N: X: chkrootkit source: debian-watch-does-not-check-openpgp-signature [debian/watch] N: N: This watch file does not specify a means to verify the upstream tarball N: using a cryptographic signature. N: N: If upstream distributions provides such signatures, please use the N: pgpsigurlmangle options in this watch file's opts= to generate the URL of N: an upstream OpenPGP signature. This signature is automatically downloaded N: and verified against a keyring stored in debian/upstream/signing-key.asc N: N: Of course, not all upstreams provide such signatures but you could request N: them as a way of verifying that no third party has modified the code after N: its release (projects such as phpmyadmin, unrealircd, and proftpd have N: suffered from this kind of attack). N: N: Please refer to the uscan(1) manual page for details. N: N: Visibility: pedantic N: Show-Always: no N: Check: debian/watch N: Renamed from: debian-watch-does-not-check-gpg-signature N: debian-watch-may-check-gpg-signature N: This tag is experimental. N: N: X: chkrootkit: executable-in-usr-lib [usr/lib/chkrootkit/check_if_debian] N: N: The package ships an executable file in /usr/lib. N: N: Please move the file to /usr/libexec. N: N: With policy revision 4.1.5, Debian adopted the Filesystem Hierarchy N: Specification (FHS) version 3.0. N: N: The FHS 3.0 describes /usr/libexec. Please use that location for N: executables. N: N: Please refer to File System Structure (Section 9.1.1) in the Debian Policy N: Manual, filesystem-hierarchy, N: https://refspecs.linuxfoundation.org/FHS_3.0/fhs/ch04s07.html, and N: Bug#954149 for details. N: N: Visibility: pedantic N: Show-Always: no N: Check: files/permissions/usr-lib N: This tag is experimental. N: N: Screen: emacs/elpa/scripts N: Advocates: "David Bremner" N: Reason: The emacsen-common package places installation and removal N: scripts, which for ELPA packages are executable, in the folder N: /usr/lib/emacsen-common/packages. N: N: About four hundred installation packages are affected. All of N: them declare emacsen-common as an installation prerequisite. N: N: Read more in Bug#974175 and Bug#954149. N: N: Screen: web/cgi/scripts N: Advocates: "Andrius Merkys" N: Reason: The folder /usr/lib/cgi-bin/ is designated for scripts in the N: Common Gateway Interface (CGI). They require the executable bit N: so the server can run them. N: N: Read more in N: https://en.wikipedia.org/wiki/Common_Gateway_Interface, N: https://datatracker.ietf.org/doc/html/rfc3875.html, and N: Bug#1003941. N: N: X: chkrootkit: executable-in-usr-lib [usr/lib/chkrootkit/check_php] N: X: chkrootkit: executable-in-usr-lib [usr/lib/chkrootkit/check_wtmpx] N: X: chkrootkit: executable-in-usr-lib [usr/lib/chkrootkit/chkdirs] N: X: chkrootkit: executable-in-usr-lib [usr/lib/chkrootkit/chklastlog] N: X: chkrootkit: executable-in-usr-lib [usr/lib/chkrootkit/chkproc] N: X: chkrootkit: executable-in-usr-lib [usr/lib/chkrootkit/chkutmp] N: X: chkrootkit: executable-in-usr-lib [usr/lib/chkrootkit/chkwtmp] N: X: chkrootkit: executable-in-usr-lib [usr/lib/chkrootkit/ifpromisc] N: X: chkrootkit: executable-in-usr-lib [usr/lib/chkrootkit/strings-static] N: X: chkrootkit source: upstream-metadata-file-is-missing N: N: This source package is not Debian-native but it does not have a N: debian/upstream/metadata file. N: N: The Upstream MEtadata GAthered with YAml (UMEGAYA) project is an effort to N: collect meta-information about upstream projects from any source package. N: This file is in YAML format and it is used in to feed the data in the N: UltimateDebianDatabase. For example, it can contains the way the authors N: want their software be cited in publications and some bibliographic N: references about the software. N: N: Please add a debian/upstream/metadata file. N: N: Please refer to https://dep-team.pages.debian.net/deps/dep12/ and N: https://wiki.debian.org/UpstreamMetadata for details. N: N: Visibility: pedantic N: Show-Always: no N: Check: debian/upstream/metadata N: This tag is experimental. N: N: C: chkrootkit source: continuous-integration/salsa/include https://salsa.debian.org/salsa-ci-team/pipeline/raw/master/recipes/debian.yml [debian/salsa-ci.yml] N: N: Include directive in a Salsa CI specification. N: N: Visibility: classification N: Show-Always: no N: Check: continuous-integration/salsa N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit source: continuous-integration/salsa/specification [debian/salsa-ci.yml] N: N: File name likely holding a Salsa CI specification. N: N: Visibility: classification N: Show-Always: no N: Check: continuous-integration/salsa N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit: control-tarball-compression-format xz N: N: This is the compressor format used for the control.tar tarball. N: N: Visibility: classification N: Show-Always: no N: Check: deb-format N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit-dbgsym: control-tarball-compression-format xz N: C: chkrootkit: ctrl-script [postinst] N: N: This package has one or more maintainer scripts (or other executable N: control files). N: N: This flags any control file with the executable bit set. N: N: Visibility: classification N: Show-Always: no N: Check: control-files N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit: ctrl-script [postrm] N: C: chkrootkit: ctrl-script [prerm] N: C: chkrootkit: data-tarball-compression-format xz N: N: This is the compressor format used for the data.tar tarball. N: N: Visibility: classification N: Show-Always: no N: Check: deb-format N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit-dbgsym: data-tarball-compression-format xz N: C: chkrootkit: debhelper-autoscript-in-maintainer-scripts dh_installsystemd/13.24.1 N: N: The maintainer scripts of the package contain one or more auto-generated N: shell snippets inserted by the listed debhelper tool. N: N: Visibility: classification N: Show-Always: no N: Check: maintainer-scripts/generated N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit source: debhelper-compat-level 13 N: N: This is the debhelper compat level used specified by this package. N: N: Visibility: classification N: Show-Always: no N: Check: debhelper N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit source: debhelper-compat-virtual-relation 13 [debian/control] N: N: This package is using the debhelper-compat virtual package as a N: build-dependency. N: N: Visibility: classification N: Show-Always: no N: Check: debhelper N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit source: debian-build-system dh [debian/rules] N: N: This is the build system that Lintian believes the package is using. N: N: Visibility: classification N: Show-Always: no N: Check: debhelper N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit source: debian-watch-file-standard 4 [debian/watch] N: N: The watch file uses this version standard. The currently known watch file N: versions are 2, 3 and 4. Version 1 means it was undeclared. N: N: Please refer to the uscan(1) manual page for details. N: N: Visibility: classification N: Show-Always: no N: Check: debian/watch/standard N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit source: mail-contact Maintainer "Debian Security Tools" N: N: This person is a contact in the named group for this package. N: N: Visibility: classification N: Show-Always: no N: Check: fields/mail-address N: Renamed from: maintainer uploader N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit source: mail-contact Uploaders "Marcos Fouces" N: C: chkrootkit: mail-contact Maintainer "Debian Security Tools" N: C: chkrootkit-dbgsym: mail-contact Maintainer "Debian Security Tools" N: C: chkrootkit: maintainer-script-interpreter /bin/sh [postinst] N: N: Interpreter used in maintainer script or ELF N: N: Visibility: classification N: Show-Always: no N: Check: scripts N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit: maintainer-script-interpreter /bin/sh [postrm] N: C: chkrootkit: maintainer-script-interpreter /bin/sh [prerm] N: C: chkrootkit-dbgsym: no-ctrl-scripts N: N: The package does not rely on any maintainer scripts (or other executable N: control files). N: N: Visibility: classification N: Show-Always: no N: Check: control-files N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit source: number-of-patches 88 [debian/patches/series] N: N: The number of patches according to the debian/patches/series file. N: N: Visibility: classification N: Show-Always: no N: Check: debian/patches/count N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit source: package-is-team-maintained team+pkg-security@tracker.debian.org (with 1 uploaders) N: N: The package is team-maintained according to the maintainer/uploaders N: fields in the debian/control file. N: N: Visibility: classification N: Show-Always: no N: Check: fields/vcs N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit: package-is-team-maintained team+pkg-security@tracker.debian.org (with 0 uploaders) N: C: chkrootkit-dbgsym: package-is-team-maintained team+pkg-security@tracker.debian.org (with 0 uploaders) N: C: chkrootkit source: patch-system quilt N: N: This package uses the specified patch system (eg. "quilt" or "dpatch"). N: N: Visibility: classification N: Show-Always: no N: Check: debian/patches N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit source: rules-do-not-require-root [debian/control:11] N: N: The sources can build the installation packages without using fakeroot(1) N: or similar. N: N: Please refer to usr/share/doc/dpkg/spec/rootless-builds.txt, debian/rules N: and Rules-Requires-Root (Section 4.9.2) in the Debian Policy Manual, and N: Rules-Requires-Root (Section 5.6.31) in the Debian Policy Manual for N: details. N: N: Visibility: classification N: Show-Always: no N: Check: debian/control/field/rules-requires-root N: Renamed from: rules-does-not-require-root N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit source: source-format 3.0 (quilt) N: N: This is the source format declared in the package. N: N: Visibility: classification N: Show-Always: no N: Check: debian/source-dir N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit source: standards-version 4.7.0 N: N: The standards version of the package according to Standards-Version field N: in the debian/control file. N: N: Visibility: classification N: Show-Always: no N: Check: fields/standards-version N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit source: trimmed-deb822-field §1 Build-Depends debhelper-compat (= 13), [debian/control:7] N: N: The raw but trimmed contents of the named field in the given Deb822 file. N: The number indicates the section from the top, starting at 1. N: N: Visibility: classification N: Show-Always: no N: Check: fields/deb822 N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit source: trimmed-deb822-field §1 Homepage https://www.chkrootkit.org/ [debian/control:8] N: C: chkrootkit source: trimmed-deb822-field §1 Maintainer Debian Security Tools [debian/control:4] N: C: chkrootkit source: trimmed-deb822-field §1 Priority optional [debian/control:3] N: C: chkrootkit source: trimmed-deb822-field §1 Rules-Requires-Root no [debian/control:11] N: C: chkrootkit source: trimmed-deb822-field §1 Section misc [debian/control:2] N: C: chkrootkit source: trimmed-deb822-field §1 Source chkrootkit [debian/control:1] N: C: chkrootkit source: trimmed-deb822-field §1 Standards-Version 4.7.0 [debian/control:6] N: C: chkrootkit source: trimmed-deb822-field §1 Uploaders Marcos Fouces , [debian/control:5] N: C: chkrootkit source: trimmed-deb822-field §1 Vcs-Browser https://salsa.debian.org/pkg-security-team/chkrootkit [debian/control:10] N: C: chkrootkit source: trimmed-deb822-field §1 Vcs-Git https://salsa.debian.org/pkg-security-team/chkrootkit.git [debian/control:9] N: C: chkrootkit source: trimmed-deb822-field §2 Architecture any [debian/control:14] N: C: chkrootkit source: trimmed-deb822-field §2 Built-Using ${Built-Using}, [debian/control:15] N: C: chkrootkit source: trimmed-deb822-field §2 Depends ${misc:Depends}, ${shlibs:Depends}, [debian/control:16] N: C: chkrootkit source: trimmed-deb822-field §2 Description rootkit detector\n The chkrootkit security scanner searches for signs that the system is\n infected with a 'rootkit'. Rootkits are a form of malware that seek\n to exploit security flaws to grant unauthorised access to a\n computer or its services, generally for malicious purposes.\n .\n chkrootkit can identify signs of over 70 different rootkits (see the\n project's website for a list).\n .\n Please note that an automated tool like chkrootkit can never\n guarantee a system is uncompromised. Nor does every report always\n signify a genuine problem: human judgement and further investigation\n will always be needed to assure the security of your system. [debian/control:80] N: C: chkrootkit source: trimmed-deb822-field §2 Enhances bcron,\n biff,\n bind9,\n bsdextrautils,\n busybox-syslogd,\n citadel-server,\n coreutils,\n courier-mta,\n cron,\n cronie,\n dma,\n esmtp-run,\n exim4-daemon-heavy,\n exim4-daemon-light,\n fetchmail,\n findutils,\n fingerd,\n finit-sysv,\n gpm,\n grep,\n hdparm,\n inetutils-syslogd,\n inetutils-telnetd,\n login,\n lsof,\n mailutils,\n masqmail,\n mingetty,\n msmtp-mta,\n net-tools,\n nullmailer,\n openbsd-inetd,\n opensmtpd,\n openssh-client,\n openssh-server,\n passwd,\n postfix,\n procps,\n psmisc,\n rpcbind,\n rsh-redone-server,\n runit-init,\n rust-findutils,\n ssmtp,\n systemd-cron,\n systemd-sysv,\n sysvinit-core,\n sysvinit-utils,\n tar,\n tcm,\n tcpd,\n tcpdump,\n traceroute,\n util-linux,\n wtmpdb, [debian/control:24] N: C: chkrootkit source: trimmed-deb822-field §2 Package chkrootkit [debian/control:13] N: C: chkrootkit source: trimmed-deb822-field §2 Recommends binutils,\n default-mta | mail-transport-agent,\n iproute2 | net-tools,\n mailx,\n procps,\n systemd-sysv | cron | anacron | cron-daemon, [debian/control:17] N: C: chkrootkit source: trimmed-field Architecture any N: N: These are the raw but trimmed contents of the named field in the package's N: primary control file. N: N: Visibility: classification N: Show-Always: no N: Check: fields/trimmed N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit source: trimmed-field Binary chkrootkit N: C: chkrootkit source: trimmed-field Build-Depends debhelper-compat (= 13) N: C: chkrootkit source: trimmed-field Checksums-Sha1 bbcf3e9417ef648ba1872954588c113fcbcbbf2f 42957 chkrootkit_0.58b.orig.tar.gz\n fb0bc2e571cbe9e8db7714f6c87965a1f6ee6648 89376 chkrootkit_0.58b-4.debian.tar.xz N: C: chkrootkit source: trimmed-field Checksums-Sha256 75ed2ace81f0fa3e9c3fb64dab0e8857ed59247ea755f5898416feb2c66807b9 42957 chkrootkit_0.58b.orig.tar.gz\n d6492d1193c3aa9a242711cd925c2c5f6dda85a9cbf703e33715d86af98d6b65 89376 chkrootkit_0.58b-4.debian.tar.xz N: C: chkrootkit source: trimmed-field Files de110f07f37b1b5caff2e90cc6172dd8 42957 chkrootkit_0.58b.orig.tar.gz\n fce266a240458c195f15c0d7d2455f02 89376 chkrootkit_0.58b-4.debian.tar.xz N: C: chkrootkit source: trimmed-field Format 3.0 (quilt) N: C: chkrootkit source: trimmed-field Homepage https://www.chkrootkit.org/ N: C: chkrootkit source: trimmed-field Maintainer Debian Security Tools N: C: chkrootkit source: trimmed-field Package-List chkrootkit deb misc optional arch=any N: C: chkrootkit source: trimmed-field Source chkrootkit N: C: chkrootkit source: trimmed-field Standards-Version 4.7.0 N: C: chkrootkit source: trimmed-field Testsuite autopkgtest N: C: chkrootkit source: trimmed-field Testsuite-Triggers binutils, iproute2, isc-dhcp-server, net-tools, procps, util-linux N: C: chkrootkit source: trimmed-field Uploaders Marcos Fouces , N: C: chkrootkit source: trimmed-field Vcs-Browser https://salsa.debian.org/pkg-security-team/chkrootkit N: C: chkrootkit source: trimmed-field Vcs-Git https://salsa.debian.org/pkg-security-team/chkrootkit.git N: C: chkrootkit source: trimmed-field Version 0.58b-4 N: C: chkrootkit: trimmed-field Architecture armel N: C: chkrootkit: trimmed-field Built-Using glibc (= 2.40-6) N: C: chkrootkit: trimmed-field Depends libc6 (>= 2.34) N: C: chkrootkit: trimmed-field Description rootkit detector\n The chkrootkit security scanner searches for signs that the system is\n infected with a 'rootkit'. Rootkits are a form of malware that seek\n to exploit security flaws to grant unauthorised access to a\n computer or its services, generally for malicious purposes.\n .\n chkrootkit can identify signs of over 70 different rootkits (see the\n project's website for a list).\n .\n Please note that an automated tool like chkrootkit can never\n guarantee a system is uncompromised. Nor does every report always\n signify a genuine problem: human judgement and further investigation\n will always be needed to assure the security of your system. N: C: chkrootkit: trimmed-field Enhances bcron, biff, bind9, bsdextrautils, busybox-syslogd, citadel-server, coreutils, courier-mta, cron, cronie, dma, esmtp-run, exim4-daemon-heavy, exim4-daemon-light, fetchmail, findutils, fingerd, finit-sysv, gpm, grep, hdparm, inetutils-syslogd, inetutils-telnetd, login, lsof, mailutils, masqmail, mingetty, msmtp-mta, net-tools, nullmailer, openbsd-inetd, opensmtpd, openssh-client, openssh-server, passwd, postfix, procps, psmisc, rpcbind, rsh-redone-server, runit-init, rust-findutils, ssmtp, systemd-cron, systemd-sysv, sysvinit-core, sysvinit-utils, tar, tcm, tcpd, tcpdump, traceroute, util-linux, wtmpdb N: C: chkrootkit: trimmed-field Homepage https://www.chkrootkit.org/ N: C: chkrootkit: trimmed-field Installed-Size 1142 N: C: chkrootkit: trimmed-field Maintainer Debian Security Tools N: C: chkrootkit: trimmed-field Package chkrootkit N: C: chkrootkit: trimmed-field Priority optional N: C: chkrootkit: trimmed-field Recommends binutils, default-mta | mail-transport-agent, iproute2 | net-tools, mailx, procps, systemd-sysv | cron | anacron | cron-daemon N: C: chkrootkit: trimmed-field Section misc N: C: chkrootkit: trimmed-field Version 0.58b-4 N: C: chkrootkit-dbgsym: trimmed-field Architecture armel N: C: chkrootkit-dbgsym: trimmed-field Auto-Built-Package debug-symbols N: C: chkrootkit-dbgsym: trimmed-field Build-Ids 0b1af160df3e0e92c0bb26507d441d6f3d87c990 5dea6a9039a441452d2a71ba7a291d946563a6b7 74e837c29c8e8ec67b44d0975b24270bb582ca00 a300c5b9e9caa9061661066a8a4a876a4c89c3ac c0daabe44ba4e823df7ef2600dd14f3de53cd0d3 ef49231584296efcfd1922e33abcc8c38a534937 fec24dec95e9800a98dc6f54f316994d2691d387 ff0c017da1725ccc72141310d201acdf569ac35a N: C: chkrootkit-dbgsym: trimmed-field Depends chkrootkit (= 0.58b-4) N: C: chkrootkit-dbgsym: trimmed-field Description debug symbols for chkrootkit N: C: chkrootkit-dbgsym: trimmed-field Installed-Size 690 N: C: chkrootkit-dbgsym: trimmed-field Maintainer Debian Security Tools N: C: chkrootkit-dbgsym: trimmed-field Package chkrootkit-dbgsym N: C: chkrootkit-dbgsym: trimmed-field Priority optional N: C: chkrootkit-dbgsym: trimmed-field Section debug N: C: chkrootkit-dbgsym: trimmed-field Source chkrootkit N: C: chkrootkit-dbgsym: trimmed-field Version 0.58b-4 N: C: chkrootkit source: vcs git N: N: The package uses the specified VCS (eg. "git") according to the N: debian/control file. N: N: Visibility: classification N: Show-Always: no N: Check: fields/vcs N: This tag is a classification. There is no issue in your package. N: N: C: chkrootkit source: vcs-uri Git https://salsa.debian.org/pkg-security-team/chkrootkit.git N: N: The package uses the specified VCS URI according to the debian/control N: file. N: N: Visibility: classification N: Show-Always: no N: Check: fields/vcs N: This tag is a classification. There is no issue in your package. N: N: N: upstream does not provide a modern download location O: chkrootkit source: debian-watch-uses-insecure-uri ftp://ftp.chkrootkit.org/pub/seg/pac/chkrootkit-(.*)\.tar\.gz [debian/watch:2] N: N: The watch file uses an unencrypted transport protocol for the URI such as N: http:// or ftp://. It is recommended to use a secure transport such as N: HTTPS for anonymous read-only access. N: N: Upstream may already provide a HTTPS variant of the URI. If not, please N: contact them and ask them to consider adding one. N: N: Visibility: info N: Show-Always: no N: Check: debian/watch N: N: N: man-pages forwarded upstream O: chkrootkit source: maintainer-manual-page [debian/chklastlog.8] N: N: The maintainer keeps a manual page in ./debian. Please forward the manual N: page upstream and ask them to include in their version control system, and N: in their next release. N: N: If the manual page was already forwarded or rejected, or the upstream is N: gone, please override the tag and annotate it with a suitable comment. N: N: Please refer to social contract item 2, Coordination with upstream N: developers (Section 3.1.4) in the Debian Developer's Reference, and N: Changes to the upstream sources (Section 4.3) in the Debian Policy Manual N: for details. N: N: Visibility: pedantic N: Show-Always: no N: Check: debian/manual-pages N: Renamed from: maintainer-manpage N: N: N: man-pages forwarded upstream O: chkrootkit source: maintainer-manual-page [debian/chkrootkit.8] N: N: man-pages forwarded upstream O: chkrootkit source: maintainer-manual-page [debian/chkwtmp.8]