Differences between revisions 1 and 2
Revision 1 as of 2006-10-20 06:17:58
Size: 2153
Editor: gordian
Comment: First draft
Revision 2 as of 2006-10-20 06:19:33
Size: 2212
Editor: gordian
Comment: add link to LP
Deletions are marked like this. Additions are marked like this.
Line 6: Line 6:
 * '''Launchpad entry''': none yet  * '''Launchpad entry''':

Please check the status of this specification in Launchpad before editing it. If it is Approved, contact the Assignee or another knowledgeable person before making changes.


This is a leftover from Dapper server spec.


A lot of sysadmins have the need to do lightweight intrusion detection to ensure system integrity. system-integrity-check provides a way to at least verify a big set of data on an installed system to ensure that main set of tools have not been compromised. The checker is *NOT* a replacement for a full intrusion detection system.

Use cases

  • Elmo wants to verify that all the binaries on a certain system are still ok. He knows that system-integrity-check can do that offline using a trusted source of data ( Once verified that the main set of binaries are still intact, he will be able to reinstall whatever is corrupted or compromised with very little effort due to the detailed report that's generated by the scan. He is also aware that not everything can be checked, but at least the system is safe enough to be accessible.


  • Infrastructure at the datacenter ( is now available and updated automatically.
  • system-integrity-check code is in the archive and hooked up to rescue d-i boot option.
  • move system-integrity-check to main and make it part of cd images.
  • add more checks to system-integrity-check:
    • check for orphaned files.
    • add SHA1 checks (does it add anything compared to md5)?
    • attempt to not rely on dpkg database on the installed system.

Unresolved issues

  • Abstracting the tool from the dpkg db on the installed system is not trivial and might end up in tons of false positive. is it actually worth doing it? also in front of the fact that the system will need a reinstall if such db is compromised.

BoF agenda and discussion


IntegrityCheck (last edited 2008-08-06 16:14:39 by localhost)