INTEGRITY(ADM) UNIX System V
Name
integrity - examine system files against the authentication
database
Syntax
/tcb/bin/integrity [ -v ] [ -e ] [ -m ]
Description
integrity traverses the File Control database and compares
each entry in turn to the real file in the file system. If
the owner, group or permissions are different, an error
message is output.
Wild card entries in the File Control database are handled
as follows. For file names, those file names that have /*
as the last entry are treated as wild cards. Any file in
the directory matches that entry, unless the specific file
under consideration has its own (non-wild card) entry in the
database appearing before the wild card entry. In this
case, the file is ignored in the check because it would have
already been located previously. For owners (groups), if
the File Control entry does not explicitly list an owner
(group), all owners (groups) match correctly.
The -v option lists all files under consideration, even
those that match. The -e option explains why discretionary
checks fail and exactly what the discrepancy is.
Normally, (non-wild card type) files in the File Control
database that are missing from the file system are not
reported. The -m option will override that default and
report such missing files.
Files
/etc/auth/system/files - File Control database
/etc/auth/system/default - System Defaults database
See Also
authck(ADM), stat(S), getprfient(S), ``Maintaining System
Security,'' chapter of the System Administrator's Guide
Diagnostics
integrity returns a zero exit status if there are no
discrepancies. Otherwise, integrity returns a positive
value equal to the number of discrepancies.
Value Added
integrity is an extension of AT&T System V provided by the
Santa Cruz Operation.
(printed 2/15/90) INTEGRITY(ADM)