DHCP Server Security Audit

DHCP Server Security Audit
Global Information Assurance Certification Paper
Copyright SANS Institute
Author Retains Full Rights
This paper is taken from the GIAC directory of certified professionals. Reposting is not permited without express written permission.
Interested in learning more?
Check out the list of upcoming events offering
"Securing Linux/Unix (Security 506)"
at http://www.giac.org/registration/gcux
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
The security audit of the Dynamic Host Configuration Protocol (DHCP) server results
are less than desirable. The audit consisted of checking for standard configurations of a
Linux system. Items such as root access through telnet and ftp, and password selection
were checked. All items checked are not listed here. Only the negative results are listed
in this document to focus attention on items that need to be corrected.
tai
ns
f
Operating system vulnerabilities can be mitigated by keeping software up to date. Sadly
this has not happened in this case. A current version of the base operating system is
being used; however the software supporting that kernel is out of date. The vendor has
published several patches and security fixes, but none have been implemented.
re
Add-on software has been installed that is not used. It shouldn’t be loaded and active if
it’s not
in use. Active
not in998D
use just
pose
possible
avenues
of entry
to malicious
Key
fingerprint
= AF19services
FA27 2F94
FDB5
DE3D
F8B5
06E4 A169
4E46
users.
Au
th
or
Administration of the machine is non-existent. There is no documentation of any kind
for the system, no backups, and no recovery plans. Additionally no log records are
stored. In the event that it’s necessary to find out how the system is being used, it’s
unlikely that a clear picture could be developed with no log entries or documentation.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
On the bright side physical security is very good. There is very little to be done to
improve it.
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
1 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
Operating System Vulnerabilities
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
The Linux operating system is continually under development and the source code is
freely available. Malicious persons can freely examine the code for errors in order to
take advantage of them. The authors of the Linux code are prompt at correcting errors
though.
Compromise of loadable modules and shared libraries to gain unauthorized access
privileges is common, along with buffer overflow attacks, and exploiting race conditions.
To date no report of kernel modifications have been made
(http://www.cert.org/vul_notes/VN-98.02.kernel_mod.html).
Thefingerprint
audited system
is running
Red998D
Hat 6.0.
A list
of installed
software
Key
= AF19
FA27 2F94
FDB5
DE3D
F8B5 06E4
A169packages
4E46
compared against an original installation CD-Rom and Powertools CD-Rom shows that
the software packages have never been updated.
Known exploits, security alerts, and package updates for Red Hat Linux are published
by Red Hat and updated regularly. There are currently thirty-seven security alerts, and
fourteen package updates listed for Red Hat 6.0
(http://www.redhat.com/support/errata/rh60-errata-general.html).
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Configuration Vulnerabilites
There are currently nineteen services running on this system. As a single purpose
DHCP server there are many extraneous services running. Services such as ftp, and
MySql should be turned off and removed from the system. The full list, derived using
List Open Files (lsof) (http://freesoft.online.sh.cn/mirrors/hpux.freeware/Sysadmin/lsof4.48/lsof-4.48.man.html), is included as Appendix A. Some duplication occurs for some
services, due to activity on several ports at once. The list of active services from netstat
is included as Appendix B, but is not complete, as it doesn’t contain UDP services.
Linux comes installed with TCP Wrappers. The configuration files hosts.allow and
hosts.deny are empty. In addition, no banner files are setup. Banners can make legal
action against unauthorized intrusion easier.
Crack (http://freesoft.online.sh.cn/mirrors/hpux.freeware/Sysadmin/crack-5.0/crack5.0.man.html), was unable to break any passwords on the system. Strong passwords are
being used; in addition there are only two active accounts on the system, root and the
administrator. No password aging is being used. It’s unclear how long the accounts have
been using the current passwords.
Shell and rlogin are enabled; however no .rhosts of hosts.equiv files are currently on the
system. No regular checks are made for .rhosts and hosts.equiv as well. These services
allow passwords and userids to be passed in clear text allowing anyone snooping on the
Ethernet segment to obtain access.
Linux Loader (LILO) is not password protected allowing single user booting.
Root password is not required for single user mode.
Secure
Shell Daemon(SSHD)
Key
fingerprint
= AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
(http://www.employees.org/~satch/ssh/faq/manpages/sshd1_man.html) is installed and
compiled for use with TCP wrappers, but again TCP Wrappers is not configured to
control access to this system.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
2 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
After obtaining permission from management a network security scan was run against
the system after business hours. Nessus (http://www.nessus.org/documentation.html)
was used to scan the host for vulnerabilities. NMAP (http://www.insecure.org/nmap)
was used to scan for open ports on the system. The NMAP report is included as part of
the Nessus report in Appendix C. Nessus found only one security hole, fourteen security
warnings, and eight security notes. The security hole found was sendmail is currently
configured to allow two commands, EXPN and VRFY to be run. These commands allow
outsiders to obtain users names.
2,
Au
th
or
re
tai
ns
f
Risks From Third Party Software
Apache web server 1.3.9 is currently configured to allow server side includes.
Malicious
code =can
be included
in CGI
scripts.
though
only allow
Key
fingerprint
AF19
FA27 2F94
998D
FDB5Even
DE3D
F8B5 CGI
06E4scripts
A169 are
4E46
to be executed from a specific directory, .htaccess files are allowed to over ride all
security controls.
PHP3 3.0.13is installed in the Apache web server as a module. PHP3 scripts are
allowed to be executed from anywhere in the document tree. PHP3 scripts can also use
server side includes. There is an update available for PHP3 that has not been installed.
MySQL 3.22.29 is installed. There are no current security alerts for this version of
MySQL on Red Hat 6.0.
tu
te
20
00
-2
00
Administrative Practices
Logging is set to default. Only five days of logs are kept, more are needed in the event
of an intrusion.
Passwords use shadowing and MD5 hashes, but as stated above no password aging is in
affect. Aging would require passwords to be changed on a regular basis.
There is currently no documentation on this system. It’s configuration, equipment
inventory, or usage policy does not exist.
SA
NS
In
sti
Backup Policies, disaster preparedness
There is no boot diskette for this system. If the system fails to boot for any reason, it
may not be recoverable.
There are no backups for this system. Catastrophic failure would be unrecoverable.
The system is on an uninterruptible power supply (UPS) with an estimated power
supply of 2 hours. The UPS is not set up to power down the server when the battery runs
low though.
©
Physical Security
The system is located on the floor in a steel vault. It is placed under a table against the
wall in a position that in can’t be bumped or kicked by personnel. There are no external
peripherals (keyboard, monitor, printer, hard drives, etc) attached to the system. The
reset and power buttons are still active on the CPU case. The power cords are physically
accessible.
BIOS
has noFA27
security
features
turnedDE3D
on, andF8B5
the boot
allows for
Key
fingerprint
= AF19
2F94
998D FDB5
06E4sequence
A169 4E46
booting from a floppy diskette.
The vault the system is located in extends on all six sides of the room. With both a key
locked gate, and a tumbler type combination lock door. Access to the vault is both
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
3 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
manually and electronically logged. A security guard is posted in visual site of the vault
door. An alarm system is installed in the vault.
All network cables are run in steel conduit to an Ethernet switch in a lacked cabinet.
The cabinet is located in another room with a cipher lock door. Again the room is in
plain sight of the security guard, and alarmed. The Ethernet switch is configured for
MAC layer security.
Prioritized list of security vulnerabilities
re
tai
ns
f
1. Network access to the system is not controlled.
2. Unnecessary services are being run.
3. Installed software is not up to date.
There is =noAF19
current
backup
the system.
Key4.fingerprint
FA27
2F94of
998D
FDB5 DE3D F8B5 06E4 A169 4E46
5. There is no way to boot the system in an emergency.
th
or
Prioritized list of recommended fixes
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
1. Disable unnecessary services. Specifically telnet, ftp, smtp, finger, linuxconf ,
auth, sunrpc, samba, imap, rshell, rlogin, squid, mysql, ntalk.
2. Remove unnecessary software. Specifically anonftp-2.8-1, apache-devel-1.3.9-4,
portmap-4.0-15, rsh-0.10-25, samba-2.0.3-8, sendmail-8.9.3-10, wu-ftpd2.4.2vr17-3, yp-tools-2.2-1, ypbind-3.3-20, squid-2.2.STABLE1-1, MySQLclient-3.22.29-1, php-pg-mysql-3.0.13-1, mod_perl-1.19-2, MySQL-3.22.29-1,
freetype-devel-1.2-7, php-pg-3.0.13-1, openldap-devel-1.2.9-5, php-pg-manual3.0.13-1, apache-1.3.9-4, openldap-1.2.9-5, pam_ldap-36-1, imap-4.7-5.
3. Update all remaining software packages. Consider installing Autorpm to
maintain a list of available updates.
4. Configure TCP Wrappers to limit access with a default all:deny statement in
hosts.deny.
5. Back the system up for emergency recovery and create an emergency boot
diskette.
6. Install tripwire. Copy the tripwire database to a floppy for storage with the
emergency boot diskette.
7. Document the system, both physically and installed software.
8. Rerun audit to insure nothing was missed.
9. Consider placing the server in a lockable cabinet to deny access to CPU switches
and power cords.
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
4 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
Appendix A.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
/usr/sbin/lsof -i +M
COMMAND PID USER FD TYPE DEVICE SIZE NODE NAME
portmap 261 root 3u inet 379
UDP *:sunrpc[rpcbind]
portmap 261 root 4u inet 382
TCP *:sunrpc[rpcbind] (LISTEN)
inetd
376 root 4u inet 518
TCP *:ftp (LISTEN)
inetd
376 root 5u inet 519
TCP *:telnet (LISTEN)
inetd
376 root 6u inet 520
TCP *:shell (LISTEN)
inetd
376 root 8u inet 521
TCP *:login (LISTEN)
inetd
376 root 10u inet 522
UDP *:talk
inetdfingerprint
376 root
11uFA27
inet 2F94
523 998D
UDP
*:ntalk
Key
= AF19
FDB5
DE3D F8B5 06E4 A169 4E46
inetd
376 root 12u inet 524
TCP *:finger (LISTEN)
inetd
376 root 13u inet 525
TCP *:auth (LISTEN)
inetd
376 root 14u inet 526
TCP *:linuxconf (LISTEN)
inetd
376 root 15u inet 19751
TCP *:imap2 (LISTEN)
sshd
383 root 3u inet 535
TCP *:ssh (LISTEN)
dhcpd
397 root 10u inet 556
UDP *:bootps
sendmail 432 root 4u inet 184161
TCP *:smtp (LISTEN)
mysqld
498 root 3u inet 701
TCP *:mysql (LISTEN)
mysqld
500 root 3u inet 701
TCP *:mysql (LISTEN)
mysqld
501 root 3u inet 701
TCP *:mysql (LISTEN)
smbd
517 root 5u inet 743
TCP *:netbios-ssn (LISTEN)
nmbd
528 root 5u inet 759
UDP *:netbios-ns
nmbd
528 root 6u inet 761
UDP *:netbios-dgm
nmbd
528 root 8u inet 763
UDP 3noc.army.mil:netbios-ns
nmbd
528 root 10u inet 765
UDP 3noc.army.mil:netbios-dgm
nmbd
528 root 11u inet 767
UDP localhost:netbios-ns
nmbd
528 root 12u inet 769
UDP localhost:netbios-dgm
squid 14315 root 2u inet 174238
TCP localhost:2822->localhost:2821
(ESTABLISHED)
squid 14315 root 29u inet 174243
TCP *:3128 (LISTEN)
squid 14315 root 30u inet 174244
UDP *:3401
dnsserver 14316 squid 0u inet 174239
TCP localhost:2821->localhost:2822
(ESTABLISHED)
dnsserver 14316 squid 1u inet 174239
TCP localhost:2821->localhost:2822
(ESTABLISHED)
nmbd 16811 root 5u inet 759
UDP *:netbios-ns
nmbd 16811 root 6u inet 761
UDP *:netbios-dgm
nmbd 16811 root 8u inet 763
UDP 3noc.army.mil:netbios-ns
nmbd 16811 root 10u inet 765
UDP 3noc.army.mil:netbios-dgm
nmbdfingerprint
16811=root
inet
UDP localhost:netbios-ns
Key
AF1911u
FA27
2F94767
998D FDB5
DE3D F8B5 06E4 A169 4E46
nmbd 16811 root 12u inet 769
UDP localhost:netbios-dgm
nmbd 16811 root 14u inet 75709
TCP 3noc.army.mil:3711>150.114.100.220:netbios-ssn (ESTABLISHED)
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
5 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
nmbd 16878 root 5u inet 759
UDP *:netbios-ns
nmbd 16878 root 6u inet 761
UDP *:netbios-dgm
nmbd 16878 root 8u inet 763
UDP 3noc.army.mil:netbios-ns
nmbd 16878 root 10u inet 765
UDP 3noc.army.mil:netbios-dgm
nmbd 16878 root 11u inet 767
UDP localhost:netbios-ns
nmbd 16878 root 12u inet 769
UDP localhost:netbios-dgm
nmbd 16878 root 14u inet 75806
TCP 3noc.army.mil:3712>150.114.100.220:netbios-ssn (ESTABLISHED)
sshd 17639 root 5u inet 185543
TCP 3noc.army.mil:ssh->192.168.254.4:1096
(ESTABLISHED)
sshd 17663 root 5u inet 185576
TCP 3noc.army.mil:ssh->192.168.254.4:1097
(ESTABLISHED)
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
6 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
Appendix B.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
netstat -at
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address
Foreign Address
State
tcp
0
0 3noc.army.mil:ssh
192.168.254.4:1097 ESTABLISHED
tcp
0
0 3noc.army.mil:ssh
192.168.254.4:1096 ESTABLISHED
tcp
0
0 *:smtp
*:*
LISTEN
tcp
0
0 *:3128
*:*
LISTEN
tcp
0
0 localhost:2821
localhost:2822
ESTABLISHED
tcp
0
0 localhost:2822
localhost:2821
ESTABLISHED
tcp
0
0 3noc.army.mil:3712
150.114.100:netbios-ssn ESTABLISHED
tcp fingerprint
0
0 3noc.army.mil:3711
150.114.100:netbios-ssn
ESTABLISHED
Key
= AF19 FA27 2F94 998D
FDB5 DE3D F8B5 06E4
A169 4E46
tcp
0
0 *:imap2
*:*
LISTEN
tcp
0
0 *:netbios-ssn
*:*
LISTEN
tcp
0
0 *:mysql
*:*
LISTEN
tcp
0
0 *:ssh
*:*
LISTEN
tcp
0
0 *:linuxconf
*:*
LISTEN
tcp
0
0 *:auth
*:*
LISTEN
tcp
0
0 *:finger
*:*
LISTEN
tcp
0
0 *:login
*:*
LISTEN
tcp
0
0 *:shell
*:*
LISTEN
tcp
0
0 *:telnet
*:*
LISTEN
tcp
0
0 *:ftp
*:*
LISTEN
tcp
0
0 *:sunrpc
*:*
LISTEN
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
7 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
Appendix C.
Nessus Scan Report
------------------
SUMMARY
re
tai
ns
f
- Number of hosts which were alive during the test : 1
- Number of security holes found : 1
- Number of security warnings found : 14
- Number of security notes found : 8
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
th
or
TESTED HOSTS
2,
Au
NNN.NNN.NNN.NNN (Security holes found)
-2
00
DETAILS
©
SA
NS
In
sti
tu
te
20
00
+ NNN.NNN.NNN.NNN :
. List of open ports :
o telnet (23/tcp) (Security warnings found)
o ssh (22/tcp) (Security warnings found)
o ftp (21/tcp) (Security warnings found)
o smtp (25/tcp) (Security hole found)
o finger (79/tcp) (Security warnings found)
o linuxconf (98/tcp) (Security warnings found)
o auth (113/tcp) (Security warnings found)
o sunrpc (111/tcp)
o netbios-ssn (139/tcp)
o imap2 (143/tcp)
o shell (514/tcp) (Security warnings found)
o login (513/tcp) (Security warnings found)
o unknown (3128/tcp) (Security warnings found)
o mysql (3306/tcp)
o unknown (6010/tcp)
o general/udp (Security notes found)
o netbios-ns (137/udp) (Security warnings found)
o ntalk
(518/udp)
(Security
Key
fingerprint
= AF19
FA27 notes
2F94 found)
998D FDB5 DE3D F8B5 06E4 A169 4E46
o general/icmp (Security warnings found)
. Warning found on port telnet (23/tcp)
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
8 of 136
Author retains full rights.
The Telnet service is running.
This service is dangerous in the sense that
it is not ciphered - that is, everyone can sniff
the data that passes between the telnet client
and the telnet server. This includes logins
and passwords.
tai
ns
f
You should disable this service and use OpenSSH instead.
(www.openssh.com)
ull
rig
ht
s.
DHCP Server Security Audit
Gary Worthy
Solution
: Comment
the2F94
'telnet'
line FDB5
in /etc/inetd.conf.
Key
fingerprint
= AF19 out
FA27
998D
DE3D F8B5 06E4 A169 4E46
th
or
re
Risk factor : Low
CVE : CAN-1999-0619
Au
. Information found on port telnet (23/tcp)
00
-2
00
2,
Remote telnet banner :
Kernel 2.2.5-15 on an i586
tu
te
20
. Warning found on port ssh (22/tcp)
©
SA
NS
In
sti
You are running a version of SSH which is
older than (or as old as) version 1.2.27.
If this version was compiled against the
RSAREF library, then it is very likely to
be vulnerable to a buffer overflow which
may be exploited by a cracker to gain
root on your system.
To determine if you compiled ssh against
the RSAREF library, type 'ssh -V' on the
remote host.
Risk
factor : High
Key
fingerprint
= AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Solution : Use ssh 2.x, or do not compile ssh
against the RSAREF library
CVE : CVE-1999-0834
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
9 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
. Information found on port ssh (22/tcp)
ull
rig
ht
s.
Remote SSH version : ssh-1.5-1.2.27
. Warning found on port ftp (21/tcp)
or
re
tai
ns
f
The FTP service allows anonymous logins. If you do not
want to share data with anyone you do not know, then you should deactivate
the anonymous account, since it can only cause troubles.
most Unix
system,
KeyUnder
fingerprint
= AF19
FA27doing
2F94 :998D FDB5 DE3D F8B5 06E4 A169 4E46
echo ftp >> /etc/ftpusers
will correct this.
Au
th
Risk factor : Low
CVE : CAN-1999-0497
00
2,
. Information found on port ftp (21/tcp)
00
-2
Remote FTP server banner :
3noc.army.mil ftp server (version wu-2.4.2-vr17(1) mon apr 19 09:21:53 edt
1999) ready.
tu
te
20
. Vulnerability found on port smtp (25/tcp) :
NS
In
sti
It was possible to crash the remote SMTP server
by opening a great amount of sockets on it.
©
SA
This problem allows crackers to make your
SMTP server crash, thus preventing you
from sending or receiving e-mails, which
will affect your work.
Solution :
If your SMTP server is contrained to a maximum
number of processes, i.e. it's not running as
root
and as a =
ulimit
user
processes'
of DE3D F8B5 06E4 A169 4E46
Key
fingerprint
AF19'max
FA27
2F94
998D FDB5
256, you may consider upping the limit with 'ulimit -u'.
If your server has the ability to protect itself from
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
10 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
SYN floods, you should turn on that features, i.e. Linux's
CONFIG_SYN_COOKIES
ull
rig
ht
s.
The best solution may be cisco's 'TCP intercept' feature.
Risk factor : Serious
CVE : CAN-1999-0846
tai
ns
f
. Warning found on port smtp (25/tcp)
or
th
00
2,
Au
The EXPN command can be used to find
the delivery adress of mail aliases, or
even the full name of the recipients, and
the VRFY command may be used to check the
validity of an account.
re
The
remote SMTP
server
Key
fingerprint
= AF19
FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
answers to the EXPN and/or VRFY commands.
20
00
-2
Your mailer should not allow remote users to
use any of these commands, because it gives
them too much informations.
In
sti
tu
te
Solution : if you are using sendmail, add the
option
O PrivacyOptions=goaway
in /etc/sendmail.cf.
NS
Risk factor : Low
CVE : CAN-1999-0531
©
SA
. Information found on port smtp (25/tcp)
Remote SMTP server banner :
3noc.army.mil ESMTP Sendmail 8.9.3/8.9.3
Thu, 10 Aug 2000 13:45:15 -0500
214-This is Sendmail version 8.9.3214-Topics:
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
214- HELO EHLO MAIL RCPT DATA
214- RSET NOOP QUIT HELP VRFY
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
11 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
214- EXPN VERB ETRN DSN
214-To report bugs in the implementation send email to
214- sendmail-bugs@sendmail.org.
tai
ns
f
214-For local information send email to Postmaster at your site.
ull
rig
ht
s.
214-For more info use "HELP <topic>".
or
re
214 End of HELP info
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Au
th
. Warning found on port finger (79/tcp)
-2
00
2,
The 'finger' service provides useful informations
to crackers, since it allow them to gain usernames, check if a machine
is being used, and so on...
00
Risk factor : Low.
te
20
Solution : comment out the 'finger' line in /etc/inetd.conf
CVE : CVE-1999-0612
sti
tu
. Warning found on port linuxconf (98/tcp)
NS
In
Linuxconf is running on this
port
©
SA
. Warning found on port auth (113/tcp)
The 'ident' service provides sensitives informations
to the intruders : it mainly says which accounts are running which
services. This helps attackers to focus on valuable services [those
owned by root]. If you don't use this service, disable it.
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Risk factor : Low.
Solution : comment out the 'auth' line in /etc/inetd.conf
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
12 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
CVE : CAN-1999-0629
ull
rig
ht
s.
. Warning found on port shell (514/tcp)
tai
ns
f
The rsh service is running.
This service is dangerous in the sense that
it is not ciphered - that is, everyone can sniff
the data that passes between the rsh client
and the rsh server. This includes logins
and passwords.
or
Solution : Comment out the 'rsh' line in /etc/inetd.conf.
re
You
should disable
service
use FDB5
ssh instead.
Key
fingerprint
= AF19this
FA27
2F94and
998D
DE3D F8B5 06E4 A169 4E46
Au
th
Risk factor : Low
CVE : CAN-1999-0651
00
2,
. Warning found on port login (513/tcp)
tu
te
20
00
-2
The rlogin service is running.
This service is dangerous in the sense that
it is not ciphered - that is, everyone can sniff
the data that passes between the rlogin client
and the rlogin server. This includes logins
and passwords.
In
sti
You should disable this service and use openssh instead
(www.openssh.com)
NS
Solution : Comment out the 'rlogin' line in /etc/inetd.conf.
SA
Risk factor : Low
CVE : CAN-1999-0651
©
. Warning found on port unknown (3128/tcp)
a web server is running on this
port
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
. Warning found on port unknown (3128/tcp)
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
13 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
an HTTP proxy is running on this
port
ull
rig
ht
s.
. Warning found on port unknown (3128/tcp)
re
tai
ns
f
The Sambar webserver is running. It provides a webinterface for sending
emails.
You may simply pass a POST request to /session/sendmail and by this send
mails to anyone you want.
Due to the fact that Sambar does not check HTTP referers you do not need
direct access to the server!
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
See http://www.toppoint.de/~hscholz/sambar for more information.
th
or
Solution : Try to disable this module. There might be a patch in the future.
00
2,
Au
Risk factor :
High
tu
te
20
The remote web server type is :
Squid/2.2.STABLE1
00
-2
. Information found on port unknown (3128/tcp)
In
sti
We recommend that you configure your web server to return
bogus versions, so that it makes the cracker job more difficult
NS
. Information found on port general/udp
©
SA
For your information, here is the traceroute to NNN.NNN.NNN.NNN :
NNN.NNN.NNN.NNN
. Warning found on port netbios-ns (137/udp)
. The following 7 NetBIOS names have been gathered :
Key3NOC
fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
3NOC
3NOC
__MSBROWSE__
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
14 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
HOOD
HOOD
HOOD
tai
ns
f
If you do not want to allow everyone to find the NetBios name
of your computer, you should filter incoming traffic to this port.
ull
rig
ht
s.
. This SMB server seems to be a SAMBA server (this is not a security
risk, this is for your information). This can be told because this server
claims to have a null MAC address
re
Risk factor :
KeyMedium
fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Au
th
or
. Information found on port ntalk (518/udp)
00
2,
talkd is running (talkd is the server that notifies a user
that someone else wants to initiate a conversation)
te
20
00
-2
Malicious hackers may use it to abuse legitimate
users by conversing with them with a false identity
(social engineering).
In addition to this, crackers may use this service
to execute arbitrary code on your system.
In
sti
tu
Solution: Disable talkd access from the network by adding the
approriate rule on your firewall. If you do not
need talkd, comment out the relevant line in /etc/inetd.conf.
SA
NS
See aditional information regarding the dangers of keeping
this port open:
http://www.cert.org/advisories/CA-97.04.talkd.html
©
Risk factor : Medium
CVE : CVE-1999-0048
. Information found on port ntalk (518/udp)
talkd
protocol=version:
1 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Key
fingerprint
AF19 FA27
CVE : CVE-1999-0048
. Warning found on port general/icmp
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
15 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
The remote host answers to an ICMP timestamp
request. This allows an attacker to know the
date which is set on your machine.
This may help him to defeat all your
time based authentifications protocols.
tai
ns
f
Solution : filter out the icmp timestamp
requests (13), and the outgoing icmp
timestamp
replies
(14).
Key
fingerprint
= AF19
FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Au
th
or
re
Risk factor : Low
CVE : CAN-1999-0524
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
-----------------------------------------------------This file was generated by the Nessus Security Scanner
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
16 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
Appendix D.
Installed Software Packages
or
re
tai
ns
f
ull
rig
ht
s.
Name
: setup
Relocations: (not relocateable)
Version : 2.0.2
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 14:39:24 1999
Install date: Fri Oct 1 11:17:31 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: setup-2.0.2-1.src.rpm
Size
: 16267
License: public domain
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A set of system configuration and setup files.
Description :
The setup
package
contains
a set
of 998D
very important
system
Key
fingerprint
= AF19
FA27
2F94
FDB5 DE3D
F8B5 06E4 A169 4E46
configuration and setup files, such as passwd, group,
profile and more.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
You should install the setup package because you will
find yourself using its many features for system
administration.
Name
: filesystem
Relocations: (not relocateable)
Version : 1.3.4
Vendor: Red Hat Software
Release : 4
Build Date: Sun Mar 21 15:06:24 1999
Install date: Fri Oct 1 11:17:32 1999 Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: filesystem-1.3.4-4.src.rpm
Size
: 81958
License: Public Domain
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : The basic directory layout for a Linux system.
Description :
The filesystem package is one of the basic packages that is installed on
a Red Hat Linux system. Filesystem contains the basic directory layout
for a Linux operating system, including the correct permissions for the
directories.
Name
: basesystem
Relocations: (not relocateable)
Version : 6.0
Vendor: Red Hat Software
Release : 4
Build Date: Mon Apr 12 16:12:37 1999
Install date: Fri Oct 1 11:17:32 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: basesystem-6.0-4.src.rpm
Size
:0
License: public domain
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The skeleton package which defines a simple Red Hat Linux system.
Description :
Basesystem defines the components of a basic Red Hat Linux system (for
example,
the package
order
to FDB5
use during
bootstrapping).
Key
fingerprint
= AF19installation
FA27 2F94
998D
DE3D
F8B5 06E4 A169 4E46
Basesystem should be the first package installed on a system, and it
should never be removed.
Name
: ldconfig
Relocations: (not relocateable)
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
17 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Version : 1.9.5
Vendor: Red Hat Software
Release : 15
Build Date: Fri Apr 16 00:59:27 1999
Install date: Fri Oct 1 11:17:32 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: ldconfig-1.9.5-15.src.rpm
Size
: 228695
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Creates a shared library cache and maintains symlinks for ld.so.
Description :
Ldconfig is a basic system program which determines run-time link
bindings between ld.so and shared libraries. Ldconfig scans a running
system and sets up the symbolic links that are used to load shared
libraries properly. It also creates a cache (/etc/ld.so.cache) which
speeds
the loading
of programs
which
use FDB5
sharedDE3D
libraries.
Key
fingerprint
= AF19
FA27 2F94
998D
F8B5 06E4 A169 4E46
Name
: AfterStep
Relocations: (not relocateable)
Version : 1.7.90
Vendor: Red Hat Software
Release : 3
Build Date: Mon Apr 19 14:55:21 1999
Install date: Fri Oct 1 11:17:41 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/Desktops
Source RPM: AfterStep-1.7.90-3.src.rpm
Size
: 4248520
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : AfterStep Window Manager
Description :
AfterStep is a continuation of the BowMan window manager which was
originally put together by Bo Yang. BowMan was based on the fvwm window
manager, written by Robert Nation. Fvwm was based on code from twm. And so
on... It was originally designed to emulate some of the look and feel of the
NEXTSTEP user interface, but has since taken steps towards adding more
useful, requested, and neat features especially in 1.4 version ! The changes
which comprise AfterStep's personality were originally part of bowman
development, but due to a desire to move past simple emulation and into a
niche as its own valuable window manager, AfterStep designers decided to
change the project name and move on.
NS
Important features of AfterStep include:
©
SA
1. Wharf: a free-floating application loader which can "Swallow" running
programs and also can contain "Folders" of more applications.
2. Gradient filled TitleBars with 5 button : help/zap, action/tasks,
iconize/maximise, shade/stick & close/destroy buttons
3. Gradient filled root window PopUp menus which can be configured to
accomodate different tastes and styles of management
4. NEXTSTEP style icons which give a consistent look to the entire desktop
5. Pixmapped
withFA27
desktop
Key
fingerprintPager
= AF19
2F94pixmmaping
998D FDB5 DE3D F8B5 06E4 A169 4E46
6. Easy to use look files, to share you desktop appearance with your friends
7. Start menu entries in a hierarchy of directories
8. WinList : a tasklist which can be horizontal or vertical
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
18 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
th
or
re
tai
ns
f
ull
rig
ht
s.
9. Many modules & asapps to give a good look to your X window station
Name
: AfterStep-APPS
Relocations: (not relocateable)
Version : 990329
Vendor: Red Hat Software
Release : 2
Build Date: Mon Apr 5 20:00:12 1999
Install date: Fri Oct 1 11:17:43 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/Desktops
Source RPM: AfterStep-APPS-990329-2.src.rpm
Size
: 1104878
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Applets you can use with AfterStep and compatible window managers.
Description :
What's a cool window manager without some cool applets?
Well... it's still cool, but these applets which can
be used
in the Wharf
module
AfterStep
or Window
Key
fingerprint
= AF19
FA27for
2F94
998D FDB5
DE3D F8B5 06E4 A169 4E46
Maker can add both spice and productivity to your
preferred window manager, such as a handy clock and
information about system resources.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
If you've installed the AfterStep packages, you
should also install these packages. Enjoy!
Name
: aktion
Relocations: /usr
Version : 0.3.3
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 5 11:00:35 1999
Install date: Fri Oct 1 11:17:44 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: aktion-0.3.3-1.src.rpm
Size
: 322209
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : aKtion - Movie player for KDE
Description :
Movie player for the K Desktop Environment. Requires 'xanim' to function.
Name
: anonftp
Relocations: /home/ftp
Version : 2.8
Vendor: Red Hat Software
Release : 1
Build Date: Sun Mar 21 10:49:24 1999
Install date: Fri Oct 1 11:17:46 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: anonftp-2.8-1.src.rpm
Size
: 1577632
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A program which enables anonymous FTP access.
Description :
The anonftp package contains the files you need in order to
allow anonymous FTP access to your machine. Anonymous FTP access allows
anyone to download files from your machine without having a user account.
Anonymous FTP is a popular way of making programs available via the
Internet.
Key
fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
You should install anonftp if you would like to enable anonymous FTP
downloads from your machine.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
19 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
th
or
re
tai
ns
f
ull
rig
ht
s.
Name
: AnotherLevel
Relocations: (not relocateable)
Version : 0.9
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 5 14:53:07 1999
Install date: Fri Oct 1 11:17:47 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/Desktops
Source RPM: AnotherLevel-0.9-1.src.rpm
Size
: 295682
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A customized configuration of the fvwm2 window manager.
Description :
AnotherLevel is a custom configuration of the popular fvwm2
window manager. Fvwm stands for (?) virtual window manager.
You can fill in the blank for the 'f': fast, flexible,
friendly
and fabulous
allFA27
could2F94
apply.
ThisFDB5
window
manager
Key
fingerprint
= AF19
998D
DE3D
F8B5 06E4 A169 4E46
is based on TheNextLevel desktop configuration, created
by Greg J. Badros, which won the 1996 Red Hat Desktop
Contest.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
AnotherLevel is designed to be easily configured by the
user.
Name
: glibc
Relocations: (not relocateable)
Version : 2.1.1
Vendor: Red Hat Software
Release : 6
Build Date: Fri Apr 16 17:50:24 1999
Install date: Fri Oct 1 11:18:24 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: glibc-2.1.1-6.src.rpm
Size
: 26821530
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : GNU libc
Description :
Contains the standard libraries that are used by multiple programs on
the system. In order to save disk space and memory, as well as to
ease upgrades, common system code is kept in one place and shared between
programs. This package contains the most important sets of shared libraries,
the standard C library and the standard math library. Without these, a
Linux system will not function. It also contains national language (locale)
support and timezone databases.
Name
: chkconfig
Relocations: (not relocateable)
Version : 1.0.6
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 05:44:02 1999
Install date: Fri Oct 1 11:18:35 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: chkconfig-1.0.6-1.src.rpm
Size
: 84040
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary
: A=system
tool for
maintaining
the /etc/rc.d
hierarchy.
Key
fingerprint
AF19 FA27
2F94
998D FDB5
DE3D F8B5
06E4 A169 4E46
Description :
Chkconfig is a basic system utility. It updates and queries runlevel
information for system services. Chkconfig manipulates the numerous
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
20 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
or
re
tai
ns
f
ull
rig
ht
s.
symbolic links in /etc/rc.d, so system administrators don't have to
manually edit the symbolic links as often.
Name
: mktemp
Relocations: (not relocateable)
Version : 1.5
Vendor: Red Hat Software
Release : 1
Build Date: Mon Mar 22 19:32:06 1999
Install date: Fri Oct 1 11:18:36 1999 Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: mktemp-1.5-1.src.rpm
Size
: 8943
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: http://www.openbsd.org
Summary : A small utility for safely making /tmp files.
Description :
The mktemp
utility
takesFA27
a given
file998D
nameFDB5
template
andF8B5
overwrites
Key
fingerprint
= AF19
2F94
DE3D
06E4 A169 4E46
a portion of it to create a unique file name. This allows shell
scripts and other programs to safely create and use /tmp files.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
Install the mktemp package if you need to use shell scripts or other
programs which will create and use unique /tmp files.
Name
: termcap
Relocations: (not relocateable)
Version : 9.12.6
Vendor: Red Hat Software
Release : 15
Build Date: Mon Mar 29 10:08:46 1999
Install date: Fri Oct 1 11:18:37 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: termcap-9.12.6-15.src.rpm
Size
: 434898
License: none
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The terminal feature database used by certain applications.
Description :
The termcap package provides the /etc/termcap file. /etc/termcap is
a database which defines the capabilities of various terminals and
terminal emulators. Certain programs use the /etc/termcap file to
access various features of terminals (the bell, colors, and graphics,
etc.).
Name
: libtermcap
Relocations: (not relocateable)
Version : 2.0.8
Vendor: Red Hat Software
Release : 13
Build Date: Sun Mar 21 09:37:41 1999
Install date: Fri Oct 1 11:18:38 1999 Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: libtermcap-2.0.8-13.src.rpm
Size
: 59608
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: ftp://sunsite.unc.edu/pub/Linux/GCC/
Summary : A basic system library for accessing the termcap database.
Description :
The libtermcap
package
contains
a basic
needed06E4
to access
Key
fingerprint =
AF19 FA27
2F94
998Dsystem
FDB5 library
DE3D F8B5
A169 4E46
the termcap database. The termcap library supports easy access to the
termcap database, so that programs can output character-based displays in
a terminal-independent manner.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
21 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tai
ns
f
ull
rig
ht
s.
Name
: bash
Relocations: (not relocateable)
Version : 1.14.7
Vendor: Red Hat Software
Release : 16
Build Date: Tue Apr 6 11:33:12 1999
Install date: Fri Oct 1 11:18:39 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Shells Source RPM: bash-1.14.7-16.src.rpm
Size
: 558538
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The GNU Bourne Again shell (bash).
Description :
Bash is a GNU project sh-compatible shell or command language
interpreter. Bash (Bourne Again shell) incorporates useful features
from the Korn shell (ksh) and the C shell (csh). Most sh scripts
can be
run by bash
without
modification.
Key
fingerprint
= AF19
FA27
2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
2,
Au
th
or
re
Bash offers several improvements over sh, including command line
editing, unlimited size command history, job control, shell
functions and aliases, indexed arrays of unlimited size and
integer arithmetic in any base from two to 64. Bash is ultimately
intended to conform to the IEEE POSIX P1003.2/ISO 9945.2 Shell and
Tools standard.
©
SA
NS
In
sti
tu
te
20
00
-2
00
Bash is the default shell for Red Hat Linux. You should install
bash because of its popularity and power. You'll probably end up
using it.
Name
: ncurses
Relocations: (not relocateable)
Version : 4.2
Vendor: Red Hat Software
Release : 18
Build Date: Tue Apr 6 10:45:41 1999
Install date: Fri Oct 1 11:18:46 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: ncurses-4.2-18.src.rpm
Size
: 2679359
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A CRT screen handling and optimization package.
Description :
The curses library routines are a terminal-independent method of
updating character screens with reasonable optimization. The
ncurses (new curses) library is a freely distributable replacement
for the discontinued 4.4BSD classic curses library.
Name
: info
Relocations: (not relocateable)
Version : 3.12f
Vendor: Red Hat Software
Release : 4
Build Date: Mon Mar 22 00:22:38 1999
Install date: Fri Oct 1 11:18:50 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: texinfo-3.12f-4.src.rpm
Size fingerprint
: 251071
GPLDE3D F8B5 06E4 A169 4E46
Key
= AF19 FA27 2F94License:
998D FDB5
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A stand-alone TTY-based reader for GNU texinfo documentation.
Description :
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
22 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
The GNU project uses the texinfo file format for much of its
documentation. The info package provides a standalone TTY-based browser
program for viewing texinfo files.
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
You should install info, because GNU's texinfo documentation is a valuable
source of information about the software on your system.
Name
: fileutils
Relocations: (not relocateable)
Version : 4.0
Vendor: Red Hat Software
Release : 1
Build Date: Tue Mar 23 20:34:27 1999
Install date: Fri Oct 1 11:18:52 1999
Build Host: porky.devel.redhat.com
Group
: Applications/File
Source RPM: fileutils-4.0-1.src.rpm
Size
: 1314720
License: GPL
Packager
: Red
Software
<http://developer.redhat.com/bugzilla/>
Key
fingerprint
= Hat
AF19
FA27 2F94
998D FDB5 DE3D F8B5 06E4 A169 4E46
Summary : The GNU versions of common file management utilities.
Description :
The fileutils package includes a number of GNU versions of common and
popular file management utilities. Fileutils includes the following
tools: chgrp (changes a file's group ownership), chown (changes a file's
ownership), chmod (changes a file's permissions), cp (copies files),
dd (copies and converts files), df (shows a filesystem's disk usage), dir
(gives a brief directory listing), dircolors (the setup program for the
color version of the ls command), du (shows disk usage), install (copies
files and sets permissions), ln (creates file links), ls (lists directory
contents in color), mkdir (creates directories), mkfifo (creates FIFOs,
which are named pipes), mknod (creates special files), mv (renames files),
rm (removes/deletes files), rmdir (removes empty directories), sync
(synchronizes memory and disk), touch (changes file timestamps), and vdir
(provides long directory listings).
©
SA
NS
In
sti
You should install the fileutils package, because it includes many file
management utilities that you'll use frequently.
Name
: mailcap
Relocations: (not relocateable)
Version : 2.0.1
Vendor: Red Hat Software
Release : 1
Build Date: Mon Mar 29 09:47:27 1999
Install date: Fri Oct 1 11:18:54 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: mailcap-2.0.1-1.src.rpm
Size
: 35709
License: public domain
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Associates helper applications with particular file types.
Description :
The mailcap file is used by the metamail program. Metamail reads the
mailcap file to determine how it should display non-text or
multimedia
material.
mailcap
a particular
typeA169 4E46
Key
fingerprint
= AF19Basically,
FA27 2F94
998Dassociates
FDB5 DE3D
F8B5 06E4
of file with a particular program that a mail agent or other program
can call in order to handle the file.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
23 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
or
re
tai
ns
f
ull
rig
ht
s.
Mailcap should be installed to allow certain programs to be able to
handle non-text files.
Name
: grep
Relocations: (not relocateable)
Version : 2.3
Vendor: Red Hat Software
Release : 2
Build Date: Sun Mar 21 11:06:18 1999
Install date: Fri Oct 1 11:18:54 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Text
Source RPM: grep-2.3-2.src.rpm
Size
: 294290
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : The GNU versions of grep pattern matching utilities.
Description :
The GNU versions of commonly used grep utilities. Grep searches one or
morefingerprint
input files=for
linesFA27
which2F94
contain
a match
a specified
pattern
Key
AF19
998D
FDB5 to
DE3D
F8B5 06E4
A169 4E46
and then prints the matching lines. GNU's grep utilities include grep,
egrep and fgrep.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
You should install grep on your system, because it is a very useful utility
for searching through text files, for system administration tasks, etc.
Name
: textutils
Relocations: (not relocateable)
Version : 1.22
Vendor: Red Hat Software
Release : 9
Build Date: Mon Mar 22 00:26:12 1999
Install date: Fri Oct 1 11:18:56 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Text
Source RPM: textutils-1.22-9.src.rpm
Size
: 711024
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A set of GNU text file modifying utilities.
Description :
A set of GNU utilities for modifying the contents of files, including
programs for splitting, joining, comparing and modifying files.
Name
: apache-devel
Relocations: (not relocateable)
Version : 1.3.9
Vendor: Red Hat Software
Release : 4
Build Date: Tue Sep 21 09:46:41 1999
Install date: Thu Jan 6 20:55:01 2000
Build Host: porky.devel.redhat.com
Group
: Development/Libraries
Source RPM: apache-1.3.9-4.src.rpm
Size
: 348604
License: Freely distributable and usable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Development tools for the Apache Web server.
Description :
The apache-devel package contains the source code for the Apache
Web server and the APXS binary you'll need to build Dynamic
Shared Objects (DSOs) for Apache.
If you
are installing
the Apache
Web998D
server,
and DE3D
you want
to be
Key
fingerprint
= AF19
FA27 2F94
FDB5
F8B5
06E4 A169 4E46
able to compile or develop additional modules for Apache, you'll
need to install this package.
Name
: apmd
Relocations: (not relocateable)
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
24 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tai
ns
f
ull
rig
ht
s.
Version : 3.0beta5
Vendor: Red Hat Software
Release : 7
Build Date: Sat Apr 17 02:33:28 1999
Install date: Fri Oct 1 11:19:05 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: apmd-3.0beta5-7.src.rpm
Size
: 55912
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Advanced Power Management (APM) BIOS utilities for laptops.
Description :
This is a Advanced Power Management daemon and utilities.
It can watch your notebook's battery and warn all users when the battery
is low.
te
20
00
-2
00
2,
Au
th
or
re
Patches
to Rik Faith's
version
haveFDB5
been DE3D
added F8B5
for shutting
down 4E46
Key
fingerprint
= AF19original
FA27 2F94
998D
06E4 A169
the PCMCIA sockets before a suspend.
Name
: ash
Relocations: (not relocateable)
Version : 0.2
Vendor: Red Hat Software
Release : 17
Build Date: Sun Mar 21 13:26:19 1999
Install date: Fri Oct 1 11:19:06 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Shells Source RPM: ash-0.2-17.src.rpm
Size
: 369981
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A smaller version of the Bourne shell.
Description :
The ash shell is a clone of Berkeley's Bourne shell. Ash
supports all of the standard sh shell commands, but is considerably
smaller than bash. The ash shell lacks some features (for example,
command-line histories), but needs a lot less memory.
©
SA
NS
In
sti
tu
You should install ash if you need a lightweight shell with many of the
same capabilities as the bash shell.
Name
: at
Relocations: (not relocateable)
Version : 3.1.7
Vendor: Red Hat Software
Release : 8
Build Date: Sun Mar 21 13:26:59 1999
Install date: Fri Oct 1 11:19:07 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: at-3.1.7-8.src.rpm
Size
: 65969
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : Job spooling tools.
Description :
At and batch read commands from standard input or from a specified file.
At allows you to specify that a command will be run at a particular time
(now or a specified time in the future). Batch will execute commands
whenfingerprint
the system= load
to998D
a particular
Key
AF19levels
FA27drop
2F94
FDB5 level.
DE3DBoth
F8B5commands
06E4 A169 4E46
use /bin/sh to run the commands.
You should install the at package if you need a utility that will do
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
25 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
time-oriented job control. Note: you should use crontab instead, if it is
a recurring job that will need to be repeated at the same time every
day/week/etc.
Name
: audiofile
Relocations: (not relocateable)
Version : 0.1.6
Vendor: Red Hat Software
Release : 5
Build Date: Sun Apr 18 16:55:39 1999
Install date: Fri Oct 1 11:19:08 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: audiofile-0.1.6-5.src.rpm
Size
: 184746
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Library to handle various audio file formats.
Description :
Library
to handle
various
audio
file 998D
formats.
Key
fingerprint
= AF19
FA27
2F94
FDB5 DE3D F8B5 06E4 A169 4E46
Used by the esound daemon.
Name
: aumix
Relocations: (not relocateable)
Version : 1.18.2
Vendor: Red Hat Software
Release : 2
Build Date: Sun Mar 21 13:27:34 1999
Install date: Fri Oct 1 11:19:08 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: aumix-1.18.2-2.src.rpm
Size
: 67425
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : An ncurses-based audio mixer.
Description :
Aumix is a tty based, interactive method of controlling a sound
card mixer. It lets you adjust the input levels from the CD, microphone,
and on board synthesizers, as well as the output volume. Aumix can adjust
audio mixers from the command line, from a script, or interactively at the
console or terminal with a full-screen ncurses-based interface.
©
SA
NS
In
sti
Install aumix if you need to control an audio mixer. If you install aumix,
you will also need to install ncurses (since aumix's interface is based on
ncurses) and gpm (for mouse support).
Name
: authconfig
Relocations: (not relocateable)
Version : 1.8
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 05:41:43 1999
Install date: Fri Oct 1 11:19:08 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: authconfig-1.8-1.src.rpm
Size
: 28150
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Text-mode tool for setting up NIS and shadow passwords.
Description :
Authconfig is a terminal mode program for setting up Network
Information
Service
(NIS)
and2F94
shadow
(more
secure)
passwords
Key
fingerprint
= AF19
FA27
998D
FDB5
DE3D
F8B5 06E4 A169 4E46
on your system. Authconfig also configures the system to
automatically turn on NIS at system startup.
Name
: awesfx
Relocations: /usr
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
26 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tai
ns
f
ull
rig
ht
s.
Version : 0.4.3a
Vendor: Red Hat Software
Release : 2
Build Date: Sun Mar 21 13:29:56 1999
Install date: Fri Oct 1 11:19:09 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: awesfx-0.4.3a-2.src.rpm
Size
: 306932
License: GPL/distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: http//bahamut.mm.t.u-tokyo.ac.jp/~iwai/awedrv/index.html
Summary : Utility programs for the AWE32 sound driver.
Description :
The awesfx package contains necessary utilities for the AWE32
sound driver.
20
00
-2
00
2,
Au
th
or
re
If you
must use =anAF19
AWE32
sound
should
install
Key
fingerprint
FA27
2F94driver,
998D you
FDB5
DE3D
F8B5 06E4 A169 4E46
this package.
Name
: bc
Relocations: (not relocateable)
Version : 1.05a
Vendor: Red Hat Software
Release : 4
Build Date: Sun Mar 21 13:34:59 1999
Install date: Fri Oct 1 11:19:11 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Engineering Source RPM: bc-1.05a-4.src.rpm
Size
: 131945
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : GNU's bc (a numeric processing language) and dc (a calculator).
Description :
The bc package includes bc and dc. Bc is an arbitrary precision numeric
processing arithmetic language. Dc is an interactive arbitrary precision
stack based calculator, which can be used as a text mode calculator.
©
SA
NS
In
sti
tu
te
Install the bc package if you need its number handling capabilities or
if you would like to use its text mode calculator.
Name
: bdflush
Relocations: (not relocateable)
Version : 1.5
Vendor: Red Hat Software
Release : 10
Build Date: Sun Mar 21 10:50:20 1999
Install date: Fri Oct 1 11:19:11 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: bdflush-1.5-10.src.rpm
Size
: 11030
License: None
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : The process which starts the flushing of dirty buffers back to disk.
Description :
The bdflush process starts the kernel daemon which flushes dirty
buffers back to disk (i.e., writes all unwritten data to disk).
This helps to prevent the buffers from growing too stale.
Bdflush
is a basic
systemFA27
process
mustFDB5
run for
yourF8B5
system
Key
fingerprint
= AF19
2F94that
998D
DE3D
06E4 A169 4E46
to operate properly.
Name
: bind-utils
Relocations: (not relocateable)
Version : 8.2
Vendor: Red Hat Software
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
27 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tai
ns
f
ull
rig
ht
s.
Release : 6
Build Date: Wed Mar 31 09:57:15 1999
Install date: Fri Oct 1 11:19:13 1999 Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: bind-8.2-6.src.rpm
Size
: 1352695
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.isc.org/bind.html
Summary : DNS utilities: host, dig, dnsquery, and nslookup.
Description :
Bind-utils contains a collection of utilities for querying DNS (Domain
Name Service) name servers to find out information about Internet hosts.
These tools will provide you with the IP addresses for given host names,
as well as other information about registered domains and network
addresses.
Key
fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
You should install bind-utils if you need to get information from DNS name
servers.
Name
: binutils
Relocations: (not relocateable)
Version : 2.9.1.0.23
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 5 20:08:54 1999
Install date: Fri Oct 1 11:19:17 1999 Build Host: porky.devel.redhat.com
Group
: Development/Tools
Source RPM: binutils-2.9.1.0.23-1.src.rpm
Size
: 5292774
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A GNU collection of binary utilities.
Description :
Binutils is a collection of binary utilities, including ar (for creating,
modifying and extracting from archives), nm (for listing symbols from
object files), objcopy (for copying and translating object files),
objdump (for displaying information from object files), ranlib (for
generating an index for the contents of an archive), size (for listing
the section sizes of an object or archive file), strings (for listing
printable strings from files), strip (for discarding symbols), c++filt
(a filter for demangling encoded C++ symbols), addr2line (for converting
addresses to file and line), and nbnconv (for converting object code into
an NLM).
©
Install binutils if you need to perform any of these types of actions on
binary files. Most programmers will want to install binutils.
Name
: cdp
Relocations: (not relocateable)
Version : 0.33
Vendor: Red Hat Software
Release : 12
Build Date: Sun Mar 21 13:50:10 1999
Install date: Fri Oct 1 11:19:21 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
RPM: cdp-0.33-12.src.rpm
Key
fingerprint
= AF19 FA27 2F94 998D Source
FDB5 DE3D
F8B5 06E4 A169 4E46
Size
: 40341
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : An interactive text-mode program for controlling audio CD-ROMs.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
28 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
Description :
The cdp program plays audio CDs in your computer's CD-ROM drive.
Cdp includes a full-screen interface version and a command line
version.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
Install cdp to play audio CDs on your system.
Name
: chkfontpath
Relocations: (not relocateable)
Version : 1.4.1
Vendor: Red Hat Software
Release : 1
Build Date: Wed Apr 14 14:42:08 1999
Install date: Fri Oct 1 11:19:22 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: chkfontpath-1.4.1-1.src.rpm
Size
: 18939
License: GPL
Packager
: Red
Software
<http://developer.redhat.com/bugzilla>
Key
fingerprint
= Hat
AF19
FA27 2F94
998D FDB5 DE3D F8B5 06E4 A169 4E46
Summary : Simple interface for editing the font path for the X font server.
Description :
This is a simple terminal mode program for adding, removing and listing
the directories contained in the X font server's path. It is mostly
intended to be used 'internally' by RPM when packages with fonts are
added or removed, but it may be useful as a stand-alone utility in
some instances.
Name
: sed
Relocations: /usr
Version : 3.02
Vendor: Red Hat Software
Release : 4
Build Date: Sun Mar 21 22:21:55 1999
Install date: Fri Oct 1 11:19:22 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Text
Source RPM: sed-3.02-4.src.rpm
Size
: 69732
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A GNU stream text editor.
Description :
The sed (Stream EDitor) editor is a stream or batch (non-interactive)
editor. Sed takes text as input, performs an operation or set of
operations on the text and outputs the modified text. The operations
that sed performs (substitutions, deletions, insertions, etc.) can be
specified in a script file or from the command line.
Name
: console-tools
Relocations: (not relocateable)
Version : 19990302
Vendor: Red Hat Software
Release : 13
Build Date: Thu Apr 15 11:31:28 1999
Install date: Fri Oct 1 11:19:29 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: console-tools-19990302-13.src.rpm
Size
: 1495249
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.multimania.com/ydirson/en/lct/
Summary
: Linux
console
Key
fingerprint
= AF19
FA27tools
2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Description :
This package contains utilities to load console fonts and
keyboard maps. It also includes a number of different fonts
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
29 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tai
ns
f
ull
rig
ht
s.
and keyboard maps.
Name
: control-center
Relocations: (not relocateable)
Version : 1.0.5
Vendor: Red Hat Software
Release : 20
Build Date: Fri Apr 16 17:07:43 1999
Install date: Fri Oct 1 11:19:36 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/Desktops
Source RPM: control-center-1.0.5-20.src.rpm
Size
: 1009554
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.gnome.org
Summary : The GNOME control center.
Description :
Control-center is a configuration tool for easily
setting
up your GNOME
environment.
Key
fingerprint
= AF19 FA27
2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
th
or
re
GNOME is the GNU Network Object Model Environment. That's
a fancy name, but really GNOME is a nice GUI desktop
environment.
NS
In
sti
tu
te
20
00
-2
00
2,
Au
It's a powerful, easy to configure environment which
helps to make your computer easy to use.
Name
: control-panel
Relocations: (not relocateable)
Version : 3.11
Vendor: Red Hat Software
Release : 2
Build Date: Mon Apr 5 18:23:16 1999
Install date: Fri Oct 1 11:19:39 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: control-panel-3.11-2.src.rpm
Size
: 179744
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A Red Hat program launcher for the X Window System.
Description :
The Red Hat control panel is an X program launcher for the
X Window System. Both convenient and pleasing, the Red Hat
control panel allows you easy access to numerous X-based
system administration tools included in your Red Hat Linux
system.
©
SA
Eventually, you'll want to work with many of your system
administration tools; this package helps you locate and launch
many of them.
Name
: e2fsprogs
Relocations: (not relocateable)
Version : 1.14
Vendor: Red Hat Software
Release : 4
Build Date: Sun Mar 21 14:13:05 1999
Install date: Fri Oct 1 11:19:40 1999 Build Host: porky.devel.redhat.com
Group
: System
Environment/Base
SourceDE3D
RPM:F8B5
e2fsprogs-1.14-4.src.rpm
Key
fingerprint
= AF19
FA27 2F94 998D FDB5
06E4 A169 4E46
Size
: 1161973
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : Utilities used for the second extended (ext2) filesystem.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
30 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tai
ns
f
ull
rig
ht
s.
Description :
The e2fsprogs package contains a number of utilities for creating,
checking, modifying and correcting any inconsistencies in second
extended (ext2) filesystems. E2fsprogs contains e2fsck (used to repair
filesystem inconsistencies after an unclean shutdown), mke2fs (used to
initialize a partition to contain an empty ext2 filesystem), debugfs
(used to examine the internal structure of a filesystem, to manually
repair a corrupted filesystem or to create test cases for e2fsck), tune2fs
(used to modify filesystem parameters) and most of the other core ext2fs
filesystem utilities.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
You should install the e2fsprogs package if you need to manage the
performance
of =anAF19
ext2 filesystem.
Key
fingerprint
FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Name
: rmt
Relocations: (not relocateable)
Version : 0.4b4
Vendor: Red Hat Software
Release : 7
Build Date: Sun Mar 28 19:39:16 1999
Install date: Fri Oct 1 11:19:41 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Archiving
Source RPM: dump-0.4b4-7.src.rpm
Size
: 12380
License: UCB
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Provides certain programs with access to remote tape devices.
Description :
The rmt utility provides remote access to tape devices for programs
like dump (a filesystem backup program), restore (a program for
restoring files from a backup) and tar (an archiving program).
Name
: cpio
Relocations: (not relocateable)
Version : 2.4.2
Vendor: Red Hat Software
Release : 12
Build Date: Sun Mar 21 10:51:39 1999
Install date: Fri Oct 1 11:19:42 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Archiving
Source RPM: cpio-2.4.2-12.src.rpm
Size
: 71934
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A GNU archiving program.
Description :
GNU cpio copies files into or out of a cpio or tar archive. Archives
are files which contain a collection of other files plus information
about them, such as their file name, owner, timestamps, and access
permissions. The archive can be another file on the disk, a magnetic
tape, or a pipe. GNU cpio supports the following archive formats: binary,
old ASCII, new ASCII, crc, HPUX binary, HPUX old ASCII, old tar and POSIX.1
tar. By default, cpio creates binary format archives, so that they are
compatible with older cpio programs. When it is extracting files from
archives,
cpio automatically
which
kind
of archive
it is reading
Key
fingerprint
= AF19 FA27recognizes
2F94 998D
FDB5
DE3D
F8B5 06E4
A169 4E46
and can read archives created on machines with a different byte-order.
Install cpio if you need a program to manage file archives.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
31 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
re
tai
ns
f
ull
rig
ht
s.
Name
: cracklib
Relocations: (not relocateable)
Version : 2.7
Vendor: Red Hat Software
Release : 5
Build Date: Tue Apr 6 10:19:11 1999
Install date: Fri Oct 1 11:19:43 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: cracklib-2.7-5.src.rpm
Size
: 76150
License: artistic
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: ftp://coast.cs.purdue.edu/pub/tools/unix/cracklib/
Summary : A password-checking library.
Description :
CrackLib tests passwords to determine whether they match certain
security-oriented characteristics. You can use CrackLib to stop
usersfingerprint
from choosing
passwords
which
would
be easy
to F8B5
guess.06E4
CrackLib
Key
= AF19
FA27 2F94
998D
FDB5
DE3D
A169 4E46
performs certain tests:
Au
th
or
* It tries to generate words from a username and gecos entry and
checks those words against the password;
* It checks for simplistic patterns in passwords;
* It checks for the password in a dictionary.
00
-2
00
2,
CrackLib is actually a library containing a particular
C function which is used to check the password, as well as
other C functions. CrackLib is not a replacement for a passwd
program; it must be used in conjunction with an existing passwd
program.
©
SA
NS
In
sti
tu
te
20
Install the cracklib package if you need a program to check users'
passwords to see if they are at least minimally secure. If you
install CrackLib, you'll also want to install the cracklib-dicts
package.
Name
: cracklib-dicts
Relocations: (not relocateable)
Version : 2.7
Vendor: Red Hat Software
Release : 5
Build Date: Tue Apr 6 10:19:11 1999
Install date: Fri Oct 1 11:19:43 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: cracklib-2.7-5.src.rpm
Size
: 231867
License: artistic
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: ftp://coast.cs.purdue.edu/pub/tools/unix/cracklib/
Summary : The standard CrackLib dictionaries.
Description :
The cracklib-dicts package includes the CrackLib dictionaries.
CrackLib will need to use the dictionary appropriate to your system,
which
is normally
put inFA27
/usr/dict/words.
also contains
Key
fingerprint
= AF19
2F94 998D Cracklib-dicts
FDB5 DE3D F8B5
06E4 A169 4E46
the utilities necessary for the creation of new dictionaries.
If you are installing CrackLib, you should also install cracklib-dicts.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
32 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
re
tai
ns
f
ull
rig
ht
s.
Name
: crontabs
Relocations: (not relocateable)
Version : 1.7
Vendor: Red Hat Software
Release : 6
Build Date: Thu Apr 15 09:00:31 1999
Install date: Fri Oct 1 11:19:43 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: crontabs-1.7-6.src.rpm
Size
: 4856
License: public domain
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Root crontab files used to schedule the execution of programs.
Description :
The crontabs package contains root crontab files. Crontab is the
program used to install, uninstall or list the tables used to drive the
cron daemon. The cron daemon checks the crontab files to see when
particular
commands
areFA27
scheduled
to be executed.
If commands
Key
fingerprint
= AF19
2F94 998D
FDB5 DE3D
F8B5 06E4areA169 4E46
scheduled, it executes them.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
Crontabs handles a basic system function, so it should be installed on
your system.
Name
: desktop-backgrounds
Relocations: (not relocateable)
Version : 1.0.0
Vendor: Red Hat Software
Release : 6
Build Date: Thu Apr 15 13:00:15 1999
Install date: Fri Oct 1 11:20:01 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: desktop-backgrounds-1.0.06.src.rpm
Size
: 10443462
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Desktop Background Images.
Description :
If you use a desktop environment like GNOME you can use these images
to spruce up your background.
Name
: shadow-utils
Relocations: (not relocateable)
Version : 980403
Vendor: Red Hat Software
Release : 12
Build Date: Thu Apr 15 19:03:11 1999
Install date: Fri Oct 1 11:20:06 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: shadow-utils-980403-12.src.rpm
Size
: 598890
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Utilities for managing shadow password files and user/group accounts.
Description :
The shadow-utils package includes the necessary programs for
converting UNIX password files to the shadow password format, plus
programs for managing user and group accounts. The pwconv command
converts passwords to the shadow password format. The pwunconv command
unconverts
shadow
passwords
and generates
an npasswd
file (a
standard
Key
fingerprint
= AF19
FA27 2F94
998D FDB5
DE3D F8B5
06E4
A169 4E46
UNIX password file). The pwck command checks the integrity of
password and shadow files. The lastlog command prints out the last
login times for all users. The useradd, userdel and usermod commands
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
33 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
or
re
tai
ns
f
ull
rig
ht
s.
are used for managing user accounts. The groupadd, groupdel and
groupmod commands are used for managing group accounts.
Name
: dev
Relocations: /dev
Version : 2.7.7
Vendor: Red Hat Software
Release : 1
Build Date: Sat Apr 17 15:12:46 1999
Install date: Fri Oct 1 11:20:23 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: dev-2.7.7-1.src.rpm
Size
: 46195
License: public domain
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The most commonly-used entries in the /dev directory.
Description :
The Red Hat Linux operating system uses file system entries to represent
devices
(CD-ROMs,
floppy
to the F8B5
machine.
AllA169
of 4E46
Key
fingerprint
= AF19
FA27drives,
2F94 etc.)
998Dattached
FDB5 DE3D
06E4
these entries are in the /dev tree (although they don't have to be).
This package contains the most commonly used /dev entries.
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
The dev package is a basic part of your Red Hat Linux system and it needs
to be installed.
Name
: diffutils
Relocations: /usr
Version : 2.7
Vendor: Red Hat Software
Release : 16
Build Date: Mon Apr 19 13:15:56 1999
Install date: Fri Oct 1 11:20:26 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Text
Source RPM: diffutils-2.7-16.src.rpm
Size
: 165662
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A GNU collection of diff utilities.
Description :
Diffutils includes four utilities: diff, cmp, diff3 and sdiff. Diff
compares two files and shows the differences, line by line. The cmp
command shows the offset and line numbers where two files differ, or cmp
can show the characters that differ between the two files. The diff3
command shows the differences between three files. Diff3 can be used when
two people have made independent changes to a common original; diff3 can
produce a merged file that contains both persons' changes and warnings
about conflicts. The sdiff command can be used to merge two files
interactively.
©
Install diffutils if you need to compare text files.
Name
: dosemu
Relocations: (not relocateable)
Version : 0.99.10
Vendor: Red Hat Software
Release : 4
Build Date: Wed Mar 31 14:07:06 1999
Install date: Fri Oct 1 11:20:29 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Emulators
Key
fingerprint
= AF19 FA27 2F94 998DSource
FDB5 RPM:
DE3Ddosemu-0.99.10-4.src.rpm
F8B5 06E4 A169 4E46
Size
: 1855881
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.dosemu.org
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
34 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
Summary : A DOS emulator.
Description :
Dosemu is a DOS emulator. Once you've installed dosemu, start the DOS
emulator by typing in the dos command.
00
2,
Au
th
or
re
tai
ns
f
You need to install dosemu if you use DOS programs and you want to be able
to run them on your Red Hat Linux system. You may also need to install
the dosemu-freedos package.
Name
: ed
Relocations: (not relocateable)
Version : 0.2
Vendor: Red Hat Software
Release : 12
Build Date: Tue Mar 23 10:21:16 1999
Install date: Fri Oct 1 11:20:29 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Text
Source
RPM:
ed-0.2-12.src.rpm
Key
fingerprint
= AF19 FA27 2F94 998D
FDB5
DE3D
F8B5 06E4 A169 4E46
Size
: 104998
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : The GNU line editor.
Description :
Ed is a line-oriented text editor, used to create, display, and modify
text files (both interactively and via shell scripts). For most
purposes, ed has been replaced in normal usage by full-screen editors
(emacs and vi, for example).
©
SA
NS
In
sti
tu
te
20
00
-2
Ed was the original UNIX editor, and may be used by some programs. In
general, however, you probably don't need to install it and you probably
won't use it much.
Name
: ee
Relocations: (not relocateable)
Version : 0.3.8
Vendor: Red Hat Software
Release : 7
Build Date: Fri Mar 19 13:59:32 1999
Install date: Fri Oct 1 11:20:31 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: ee-0.3.8-7.src.rpm
Size
: 460989
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: http://www.gnome.org
Summary : The Electric Eyes image viewer application.
Description :
The ee package contains the Electric Eyes image viewer for the GNOME
desktop environment. Electric Eyes is primary an image viewer, but it
also allows many types of image manipulations. Electric Eyes can handle
almost any type of image.
Install the ee package if you need an image viewer.
Name
: eject
Relocations: (not relocateable)
Version
: 2.0.2
Red DE3D
Hat Software
Key
fingerprint
= AF19 FA27 2F94 Vendor:
998D FDB5
F8B5 06E4 A169 4E46
Release : 3
Build Date: Sun Mar 21 14:41:16 1999
Install date: Fri Oct 1 11:20:31 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: eject-2.0.2-3.src.rpm
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
35 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
Size
: 47580
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A program that ejects removable media using software control.
Description :
The eject program allows the user to eject removable media
(typically CD-ROMs, floppy disks or Iomega Jaz or Zip disks)
using software control. Eject can also control some multidisk CD changers and even some devices' auto-eject features.
-2
00
2,
Au
th
or
re
tai
ns
f
Install eject if you'd like to eject removable media using
software control.
Name
: elm
Relocations: (not relocateable)
Version
: 2.5.0
Red DE3D
Hat Software
Key
fingerprint
= AF19 FA27 2F94 Vendor:
998D FDB5
F8B5 06E4 A169 4E46
Release : 0.2pre8
Build Date: Sun Mar 14 15:09:38 1999
Install date: Fri Oct 1 11:20:32 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: elm-2.5.0-0.2pre8.src.rpm
Size
: 631687
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: http://www.myxa.com/elm.html
Summary : The elm mail user agent.
Description :
Elm is a popular terminal mode email user agent. Elm includes all
standard mailhandling features, including MIME support via metamail.
©
SA
NS
In
sti
tu
te
20
00
Elm is still used by some people, but is no longer in development. If
you've used Elm before and you're devoted to it, you should install the
elm package. If you would like to use metamail's MIME support, you'll
also need to install the metamail package.
Name
: emacs
Relocations: (not relocateable)
Version : 20.3
Vendor: Red Hat Software
Release : 15
Build Date: Mon Apr 19 11:24:44 1999
Install date: Fri Oct 1 11:20:54 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Editors
Source RPM: emacs-20.3-15.src.rpm
Size
: 17813277
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The libraries needed to run the GNU Emacs text editor.
Description :
Emacs is a powerful, customizable, self-documenting, modeless text
editor. Emacs contains special code editing features, a scripting
language (elisp), and the capability to read mail, news and more without
leaving the editor.
This fingerprint
package includes
libraries
need
to run
the Emacs
editor,A169
so 4E46
Key
= AF19the
FA27
2F94you
998D
FDB5
DE3D
F8B5 06E4
you need to install this package if you intend to use Emacs. You also
need to install the actual Emacs program package (emacs-nox or emacs-X11).
Install emacs-nox if you are not going to use the X Window System; install
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
36 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
emacs-X11 if you will be using X.
Name
: emacs-nox
Relocations: (not relocateable)
Version : 20.3
Vendor: Red Hat Software
Release : 15
Build Date: Mon Apr 19 11:24:44 1999
Install date: Fri Oct 1 11:21:03 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Editors
Source RPM: emacs-20.3-15.src.rpm
Size
: 2853304
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The Emacs text editor without support for the X Window System.
Description :
Emacs-nox is the Emacs text editor program without support for
the X Window System.
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
You need to install this package only if you plan on exclusively using
Emacs without the X Window System (emacs-X11 will work both in X and out
of X, but emacs-nox will only work outside of X). You'll also need to
install the emacs package in order to run Emacs.
Name
: emacs-X11
Relocations: (not relocateable)
Version : 20.3
Vendor: Red Hat Software
Release : 15
Build Date: Mon Apr 19 11:24:44 1999
Install date: Fri Oct 1 11:21:06 1999 Build Host: porky.devel.redhat.com
Group
: Applications/Editors
Source RPM: emacs-20.3-15.src.rpm
Size
: 6798023
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The Emacs text editor for the X Window System.
Description :
Emacs-X11 includes the Emacs text editor program for use with the
X Window System (it provides support for the mouse and other GUI
elements). Emacs-X11 will also run Emacs outside of X, but it has
a larger memory footprint than the 'non-X' Emacs package
(emacs-nox).
©
SA
NS
Install emacs-X11 if you're going to use Emacs with the X Window System.
You should also install emacs-X11 if you're going to run Emacs both
with and without X (it will work fine both ways). You'll also need to
install the emacs package in order to run Emacs.
Name
: enlightenment
Relocations: (not relocateable)
Version : 0.15.5
Vendor: Red Hat Software
Release : 32
Build Date: Mon Apr 19 14:03:15 1999
Install date: Fri Oct 1 11:21:13 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/Desktops
Source RPM: enlightenment-0.15.5-32.src.rpm
Size
: 3928039
License: GPL
Packager
: Red
Software
<http://developer.redhat.com/bugzilla>
Key
fingerprint
= Hat
AF19
FA27 2F94
998D FDB5 DE3D F8B5 06E4 A169 4E46
URL
: http://www.enlightenment.org/
Summary : The Enlightenment window manager.
Description :
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
37 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
Enlightenment is a window manager for the X Window System that
is designed to be powerful, extensible, configurable and
pretty darned good looking! It is one of the more graphically
intense window managers.
Enlightenment goes beyond managing windows by providing a useful
and appealing graphical shell from which to work. It is open
in design and instead of dictating a policy, allows the user to
define their own policy, down to every last detail.
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
This package will install the Enlightenment window manager.
Name
: enlightenment-conf
Relocations: (not relocateable)
Version
: 0.15= AF19 FA27 2F94 Vendor:
Red DE3D
Hat Software
Key
fingerprint
998D FDB5
F8B5 06E4 A169 4E46
Release : 5
Build Date: Wed Apr 7 21:03:38 1999
Install date: Fri Oct 1 11:21:15 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/Desktops
Source RPM: enlightenment-conf-0.15-5.src.rpm
Size
: 393647
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.rasterman.com
Summary : Enlightenment Configuration applet.
Description :
A Configuration tool for easily setting up Enlightenment
Name
: esound
Relocations: (not relocateable)
Version : 0.2.12
Vendor: Red Hat Software
Release : 4
Build Date: Mon Apr 19 09:55:14 1999
Install date: Fri Oct 1 11:21:19 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: esound-0.2.12-4.src.rpm
Size
: 188136
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The Enlightened Sound Daemon.
Description :
EsounD -- the Enlightened Sound Daemon -- is a server process
that allows multiple applications to share a single sound
card. For example, when you're listening to music from your CD
and you receive a sound-related event from ICQ, your applications
won't have to jockey for the attention of your sound card.
©
EsounD mixes several audio streams for playback by a single
audio device.
Install esound if you'd like to allow for such event sharing
by your audio device.
Name
: etcskel
Relocations:
(not
relocateable)
Key
fingerprint
= AF19 FA27 2F94
998D FDB5
DE3D
F8B5 06E4 A169 4E46
Version : 2.0
Vendor: Red Hat Software
Release : 1
Build Date: Fri Apr 16 21:16:02 1999
Install date: Fri Oct 1 11:21:20 1999
Build Host: porky.devel.redhat.com
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
38 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Group
: System Environment/Base
Source RPM: etcskel-2.0-1.src.rpm
Size
: 2824
License: public domain
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Red Hat Linux default files for new users' home directories.
Description :
The etcskel package is part of the basic Red Hat system. Etcskel
provides the /etc/skel directory's files. These files (.Xdefaults,
.bash_logout, .bash_profile, .bashrc) are then placed in every new
user's home directory when new accounts are created.
Name
: exmh
Relocations: (not relocateable)
Version : 2.0.2
Vendor: Red Hat Software
Release : 7
Build Date: Sat Apr 10 14:28:10 1999
Install
date: Fri =
Oct
1 11:21:22
1999
porky.devel.redhat.com
Key
fingerprint
AF19
FA27 2F94
998DBuild
FDB5Host:
DE3D
F8B5 06E4 A169 4E46
Group
: Applications/Internet
Source RPM: exmh-2.0.2-7.src.rpm
Size
: 1857817
License: freeware
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.beedub.com/exmh/
Summary : The exmh mail handling system.
Description :
Exmh provides an X interface for MH/nmh mail, a feature-rich email
handling system. Exmh supports almost all (but not all) of MH's
features: viewing the messages in a folder, reading/deleting/refiling
messages, and sorting arriving mail into different folders before the
messages are read. Exmh highlights which folders have new mail, and
indicates which messages have not been read (so you don't lose the sorted,
unread mail).
©
SA
NS
In
sti
tu
te
If you like MH/nmh mail, you should install exmh, because it makes the
MH/nmh mail system much more user friendly. You may also want to use
exmh if you prefer a graphical user interface for your mail client. Note
that you will also have to install the nmh package.
Name
: expect
Relocations: (not relocateable)
Version : 5.28
Vendor: Red Hat Software
Release : 29
Build Date: Thu Apr 8 17:14:28 1999
Install date: Fri Oct 1 11:21:26 1999 Build Host: porky.devel.redhat.com
Group
: Development/Languages
Source RPM: tcltk-8.0.4-29.src.rpm
Size
: 757304
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A tcl extension for simplifying program-script interaction.
Description :
Expect is a tcl extension for automating interactive applications such
as telnet, ftp, passwd, fsck, rlogin, tip, etc. Expect is also useful
for testing
the named
applications.
makesDE3D
it easyF8B5
for a06E4
scriptA169 4E46
Key
fingerprint
= AF19
FA27 2F94 Expect
998D FDB5
to control another program and interact with it.
Install the expect package if you'd like to develop scripts which interact
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
39 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
th
or
re
tai
ns
f
ull
rig
ht
s.
with interactive applications. You'll also need to install the tcl
package.
Name
: fetchmail
Relocations: (not relocateable)
Version : 5.0.0
Vendor: Red Hat Software
Release : 1
Build Date: Fri Apr 9 02:40:25 1999
Install date: Fri Oct 1 11:21:28 1999 Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: fetchmail-5.0.0-1.src.rpm
Size
: 565413
License: freely redistributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A remote mail retrieval and forwarding utility.
Description :
Fetchmail is a remote mail retrieval and forwarding utility intended
for use
over on-demand
TCP/IP
links,
likeFDB5
SLIP or
PPP F8B5
connections.
Key
fingerprint
= AF19 FA27
2F94
998D
DE3D
06E4 A169 4E46
Fetchmail supports every remote-mail protocol currently in use on the
Internet (POP2, POP3, RPOP, APOP, KPOP, all IMAPs, ESMTP ETRN) for
retrieval. Then Fetchmail forwards the mail through SMTP, so you can
read it through your normal mail client.
NS
In
sti
tu
te
20
00
-2
00
2,
Au
Install fetchmail if you need to retrieve mail over SLIP or PPP
connections.
Name
: file
Relocations: /usr
Version : 3.26
Vendor: Red Hat Software
Release : 6
Build Date: Mon Mar 22 15:32:29 1999
Install date: Fri Oct 1 11:21:29 1999
Build Host: porky.devel.redhat.com
Group
: Applications/File
Source RPM: file-3.26-6.src.rpm
Size
: 211946
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A utility for determining file types.
Description :
The file command is used to identify a particular file according to the
type of data contained by the file. File can identify many different
file types, including ELF binaries, system libraries, RPM packages, and
different graphics formats.
©
SA
You should install the file package, since the file command is such a
useful utility.
Name
: findutils
Relocations: /usr
Version : 4.1
Vendor: Red Hat Software
Release : 31
Build Date: Mon Mar 29 16:05:02 1999
Install date: Fri Oct 1 11:21:29 1999
Build Host: porky.devel.redhat.com
Group
: Applications/File
Source RPM: findutils-4.1-31.src.rpm
Size
: 121756
License: GPL
Packager
: Red
Software
<http://developer.redhat.com/bugzilla>
Key
fingerprint
= Hat
AF19
FA27 2F94
998D FDB5 DE3D F8B5 06E4 A169 4E46
Summary : The GNU versions of find utilities (find, xargs, and locate).
Description :
The findutils package contains programs which will help you locate files
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
40 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
on your system. The find utility searches through a hierarchy of
directories looking for files which match a certain set of criteria
(such as a filename pattern). The locate utility searches a database
(create by updatedb) to quickly find a file matching a given pattern.
The xargs utility builds and executes command lines from standard input
arguments (usually lists of file names generated by the find command).
-2
00
2,
Au
th
or
re
tai
ns
f
You should install findutils because it includes tools that are very useful
for finding things on your system.
Name
: finger
Relocations: (not relocateable)
Version : 0.10
Vendor: Red Hat Software
Release : 24
Build Date: Thu Apr 8 13:54:27 1999
Install
date: Fri =
Oct
1 11:21:31
1999
porky.devel.redhat.com
Key
fingerprint
AF19
FA27 2F94
998DBuild
FDB5Host:
DE3D
F8B5 06E4 A169 4E46
Group
: Applications/Internet
Source RPM: finger-0.10-24.src.rpm
Size
: 33535
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The finger client and server.
Description :
Finger is a utility which allows users to see information about system
users (login name, home directory, name, how long they've been logged
in to the system, etc.). The finger package includes a standard finger
client and server. The server daemon (fingerd) runs from /etc/inetd.conf,
which must be modified to disable finger requests.
©
SA
NS
In
sti
tu
te
20
00
You should install finger if your system is used by multiple users and
you'd like finger information to be available.
Name
: fnlib
Relocations: (not relocateable)
Version : 0.4
Vendor: Red Hat Software
Release : 8
Build Date: Wed Apr 7 11:03:13 1999
Install date: Fri Oct 1 11:21:32 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: fnlib-0.4-8.src.rpm
Size
: 360947
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.rasterman.com/
Summary : Color font rendering library for X11R6.
Description :
Fnlib is a library that provides full, scalable 24-bit color font
rendering abilities for X.
Name
: freetype
Relocations: (not relocateable)
Version : 1.2
Vendor: Red Hat Software
Release : 6
Build Date: Mon Mar 22 10:55:48 1999
Install date: Fri Oct 1 11:21:35 1999
Build Host: porky.devel.redhat.com
Group
: System
Environment/Libraries
Source
RPM:
freetype-1.2-6.src.rpm
Key
fingerprint
= AF19
FA27 2F94 998D FDB5
DE3D
F8B5
06E4 A169 4E46
Size
: 960375
License: BSDish
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : Free TrueType font rasterizer library.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
41 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
th
or
re
tai
ns
f
ull
rig
ht
s.
Description :
The FreeType engine is a free and portable TrueType font rendering engine.
It has been developed to provide TT support to a great variety of
platforms and environments. Note that FreeType is a library, not a
stand-alone application, though some utility applications are included.
Name
: ftp
Relocations: (not relocateable)
Version : 0.10
Vendor: Red Hat Software
Release : 22
Build Date: Sun Mar 21 15:16:22 1999
Install date: Fri Oct 1 11:21:35 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: ftp-0.10-22.src.rpm
Size
: 91471
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary
: The
standard
UNIX
(file
transfer
protocol)
client.A169 4E46
Key
fingerprint
= AF19
FA27
2F94FTP
998D
FDB5
DE3D
F8B5 06E4
Description :
The ftp package provides the standard UNIX command-line FTP client.
FTP is the file transfer protocol, which is a widely used Internet
protocol for transferring files and for archiving files.
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
If your system is on a network, you should install ftp in order to do
file transfers.
Name
: fvwm
Relocations: (not relocateable)
Version : 1.24r
Vendor: Red Hat Software
Release : 17
Build Date: Sun Mar 21 15:17:55 1999
Install date: Fri Oct 1 11:21:37 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/Desktops
Source RPM: fvwm-1.24r-17.src.rpm
Size
: 587364
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : An X Window System based window manager.
Description :
FVWM (the F stands for whatever you want, but the VWM stands for
Virtual Window Manager) is a window manager for the X Window System.
FVWM was derived from the twm window manager. FVWM is designed to
minimize memory consumption, to provide window frames with a 3D look, and
to provide a simple virtual desktop. FVWM can be configured to look like
Motif.
©
Install the fvwm package if you'd like to use the FVWM window manager. If
you install fvwm, you'll also need to install fvwm2-icons.
Name
: fvwm2
Relocations: (not relocateable)
Version : 2.2
Vendor: Red Hat Software
Release : 5
Build Date: Fri Apr 9 15:18:03 1999
Install date: Fri Oct 1 11:21:40 1999
Build Host: porky.devel.redhat.com
Group
: User= Interface/Desktops
Key
fingerprint
AF19 FA27 2F94 998DSource
FDB5RPM:
DE3Dfvwm2-2.2-5.src.rpm
F8B5 06E4 A169 4E46
Size
: 1772444
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://fvwm.math.uh.edu/
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
42 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
Summary : An improved version of the FVWM X-based window manager.
Description :
FVWM2 (the F stands for whatever you want, but the VWM stands for
Virtual Window Manager) is an improved version of the FVWM window
manager for the X Window System and shares the same characteristics as
FVWM.
00
2,
Au
th
or
re
tai
ns
f
Install the fvwm2 package if you'd like to use the FVWM2 window manager.
If you install fvwm2, you'll also need to install fvwm2-icons.
Name
: fvwm2-icons
Relocations: (not relocateable)
Version : 2.2
Vendor: Red Hat Software
Release : 5
Build Date: Fri Apr 9 15:18:03 1999
Install
date: Fri =
Oct
1 11:21:41
1999
porky.devel.redhat.com
Key
fingerprint
AF19
FA27 2F94
998DBuild
FDB5Host:
DE3D
F8B5 06E4 A169 4E46
Group
: User Interface/Desktops
Source RPM: fvwm2-2.2-5.src.rpm
Size
: 455828
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://fvwm.math.uh.edu/
Summary : Graphic files used by the FVWM and FVWM2 window managers.
Description :
The fvwm2-icons package contains icons, bitmaps and pixmaps used by
the FVWM and FVWM2 X Window System window managers.
©
SA
NS
In
sti
tu
te
20
00
-2
You'll need to install fvwm2-icons if you are installing fvwm and/or
fvwm2.
Name
: fwhois
Relocations: /usr
Version : 1.00
Vendor: Red Hat Software
Release : 11
Build Date: Sun Mar 21 15:36:16 1999
Install date: Fri Oct 1 11:21:41 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: fwhois-1.00-11.src.rpm
Size
: 8403
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A finger-style whois program.
Description :
The fwhois program is a different style of the whois program. Both
fwhois and whois query Internet whois databases to find information
about system users. Fwhois is smaller and more compact than whois, and
runs in a different manner.
Install fwhois if you or your system's users need a program for querying
whois databases. You may also want to install whois, and then decide for
yourself which program you prefer.
Name
: gawk
Relocations: (not relocateable)
Version
: 3.0.3
Red DE3D
Hat Software
Key
fingerprint
= AF19 FA27 2F94 Vendor:
998D FDB5
F8B5 06E4 A169 4E46
Release : 7
Build Date: Tue Apr 6 10:25:29 1999
Install date: Fri Oct 1 11:21:44 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Text
Source RPM: gawk-3.0.3-7.src.rpm
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
43 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tai
ns
f
ull
rig
ht
s.
Size
: 2335181
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The GNU version of the awk text processing utility.
Description :
The gawk packages contains the GNU version of awk, a text processing
utility. Awk interprets a special-purpose programming language to do
quick and easy text pattern matching and reformatting jobs. Gawk should
be upwardly compatible with the Bell Labs research version of awk and
is almost completely compliant with the 1993 POSIX 1003.2 standard for
awk.
tu
te
20
00
-2
00
2,
Au
th
or
re
Install the gawk package if you need a text processing utility. Gawk is
considered
to be=aAF19
standard
Linux
for FDB5
processing
text.
Key
fingerprint
FA27
2F94tool
998D
DE3D
F8B5 06E4 A169 4E46
Name
: gd
Relocations: /usr
Version : 1.3
Vendor: Red Hat Software
Release : 5
Build Date: Sun Mar 21 11:01:08 1999
Install date: Fri Oct 1 11:21:45 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: gd-1.3-5.src.rpm
Size
: 322078
License: BSD-style
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A graphics library for drawing .gif files.
Description :
Gd is a graphics library for drawing .gif files. Gd allows your code to
quickly draw images (lines, arcs, text, multiple colors, cutting and
pasting from other images, flood fills) and write out the result as a
.gif file. Gd is particularly useful in web applications, where .gifs
are commonly used as inline images. Note, however, that gd is not a
paint program.
©
SA
NS
In
sti
Install gd if you are developing applications which need to draw .gif
files. If you install gd, you'll also need to install the gd-devel
package.
Name
: gdbm
Relocations: (not relocateable)
Version : 1.7.3
Vendor: Red Hat Software
Release : 19
Build Date: Sun Mar 21 09:56:21 1999
Install date: Fri Oct 1 11:21:45 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: gdbm-1.7.3-19.src.rpm
Size
: 29117
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A GNU set of database routines which use extensible hashing.
Description :
Gdbm is a GNU database indexing library, including routines
which
use extensible
hashing.
Gdbm
works
in a DE3D
similarF8B5
way to
standard
Key
fingerprint
= AF19
FA27 2F94
998D
FDB5
06E4
A169UNIX
4E46
dbm routines. Gdbm is useful for developers who write C applications and
need access to a simple and efficient database or who are building C
applications which will use such a database.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
44 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
If you're a C developer and your programs need access to simple database
routines, you should install gdbm. You'll also need to install gdbm-devel.
Name
: gdm
Relocations: (not relocateable)
Version : 1.0.0
Vendor: Red Hat Software
Release : 35
Build Date: Mon Apr 19 15:44:06 1999
Install date: Fri Oct 1 11:21:49 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/X
Source RPM: gdm-1.0.0-35.src.rpm
Size
: 250783
License: LGPL/GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : GNOME Display Manager.
Description :
GNOME
Display
Manager
allows
to log
intoDE3D
your system
with A169
the 4E46
Key
fingerprint
= AF19
FA27
2F94you
998D
FDB5
F8B5 06E4
X Window System running. It is highly configurable, allowing you
to run several different X sessions at once on your local machine,
and can manage login connections from remote machines as well.
Name
: gedit
Relocations: (not relocateable)
Version : 0.5.1
Vendor: Red Hat Software
Release : 3
Build Date: Fri Apr 9 21:24:11 1999
Install date: Fri Oct 1 11:21:51 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Editors
Source RPM: gedit-0.5.1-3.src.rpm
Size
: 348526
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://gedit.pn.org/
Summary : gEdit is a small but powerful text editor for GNOME.
Description :
gEdit is a small but powerful text editor designed expressly
for GNOME.
NS
In
sti
It includes such features as split-screen mode, a plugin
API, which allows gEdit to be extended to support many
features while remaining small at its core, multiple
document editing through the use of a 'tabbed' notebook and
many more functions.
©
SA
GNOME is required to use gEdit (Gnome-Libs and Gtk+).
Name
: getty_ps
Relocations: (not relocateable)
Version : 2.0.7j
Vendor: Red Hat Software
Release : 7
Build Date: Wed Mar 31 13:39:31 1999
Install date: Fri Oct 1 11:21:52 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Communications Source RPM: getty_ps-2.0.7j-7.src.rpm
Size
: 130073
License: Distributable - Copyright 1989,1990 by Paul
Sutcliffe
Jr.
Key
fingerprint
= AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The getty and uugetty programs.
Description :
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
45 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
The getty_ps package contains the getty and uugetty programs, basic
programs for accomplishing the login process on a Red Hat Linux system.
Getty and uugetty are used to accept logins on the console or a terminal.
Getty is invoked by the init process to open tty lines and set their modes,
to print the login prompt and get the user's name, and to initiate a login
process for the user. Uugetty works just like getty, except that uugetty
creates and uses lock files to prevent two or more processes from
conflicting in their use of a tty line. Getty and uugetty can also handle
answer a modem for dialup connections, but mgetty is recommended for that
purpose.
Name
: gftp
Relocations: (not relocateable)
Version : 1.13
Vendor: Red Hat Software
Release
: 4 = AF19 FA27 2F94
Build998D
Date:FDB5
Tue Apr
13 F8B5
15:53:22
1999
Key
fingerprint
DE3D
06E4
A169 4E46
Install date: Fri Oct 1 11:21:53 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: gftp-1.13-4.src.rpm
Size
: 565278
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.newwave.net/~masneyb/
Summary : Multithreaded FTP client for X Windows
Description :
gFTP is a multithreaded FTP client for X Windows written using Gtk. It
allows to have simultaneous downloads, resuming of interrupted file
transfers, file transfer queues, a very nice connection manager and
many more features.
Name
: ghostscript
Relocations: (not relocateable)
Version : 5.10
Vendor: Red Hat Software
Release : 7
Build Date: Mon Apr 5 10:52:00 1999
Install date: Fri Oct 1 11:22:00 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Publishing
Source RPM: ghostscript-5.10-7.src.rpm
Size
: 3410152
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A PostScript(TM) interpreter and renderer.
Description :
Ghostscript is a set of software that provides a PostScript(TM)
interpreter, a set of C procedures (the Ghostscript library, which
implements the graphics capabilities in the PostScript language) and an
interpreter for Portable Document Format (PDF) files. Ghostscript
translates PostScript code into many common, bitmapped formats, like those
understood by your printer or screen. Ghostscript is normally used to
display PostScript files and to print PostScript files to non-PostScript
printers.
If you
need to display
files
or print
them
to non-PostScript
Key
fingerprint
= AF19PostScript
FA27 2F94
998D
FDB5
DE3D
F8B5 06E4 A169 4E46
printers, you should install ghostscript. If you install ghostscript, you
also need to install the ghostscript-fonts package.
Name
: ghostscript-fonts
Relocations: (not relocateable)
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
46 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Version : 5.10
Vendor: Red Hat Software
Release : 3
Build Date: Sun Mar 21 16:04:19 1999
Install date: Fri Oct 1 11:22:02 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Publishing
Source RPM: ghostscript-fonts-5.10-3.src.rpm
Size
: 1526206
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : Fonts for the GhostScript PostScript(TM) interpreter.
Description :
These fonts can be used by the GhostScript interpreter during text
rendering. They are in addition to the shared fonts between GhostScript
and X11.
Name
: git
Relocations: (not relocateable)
Version
: 4.3.17
Vendor:
RedDE3D
Hat Software
Key
fingerprint
= AF19 FA27 2F94 998D
FDB5
F8B5 06E4 A169 4E46
Release : 5
Build Date: Sun Mar 21 16:05:25 1999
Install date: Fri Oct 1 11:22:02 1999
Build Host: porky.devel.redhat.com
Group
: Applications/File
Source RPM: git-4.3.17-5.src.rpm
Size
: 732303
License: GNU
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A set of GNU Interactive Tools.
Description :
GIT (GNU Interactive Tools) provides an extensible file system browser,
an ASCII/hexadecimal file viewer, a process viewer/killer and other
related utilities and shell scripts. GIT can be used to increase the
speed and efficiency of copying and moving files and directories, invoking
editors, compressing and uncompressing files, creating and expanding
archives, compiling programs, sending mail and more. GIT uses standard
ANSI color sequences, if they are available.
©
SA
NS
In
sti
tu
You should install the git package if you are interested in using its file
management capabilities.
Name
: glib
Relocations: (not relocateable)
Version : 1.2.1
Vendor: Red Hat Software
Release : 2
Build Date: Wed Apr 7 10:06:50 1999
Install date: Fri Oct 1 11:22:03 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: glib-1.2.1-2.src.rpm
Size
: 318262
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.gtk.org
Summary : A library of handy utility functions.
Description :
Glib is a handy library of utility functions. This C
library is designed to solve some portability problems
and provide
other
usefulFA27
functionality
which
most
Key
fingerprint
= AF19
2F94 998D
FDB5
DE3D F8B5 06E4 A169 4E46
programs require.
Glib is used by GDK, GTK+ and many applications.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
47 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
You should install Glib because many of your applications
will depend on this library.
Name
: glib10
Relocations: (not relocateable)
Version : 1.0.6
Vendor: Red Hat Software
Release : 5
Build Date: Wed Apr 7 16:56:01 1999
Install date: Fri Oct 1 11:22:04 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: gtk+10-1.0.6-5.src.rpm
Size
: 55442
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.gtk.org
Summary : A library of handy utility functions.
Description :
The glib
package
contains
a useful
of utility
functions,
whichA169 4E46
Key
fingerprint
= AF19
FA27
2F94library
998D FDB5
DE3D
F8B5 06E4
are necessary for the successful operation of many different programs on
your Red Hat Linux system.
Name
: gmc
Relocations: (not relocateable)
Version : 4.5.30
Vendor: Red Hat Software
Release : 12
Build Date: Mon Apr 19 14:03:36 1999
Install date: Fri Oct 1 11:22:07 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/Desktops
Source RPM: mc-4.5.30-12.src.rpm
Size
: 2311219
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.gnome.org/mc/
Summary : Midnight Commander visual shell (GNOME version).
Description :
Midnight Commander is a visual shell much like a file manager, only with
way more features. This is the GNOME version. It's coolest feature is the
ability to ftp, view tar, zip files and poke into RPMs for specific files.
The GNOME version of Midnight Commander is not yet finished though. :-(
Name
: gmp
Relocations: (not relocateable)
Version : 2.0.2
Vendor: Red Hat Software
Release : 8
Build Date: Sun Mar 21 16:08:42 1999
Install date: Fri Oct 1 11:22:08 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: gmp-2.0.2-8.src.rpm
Size
: 120541
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: http://www.gnu.org
Summary : A GNU arbitrary precision library.
Description :
The gmp package contains GNU MP, a library for arbitrary precision
arithmetic, signed integers operations, rational numbers and
floating point numbers. GNU MP is designed for speed, for both
smallfingerprint
and very large
operands.
GNU998D
MP isFDB5
fast for
several
reasons:
Key
= AF19
FA27 2F94
DE3D
F8B5
06E4 A169 4E46
It uses fullwords as the basic arithmetic type, it uses fast
algorithms, it carefully optimizes assembly code for many CPUs'
most common inner loops and it generally emphasizes speed over
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
48 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
simplicity/elegance in its operations.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Install the gmp package if you need a fast arbitrary precision
library.
Name
: gnome-audio
Relocations: (not relocateable)
Version : 1.0.0
Vendor: Red Hat Software
Release : 6
Build Date: Thu Apr 8 17:44:37 1999
Install date: Fri Oct 1 11:22:10 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: gnome-audio-1.0.0-6.src.rpm
Size
: 848657
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.gnome.org
Summary
: Sounds
GNOME
Key
fingerprint
= AF19forFA27
2F94 events.
998D FDB5 DE3D F8B5 06E4 A169 4E46
Description :
If you use the GNOME desktop environment, you may want to
install this package of complementary sounds.
Name
: gnome-audio-extra
Relocations: (not relocateable)
Version : 1.0.0
Vendor: Red Hat Software
Release : 6
Build Date: Thu Apr 8 17:44:37 1999
Install date: Fri Oct 1 11:22:13 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: gnome-audio-1.0.0-6.src.rpm
Size
: 2723528
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.gnome.org
Summary : Optional Sounds for GNOME events.
Description :
This package contains extra sound files useful for customizing the
sounds that the GNOME desktop environment makes.
Name
: gnome-core
Relocations: (not relocateable)
Version : 1.0.4
Vendor: Red Hat Software
Release : 34
Build Date: Mon Apr 19 13:27:44 1999
Install date: Fri Oct 1 11:22:20 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/Desktops
Source RPM: gnome-core-1.0.4-34.src.rpm
Size
: 2958461
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.gnome.org
Summary : The core programs for the GNOME GUI desktop environment.
Description :
GNOME (GNU Network Object Model Environment) is a user-friendly
set of applications and desktop tools to be used in conjunction with a
window manager for the X Window System. GNOME is similar in purpose and
scope to CDE and KDE, but GNOME is based completely on Open Source
software.
The gnome-core
package
includes
the DE3D
basic programs
andA169 4E46
Key
fingerprint
= AF19 FA27
2F94 998D
FDB5
F8B5 06E4
libraries that are needed to install GNOME.
You should install the gnome-core package if you would like to use the
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
49 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
th
or
re
tai
ns
f
ull
rig
ht
s.
GNOME desktop environment. You'll also need to install the gnome-libs
package. If you want to use linuxconf with a GNOME front end, you'll
also need to install the gnome-linuxconf package.
Name
: gnome-games
Relocations: (not relocateable)
Version : 1.0.2
Vendor: Red Hat Software
Release : 10
Build Date: Sat Apr 10 17:33:08 1999
Install date: Fri Oct 1 11:22:32 1999
Build Host: porky.devel.redhat.com
Group
: Amusements/Games
Source RPM: gnome-games-1.0.2-10.src.rpm
Size
: 3422736
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.gnome.org
Summary : GNOME games.
Description
: = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Key
fingerprint
GNOME is the GNU Network Object Model Environment. That's a fancy
name, but really GNOME is a nice GUI desktop environment.
Its powerful, friendly and easy-to-configure interface makes
using your computer easy.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
This package installs some GNOME games on your system,
such as gnothello, solitaire, tetris and others.
Name
: utempter
Relocations: (not relocateable)
Version : 0.5
Vendor: Red Hat Software
Release : 1
Build Date: Thu Apr 8 11:21:21 1999
Install date: Fri Oct 1 11:22:34 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: utempter-0.5-1.src.rpm
Size
: 22241
License: MIT
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Privledged helper for utmp/wtmp updates
Description :
Utempter is a utility which allows programs to log information to a
privledged file (/var/run/utmp), without compromising system security.
It accomplishes this task by acting as a buffer between root and the
programs.
Name
: gnome-libs
Relocations: (not relocateable)
Version : 1.0.8
Vendor: Red Hat Software
Release : 8
Build Date: Thu Apr 15 18:04:38 1999
Install date: Fri Oct 1 11:22:38 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: gnome-libs-1.0.8-8.src.rpm
Size
: 2258475
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.gnome.org/
Summary : The libraries needed by the GNOME GUI desktop environment.
Description
: = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Key
fingerprint
GNOME (GNU Network Object Model Environment) is a user-friendly set of
applications and desktop tools to be used in conjunction with a window
manager for the X Window System. GNOME is similar in purpose and scope
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
50 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
to CDE and KDE, but GNOME is based completely on Open Source software.
The gnome-libs package includes libraries that are needed by GNOME.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
You should install the gnome-libs package if you would like to use the
GNOME desktop environment. You'll also need to install the gnome-core
package. If you would like to develop GNOME applications, you'll also
need to install gnome-libs-devel. If you want to use linuxconf with a
GNOME front end, you'll also need to install the gnome-linuxconf
package.
Name
: gnome-linuxconf
Relocations: (not relocateable)
Version : 0.22
Vendor: Red Hat Software
Release : 1
Build Date: Tue Apr 6 18:44:05 1999
Install
date: Fri =
Oct
1 11:22:40
1999
porky.devel.redhat.com
Key
fingerprint
AF19
FA27 2F94
998DBuild
FDB5Host:
DE3D
F8B5 06E4 A169 4E46
Group
: Applications/System
Source RPM: gnome-linuxconf-0.22-1.src.rpm
Size
: 328646
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.gnome.org
Summary : The GNOME front-end for linuxconf.
Description :
GNOME (GNU Network Object Model Environment) is a user-friendly set of
applications and desktop tools to be used in conjunction with a window
manager for the X Window System. The gnome-linuxconf package includes
GNOME's front end for the linuxconf system configuration utility.
Name
: gnome-media
Relocations: (not relocateable)
Version : 1.0.1
Vendor: Red Hat Software
Release : 3
Build Date: Fri Mar 19 15:23:28 1999
Install date: Fri Oct 1 11:22:41 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: gnome-media-1.0.1-3.src.rpm
Size
: 298894
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: http://www.gnome.org
Summary : GNOME media programs.
Description :
GNOME (GNU Network Object Model Environment) is a user-friendly set
of applications and desktop tools to be used in conjunction with
a window manager for the X Window System. GNOME is similar
in purpose and scope to CDE and KDE, but GNOME is based completely
on Open Source software.
GNOME's powerful environment is pleasing on the eye, easy to
configure and use.
This fingerprint
package will
installFA27
such 2F94
media998D
features
as the
GNOME
Key
= AF19
FDB5
DE3D
F8B5 06E4 A169 4E46
CD player.
Name
: gnome-pim
Relocations: (not relocateable)
Version : 1.0.7
Vendor: Red Hat Software
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
51 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tai
ns
f
ull
rig
ht
s.
Release : 2
Build Date: Fri Apr 9 15:52:54 1999
Install date: Fri Oct 1 11:22:43 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Productivity Source RPM: gnome-pim-1.0.7-2.src.rpm
Size
: 682067
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.gnome.org
Summary : The GNOME Personal Information Manager.
Description :
The GNOME Personal Information Manager consists of applications to make
keeping up with your busy life easier.
20
00
-2
00
2,
Au
th
or
re
Currently these apps are present:
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
- gnomecal : personal calendar and todo list
- gnomecard: contact list of friends and business associates
Name
: gnome-users-guide
Relocations: (not relocateable)
Version : 1.0.5
Vendor: Red Hat Software
Release : 4rh
Build Date: Mon Apr 12 18:52:43 1999
Install date: Fri Oct 1 11:22:49 1999
Build Host: porky.devel.redhat.com
Group
: Documentation
Source RPM: gnome-users-guide-1.0.5-4rh.src.rpm
Size
: 7306670
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The GNOME Users' Guide.
Description :
This package will install the users' guide for the
GNOME Desktop Environment on your computer.
©
SA
NS
In
sti
tu
te
You should install this package if you are going to
use GNOME and you want a quick, handy reference.
Name
: gnome-utils
Relocations: (not relocateable)
Version : 1.0.1
Vendor: Red Hat Software
Release : 6
Build Date: Thu Apr 8 11:08:10 1999
Install date: Fri Oct 1 11:22:52 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: gnome-utils-1.0.1-6.src.rpm
Size
: 785457
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.gnome.org
Summary : GNOME utility programs such as calendar and calculator.
Description :
GNOME is the GNU Network Object Model Environment. This powerful
environment is both easy to use and easy to configure.
This fingerprint
package will
installFA27
some2F94
GNOME
such asF8B5
the 06E4 A169 4E46
Key
= AF19
998Dutilities,
FDB5 DE3D
calendar and calculator.
Name
: gnorpm
Relocations: (not relocateable)
Version : 0.8
Vendor: Red Hat Software
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
52 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Release : 5
Build Date: Fri Apr 16 15:05:44 1999
Install date: Fri Oct 1 11:22:53 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: gnorpm-0.8-5.src.rpm
Size
: 403998
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A graphical front end to the Red Hat Package Manager, for GNOME
Description :
Gnome RPM is a graphical front end to RPM, similar to Glint, but written with
the GTK widget set and the GNOME libraries. It is currently under
development, so there are some features missing, but you can currently query
packages in the filesystem and database, install upgrade, uninstall and
verify packages.
Name
: gnotepad+
relocateable)
Key
fingerprint
= AF19 FA27 2F94Relocations:
998D FDB5 (not
DE3D
F8B5 06E4 A169 4E46
Version : 1.1.3
Vendor: Red Hat Software
Release : 2
Build Date: Thu Apr 8 20:06:39 1999
Install date: Fri Oct 1 11:22:53 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Editors
Source RPM: gnotepad+-1.1.3-2.src.rpm
Size
: 186695
License: Freely distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://members.xoom.com/ackahn/gnp
Summary : Simple but versatile editor for X11.
Description :
gnotepad+ is an easy-to-use, yet fairly feature-rich, simple text editor
for systems running X11 and using GTK+. It is designed for as little
bloat as possible, while still providing many of the common features found
in a modern GUI-based text editor.
Name
: gnumeric
Relocations: (not relocateable)
Version : 0.23
Vendor: Red Hat Software
Release : 2
Build Date: Wed Apr 7 11:13:51 1999
Install date: Fri Oct 1 11:23:03 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Productivity Source RPM: gnumeric-0.23-2.src.rpm
Size
: 5157078
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.gnome.org/gnumeric
Summary : The full-featured GNOME spreadsheet.
Description :
GNOME is the GNU Network Object Model Environment. This powerful
environment is both easy to use and easy to configure.
This package will install Gnumeric the GNOME spreadsheet
program. This program is intended to be a replacement for
a commercial spreadsheet, so quite a bit of work has gone
into the
program.
Key
fingerprint
= AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Install this package if you want to use the GNOME
spreadsheet Gnumeric.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
53 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
re
tai
ns
f
ull
rig
ht
s.
Name
: gpm
Relocations: (not relocateable)
Version : 1.17.5
Vendor: Red Hat Software
Release : 3
Build Date: Mon Mar 22 10:30:56 1999
Install date: Fri Oct 1 11:23:07 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: gpm-1.17.5-3.src.rpm
Size
: 264349
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A mouse server for the Linux console.
Description :
Gpm provides mouse support to text-based Linux applications like the emacs
editor, the Midnight Commander file management system, and other programs.
Gpm also provides console cut-and-paste operations using the mouse and
includes
a program
to allow
menusFDB5
to appear
at the
click
of aA169
mouse
Key
fingerprint
= AF19
FA27pop-up
2F94 998D
DE3D
F8B5
06E4
4E46
button.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
Gpm should be installed if you intend to use a mouse with your Red Hat
Linux system.
Name
: gqview
Relocations: (not relocateable)
Version : 0.6.0
Vendor: Red Hat Software
Release : 3
Build Date: Sun Mar 21 16:50:43 1999
Install date: Fri Oct 1 11:23:10 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/X
Source RPM: gqview-0.6.0-3.src.rpm
Size
: 191098
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: http://www.geocities.com/SiliconValley/Haven/5235/index.html
Summary : graphics file browser utility
Description :
GQview is a browser for graphics files.
Offering single click viewing of your graphics files.
Includes thumbnail view, zoom and filtering features.
And external editor support.
Name
: groff
Relocations: (not relocateable)
Version : 1.11a
Vendor: Red Hat Software
Release : 9
Build Date: Sun Mar 21 16:53:32 1999
Install date: Fri Oct 1 11:23:14 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Publishing
Source RPM: groff-1.11a-9.src.rpm
Size
: 2910851
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A document formatting system.
Description :
Groff is a document formatting system. Groff takes standard text and
formatting commands as input and produces formatted output. The
created
documents
can be
shown
on998D
a display
or DE3D
printedF8B5
on a printer.
Key
fingerprint
= AF19
FA27
2F94
FDB5
06E4 A169 4E46
Groff's formatting commands allow you to specify font type and size, bold
type, italic type, the number and size of columns on a page, and more.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
54 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
You should install groff if you want to use it as a document formatting
system. Groff can also be used to format man pages. If you are going
to use groff with the X Window System, you'll also need to install the
groff-gxditview package.
Name
: gtk+
Relocations: (not relocateable)
Version : 1.2.1
Vendor: Red Hat Software
Release : 10
Build Date: Mon Apr 19 13:27:27 1999
Install date: Fri Oct 1 11:23:17 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: gtk+-1.2.1-10.src.rpm
Size
: 1989197
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.gtk.org
Summary
: The
GIMPFA27
ToolKit
a library
for F8B5
creating
GUIs
for 4E46
X.
Key
fingerprint
= AF19
2F94(GTK+),
998D FDB5
DE3D
06E4
A169
Description :
The gtk+ package contains the GIMP ToolKit (GTK+), a library for creating
graphical user interfaces for the X Window System. GTK+ was originally
written for the GIMP (GNU Image Manipulation Program) image processing
program, but is now used by several other programs as well.
NS
In
sti
tu
te
20
00
-2
00
2,
If you are planning on using the GIMP or another program that uses GTK+,
you'll need to have the gtk+ package installed.
Name
: gtk+10
Relocations: (not relocateable)
Version : 1.0.6
Vendor: Red Hat Software
Release : 5
Build Date: Wed Apr 7 16:56:01 1999
Install date: Fri Oct 1 11:23:18 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: gtk+10-1.0.6-5.src.rpm
Size
: 1167491
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.gtk.org
Summary : The GIMP ToolKit (GTK+), a library for creating GUIs for X.
Description :
The X libraries originally written for the GIMP, which are now used by
several other programs as well.
©
SA
This RPM is a set of compatibility libraries needed to run applications
linked against the 1.0 series of gtk+ and glib.
Name
: gtk-engines
Relocations: (not relocateable)
Version : 0.5
Vendor: Red Hat Software
Release : 16
Build Date: Wed Apr 14 18:21:11 1999
Install date: Fri Oct 1 11:23:23 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: gtk-engines-0.5-16.src.rpm
Size
: 2288131
License: GPL
Packager
: Red
Software
<http://developer.redhat.com/bugzilla>
Key
fingerprint
= Hat
AF19
FA27 2F94
998D FDB5 DE3D F8B5 06E4 A169 4E46
URL
: http://gtk.themes.org
Summary : Default GTK+ theme engines.
Description :
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
55 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
These are the graphical engines for the various GTK+ toolkit themes.
Included themes are:
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
- Notif
- Redmond95
- Pixmap
- Metal (swing-like)
Name
: gtop
Relocations: (not relocateable)
Version : 1.0.1
Vendor: Red Hat Software
Release : 3
Build Date: Fri Mar 19 15:06:03 1999
Install date: Fri Oct 1 11:23:24 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: gtop-1.0.1-3.src.rpm
Size fingerprint
: 273960
LGPL
Key
= AF19 FA27 2F94License:
998D FDB5
DE3D F8B5 06E4 A169 4E46
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: http://www.gnome.org
Summary : The GNOME system monitor.
Description :
GNOME is the GNU Network Object Model Environment. This powerful
environment is both easy to use and easy to configure.
SA
NS
In
sti
tu
te
20
00
-2
00
2,
This package will install the GNOME system monitor gtop,
which shows memory graphs and processes.
Name
: guile
Relocations: (not relocateable)
Version : 1.3
Vendor: Red Hat Software
Release : 6
Build Date: Sun Mar 21 17:08:47 1999
Install date: Fri Oct 1 11:23:26 1999
Build Host: porky.devel.redhat.com
Group
: Development/Languages
Source RPM: guile-1.3-6.src.rpm
Size
: 1054427
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A GNU implementation of Scheme for application extensibility.
Description :
GUILE (GNU's Ubiquitous Intelligent Language for Extension) is a library
implementation of the Scheme programming language, written in C. GUILE
provides a machine-independent execution platform that can be linked in
as a library during the building of extensible programs.
©
Install the guile package if you'd like to add extensibility to programs
that you are developing. You'll also need to install the guile-devel
package.
Name
: gv
Relocations: (not relocateable)
Version : 3.5.8
Vendor: Red Hat Software
Release : 7
Build Date: Sun Mar 21 17:12:00 1999
Install
date: Fri =
Oct
1 11:23:27
1999
porky.devel.redhat.com
Key
fingerprint
AF19
FA27 2F94
998DBuild
FDB5Host:
DE3D
F8B5 06E4 A169 4E46
Group
: Applications/Publishing
Source RPM: gv-3.5.8-7.src.rpm
Size
: 434832
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
56 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
URL
: http://wwwthep.physik.uni-mainz.de/~plass/gv/
Summary : An enhanced front-end for the ghostscript PostScript(TM) interpreter.
Description :
Gv provides a user interface for the ghostscript PostScript(TM)
interpreter. Derived from the ghostview program, gv can display
PostScript and PDF documents using the X Window System.
00
2,
Au
th
or
re
tai
ns
f
Install the gv package if you'd like to view PostScript and PDF documents
on your system. You'll also need to have the ghostscript package
installed, as well as the X Window System.
Name
: gzip
Relocations: (not relocateable)
Version : 1.2.4
Vendor: Red Hat Software
Release
: 14 = AF19 FA27 2F94
Build
Date:
Thu DE3D
Mar 25F8B5
14:28:13
Key
fingerprint
998D
FDB5
06E41999
A169 4E46
Install date: Fri Oct 1 11:23:28 1999
Build Host: porky.devel.redhat.com
Group
: Applications/File
Source RPM: gzip-1.2.4-14.src.rpm
Size
: 248307
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : The GNU data compression program.
Description :
The gzip package contains the popular GNU gzip data compression
program. Gzipped files have a .gz extension.
©
SA
NS
In
sti
tu
te
20
00
-2
Gzip should be installed on your Red Hat Linux system, because it is a
very commonly used data compression program.
Name
: hdparm
Relocations: (not relocateable)
Version : 3.3
Vendor: Red Hat Software
Release : 5
Build Date: Wed Mar 24 21:40:38 1999
Install date: Fri Oct 1 11:23:29 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: hdparm-3.3-5.src.rpm
Size
: 38807
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A utility for displaying and/or setting hard disk parameters.
Description :
Hdparm is a useful system utility for setting (E)IDE hard drive
parameters. For example, hdparm can be used to tweak hard drive
performance and to spin down hard drives for power conservation.
Name
: helptool
Relocations: (not relocateable)
Version : 2.4
Vendor: Red Hat Software
Release : 7
Build Date: Sun Mar 21 17:13:38 1999
Install date: Fri Oct 1 11:23:29 1999
Build Host: porky.devel.redhat.com
Group
: Documentation
Source RPM: helptool-2.4-7.src.rpm
Size
: 23940
License: GPL
Packager
: Red
Software
<http://developer.redhat.com/bugzilla/>
Key
fingerprint
= Hat
AF19
FA27 2F94
998D FDB5 DE3D F8B5 06E4 A169 4E46
Summary : A graphical user interface tool which searches for help files.
Description :
The helptool provides a unified graphical user interface for searching
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
57 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
through many of the help sources available (including man pages and GNU
texinfo documents).
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Install helptool if you'd like to use it to search for help files.
You'll need to have the X Window System installed to use the helptool.
Name
: ical
Relocations: (not relocateable)
Version : 2.2
Vendor: Red Hat Software
Release : 9
Build Date: Sun Mar 21 17:25:27 1999
Install date: Fri Oct 1 11:23:31 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Productivity Source RPM: ical-2.2-9.src.rpm
Size
: 809261
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URLfingerprint
:
Key
= AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
http://www.research.digital.com/SRC/personal/Sanjay_Ghemawat/ical/home.html
Summary : An X Window System-based calendar program.
Description :
Ical is an X Window System based calendar program. Ical will easily
create/edit/delete entries, create repeating entries, remind you about
upcoming appointments, print and list item occurrences, and allow
shared calendars between different users.
©
SA
NS
In
sti
tu
te
20
00
-2
00
Install ical if you need a calendar program to track your schedule. You'll
need to have the X Window System installed in order to use ical.
Name
: ImageMagick
Relocations: (not relocateable)
Version : 4.2.2
Vendor: Red Hat Software
Release : 4
Build Date: Fri Apr 9 00:47:25 1999
Install date: Fri Oct 1 11:23:34 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: ImageMagick-4.2.2-4.src.rpm
Size
: 3098379
License: freeware
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.wizards.dupont.com/cristy/ImageMagick.html
Summary : An X application for displaying and manipulating images.
Description :
ImageMagick is a powerful image display, coversion and
manipulation tool. It runs in an X session. With this
tool, you can view, edit and display a variety of
image formats.
This package installs the necessary files to run ImageMagick.
Name
: imlib
Relocations: (not relocateable)
Version : 1.9.5
Vendor: Red Hat Software
Release : 4
Build Date: Fri Apr 16 17:55:17 1999
Install
date: Fri =
Oct
1 11:23:35
1999
porky.devel.redhat.com
Key
fingerprint
AF19
FA27 2F94
998DBuild
FDB5Host:
DE3D
F8B5 06E4 A169 4E46
Group
: System Environment/Libraries Source RPM: imlib-1.9.5-4.src.rpm
Size
: 433840
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
58 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
URL
: http://www.labs.redhat.com/imlib
Summary : An image loading and rendering library for X11R6.
Description :
Imlib is a display depth independent image loading and rendering library.
Imlib is designed to simplify and speed up the process of loading images
and obtaining X Window System drawables. Imlib provides many simple
manipulation routines which can be used for common operations.
00
-2
00
2,
Au
th
or
re
tai
ns
f
Install imlib if you need an image loading and rendering library for X11R6.
You may also want to install the imlib-cfgeditor package, which will help
you configure Imlib.
Name
: imlib-cfgeditor
Relocations: (not relocateable)
Version
: 1.9.5
Red DE3D
Hat Software
Key
fingerprint
= AF19 FA27 2F94 Vendor:
998D FDB5
F8B5 06E4 A169 4E46
Release : 4
Build Date: Fri Apr 16 17:55:17 1999
Install date: Fri Oct 1 11:23:36 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: imlib-1.9.5-4.src.rpm
Size
: 341656
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.labs.redhat.com/imlib
Summary : A configuration editor for the Imlib library.
Description :
The imlib-cfgeditor package contains the imlib_config program, which you
can use to configure the Imlib image loading and rendering library.
Imlib_config can be used to control how Imlib uses color and handles
gamma corrections, etc.
©
SA
NS
In
sti
tu
te
20
If you're installing the imlib package, you should also install
imlib_cfgeditor.
Name
: indexhtml
Relocations: (not relocateable)
Version : 6.0
Vendor: Red Hat Software
Release : 1
Build Date: Thu Apr 15 21:23:35 1999
Install date: Fri Oct 1 11:23:36 1999
Build Host: porky.devel.redhat.com
Group
: Documentation
Source RPM: indexhtml-6.0-1.src.rpm
Size
: 18412
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The HTML welcome page you'll see after installing Red Hat Linux.
Description :
The indexhtml package contains the HTML page and graphics for
a welcome page shown by your Web browser, which you'll see
after you've successfully installed Red Hat Linux.
The Web page provided by indexhtml tells you how to register
yourfingerprint
Red Hat software
how
to get
anyFDB5
support
that you
Key
= AF19and
FA27
2F94
998D
DE3D
F8B5 06E4 A169 4E46
might need.
Name
: initscripts
Relocations: (not relocateable)
Version : 4.16
Vendor: Red Hat Software
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
59 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Release : 1
Build Date: Mon Apr 19 14:39:08 1999
Install date: Fri Oct 1 11:23:44 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: initscripts-4.16-1.src.rpm
Size
: 156542
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The inittab file and the /etc/rc.d scripts.
Description :
The initscripts package contains the basic system scripts used to boot
your Red Hat system, change run levels, and shut the system down cleanly.
Initscripts also contains the scripts that activate and deactivate most
network interfaces.
Name
: ipchains
Relocations: (not relocateable)
Version
: 1.3.8
Red DE3D
Hat Software
Key
fingerprint
= AF19 FA27 2F94 Vendor:
998D FDB5
F8B5 06E4 A169 4E46
Release : 3
Build Date: Tue Mar 23 12:50:41 1999
Install date: Fri Oct 1 11:23:45 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: ipchains-1.3.8-3.src.rpm
Size
: 323629
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : IP Firewalling Chains.
Description :
Linux IP Firewalling Chains is an update to (and hopefully an
improvement upon) the normal Linux Firewalling code, for 2.0 and 2.1
kernels. It lets you do things like firewalls, IP masquerading, etc.
Name
: ipxutils
Relocations: (not relocateable)
Version : 2.2.0.12
Vendor: Red Hat Software
Release : 5
Build Date: Tue Apr 6 14:07:55 1999
Install date: Fri Oct 1 11:23:46 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: ncpfs-2.2.0.12-5.src.rpm
Size
: 54295
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Tools for configuring and debugging IPX interfaces and networks.
Description :
The ipxutils package includes utilities (ipx_configure, ipx_internal_net,
ipx_interface, ipx_route) necessary for configuring and debugging IPX
interfaces and networks under Linux. IPX is the low-level protocol used
by Novell's NetWare file server system to transfer data.
©
Install ipxutils if you need to configure IPX networking on your network.
Name
: isapnptools
Relocations: (not relocateable)
Version : 1.18
Vendor: Red Hat Software
Release : 2
Build Date: Sun Mar 21 17:43:58 1999
Install date: Fri Oct 1 11:23:46 1999
Build Host: porky.devel.redhat.com
Group
: System
Environment/Base
Source
RPM:F8B5
isapnptools-1.18-2.src.rpm
Key
fingerprint
= AF19
FA27 2F94 998D FDB5
DE3D
06E4 A169 4E46
Size
: 243256
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : Utilities for configuring ISA Plug-and-Play (PnP) devices.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
60 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
Description :
The isapnptools package contains utilities for configuring ISA
Plug-and-Play (PnP) cards/boards which are in compliance with the PnP ISA
Specification Version 1.0a. ISA PnP cards use registers instead of jumpers
for setting the board address and interrupt assignments. The cards also
contain descriptions of the resources which need to be allocated. The BIOS
on your system, or isapnptools, uses a protocol described in the
specification to find all of the PnP boards and allocate the resources so
that none of them conflict.
th
or
re
tai
ns
f
Note that the BIOS doesn't do a very good job of allocating resources. So
isapnptools is suitable for all systems, whether or not they include a PnP
BIOS.
In fact, a=PnP
BIOS
adds
some
complications.
PnP BIOS
Key
fingerprint
AF19
FA27
2F94
998D
FDB5 DE3DAF8B5
06E4 may
A169already
4E46
activate some cards so that the drivers can find them. Then these tools
can unconfigure them or change their settings, causing all sorts of nasty
effects. If you have PnP network cards that already work, you should read
through the documentation files very carefully before you use isapnptools.
In
sti
tu
te
20
00
-2
00
2,
Au
Install isapnptools if you need utilities for configuring ISA PnP cards.
Name
: ispell
Relocations: (not relocateable)
Version : 3.1.20
Vendor: Red Hat Software
Release : 15
Build Date: Sun Mar 21 17:45:10 1999
Install date: Fri Oct 1 11:23:50 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Text
Source RPM: ispell-3.1.20-15.src.rpm
Size
: 4146951
License: GPL
Packager : Patricia Jung <trish@freiburg.linux.de>
Summary : The GNU interactive spelling checker program.
Description :
Ispell is the GNU interactive spelling checker. Ispell will check a text
file for spelling and typographical errors. When it finds a word that is
not in the dictionary, it will suggest correctly spelled words for the
misspelled word.
©
SA
NS
You should install ispell if you need a program for spell checking (and who
doesn't...).
Name
: kbdconfig
Relocations: (not relocateable)
Version : 1.9.2
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 05:44:56 1999
Install date: Fri Oct 1 11:23:52 1999 Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: kbdconfig-1.9.2-1.src.rpm
Size
: 59662
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary
: A=text-based
interface
for setting
loading
a keyboard
map.
Key
fingerprint
AF19 FA27
2F94 998D
FDB5and
DE3D
F8B5
06E4 A169
4E46
Description :
The kbdconfig utility is a terminal mode program for setting the keyboard
map for your system. Keyboard maps are necessary for using any keyboard
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
61 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
besides the US default keyboard. Kbdconfig will load the selected keymap
before exiting and configure your machine to use that keymap automatically
after rebooting.
th
or
re
tai
ns
f
ull
rig
ht
s.
You should install kbdconfig if you need a utility for changing your
keyboard map.
Name
: kdeadmin
Relocations: /usr
Version : 1.1.1pre2
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 00:29:49 1999
Install date: Fri Oct 1 11:23:57 1999 Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: kdeadmin-1.1.1pre2-1.src.rpm
Size
: 1500663
License: GPL
Packager
: Red
Software
<http://developer.redhat.com/bugzilla>
Key
fingerprint
= Hat
AF19
FA27 2F94
998D FDB5 DE3D F8B5 06E4 A169 4E46
Summary : K Desktop Environment - System Administration Tools
Description :
System Administration tools for the K Desktop Environment.
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
Included with this package are:
kdat (tape backup); ksysv (sysV init editor); kuser (user administration tool)
Name
: kdebase
Relocations: /usr
Version : 1.1.1pre2
Vendor: Red Hat Software
Release : 2
Build Date: Mon Apr 19 22:33:43 1999
Install date: Fri Oct 1 11:24:28 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/Desktops
Source RPM: kdebase-1.1.1pre2-2.src.rpm
Size
: 12310795
License: GPL/Artistic
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : K Desktop Environment - core files
Description :
Core applications for the K Desktop Environment.
Included are: kdm (replacement for xdm), kwm (window manager), kfm
(filemanager, web browser, ftp client, ...), konsole (xterm replacement),
kpanel (application starter and desktop pager), kaudio (audio server),
kdehelp (viewer for kde help files, info and man pages), plus other KDE
components (kcheckpass, kikbd, kvt, kscreensaver, kcontrol, kfind,
kfontmanager, kmenuedit, kappfinder).
©
PAM password authentication is supported via PAM service: kde.
Name
: kdegames
Relocations: /usr
Version : 1.1.1pre2
Vendor: Red Hat Software
Release : 2
Build Date: Mon Apr 19 15:18:43 1999
Install date: Fri Oct 1 11:24:42 1999
Build Host: porky.devel.redhat.com
Group
: Amusements/Games
Source RPM: kdegames-1.1.1pre2-2.src.rpm
Size fingerprint
: 5081281
GPLDE3D F8B5 06E4 A169 4E46
Key
= AF19 FA27 2F94 License:
998D FDB5
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : K Desktop Environment - Games
Description :
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
62 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
re
tai
ns
f
ull
rig
ht
s.
Games for the K Desktop Environment.
Included with this package are: kabalone, kasteroids, kblackbox, kmahjongg,
kmines, konquest, kpat, kpoker, kreversi, ksame, kshisen, ksokoban, ksmiletris,
ksnake, ksirtet.
Name
: kdegraphics
Relocations: /usr
Version : 1.1.1pre2
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 02:14:44 1999
Install date: Fri Oct 1 11:24:50 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: kdegraphics-1.1.1pre2-1.src.rpm
Size
: 2851459
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : K Desktop Environment - Graphics Applications
Description
: = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Key
fingerprint
Graphics applications for the K Desktop Environment.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
Includes: kdvi (displays TeX .dvi files); kfax (displays fax
files); kfract (a fractal generator); kghostview (displays postscript files);
kiconedit (icon editor); kpaint (a simple drawing program); ksnapshot (screen
capture utility); kview (image viewer for GIF, JPEG, TIFF, etc.).
Name
: kdelibs
Relocations: /usr
Version : 1.1.1pre2
Vendor: Red Hat Software
Release : 2
Build Date: Mon Apr 19 09:27:27 1999
Install date: Fri Oct 1 11:25:00 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: kdelibs-1.1.1pre2-2.src.rpm
Size
: 5817014
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : K Desktop Environment - Libraries
Description :
Libraries for the K Desktop Environment:
KDE Libraries included: kdecore (KDE core library), kdeui (user interface),
kfm (file manager), khtmlw (HTML widget), kfile (file access), kspell
(spelling checker), jscript (javascript), kab (addressbook), kimgio (image
manipulation), mediatool (sound, mixing and animation).
Name
: kdemultimedia
Relocations: /usr
Version : 1.1.1pre2
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 02:25:18 1999
Install date: Fri Oct 1 11:25:15 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: kdemultimedia-1.1.1pre21.src.rpm
Size
: 2423366
License: GPL/Artistic
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : K Desktop Environment - Multimedia Applications
Description
: = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Key
fingerprint
Multimedia applications for the K Desktop Environment.
Included: kmedia (media player); kmid (midi/karaoke player);
kmidi (midi-to-wav player/converter); kmix (mixer); kscd (CD audio player)
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
63 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tai
ns
f
ull
rig
ht
s.
Name
: kdenetwork
Relocations: /usr
Version : 1.1.1pre2
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 02:34:18 1999
Install date: Fri Oct 1 11:25:29 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: kdenetwork-1.1.1pre2-1.src.rpm
Size
: 7646048
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : K Desktop Environment - Network Applications
Description :
Network applications for the K Desktop Environment.
20
00
-2
00
2,
Au
th
or
re
Includes: karchie (ftp archive searcher); kbiff (mail delivery notification)
kfinger
("finger"= utility);
kmail2F94
(mail998D
client);
knuDE3D
(network
utilities);
Key
fingerprint
AF19 FA27
FDB5
F8B5
06E4 A169 4E46
korn (mailbox monitor tool); kppp (easy PPP connection configuration);
krn (news reader); ktalkd (talk daemon); ksirc (irc client).
Name
: kdesupport
Relocations: /usr
Version : 1.1.1pre2
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 01:47:57 1999
Install date: Fri Oct 1 11:25:36 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: kdesupport-1.1.1pre21.src.rpm
Size
: 2185761
License: GPL/LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : K Desktop Environment - Support Libraries
Description :
Support Libraries for the K Desktop Environment, but not part of it.
sti
tu
te
Libraries included: QwSpriteField, js (javascript), uulib, mimelib, rdb;
depending on the Red Hat release, libraries gdbm jpeg and gif are either
also included, or the versions supplied by Red Hat are required.
©
SA
NS
In
This package also provides extra KDE support for Red Hat Linux: a
script "usekde" that users can run to set up KDE as their default
desktop (which is also done automatically when a new user is created),
and scripts for activating the KDE X Display Manager "kdm" to replace
"xdm".
Name
: kdeutils
Relocations: /usr
Version : 1.1.1pre2
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 02:29:35 1999
Install date: Fri Oct 1 11:25:51 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: kdeutils-1.1.1pre2-1.src.rpm
Size
: 3456413
License: GPL/Artistic
Packager
: Red
Software
<http://developer.redhat.com/bugzilla>
Key
fingerprint
= Hat
AF19
FA27 2F94
998D FDB5 DE3D F8B5 06E4 A169 4E46
Summary : K Desktop Environment - Utilities
Description :
Utilities for the K Desktop Environment.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
64 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Includes: ark (tar/gzip archive manager); kab (address book); karm (personal
time tracker); kcalc (scientific calculator); kedit (simple text editor);
kfloppy (floppy formatting tool); khexedit (hex editor); kjots (note taker);
klipper (clipboard tool); kljettool(HP printer configuration tool); klpq
(print queue manager) knotes (post-it notes for the desktop); kpm
(process manager similar to 'top', but more advanced);kwrite (improved
text editor).
Name
: kernel
Relocations: (not relocateable)
Version : 2.2.5
Vendor: Red Hat Software
Release : 15
Build Date: Mon Apr 19 21:39:52 1999
Install date: Fri Oct 1 11:26:05 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Kernel Source RPM: kernel-2.2.5-15.src.rpm
Size fingerprint
: 9947601
GPLDE3D F8B5 06E4 A169 4E46
Key
= AF19 FA27 2F94 License:
998D FDB5
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The Linux kernel (the core of the Linux operating system).
Description :
The kernel package contains the Linux kernel (vmlinuz), the core of your
Red Hat Linux operating system. The kernel handles the basic functions
of the operating system: memory allocation, process allocation, device
input and output, etc.
Name
: kernel-pcmcia-cs
Relocations: (not relocateable)
Version : 2.2.5
Vendor: Red Hat Software
Release : 15
Build Date: Mon Apr 19 20:58:35 1999
Install date: Fri Oct 1 11:26:08 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Kernel Source RPM: kernel-2.2.5-15.src.rpm
Size
: 575349
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The daemon and device drivers for using PCMCIA adapters.
Description :
Many laptop machines (and some non-laptops) support PCMCIA cards for
expansion. Also known as "credit card adapters," PCMCIA cards are small
cards for everything from SCSI support to modems. PCMCIA cards are hot
swappable (i.e., they can be exchanged without rebooting the system) and
quite convenient to use. The kernel-pcmcia-cs package contains a set of
loadable kernel modules that implement an applications program interface,
a set of client drivers for specific cards and a card manager daemon that
can respond to card insertion and removal events by loading and unloading
drivers on demand. The daemon also supports hot swapping, so that the
cards can be safely inserted and ejected at any time.
Install the kernel-pcmcia-cs package if your system uses PCMCIA cards.
Name
: kernelcfg
Relocations: (not relocateable)
Version
: 0.5 = AF19 FA27 2F94Vendor:
Red Hat
Software
Key
fingerprint
998D FDB5
DE3D
F8B5 06E4 A169 4E46
Release : 5
Build Date: Sat Apr 17 01:03:34 1999
Install date: Fri Oct 1 11:26:10 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: kernelcfg-0.5-5.src.rpm
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
65 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tai
ns
f
ull
rig
ht
s.
Size
: 60056
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A Red Hat utility for configuring the kernel daemon.
Description :
The kernelcfg package contains an X Window System based graphical user
interface tool for configuring the kernel daemon (kerneld). Kerneld
automatically loads some hardware and software support into memory as
needed and unloads the support when it is no longer being used. The
kernel configurator tool can be used to tell kerneld what hardware support
to load when it is presented with a generic hardware request.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
Kernelcfg should be installed because it is a useful utility for managing
the kernel
daemon.
Key
fingerprint
= AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Name
: knfsd
Relocations: (not relocateable)
Version : 1.2.2
Vendor: Red Hat Software
Release : 4
Build Date: Thu Apr 15 23:19:30 1999
Install date: Fri Oct 1 11:26:11 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: knfsd-1.2.2-4.src.rpm
Size
: 161964
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Kernel NFS server.
Description :
This is the *new* kernel NFS server and related tools. It provides a much
higher level of performance than the traditional Linux user-land NFS server.
Name
: korganizer
Relocations: /usr
Version : 1.1.1pre2
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 02:54:15 1999
Install date: Fri Oct 1 11:26:15 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Productivity Source RPM: korganizer-1.1.1pre2-1.src.rpm
Size
: 1513434
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : KOrganizer - Calendar and Scheduling Program for KDE
Description :
KOrganizer is a complete calendar and scheduling program for KDE. It
allows interchange with other calendar applications through the industry
standard vCalendar file format.
Name
: kpilot
Relocations: /usr
Version : 3.1b8_pgb
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 07:51:16 1999
Install date: Fri Oct 1 11:26:16 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Communications Source RPM: kpilot-3.1b8_pgb-1.src.rpm
Size
: 899976
License: GPL
Packager
: Red
Software
<http://developer.redhat.com/bugzilla>
Key
fingerprint
= Hat
AF19
FA27 2F94
998D FDB5 DE3D F8B5 06E4 A169 4E46
Summary : KPilot - pilot synchronization tools for KDE
Description :
KPilot allows you to synchronize your PalmPilot with your desktop. It
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
66 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
allows you to backup and restore the various databases (Addressbook,
ToDo List, Memos, etc.) as well as install applications to the pilot.
Two "conduits" for the third party application KOrganizer are included
which will let you sync your ToDo list and Calendar with that program.
Name
: kpppload
Relocations: /usr
Version : 1.04
Vendor: Red Hat Software
Release : 4
Build Date: Tue Apr 13 15:50:56 1999
Install date: Fri Oct 1 11:26:16 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: kpppload-1.04-4.src.rpm
Size
: 90430
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A PPP Link Monitor
Description
: = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Key
fingerprint
Monitors the load on your PPP connection. Looks a lot like xload.
Name
: ld.so
Relocations: (not relocateable)
Version : 1.9.5
Vendor: Red Hat Software
Release : 11
Build Date: Sun Mar 21 19:23:33 1999
Install date: Fri Oct 1 11:26:16 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: ld.so-1.9.5-11.src.rpm
Size
: 253647
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A dynamic loader for a.out format files.
Description :
This package contains the shared library configuration tool, ldconfig, which
is required by many packages. It also includes the shared library loader
and dynamic loader for Linux libc 5.
Name
: less
Relocations: (not relocateable)
Version : 332
Vendor: Red Hat Software
Release : 6
Build Date: Sun Mar 21 19:24:12 1999
Install date: Fri Oct 1 11:26:16 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Text
Source RPM: less-332-6.src.rpm
Size
: 145542
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A text file browser similar to more, but better.
Description :
The less utility is a text file browser that resembles more, but has
more capabilities. Less allows you to move backwards in the file as
well as forwards. Since less doesn't have to read the entire input file
before it starts, less starts up more quickly than text editors (for
example, vi).
You should install less because it is a basic utility for viewing text
files,fingerprint
and you'll =use
it frequently.
Key
AF19
FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Name
: lha
Relocations: (not relocateable)
Version : 1.00
Vendor: Red Hat Software
Release : 11
Build Date: Sun Mar 21 19:24:48 1999
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
67 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
Install date: Fri Oct 1 11:26:17 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Archiving
Source RPM: lha-1.00-11.src.rpm
Size
: 58186
License: freeware
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : An archiving and compression utility for LHarc format archives.
Description :
LHA is an archiving and compression utility for LHarc format archives.
LHA is mostly used in the DOS world, but can be used under Linux to
extract DOS files from LHA archives.
00
-2
00
2,
Au
th
or
re
tai
ns
f
Install the lha package if you need to extract DOS files from LHA archives.
Name
: libc
Relocations: (not relocateable)
Version
: 5.3.12
Vendor:
RedDE3D
Hat Software
Key
fingerprint
= AF19 FA27 2F94 998D
FDB5
F8B5 06E4 A169 4E46
Release : 31
Build Date: Thu Apr 15 23:46:03 1999
Install date: Fri Oct 1 11:26:22 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: libc-5.3.12-31.src.rpm
Size
: 5494780
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The compatibility libraries needed by old libc.so.5 applications.
Description :
Older Linux systems (including all Red Hat Linux releases between 2.0
and 4.2, inclusive) were based on libc version 5. The libc package
includes the libc5 libraries and other libraries based on libc5. With
these libraries installed, old applications which need them will be able
to run on your glibc (libc version 6) based system.
©
SA
NS
In
sti
tu
te
20
The libc package should be installed so that you can run older applications
which need libc version 5.
Name
: libghttp
Relocations: (not relocateable)
Version : 1.0.2
Vendor: Red Hat Software
Release : 3
Build Date: Wed Apr 14 11:00:30 1999
Install date: Fri Oct 1 11:26:36 1999 Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: libghttp-1.0.2-3.src.rpm
Size
: 87290
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.gnome.org/
Summary : GNOME http client library.
Description :
Library for making HTTP 1.1 requests.
Name
: libgr
Relocations: (not relocateable)
Version : 2.0.13
Vendor: Red Hat Software
Release : 17
Build Date: Tue Mar 23 13:52:07 1999
Install
date: Fri =
Oct
1 11:26:38
1999
porky.devel.redhat.com
Key
fingerprint
AF19
FA27 2F94
998DBuild
FDB5Host:
DE3D
F8B5 06E4 A169 4E46
Group
: System Environment/Libraries Source RPM: libgr-2.0.13-17.src.rpm
Size
: 241060
License: freeware
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
68 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Summary : A library for handling different graphics file formats.
Description :
The libgr package contains a library of functions which support programs
for handling various graphics file formats, including .pbm (portable
pitmaps), .pgm (portable graymaps), .pnm (portable anymaps), .ppm
(portable pixmaps) and others.
Name
: libgr-progs
Relocations: (not relocateable)
Version : 2.0.13
Vendor: Red Hat Software
Release : 17
Build Date: Tue Mar 23 13:52:07 1999
Install date: Fri Oct 1 11:26:40 1999 Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: libgr-2.0.13-17.src.rpm
Size
: 1618065
License: freeware
Packager
: Red
Software
<http://developer.redhat.com/bugzilla/>
Key
fingerprint
= Hat
AF19
FA27 2F94
998D FDB5 DE3D F8B5 06E4 A169 4E46
Summary : Tools for manipulating graphics files in libgr supported formats.
Description :
The libgr-progs package contains a group of scripts for manipulating the
graphics files in formats which are supported by the libgr library. For
example, libgr-progs includes the rasttopnm script, which will convert a
Sun rasterfile into a portable anymap. Libgr-progs contains many other
scripts for converting from one graphics file format to another.
SA
NS
In
sti
tu
te
20
00
-2
00
If you need to use these conversion scripts, you should install
libgr-progs. You'll also need to install the libgr package.
Name
: libgtop
Relocations: (not relocateable)
Version : 1.0.1
Vendor: Red Hat Software
Release : 3
Build Date: Fri Mar 19 15:22:53 1999
Install date: Fri Oct 1 11:26:43 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: libgtop-1.0.1-3.src.rpm
Size
: 441820
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: http://www.home-of-linux.org/gnome/libgtop/
Summary : The LibGTop library.
Description :
A library that fetches information about the running system such
as CPU and memory useage, active processes and more.
©
On Linux systems, this information is taken directly from the
/proc filesystem while on other systems a server is used to
read that information from other /dev/kmem, among others.
Name
: libjpeg
Relocations: (not relocateable)
Version : 6b
Vendor: Red Hat Software
Release : 9
Build Date: Sun Mar 21 10:02:07 1999
Install
date: Fri =
Oct
1 11:26:43
1999
porky.devel.redhat.com
Key
fingerprint
AF19
FA27 2F94
998DBuild
FDB5Host:
DE3D
F8B5 06E4 A169 4E46
Group
: System Environment/Libraries Source RPM: libjpeg-6b-9.src.rpm
Size
: 245517
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
69 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Summary : A library for manipulating JPEG image format files.
Description :
The libjpeg package contains a library of functions for manipulating
JPEG images, as well as simple client programs for accessing the libjpeg
functions. Libjpeg client programs include cjpeg, djpeg, jpegtran,
rdjpgcom and wrjpgcom. Cjpeg compresses an image file into JPEG format.
Djpeg decompresses a JPEG file into a regular image file. Jpegtran can
perform various useful transformations on JPEG files. Rdjpgcom displays
any text comments included in a JPEG file. Wrjpgcom inserts text
comments into a JPEG file.
Name
: libpng
Relocations: (not relocateable)
Version : 1.0.3
Vendor: Red Hat Software
Release
: 2 = AF19 FA27 2F94
Build998D
Date:FDB5
Sun Mar
21 F8B5
10:08:59
1999
Key
fingerprint
DE3D
06E4
A169 4E46
Install date: Fri Oct 1 11:26:44 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: libpng-1.0.3-2.src.rpm
Size
: 276815
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A library of functions for manipulating PNG image format files.
Description :
The libpng package contains a library of functions for creating and
manipulating PNG (Portable Network Graphics) image format files. PNG is
a bit-mapped graphics format similar to the GIF format. PNG was created to
replace the GIF format, since GIF uses a patented data compression
algorithm.
©
SA
NS
In
sti
tu
te
20
Libpng should be installed if you need to manipulate PNG format image
files.
Name
: libstdc++
Relocations: (not relocateable)
Version : 2.9.0
Vendor: Red Hat Software
Release : 12
Build Date: Sun Mar 21 15:41:39 1999
Install date: Fri Oct 1 11:26:48 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: egcs-1.1.2-12.src.rpm
Size
: 3503775
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: http://egcs.cygnus.com/
Summary : GNU c++ library
Description :
EGCS is a free software project that intends to further the development
of GNU compilers using an open development environment. The egcs
package contains the egcs compiler, a compiler aimed at integrating all
the optimizations and features necessary for a high-performance and stable
development environment. EGCS includes the shared libraries necessary for
running
C++ appplications,
along
additional
GNU F8B5
tools. 06E4 A169 4E46
Key
fingerprint
= AF19 FA27
2F94with
998D
FDB5 DE3D
Install egcs if you'd like to use an experimental GNU compiler.
Name
: libtiff
Relocations: (not relocateable)
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
70 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tai
ns
f
ull
rig
ht
s.
Version : 3.4
Vendor: Red Hat Software
Release : 6
Build Date: Sun Mar 21 10:16:47 1999
Install date: Fri Oct 1 11:26:50 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: libtiff-3.4-6.src.rpm
Size
: 582333
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: http://www-mipl.jpl.nasa.gov/~ndr/tiff/
Summary : A library of functions for manipulating TIFF format image files.
Description :
The libtiff package contains a library of functions for manipulating
TIFF (Tagged Image File Format) image format files. TIFF is a widely
used file format for bitmapped images. TIFF files usually end in the
.tif extension
and
they are
often
quite
large.
Key
fingerprint
= AF19
FA27
2F94
998D
FDB5 DE3D F8B5 06E4 A169 4E46
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
The libtiff package should be installed if you need to manipulate TIFF
format image files.
Name
: libungif
Relocations: /usr
Version : 4.1.0
Vendor: Red Hat Software
Release : 2
Build Date: Sun Mar 21 10:17:34 1999
Install date: Fri Oct 1 11:26:51 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: libungif-4.1.0-2.src.rpm
Size
: 82547
License: X Consortium-like
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: http://prtr-13.ucsc.edu/~badger/software/libungif.shtml
Summary : A library for manipulating GIF format image files.
Description :
The libungif package contains a shared library of functions for loading
and saving GIF format image files. The libungif library can load any
GIF file, but it will save GIFs only in uncompressed format (i.e., it
won't use the patented LZW compression used to save "normal" compressed
GIF files).
©
SA
NS
Install the libungif package if you need to manipulate GIF files. You
should also install the libungif-progs package.
Name
: libxml
Relocations: (not relocateable)
Version : 1.0.0
Vendor: Red Hat Software
Release : 2
Build Date: Sun Mar 28 10:34:16 1999
Install date: Fri Oct 1 11:26:52 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: libxml-1.0.0-2.src.rpm
Size
: 158006
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.gnome.org
Summary
: The
libXML
library.
Key
fingerprint
= AF19
FA27
2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Description :
This library allows you to manipulate XML files.
Name
: lilo
Relocations: (not relocateable)
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
71 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Version : 0.21
Vendor: Red Hat Software
Release : 6
Build Date: Mon Apr 12 23:19:24 1999
Install date: Fri Oct 1 11:26:54 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: lilo-0.21-6.src.rpm
Size
: 1122220
License: MIT
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The boot loader for Linux and other operating systems.
Description :
LILO (LInux LOader) is a basic system program which boots your Linux
system. LILO loads the Linux kernel from a floppy or a hard drive, boots
the kernel and passes control of the system to the kernel. LILO can also
boot other operating systems.
Name
: pwdb
Relocations:
(not
relocateable)
Key
fingerprint
= AF19 FA27 2F94
998D FDB5
DE3D
F8B5 06E4 A169 4E46
Version : 0.58
Vendor: Red Hat Software
Release : 3
Build Date: Thu Apr 15 14:40:40 1999
Install date: Fri Oct 1 11:26:57 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: pwdb-0.58-3.src.rpm
Size
: 434553
License: GPL or BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The password database library.
Description :
The pwdb package contains libpwdb, the password database library.
Libpwdb is a library which implements a generic user information
database. Libpwdb was specifically designed to work with Linux's
PAM (Pluggable Authentication Modules). Libpwdb allows configurable
access to and management of security tools like /etc/passwd,
/etc/shadow and network authentication systems including NIS and
Radius.
Name
: pam
Relocations: (not relocateable)
Version : 0.66
Vendor: Red Hat Software
Release : 18
Build Date: Sat Apr 17 15:26:54 1999
Install date: Fri Oct 1 11:26:59 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: pam-0.66-18.src.rpm
Size
: 1944359
License: GPL or BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://parc.power.net/morgan/Linux-PAM/index.html
Summary : A security tool which provides authentication for applications.
Description :
PAM (Pluggable Authentication Modules) is a system security tool
which allows system administrators to set authentication policy
without having to recompile programs which do authentication.
Name
: sh-utils
Relocations: (not relocateable)
Version
: 1.16= AF19 FA27 2F94 Vendor:
Red DE3D
Hat Software
Key
fingerprint
998D FDB5
F8B5 06E4 A169 4E46
Release : 23
Build Date: Tue Apr 13 13:58:42 1999
Install date: Fri Oct 1 11:27:01 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Shells Source RPM: sh-utils-1.16-23.src.rpm
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
72 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Size
: 360441
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A set of GNU utilities commonly used in shell scripts.
Description :
The GNU shell utilities are a set of useful system utilities which
are often used in shell scripts. The sh-utils package includes
basename (to remove the path prefix from a specified pathname),
chroot (to change the root directory), date (to print/set the
system time and date), dirname (to remove the last level or the
filename from a given path), echo (to print a line of text), env
(to display/modify the environment), expr (to evaluate expressions),
factor (to print prime factors), false (to return an unsuccessful
exit status),
groups
(to print
groups
a specified
user is
a 06E4 A169 4E46
Key
fingerprint
= AF19
FA27the2F94
998D
FDB5 DE3D
F8B5
member of), id (to print the real/effective uid/gid), logname (to
print the current login name), nice (to modify a scheduling priority),
nohup (to allow a command to continue running after logging out),
pathchk (to check a file name's portability), printenv (to print
environment variables), printf (to format and print data), pwd (to
print the current directory), seq (to print numeric sequences),
sleep (to suspend execution for a specified time), stty (to
print/change terminal settings), su (to become another user or the
superuser), tee (to send output to multiple files), test (to
evaluate an expression), true (to return a successful exit status),
tty (to print the terminal name), uname (to print system information),
users (to print current users' names), who (to print a list of the
users who are currently logged in), whoami (to print the effective
user id), and yes (to print a string indefinitely).
Name
: redhat-release
Relocations: (not relocateable)
Version : 6.0
Vendor: (none)
Release : 1
Build Date: Mon Apr 19 19:07:41 1999
Install date: Fri Oct 1 11:27:02 1999
Build Host: porkchop.redhat.com
Group
: System Environment/Base
Source RPM: redhat-release-6.0-1.src.rpm
Size
: 35
License: GPL
Summary : Red Hat Linux release file
Description :
Red Hat Linux release file
Name
: linuxconf
Relocations: (not relocateable)
Version : 1.14r4
Vendor: Red Hat Software
Release : 4
Build Date: Thu Apr 15 12:03:45 1999
Install date: Fri Oct 1 11:27:28 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: linuxconf-1.14r4-4.src.rpm
Size
: 11577741
License: GPL
Packager
: Red
Software
<http://developer.redhat.com/bugzilla>
Key
fingerprint
= Hat
AF19
FA27 2F94
998D FDB5 DE3D F8B5 06E4 A169 4E46
URL
: http://www.solucorp.qc.ca/linuxconf/
Summary : An extremely capable system configuration tool.
Description :
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
73 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
Linuxconf is an extremely capable system configuration tool. Linuxconf
provides four different interfaces for you to choose from: command line,
character-cell (like the installation program), an X Window System based
GUI and a web-based interface. Linuxconf can manage a large proportion
of your system's operations, including networking, user accounts, file
systems, boot parameters, and more.
00
-2
00
2,
Au
th
or
re
tai
ns
f
Linuxconf will simplify the process of configuring your system. Unless
you are completely happy with configuring your system manually, you should
install the linuxconf package and use linuxconf instead.
Name
: logrotate
Relocations: (not relocateable)
Version : 3.2
Vendor: Red Hat Software
Release
: 1 = AF19 FA27 2F94
Build998D
Date:FDB5
Wed DE3D
Apr 7 F8B5
11:04:05
1999
Key
fingerprint
06E4
A169 4E46
Install date: Fri Oct 1 11:27:34 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: logrotate-3.2-1.src.rpm
Size
: 52006
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Rotates, compresses, removes and mails system log files.
Description :
The logrotate utility is designed to simplify the administration of
log files on a system which generates a lot of log files. Logrotate
allows for the automatic rotation compression, removal and mailing of
log files. Logrotate can be set to handle a log file daily, weekly,
monthly or when the log file gets to a certain size. Normally, logrotate
runs as a daily cron job.
©
SA
NS
In
sti
tu
te
20
Install the logrotate package if you need a utility to deal with the log
files on your system.
Name
: losetup
Relocations: (not relocateable)
Version : 2.9o
Vendor: Red Hat Software
Release : 1
Build Date: Sat Apr 17 11:54:48 1999
Install date: Fri Oct 1 11:27:34 1999 Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: mount-2.9o-1.src.rpm
Size
: 9328
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Programs for setting up and configuring loopback devices.
Description :
Linux supports a special block device called the loop device, which
maps a normal file onto a virtual block device. This allows for the
file to be used as a "virtual file system" inside another file. Losetup
is used to associate loop devices with regular files or block devices,
to detach loop devices and to query the status of a loop device.
Name
: lpr = AF19 FA27 2F94
Relocations:
(not DE3D
relocateable)
Key
fingerprint
998D FDB5
F8B5 06E4 A169 4E46
Version : 0.35
Vendor: Red Hat Software
Release : 1
Build Date: Mon Mar 22 16:05:43 1999
Install date: Fri Oct 1 11:27:36 1999
Build Host: porky.devel.redhat.com
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
74 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
Group
: System Environment/Daemons Source RPM: lpr-0.35-1.src.rpm
Size
: 185141
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A utility that manages print jobs.
Description :
The lpr package provides the basic system utility for managing printing
services. Lpr manages print queues, sends print jobs to local and remote
printers and accepts print jobs from remote clients.
00
-2
00
2,
Au
th
or
re
tai
ns
f
If you will be printing from your system, you'll need to install the lpr
package.
Name
: lynx
Relocations: (not relocateable)
Version
: 2.8.1
Red DE3D
Hat Software
Key
fingerprint
= AF19 FA27 2F94 Vendor:
998D FDB5
F8B5 06E4 A169 4E46
Release : 11
Build Date: Mon Mar 29 17:53:32 1999
Install date: Fri Oct 1 11:27:39 1999 Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: lynx-2.8.1-11.src.rpm
Size
: 2059706
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A text-based Web browser.
Description :
Lynx is a text-based Web browser. Lynx does not display any images,
but it does support frames, tables and most other HTML tags. Lynx's
advantage over graphical browsers is its speed: Lynx starts and exits
quickly and swiftly displays Web pages.
©
SA
NS
In
sti
tu
te
20
Install lynx if you would like to try this fast, non-graphical browser
(you may come to appreciate its strengths).
Name
: m4
Relocations: (not relocateable)
Version : 1.4
Vendor: Red Hat Software
Release : 12
Build Date: Sun Mar 21 19:59:01 1999
Install date: Fri Oct 1 11:27:39 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Text
Source RPM: m4-1.4-12.src.rpm
Size
: 122899
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : The GNU macro processor.
Description :
A GNU implementation of the traditional UNIX macro processor. M4 is
useful for writing text files which can be logically parsed, and is used
by many programs as part of their build process. M4 has built-in
functions for including files, running shell commands, doing arithmetic,
etc. The autoconf program needs m4 for generating configure scripts, but
not for running configure scripts.
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Install m4 if you need a macro processor.
Name
: mailx
Relocations: (not relocateable)
Version : 8.1.1
Vendor: Red Hat Software
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
75 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tai
ns
f
ull
rig
ht
s.
Release : 8
Build Date: Sun Mar 21 20:00:44 1999
Install date: Fri Oct 1 11:27:41 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: mailx-8.1.1-8.src.rpm
Size
: 92096
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : The /bin/mail program, which is used to send mail via shell scripts.
Description :
The mailx package installs the /bin/mail program, which is used to send
quick email messages (i.e., without opening up a full-featured mail user
agent). Mail is often used in shell scripts.
te
20
00
-2
00
2,
Au
th
or
re
You should install mailx because of its quick email sending ability, which
is especially
useful
if you're
on writing
any shell
scripts.
Key
fingerprint
= AF19
FA27planning
2F94 998D
FDB5 DE3D
F8B5
06E4 A169 4E46
Name
: MAKEDEV
Relocations: (not relocateable)
Version : 2.5
Vendor: Red Hat Software
Release : 1
Build Date: Sat Apr 17 15:06:30 1999
Install date: Fri Oct 1 11:27:41 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: MAKEDEV-2.5-1.src.rpm
Size
: 35719
License: none
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Creates and maintains device files in /dev.
Description :
The /dev directory contains important files which correspond to
the hardware on your system, such as sound cards, serial or
printer ports, tape and CD-ROM drives and more. MAKEDEV is
a script which helps you create and maintain the files in
your /dev directory.
©
SA
NS
In
sti
tu
These are the files needed to install MAKEDEV.
Name
: man
Relocations: (not relocateable)
Version : 1.5g
Vendor: Red Hat Software
Release : 2
Build Date: Fri Apr 9 18:26:49 1999
Install date: Fri Oct 1 11:27:43 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: man-1.5g-2.src.rpm
Size
: 220963
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A set of documentation tools: man, apropos and whatis.
Description :
The man package includes three tools for finding information and/or
documentation about your Linux system: man, apropos and whatis. The man
system formats and displays on-line manual pages about commands or
functions on your system. Apropos searches the whatis database
(containing
short
of system
forF8B5
a string.
Whatis
Key
fingerprint
= descriptions
AF19 FA27 2F94
998Dcommands)
FDB5 DE3D
06E4
A169 4E46
searches its own database for a complete word.
The man package should be installed on your system because it is the
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
76 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
or
re
tai
ns
f
ull
rig
ht
s.
primary way for finding documentation.
Name
: mars-nwe
Relocations: (not relocateable)
Version : 0.99pl15
Vendor: Red Hat Software
Release : 3
Build Date: Tue Mar 23 12:58:19 1999
Install date: Fri Oct 1 11:27:45 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: mars-nwe-0.99pl15-3.src.rpm
Size
: 673204
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : NetWare file and print servers which run on Linux systems.
Description :
The mars_nwe (MARtin Stover's NetWare Emulator) package enables Linux to
provide both file and print services for NetWare clients (i.e., providing
the services
of a=Novell
NetWare
file998D
server).
Mars_nwe
allows
theA169 4E46
Key
fingerprint
AF19 FA27
2F94
FDB5
DE3D F8B5
06E4
sharing of files between Linux machines and Novell NetWare clients, using
NetWare's native IPX protocol suite.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
Install the mars_nwe package if you need a Novell NetWare file server
on your Red Hat Linux system.
Name
: mc
Relocations: (not relocateable)
Version : 4.5.30
Vendor: Red Hat Software
Release : 12
Build Date: Mon Apr 19 14:03:36 1999
Install date: Fri Oct 1 11:27:47 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Shells Source RPM: mc-4.5.30-12.src.rpm
Size
: 924737
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.gnome.org/mc/
Summary : A user-friendly file manager and visual shell.
Description :
Midnight Commander is a visual shell much like a file manager, only with way
more features. It is text mode, but also includes mouse support if you are
running GPM. Its coolest feature is the ability to ftp, view tar, zip
files, and poke into RPMs for specific files. :-)
Name
: metamail
Relocations: (not relocateable)
Version : 2.7
Vendor: Red Hat Software
Release : 20
Build Date: Sun Mar 21 20:05:45 1999
Install date: Fri Oct 1 11:27:48 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: metamail-2.7-20.src.rpm
Size
: 350005
License: Distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A program for handling multimedia mail using the mailcap file.
Description :
Metamail is a system for handling multimedia mail, using the mailcap
file. fingerprint
Metamail reads
theFA27
mailcap
file,
which
tellsDE3D
Metamail
what
Key
= AF19
2F94
998D
FDB5
F8B5
06E4 A169 4E46
helper program to call in order to handle a particular type of non-text
mail. Note that metamail can also add multimedia support to certain
non-mail programs.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
77 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Metamail should be installed if you need to add multimedia support to
mail programs and some other programs, using the mailcap file.
Name
: mikmod
Relocations: /usr
Version : 3.1.5
Vendor: Red Hat Software
Release : 5
Build Date: Mon Mar 22 14:51:32 1999
Install date: Fri Oct 1 11:27:49 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: mikmod-3.1.5-5.src.rpm
Size
: 802901
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: http://www.multimania.com/miodrag/mikmod/index.html
Summary : A MOD music file player.
Description
: = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Key
fingerprint
MikMod is one of the best and most well known MOD music file players for
UNIX-like systems. This particular distribution is intended to compile
fairly painlessly in a Linux environment. MikMod uses the OSS /dev/dsp
driver including all recent kernels for output, and will also write .wav
files. Supported file formats include MOD, STM, S3M, MTM, XM, ULT, and IT.
The player uses ncurses for console output and supports transparent
loading from gzip/pkzip/zoo archives and the loading/saving of playlists.
©
SA
NS
In
sti
tu
te
20
00
-2
00
Install the mikmod package if you need a MOD music file player.
Name
: mingetty
Relocations: (not relocateable)
Version : 0.9.4
Vendor: Red Hat Software
Release : 10
Build Date: Sun Mar 21 20:10:35 1999
Install date: Fri Oct 1 11:27:58 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: mingetty-0.9.4-10.src.rpm
Size
: 33206
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A compact getty program for virtual consoles only.
Description :
The mingetty program is a lightweight, minimalist getty program for
use only on virtual consoles. Mingetty is not suitable for serial
lines (you should use the mgetty program instead for that purpose).
Name
: mkbootdisk
Relocations: (not relocateable)
Version : 1.2
Vendor: Red Hat Software
Release : 2
Build Date: Mon Apr 12 09:22:57 1999
Install date: Fri Oct 1 11:27:58 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: mkbootdisk-1.2-2.src.rpm
Size
: 5707
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Creates an initial ramdisk image for preloading modules.
Description
: = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Key
fingerprint
The mkbootdisk program creates a standalone boot floppy disk for booting
the running system. The created boot disk will look for the root
filesystem on the device mentioned in /etc/fstab and includes an
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
78 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tai
ns
f
ull
rig
ht
s.
initial ramdisk image which will load any necessary SCSI modules for
the system.
Name
: mkdosfs-ygg
Relocations: (not relocateable)
Version : 0.3b
Vendor: Red Hat Software
Release : 11
Build Date: Sat Apr 17 07:19:31 1999
Install date: Fri Oct 1 11:27:58 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: mkdosfs-ygg-0.3b-11.src.rpm
Size
: 17734
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A program which creates MS-DOS FAT filesystems on Linux systems.
Description :
The mkdosfs program is used to create an MS-DOS FAT file system on a
Linuxfingerprint
system device,
usually
disk 998D
partition.
Key
= AF19
FA27 a2F94
FDB5 DE3D F8B5 06E4 A169 4E46
tu
te
20
00
-2
00
2,
Au
th
or
re
The mkdosfs package should be installed if your machine needs to support
MS-DOS style file systems.
Name
: mkinitrd
Relocations: (not relocateable)
Version : 2.0
Vendor: Red Hat Software
Release : 1
Build Date: Sat Mar 27 10:00:44 1999
Install date: Fri Oct 1 11:27:58 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: mkinitrd-2.0-1.src.rpm
Size
: 7723
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : Creates an initial ramdisk image for preloading modules.
Description :
Mkinitrd creates filesystem images for use as initial ramdisk (initrd)
images. These ramdisk images are often used to preload the block
device modules (SCSI or RAID) needed to access the root filesystem.
©
SA
NS
In
sti
In other words, generic kernels can be built without drivers for any
SCSI adapters which load the SCSI driver as a module. Since the kernel
needs to read those modules, but in this case it isn't able to address
the SCSI adapter, an initial ramdisk is used. The initial ramdisk is
loaded by the operating system loader (normally LILO) and is available
to the kernel as soon as the ramdisk is loaded. The ramdisk image
loads the proper SCSI adapter and allows the kernel to mount the root
filesystem. The mkinitrd program creates such a ramdisk using
information found in the /etc/conf.modules file.
Name
: mkxauth
Relocations: /usr/X11R6
Version : 1.7
Vendor: Red Hat Software
Release : 11
Build Date: Sun Mar 21 20:13:58 1999
Install date: Fri Oct 1 11:27:58 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source
Key
fingerprint
= AF19 FA27 2F94 998D
FDB5RPM:
DE3Dmkxauth-1.7-11.src.rpm
F8B5 06E4 A169 4E46
Size
: 16043
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A utility for managing .Xauthority files.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
79 of 136
Author retains full rights.
Description :
The mkxauth utility helps create and maintain X authentication
databases (.Xauthority files). Mkxauth is used to create an
.Xauthority file or to merge keys from another local or remote
.Xauthority file. .Xauthority files are used by the xauth
user-oriented access control program, which grants or denies
access to X servers based on the contents of the .Xauthority
file.
ull
rig
ht
s.
DHCP Server Security Audit
Gary Worthy
-2
00
2,
Au
th
or
re
tai
ns
f
The mkxauth package should be installed if you're going to use
user-oriented access control to provide security for your X Window
System (a good idea).
Name
: modemtool
Relocations:
(not relocateable)
Key
fingerprint
= AF19 FA27 2F94 998D
FDB5 DE3D
F8B5 06E4 A169 4E46
Version : 1.21
Vendor: Red Hat Software
Release : 6
Build Date: Sun Mar 21 20:22:12 1999
Install date: Fri Oct 1 11:27:59 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: modemtool-1.21-6.src.rpm
Size
: 16317
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A tool for selecting the serial port your modem is connected to.
Description :
The modemtool is a simple graphical configuration tool for selecting
the serial port to which your modem is connected.
©
SA
NS
In
sti
tu
te
20
00
Install modemtool if you use a modem.
Name
: modutils
Relocations: (not relocateable)
Version : 2.1.121
Vendor: Red Hat Software
Release : 12
Build Date: Mon Apr 19 16:46:44 1999
Install date: Fri Oct 1 11:28:00 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Kernel Source RPM: modutils-2.1.121-12.src.rpm
Size
: 855404
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The kernel daemon (kerneld) and kernel module utilities.
Description :
The modutils packages includes the kerneld program for automatic
loading of modules under 2.0 kernels and unloading of modules under
2.0 and 2.2 kernels, as well as other module management programs.
Loaded and unloaded modules are device drivers and
filesystems, as well as other things.
Name
: mount
Relocations: (not relocateable)
Version : 2.9o
Vendor: Red Hat Software
Release
: 1 = AF19 FA27 2F94
Build
Date:FDB5
Sat Apr
17 11:54:48
1999
Key
fingerprint
998D
DE3D
F8B5 06E4
A169 4E46
Install date: Fri Oct 1 11:28:01 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: mount-2.9o-1.src.rpm
Size
: 135510
License: GPL
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
80 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Programs for mounting and unmounting filesystems.
Description :
The mount package contains the mount, umount, swapon and swapoff
programs. Accessible files on your system are arranged in one big
tree or hierarchy. These files can be spread out over several
devices. The mount command attaches a filesystem on some device to
your system's file tree. The umount command detaches a filesystem
from the tree. Swapon and swapoff, respectively, specify and disable
devices and files for paging and swapping.
Name
: mouseconfig
Relocations: (not relocateable)
Version : 3.9
Vendor: Red Hat Software
Release
: 1 = AF19 FA27 2F94
Build998D
Date:FDB5
Mon DE3D
Apr 19F8B5
05:47:22
Key
fingerprint
06E41999
A169 4E46
Install date: Fri Oct 1 11:28:03 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: mouseconfig-3.9-1.src.rpm
Size
: 188887
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The Red Hat Linux mouse configuration tool.
Description :
Mouseconfig is a text-based mouse configuration tool. Mouseconfig
sets up the files and links needed for configuring and using a mouse
on a Red Hat Linux system. The mouseconfig tool can be used to set
the correct mouse type for programs like gpm, and can be used with
Xconfigurator to set up the mouse for the X Window System.
Name
: mpage
Relocations: (not relocateable)
Version : 2.4
Vendor: Red Hat Software
Release : 7
Build Date: Sun Mar 21 20:25:03 1999
Install date: Fri Oct 1 11:28:04 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Publishing
Source RPM: mpage-2.4-7.src.rpm
Size
: 92309
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A tool for printing multiple pages of text on each printed page.
Description :
The mpage utility takes plain text files or PostScript(TM) documents
as input, reduces the size of the text, and prints the files on a
PostScript printer with several pages on each sheet of paper. Mpage
is very useful for viewing large printouts without using up tons of
paper. Mpage supports many different layout options for the printed
pages.
Mpage should be installed if you need a useful utility for viewing
long text documents without wasting paper.
Name
: mpg123
relocateable)
Key
fingerprint
= AF19 FA27 2F94Relocations:
998D FDB5(not
DE3D
F8B5 06E4 A169 4E46
Version : 0.59q
Vendor: Red Hat Software
Release : 6
Build Date: Wed Apr 7 18:44:54 1999
Install date: Fri Oct 1 11:28:04 1999
Build Host: porky.devel.redhat.com
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
81 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tai
ns
f
ull
rig
ht
s.
Group
: Applications/Multimedia
Source RPM: mpg123-0.59q-6.src.rpm
Size
: 211328
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www-ti.informatik.uni-tuebingen.de/~hippm/mpg123.html
Summary : MPEG audio player.
Description :
Mpg123 is a fast, free and portable MPEG audio player for Unix.
It supports MPEG 1.0/2.0 layers 1, 2 and 3 ("mp3" files). For
full CD quality playback (44 kHz, 16 bit, stereo) a Pentium CPU
is required. Mono and/or reduced quality playback (22 kHz or
11 kHz) is possible on 486 CPUs.
te
20
00
-2
00
2,
Au
th
or
re
For information
the MP3
please
visit:DE3D F8B5 06E4 A169 4E46
Key
fingerprint =on
AF19
FA27License,
2F94 998D
FDB5
http://www.mpeg.org/
Name
: mt-st
Relocations: (not relocateable)
Version : 0.5b
Vendor: Red Hat Software
Release : 3
Build Date: Sun Mar 21 20:26:15 1999
Install date: Fri Oct 1 11:28:04 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: mt-st-0.5b-3.src.rpm
Size
: 69045
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : Programs to control tape device operations.
Description :
The mt-st package contains the mt and st tape drive management
programs. Mt (for magnetic tape drives) and st (for SCSI tape
devices) can control rewinding, ejecting, skipping files and
blocks and more.
©
SA
NS
In
sti
tu
This package can help you manage tape drives.
Name
: mtools
Relocations: (not relocateable)
Version : 3.9.1
Vendor: Red Hat Software
Release : 5
Build Date: Sun Mar 21 20:27:28 1999
Install date: Fri Oct 1 11:28:05 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: mtools-3.9.1-5.src.rpm
Size
: 497822
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: http://www.tux.org/pub/tux/knaff/mtools/index.html
Summary : Programs for accessing MS-DOS disks without mounting the disks.
Description :
Mtools is a collection of utilities for accessing MS-DOS files.
Mtools allow you to read, write and move around MS-DOS filesystem
files (normally on MS-DOS floppy disks). Mtools supports Windows95
stylefingerprint
long file names,
OS/2
Xdf
disks,
andFDB5
2m disks.
Key
= AF19
FA27
2F94
998D
DE3D F8B5 06E4 A169 4E46
Mtools should be installed if you need to use MS-DOS disks.
Name
: multimedia
Relocations: (not relocateable)
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
82 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
re
tai
ns
f
ull
rig
ht
s.
Version : 2.1
Vendor: Red Hat Software
Release : 15
Build Date: Sun Mar 21 20:28:49 1999
Install date: Fri Oct 1 11:28:08 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: multimedia-2.1-15.src.rpm
Size
: 353223
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : Several X utilities mainly for use with multimedia files.
Description :
The multimedia package contains several X Window System utilities
for handling multimedia files: xplaycd, xmixer and xgetfile.
Xplaycd is a CD player for playing audio CDs on your machine's
CD-ROM drive. Xmixer controls the volume settings on your machine's
sound
card. Xgetfile
is aFA27
versatile
browser,
for use
Key
fingerprint
= AF19
2F94file
998D
FDB5intended
DE3D F8B5
06E4 A169 4E46
in shell scripts.
tu
te
20
00
-2
00
2,
Au
th
or
Install the multimedia package if you need an audio CD player, a sound
card volume controller, or a file browser for use in shell scripts.
Name
: mutt
Relocations: (not relocateable)
Version : 0.95.4us
Vendor: Red Hat Software
Release : 4
Build Date: Mon Mar 29 09:59:36 1999
Install date: Fri Oct 1 11:28:11 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: mutt-0.95.4us-4.src.rpm
Size
: 1402755
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.mutt.org/
Summary : A text mode mail user agent.
Description :
Mutt is a text mode mail user agent. Mutt supports color, threading,
arbitrary key remapping, and a lot of customization.
©
SA
NS
In
sti
You should install mutt if you've used mutt in the past and you prefer
it, or if you're new to mail programs and you haven't decided which one
you're going to use.
Name
: ncftp
Relocations: /usr
Version : 3.0beta18
Vendor: Red Hat Software
Release : 3
Build Date: Sun Mar 21 20:35:18 1999
Install date: Fri Oct 1 11:28:13 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: ncftp-3.0beta18-3.src.rpm
Size
: 742701
License: Distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : An improved FTP client.
Description :
Ncftpfingerprint
is an improved
FTP
client.
include
support
Key
= AF19
FA27
2F94Ncftp's
998D improvements
FDB5 DE3D F8B5
06E4
A169for
4E46
command line editing, command histories, recursive gets, automatic anonymous
logins and more.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
83 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Install ncftp if you use FTP to transfer files and you'd like to try some of
ncftp's additional features.
Name
: ncompress
Relocations: (not relocateable)
Version : 4.2.4
Vendor: Red Hat Software
Release : 14
Build Date: Sun Mar 21 20:36:15 1999
Install date: Fri Oct 1 11:28:14 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Archiving
Source RPM: ncompress-4.2.4-14.src.rpm
Size
: 31956
License: unknown
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : Fast compression and decompression utilities.
Description :
The ncompress package contains the compress and uncompress
file compression
decompression
utilities,
which
are F8B5
compatible
Key
fingerprint = and
AF19
FA27 2F94 998D
FDB5
DE3D
06E4 A169 4E46
with the original UNIX compress utility (.Z file extensions). These
utilities can't handle gzipped (.gz file extensions) files, but
gzip can handle compressed files.
Name
: ncpfs
Relocations: (not relocateable)
Version : 2.2.0.12
Vendor: Red Hat Software
Release : 5
Build Date: Tue Apr 6 14:07:55 1999
Install date: Fri Oct 1 11:28:20 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: ncpfs-2.2.0.12-5.src.rpm
Size
: 566699
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Utilities for the ncpfs filesystem, a NetWare client for Linux.
Description :
Ncpfs is a filesystem which understands the Novell NetWare(TM)
NCP protocol. Functionally, NCP is used for NetWare the way NFS
is used in the TCP/IP world. For a Linux system to mount a NetWare
filesystem, it needs a special mount program. The ncpfs package
contains such a mount program plus other tools for configuring and
using the ncpfs filesystem.
©
SA
NS
Install the ncpfs package if you need to use the ncpfs filesystem
to use Novell NetWare files or services.
Name
: net-tools
Relocations: (not relocateable)
Version : 1.51
Vendor: Red Hat Software
Release : 3
Build Date: Wed Mar 24 19:29:46 1999
Install date: Fri Oct 1 11:28:22 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: net-tools-1.51-3.src.rpm
Size
: 404929
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : The basic tools for setting up networking.
Description
: = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Key
fingerprint
The net-tools package contains the basic tools needed for setting
up networking: arp, rarp, ifconfig, netstat, ethers and route.
Name
: netcfg
Relocations: (not relocateable)
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
84 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Version : 2.20
Vendor: Red Hat Software
Release : 2
Build Date: Thu Apr 8 09:56:55 1999
Install date: Fri Oct 1 11:28:23 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: netcfg-2.20-2.src.rpm
Size
: 169772
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A network configuration tool.
Description :
A Red Hat Linux tool which provides a graphical user interface for
setting up and configuring networking for your machine.
Name
: netkit-base
Relocations: (not relocateable)
Version : 0.10
Vendor: Red Hat Software
Release
: 29 = AF19 FA27 2F94
Build
Date:
WedDE3D
Apr 7F8B5
16:21:24
Key
fingerprint
998D
FDB5
06E41999
A169 4E46
Install date: Fri Oct 1 11:28:24 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: netkit-base-0.10-29.src.rpm
Size
: 62129
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The ping and inetd networking programs.
Description :
The netkit-base package contains the basic networking tools ping and
inetd. The ping command sends a series of ICMP protocol ECHO_REQUEST
packets to a specified network host and can tell you if that machine
is alive and receiving network traffic. Inetd listens on certain
Internet sockets for connection requests, decides what program should
receive each request, and starts up that program.
©
SA
NS
In
sti
tu
te
20
The netkit-base package should be installed on any machine that is on
a network.
Name
: netscape-common
Relocations: /usr
Version : 4.51
Vendor: Red Hat Software
Release : 3
Build Date: Thu Apr 15 13:55:52 1999
Install date: Fri Oct 1 11:28:34 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: netscape-4.51-3.src.rpm
Size
: 7299769
License: Commercial
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Files shared by the Netscape Navigator and Communicator.
Description :
This package contains the files that are shared between the
Netscape Navigator Web browser and the Netscape Communicator
suite of tools (the Navigator Web browser, an e-mail client,
a news reader and Web page editor).
Install
the netscape-common
if you're
the 06E4 A169 4E46
Key
fingerprint
= AF19 FA27package
2F94 998D
FDB5installing
DE3D F8B5
netscape-navigator and/or the netscape-communicator
program.
Name
: netscape-communicator
Relocations: /usr
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
85 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Version : 4.51
Vendor: Red Hat Software
Release : 3
Build Date: Thu Apr 15 13:55:52 1999
Install date: Fri Oct 1 11:28:47 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: netscape-4.51-3.src.rpm
Size
: 13846610
License: Commercial
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Netscape tools, including a Web browser, news reader and e-mail client.
Description :
Netscape Communicator is the industry-leading Web browser. It supports
the latest HTML standards, Java, JavaScript and some style sheets.
It also includes a full-featured Usenet news reader as well as a
complete e-mail client.
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Information on the Netscape Communicator license may be fund in
the file /usr/doc/netscape-common-4.51/LICENSE.
Name
: newt
Relocations: (not relocateable)
Version : 0.40
Vendor: Red Hat Software
Release : 9
Build Date: Fri Apr 9 22:23:59 1999
Install date: Fri Oct 1 11:28:49 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: newt-0.40-9.src.rpm
Size
: 128063
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A development library for text mode user interfaces.
Description :
Newt is a programming library for color text mode, widget based user
interfaces. Newt can be used to add stacked windows, entry widgets,
checkboxes, radio buttons, labels, plain text fields, scrollbars,
etc., to text mode user interfaces. This package also contains the
shared library needed by programs built with newt, as well as a
/usr/bin/dialog replacement called whiptail. Newt is based on the
slang library.
Name
: nmh
Relocations: (not relocateable)
Version : 0.27
Vendor: Red Hat Software
Release : 8
Build Date: Sun Apr 18 15:10:30 1999
Install date: Fri Oct 1 11:29:08 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: nmh-0.27-8.src.rpm
Size
: 4758227
License: freeware
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A capable mail handling system with a command line interface.
Description :
Nmh is an email system based on the MH email system and is intended
to be a (mostly) compatible drop-in replacement for MH. Nmh isn't
a single
comprehensive
it consists
of F8B5
a number
Key
fingerprint
= AF19 program.
FA27 2F94Instead,
998D FDB5
DE3D
06E4 A169 4E46
of fairly simple single-purpose programs for sending, receiving,
saving, retrieving and otherwise manipulating email messages. You
can freely intersperse nmh commands with other shell commands or
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
86 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
write custom scripts which utilize nmh commands. If you want to use
nmh as a true email user agent, you'll want to also install exmh to
provide a user interface for it--nmh only has a command line interface.
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
If you'd like to use nmh commands in shell scripts, or if you'd like to
use nmh and exmh together as your email user agent, you should install
nmh.
Name
: ntsysv
Relocations: (not relocateable)
Version : 1.0.6
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 05:44:02 1999
Install date: Fri Oct 1 11:29:13 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: chkconfig-1.0.6-1.src.rpm
Size fingerprint
: 23940= AF19 FA27 2F94License:
GPL DE3D F8B5 06E4 A169 4E46
Key
998D FDB5
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A system tool for maintaining the /etc/rc.d hierarchy.
Description :
ntsysv updates and queries runlevel information for system
services. ntsysv relieves system administrators of having to
directly manipulate the numerous symbolic links in /etc/rc.d.
Name
: ORBit
Relocations: /usr
Version : 0.4.3
Vendor: Red Hat Software
Release : 2
Build Date: Fri Apr 9 23:38:17 1999
Install date: Fri Oct 1 11:29:14 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: ORBit-0.4.3-2.src.rpm
Size
: 892530
License: LGPL/GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : High-performance CORBA Object Request Broker.
Description :
ORBit is a high-performance CORBA ORB (object request
broker). It allows programs to send requests and
receive replies from other programs, regardless of
the locations of the two programs.
©
SA
NS
You will need to install this package and the
related header files, libraries and utilities
if you want to write programs that use CORBA
technology.
Name
: passwd
Relocations: (not relocateable)
Version : 0.58
Vendor: Red Hat Software
Release : 1
Build Date: Wed Apr 14 16:21:39 1999
Install date: Fri Oct 1 11:29:15 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: passwd-0.58-1.src.rpm
Size fingerprint
: 15845= AF19 FA27 2F94License:
BSD DE3D F8B5 06E4 A169 4E46
Key
998D FDB5
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The passwd utility for setting/changing passwords using PAM.
Description :
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
87 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
The passwd package contains a system utility (passwd) which
sets and/or changes passwords, using PAM (Pluggable Authentication
Modules).
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
To use passwd, you should have PAM installed on your system.
Name
: perl
Relocations: (not relocateable)
Version : 5.00503
Vendor: Red Hat Software
Release : 2
Build Date: Tue Apr 6 22:37:59 1999
Install date: Fri Oct 1 11:29:37 1999
Build Host: porky.devel.redhat.com
Group
: Development/Languages
Source RPM: perl-5.00503-2.src.rpm
Size
: 16156488
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary
: The
Perl programming
language.
Key
fingerprint
= AF19
FA27 2F94 998D
FDB5 DE3D F8B5 06E4 A169 4E46
Description :
Perl is a high-level programming language with roots in C, sed, awk
and shell scripting. Perl is good at handling processes and files,
and is especially good at handling text. Perl's hallmarks are
practicality and efficiency. While it is used to do a lot of
different things, Perl's most common applications (and what it excels
at) are probably system administration utilities and web programming.
A large proportion of the CGI scripts on the web are written in Perl.
You need the perl package installed on your system so that your
system can handle Perl scripts.
Name
: pidentd
Relocations: (not relocateable)
Version : 2.8.5
Vendor: Red Hat Software
Release : 3
Build Date: Sun Mar 21 21:13:52 1999
Install date: Fri Oct 1 11:29:41 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: pidentd-2.8.5-3.src.rpm
Size
: 132279
License: Public domain
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : An implementation of the RFC1413 identification server.
Description :
The pidentd package contains identd, which implements the RFC1413
identification server. Identd looks up specific TCP/IP connections
and returns either the user name or other information about the
process that owns the connection.
Name
: pilot-link
Relocations: (not relocateable)
Version : 0.9.0
Vendor: Red Hat Software
Release : 8
Build Date: Tue Apr 6 10:53:12 1999
Install date: Fri Oct 1 11:29:42 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Communications Source RPM: pilot-link-0.9.0-8.src.rpm
Size
: 789393
License: GPL
Packager
: Red
Software
<http://developer.redhat.com/bugzilla>
Key
fingerprint
= Hat
AF19
FA27 2F94
998D FDB5 DE3D F8B5 06E4 A169 4E46
Summary : Pilot Link - USR Pilot to Unix transfer utilities.
Description :
This suite of tools allows you to upload and download programs
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
88 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
and data files between a *nix machine and the USR Pilot. It has
a few extra utils that will allow for things like syncing the
Pilot's calendar app with Ical. Note that you might still need
to consult the sources for pilot-link if you would like the
Python, Tcl, or Perl bindings.
Name
: pilot-link-devel
Relocations: (not relocateable)
Version : 0.9.0
Vendor: Red Hat Software
Release : 8
Build Date: Tue Apr 6 10:53:12 1999
Install date: Fri Oct 1 11:29:52 1999
Build Host: porky.devel.redhat.com
Group
: Development/Libraries
Source RPM: pilot-link-0.9.0-8.src.rpm
Size
: 1674469
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary
: Pilot
development
header
Key
fingerprint
= AF19
FA27 2F94
998Dfiles.
FDB5 DE3D F8B5 06E4 A169 4E46
Description :
This package contains the development headers that are used
to build the pilot-link package. It also includes the static
libraries necessary to build static pilot apps.
Name
: pine
Relocations: (not relocateable)
Version : 4.10
Vendor: Red Hat Software
Release : 2
Build Date: Sun Mar 21 21:22:16 1999
Install date: Fri Oct 1 11:29:56 1999 Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: pine-4.10-2.src.rpm
Size
: 3510189
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: http://www.washington.edu/pine
Summary : A commonly used, MIME compliant mail and news reader.
Description :
Pine is a very popular, easy to use, full-featured email user agent
which includes a simple text editor called pico. Pine supports MIME
extensions and can also be used to read news. Pine also supports
IMAP, mail and MH style folders.
©
SA
NS
Pine should be installed because Pine is a very commonly used email
user agent and it is currently in development.
Name
: playmidi
Relocations: (not relocateable)
Version : 2.4
Vendor: Red Hat Software
Release : 7
Build Date: Sun Mar 21 21:28:53 1999
Install date: Fri Oct 1 11:29:59 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: playmidi-2.4-7.src.rpm
Size
: 137094
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A MIDI sound file player.
Description
: = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Key
fingerprint
Playmidi plays MIDI (Musicial Instrument Digital Interface) sound
files through a sound card synthesizer. This package includes basic
drum samples for use with simple FM synthesizers.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
89 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
th
or
re
tai
ns
f
ull
rig
ht
s.
Install playmidi if you want to play MIDI files using your computer's
sound card.
Name
: playmidi-X11
Relocations: (not relocateable)
Version : 2.4
Vendor: Red Hat Software
Release : 7
Build Date: Sun Mar 21 21:28:53 1999
Install date: Fri Oct 1 11:29:59 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: playmidi-2.4-7.src.rpm
Size
: 40165
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : An X Window System based MIDI sound file player.
Description :
Playmidi-X11
X Window
System
interface
for playing
Key
fingerprintprovides
= AF19 an
FA27
2F94 998D
FDB5
DE3D F8B5
06E4 MIDI
A169 4E46
(Musical Instrument Digital Interface) sound files through a sound
card synthesizer. This package includes basic drum samples for use
with simple FM synthesizers.
In
sti
tu
te
20
00
-2
00
2,
Au
Install playmidi-X11 if you want to use an X interface to play MIDI
sound files using your computer's sound card.
Name
: portmap
Relocations: (not relocateable)
Version : 4.0
Vendor: Red Hat Software
Release : 15
Build Date: Tue Mar 23 15:38:23 1999
Install date: Fri Oct 1 11:29:59 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: portmap-4.0-15.src.rpm
Size
: 50751
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A program which manages RPC connections.
Description :
The portmapper program is a security tool which prevents theft of
NIS (YP), NFS and other sensitive information via the portmapper.
A portmapper manages RPC connections, which are used by protocols
like NFS and NIS.
©
SA
NS
The portmap package should be installed on any machine which acts as
a server for protocols using RPC.
Name
: printtool
Relocations: (not relocateable)
Version : 3.40
Vendor: Red Hat Software
Release : 3
Build Date: Sun Mar 21 21:44:06 1999
Install date: Fri Oct 1 11:30:02 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Publishing
Source RPM: printtool-3.40-3.src.rpm
Size
: 116553
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary
: A=printer
tool FDB5
with a DE3D
graphical
user
interface.
Key
fingerprint
AF19 configuration
FA27 2F94 998D
F8B5
06E4
A169 4E46
Description :
The printtool is a printer configuration tool with a graphical user
interface. Printtool can manage both local and remote printers,
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
90 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
including Windows (SMB) and NetWare (NCP) printers.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Printtool should be installed so that you can manage local and remote
printers.
Name
: procmail
Relocations: (not relocateable)
Version : 3.13.1
Vendor: Red Hat Software
Release : 2
Build Date: Tue Apr 6 17:31:58 1999
Install date: Fri Oct 1 11:30:02 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: procmail-3.13.1-2.src.rpm
Size
: 205852
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The procmail mail processing program.
Description
: = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Key
fingerprint
The procmail program is used by Red Hat Linux for all local mail
delivery. In addition to just delivering mail, procmail can be used
for automatic filtering, presorting and other mail handling jobs.
Procmail is also the basis for the SmartList mailing list processor.
Name
: procps
Relocations: (not relocateable)
Version : 2.0.2
Vendor: Red Hat Software
Release : 2
Build Date: Sat Apr 3 12:09:51 1999
Install date: Fri Oct 1 11:30:03 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: procps-2.0.2-2.src.rpm
Size
: 306130
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Utilities for monitoring your system and processes on your system.
Description :
The procps package contains a set of system utilities which provide
system information. Procps includes ps, free, skill, snice,
tload, top, uptime, vmstat, w, and watch. The ps command displays
a snapshot of running processes. The top command provides a
repetitive update of the statuses of running processes. The free
command displays the amounts of free and used memory on your system.
The skill command sends a terminate command (or another
specified signal) to a specified set of processes. The snice
command is used to change the scheduling priority of specified
processes. The tload command prints a graph of the current system
load average to a specified tty. The uptime command displays the
current time, how long the system has been running, how many users
are logged on and system load averages for the past one, five and
fifteen minutes. The w command displays a list of the users who
are currently logged on and what they're running. The watch program
watches a running program. The vmstat command displays virtual
memory
statistics
about FA27
processes,
paging,
block
I/O,06E4
trapsA169 4E46
Key
fingerprint
= AF19
2F94memory,
998D FDB5
DE3D
F8B5
and CPU activity.
Name
: psmisc
Relocations: (not relocateable)
Version : 18
Vendor: Red Hat Software
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
91 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Release : 2
Build Date: Sun Mar 21 21:47:18 1999
Install date: Fri Oct 1 11:30:04 1999 Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: psmisc-18-2.src.rpm
Size
: 47708
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : Utilities for managing processes on your system.
Description :
The psmisc package contains utilities for managing processes on
your system: pstree, killall and fuser. The pstree command displays
a tree structure of all of the running processes on your system. The
killall command sends a specified signal (SIGTERM if nothing is
specified) to processes identified by name. The fuser command
identifies
the PIDs
of processes
that998D
are using
specified
Key
fingerprint
= AF19
FA27 2F94
FDB5
DE3D files
F8B5or06E4 A169 4E46
filesystems.
Name
: pump
Relocations: (not relocateable)
Version : 0.6.4
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 14:37:22 1999
Install date: Fri Oct 1 11:30:04 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: pump-0.6.4-1.src.rpm
Size
: 31258
License: MIT
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Bootp and dhcp client for automatic IP configuration
Description :
DHCP (Dynamic Host Configuration Protocol) and BOOTP (Boot Protocol)
are protocols which allow individual devices on an IP network to get
their own network configuration information (IP address, subnetmask,
broadcast address, etc.) from network servers. The overall purpose of
DHCP and BOOTP is to make it easier to administer a large network.
©
SA
NS
In
sti
Pump is a combined BOOTP and DHCP client daemon, which allows your machine
to retrieve configuration information from a server. You should install
this package if you are on a network which uses BOOTP or DHCP.
Name
: python
Relocations: (not relocateable)
Version : 1.5.1
Vendor: Red Hat Software
Release : 10
Build Date: Sun Mar 21 21:50:54 1999
Install date: Fri Oct 1 11:30:12 1999
Build Host: porky.devel.redhat.com
Group
: Development/Languages
Source RPM: python-1.5.1-10.src.rpm
Size
: 5968905
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : An interpreted, interactive object-oriented programming language.
Description :
Python is an interpreted, interactive, object-oriented programming
language
often compared
to Tcl,
Perl,
Scheme
orDE3D
Java. Python
includes
Key
fingerprint
= AF19 FA27
2F94
998D
FDB5
F8B5 06E4
A169 4E46
modules, classes, exceptions, very high level dynamic data types and
dynamic typing. Python supports interfaces to many system calls and
libraries, as well as to various windowing systems (X11, Motif, Tk,
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
92 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
Mac and MFC).
ull
rig
ht
s.
Programmers can write new built-in modules for Python in C or C++.
Python can be used as an extension language for applications that
need a programmable interface. This package contains most of the
standard Python modules, as well as modules for interfacing to the
Tix widget set for Tk and RPM.
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
Note that documentation for Python is provided in the python-docs
package.
Name
: pythonlib
Relocations: (not relocateable)
Version : 1.22
Vendor: Red Hat Software
Release
: 5 = AF19 FA27 2F94
Build998D
Date:FDB5
Sun Mar
21 F8B5
21:54:34
1999
Key
fingerprint
DE3D
06E4
A169 4E46
Install date: Fri Oct 1 11:30:15 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: pythonlib-1.22-5.src.rpm
Size
: 242504
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A library of Python code used by various Red Hat Linux programs.
Description :
The pythonlib package contains Python code used by a variety of
Red Hat Linux programs. Pythonlib includes code needed for
multifield listboxes and entry widgets with non-standard keybindings,
among other things.
Name
: qt
Relocations: (not relocateable)
Version : 1.44
Vendor: Red Hat Software
Release : 6
Build Date: Sat Apr 17 23:07:30 1999
Install date: Fri Oct 1 11:30:17 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: qt-1.44-6.src.rpm
Size
: 2153579
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.troll.no
Summary : Shared library for the Qt GUI toolkit
Description :
Qt is a GUI software toolkit. Qt simplifies the task of writing and
maintaining GUI (graphical user interface) applications for X Windows.
©
Qt is written in C++ and is fully object-oriented. It has everything
you need to create professional GUI applications. And it enables you
to create them quickly.
Qt is a multi-platform toolkit. When developing software with Qt, you
can run it on the X Window System (Unix/X11) or Microsoft Windows NT
and Windows
Simply
your
source
codeF8B5
on the
platform
Key
fingerprint95/98.
= AF19
FA27recompile
2F94 998D
FDB5
DE3D
06E4
A169 4E46
you want.
This package contains the shared library needed to run Qt applications,
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
93 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
as well as the README files for Qt.
Name
: quota
Relocations: (not relocateable)
Version : 1.66
Vendor: Red Hat Software
Release : 6
Build Date: Tue Apr 13 10:05:47 1999
Install date: Fri Oct 1 11:30:19 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: quota-1.66-6.src.rpm
Size
: 79332
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : System administration tools for monitoring users' disk usage.
Description :
The quota package contains system administration tools for
monitoring and limiting users' and or groups' disk usage, per
filesystem.
Key
fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Name
: rdate
Relocations: (not relocateable)
Version : 0.960923
Vendor: Red Hat Software
Release : 8
Build Date: Sun Mar 21 21:57:18 1999
Install date: Fri Oct 1 11:30:19 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: rdate-0.960923-8.src.rpm
Size
: 5733
License: none
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : Retrieving the date and time from another machine on your network.
Description :
The rdate utility retrieves the date and time from another machine
on your network, using the protocol described in RFC 868. If you
run rdate as root, it will set your machine's local time to the time
of the machine that you queried. Note that rdate isn't scrupulously
accurate. If you are worried about milliseconds, get the xntpd
program instead.
Name
: rdist
Relocations: (not relocateable)
Version : 6.1.5
Vendor: Red Hat Software
Release : 7
Build Date: Tue Apr 13 14:20:37 1999
Install date: Fri Oct 1 11:30:19 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: rdist-6.1.5-7.src.rpm
Size
: 144675
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.MagniComp.comA/rdist
Summary : Maintains identical copies of files on multiple machines.
Description :
The rdist program maintains identical copies of files on multiple
hosts. If possible, rdist will preserve the owner, group, mode and
mtime of files and it can update programs that are executing.
Name
: readline
Relocations: /usr
Version
: 2.2.1
Red DE3D
Hat Software
Key
fingerprint
= AF19 FA27 2F94 Vendor:
998D FDB5
F8B5 06E4 A169 4E46
Release : 5
Build Date: Fri Apr 9 19:58:06 1999
Install date: Fri Oct 1 11:30:20 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: readline-2.2.1-5.src.rpm
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
94 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
Size
: 257956
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A library for reading and returning lines from a terminal.
Description :
The readline library reads a line from the terminal and returns it,
allowing the user to edit the line with standard emacs editing keys.
The readline library allows programmers to provide an easy to use and
more intuitive interface for users.
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
If you want to develop programs that will use the readline library,
you'll also need to install the readline-devel package.
Name
: redhat-logos
Relocations: (not relocateable)
Version
: 1.0.5
Red DE3D
Hat Software
Key
fingerprint
= AF19 FA27 2F94 Vendor:
998D FDB5
F8B5 06E4 A169 4E46
Release : 1
Build Date: Sat Apr 10 17:13:57 1999
Install date: Fri Oct 1 11:30:22 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: redhat-logos-1.0.5-1.src.rpm
Size
: 525127
License: Copyright © 1999 Red Hat Software, Inc.
All rights reserved.
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Red Hat Software-related icons and pictures
Description :
redhat-logos (the "Package") contains files of the Red Hat "Shadow
Man" logo and the RPM logo (the "Logos"). Red Hat, the Red Hat "Shadow
Man" logo, RPM, and the RPM logo are trademarks or registered
trademarks of Red Hat Software, Inc. in the United States and other
countries.
NS
In
sti
tu
te
Red Hat Software, Inc. grants you the right to use the Package during
the normal operation of other software programs that call upon the
Package. Red Hat Software, Inc. grants to you the right and license
to copy and redistribute the Package, but only in conjunction with
copying or redistributing additional software packages that call upon
the Package during the normal course of operation. Such rights are
granted to you without fee, provided that:
©
SA
1. The above copyright notice and this license are included with each
copy you make, and they remain intact and are not altered, deleted, or
modified in any way;
2. You do not modify the Package, or the appearance of any or all of
the Logos in any manner; and
3. You do not use any or all of the Logos as, or as part of, a
trademark, trade name, or trade identifier; or in any other fashion
except
as set forth
in thisFA27
license.
Key
fingerprint
= AF19
2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
NO WARRANTY. THIS PACKAGE IS PROVIDED "AS IS" AND ANY EXPRESS
OR
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
95 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE ARE
DISCLAIMED. IN NO EVENT SHALL RED HAT SOFTWARE, INC. BE LIABLE
FOR
ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
CONSEQUENTIAL
DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
SUBSTITUTE
GOODS OR SERVICES; LOSS OF USE, DATA OR PROFITS; OR BUSINESS
INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
WHETHER
IN CONTRACT,
STRICT
LIABILITY,
TORT
(INCLUDING
OR
Key
fingerprint = AF19
FA27
2F94 998DOR
FDB5
DE3D
F8B5 06E4 NEGLIGENCE
A169 4E46
OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS PACKAGE,
EVEN IF
ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
Name
: rhs-hwdiag
Relocations: (not relocateable)
Version : 0.36
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 12 17:27:55 1999
Install date: Fri Oct 1 11:30:23 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: rhs-hwdiag-0.36-1.src.rpm
Size
: 76886
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.redhat.com/~msf/#hwdiag
Summary : Red Hat utilities for probing and diagnosing system hardware.
Description :
The rhs-hwdiag package contains the Red Hat Hardware Discovery
Tools. These tools probe the serial and parallel ports on your
system, and are useful for finding and reporting hardware errors
to Red Hat support if you're having problems. These tools could
cause adverse side-effects in some situations, so you should use
them carefully.
Name
: rhs-printfilters
Relocations: (not relocateable)
Version : 1.51
Vendor: Red Hat Software
Release : 2
Build Date: Mon Apr 5 18:23:46 1999
Install date: Fri Oct 1 11:30:23 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Publishing
Source RPM: rhs-printfilters-1.51-2.src.rpm
Size
: 94993
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Red Hat print filters, for use with the printtool.
Description :
The rhs-printfilters package contains a set of print filters which
are primarily
meant
to be
used2F94
with 998D
the Red
Hat printtool.
These
Key
fingerprint
= AF19
FA27
FDB5
DE3D F8B5
06E4 A169 4E46
print filters provide an easy way for users to handle printing
numerous file formats.
Name
: rhsound
Relocations: (not relocateable)
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
96 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Version : 1.8
Vendor: Red Hat Software
Release : 1
Build Date: Tue Mar 30 10:52:27 1999
Install date: Fri Oct 1 11:30:23 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: rhsound-1.8-1.src.rpm
Size
: 11962
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A script that saves and restores sound mixer settings.
Description :
The rhsound package provides a script which can save and restore
the mixer settings and volume level of the standard kernel sound
drivers. These mixer settings are preserved through shutdowns and
restarts.
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Install the rhsound package if you need to preserve the kernel
sound driver module's mixer settings through shutdowns and reboots.
Name
: rootfiles
Relocations: (not relocateable)
Version : 5.2
Vendor: Red Hat Software
Release : 5
Build Date: Sun Mar 21 22:00:32 1999
Install date: Fri Oct 1 11:30:24 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: rootfiles-5.2-5.src.rpm
Size
: 1912
License: public domain
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : The basic required files for the root user's directory.
Description :
The rootfiles package contains basic required files that are placed
in the root user's account. These files are basically the same
as the files found in the etcskel package, which are placed in regular
users' home directories.
Name
: routed
Relocations: (not relocateable)
Version : 0.10
Vendor: Red Hat Software
Release : 14
Build Date: Sun Mar 21 22:00:54 1999
Install date: Fri Oct 1 11:30:24 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: routed-0.10-14.src.rpm
Size
: 40632
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : The routing daemon which maintains routing tables.
Description :
The routed routing daemon handles incoming RIP traffic and broadcasts
outgoing RIP traffic about network traffic routes, in order to maintain
current routing tables. These routing tables are essential for a
networked computer, so that it knows where packets need to be sent.
The routed
package
should
be 2F94
installed
onFDB5
any networked
machine.
Key
fingerprint
= AF19
FA27
998D
DE3D F8B5
06E4 A169 4E46
Name
: rpm
Relocations: (not relocateable)
Version : 3.0
Vendor: Red Hat Software
Release : 6.0
Build Date: Mon Apr 19 03:49:21 1999
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
97 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Install date: Fri Oct 1 11:30:27 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: rpm-3.0-6.0.src.rpm
Size
: 1699677
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The Red Hat package management system.
Description :
The Red Hat Package Manager (RPM) is a powerful command line driven
package management system capable of installing, uninstalling,
verifying, querying, and updating software packages. Each software
package consists of an archive of files along with information about
the package like its version, a description, etc.
Name
: rsh
Relocations: (not relocateable)
Version
: 0.10= AF19 FA27 2F94 Vendor:
Red DE3D
Hat Software
Key
fingerprint
998D FDB5
F8B5 06E4 A169 4E46
Release : 25
Build Date: Thu Apr 15 17:48:53 1999
Install date: Fri Oct 1 11:30:28 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: rsh-0.10-25.src.rpm
Size
: 119039
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Clients and servers for remote access commands (rsh, rlogin, rcp).
Description :
The rsh package contains a set of programs which allow users to run
commmands on remote machines, login to other machines and copy files
between machines (rsh, rlogin and rcp). All three of these commands
use rhosts style authentication. This package contains the clients
and servers needed for all of these services. It also contains a
server for rexec, an alternate method of executing remote commands.
All of these servers are run by inetd and configured using
/etc/inetd.conf and PAM. The rexecd server is disabled by default,
but the other servers are enabled.
©
SA
NS
In
sti
The rsh package should be installed to enable remote access to other
machines.
Name
: rusers
Relocations: (not relocateable)
Version : 0.10
Vendor: Red Hat Software
Release : 23
Build Date: Tue Apr 6 17:21:53 1999
Install date: Fri Oct 1 11:30:28 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: rusers-0.10-23.src.rpm
Size
: 56103
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Displays the users logged into machines on the local network.
Description :
The rusers program allows users to find out who is logged into
various
machines
on theFA27
local 2F94
network.
rusers
command
produces
Key
fingerprint
= AF19
998DThe
FDB5
DE3D
F8B5 06E4
A169 4E46
output similar to who, but for the specified list of hosts or for
all machines on the local network.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
98 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
re
tai
ns
f
ull
rig
ht
s.
Install rusers if you need to keep track of who is logged into your
local network.
Name
: rwho
Relocations: (not relocateable)
Version : 0.10
Vendor: Red Hat Software
Release : 23
Build Date: Fri Apr 9 13:15:42 1999
Install date: Fri Oct 1 11:30:29 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: rwho-0.10-23.src.rpm
Size
: 33916
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Displays who is logged in to local network machines.
Description :
The rwho command displays output similar to the output of the who
command
(it shows
whoFA27
is logged
for all
machines
the local
Key
fingerprint
= AF19
2F94in)
998D
FDB5
DE3Don
F8B5
06E4 A169 4E46
network running the rwho daemon.
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
Install the rwho command if you need to keep track of the users who
are logged in to your local network.
Name
: rxvt
Relocations: (not relocateable)
Version : 2.6.PRE2
Vendor: Red Hat Software
Release : 5
Build Date: Fri Mar 26 14:53:23 1999
Install date: Fri Oct 1 11:30:31 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/X
Source RPM: rxvt-2.6.PRE2-5.src.rpm
Size
: 501895
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A color VT102 terminal emulator for the X Window System.
Description :
Rxvt is a color VT102 terminal emulator for the X Window System.
Rxvt is intended to be an xterm replacement for users who don't need
the more esoteric features of xterm, like Tektronix 4014 emulation,
session logging and toolkit style configurability. Since it doesn't
support those features, rxvt uses much less swap space than xterm
uses. This is a significant advantage on a machine which is serving
a large number of X sessions.
©
SA
The rxvt package should be installed on any machine which serves a
large number of X sessions, if you'd like to improve that machine's
performance.
Name
: samba
Relocations: (not relocateable)
Version : 2.0.3
Vendor: Red Hat Software
Release : 8
Build Date: Thu Apr 15 23:53:57 1999
Install date: Fri Oct 1 11:30:39 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: samba-2.0.3-8.src.rpm
Size fingerprint
: 6491555
GNU
GPL F8B5
Version
2 A169 4E46
Key
= AF19 FA27 2F94 License:
998D FDB5
DE3D
06E4
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Samba SMB client and server.
Description :
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
99 of 136
Author retains full rights.
Samba provides an SMB server which can be used to provide
network services to SMB (sometimes called "Lan Manager")
clients, including various versions of MS Windows, OS/2,
and other Linux machines. Samba also provides some SMB
clients, which complement the built-in SMB filesystem
in Linux. Samba uses NetBIOS over TCP/IP (NetBT) protocols
and does NOT need NetBEUI (Microsoft Raw NetBIOS frame)
protocol.
ull
rig
ht
s.
DHCP Server Security Audit
Gary Worthy
re
tai
ns
f
Samba-2 features an almost working NT Domain Control
capability and includes the new SWAT (Samba Web Administration
Tool) that allows samba's smb.conf file to be remotely managed
usingfingerprint
your favourite
webFA27
browser.
theFDB5
time being
this
is 06E4 A169 4E46
Key
= AF19
2F94For
998D
DE3D
F8B5
being enabled on TCP port 901 via inetd.
Au
th
or
Please refer to the WHATSNEW.txt document for fixup information.
This binary release includes encrypted password support.
Please read the smb.conf file and ENCRYPTION.txt in the
docs directory for implementation details.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
NOTE: Red Hat Linux 5.X Uses PAM which has integrated support
for Shadow passwords. Do NOT recompile with the SHADOW_PWD option
enabled. Red Hat Linux has built in support for quotas in PAM.
Name
: sash
Relocations: (not relocateable)
Version : 2.1
Vendor: Red Hat Software
Release : 4
Build Date: Sun Mar 21 22:19:52 1999
Install date: Fri Oct 1 11:30:45 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Shells Source RPM: sash-2.1-4.src.rpm
Size
: 411845
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A statically linked shell, including some built-in basic commands.
Description :
Sash is a simple, standalone, statically linked shell which includes
simplified versions of built-in commands like ls, dd and gzip. Sash
is statically linked so that it can work without shared libraries, so
it is particularly useful for recovering from certain types of system
failures. Sash can also be used to safely upgrade to new versions of
shared libraries.
Name
: sendmail
Relocations: (not relocateable)
Version : 8.9.3
Vendor: Red Hat Software
Release : 10
Build Date: Mon Apr 19 15:38:47 1999
Install date: Fri Oct 1 11:30:49 1999
Build Host: porky.devel.redhat.com
Group
: System
Environment/Daemons
Source
RPM:
sendmail-8.9.3-10.src.rpm
Key
fingerprint
= AF19
FA27 2F94 998D FDB5
DE3D
F8B5
06E4 A169 4E46
Size
: 519054
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A widely used Mail Transport Agent (MTA).
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
100 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
Description :
The Sendmail program is a very widely used Mail Transport Agent
(MTA). MTAs send mail from one machine to another. Sendmail is not
a client program, which you use to read your email. Sendmail is a
behind-the-scenes program which actually moves your email over networks
or the Internet to where you want it to go.
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
If you ever need to reconfigure Sendmail, you'll also need to have the
sendmail.cf package installed. If you need documentation on Sendmail,
you can install the sendmail-doc package.
Name
: setconsole
Relocations: (not relocateable)
Version : 1.0
Vendor: Red Hat Software
Release
: 8 = AF19 FA27 2F94
Build998D
Date:FDB5
Sun Mar
21 F8B5
22:25:16
1999
Key
fingerprint
DE3D
06E4
A169 4E46
Install date: Fri Oct 1 11:30:57 1999 Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: setconsole-1.0-8.src.rpm
Size
: 3610
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : Sets the system to use either a local terminal or a serial console.
Description :
Setconsole is a basic system utility for setting up the /etc/inittab,
/dev/systty and /dev/console files to handle a new console. The
console can be either the local terminal (i.e., directly attached to
the system via a video card) or a serial console.
Name
: setserial
Relocations: (not relocateable)
Version : 2.15
Vendor: Red Hat Software
Release : 2
Build Date: Sun Mar 21 22:25:34 1999
Install date: Fri Oct 1 11:30:57 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: setserial-2.15-2.src.rpm
Size
: 37904
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A utility for configuring serial ports.
Description :
Setserial is a basic system utility for displaying or setting
serial port information. Setserial can reveal and allow you
to alter the I/O port and IRQ that a particular serial device
is using, and more.
©
You should install setserial because you may find it useful
for detecting and/or altering device information.
Name
: setuptool
Relocations: (not relocateable)
Version : 1.2
Vendor: Red Hat Software
Release : 2
Build Date: Mon Apr 5 22:24:51 1999
Install
date: Fri =
Oct
1 11:30:57
1999
porky.devel.redhat.com
Key
fingerprint
AF19
FA27 2F94
998DBuild
FDB5Host:
DE3D
F8B5 06E4 A169 4E46
Group
: Applications/System
Source RPM: setuptool-1.2-2.src.rpm
Size
: 7499
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
101 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
Summary : A text mode configuration tool.
Description :
Setuptool is a user-friendly text mode menu utility
which allows you to access all of the text mode
configuration programs included in the Red Hat Linx
operating system.
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
You should install the setuptool package because you
will find yourself using its features for essential
system administration.
Name
: sharutils
Relocations: (not relocateable)
Version : 4.2
Vendor: Red Hat Software
Release
: 12 = AF19 FA27 2F94
Build
Date:
Sun DE3D
Mar 21F8B5
22:40:32
Key
fingerprint
998D
FDB5
06E41999
A169 4E46
Install date: Fri Oct 1 11:30:58 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Archiving
Source RPM: sharutils-4.2-12.src.rpm
Size
: 226668
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : The GNU shar utilities for packaging and unpackaging shell archives.
Description :
The sharutils package contains the GNU shar utilities, a set of tools
for encoding and decoding packages of files (in binary or text format)
in a special plain text format called shell archives (shar). This
format can be sent through email (which can be problematic for
regular binary files). The shar utility supports a wide range of
capabilities (compressing, uuencoding, splitting long files for
multi-part mailings, providing checksums), which make it very flexible
at creating shar files. After the files have been sent, the unshar
tool scans mail messages looking for shar files. Unshar automatically
strips off mail headers and introductory text and then unpacks the shar
files.
©
SA
NS
In
Install sharutils if you send binary files through email very often.
Name
: slang
Relocations: (not relocateable)
Version : 1.2.2
Vendor: Red Hat Software
Release : 4
Build Date: Sun Mar 21 09:39:56 1999
Install date: Fri Oct 1 11:30:58 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: slang-1.2.2-4.src.rpm
Size
: 256489
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: ftp://space.mit.edu/pub/davis/slang/
Summary : The shared library for the S-Lang extension language.
Description :
S-Lang
is an interpreted
language
a programming
The A169 4E46
Key
fingerprint
= AF19 FA27
2F94and
998D
FDB5 DE3Dlibrary.
F8B5 06E4
S-Lang language was designed so that it can be easily embedded into
a program to provide the program with a powerful extension language.
The S-Lang library, provided in this package, provides the S-Lang
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
102 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
extension language. S-Lang's syntax resembles C, which makes it easy
to recode S-Lang procedures in C if you need to.
Name
: slocate
Relocations: (not relocateable)
Version : 1.4
Vendor: Red Hat Software
Release : 7
Build Date: Mon Apr 19 13:55:48 1999
Install date: Fri Oct 1 11:31:07 1999
Build Host: porky.devel.redhat.com
Group
: Applications/File
Source RPM: slocate-1.4-7.src.rpm
Size
: 20412
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Finds files on a system via a central database.
Description :
slocate searches through a central database (updated nightly) for files
which
match a given
glob
pattern.
allows
you
to quickly
Key
fingerprint
= AF19
FA27
2F94This
998D
FDB5
DE3D
F8B5 find
06E4files
A169 4E46
anywhere on your system.
Name
: slrn
Relocations: (not relocateable)
Version : 0.9.5.4
Vendor: Red Hat Software
Release : 5
Build Date: Mon Apr 19 10:13:25 1999
Install date: Fri Oct 1 11:31:09 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: slrn-0.9.5.4-5.src.rpm
Size
: 423300
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://space.mit.edu/~davis/slrn.html
Summary : A powerful, easy to use, threaded Internet news reader.
Description :
SLRN is a powerful, easy to use, threaded Internet news reader. SLRN is
highly customizable and allows you to design complex filters to sort or kill
news articles. SLRN works well over slow network connections, and includes
a utility for reading news off-line.
©
SA
NS
In
sti
Install slrn if you need a full-featured news reader, if you have a slow
network connection, or if you'd like to save on-line time by reading your
news off-line.
Name
: sndconfig
Relocations: (not relocateable)
Version : 0.33
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 13:29:53 1999
Install date: Fri Oct 1 11:31:12 1999 Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: sndconfig-0.33-1.src.rpm
Size
: 313707
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The Red Hat Linux sound configuration tool.
Description :
Sndconfig is a text based tool which sets up the configuration
files fingerprint
you'll need=toAF19
use aFA27
sound2F94
card 998D
with aFDB5
Red Hat
Linux
system.
Key
DE3D
F8B5
06E4 A169 4E46
Sndconfig can be used to set the proper sound type for programs
which use the /dev/dsp, /dev/audio and /dev/mixer devices. The
sound settings are saved by the aumix and sysV runlevel scripts.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
103 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
th
or
re
tai
ns
f
ull
rig
ht
s.
Install sndconfig if you need to configure your sound card.
Name
: sox
Relocations: (not relocateable)
Version : 12.15
Vendor: Red Hat Software
Release : 5
Build Date: Thu Apr 1 16:36:40 1999
Install date: Fri Oct 1 11:31:13 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: sox-12.15-5.src.rpm
Size
: 239394
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://home.sprynet.com/sprynet/cbagwell/
Summary : A general purpose sound file conversion tool.
Description :
SoX fingerprint
(Sound eXchange)
is a sound
format
converter
for Linux,
Key
= AF19 FA27
2F94file
998D
FDB5
DE3D F8B5
06E4 A169 4E46
UNIX and DOS PCs. The self-described 'Swiss Army knife of sound
tools,' SoX can convert between many different digitized sound
formats and perform simple sound manipulation functions,
including sound effects.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
Install the sox package if you'd like to convert sound file formats
or manipulate some sounds.
Name
: stat
Relocations: (not relocateable)
Version : 1.5
Vendor: Red Hat Software
Release : 11
Build Date: Sun Mar 21 22:50:46 1999
Install date: Fri Oct 1 11:31:14 1999
Build Host: porky.devel.redhat.com
Group
: Applications/File
Source RPM: stat-1.5-11.src.rpm
Size
: 6945
License: none
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A tool for finding out information about a specified file.
Description :
The stat utility prints out filesystem level information about a
specified file, including size, permissions, link count, inode, etc.
Name
: svgalib
Relocations: (not relocateable)
Version : 1.3.1
Vendor: Red Hat Software
Release : 5
Build Date: Tue Apr 13 11:10:13 1999
Install date: Fri Oct 1 11:31:15 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: svgalib-1.3.1-5.src.rpm
Size
: 771098
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A low-level fullscreen SVGA graphics library.
Description :
The svgalib package provides the SVGAlib low-level graphics library for
Linux. SVGAlib is a library which allows applications to use full
screen
graphics =onAF19
a variety
hardware
Many
games
and
Key
fingerprint
FA27of2F94
998Dplatforms.
FDB5 DE3D
F8B5
06E4
A169 4E46
utilities use SVGAlib for their graphics.
You'll need to have the svgalib package installed if you use any of the
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
104 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
programs which rely on SVGAlib for their graphics support.
Name
: switchdesk
Relocations: /usr
Version : 1.7.0
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 13:39:14 1999
Install date: Fri Oct 1 11:31:17 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/Desktops
Source RPM: switchdesk-1.7.0-1.src.rpm
Size
: 92867
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Desktop Switcher - switch between GNOME, KDE and AnotherLevel.
Description :
The Desktop Switcher is a tool which enables users to easily switch between
various desktop environments that they have installed. The tool includes
support
for GNOME,
KDE,
AnotherLevel.
for different
environments
Key
fingerprint
= AF19
FA27and
2F94
998D FDB5 Support
DE3D F8B5
06E4 A169
4E46
on different computers is available, as well as setting a "global default."
Name
: switchdesk-gnome
Relocations: /usr
Version : 1.7.0
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 13:39:14 1999
Install date: Fri Oct 1 11:31:17 1999 Build Host: porky.devel.redhat.com
Group
: User Interface/Desktops
Source RPM: switchdesk-1.7.0-1.src.rpm
Size
: 11288
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : GNOME interface to the Desktop Switcher.
Description :
Provides the desktop switching tool with a GNOME look and feel.
Name
: switchdesk-kde
Relocations: /usr
Version : 1.7.0
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 13:39:14 1999
Install date: Fri Oct 1 11:31:17 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/Desktops
Source RPM: switchdesk-1.7.0-1.src.rpm
Size
: 22864
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : KDE interface to the Desktop Switcher.
Description :
Provides the desktop switching Tool with a KDE look and feel.
Name
: sysklogd
Relocations: (not relocateable)
Version : 1.3.31
Vendor: Red Hat Software
Release : 6
Build Date: Tue Apr 13 13:26:46 1999
Install date: Fri Oct 1 11:31:18 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: sysklogd-1.3.31-6.src.rpm
Size
: 113949
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : System logging and kernel message trapping daemons.
Description
: = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Key
fingerprint
The sysklogd package contains two system utilities (syslogd and klogd)
which provide support for system logging. Syslogd and klogd run as
daemons (background processes) and log system messages to different
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
105 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
places, like sendmail logs, security logs, error logs, etc.
Name
: SysVinit
Relocations: (not relocateable)
Version : 2.74
Vendor: Red Hat Software
Release : 11
Build Date: Sat Apr 17 10:29:06 1999
Install date: Fri Oct 1 11:31:22 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: SysVinit-2.74-11.src.rpm
Size
: 154850
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The System V system initialization program.
Description :
The SysVinit package contains a group of processes that
control the very basic functions of your system. SysVinit is
the first
program= started
by the2F94
Linux
kernel
when
the F8B5 06E4 A169 4E46
Key
fingerprint
AF19 FA27
998D
FDB5
DE3D
system boots, controlling the startup, running and shutdown
of all other programs.
Name
: talk
Relocations: (not relocateable)
Version : 0.11
Vendor: Red Hat Software
Release : 1
Build Date: Fri Apr 9 12:13:59 1999
Install date: Fri Oct 1 11:31:22 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: talk-0.11-1.src.rpm
Size
: 37038
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Talk client for one-on-one Internet chatting.
Description :
The ntalk package provides client and daemon programs for the
Internet talk protocol, which allows you to chat with other users
on different systems. Talk is a communication program which copies
lines from one terminal to the terminal of another user.
©
SA
NS
In
sti
Install ntalk if you'd like to use talk for chatting with users on
different systems.
Name
: tar
Relocations: (not relocateable)
Version : 1.12
Vendor: Red Hat Software
Release : 9
Build Date: Mon Mar 29 11:16:59 1999
Install date: Fri Oct 1 11:31:27 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Archiving
Source RPM: tar-1.12-9.src.rpm
Size
: 485765
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A GNU file archiving program.
Description :
The GNU tar program saves many files together into one archive and
can restore individual files (or all of the files) from the archive.
Tar can
also be =
used
to add
supplemental
to DE3D
an archive
to A169 4E46
Key
fingerprint
AF19
FA27
2F94 998D files
FDB5
F8B5and
06E4
update or list files in the archive.
Tar includes multivolume support, automatic archive compression/
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
106 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
If you want to use Tar for remote backups, you'll also need to
install the rmt package.
ull
rig
ht
s.
decompression, the ability to perform remote archives and the
ability to perform incremental and full backups.
-2
00
2,
Au
th
or
re
tai
ns
f
You should install the tar package, because you'll find its
compression and decompression utilities essential for working
with files.
Name
: tcl
Relocations: (not relocateable)
Version : 8.0.4
Vendor: Red Hat Software
Release : 29
Build Date: Thu Apr 8 17:14:28 1999
Install
date: Fri =
Oct
1 11:31:30
1999998DBuild
porky.devel.redhat.com
Key
fingerprint
AF19
FA27 2F94
FDB5Host:
DE3D
F8B5 06E4 A169 4E46
Group
: Development/Languages
Source RPM: tcltk-8.0.4-29.src.rpm
Size
: 5648540
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.scriptics.com
Summary : An embeddable scripting language.
Description :
Tcl is a simple scripting language designed to be embedded into
other applications. Tcl is designed to be used with Tk, a widget
set, which is provided in the tk package. This package also includes
tclsh, a simple example of a Tcl application.
©
SA
NS
In
sti
tu
te
20
00
If you're installing the tcl package and you want to use Tcl for
development, you should also install the tk and tclx packages.
Name
: tclx
Relocations: (not relocateable)
Version : 8.0.4
Vendor: Red Hat Software
Release : 29
Build Date: Thu Apr 8 17:14:28 1999
Install date: Fri Oct 1 11:31:36 1999
Build Host: porky.devel.redhat.com
Group
: Development/Languages
Source RPM: tcltk-8.0.4-29.src.rpm
Size
: 2001135
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.neosoft.com/
Summary : Tcl/Tk extensions for POSIX systems.
Description :
TclX is a set of extensions which make it easier to use the Tcl
scripting language for common UNIX/Linux programming tasks. TclX
enhances Tcl support for files, network access, debugging, math, lists,
and message catalogs. TclX can be used with both Tcl and Tcl/Tk
applications.
Install
TclX if you
are developing
Tcl/Tk.
Key
fingerprint
= AF19
FA27 2F94applications
998D FDB5with
DE3D
F8B5You'll
06E4 A169 4E46
also need to install the tcl and tk packages.
Name
: tcp_wrappers
Relocations: (not relocateable)
Version : 7.6
Vendor: Red Hat Software
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
107 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tai
ns
f
ull
rig
ht
s.
Release : 7
Build Date: Sun Mar 21 23:14:27 1999
Install date: Fri Oct 1 11:31:37 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: tcp_wrappers-7.6-7.src.rpm
Size
: 277119
License: Distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A security tool which acts as a wrapper for TCP daemons.
Description :
The tcp_wrappers package provides small daemon programs which can
monitor and filter incoming requests for systat, finger, ftp, telnet,
rlogin, rsh, exec, tftp, talk and other network services.
20
00
-2
00
2,
Au
th
or
re
Install the tcp_wrappers program if you need a security tool for
filtering
incoming
network
services
requests.
Key
fingerprint
= AF19
FA27
2F94 998D
FDB5 DE3D F8B5 06E4 A169 4E46
Name
: tcpdump
Relocations: /usr
Version : 3.4
Vendor: Red Hat Software
Release : 10
Build Date: Sun Mar 21 23:15:37 1999
Install date: Fri Oct 1 11:31:38 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: tcpdump-3.4-10.src.rpm
Size
: 219683
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A network traffic monitoring tool.
Description :
Tcpdump is a command-line tool for monitoring network traffic. Tcpdump
can capture and display the packet headers on a particular network
interface or on all interfaces. Tcpdump can display all of the packet
headers, or just the ones that match particular criteria.
©
SA
NS
In
sti
tu
te
Install tcpdump if you need a program to monitor network traffic.
Name
: tcsh
Relocations: (not relocateable)
Version : 6.08.00
Vendor: Red Hat Software
Release : 5
Build Date: Sun Mar 21 23:17:24 1999
Install date: Fri Oct 1 11:31:39 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Shells Source RPM: tcsh-6.08.00-5.src.rpm
Size
: 499895
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: http://www.primate.wisc.edu/software/csh-tcsh-book/
Summary : An enhanced version of csh, the C shell.
Description :
Tcsh is an enhanced but completely compatible version of csh, the C
shell. Tcsh is a command language interpreter which can be used both
as an interactive login shell and as a shell script command processor.
Tcsh includes a command line editor, programmable word completion,
spelling
correction,
a history
control
andF8B5
a C language
Key
fingerprint
= AF19
FA27mechanism,
2F94 998D job
FDB5
DE3D
06E4 A169 4E46
like syntax.
Name
: telnet
Relocations: (not relocateable)
Version : 0.10
Vendor: Red Hat Software
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
108 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Release : 27
Build Date: Thu Apr 15 14:26:44 1999
Install date: Fri Oct 1 11:31:41 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: telnet-0.10-27.src.rpm
Size
: 140961
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The client and server programs for the telnet remote login protocol.
Description :
Telnet is a popular protocol for logging into remote systems over
the Internet. The telnet package provides a command line telnet client
as well as a telnet daemon, which will support remote logins into the
host machine. The telnet daemon is enabled by default. You may
disable the telnet daemon by editing /etc/inetd.conf.
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Install the telnet package if you want to telnet to remote machines
and/or support remote logins to your own machine.
Name
: tetex-xdvi
Relocations: (not relocateable)
Version : 0.9
Vendor: Red Hat Software
Release : 17
Build Date: Mon Apr 5 20:25:00 1999
Install date: Fri Oct 1 11:31:42 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Publishing
Source RPM: tetex-0.9-17.src.rpm
Size
: 988089
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.tug.org/teTeX/
Summary : An X viewer for DVI files.
Description :
Xdvi allows you to preview the TeX text formatting system's output .dvi
files on an X Window System.
©
SA
NS
In
sti
tu
If you are installing tetex, so that you can use the TeX text formatting
system, you will also need to install tetex-xdvi. In addition, you will
need to install tetex-afm (a PostScript font converter for TeX),
tetex-dvilj (for converting .dvi files to HP PCL format for printing on
HP and HP compatible printers), tetex-dvips (for converting .dvi files to
PostScript format for printing on PostScript printers), and tetex-latex
(a higher level formatting package which provides an easier-to-use
interface for TeX). If you're not a TeX expert, you'll probably also
want to install the tetex-doc package, which contains documentation for
the TeX text formatting system.
Name
: tftp
Relocations: (not relocateable)
Version : 0.10
Vendor: Red Hat Software
Release : 23
Build Date: Wed Apr 7 18:20:11 1999
Install date: Fri Oct 1 11:31:42 1999
Build Host: porky.devel.redhat.com
Group
: System
Environment/Daemons
Source
RPM:
tftp-0.10-23.src.rpm
Key
fingerprint
= AF19
FA27 2F94 998D FDB5
DE3D
F8B5
06E4 A169 4E46
Size
: 33978
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The client and server for the Trivial File Transfer Protocol (TFTP).
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
109 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Description :
The Trivial File Transfer Protocol (TFTP) is normally used only for
booting diskless workstations. The tftp package provides the user
interface for TFTP, which allows users to transfer files to and from
a remote machine. This program, and TFTP, provide very little security,
and should not be enabled unless it is expressly needed. The TFTP
server is run from /etc/inetd.conf, and is disabled by default on Red
Hat Linux systems.
Name
: time
Relocations: /usr
Version : 1.7
Vendor: Red Hat Software
Release : 9
Build Date: Mon Mar 22 00:30:03 1999
Install date: Fri Oct 1 11:31:43 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source
time-1.7-9.src.rpm
Key
fingerprint
= AF19 FA27 2F94 998D
FDB5RPM:
DE3D
F8B5 06E4 A169 4E46
Size
: 18921
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A GNU utility for monitoring a program's use of system resources.
Description :
The GNU time utility runs another program, collects information about
the resources used by that program while it is running and
displays the results.
©
SA
NS
In
sti
tu
te
20
00
-2
00
Time can help developers optimize their programs.
Name
: timeconfig
Relocations: (not relocateable)
Version : 2.7
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 05:48:39 1999
Install date: Fri Oct 1 11:31:45 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: timeconfig-2.7-1.src.rpm
Size
: 397729
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Text mode tools for setting system time parameters.
Description :
The timeconfig package contains two utilities: timeconfig and setclock.
Timeconfig provides a simple text mode tool for configuring the time
parameters in /etc/sysconfig/clock and /etc/localtime. The setclock tool
sets the hardware clock on the system to the current time stored in the
system clock.
Name
: timed
Relocations: (not relocateable)
Version : 0.10
Vendor: Red Hat Software
Release : 23
Build Date: Sat Apr 17 12:16:25 1999
Install date: Fri Oct 1 11:31:46 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: timed-0.10-23.src.rpm
Size
: 73570
License: BSD
Packager
: Red
Software
<http://developer.redhat.com/bugzilla>
Key
fingerprint
= Hat
AF19
FA27 2F94
998D FDB5 DE3D F8B5 06E4 A169 4E46
Summary : Programs for maintaining networked machines' time synchronization.
Description :
The timed package contains the timed daemon and the timedc program
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
110 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
for controlling the timed program. Timed synchronizes its host
machine's time with the time on other local network machines. The
timedc program is used to control and configure the operation of
timed.
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
Install the timed package if you need a system for keeping networked
machines' times in synchronization.
Name
: timetool
Relocations: (not relocateable)
Version : 2.5
Vendor: Red Hat Software
Release : 5
Build Date: Mon Mar 22 00:32:50 1999
Install date: Fri Oct 1 11:31:46 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: timetool-2.5-5.src.rpm
Size fingerprint
: 23181= AF19 FA27 2F94License:
GPL DE3D F8B5 06E4 A169 4E46
Key
998D FDB5
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A utility for setting the system's date and time.
Description :
The timetool utility provides a graphical user interface for setting
the current date and time on your system.
Name
: tin
Relocations: (not relocateable)
Version : 1.4_990216
Vendor: Red Hat Software
Release : 3
Build Date: Mon Mar 22 00:35:10 1999
Install date: Fri Oct 1 11:31:47 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: tin-1.4_990216-3.src.rpm
Size
: 1222371
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A basic Internet news reader.
Description :
Tin is a basic, easy to use Internet news reader. Tin can read news
locally or remotely via an NNTP (Network News Transport Protocol) server.
©
SA
NS
In
sti
Install tin if you need a basic news reader.
Name
: tix
Relocations: (not relocateable)
Version : 4.1.0.6
Vendor: Red Hat Software
Release : 29
Build Date: Thu Apr 8 17:14:28 1999
Install date: Fri Oct 1 11:31:49 1999 Build Host: porky.devel.redhat.com
Group
: Development/Languages
Source RPM: tcltk-8.0.4-29.src.rpm
Size
: 2797890
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A set of capable widgets for Tk.
Description :
Tix (Tk Interface Extension), an add-on for the Tk widget set, is an
extensive set of over 40 widgets. In general, Tix widgets are more
complex
and more
capable
than
the 998D
widgets
provided
Tk. Tix
widgets
Key
fingerprint
= AF19
FA27
2F94
FDB5
DE3DinF8B5
06E4
A169 4E46
include a ComboBox, a Motif-style FileSelectBox, an MS Windows-style
FileSelectBox, a PanedWindow, a NoteBook, a hierarchical list, a
directory tree and a file manager.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
111 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Install the tix package if you want to try out more complicated widgets
for Tk. You'll also need to have the tcl and tk packages installed.
Name
: tk
Relocations: (not relocateable)
Version : 8.0.4
Vendor: Red Hat Software
Release : 29
Build Date: Thu Apr 8 17:14:28 1999
Install date: Fri Oct 1 11:31:58 1999
Build Host: porky.devel.redhat.com
Group
: Development/Languages
Source RPM: tcltk-8.0.4-29.src.rpm
Size
: 5416872
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.scriptics.com
Summary : Tk GUI toolkit for Tcl, with shared libraries
Description
: = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Key
fingerprint
Tk is a X Windows widget set designed to work closely with the tcl
scripting language. It allows you to write simple programs with full
featured GUI's in only a little more time then it takes to write a
text based interface. Tcl/Tk applications can also be run on Windows
and Macintosh platforms.
Name
: tkinter
Relocations: (not relocateable)
Version : 1.5.1
Vendor: Red Hat Software
Release : 10
Build Date: Sun Mar 21 21:50:54 1999
Install date: Fri Oct 1 11:32:01 1999
Build Host: porky.devel.redhat.com
Group
: Development/Languages
Source RPM: python-1.5.1-10.src.rpm
Size
: 659229
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A graphical user interface for the Python scripting language.
Description :
The Tkinter (Tk interface) program is an graphical user interface for
the Python scripting language.
©
SA
NS
In
sti
You should install the tkinter package if you'd like to use a graphical
user interface for Python programming.
Name
: tksysv
Relocations: (not relocateable)
Version : 1.0
Vendor: Red Hat Software
Release : 6
Build Date: Mon Mar 22 14:02:55 1999
Install date: Fri Oct 1 11:32:01 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: tksysv-1.0-6.src.rpm
Size
: 36484
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : An X editor for editing runlevel services.
Description :
Tksysv is an X Window System based graphical interface for editing
the services
provided
byFA27
different
Tksysv
is used
set A169 4E46
Key
fingerprint
= AF19
2F94runlevels.
998D FDB5
DE3D
F8B5to06E4
which services are stopped and which services are started in the
different runlevels on your system.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
112 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Install the tksysv package if you'd like to use a graphical tool for
editing runlevel services.
Name
: tmpwatch
Relocations: (not relocateable)
Version : 1.7
Vendor: Red Hat Software
Release : 1
Build Date: Thu Apr 8 12:48:23 1999
Install date: Fri Oct 1 11:32:01 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: tmpwatch-1.7-1.src.rpm
Size
: 9804
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A utility for removing files based on when they were last accessed.
Description :
The tmpwatch utility recursively searches through specified directories
and removes
files
whichFA27
have 2F94
not been
accessed
in a specified
periodA169
of 4E46
Key
fingerprint
= AF19
998D
FDB5 DE3D
F8B5 06E4
time. Tmpwatch is normally used to clean up directories which are used
for temporarily holding files (for example, /tmp). Tmpwatch ignores
symlinks, won't switch filesystems and only removes empty directories
and regular files.
Name
: traceroute
Relocations: /usr
Version : 1.4a5
Vendor: Red Hat Software
Release : 14
Build Date: Mon Mar 22 14:53:20 1999
Install date: Fri Oct 1 11:32:01 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: traceroute-1.4a5-14.src.rpm
Size
: 27991
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : Traces the route taken by packets over a TCP/IP network.
Description :
The traceroute utility displays the route used by IP packets on their
way to a specified network (or Internet) host. Traceroute displays
the IP number and host name (if possible) of the machines along the
route taken by the packets. Traceroute is used as a network debugging
tool. If you're having network connectivity problems, traceroute will
show you where the trouble is coming from along the route.
©
SA
NS
Install traceroute if you need a tool for diagnosing network connectivity
problems.
Name
: trn
Relocations: (not relocateable)
Version : 3.6
Vendor: Red Hat Software
Release : 16
Build Date: Mon Mar 22 00:47:08 1999
Install date: Fri Oct 1 11:32:02 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: trn-3.6-16.src.rpm
Size
: 457228
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary
: A=news
displays
postings
in threaded
format.
Key
fingerprint
AF19reader
FA27that
2F94
998D FDB5
DE3D
F8B5 06E4
A169 4E46
Description :
Trn is a basic news reader that supports threading. This version is
configured to read news from an NNTP news server.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
113 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Install trn if you need a basic news reader that shows you newsgroup
postings in threaded format.
Name
: ucd-snmp
Relocations: (not relocateable)
Version : 3.6.1
Vendor: Red Hat Software
Release : 4
Build Date: Thu Apr 8 17:25:30 1999
Install date: Fri Oct 1 11:32:05 1999 Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: ucd-snmp-3.6.1-4.src.rpm
Size
: 1527523
License: BSDish
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A collection of SNMP protocol tools from UC-Davis.
Description :
SNMP
(Simple =Network
Management
Protocol)
is a protocol
network
Key
fingerprint
AF19 FA27
2F94 998D
FDB5 DE3D
F8B5 used
06E4for
A169
4E46
management (hence the name). The UCD-SNMP project includes various SNMP
tools: an extensible agent, an SNMP library, tools for requesting or
setting information from SNMP agents, tools for generating and handling
SNMP traps, a version of the netstat command which uses SNMP, and a
Tk/Perl mib browser. This package contains the snmpd and snmptrapd
daemons, documentation, etc.
NS
In
sti
tu
te
20
00
-2
00
2,
Install the ucd-snmp package if you need network management tools.
You will probably also want to install the ucd-snmp-utils package, which
contains UCD-SNMP utilities.
Name
: ucd-snmp-utils
Relocations: (not relocateable)
Version : 3.6.1
Vendor: Red Hat Software
Release : 4
Build Date: Thu Apr 8 17:25:30 1999
Install date: Fri Oct 1 11:32:08 1999
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: ucd-snmp-3.6.1-4.src.rpm
Size
: 258253
License: BSDish
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Network management utilities using SNMP, from the UCD-SNMP project.
Description :
The ucd-snmp package contains various utilities for use with the
UCD-SNMP network management project.
©
SA
Install this package if you need utilities for managing your network
using the SNMP protocol. You'll also need to install the ucd-snmp
package.
Name
: umb-scheme
Relocations: (not relocateable)
Version : 3.2
Vendor: Red Hat Software
Release : 9
Build Date: Mon Mar 22 15:54:50 1999
Install date: Fri Oct 1 11:32:09 1999
Build Host: porky.devel.redhat.com
Group
: Development/Languages
SourceDE3D
RPM:F8B5
umb-scheme-3.2-9.src.rpm
Key
fingerprint
= AF19 FA27 2F94 998D FDB5
06E4 A169 4E46
Size
: 1240367
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : An implementation of the Scheme programming language.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
114 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
Description :
UMB Scheme is a public domain implementation of the Scheme programming
language. Scheme is a statically scoped and properly tail-recursive
dialect of the Lisp programming language, designed with clear and
simple semantics and a minimal number of ways to form expressions.
-2
00
2,
Au
th
or
re
tai
ns
f
Install the umb-scheme package if you need an implementation of the
Scheme programming language.
Name
: unzip
Relocations: (not relocateable)
Version : 5.31
Vendor: Red Hat Software
Release : 5
Build Date: Mon Mar 22 00:56:16 1999
Install date: Fri Oct 1 11:32:09 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Archiving
Key
fingerprint
= AF19 FA27 2F94 998DSource
FDB5 RPM:
DE3Dunzip-5.31-5.src.rpm
F8B5 06E4 A169 4E46
Size
: 379716
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A utility for unpacking zip files.
Description :
The unzip utility is used to list, test, or extract files from a zip
archive. Zip archives are commonly found on MS-DOS systems. The zip
utility, included in the zip package, creates zip archives. Zip and
unzip are both compatible with archives created by PKWARE(R)'s PKZIP for
MS-DOS, but the programs' options and default behaviors do differ in some
respects.
©
SA
NS
In
sti
tu
te
20
00
Install the unzip package if you need to list, test or extract files from
a zip archive.
Name
: urw-fonts
Relocations: (not relocateable)
Version : 1.1
Vendor: URW
Release : 8
Build Date: Mon Mar 22 00:58:29 1999
Install date: Fri Oct 1 11:32:12 1999 Build Host: porky.devel.redhat.com
Group
: User Interface/X
Source RPM: urw-fonts-1.1-8.src.rpm
Size
: 2211985
License: GPL, URW holds copyright
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: http://www.gimp.org/fonts.html
Summary : Free versions of the 35 standard PostScript fonts.
Description :
Free versions of the 35 standard PostScript fonts. With newer releases
of ghostscript quality versions of the standard 35 Type 1 PostScript
fonts are shipped. They were donated and licenced under the GPL by
URW. The fonts.dir was specially made to match the original Adobe
names of the fonts, e.g. Times, Helvetica etc. With X, LaTeX, or Ghostscript,
these fonts are a must to have!
Name
: usermode
relocateable)
Key
fingerprint
= AF19 FA27 2F94Relocations:
998D FDB5(not
DE3D
F8B5 06E4 A169 4E46
Version : 1.9
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 12 10:29:47 1999
Install date: Fri Oct 1 11:32:13 1999
Build Host: porky.devel.redhat.com
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
115 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
Group
: Applications/System
Source RPM: usermode-1.9-1.src.rpm
Size
: 101322
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Graphical tools for certain user account management tasks.
Description :
The usermode package contains several graphical tools for users:
userinfo, usermount and userpasswd. Userinfo allows users to change
their finger information. Usermount lets users mount, unmount, and
format filesystems. Userpasswd allows users to change their passwords.
00
-2
00
2,
Au
th
or
re
tai
ns
f
Install the usermode package if you would like to provide users with
graphical tools for certain account management tasks.
Name
: usernet
Relocations:
(not
relocateable)
Key
fingerprint
= AF19 FA27 2F94
998D FDB5
DE3D
F8B5 06E4 A169 4E46
Version : 1.0.9
Vendor: Red Hat Software
Release : 2
Build Date: Mon Mar 22 00:59:39 1999
Install date: Fri Oct 1 11:32:13 1999 Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: usernet-1.0.9-2.src.rpm
Size
: 24974
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A graphical utility for controlling network interfaces.
Description :
The usernet utility provides a graphical interface for manipulating
network interfaces (bringing them up or down and viewing their status).
Users can only manipulate interfaces that are user-controllable. The
superuser can control all interfaces.
©
SA
NS
In
sti
tu
te
20
Install the usernet package if you'd like to provide a graphical utility
for manipulating network interfaces.
Name
: util-linux
Relocations: (not relocateable)
Version : 2.9o
Vendor: Red Hat Software
Release : 13
Build Date: Sat Apr 17 11:57:49 1999
Install date: Fri Oct 1 11:32:15 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: util-linux-2.9o-13.src.rpm
Size
: 983770
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A collection of basic system utilities.
Description :
The util-linux package contains a large variety of low-level system
utilities that are necessary for a Linux system to function.
Among many features, Util-linux contains the fdisk configuration
tool and login program.
You fingerprint
should install
util-linux
its essential
system
tools.
Key
= AF19
FA27for
2F94
998D FDB5
DE3D
F8B5 06E4 A169 4E46
Name
: vim-common
Relocations: (not relocateable)
Version : 5.3
Vendor: Red Hat Software
Release : 7
Build Date: Thu Mar 25 16:22:55 1999
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
116 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tai
ns
f
ull
rig
ht
s.
Install date: Fri Oct 1 11:32:23 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Editors
Source RPM: vim-5.3-7.src.rpm
Size
: 4460407
License: freeware
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : The common files needed by any version of the VIM editor.
Description :
VIM (VIsual editor iMproved) is an updated and improved version of the vi
editor. Vi was the first real screen-based editor for UNIX, and is still
very popular. VIM improves on vi by adding new features: multiple windows,
multi-level undo, block highlighting and more. The vim-common package
contains files which every VIM binary will need in order to run.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
If you
are installing
any FA27
version
of the
VIM
editor,
you'llF8B5
also 06E4
need to
Key
fingerprint
= AF19
2F94
998D
FDB5
DE3D
A169 4E46
the vim-common package installed.
Name
: vim-minimal
Relocations: (not relocateable)
Version : 5.3
Vendor: Red Hat Software
Release : 7
Build Date: Thu Mar 25 16:22:55 1999
Install date: Fri Oct 1 11:32:24 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Editors
Source RPM: vim-5.3-7.src.rpm
Size
: 455680
License: freeware
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A minimal version of the VIM editor.
Description :
VIM (VIsual editor iMproved) is an updated and improved version of the vi
editor. Vi was the first real screen-based editor for UNIX, and is still
very popular. VIM improves on vi by adding new features: multiple windows,
multi-level undo, block highlighting and more. The vim-minimal package
includes a minimal version of VIM, which is installed into /bin/vi for use
when only the root partition is present.
Name
: vixie-cron
Relocations: (not relocateable)
Version : 3.0.1
Vendor: Red Hat Software
Release : 33
Build Date: Wed Apr 14 18:09:48 1999
Install date: Fri Oct 1 11:32:26 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: vixie-cron-3.0.1-33.src.rpm
Size
: 58402
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The Vixie cron daemon for executing specified programs at set times.
Description :
The vixie-cron package contains the Vixie version of cron. Cron is a
standard UNIX daemon that runs specified programs at scheduled times.
Vixie cron adds better security and more powerful configuration options
to the standard version of cron.
Name
: which
Relocations:
/usr
Key
fingerprint
= AF19 FA27 2F94
998D FDB5
DE3D F8B5 06E4 A169 4E46
Version : 1.0
Vendor: Red Hat Software
Release : 11
Build Date: Mon Mar 22 02:15:45 1999
Install date: Fri Oct 1 11:32:26 1999
Build Host: porky.devel.redhat.com
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
117 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Group
: Applications/System
Source RPM: which-1.0-11.src.rpm
Size
: 7591
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : Displays where a particular program in your path is located.
Description :
The which command shows the full pathname of a specified program, if
the specified program is in your PATH.
Name
: wmconfig
Relocations: (not relocateable)
Version : 0.9.5
Vendor: Red Hat Software
Release : 1
Build Date: Fri Apr 16 21:24:51 1999
Install date: Fri Oct 1 11:32:27 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/Desktops
Source RPM: wmconfig-0.9.5-1.src.rpm
Size fingerprint
: 54128= AF19 FA27 2F94License:
GPL DE3D F8B5 06E4 A169 4E46
Key
998D FDB5
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A configuration tool for X window managers.
Description :
The wmconfig program is a helper program which provides output for use
in configuring window managers. Wmconfig will produce a list of menu
definitions for a specified X window manager (currently, FVWM2, FVWM95,
AfterStep, MWM, IceWM and KDE are supported). Wmconfig's output can
be placed into your .rc file or you can use the output for other
configuration purposes.
Name
: words
Relocations: (not relocateable)
Version : 2
Vendor: Red Hat Software
Release : 12
Build Date: Mon Mar 22 02:19:24 1999
Install date: Fri Oct 1 11:32:28 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: words-2-12.src.rpm
Size
: 421342
License: freeware
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A dictionary of English words for the /usr/dict directory.
Description :
The words file is a dictionary of English words for the /usr/dict
directory. Programs like ispell use this database of words to check
spelling.
Name
: wu-ftpd
Relocations: (not relocateable)
Version : 2.4.2vr17
Vendor: Red Hat Software
Release : 3
Build Date: Mon Apr 19 08:22:03 1999
Install date: Fri Oct 1 11:32:28 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: wu-ftpd-2.4.2vr17-3.src.rpm
Size
: 403980
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : An FTP daemon provided by Washington University.
Description
: = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Key
fingerprint
The wu-ftpd package contains the wu-ftpd FTP (File Transfer Protocol)
server daemon. The FTP protocol is a method of transferring files
between machines on a network and/or over the Internet. Wu-ftpd's
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
118 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
features include logging of transfers, logging of commands, on the fly
compression and archiving, classification of users' type and location,
per class limits, per directory upload permissions, restricted guest
accounts, system wide and per directory messages, directory alias,
cdpath, filename filter and virtual host support.
2,
Au
th
or
re
tai
ns
f
Install the wu-ftpd package if you need to provide FTP service to remote
users.
Name
: x11amp
Relocations: (not relocateable)
Version : 0.9_alpha3
Vendor: Red Hat Software
Release : 6
Build Date: Fri Apr 9 14:22:17 1999
Install date: Fri Oct 1 11:32:35 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
RPM: x11amp-0.9_alpha3-6.src.rpm
Key
fingerprint
= AF19 FA27 2F94 998D Source
FDB5 DE3D
F8B5 06E4 A169 4E46
Size
: 1374741
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.x11amp.org
Summary : X11 mp3 player with features not unlike WinAMP.
Description :
X11amp is a X Windows based mp3 player with a nice interface
borrowed from WinAMP.
©
SA
NS
In
sti
tu
te
20
00
-2
00
For information on the MP3 License, please visit:
http://www.mpeg.org/
Name
: X11R6-contrib
Relocations: (not relocateable)
Version : 3.3.2
Vendor: Red Hat Software
Release : 6
Build Date: Sun Mar 21 13:12:26 1999
Install date: Fri Oct 1 11:32:41 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/X
Source RPM: X11R6-contrib-3.3.2-6.src.rpm
Size
: 485824
License: MIT
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A collection of user-contributed X Window System programs.
Description :
If you want to use the X Window System, you should install
X11R6-contrib. This package holds many useful programs
from the X Window System, version 11, release 6 contrib tape.
The programs, contributed by various users, include listres,
xbiff, xedit, xeyes, xcalc, xload and xman, among others.
You will also need to install the XFree86 package, the
XFree86 package which corresponds to your video card,
one or more of the XFree86 fonts packages, the
Xconfigurator package and the XFree86-libs package.
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Finally, if you are going to develop applications that
run as X clients, you will also need to install
XFree86-devel.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
119 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Name
: xanim
Relocations: /usr
Version : 27070
Vendor: Red Hat Software
Release : 4
Build Date: Mon Mar 22 02:23:44 1999
Install date: Fri Oct 1 11:32:42 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Multimedia
Source RPM: xanim-27070-4.src.rpm
Size
: 868338
License: MIT
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : An X based viewer for many animation/video/audio file formats.
Description :
The XAnim program is an animation/video/audio viewer for the X Window
System. XAnim can display a large variety of animation, audio and
video formats.
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Install the xanim package if you need a viewer for an animation, video
or audio file.
Name
: Xaw3d
Relocations: /usr
Version : 1.3
Vendor: Red Hat Software
Release : 21
Build Date: Sun Mar 21 12:34:48 1999
Install date: Fri Oct 1 11:32:43 1999 Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: Xaw3d-1.3-21.src.rpm
Size
: 299602
License: MIT
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: ftp://ftp.x.org/contrib/widgets/Xaw3d/
Summary : A version of the MIT Athena widget set for X.
Description :
Xaw3d is an enhanced version of the MIT Athena Widget set for
the X Window System. Xaw3d adds a three-dimensional look to applications
with minimal or no source code changes.
©
SA
NS
In
sti
You should install Xaw3d if you are using applications which incorporate
the MIT Athena widget set and you'd like to incorporate a 3D look into
those applications.
Name
: xbanner
Relocations: (not relocateable)
Version : 1.31
Vendor: Red Hat Software
Release : 7
Build Date: Wed Apr 7 13:43:53 1999
Install date: Fri Oct 1 11:32:44 1999
Build Host: porky.devel.redhat.com
Group
: Amusements/Graphics
Source RPM: xbanner-1.31-7.src.rpm
Size
: 374996
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A program for customizing the look of the standard XDM interface.
Description :
The XBanner program allows the display of text, patterns and images
in thefingerprint
root window,
so users
customize
the XDM
style
login
screen
Key
= AF19
FA27can
2F94
998D FDB5
DE3D
F8B5
06E4
A169 4E46
and/or the normal X background.
Install XBanner if you'd like to change the look of your X login screen
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
120 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
and/or X background.
Name
: xchat
Relocations: (not relocateable)
Version : 0.9.4
Vendor: Red Hat Software
Release : 3
Build Date: Thu Apr 8 20:05:05 1999
Install date: Fri Oct 1 11:32:46 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: xchat-0.9.4-3.src.rpm
Size
: 201492
License: Freely distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://xchat.linuxpower.org
Summary : Gtk+ IRC client
Description :
X-Chat is yet another IRC client for the X Window
System,
using the
Gtk+ FA27
toolkit.2F94
It is 998D
prettyFDB5
easy DE3D F8B5 06E4 A169 4E46
Key
fingerprint
= AF19
to use compared to the other Gtk+ IRC clients and
the interface is quite nicely designed.
Name
: Xconfigurator
Relocations: (not relocateable)
Version : 4.2.3
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 05:45:54 1999
Install date: Fri Oct 1 11:32:48 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/X Hardware Support Source RPM: Xconfigurator-4.2.31.src.rpm
Size
: 575405
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The Red Hat Linux configuration tool for the X Window System.
Description :
Xconfigurator is a full-screen, menu-driven program which walks
you through setting up your X server. Xconfigurator is based
on the sources for xf86config, a utility from XFree86.
©
SA
NS
In
sti
You should install Xconfigurator if you are installing the X Window
System.
Name
: xdosemu
Relocations: (not relocateable)
Version : 0.99.10
Vendor: Red Hat Software
Release : 4
Build Date: Wed Mar 31 14:07:06 1999
Install date: Fri Oct 1 11:32:49 1999 Build Host: porky.devel.redhat.com
Group
: Applications/Emulators
Source RPM: dosemu-0.99.10-4.src.rpm
Size
: 27471
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.dosemu.org
Summary : A DOS emulator for the X Window System.
Description :
Xdosemu is a version of the dosemu DOS emulator that runs with the X
]Window
System.
Xdosemu
VGA
graphics
and
mouse
support.
Key
fingerprint
= AF19
FA27 provides
2F94 998D
FDB5
DE3D
F8B5
06E4
A169 4E46
Install xdosemu if you need to run DOS programs on your system, and you'd
like to do so with the convenience of graphics support and mouse
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
121 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tai
ns
f
ull
rig
ht
s.
capabilities.
Name
: xfm
Relocations: (not relocateable)
Version : 1.3.2
Vendor: Red Hat Software
Release : 13
Build Date: Mon Mar 22 02:40:29 1999
Install date: Fri Oct 1 11:32:50 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/Desktops
Source RPM: xfm-1.3.2-13.src.rpm
Size
: 723814
License: freeware
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : An X Window System based file manager.
Description :
Xfm is a file manager for the X Window System. Xfm supports moving
around the directory tree, multiple windows, moving/copying/deleting
files,fingerprint
and launching
programs.
Key
= AF19
FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
20
00
-2
00
2,
Au
th
or
re
Install xfm if you would like to use a graphical file manager program.
Name
: XFree86
Relocations: (not relocateable)
Version : 3.3.3.1
Vendor: Red Hat Software
Release : 49
Build Date: Sun Apr 18 18:33:43 1999
Install date: Fri Oct 1 11:33:11 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/X
Source RPM: XFree86-3.3.3.1-49.src.rpm
Size
: 14611173
License: MIT
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Part of the XFree86 implementation of the X Window System.
Description :
If you want to install the X Window System (TM) on
your machine, you'll need to install XFree86.
©
SA
NS
In
sti
tu
te
The X Window System provides the base technology
for developing graphical user interfaces. Simply stated,
X draws the elements of the GUI on the user's screen and
builds methods for sending user interactions back to the
application. X also supports remote application deployment--running an
application on another computer while viewing the input/output
on your machine. X is a powerful environment which supports
many different applications, such as games, programming tools,
graphics programs, text editors, etc. XFree86 is the version of
X which runs on Linux, as well as other platforms.
This package contains the basic fonts, programs and documentation
for an X workstation. However, this package doesn't provide the
program which you will need to drive your video hardware. To
control your video card, you'll need the particular X server
package
which corresponds
your 998D
computer's
card.
Key
fingerprint
= AF19 FA27to2F94
FDB5video
DE3D
F8B5 06E4 A169 4E46
In addition to installing this package, you will need to install
the XFree86 package which corresponds to your video card, the
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
122 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
X11R6-contrib package, the Xconfigurator package and the XFree86-libs
package. You may also need to install one of the XFree86 fonts packages.
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
And finally, if you are going to develop applications that run as
X clients, you will also need to install XFree86-devel.
Name
: XFree86-75dpi-fonts
Relocations: (not relocateable)
Version : 3.3.3.1
Vendor: Red Hat Software
Release : 49
Build Date: Sun Apr 18 18:33:43 1999
Install date: Fri Oct 1 11:33:16 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/X
Source RPM: XFree86-3.3.3.1-49.src.rpm
Size
: 1086435
License: MIT
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary
: A=set
of 75FA27
dpi resolution
forDE3D
the X Window
System.
Key
fingerprint
AF19
2F94 998Dfonts
FDB5
F8B5 06E4
A169 4E46
Description :
XFree86-75dpi-fonts contains the 75 dpi fonts used
on most X Window Systems. If you're going to use the
X Window System, you should install this package, unless
you have a monitor which can support 100 dpi resolution.
In that case, you may prefer the 100dpi fonts available in
the XFree86-100dpi-fonts package.
-2
00
You may also need to install other XFree86 font packages.
te
20
00
To install the X Window System, you will need to install
the XFree86 package, the XFree86 package corresponding to
your video card, the X11R6-contrib package, the Xconfigurator
package and the XFree86-libs package.
©
SA
NS
In
sti
tu
Finally, if you are going to develop applications that run
as X clients, you will also need to install the
XFree86-devel package.
Name
: XFree86-libs
Relocations: (not relocateable)
Version : 3.3.3.1
Vendor: Red Hat Software
Release : 49
Build Date: Sun Apr 18 18:33:43 1999
Install date: Fri Oct 1 11:33:19 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: XFree86-3.3.3.1-49.src.rpm
Size
: 2039016
License: MIT
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Shared libraries needed by the X Window System version 11 release 6.
Description :
XFree86-libs contains the shared libraries that most X programs
need to run properly. These shared libraries are in a separate package in
orderfingerprint
to reduce =
theAF19
disk FA27
space 2F94
needed
to run
X applications
on06E4
a machine
Key
998D
FDB5
DE3D F8B5
A169 4E46
without an X server (i.e, over a network).
If you are installing the X Window System on your machine, you will need to
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
123 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
install XFree86-libs. You will also need to install the XFree86 package,
the XFree86-75dpi-fonts package or the XFree86-100dpi-fonts package
(depending upon your monitor's resolution), the Xconfigurator package and
the X11R6-contrib package. And, finally, if you are going to be developing
applications that run as X clients, you will also need to install
XFree86-devel.
Name
: XFree86-xfs
Relocations: (not relocateable)
Version : 3.3.3.1
Vendor: Red Hat Software
Release : 49
Build Date: Sun Apr 18 18:33:43 1999
Install date: Fri Oct 1 11:33:30 1999 Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: XFree86-3.3.3.1-49.src.rpm
Size
: 497636
License: MIT
Packager
: Red
Software
<http://developer.redhat.com/bugzilla>
Key
fingerprint
= Hat
AF19
FA27 2F94
998D FDB5 DE3D F8B5 06E4 A169 4E46
Summary : Font server for XFree86
Description :
This is a font server for XFree86. You can serve fonts to other X servers
remotely with this package, and the remote system will be able to use all
fonts installed on the font server, even if they are not installed on the
remote computer.
Name
: xinitrc
Relocations: (not relocateable)
Version : 2.3
Vendor: Red Hat Software
Release : 1
Build Date: Mon Apr 19 11:55:57 1999
Install date: Fri Oct 1 11:33:32 1999
Build Host: porky.devel.redhat.com
Group
: User Interface/X
Source RPM: xinitrc-2.3-1.src.rpm
Size
: 9795
License: Public Domain
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The default startup script for the X Window System.
Description :
The xinitrc package contains the xinitrc file, a script which is used
to configure your X Window System session or to start a window manager.
©
SA
NS
In
The xinitrc package should be installed if you use the X Window System.
Name
: xmailbox
Relocations: (not relocateable)
Version : 2.5
Vendor: Red Hat Software
Release : 7
Build Date: Mon Mar 22 03:00:47 1999
Install date: Fri Oct 1 11:33:32 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: xmailbox-2.5-7.src.rpm
Size
: 34044
License: MIT
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : An X Window System utility which notifies you of new mail.
Description :
The xmailbox program is an X Window System program which notifies you
whenfingerprint
mail arrives.
Xmailbox
is similar
the xbiff
program,
it A169 4E46
Key
= AF19
FA27 2F94
998DtoFDB5
DE3D
F8B5 but
06E4
offers more features and notification options.
Install the xmailbox package if you'd like a graphical program for X
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
124 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
which will notify you when new mail arrives.
Name
: xpm
Relocations: (not relocateable)
Version : 3.4j
Vendor: Red Hat Software
Release : 5
Build Date: Mon Mar 22 03:19:24 1999
Install date: Fri Oct 1 11:33:34 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: xpm-3.4j-5.src.rpm
Size
: 61615
License: MIT
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A pixmap library for the X Window System.
Description :
The xpm package contains the XPM pixmap library for the X Window
System. The XPM library allows applications to display color,
pixmapped
images,
and FA27
is used2F94
by many
X programs.
Key
fingerprint
= AF19
998Dpopular
FDB5 DE3D
F8B5 06E4 A169 4E46
Name
: xrn
Relocations: (not relocateable)
Version : 9.01
Vendor: Red Hat Software
Release : 3
Build Date: Mon Mar 22 03:26:17 1999
Install date: Fri Oct 1 11:33:34 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Internet
Source RPM: xrn-9.01-3.src.rpm
Size
: 259197
License: Distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : An X Window System based news reader.
Description :
A simple Usenet News reader for the X Window System. Xrn allows you to
point and click your way through reading, replying and posting news
messages.
©
SA
NS
In
sti
tu
te
20
Install the xrn package if you need a simple news reader for X.
Name
: xscreensaver
Relocations: (not relocateable)
Version : 3.09
Vendor: Red Hat Software
Release : 3
Build Date: Thu Apr 15 20:35:38 1999
Install date: Fri Oct 1 11:33:39 1999
Build Host: porky.devel.redhat.com
Group
: Amusements/Graphics
Source RPM: xscreensaver-3.09-3.src.rpm
Size
: 3405538
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.jwz.org/xscreensaver/
Summary : A set of X Window System screensavers.
Description :
The xscreensaver package contains a variety of screensavers for your
mind-numbing, ambition-eroding, time-wasting, hypnotized viewing
pleasure.
Install the xscreensaver package if you need screensavers for use with
the Xfingerprint
Window System.
Key
= AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Name
: yp-tools
Relocations: (not relocateable)
Version : 2.2
Vendor: Red Hat Software
Release : 1
Build Date: Thu Apr 15 23:25:05 1999
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
125 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tai
ns
f
ull
rig
ht
s.
Install date: Fri Oct 1 11:33:43 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: yp-tools-2.2-1.src.rpm
Size
: 164574
License: GNU
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www-vt.uni-paderborn.de/~kukuk/linux/nis.html
Summary : NIS (or YP) client programs.
Description :
The Network Information Service (NIS) is a system which provides network
information (login names, passwords, home directories, group information)
to all of the machines on a network. NIS can enable users to login on
any machine on the network, as long as the machine has the NIS client
programs running and the user's password is recorded in the NIS passwd
database.
NIS was
formerly
as SunFDB5
Yellow
Pages
(YP).
Key
fingerprint
= AF19
FA27known
2F94 998D
DE3D
F8B5
06E4 A169 4E46
Au
th
or
re
This package's NIS implementation is based on FreeBSD's YP and is a
special port for glibc 2.x and libc versions 5.4.21 and later. This
package only provides the NIS client programs. In order to use the
clients, you'll need to already have an NIS server running on your
network. An NIS server is provided in the ypserv package.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Install the yp-tools package if you need NIS client programs for machines
on your network. You will also need to install the ypbind package on
every machine running NIS client programs. If you need an NIS server,
you'll need to install the ypserv package on one machine on the network.
Name
: ypbind
Relocations: (not relocateable)
Version : 3.3
Vendor: Red Hat Software
Release : 20
Build Date: Thu Apr 15 19:02:17 1999
Install date: Fri Oct 1 11:33:45 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: ypbind-3.3-20.src.rpm
Size
: 34016
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The NIS daemon which binds NIS clients to an NIS domain.
Description :
The Network Information Service (NIS) is a system which provides network
information (login names, passwords, home directories, group information)
to all of the machines on a network. NIS can enable users to login on
any machine on the network, as long as the machine has the NIS client
programs running and the user's password is recorded in the NIS passwd
database. NIS was formerly known as Sun Yellow Pages (YP).
This package provides the ypbind daemon. The ypbind daemon binds NIS
clients to an NIS domain. Ypbind must be running on any machines which
are running
NIS=client
Key
fingerprint
AF19programs.
FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Install the ypbind package on any machines which are running NIS client
programs (included in the yp-tools package). If you need an NIS server,
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
126 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
or
re
tai
ns
f
ull
rig
ht
s.
you'll also need to install the ypserv package to a machine on your
network.
Name
: zip
Relocations: /usr
Version : 2.1
Vendor: Red Hat Software
Release : 8
Build Date: Mon Mar 22 04:01:08 1999
Install date: Fri Oct 1 11:33:49 1999
Build Host: porky.devel.redhat.com
Group
: Applications/Archiving
Source RPM: zip-2.1-8.src.rpm
Size
: 222503
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A file compression and packaging utility compatible with PKZIP.
Description :
The zip program is a compression and file packaging utility. Zip is
analogous
to a combination
of2F94
the UNIX
and DE3D
compress
commands
and4E46
is
Key
fingerprint
= AF19 FA27
998Dtar
FDB5
F8B5
06E4 A169
compatible with PKZIP (a compression and file packaging utility for
MS-DOS systems).
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
Install the zip package if you need to compress files using the zip
program.
Name
: zlib
Relocations: (not relocateable)
Version : 1.1.3
Vendor: Red Hat Software
Release : 5
Build Date: Mon Mar 22 04:02:26 1999
Install date: Fri Oct 1 11:33:50 1999 Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: zlib-1.1.3-5.src.rpm
Size
: 62898
License: BSD
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
URL
: http://www.cdrom.com/pub/infozip/zlib/
Summary : The zlib compression and decompression library.
Description :
The zlib compression library provides in-memory compression and
decompression functions, including integrity checks of the uncompressed
data. This version of the library supports only one compression method
(deflation), but other algorithms may be added later, which will have
the same stream interface. The zlib library is used by many different
system programs.
Name
: XFree86-S3
Relocations: (not relocateable)
Version : 3.3.3.1
Vendor: Red Hat Software
Release : 49
Build Date: Sun Apr 18 18:33:43 1999
Install date: Fri Oct 1 11:59:29 1999 Build Host: porky.devel.redhat.com
Group
: User Interface/X Hardware Support Source RPM: XFree86-3.3.3.149.src.rpm
Size
: 2445819
License: MIT
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary
: The
XFree86
server
video
cardsDE3D
basedF8B5
on the06E4
S3 chip.
Key
fingerprint
= AF19
FA27
2F94for
998D
FDB5
A169 4E46
Description :
XFree86-S3 is the X server for video cards based on S3 chips,
including most #9 cards, many Diamond Stealth cards, Orchid Farenheits,
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
127 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
Mirco Crystal 8S, most STB cards, and some motherboards with built-in
graphics accelerators (such as the IBM ValuePoint line). Note that if you
have an S3 ViRGE based video card, you'll need XFree86-S3V instead of
XFree86-S3.
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
If you are installing the X Window System and you have a video card based
on an S3 chip, you should install XFree86-S3. You will also need to
install the XFree86 package, one or more XFree86 fonts packages, the
X11R6-contrib package, the Xconfigurator package and the XFree86-libs
package. And, finally, if you are going to develop applications that
run as X clients, you will also need to install XFree86-devel.
Name
: dhcp
Relocations: (not relocateable)
Version
: 2.0b1pl6
Vendor:
Red
Hat Software
Key
fingerprint
= AF19 FA27 2F94 998D
FDB5
DE3D
F8B5 06E4 A169 4E46
Release : 6
Build Date: Mon Apr 19 13:37:07 1999
Install date: Mon Oct 4 09:52:58 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: dhcp-2.0b1pl6-6.src.rpm
Size
: 222285
License: distributable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A DHCP (Dynamic Host Configuration Protocol) server and relay agent.
Description :
DHCP (Dynamic Host Configuration Protocol) is a protocol which allows
individual devices on an IP network to get their own network
configuration information (IP address, subnetmask, broadcast address,
etc.) from a DHCP server. The overall purpose of DHCP is to make it
easier to administer a large network. The dhcp package includes the DHCP
server and a DHCP relay agent.
©
SA
NS
In
sti
tu
te
You should install dhcp if you want to set up a DHCP server on your
network. You will also need to install the dhcpcd package, which provides
the DHCP client daemon, on client machines.
Name
: squid
Relocations: (not relocateable)
Version : 2.2.STABLE1
Vendor: Red Hat Software
Release : 1
Build Date: Sun Apr 18 22:42:30 1999
Install date: Wed Oct 6 12:42:09 1999
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: squid-2.2.STABLE11.src.rpm
Size
: 1869364
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The SQUID proxy caching server.
Description :
Squid is a high-performance proxy caching server for web clients, supporting
FTP, gopher, and HTTP data objects. Unlike traditional caching software,
Squidfingerprint
handles all
requests
in a2F94
single,
non-blocking,
I/O-driven
process.
Key
= AF19
FA27
998D
FDB5 DE3D
F8B5 06E4
A169 4E46
Squid keeps meta data and especially hot objects cached in RAM, caches DNS
lookups, supports non-blocking DNS lookups, and implements negative caching
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
128 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
of failed requests.
ull
rig
ht
s.
Squid supports SSL, extensive access controls, and full request logging. By
using the lightweight Internet Cache Protocol, Squid caches can be arranged
in a hierarchy or mesh for additional bandwidth savings.
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
Squid consists of a main server program squid, a Domain Name System lookup
program dnsserver, a program for retrieving FTP data ftpget, and some
management and client tools. When squid starts up, it spawns a configurable
number of dnsserver processes, each of which can perform a single, blocking
Domain Name System (DNS) lookup. This reduces the amount of time the cache
waits for DNS lookups.
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Squid is derived from the ARPA-funded Harvest project.
Name
: ssh
Relocations: (not relocateable)
Version : 1.2.27
Vendor: Jan "Yenya" Kasprzak <kas@fi.muni.cz>
Release : 5us
Build Date: Wed Jun 9 10:14:51 1999
Install date: Tue Nov 2 17:59:22 1999
Build Host: gloin.fi.muni.cz
Group
: Applications/Internet
Source RPM: ssh-1.2.27-5us.src.rpm
Size
: 427502
License: Non-commercially distributable
Packager : Jan "Yenya" Kasprzak <kas@fi.muni.cz>
URL
: http://www.cs.hut.fi/ssh/
Summary : Secure Shell - encrypts network communications.
Description :
Ssh (Secure Shell) a program for logging into a remote machine and for
executing commands in a remote machine. It is intended to replace
rlogin and rsh, and provide secure encrypted communications between
two untrusted hosts over an insecure network. X11 connections and
arbitrary TCP/IP ports can also be forwarded over the secure channel.
NS
In
sti
The 'i' form of the package is compiled with internal RSAREF and is
recommended for use outside the USA, the 'us' form is compiled for
external RSAREF and should be used within the USA. The 'us' version
does not have the IDEA encryption compiled in.
©
SA
This is a base package. You will need to install at least one of
ssh-clients and ssh-server to really use ssh.
Name
: ssh-clients
Relocations: (not relocateable)
Version : 1.2.27
Vendor: Jan "Yenya" Kasprzak <kas@fi.muni.cz>
Release : 5us
Build Date: Wed Jun 9 10:14:51 1999
Install date: Tue Nov 2 18:00:02 1999
Build Host: gloin.fi.muni.cz
Group
: Applications/Internet
Source RPM: ssh-1.2.27-5us.src.rpm
Size fingerprint
: 445576
Non-commercially
distributable
Key
= AF19 FA27 2F94License:
998D FDB5
DE3D F8B5 06E4
A169 4E46
Packager : Jan "Yenya" Kasprzak <kas@fi.muni.cz>
URL
: http://www.cs.hut.fi/ssh/
Summary : Clients for connecting to Secure Shell servers
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
129 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Description :
This package includes the clients necessary to make encrypted connections
to SSH servers.
Name
: ssh-extras
Relocations: (not relocateable)
Version : 1.2.27
Vendor: Jan "Yenya" Kasprzak <kas@fi.muni.cz>
Release : 5us
Build Date: Wed Jun 9 10:14:51 1999
Install date: Tue Nov 2 18:00:13 1999
Build Host: gloin.fi.muni.cz
Group
: Applications/Internet
Source RPM: ssh-1.2.27-5us.src.rpm
Size
: 45352
License: Non-commercially distributable
Packager : Jan "Yenya" Kasprzak <kas@fi.muni.cz>
URL
: http://www.cs.hut.fi/ssh/
Summary : Extra command for the secure shell protocol suite
Description
: = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Key
fingerprint
This package contains the make_ssh_known_hosts perl script,
the ssh-askpass command and its documentation. They were moved
to the separate package to allow clean install of ssh even
on X11-less and perl-less machines (make_ssh_known_hosts is a perl script
and ssh-askpass uses X11 libraries.
Name
: ssh-server
Relocations: (not relocateable)
Version : 1.2.27
Vendor: Jan "Yenya" Kasprzak <kas@fi.muni.cz>
Release : 5us
Build Date: Wed Jun 9 10:14:51 1999
Install date: Tue Nov 2 18:00:21 1999
Build Host: gloin.fi.muni.cz
Group
: System Environment/Daemons Source RPM: ssh-1.2.27-5us.src.rpm
Size
: 244169
License: Non-commercially distributable
Packager : Jan "Yenya" Kasprzak <kas@fi.muni.cz>
URL
: http://www.cs.hut.fi/ssh/
Summary : Secure Shell protocol server (sshd)
Description :
This package contains the secure shell daemon and its documentation.
The sshd is the server part of the secure shell protocol and allows
ssh clients to connect to your host.
Name
: MySQL-client
Relocations: (not relocateable)
Version : 3.22.29
Vendor: (none)
Release : 1
Build Date: Sat Jan 1 14:24:27 2000
Install date: Thu Jan 6 15:04:53 2000
Build Host: www2.analytikerna.se
Group
: Applications/Databases
Source RPM: MySQL-3.22.29-1.src.rpm
Size
: 7162227
License: MySQL FREE PUBLIC LICENSE (See the
file PUBLIC)
Packager : David Axmark <david@mysql.com>
URL
: http://www.mysql.com/
Summary : MySQL - Client
Description :
This fingerprint
package contains
standard
clients.
Key
= AF19the
FA27
2F94 MySQL
998D FDB5
DE3D F8B5 06E4 A169 4E46
For a description of MySQL see the base MySQL RPM or http://www.mysql.com
Name
: php-pg-mysql
Relocations: (not relocateable)
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
130 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Version : 3.0.13
Vendor: (none)
Release : 1
Build Date: Sat Jan 1 13:40:56 2000
Install date: Thu Jan 6 20:33:29 2000
Build Host: triton.pricegrabber.com
Group
: System Environment/Daemons Source RPM: php-pg-3.0.13-1.src.rpm
Size
: 26164
License: GPL
Packager : Rob McMillin <rlm@pricegrabber.com>
Summary : MySQL database module for PHP3.
Description :
This is a dynamic shared object (DSO) for Apache that will add MySQL
database support to PHP3. If you need back-end support for MySQL,
you should install this package in addition to the main php package.
Name
: mod_perl
Relocations: (not relocateable)
Version
: 1.19= AF19 FA27 2F94 Vendor:
Red DE3D
Hat Software
Key
fingerprint
998D FDB5
F8B5 06E4 A169 4E46
Release : 2
Build Date: Fri Apr 16 17:19:01 1999
Install date: Wed Jan 5 20:56:43 2000 Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: mod_perl-1.19-2.src.rpm
Size
: 1595244
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : A Perl interpreter for the Apache Web server.
Description :
Mod_perl incorporates a Perl interpreter into the Apache web
server, so that the Apache web server can directly execute Perl
code. Mod_perl links the Perl runtime library into the Apache
web server and provides an object-oriented Perl interface for
Apache's C language API. The end result is a quicker CGI script
turnaround process, since no external Perl interpreter has to
be started.
©
SA
NS
In
sti
tu
Install mod_perl if you're installing the Apache web server and
you'd like for it to directly incorporate a Perl interpreter.
Name
: MySQL
Relocations: (not relocateable)
Version : 3.22.29
Vendor: (none)
Release : 1
Build Date: Sat Jan 1 14:24:27 2000
Install date: Thu Jan 6 15:01:18 2000
Build Host: www2.analytikerna.se
Group
: Applications/Databases
Source RPM: MySQL-3.22.29-1.src.rpm
Size
: 16723764
License: MySQL FREE PUBLIC LICENSE (See the
file PUBLIC)
Packager : David Axmark <david@mysql.com>
URL
: http://www.mysql.com/
Summary : MySQL: a very fast and reliable SQL database engine
Description :
MySQL is a true multi-user, multi-threaded SQL (Structured Query
Language)
database
server.
MySQL
is a client/server
implementation
Key
fingerprint
= AF19
FA27
2F94 998D
FDB5 DE3D
F8B5 06E4 A169 4E46
that consists of a server daemon (mysqld) and many different client
programs/libraries.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
131 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
The main goals of MySQL are speed, robustness and ease of use. MySQL
was originally developed because we needed a SQL server that could
handle very big databases with magnitude higher speed than what any
database vendor could offer to us. And since we did not need all the
features that made their server slow we made our own. We have now been
using MySQL since 1996 in a environment with more than 40 databases,
10,000 tables, of which more than 500 have more than 7 million
rows. This is about 200G of data.
tai
ns
f
The base upon which MySQL is built is a set of routines that have been
used in a highly demanding production environment for many
years. While MySQL is still in development, it already offers a rich
and highly
useful
function
set.2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Key
fingerprint
= AF19
FA27
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
See the documentation for more information
Name
: freetype-devel
Relocations: (not relocateable)
Version : 1.2
Vendor: Red Hat Software
Release : 7
Build Date: Thu Aug 19 10:51:16 1999
Install date: Thu Jan 6 20:59:46 2000
Build Host: porky.devel.redhat.com
Group
: Development/Libraries
Source RPM: freetype-1.2-7.src.rpm
Size
: 524194
License: BSD-like
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : Header files and static library for development with FreeType.
Description :
This package is only needed if you intend to develop or
compile applications which rely on the FreeType library.
If you simply want to run existing applications, you won't
need this package.
Name
: php-pg
Relocations: (not relocateable)
Version : 3.0.13
Vendor: (none)
Release : 1
Build Date: Sat Jan 1 13:40:56 2000
Install date: Thu Jan 6 20:33:16 2000
Build Host: triton.pricegrabber.com
Group
: System Environment/Daemons Source RPM: php-pg-3.0.13-1.src.rpm
Size
: 786085
License: GPL
Packager : Rob McMillin <rlm@pricegrabber.com>
Summary : The PHP HTML-embedded scripting language for use with Apache.
Description :
PHP is an HTML-embedded scripting language. PHP attempts to make it
easy for developers to write dynamically generated web pages. PHP
also offers built-in database integration for several commercial and
non-commercial database management systems, so writing a
database-enabled web page with PHP is fairly simple. The most common
use of
PHP coding
is probably
as a replacement
CGIF8B5
scripts.
TheA169 4E46
Key
fingerprint
= AF19
FA27 2F94
998D FDB5 for
DE3D
06E4
mod_php module enables the Apache web server to understand and process
the embedded PHP language in web pages.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
132 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
ull
rig
ht
s.
This package contains PHP. If you use applications which specifically
rely on PHP/FI (PHP v2 and earlier), you should instead
install the PHP/FI module contained in the phpfi package. If you're
just starting with PHP, you should install this package. You'll also
need to install the Apache web server.
©
SA
NS
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
This is a Pricegrabber custom RPM.
Name
: krb5-configs
Relocations: (not relocateable)
Version : 1.1.1
Vendor: Red Hat, Inc.
Release : 21
Build Date: Thu Jun 15 10:12:53 2000
Install date: Wed Jun 21 17:48:56 2000
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: krb5-1.1.1-21.src.rpm
Size fingerprint
: 1644 = AF19 FA27 2F94
License:
MIT, freely
Key
998D FDB5
DE3Ddistributable.
F8B5 06E4 A169 4E46
Packager : Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla>
URL
: http://web.mit.edu/kerberos/www/
Summary : Kerberos 5 sample configuration file(s).
Description :
Kerberos is a trusted-third-party authentication system. This package
contains sample configuration files for Kerberos 5 clients.
Name
: openldap-devel
Relocations: (not relocateable)
Version : 1.2.9
Vendor: Red Hat, Inc.
Release : 5
Build Date: Mon Feb 14 11:22:55 2000
Install date: Wed Mar 15 22:34:53 2000
Build Host: porky.devel.redhat.com
Group
: Development/Libraries
Source RPM: openldap-1.2.9-5.src.rpm
Size
: 245365
License: Artistic
Packager : Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla>
URL
: http://www.openldap.org/
Summary : OpenLDAP development libraries and header files.
Description :
The openldap-devel package includes the development libraries and
header files needed for compiling applications that use LDAP
(Lightweight Directory Access Protocol) internals. LDAP is a set of
protocols for enabling directory services over the Internet. Install
this package only if you plan to develop or will need to compile
customized LDAP clients.
Name
: php-pg-manual
Relocations: (not relocateable)
Version : 3.0.13
Vendor: (none)
Release : 1
Build Date: Sat Jan 1 13:40:56 2000
Install date: Thu Jan 6 20:40:17 2000
Build Host: triton.pricegrabber.com
Group
: System Environment/Daemons Source RPM: php-pg-3.0.13-1.src.rpm
Size
: 2672925
License: GPL
Packager : Rob McMillin <rlm@pricegrabber.com>
Summary
: On-line
for PHP3
Key
fingerprint
= AF19manual
FA27 2F94
998D FDB5 DE3D F8B5 06E4 A169 4E46
Description :
Comprehensive documentation for PHP3, viewable through any web
browser.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
133 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
Name
: apache
Relocations: (not relocateable)
Version : 1.3.9
Vendor: Red Hat Software
Release : 4
Build Date: Tue Sep 21 09:46:41 1999
Install date: Thu Jan 6 20:54:33 2000
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: apache-1.3.9-4.src.rpm
Size
: 2439994
License: Freely distributable and usable
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary : The most widely used Web server on the Internet.
Description :
Apache is a powerful, full-featured, efficient and freely-available
Web server. Apache is also the most popular Web server on the
Internet.
Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46
Install the apache package if you need a Web server.
Name
: openldap
Relocations: (not relocateable)
Version : 1.2.9
Vendor: Red Hat, Inc.
Release : 5
Build Date: Mon Feb 14 11:22:55 2000
Install date: Wed Mar 15 22:34:25 2000
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: openldap-1.2.9-5.src.rpm
Size
: 3458641
License: Artistic
Packager : Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla>
URL
: http://www.openldap.org/
Summary : LDAP servers, libraries, utilities, tools and sample clients.
Description :
OpenLDAP is an open source suite of LDAP (Lightweight Directory Access
Protocol) applications and development tools. LDAP is a set of
protocols for accessing directory services (usually phone book style
information, but other information is possible) over the Internet,
similar to the way DNS (Domain Name System) information is propagated
over the Internet. The suite includes a stand-alone LDAP server
(slapd), a stand-alone LDAP replication server (slurpd), libraries for
implementing the LDAP protocol, utilities, tools, and sample clients.
©
SA
NS
Install openldap if you need LDAP applications and tools.
Name
: pam_ldap
Relocations: (not relocateable)
Version : 36
Vendor: Red Hat Software
Release : 1
Build Date: Tue Aug 10 22:39:08 1999
Install date: Wed Mar 15 23:08:20 2000
Build Host: porky.devel.redhat.com
Group
: System Environment/Base
Source RPM: pam_ldap-36-1.src.rpm
Size
: 109267
License: LGPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
URL
: http://www.padl.com/
Summary
: LDAP
Pluggable
Authentication
Key
fingerprint
= AF19
FA27 2F94
998D FDB5Module
DE3D F8B5 06E4 A169 4E46
Description :
This is pam_ldap, a pluggable authentication module that can be used with
linux-PAM. This module supports password changes, V2 clients, Netscapes SSL,
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
134 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
In
sti
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
ypldapd, Netscape Directory Server password policies, access authorization,
crypted hashes, etc.
Name
: krb5-libs
Relocations: (not relocateable)
Version : 1.1.1
Vendor: Red Hat, Inc.
Release : 21
Build Date: Thu Jun 15 10:12:53 2000
Install date: Wed Jun 21 17:50:14 2000
Build Host: porky.devel.redhat.com
Group
: System Environment/Libraries Source RPM: krb5-1.1.1-21.src.rpm
Size
: 1333298
License: MIT, freely distributable.
Packager : Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla>
URL
: http://web.mit.edu/kerberos/www/
Summary : Kerberos 5 shared libraries.
Description :
Kerberos
is a trusted-third-party
authentication
for the
Key
fingerprint
= AF19 FA27 2F94
998D FDB5system,
DE3D named
F8B5 06E4
A169 4E46
three-headed watchdog from Greek mythology who guarded the entrance to
the underworld. This package contains the Kerberos 5 shared libraries,
which are used by programs compiled with support for using Kerberos.
Most people should install this package.
Name
: imap
Relocations: (not relocateable)
Version : 4.7
Vendor: Red Hat, Inc.
Release : 5
Build Date: Wed Mar 1 17:47:59 2000
Install date: Wed Jun 21 17:50:42 2000
Build Host: porky.devel.redhat.com
Group
: System Environment/Daemons Source RPM: imap-4.7-5.src.rpm
Size
: 1908299
License: BSD
Packager : Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla>
Summary : Server daemons for IMAP and POP network mail protocols.
Description :
The imap package provides server daemons for both the IMAP (Internet
Message Access Protocol) and POP (Post Office Protocol) mail access
protocols. The POP protocol uses a "post office" machine to collect
mail for users and allows users to download their mail to their local
machine for reading. The IMAP protocol allows a user to read mail on a
remote machine without downloading it to their local machine.
©
SA
NS
Install the imap package if you need a server to support the IMAP or
the POP mail access protocols.
Name
: lsof
Relocations: /usr
Version : 4.42
Vendor: Red Hat Software
Release : 1
Build Date: Thu Apr 8 14:00:53 1999
Install date: Wed Aug 9 11:48:22 2000
Build Host: porky.devel.redhat.com
Group
: Development/Debuggers
Source RPM: lsof-4.42-1.src.rpm
Size
: 562631
License: Free
Packager : Red Hat Software <http://developer.redhat.com/bugzilla>
Summary
: Lists
files FA27
open by
processes
Key
fingerprint
= AF19
2F94
998D FDB5 DE3D F8B5 06E4 A169 4E46
Description :
Lsof's name stands for LiSt Open Files, and it does just that. It lists
information about files that are open by the processes running on a UNIX
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
135 of 136
Author retains full rights.
DHCP Server Security Audit
Gary Worthy
tu
te
20
00
-2
00
2,
Au
th
or
re
tai
ns
f
ull
rig
ht
s.
system.
Name
: perl-libnet
Relocations: (not relocateable)
Version : 1.0605
Vendor: Kirk Bauer <kirk@kaybee.org>
Release : 2
Build Date: Wed Nov 18 16:23:36 1998
Install date: Wed Aug 9 12:08:46 2000 Build Host: quick.kaybee.org
Group
: Utilities/Text
Source RPM: perl-libnet-1.0605-2.src.rpm
Size
: 300866
License: Freeware
Packager : Red Hat Contrib|Net <rhcn-bugs@redhat.com>
URL
: http://www.kaybee.org/~kirk/html/linux.html
Summary : Perl LIBNET module
Description :
libnet is a collection of Perl modules which provides a simple
and consistent
(API)
to the
clientF8B5
side 06E4 A169 4E46
Key
fingerprintprogramming
= AF19 FA27interface
2F94 998D
FDB5
DE3D
of various protocols used in the internet community.
Name
: dialog
Relocations: (not relocateable)
Version : 0.6
Vendor: Red Hat Software
Release : 14
Build Date: Sun Mar 21 14:03:58 1999
Install date: Wed Aug 9 12:24:25 2000
Build Host: porky.devel.redhat.com
Group
: Applications/System
Source RPM: dialog-0.6-14.src.rpm
Size
: 90821
License: GPL
Packager : Red Hat Software <http://developer.redhat.com/bugzilla/>
Summary : A utility for creating TTY dialog boxes.
Description :
Dialog is a utility that allows you to show dialog boxes (containing
questions or messages) in TTY (text mode) interfaces. Dialog is called
from within a shell script. The following dialog boxes are implemented:
yes/no, menu, input, message, text, info, checklist, radiolist, and
gauge.
©
SA
NS
In
sti
Install dialog if you would like to create TTY dialog boxes.
Name
: autorpm
Relocations: (not relocateable)
Version : 1.9.8.4
Vendor: Kirk Bauer <kirk@kaybee.org>
Release : 2
Build Date: Sun Jan 9 18:42:32 2000
Install date: Wed Aug 9 12:24:32 2000
Build Host: ns.kaybee.org
Group
: Utilities/System
Source RPM: autorpm-1.9.8.4-2.src.rpm
Size
: 209494
License: GPL
Packager : Kirk Bauer <kirk@kaybee.org>
URL
: http://www.kaybee.org/~kirk/html/linux.html
Summary : RPM Auto-Installer or FTP Mirrorer
Description :
AutoRPM is a program that can do any combination of the following: mirror RPMs
from an FTP site, keep installed RPMs consistent with an FTP site or local
directory,
and keep
installed
a cluster
network
of systems
consisKey
fingerprint
= AF19
FA27RPMs
2F94 in
998D
FDB5orDE3D
F8B5
06E4 A169
4E46
tent. It is highly flexible and even contains a very nice, menu-driven
Interactive-Install mode.
© SANS Institute 2000 - 2002
As part of GIAC practical repository.
136 of 136
Author retains full rights.
Last Updated: June 9th, 2017
Upcoming Training
SANS London July 2017
Jul 03, 2017 - Jul 08, 2017
Live Event
SANSFIRE 2017
London, United
Kingdom
Washington, DC
Jul 22, 2017 - Jul 29, 2017
Live Event
SANS Network Security 2017
Las Vegas, NV
Sep 10, 2017 - Sep 17, 2017
Live Event
SANS OnDemand
Online
Anytime
Self Paced
SANS SelfStudy
Books & MP3s Only
Anytime
Self Paced
Was this manual useful for you? yes no
Thank you for your participation!

* Your assessment is very important for improving the work of artificial intelligence, which forms the content of this project

Download PDF

advertising