I'm typing on a nice Sunblade 100 that is willing to be a lab rat for my experiments.
I installed Solaris 10 and want to mess with ZFS.
Does anyone have any docs on how to install zfs or how to convert my current UFS filesystems to ZFS?
Does anyone have any experiences good or bad with ZFS... (3 Replies)
Hi,
We are porting our application from 32bit to 64bit.
We tried -xarch=v9, -xarc=v9a and -xport64=full options so that compiler to issue 64bit porting warnings.
But we are not getting any porting warninings
WE are using CC 5.5 compiler on sparc-solaris m/c.
Please tell us some powerful... (0 Replies)
Hi! All
Just wondering if anyone has a idea about setting the immutable bit
on a Solaris 10 ZFS file
I tried this
chmod S+ci toto.txt
and got that :-(
chmod: ERROR: invalid mode (0 Replies)
All,
Does anyone know of a simple way to traverse a file system and collect all ACL's (or ACE's as they are called now)? We use to be able to use getfacl fairly easily for this task but now we are forced to use -v or -V with the 'ls' command to get the extended permissions for a... (1 Reply)
Hi,
I am running into a some problems creating a dual boot system of 2 solaris instances using ZFS file system and I was wondering if someone can help me out.
First some back ground. I have been asked to change the file system of our server from UFS to ZFS. Currently we are using Solaris... (3 Replies)
Hi Dears,
I believe you know authconfig on most of Linux Distributions. However, on Solaris OS, I don't know the similar tool. Could you please share me the tool, if any?
Note:
I am using SunOS 5.10. (0 Replies)
What I am trying to do is reuse space that was used from an old solaris zone and take that space used in the 2 disk mirror from the 2nd zpool and relocate it to /var/audit in the root pool. The pysical server has 4 disks. 2 disks are a mirrored root zone(c1t0d0s0,c1t1d0s0) and the other were the... (1 Reply)
Hi,
I'm not expert with solaris. I Familiar with Linux variant only. Could anyone point me to right tutorial?
I got one > but not sure it can be use or not.
I'm doing fresh install for new server. The server spec did not come out yet. Please assist me.
Thanks. (17 Replies)
Discussion started by: mzainal
17 Replies
LEARN ABOUT NETBSD
veriexecgen
VERIEXECGEN(8) BSD System Manager's Manual VERIEXECGEN(8)NAME
veriexecgen -- generate fingerprints for Veriexec
SYNOPSIS
veriexecgen [-AaDrSTvW] [-d dir] [-o fingerprintdb] [-p prefix] [-t algorithm]
veriexecgen [-h]
DESCRIPTION
veriexecgen can be used to create a fingerprint database for use with Veriexec.
If no command line arguments were specified, veriexecgen will resort to default operation, implying -D -o /etc/signatures -t sha256.
If the output file already exists, veriexecgen will save a backup copy in the same file only with a ``.old'' suffix.
The following options are available:
-A Append to the output file, don't overwrite it.
-a Add fingerprints for non-executable files as well.
-D Search system directories, /bin, /sbin, /usr/bin, /usr/sbin, /lib, /usr/lib, /libexec, and /usr/libexec.
-d dir Scan for files in dir. Multiple uses of this flag can specify more than one directory.
-h Display the help screen.
-o fingerprintdb
Save the generated fingerprint database to fingerprintdb.
-p prefix When storing files in the fingerprint database, store the full pathnames of files with the leading ``prefix'' of the filenames
removed.
-r Scan recursively.
-S Set the immutable flag on the created signatures file when done writing it.
-T Put a timestamp on the generated file.
-t algorithm
Use algorithm for the fingerprints. Must be one of ``md5'', ``sha1'', ``sha256'', ``sha384'', ``sha512'', or ``rmd160''.
-v Verbose mode. Print messages describing what operations are being done.
-W By default, veriexecgen will exit when an error condition is encountered. This option will treat errors such as not being able to
follow a symbolic link, not being able to find the real path for a directory entry, or not being able to calculate a hash of an
entry as a warning, rather than an error. If errors are treated as warnings, veriexecgen will continue processing. The default
behaviour is to treat errors as fatal.
FILES
/etc/signatures
EXAMPLES
Fingerprint files in the common system directories using the default hashing algorithm ``sha256'' and save to the default fingerprint data-
base in /etc/signatures:
# veriexecgen
Fingerprint files in /etc, appending to the default fingerprint database:
# veriexecgen -A -d /etc
Fingerprint files in /path/to/somewhere using ``rmd160'' as the hashing algorithm, saving to /etc/somewhere.fp:
# veriexecgen -d /path/to/somewhere -t rmd160 -o /etc/somewhere.fp
SEE ALSO veriexec(4), veriexec(5), security(7), veriexec(8), veriexecctl(8)BSD February 18, 2008 BSD