Article delegate-en/3638 of [1-5109] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
Re: delegate interpolated
Wed, 21 Feb 2007     Yutaka Sato


In message  on 02/21/07(07:35:12)
you Martin Papadopoulos wrote:
 |for some time now i keep getting this error:
 |** checking the integrity of /usr/bin/delegated ...
 |-- src Sign> 9.4.3-pre9 000000000X d63f542043a890d4 (Author@DeleGate.ORG)
 |-- bld Sign> 9.4.3-pre9 000000000X d63f542043a890d4
 |-- exe Sign? 9.4.3-pre9 2007021817 2a61984b127102d3 (root@*****************)
 |-- File MD5: e052e3266b0e1e4c6c39fbef25566de9
 |** NG, this executable is not signed
 |FATAL: seems interpolated: /usr/bin/delegated
 |what is the cause , can i avoid this somehow ?

It means that the executable file of DeleGate is modified after it is
compiled.  It can be the result of malicious interpolation by others
to the executable file of DeleGate.

You can do the checking manually as this:

  delegated -Fesign

You can test the interpolation as this:

  echo xxx >> delegated
  delegated -Fesign

You can see the history of automatic checking in the LOGFILE like this:

  02/21 12:xx:xx [xxxx] 0+0: -- checked integrity:OK (0.000) 9e22b94e...

When interpolation is detected, it is recorded as this:

  02/21 12:xx:xx [xxxx] 0+0: -- checked integrity:ERROR (0.000) 02d0667...

The integrity is checked using MD5.  Thus if there is a problem in the
generation of MD5, the checking will fail even when the file is not
modified.  There was a bug in MD5 calculation on 64bits machines, but
is fixed in DeleGate/9.2.5.

  9 9   Yutaka Sato
 ( ~ )  National Institute of Advanced Industrial Science and Technology
_<   >_ 1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan
Do the more with the less -- B. Fuller
  search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]