Package ima-evm-integrity-check: Information
Default inline alert: Version in the repository: 0.7.5-alt1
Source package: ima-evm-integrity-check
Version: 0.7.2-alt1
Build time: May 17, 2024, 05:04 PM in the task #348308
Category: System/Base
Report package bugHome page:
License: GPLv2+
Summary: IMA/EVM integrity check
Description:
This package make use of the IMA and EVM technologies from the Linux integrity subsystem. Basically IMA and EVM provide the following functionality: - measurement (hashing) of file content as it is accessed and keeping track of this information in an audit log; - appraisal of files, which allows to prevent access when a measurement (hash) or digital signature does not match the expected value. This package requires kernel with corresponding config options enabled.
Maintainer: Paul Wolneykien
Last changed
May 17, 2024 Paul Wolneykien 0.7.2-alt1
- Fixed manpage sections. - Fix: Explicitly insert GOST kernel modules for Streebog hashes. - Fix: Require /usr/bin/chattr. - Added GOST_PARAMSET option (undocumented). - Fix and secure shell code mostly related to ignoring -e option. - Fix: Output file names to file log. - Fixed notes about /var/log/integrity-sign.log.
May 17, 2024 Paul Wolneykien 0.7.1-alt1
- Added copyright information.
May 17, 2024 Paul Wolneykien 0.7.0-alt1
- Added manual pages!!! - Add 'ima-' prefix to systemd units. - Updated README. - Fixed getting IMA hash from the Linux kernel command line. - Use pipe mode (padd) when adding kmk-user with keyctl. - Allow to run the whole cycle in automatic mode (with file signing log at /var/log/integrity-sign.log). - Make integrity-applier a multitool (initialization and signing operations). - integrity-sign: Make file signing error fatal. - integrity-sign: Change verbosity. - integrity-sign: Fixed file verification action. - integrity-sign: Fixed EVM key symlink. - integrity-sign: Fixed option parser. - integrity-sign: Fixed usage. - Setup the default policy to also check kernel modules. - Added comments to the default config (hash algorithms and EVM).