To verify all RPMs installed on a system you can do something like: rpm -V `rpm -qa` You should get a lot of messages about files modified or different in various ways. See "man rpm" and search for "VERIFY OPTIONS" to find the meanings of the flags that show up to the left of the file path. You might want to send the output to a file ( with "> rpmV.out" ) to collect it before examining. You can ignore log files or various status files that show up here like /var/lib/nfs/rmtab, /var/log/messages, /var/log/wtmp, ... Look for executables or config files that may have changed like /etc/ssh/sshd_config, /usr/bin/ssh, /bin/ls ... ... one example output line from "rpm -V `rpm -qa`" ... S.5....T c /var/lib/nfs/rmtab ... If you see a suspicious file modification and you want to know what package contains that file you can do: rpm -qf /var/lib/nfs/rmtab Randall -- On Thu, 30 Sep 2004, Josep L. Guallar-Esteve wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Thursday 30 September 2004 01:50 pm, Jiann-Ming Su wrote: > > Is there a md5sum for all the files in the FC1 distribution? I know > > there's md5sums for the iso and rpm packages. But, I'm looking for > > md5sum for each of the files. > > There is a built-in fle checking system in rpm-based systems. To check if > files have been modified since 'foobar' was installed, use: > > rpm -V foobar > > > > Regards, > Josep > - -- > Josep L. Guallar-Esteve Eastern Radiologists, Inc. > Systems and PACS Administration http://www.easternrad.com > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.2.4 (GNU/Linux) > > iD8DBQFBXEr8SGQa4/zQ9e8RAswyAKCEaQnCcYcldKhd3nvhzKEM3Wnq0wCfcJt5 > D9T1pV0JgHEUoODv5ND88yU= > =5lCs > -----END PGP SIGNATURE----- > > > -- > > fedora-legacy-list@xxxxxxxxxx > http://www.redhat.com/mailman/listinfo/fedora-legacy-list > -- fedora-legacy-list@xxxxxxxxxx http://www.redhat.com/mailman/listinfo/fedora-legacy-list
