lsof (LiSt Open Files) version 3 (revision 3.61) ******************************************************************** | Security bulletin VB-95:07.abell in this directory is a CERT | | Coordination Center bulletin that describes a vulnerability in | | lsof revisions 3.18 through 3.43. Please read it. The bulletin | | is authenticated by VB-95:07.abell.asc, a detached PGP | | certificate. This bulletin and its certificate may be obtained | | directly from ftp://info.cert.org/pub/cert_bulletins. | ******************************************************************** ******************************************************************** | The latest release of lsof is always available via anonymous ftp | | from vic.cc.purdue.edu. Look in pub/tools/unix/lsof. | ******************************************************************** ******************************************************************** * IMPORTANT! This README file explains how the lsof tar file is * * assembled -- it's a "wrapper tar file. Please read the * * explanation of its naming and construction, immediately * * following the initial list of supported dialects. * ******************************************************************** Lsof version 3 lists open files for running Unix processes. It is a descendent of ofiles, fstat, lsof version 1, and lsof version 2. It speaks the following Unix dialects: AIX 3.2.[45], 4.1, and IBM RISC/System 6000 4.1.[1234] BSDI BSD/OS 2.0, 2.0.1, and Intel-based systems 2.1-BETA EP/IX 2.1.1 CDC 4680 FreeBSD 1.1.5.1, 2.0, 2.0.5, Intel-based systems and 2.1 HP-UX 8.x, 9.x, and 10 HP IRIX 4.0.5, 5.2, 5.3, 6.0, SGI 6.0.1, 6.1, and 6.2-BETA Linux through 1.3.56 Intel-based systems NetBSD 1.0 and 1.1 Intel and SPARC-based systems NEXTSTEP 2.1 and 3.[0123] all NEXTSTEP architectures OSF/1 1.3, 2.0, 3.[02], and DEC Alpha 4.0-BETA RISC/os 4.52 MIPS R2000-based systems SCO OpenDesktop or OpenServer Intel-based systems 1.1, 3.0, and 5.0 Sequent PTX 2.1.[156], Sequent systems 4.0.[23], and 4.1.[02] Solaris 2.[12345] Sun 4 and i86pc SunOS 4.1.[1234] Sun 3 and 4 Ultrix 2.2, 4.2, 4.3, 4.4, DEC RISC and VAX and 4.5 (The pub/tools/unix/lsof/contrib directory on vic.cc.purdue.edu contains information on other ports.) Version 3 of lsof is distributed as gzip'd and compressed tar archives in the files: pub/tools/unix/lsof/lsof.tar.gz and pub/tools/unix/lsof/lsof.tar.Z These files are links to the current distribution, whose name includes the revision number: pub/tools/unix/lsof__W.tar.gz and pub/tools/unix/lsof__W.tar.Z is the revision number -- e.g., 3.61. The ``_W'' marks the tar file as a wrapper -- the source tar file is inside the wrapper. (A tar file with a ``.gz'' suffix is gzip'd; ``.Z'', compressed.) The wrapper method is used to join instruction and PGP certificate files with their source tar file. The PGP certificate file authenticates the source tar file. When the wrapper tar is gunzip'd or uncompressed, and its tar contents are extracted, three files are produced in the current directory where the extraction was performed: README.lsof_ contains instructions for the security-conscious on how to be sure that no one has tampered with the tar file. lsof_.tar is a tar file, containing the lsof sources. When extracted with tar it creates a subdirectory in the current directory where the extraction was performed, named lsof_. The lsof source files will be found in lsof_. lsof_.tar.asc is a PGP certificate, authenticating the lsof_.tar file. See the README.lsof_ file for more information on PGP authentication of lsof_.tar. If you've obtained this file and an lsof distribution from a mirror site, please be aware that THE LATEST VERSION OF LSOF IS AVAILABLE VIA ANONYMOUS FTP FROM VIC.CC.PURDUE.EDU (128.210.15.16) IN THE PUB/TOOLS/UNIX/LSOF DIRECTORY. (If you need a copy of gunzip, look for it at prep.ai.mit.edu in pub/gnu.) * The February 22, 1996 revision (3.59): adds more support for Unix domain socket identification to Solaris; adds range handling to the -d option; displays OSF/1 CDFS file size; makes gcc happy on HP-UX 10.x by including ; adds Ultrix 4.5 to the list of supported releases for that dialect; adds AFS support for NEXTSTEP 3.2, Solaris 2.[45], and SunOS 4.1.4; adds Solaris support for the nfs3 file system type; upgrades Linux kernel loader format test; fixes a bug in name cache exploration for BSD-derived dialects (e.g., FreeBSD); adds support for NetBSD 1.1. * The February 27, 1996 revision (3.60): improves Unix domain socket reporting for Solaris; adds warning information messages when the Linux kernel doesn't support get_kernel_syms(). * The March 9, 1996 revision (3.61): corrects flaws in the NEXTSTEP Solaris and SunOS AFS support; adds AFS support for AIX and HP-UX; fixes a NetBSD bug; verifies that no AFS support is needed for Ultrix; moves the names of lsof contributors from the man page to the 00CREDITS file; adds the hpuxgcc abbreviation for compiling lsof under HP-UX with gcc; adds rudimentary support for the IRIX XFS file system type. Support for Motorola V/88 has been removed from revision 3.61, because I no longer have access to test systems. The previous V/88 support may be found on vic.cc.purdue.edu in: pub/tools/unix/lsof/OLD/dialects/motorola.tar.gz and pub/tools/unix/lsof/OLD/binaries/motorola.tar.gz In a March 12, 1996 addendum to revision 3.61, corrected two minor problems in the Configure script. See the 00DIST distribution file for more details on feature additions and bug fixes. The 00README distribution file gives background and installation information. The 00FAQ file contains a list of frequently asked questions and their answers. The 00DCACHE file explains device cache file path formation. The 00PORTING file contains information on porting lsof to other Unix dialects. The distribution files lsof.8 (nroff source) and lsof.man (nroff formatted output) contain the manual page for lsof; it is the only other documentation besides the source code (it's included). Version 3 Binaries ================== Version 3 binaries for some revisions, dialects, and platforms may be found in pub/tools/unix/lsof/binaries. Check the README files for exact descriptions. Check the dialect-specific Makefiles for installation instructions. CHECKSUMS and PGP certificates are provided for authentication. Please think very carefully before you decide to use a binary from this distribution instead of making your own from the sources. Here are some points to consider: 1. Lsof must run setgid or setuid. Are you willing to trust that power to a binary you didn't construct yourself? 2. Lsof binaries may be generated on a system whose configuration header files differ from yours. Under OSF/1, for example, lsof includes header files from the machine's configuration directory, /sys/. Are you willing to gamble that your configuration directory's header files match the ones used to compile lsof? 3. Lsof is often configured with specific options that are determined from the configuration of the system on which it is configured -- e.g., DECnet for Ultrix, Solaris patch level, Pyramid hardware architecture, dynamic loader libraries, etc. Are you sure that the lsof binary you retrieve will have been configured for your system? If you get a binary that is misconfigured for you, it may not work at all. If you haven't already guessed, I believe firmly that you should retrieve sources and build your own binary. If you still want to use the distribution binaries, please authenticate what you retrieved with the PGP certificates; please compare checksums, too. Version 3 Checksums =================== Security checksums -- both MD5 and sum(1) -- for revisions of lsof version 3 are contained in the README.lsof_ files in the wrapper tar files of pub/tools/unix/lsof. PGP Certificates ================ The lsof source tar and binary files are accompanied by PGP certificates in files that have an "asc" extension. The certificates are signed with my public key, which may be found in the file: pub/tools/unix/lsof/Victor_A_Abell.pgp My key is also available via public key servers and the URL: http://www-rcd.cc.purdue.edu/abe/ Old Dialect Support =================== Remnants of dialects for which lsof version 3 once provided support may be found on vic.cc.purdue.edu in: pub/tools/unix/lsof/OLD/binaries and pub/tools/unix/lsof/OLD/dialects Lsof Version 2 ============== The version 3 predecessor, revision 36 of version 2, is also available in pub/tools/unix/lsof/OLD/lsof236tar.gz on vic.cc.purdue.edu. I recommend you avoid it. It's out of date and I no longer provide support for it. (Version 3 supports more dialects, and has many enhancements, bug fixes, and improvements.) Version 2 supports the following Unix dialects. AIX 3.2.[1234] IBM RISC/System 6000 EP/IX 1.4.3 and 2.1.1 CDC 4680 ETAV 1.17 ETA-10P* FreeBSD 1.0e Intel-based architecture HP-UX [789].x HP IRIX 4.0.5 and 5.1.1 SGI NEXTSTEP 2.1, 3.0, 3.1 NeXT OSF/1 1.[23] and 2.0 DEC Alpha Sequent Dynix 3.0.12 Sequent Symmetry SunOS 4.1.[123] Sun 3 and 4 SunOS 5.[13] (Solaris 2.[13]) Sun 4 Ultrix 2.2 and 4.2 DEC (If you need a copy of gunzip, look for it at prep.ai.mit.edu in pub/gnu.) Version 2 Checksums =================== MD5: (OLD/lsof236tar.gz) = f8a1ab3971ea2f6a3ea16752f84409e8 sum(1): 39996 106 OLD/lsof236tar.gz The file OLD/lsof236tar.gz.asc is a PGP certificate that may be used to authenticate OLD/lsof236tar.gz with my public key. You may find my public key on vic.cc.purdue.edu in pub/tools/unix/lsof/Victor_A_Abell.pgp; via the URL http://www-rcd.cc.purdue.edu/abe/; or at public key servers. Vic Abell March 12, 1996