require /usr/bin/chattr. - Added GOST_PARAMSET option (undocumented). - Fix and secure shell code mostly related to ignoring -e option. - Fix: Output file names to file log. - Fixed notes about /var/log/integrity-sign.log.
17 мая 2024 г. Paul Wolneykien 0.7.1-alt1
- Added copyright information.
17 мая 2024 г. Paul Wolneykien 0.7.0-alt1
- Added manual pages!!! - Add 'ima-' prefix to systemd units. - Updated README. - Fixed getting IMA hash from the Linux kernel command line. - Use pipe mode (padd) when adding kmk-user with keyctl. - Allow to run the whole cycle in automatic mode (with file signing log at /var/log/integrity-sign.log). - Make integrity-applier a multitool (initialization and signing operations). - integrity-sign: Make file signing error fatal. - integrity-sign: Change verbosity. - integrity-sign: Fixed file verification action. - integrity-sign: Fixed EVM key symlink. - integrity-sign: Fixed option parser. - integrity-sign: Fixed usage. - Setup the default policy to also check kernel modules. - Added comments to the default config (hash algorithms and EVM).