Return To Message Board
Author Topic:   -s (file signature checksumming)
Reid Fletcher posted 4/22/03 9:35 PM     Click here to send email to Reid Fletcher  click here to send an icq message
I've been having a problem trying to getthe -s option (all options given were-asc) to try and get a really thoroughbaseline of a Windows 98 system. I seefrom previous posts that this issuehas arisen before. I started lookingaround in the code and have concludedthe problem lies partially in "subExecHash". Instead of tinkering witha quick hack to get things to work, I'mwondering if someone has developed agenuine thought-through fix. Wheremight I find it?-- Reid
Fabio Lecca posted 1/8/04 4:52 PM     Click here to send email to Fabio Lecca  
Hi, I changed the ExecHash function and now I am able to use it on Windows... here is the code, hope it helps...sub ExecHash{local($HASHFunc, $filename) = @_;local $filesig; unless ( defined $HASHFunc ) { &Error("invalid command $HASHFunc given"); } if (open (HASHIN, "$HASHFunc \"$filename\"|") ) { $filesig = <HASHIN>; close HASHIN; } unless ( $filesig ) { #&Error("$HASHFunc was unable to read $filename, or was unable to execute\n"); printf("$HASHFunc was unable to read $filename, or was unable to execute\n"); $filesig = "NOCRC"; } # Chop the <CR> off the end, do I trust the chpo function? # depends on the OS... $filesig =~ s/\n$//; return $filesig}Fabio
Return To Message Board

Back To Intrusion Detection Home Page  | Post New Topic