Index: trunk/COPYING =================================================================== --- trunk/COPYING (revision 591) +++ trunk/COPYING (revision 1) @@ -3,5 +3,5 @@ ------------------------------------------ -Copyright (C) 1999-2009 Rainer Wichmann +Copyright (C) 1999-2004 Rainer Wichmann This program is free software; you can redistribute it and/or modify @@ -17,7 +17,6 @@ You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software -Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA - -On Debian-based systems, see /usr/share/common-licenses +Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. + Incorporated code @@ -102,5 +101,5 @@ * along with the LZO library; see the file COPYING. * If not, write to the Free Software Foundation, Inc., - * 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA + * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. * * Markus F.X.J. Oberhumer @@ -126,5 +125,5 @@ You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software - Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA */ + Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. */ /* Written by David MacKenzie . */ @@ -132,30 +131,30 @@ (vi) Support for the MD5 hash algorithm is provided by code - from busybox which is distributed under the GPL. - - /* md5.c - Functions to compute MD5 message digest of files or memory blocks - * according to the definition of MD5 in RFC 1321 from April 1992. - * Copyright (C) 1995, 1996 Free Software Foundation, Inc. - * - * NOTE: The canonical source of this file is maintained with the GNU C - * Library. Bugs can be reported to bug-glibc@prep.ai.mit.edu. - * - * This program is free software; you can redistribute it and/or modify it - * under the terms of the GNU General Public License as published by the - * Free Software Foundation; either version 2, or (at your option) any - * later version. - * - * This program is distributed in the hope that it will be useful, - * but WITHOUT ANY WARRANTY; without even the implied warranty of - * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the - * GNU General Public License for more details. - * - * You should have received a copy of the GNU General Public License - * along with this program; if not, write to the Free Software Foundation, - * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA - */ - - /* Written by Ulrich Drepper , 1995. */ - + from beecrypt which is distributed under the LGPL. + + /* + * md5.c + * + * MD5 hash function, code + * + * Copyright (c) 2000 Virtual Unlimited B.V. + * + * Author: Bob Deblier + * + * This library is free software; you can redistribute it and/or + * modify it under the terms of the GNU Lesser General Public + * License as published by the Free Software Foundation; either + * version 2.1 of the License, or (at your option) any later version. + * + * This library is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + * Lesser General Public License for more details. + * + * You should have received a copy of the GNU Lesser General Public + * License along with this library; if not, write to the Free Software + * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 + * USA + */ (vi) Support for the SHA-1 hash algorithm is provided by code @@ -170,5 +169,5 @@ * country of residence. * - * Adapted to pike and some cleanup by Niels Möller. + * Adapted to pike and some cleanup by Niels Möller. */ @@ -204,5 +203,5 @@ * You should have received a copy of the GNU Library General Public * License along with this library; if not, write to the Free - * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA + * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA * * The author of this library can be reached at the following address: @@ -242,45 +241,4 @@ either version 2 of the License, or (at your option) any later version." - (x) Unit testing uses the 'cutest' framework by Asim Jalis, (files - CuTest.h, CuTest.c, make-tests.sh) which is licensed under the zlib license: - - * Copyright (c) 2003 Asim Jalis - * - * This software is provided 'as-is', without any express or implied - * warranty. In no event will the authors be held liable for any damages - * arising from the use of this software. - * - * Permission is granted to anyone to use this software for any purpose, - * including commercial applications, and to alter it and redistribute it - * freely, subject to the following restrictions: - * - * 1. The origin of this software must not be misrepresented; you must not - * claim that you wrote the original software. If you use this software in - * a product, an acknowledgment in the product documentation would be - * appreciated but is not required. - * - * 2. Altered source versions must be plainly marked as such, and must not - * be misrepresented as being the original software. - * - * 3. This notice may not be removed or altered from any source - * distribution. - - (xi) The dnmalloc library used by samhain is Copyright (C) 2005, Yves Younan, - Wouter Joosen and Frank Piessens, and licensed under the LGPL: - - * This library is free software; you can redistribute it and/or - * modify it under the terms of the GNU Lesser General Public - * License as published by the Free Software Foundation; either - * version 2.1 of the License, or (at your option) any later version. - * - * This library is distributed in the hope that it will be useful, - * but WITHOUT ANY WARRANTY; without even the implied warranty of - * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU - * Lesser General Public License for more details. - * - * You should have received a copy of the GNU Lesser General Public - * License along with this library; if not, write to the Free Software - * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA - Other Index: trunk/Install.sh =================================================================== --- trunk/Install.sh (revision 591) +++ trunk/Install.sh (revision 1) @@ -45,5 +45,5 @@ This script is meant to make installing SAMHAIN as easy as -possible. Just read the text below, hit ENTER, and you are +possible. Just read the text below, hit ENTER, and you're on your way. @@ -279,4 +279,36 @@ fi +#------------------------------------------------------------ +# +# Kernel module +# +#------------------------------------------------------------ + +KCHECK="no" + +if [ "x$I386_LINUX" = "xyes" ]; then + +$dialog \ +--title "Kernel module rootkit detection" \ +--separate-output \ +--backtitle "Samhain $VERSION" \ +--inputbox "SAMHAIN can detect kernel module rootkits if compiled with support\nfor this. If you want to enable this option, please give the path\nto your System.map file, else choose CANCEL.\n\nNOTE: this option will require root privileges for at least one\ncommand during compilation (to read from /dev/kmem)." \ +16 75 "/boot/System.map" \ +2> $tmp + +mtest=$? + +if [ $mtest = -1 ]; then + exit 1 +fi +if [ $mtest = 0 ]; then + mfile=`cat $tmp` + for z in $mfile ; do + cfgline="$cfgline --with-kcheck=$z" + done + KCHECK="yes" +fi + +fi #------------------------------------------------------------ @@ -287,4 +319,5 @@ $dialog \ --title "Signed database and configuration" \ +--separate-output \ --backtitle "Samhain $VERSION" \ --yesno "Samhain can be configured to support PGP signed database\nand configuration files. This requires a working installation\nof GnuPG.\n\nDo you want to use this option ?" \ @@ -302,4 +335,5 @@ $dialog \ --title "Signed database and configuration" \ +--separate-output \ --backtitle "Samhain $VERSION" \ --inputbox "Please enter the full path to gpg (i.e. the GnuPG binary)" \ @@ -323,4 +357,5 @@ $dialog \ --title "Signed database and configuration" \ +--separate-output \ --backtitle "Samhain $VERSION" \ --inputbox "Please enter the fingerprint of the key to use (one string, no spaces)" \ @@ -350,4 +385,5 @@ $dialog \ --title "Stealth options" \ +--separate-output \ --backtitle "Samhain $VERSION" \ --yesno "Samhain has some stealth options to hide its presence.\nDo you want to take advantage of these ?" \ @@ -439,4 +475,5 @@ $dialog \ --title "Stealth options" \ +--separate-output \ --backtitle "Samhain $VERSION" \ --inputbox "You can set a magic string such that command line arguments will be ignored unless the first argument is this magic string, and read from stdin otherwise. If you do not want this, select CANCEL, otherwise choose a string and select OK." \ @@ -458,4 +495,5 @@ $dialog \ --title "Stealth options" \ +--separate-output \ --backtitle "Samhain $VERSION" \ --yesno "SAMHAIN can compile and install a kernel module to hide the SAMHAIN daemon process. Do you want that ?"\ @@ -557,5 +595,5 @@ mfile=`cat $tmp` for z in $mfile ; do - cfgline="$cfgline --mandir=$z" + cfgline="$cfgline --with-mandir=$z" done fi @@ -654,5 +692,5 @@ if [ "x$KCHECK" = "xyes" ]; then if [ `id -u` != 0 ]; then -$dialog --msgbox "Compiling with --with-kcheck option (kernel rootkit detection). This\nrequires root privileges for at least one command during compilation,\nbut you are not running this as root. Please expect compilation to fail.\n\nYou need to follow the instructions shown in the \nerror message after failure." 20 75 +$dialog --msgbox "Compiling with --with-kcheck option (kernel rootkit detection). This\nrequires root privileges for at least one command during compilation,\nbut you are not running this as root. Please expect compilation to fail.\n\nYou need to run \"make\" manually after failure, and\nfollow the instructions to execute the one required\ncommand as root." 20 75 fi fi Index: trunk/Makefile.in =================================================================== --- trunk/Makefile.in (revision 591) +++ trunk/Makefile.in (revision 1) @@ -1,20 +1,6 @@ -# -# Copyright Rainer Wichmann (2006) -# -# License Information: -# This program is free software; you can redistribute it and/or modify -# it under the terms of the GNU General Public License as published by -# the Free Software Foundation; either version 2 of the License, or -# (at your option) any later version. -# # This program is distributed in the hope that it will be useful, -# but WITHOUT ANY WARRANTY; without even the implied warranty of -# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -# GNU General Public License for more details. -# -# You should have received a copy of the GNU General Public License -# along with this program; if not, write to the Free Software -# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. - +# but WITHOUT ANY WARRANTY, to the extent permitted by law; without +# even the implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. # --- boiler-plate stuff --- @@ -38,6 +24,4 @@ localstatedir = @localstatedir@ mandir = @mandir@ -datarootdir = @datarootdir@ -mytmpdir = @mytmpdir@ configfile = @myconffile@ @@ -63,9 +47,6 @@ INSTALL_DSYS = @INSTALL@ -m 755 -PACKAGE = @PACKAGE_NAME@ -VERSION = @PACKAGE_VERSION@ -BUILD_NUM = 1 - -DEFAULT_MAINTAINER = Nobody Nowhere +PACKAGE = @PACKAGE@ +VERSION = @VERSION@ VFLAG = @mytclient@ @@ -74,7 +55,6 @@ SAMHAIN = @sh_main_prg@ YULECTL = @yulectl_prg@ -SADMIN = @samhainadmin_prg@ XOR_CODE = @xor_code@ -TIGER_SRC = @tiger_src@ +SH_LKM = @sh_lkm@ ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 @@ -83,6 +63,4 @@ CC = @CC@ -BUILD_CC = @BUILD_CC@ -# DBGDEF = -pg -DSH_PROFILE=1 DBGDEF = @mydebugdef@ DEFS = $(DBGDEF) @DEFS@ -I. -I$(top_srcdir)/include @@ -91,8 +69,7 @@ LIBS_TRY = @LIBS@ LIBS_SOCK = @sh_libsocket@ - +LIBS_KVM = @sh_libkvm@ CFLAGS = @CFLAGS@ -CUTEST = -COMPILE = $(CC) $(DEFS) $(INCLUDES) $(CPPFLAGS) $(CFLAGS) $(CUTEST) +COMPILE = $(CC) $(DEFS) $(INCLUDES) $(CPPFLAGS) $(CFLAGS) LINK = $(CC) $(DBGDEF) -O $(LDFLAGS) -o $@ @@ -114,19 +91,12 @@ HEADERS = samhain.h sh_unix.h sh_utils.h sh_error.h sh_error_min.h sh_files.h \ - sh_getopt.h sh_readconf.h sh_tiger.h sh_hash.h \ - sh_mail.h sh_mail_int.h sh_nmail.h sh_filter.h \ - sh_mem.h sh_entropy.h sh_xfer.h sh_modules.h sh_utmp.h \ - sh_suidchk.h sh_srp.h sh_fifo.h sh_html.h sh_tools.h \ - sh_sig.h sh_cat.h sh_calls.h sh_extern.h sh_database.h sh_trace.h \ + sh_getopt.h sh_readconf.h sh_tiger.h sh_hash.h sh_mail.h \ + sh_mem.h sh_entropy.h sh_forward.h sh_modules.h sh_utmp.h \ + sh_kern.h sh_suidchk.h sh_srp.h sh_fifo.h sh_html.h sh_tools.h \ + sh_gpg.h sh_cat.h sh_calls.h sh_extern.h sh_database.h sh_trace.h \ sh_schedule.h bignum.h trustfile.h slib.h zAVLTree.h \ lzoconf.h minilzo.h rijndael-alg-fst.h rijndael-api-fst.h \ rijndael-boxes-fst.h sh_socket.h sh_ignore.h sh_prelude.h \ - sh_mounts.h sh_userfiles.h sh_static.h sh_prelink.h \ - sh_processcheck.h sh_portcheck.h sh_pthread.h sh_string.h \ - sh_log_check.h sh_log_evalrule.h sh_log_correlate.h \ - sh_log_mark.h sh_log_repeat.h sh_inotify.h sh_registry.h sh_ipvx.h \ - sh_restrict.h sh_sub.h sh_fInotify.h sh_checksum.h \ - sh_dbIO.h sh_dbIO_int.h sh_guid.h sh_dbCheck.h sh_dbCreate.h \ - sh_sem.h sh_subuid.h + sh_mounts.h sh_userfiles.h sh_static.h sh_prelink.h @@ -137,12 +107,11 @@ $(srcsrc)/sh_tiger1.c $(srcsrc)/sh_tiger2.c \ $(srcsrc)/sh_tiger1_64.c $(srcsrc)/sh_tiger2_64.c \ - $(srcsrc)/sh_hash.c $(srcsrc)/sh_mail.c $(srcsrc)/sh_nmail.c \ + $(srcsrc)/sh_hash.c $(srcsrc)/sh_mail.c \ $(srcsrc)/sh_mem.c $(srcsrc)/sh_entropy.c \ - $(srcsrc)/sh_xfer_client.c $(srcsrc)/sh_xfer_server.c \ - $(srcsrc)/sh_xfer_syslog.c $(srcsrc)/sh_modules.c \ - $(srcsrc)/sh_utmp.c $(srcsrc)/sh_login_track.c \ + $(srcsrc)/sh_forward.c $(srcsrc)/sh_modules.c \ + $(srcsrc)/sh_utmp.c $(srcsrc)/sh_kern.c \ $(srcsrc)/sh_suidchk.c $(srcsrc)/sh_srp.c \ $(srcsrc)/sh_fifo.c $(srcsrc)/sh_tools.c \ - $(srcsrc)/sh_html.c $(srcsrc)/sh_sig.c \ + $(srcsrc)/sh_html.c $(srcsrc)/sh_gpg.c \ $(srcsrc)/sh_cat.c $(srcsrc)/sh_calls.c \ $(srcsrc)/sh_extern.c $(srcsrc)/sh_database.c \ @@ -151,5 +120,5 @@ $(srcsrc)/bignum.c $(srcsrc)/mkhdr.c \ $(srcsrc)/samhain_setpwd.c $(srcsrc)/samhain_stealth.c \ - $(srcsrc)/encode.c \ + $(srcsrc)/encode.c $(srcsrc)/sstrip.c \ $(srcsrc)/trustfile.c $(srcsrc)/exepack.c \ $(srcsrc)/exepack_fill.c $(srcsrc)/exepack_mkdata.c \ @@ -161,59 +130,29 @@ $(srcsrc)/sh_userfiles.c $(srcsrc)/sh_prelude.c \ $(srcsrc)/sh_prelink.c $(srcsrc)/sh_static.c \ - $(srcsrc)/sh_portcheck.c $(srcsrc)/sh_port2proc.c\ - $(srcsrc)/sh_processcheck.c $(srcsrc)/sh_filter.c \ - $(srcsrc)/sh_pthread.c $(srcsrc)/sh_string.c \ - $(srcsrc)/sh_log_parse_syslog.c $(srcsrc)/sh_log_parse_pacct.c \ - $(srcsrc)/sh_log_parse_samba.c $(srcsrc)/sh_log_parse_generic.c \ - $(srcsrc)/sh_log_parse_apache.c $(srcsrc)/sh_log_evalrule.c \ - $(srcsrc)/sh_log_correlate.c $(srcsrc)/sh_log_mark.c \ - $(srcsrc)/sh_log_check.c $(srcsrc)/dnmalloc.c \ - $(srcsrc)/sh_inotify.c $(srcsrc)/sh_log_repeat.c \ - $(srcsrc)/sh_audit.c $(srcsrc)/sh_registry.c \ - $(srcsrc)/sh_ipvx.c $(srcsrc)/sh_restrict.c \ - $(srcsrc)/sh_filetype.c $(srcsrc)/sh_sub.c $(srcsrc)/sh_fInotify.c \ - $(srcsrc)/sh_checksum.c $(srcsrc)/sh_guid.c $(srcsrc)/sh_sem.c \ - $(srcsrc)/sh_dbIO.c $(srcsrc)/sh_dbCheck.c $(srcsrc)/sh_dbCreate.c \ - $(srcsrc)/sh_subuid.c \ - $(srcsrc)/t-test1.c - -OBJECTS = sh_files.o sh_tiger0.o sh_tiger2.o sh_tiger2_64.o \ - samhain.o sh_unix.o sh_utils.o sh_error.o \ - sh_getopt.o sh_readconf.o sh_filter.o \ - sh_hash.o sh_mail.o sh_nmail.o sh_mem.o sh_login_track.o \ - sh_entropy.o sh_modules.o sh_utmp.o \ - sh_xfer_client.o sh_xfer_server.o sh_xfer_syslog.o \ - sh_suidchk.o sh_srp.o sh_fifo.o sh_tools.o sh_html.o sh_sig.o \ + $(srcsrc)/sh_prelude_old.c + +OBJECTS = samhain.o sh_unix.o sh_utils.o sh_error.o sh_files.o \ + sh_getopt.o sh_readconf.o sh_tiger0.o sh_tiger1.o sh_tiger2.o \ + sh_tiger1_64.o sh_tiger2_64.o sh_hash.o sh_mail.o sh_mem.o \ + sh_entropy.o sh_forward.o sh_modules.o sh_utmp.o sh_kern.o \ + sh_suidchk.o sh_srp.o sh_fifo.o sh_tools.o sh_html.o sh_gpg.o \ sh_cat.o sh_calls.o sh_extern.o sh_database.o sh_err_log.o \ sh_err_console.o sh_err_syslog.o sh_schedule.o bignum.o \ trustfile.o rijndael-alg-fst.o rijndael-api-fst.o slib.o \ zAVLTree.o sh_socket.o sh_ignore.o sh_prelude.o \ - sh_mounts.o sh_userfiles.o sh_prelink.o sh_static.o \ - sh_processcheck.o sh_portcheck.o sh_port2proc.o \ - sh_log_parse_syslog.o sh_log_parse_pacct.o sh_log_parse_apache.o \ - sh_log_parse_samba.o sh_log_evalrule.o sh_log_check.o \ - sh_log_parse_generic.o \ - sh_log_correlate.o sh_log_mark.o sh_log_repeat.o \ - sh_pthread.o sh_string.o sh_inotify.o dnmalloc.o \ - sh_audit.o sh_registry.o sh_ipvx.o sh_restrict.o \ - sh_filetype.o sh_sub.o sh_fInotify.o sh_checksum.o \ - sh_guid.o sh_sem.o sh_dbIO.o sh_dbCheck.o sh_dbCreate.o \ - sh_subuid.o - + sh_mounts.o sh_userfiles.o sh_prelink.o sh_static.o sh_prelude_old.o + +KERN = kern_head.h kern_head.c TESTSUITE = test.sh testcompile.sh testhash.sh testtiger.txt \ testtimesrv.sh \ - testext.sh testrc_1ext.in test_ext.c.in testrun_1d.sh \ - testrun_1.sh testrun_1a.sh testrun_1b.sh testrun_1c.sh \ - testrc_1 testrc_1i.dyn test1i_file.sig test1i_samhain.pub \ - testrun_1d.sh testrun_1e.sh testrun_1f.sh \ - testrun_1g.sh testrun_1h.sh testrun_1i.sh \ + testext.sh testrc_1ext.in test_ext.c.in \ + testrun_1.sh testrun_1a.sh testrun_1b.sh testrc_1 \ testrun_2.sh testrun_2a.sh testrun_2b.sh testrc_2.in \ - testrun_2c.sh testrun_2d.sh testrun_2e.sh testrun_2f.sh \ - testrun_2g.sh + testrun_2c.sh testrun_2d.sh DIST_COMMON = README COPYING LICENSE samhain.jpg \ samhainrc.linux samhainrc.solaris samhainrc.freebsd samhainrc.aix5.2.0 \ -samhainrc.netbsd yulerc.template \ +yulerc.template \ Install.sh @@ -222,5 +161,5 @@ stealth_template.jpg \ config.guess config.h.in stamp-h.in config.sub configure \ -configure.ac aclocal.m4 acinclude.m4 compile install-sh missing mkinstalldirs \ +configure.ac acconfig.h aclocal.m4 install-sh missing mkinstalldirs \ c_random.sh c_bits.sh depend.sum depend.dep stamp-hdep @@ -228,5 +167,5 @@ src include man scripts init docs sql_init test dsys -PROGRAMS = $(SETPWD) $(STEGIN) $(SAMHAIN) $(YULECTL) $(SADMIN) +PROGRAMS = $(SETPWD) $(STEGIN) $(SAMHAIN) $(YULECTL) #---------------------------------------------------------- @@ -236,5 +175,5 @@ #---------------------------------------------------------- -all: $(top_srcdir)/depend.sum $(SETPWD) $(STEGIN) $(SAMHAIN) $(YULECTL) +all: $(top_srcdir)/depend.sum $(SETPWD) $(STEGIN) $(SAMHAIN) $(YULECTL) @sh_lkm@ sstrip @@ -261,6 +200,6 @@ touch config.h -#stamp-h: $(top_srcdir)/config.h.in config.status -# ./config.status +stamp-h: $(top_srcdir)/config.h.in config.status + ./config.status Makefile: $(top_srcdir)/Makefile.in config.status @@ -281,6 +220,6 @@ depend-gen: $(srcsrc)/depend-gen.c - @echo "$(BUILD_CC) -I. -o depend-gen $(srcsrc)/depend-gen.c"; \ - $(BUILD_CC) -I. -o depend-gen $(srcsrc)/depend-gen.c 2>/dev/null || \ + @echo "$(CC) $(CFLAGS) -o depend-gen $(srcsrc)/depend-gen.c"; \ + $(CC) $(CFLAGS) -o depend-gen $(srcsrc)/depend-gen.c 2>/dev/null || \ echo "failed to compile ... hope depend.dep is ok" @@ -292,5 +231,5 @@ if test -f depend-gen; then \ failfiles=""; \ - for ff in $(SOURCES); do \ + for ff in $(SOURCES) $(srcsrc)/kern_head.c; do \ ./depend-gen -i '$$(srcinc)/' -o $(top_srcdir)/depend.dep $$ff || \ failfiles="$${failfiles} $$ff"; \ @@ -322,7 +261,4 @@ fi; -$(top_srcdir)/stamp-hdep: - touch $(top_srcdir)/stamp-hdep && touch $(top_srcdir)/Makefile.in - $(top_srcdir)/Makefile.in: $(top_srcdir)/stamp-hdep @echo "update Makefile.in ..."; \ @@ -331,5 +267,5 @@ if test -f depend-gen; then \ failfiles=""; \ - for ff in $(SOURCES); do \ + for ff in $(SOURCES) $(srcsrc)/kern_head.c; do \ ./depend-gen -i '$$(srcinc)/' -o $(top_srcdir)/Makefile.in $$ff || \ failfiles="$${failfiles} $$ff"; \ @@ -350,5 +286,5 @@ depend: depend-gen @echo "update Makefile.in ..."; \ - for ff in $(SOURCES); do \ + for ff in $(SOURCES) $(srcsrc)/kern_head.c; do \ ./depend-gen -i '$$(srcinc)/' -o $(top_srcdir)/Makefile.in $$ff; \ echo $(srcsrc) > $(top_srcdir)/stamp-dep; \ @@ -366,7 +302,7 @@ # -CLEANFILES = encode config_xor.h depend-gen \ - internal.h sh_MK.h trustfile samhain mkhdr encode cutest \ - yule samhain_setpwd samhain_stealth samhainrc yulectl +CLEANFILES = encode config_xor.h depend-gen sh_ks.h sh_ks_xor.h kern_head \ + internal.h sh_MK.h trustfile sstrip samhain mkhdr encode \ + yule samhain_setpwd samhain_stealth samhainrc yulectl samhain_hide.ko clean: @@ -378,24 +314,20 @@ # -DISTCLEANFILES = Makefile samhain.spec sh_sig_checksum.h sh_gpg_fp.h \ - init/samhain.startLinux init/samhain.startGentoo init/samhain.startSystemd \ +DISTCLEANFILES = Makefile samhain.spec sh_gpg_checksum.h sh_gpg_fp.h \ + init/samhain.startLinux init/samhain.startGentoo \ init/samhain.startLSB init/samhain.startFreeBSD \ init/samhain.startSolaris init/samhain.startHPUX \ - init/samhain.startIRIX init/samhain.startMACOSX \ - deploy.sh sh_MK.h samhain-install.sh \ - rules.deb rules.deb-light src/CuTestMain.c \ - scripts/samhainadmin-sig.pl scripts/samhainadmin-gpg.pl \ + init/samhain.startIRIX \ + deploy.sh sh_MK.h samhain-install.sh sh_gpg_chksum.h sh_gpg_fp.h \ + rules.deb rules.deb-light \ scripts/samhainadmin.pl scripts/check_samhain.pl \ - scripts/samhain.ebuild scripts/samhain.ebuild-light \ - scripts/yuleadmin.pl scripts/logrotate \ - scripts/redhat_i386.client.spec scripts/samhain.spec hp_ux.psf + scripts/samhain.ebuild scripts/samhain.ebuild-light TESTCLEANFILES = samhain.build samhain.new yule.html \ - test_ext test_ext.c test_ext.res testhash.tmp \ - testrc1.signed testrc_1ext testrc_2 testrc_2.signed \ - test_dnmalloc samhainrc yulerc + test_ext test_ext.c test_ext.res test_log testhash.tmp \ + testrc1.signed testrc_1ext testrc_2 testrc_2.signed distclean: clean - -rm -f config.status config.log configure.lineno config.h config.cache stamp-dep stamp-h @install_name@rc + -rm -f config.status config.log configure.lineno config.h config.cache @-test -z "$(TESTCLEANFILES)" || rm -f $(TESTCLEANFILES) @-test -z "$(DISTCLEANFILES)" || rm -f $(DISTCLEANFILES) @@ -466,9 +398,4 @@ fi -test_dnmalloc: $(srcsrc)/t-test1.c dnmalloc.o - $(COMPILE) $(VFLAG) -o t-test1.o -c $(srcsrc)/t-test1.c; \ - $(LINK) t-test1.o dnmalloc.o $(LIBS_TRY) - - #---------------------------------------------------------- # @@ -477,5 +404,5 @@ #---------------------------------------------------------- -install: install-program install-man install-data +install: install-lkm install-program install-man install-data @echo; \ echo " You can use 'samhain-install.sh uninstall' for uninstalling"; \ @@ -485,5 +412,5 @@ echo -install-light: install-program install-data +install-light: install-lkm install-program install-data @echo; \ echo " You can use 'samhain-install.sh uninstall' for uninstalling"; \ @@ -493,5 +420,5 @@ echo -purge: uninstall-program uninstall-man +purge: uninstall-lkm uninstall-program uninstall-man @echo "./samhain-install.sh --destdir=$(DESTDIR) --force --verbose uninstall-data"; \ ./samhain-install.sh --destdir=$(DESTDIR) --force --verbose uninstall-data @@ -499,5 +426,5 @@ remove: uninstall -uninstall: uninstall-program uninstall-man uninstall-data +uninstall: uninstall-lkm uninstall-program uninstall-man uninstall-data @echo; \ echo " Use 'make purge' if you also want to uninstall the configuration file"; \ @@ -519,23 +446,40 @@ # - -install-program: $(PROGRAMS) +# -- NEW -- +install-lkm: @sh_lkm@ + @RVER=`uname -r`; \ + if test "x@sh_lkm@" != "x"; then \ + if test -d /lib/modules/$$RVER; then \ + MODDIR="/lib/modules/$$RVER"; \ + elif test -d /lib/modules/misc; then \ + MODDIR="/lib/modules/misc"; \ + elif test -d /lib/modules; then \ + MODDIR="/lib/modules/misc"; \ + fi; \ + $(mkinstalldirs) $(DESTDIR)$${MODDIR}; \ + list='@sh_lkm@'; for p in $$list; do \ + echo " cp $$p $(DESTDIR)$${MODDIR}/`echo $$p|sed 's%samhain%@install_name@%'`"; \ + cp $$p $(DESTDIR)$${MODDIR}/`echo $$p|sed 's%samhain%@install_name@%'` ; \ + chown root $(DESTDIR)$${MODDIR}/`echo $$p|sed 's%samhain%@install_name@%'`; \ + done; \ + if test "x$(DESTDIR)" = x; then \ + echo " depmod -a || /sbin/depmod -a"; \ + depmod -a || /sbin/depmod -a; \ + fi; \ + fi + +uninstall-lkm: + @echo "./samhain-install.sh --destdir=$(DESTDIR) --express --verbose uninstall-lkm";\ + ./samhain-install.sh --destdir=$(DESTDIR) --express --verbose uninstall-lkm + + +install-program: $(PROGRAMS) sstrip @$(mkinstalldirs) $(DESTDIR)$(sbindir) - @if test x$(mytmpdir) != x; then \ - $(mkinstalldirs) $(DESTDIR)$(mytmpdir); \ - fi @list='$(PROGRAMS)'; for p in $$list; do \ if test -f $$p; then \ - target=$(DESTDIR)$(sbindir)/`echo $$p|sed 's%samhain%@install_name@%'|sed 's%yule%@install_name@%'|sed 's%.*/%%'`; \ - extension=`echo $$target|sed 's%.*\.%%'`; \ - if test x$$extension = x; then \ - echo " $(INSTALL_PROGRAM) $$p $$target"; \ - $(INSTALL_PROGRAM) $$p $$target; \ - chmod 0700 $$target; \ - else \ - echo " $(INSTALL_SHELL) $$p $$target"; \ - $(INSTALL_SHELL) $$p $$target; \ - chmod 0700 $$target; \ - fi; \ + echo " $(INSTALL_PROGRAM) $$p $(DESTDIR)$(sbindir)/`echo $$p|sed 's%samhain%@install_name@%'|sed 's%yule%@install_name@%'`"; \ + $(INSTALL_PROGRAM) $$p $(DESTDIR)$(sbindir)/`echo $$p|sed 's%samhain%@install_name@%'|sed 's%yule%@install_name@%'`; \ + echo " ./sstrip $(DESTDIR)$(sbindir)/`echo $$p|sed 's%samhain%@install_name@%'|sed 's%yule%@install_name@%'`"; \ + ./sstrip $(DESTDIR)$(sbindir)/`echo $$p|sed 's%samhain%@install_name@%'|sed 's%yule%@install_name@%'`; \ else :; fi; \ done @@ -583,10 +527,6 @@ @$(mkinstalldirs) $(DESTDIR)$(mylockdir) @$(mkinstalldirs) $(DESTDIR)$(mylogdir) - @if test -d $(DESTDIR)$(mydatadir); then \ - :; \ - else \ - $(mkinstalldirs) $(DESTDIR)$(mydatadir); \ - chmod 755 $(DESTDIR)$(mydatadir); \ - fi + @$(mkinstalldirs) $(DESTDIR)$(mydatadir); \ + chmod 700 $(DESTDIR)$(mydatadir) @if test -f samhainrc.$(selectconfig); then \ :; \ @@ -608,18 +548,4 @@ if test -f $(srcdir)/stealth_template.jpg; then \ cp $(srcdir)/stealth_template.jpg . ; \ - fi; \ - fi - @if test -d /etc/logrotate.d; then \ - if test ! -d $(DESTDIR)/etc/logrotate.d; then \ - $(mkinstalldirs) $(DESTDIR)/etc/logrotate.d; \ - fi; \ - if test ! -f $(DESTDIR)/etc/logrotate.d/@install_name@; then \ - if test -w $(DESTDIR)/etc/logrotate.d; then \ - cp $(srcdir)/scripts/logrotate $(DESTDIR)/etc/logrotate.d/@install_name@; \ - else \ - echo "$(DESTDIR)/etc/logrotate.d not writable"; \ - fi; \ - else \ - echo "$(DESTDIR)/etc/logrotate.d/@install_name@ exists, not overwriting"; \ fi; \ fi @@ -687,5 +613,5 @@ run-light: all @echo "Building $(PACKAGE)-$(VERSION).run"; \ - STAGE=$(PACKAGE)-$(VERSION)-run-installer; \ + STAGE=$(PACKAGE)-$(VERSION); \ mkdir $$STAGE; \ if test x"$$?" != x0; then \ @@ -693,10 +619,7 @@ exit 1; \ fi; \ - $(MAKE) DESTDIR=$$STAGE install-light; \ + make DESTDIR=$$STAGE install-light; \ rm -f $$STAGE/@sbindir@/@install_name@_stealth; \ echo "#! /bin/sh" > $$STAGE/setup.sh; \ - if test x$(mytmpdir) != x; then \ - echo "./mkinstalldirs @mytmpdir@ || exit 1" >> $$STAGE/setup.sh; \ - fi; \ echo "./mkinstalldirs @sbindir@ || exit 1" >> $$STAGE/setup.sh; \ echo "./mkinstalldirs @sysconfdir@ || exit 1" >> $$STAGE/setup.sh; \ @@ -705,19 +628,27 @@ echo "./mkinstalldirs @mydataroot@ || exit 1" >> $$STAGE/setup.sh; \ echo "chmod 700 @mydataroot@ || exit 1" >> $$STAGE/setup.sh; \ + if test -f $$STAGE/lib/modules; then \ + RVER=`uname -r`; \ + echo "chown root:root lib/modules/$$RVER/*" >> $$STAGE/setup.sh; \ + if test -d /lib/modules/$$RVER; then \ + echo "./mkinstalldirs /lib/modules/$$RVER" >> $$STAGE/setup.sh; \ + echo "cp -p lib/modules/$$RVER/* /lib/modules/$$RVER/" >> $$STAGE/setup.sh; \ + elif test -d /lib/modules/misc; then \ + echo "./mkinstalldirs /lib/modules/misc" >> $$STAGE/setup.sh; \ + echo "cp -p lib/modules/misc/* /lib/modules/misc/" >> $$STAGE/setup.sh; \ + elif test -d /lib/modules; then \ + echo "./mkinstalldirs /lib/modules/misc" >> $$STAGE/setup.sh; \ + echo "cp -p lib/modules/misc/* /lib/modules/misc/" >> $$STAGE/setup.sh; \ + fi; \ + echo "/sbin/depmod -a" >> $$STAGE/setup.sh; \ + fi; \ temp=`echo $(sbindir) | sed s,^/,,`; \ echo "chown root $$temp/*" >> $$STAGE/setup.sh; \ echo "cp -p $$temp/* $(sbindir) || exit 1" >> $$STAGE/setup.sh; \ temp=`echo $(sysconfdir) | sed s,^/,,`; \ - echo "chown -R root $$temp/*" >> $$STAGE/setup.sh; \ + echo "chown root $$temp/*" >> $$STAGE/setup.sh; \ configfile=`echo @myconffile@ | sed 's%^REQ_FROM_SERVER%%'`; \ - echo "cp -pr $$temp/* @sysconfdir@" >> $$STAGE/setup.sh; \ - echo "./samhain-install.sh --express --verbose install-boot" >> $$STAGE/setup.sh; \ - echo "if [ \$$? -ne 0 ]" >> $$STAGE/setup.sh; \ - echo "then" >> $$STAGE/setup.sh; \ - echo " echo 'Installation finished, but could not install boot-time init scripts'" >> $$STAGE/setup.sh; \ - echo " exit 2" >> $$STAGE/setup.sh; \ - echo "fi" >> $$STAGE/setup.sh; \ - echo "echo 'Installation finished'" >> $$STAGE/setup.sh; \ - echo "exit 0" >> $$STAGE/setup.sh; \ + echo "test -f $$configfile || cp -p $$temp/* $$configfile" >> $$STAGE/setup.sh; \ + echo "./samhain-install.sh --express --verbose install-boot" >> $$STAGE/setup.sh; \ cp $(top_srcdir)/mkinstalldirs $$STAGE/; \ cp $(top_srcdir)/install-sh $$STAGE/; \ @@ -729,5 +660,5 @@ chmod +x $$STAGE/install-sh; \ $(top_srcdir)/scripts/makeself/makeself.sh --header $(top_srcdir)/scripts/makeself/makeself-header.sh --nocomp --nomd5 --notemp $$STAGE $(PACKAGE)-$(VERSION).run "$(PACKAGE)_$(VERSION)_self_extracting_installer" ./setup.sh && \ - rm -r $$STAGE + rm -r $(PACKAGE)-$(VERSION) emerge-prepare: dist @@ -808,13 +739,19 @@ chmod +x debian/rules; \ echo $(sbindir) | sed s,^/,, > debian/dirs; \ - if test x$(mytmpdir) != x; then \ - echo $(mytmpdir) | sed s,^/,, >> debian/dirs; \ - fi; \ echo $(sysconfdir) | sed s,^/,, >> debian/dirs; \ echo etc/init.d >> debian/dirs; \ - echo lib/systemd/system >> debian/dirs; \ echo $(mydatadir) | sed s,^/,, >> debian/dirs; \ echo $(mylogdir) | sed s,^/,, >> debian/dirs; \ echo $(mylockdir) | sed s,^/,, >> debian/dirs; \ + if test "x@sh_lkm@" != x; then \ + RVER=`uname -r`; \ + if test -d /lib/modules/$$RVER; then \ + echo "lib/modules/$$RVER" >> debian/dirs; \ + elif test -d /lib/modules/misc; then \ + echo "lib/modules/misc" >> debian/dirs; \ + elif test -d /lib/modules; then \ + echo "lib/modules/misc" >> debian/dirs; \ + fi; \ + fi; \ $(MAKE) deb-run @@ -825,10 +762,6 @@ chmod +x debian/rules; \ echo $(sbindir) | sed s,^/,, > debian/dirs; \ - if test x$(mytmpdir) != x; then \ - echo $(mytmpdir) | sed s,^/,, >> debian/dirs; \ - fi; \ echo $(sysconfdir) | sed s,^/,, >> debian/dirs; \ echo etc/init.d >> debian/dirs; \ - echo lib/systemd/system >> debian/dirs; \ echo $(mydatadir) | sed s,^/,, >> debian/dirs; \ echo $(mylogdir) | sed s,^/,, >> debian/dirs; \ @@ -837,4 +770,14 @@ echo $(mandir)/man8 | sed s,^/,, >> debian/dirs; \ echo usr/share/doc/$(PACKAGE) >> debian/dirs; \ + if test "x@sh_lkm@" != x; then \ + RVER=`uname -r`; \ + if test -d /lib/modules/$$RVER; then \ + echo "lib/modules/$$RVER" >> debian/dirs; \ + elif test -d /lib/modules/misc; then \ + echo "lib/modules/misc" >> debian/dirs; \ + elif test -d /lib/modules; then \ + echo "lib/modules/misc" >> debian/dirs; \ + fi; \ + fi; \ echo $(top_srcdir)/README > debian/docs; \ echo $(top_srcdir)/test/testtiger.txt >> debian/docs; \ @@ -846,22 +789,20 @@ echo $(top_srcdir)/docs/HOWTO-client+server.html >> debian/docs; \ echo $(top_srcdir)/docs/HOWTO-samhain+GnuPG.html >> debian/docs; \ - echo $(top_srcdir)/docs/MANUAL-2_4.html.tar >> debian/docs; \ - echo $(top_srcdir)/docs/MANUAL-2_4.pdf >> debian/docs; \ + echo $(top_srcdir)/docs/MANUAL-2_0.html.tar >> debian/docs; \ + echo $(top_srcdir)/docs/MANUAL-2_0.ps >> debian/docs; \ echo $(top_srcdir)/docs/README.gcc_bug >> debian/docs; \ echo $(top_srcdir)/docs/README.LZO >> debian/docs; \ + echo $(top_srcdir)/docs/README.sstrip >> debian/docs; \ echo $(top_srcdir)/docs/README.UPGRADE >> debian/docs; \ echo $(top_srcdir)/docs/README.win2K >> debian/docs; \ + echo $(top_srcdir)/docs/TODO >> debian/docs; \ $(MAKE) deb-run deb-run: - @maintainer=`gpg --list-secret-keys | grep 'uid ' | cut -d" " -f 5- | sed 's/^ *//' | sed q1`;\ + @maintainer=`gpg --list-secret-keys | grep 'sec ' | cut -d" " -f 5-`;\ if test "x$$maintainer" = x; then \ - maintainer="$(DEFAULT_MAINTAINER)"; \ - fi; \ - codename=`lsb_release -a 2>/dev/null | grep Codename | cut -f 2`; \ - if test "x$$codename" = x; then \ - codename="stable"; \ - fi; \ - echo "$(PACKAGE) ($(VERSION)-$(BUILD_NUM)) $$codename; urgency=low" > debian/changelog; \ + maintainer="Nobody Nowhere "; \ + fi; \ + echo "$(PACKAGE) ($(VERSION)-1) stable; urgency=low" > debian/changelog; \ echo >> debian/changelog; \ echo " * Initial release." >> debian/changelog; \ @@ -869,7 +810,9 @@ echo " -- $$maintainer `date -R`" >> debian/changelog; \ echo >> debian/changelog; \ + echo "Local variables:" >> debian/changelog; \ + echo "mode: debian-changelog" >> debian/changelog; \ + echo "End:" >> debian/changelog; \ cp $(top_srcdir)/COPYING debian/copyright; \ - echo "9" > debian/compat; \ - echo "Nothing to see here." > debian/README.debian; \ + touch debian/README.debian; \ echo "Document: @install_name@-manual" > debian/@install_name@.doc-base; \ echo "Title: @install_name@ Manual" >> debian/@install_name@.doc-base; \ @@ -878,32 +821,29 @@ echo " and how it can be used to check the file integrity of your" >> debian/@install_name@.doc-base; \ echo " server." >> debian/@install_name@.doc-base; \ - echo "Section: System/Security" >> debian/@install_name@.doc-base; \ + echo "Section: admin" >> debian/@install_name@.doc-base; \ echo >> debian/@install_name@.doc-base; \ echo >> debian/@install_name@.doc-base; \ echo "Format: Postscript" >> debian/@install_name@.doc-base; \ - echo "Files: /usr/share/doc/@install_name@/manual.pdf.gz" >> debian/@install_name@.doc-base; \ + echo "Files: /usr/share/doc/@install_name@/manual.ps.gz" >> debian/@install_name@.doc-base; \ echo >> debian/@install_name@.doc-base; \ echo "Format: HTML" >> debian/@install_name@.doc-base; \ echo "Index: /usr/share/doc/@install_name@/manual.html/index.html" >> debian/@install_name@.doc-base; \ echo "Files: /usr/share/doc/@install_name@/manual.html/*.html" >> debian/@install_name@.doc-base; \ - if test -f /usr/lib/lsb/install_initd; then \ - cp init/samhain.startLSB debian/@install_name@.init; \ - else \ - cp init/samhain.startLinux debian/@install_name@.init; \ - fi; \ + echo $(sysconfdir)/@install_name@rc > debian/conffiles; \ + echo /etc/init.d/@install_name@ >> debian/conffiles; \ + cp init/samhain.startLinux debian/@install_name@.init; \ echo "Source: samhain" > debian/control; \ echo "Section: admin" >> debian/control; \ echo "Priority: optional" >> debian/control; \ echo "Maintainer: $$maintainer" >> debian/control; \ - echo "Build-Depends: debhelper (>> 9)" >> debian/control; \ - echo "Standards-Version: 3.9.8" >> debian/control; \ + echo "Standards-Version: 3.2.1" >> debian/control; \ echo >> debian/control; \ echo "Package: @install_name@" >> debian/control; \ echo "Architecture: any" >> debian/control; \ - echo "Depends: \$${shlibs:Depends}, \$${misc:Depends}" >> debian/control; \ + echo "Depends: \$${shlibs:Depends}" >> debian/control; \ echo "Description: File integrity checker" >> debian/control; \ echo " A file integrity checker" >> debian/control; \ echo "running debuild -us -uc"; \ - export DEB_BUILD_MAINT_OPTIONS=optimize=-all; debuild --preserve-envvar=PASSWORD -us -uc -b; \ + debuild -us -uc; \ DEBFILE=`find ../ -follow -maxdepth 1 -cnewer ./debian/control 2>/dev/null | grep '@install_name@_$(VERSION)' | grep '\.deb'`; \ if test x"$$DEBFILE" = x; then \ @@ -912,6 +852,5 @@ else \ echo "Package $$DEBFILE built."; \ - cp $$DEBFILE ./$(PACKAGE)-$(VERSION)-$(BUILD_NUM).deb; \ - ln --backup=numbered -fs ./$(PACKAGE)-$(VERSION)-$(BUILD_NUM).deb ./$(PACKAGE)-$(VERSION).deb; \ + cp $$DEBFILE ./$(PACKAGE)-$(VERSION).deb; \ fi; \ echo @@ -933,24 +872,11 @@ rpmspec-light: samhain.spec @echo "Stripping docs from samhain.spec"; \ - cat samhain.spec | sed 's,make DESTDIR=$${RPM_BUILD_ROOT} install,make DESTDIR=$${RPM_BUILD_ROOT} install-light,' | sed s,shkeep=yes,shkeep=no, | sed s,%doc.*,, | sed '/logrotate/! { s,%attr.*,, }' > samhain.spec-light; \ + cat samhain.spec | sed 's,make DESTDIR=$${RPM_BUILD_ROOT} install,make DESTDIR=$${RPM_BUILD_ROOT} install-light,' | sed s,shkeep=yes,shkeep=no, | sed s,%doc.*,, | sed s,%attr.*,, > samhain.spec-light; \ mv samhain.spec-light samhain.spec rpm-light: rpmspec-light distrpm rpmbuild -ta ./$(PACKAGE)-$(VERSION).tar.gz; - @RPMTOP=`cat ~/.rpmmacros 2>/dev/null | grep '%_topdir' | awk '{ print $$2}'`; \ - if test x"$$RPMTOP" = x; then \ - try_RPMTOP=`echo $${HOME}/rpmbuild`; \ - else \ - if test ! -d "$${try_RPMTOP}"; then \ - try_RPMTOP=`echo $${HOME}/rpmbuild`; \ - fi; \ - fi; \ - if test -d "$${try_RPMTOP}"; then \ - RPMTOP="$${try_RPMTOP}"; \ - else \ - RPMTOP=/usr/src; \ - fi; \ - echo "Searching the RPM package below $$RPMTOP ..."; \ - RPMFILE=`find $$RPMTOP -follow -maxdepth 4 -cnewer ./samhain.spec 2>/dev/null | grep '@install_name@-$(VERSION)' | grep '\.rpm' | grep -v '\.src\.'`; \ + @echo "Searching the RPM package ..."; \ + RPMFILE=`find /usr/src -follow -maxdepth 4 -cnewer ./samhain.spec 2>/dev/null | grep '@install_name@-$(VERSION)' | grep '\.rpm' | grep -v '\.src\.'`; \ echo; \ if test x"$$RPMFILE" = x; then \ @@ -959,5 +885,4 @@ else \ echo "Package $$RPMFILE built."; \ - echo "Copying it to ./$(PACKAGE)-$(VERSION).rpm"; \ cp $$RPMFILE ./$(PACKAGE)-$(VERSION).rpm; \ fi; \ @@ -966,19 +891,6 @@ rpm: rpmspec-full distrpm rpmbuild -ta ./$(PACKAGE)-$(VERSION).tar.gz; - @RPMTOP=`cat ~/.rpmmacros 2>/dev/null | grep '%_topdir' | awk '{ print $$2}'`; \ - if test x"$$RPMTOP" = x; then \ - try_RPMTOP=`echo $${HOME}/rpmbuild`; \ - else \ - if test ! -d "$${try_RPMTOP}"; then \ - try_RPMTOP=`echo $${HOME}/rpmbuild`; \ - fi; \ - fi; \ - if test -d "$${try_RPMTOP}"; then \ - RPMTOP="$${try_RPMTOP}"; \ - else \ - RPMTOP=/usr/src; \ - fi; \ - echo "Searching the RPM package below $$RPMTOP ..."; \ - RPMFILE=`find $$RPMTOP -follow -maxdepth 4 -cnewer ./samhain.spec 2>/dev/null | grep '@install_name@-$(VERSION)' | grep '\.rpm' | grep -v '\.src\.'`; \ + @echo "Searching the RPM package ..."; \ + RPMFILE=`find /usr/src -follow -maxdepth 4 -cnewer ./samhain.spec 2>/dev/null | grep '@install_name@-$(VERSION)' | grep '\.rpm' | grep -v '\.src\.'`; \ echo; \ if test x"$$RPMFILE" = x; then \ @@ -987,5 +899,4 @@ else \ echo "Package $$RPMFILE built."; \ - echo "Copying it to ./$(PACKAGE)-$(VERSION).rpm"; \ cp $$RPMFILE ./$(PACKAGE)-$(VERSION).rpm; \ fi; \ @@ -1011,5 +922,5 @@ exit 1; \ fi; \ - $(MAKE) DESTDIR=$$STAGE install-light; + make DESTDIR=$$STAGE install-light; $(MAKE) solaris-pkg-finish @@ -1021,5 +932,5 @@ exit 1; \ fi; \ - $(MAKE) DESTDIR=$$STAGE install; + make DESTDIR=$$STAGE install; $(MAKE) solaris-pkg-finish @@ -1031,21 +942,11 @@ user=`id | sed s,uid=[0123456789]*\(,, | sed s,\).*,,`; \ group=`id | sed s,.*gid=[0123456789]*\(,, | sed s,\).*,,`; \ - cat prototype | grep -v 'none / ' | \ + cat prototype | grep -v 'none / ' | grep -v 'none /usr ' | \ + grep -v 'none /usr/local ' | grep -v 'none /usr/bin ' | \ + grep -v 'none /usr/local/bin ' | grep -v 'none /usr/local/sbin ' | \ + grep -v 'none /var ' | grep -v 'none /usr/sbin ' | \ sed s,$$user\ $$group,root\ sys,g > prototype.1; \ - rm -f prototype.2; \ - while read line; do \ - echo "$${line}" | egrep '^d none' >/dev/null 2>&1; \ - if [ $$? = 0 ]; then \ - dir=`echo "$${line}" | awk '{ print $$3 }'`; \ - if [ -d "$$dir" ]; then \ - echo "d none $${dir} ? ? ?" >> prototype.2; \ - else \ - echo "$${line}" >> prototype.2; \ - fi; \ - else \ - echo "$${line}" >> prototype.2; \ - fi; \ - done < prototype.1; \ - rm -f prototype && rm prototype.1 && mv prototype.2 prototype; \ + rm -f prototype && mv prototype.1 prototype; \ + echo "d none /var ? ? ?" >> prototype; \ echo "d none /etc/rc0.d ? ? ?" >> prototype; \ echo "d none /etc/rc1.d ? ? ?" >> prototype; \ @@ -1055,5 +956,5 @@ echo "l none /etc/rc1.d/K10@install_name@=/etc/init.d/@install_name@" >> prototype; \ ARCH=`uname -p`; \ - PSTAMP=`date '+%c%y%m%d%H%M%S'`; \ + PSTAMP=`date '+%cc%yy%mm%dd%HH%MM%SS'`; \ echo "PKG=@install_name@" > pkginfo; \ echo "NAME=file integrity check" >> pkginfo; \ @@ -1070,18 +971,11 @@ echo; \ cp /tmp/samhain-pkg-staging/@install_name@.pkg $(PACKAGE)-$(VERSION).pkg; \ - echo "Package $(PACKAGE)-$(VERSION).pkg is ready for installation"; \ - echo "to install, use: pkgadd -n -d $(PACKAGE)-$(VERSION).pkg all"; \ + echo "Package @install_name@.pkg is ready for installation"; \ echo; \ - rm -rf /var/spool/pkg/@install_name@ /tmp/samhain-pkg-staging; \ + rm -r /var/spool/pkg/@install_name@ /tmp/samhain-pkg-staging; \ else \ echo; \ - echo "**************************************************************"; \ echo "Error ... cannot find /tmp/samhain-pkg-staging/@install_name@.pkg."; \ echo "Keeping /var/spool/pkg/@install_name@ /tmp/samhain-pkg-staging"; \ - if test -d /var/spool/pkg; then \ - echo "**************************************************************"; \ - else \ - echo "************** /var/spool/pkg is missing *********************"; \ - fi; \ echo; \ exit 1; \ @@ -1095,6 +989,6 @@ exit 1; \ fi; \ - $(MAKE) DESTDIR=$$STAGE install; \ - $(MAKE) DESTDIR=$$STAGE install-boot; \ + make DESTDIR=$$STAGE install; \ + make DESTDIR=$$STAGE install-boot; \ cp hp_ux.psf $$STAGE; \ mkdir $$STAGE/sc; \ @@ -1137,23 +1031,29 @@ +sstrip: $(srcsrc)/sstrip.c Makefile + $(COMPILE) -o sstrip $(srcsrc)/sstrip.c + encode: $(srcsrc)/encode.c Makefile - $(BUILD_CC) -I. -o encode $(srcsrc)/encode.c + $(COMPILE) -o encode $(srcsrc)/encode.c config_xor.h: config.h encode @echo 'encode $(XOR_CODE) config.h'; \ + sleep 1; \ ./encode $(XOR_CODE) config.h; \ mv x_config.h config_xor.h - -$(OBJECTS): encode internal.h config_xor.h +#.c.o: +# @echo "./encode $(XOR_CODE) $< --> x_`echo $< |sed 's%.*/%%'`"; \ +# ./encode $(XOR_CODE) $<; \ +# echo "$(COMPILE) $(VFLAG) -o `echo $@ |sed 's%.*/%%'` -c x_`echo $< |sed 's%.*/%%'`"; \ +# $(COMPILE) $(VFLAG) -o `echo $@ |sed 's%.*/%%'` -c x_`echo $< |sed 's%.*/%%'`; \ +# rm x_`echo $< |sed 's%.*/%%'` + +$(OBJECTS): @echo "./encode $(XOR_CODE) $(srcsrc)/`echo $@ |sed 's%\.o$$%%'`.c --> x_`echo $@ |sed 's%\.o$$%%'`.c"; \ ./encode $(XOR_CODE) $(srcsrc)/`echo $@ |sed 's%\.o$$%%'`.c; \ echo "$(COMPILE) $(VFLAG) -o `echo $@ |sed 's%.*/%%'` -c x_`echo $@ |sed 's%\.o$$%%'`.c"; \ - $(COMPILE) $(VFLAG) -o `echo $@ |sed 's%.*/%%'` -c x_`echo $@ |sed 's%\.o$$%%'`.c && \ + $(COMPILE) $(VFLAG) -o `echo $@ |sed 's%.*/%%'` -c x_`echo $@ |sed 's%\.o$$%%'`.c; \ rm x_`echo $@ |sed 's%\.o$$%%'`.c - -sh_tiger_i.o: $(srcsrc)/$(TIGER_SRC) Makefile config_xor.h - @echo "$(COMPILE) $(VFLAG) -o sh_tiger_i.o -c $(srcsrc)/$(TIGER_SRC)";\ - $(COMPILE) $(VFLAG) -o sh_tiger_i.o -c $(srcsrc)/$(TIGER_SRC); samhain_setpwd: encode config_xor.h $(srcsrc)/samhain_setpwd.c @@ -1175,54 +1075,57 @@ rm x_yulectl.c -$(SAMHAIN): internal.h $(OBJECTS) sh_tiger_i.o +$(SAMHAIN): internal.h $(OBJECTS) @-rm -f $(SAMHAIN) - @echo "$(LINK) sh_tiger_i.o $(OBJECTS) $(LIBS_TRY)"; \ - $(LINK) sh_tiger_i.o $(OBJECTS) $(LIBS_TRY) - - -CUTEST_SOURCES = $(srcsrc)/cutest_sh_tools.c \ - $(srcsrc)/cutest_sh_utils.c \ - $(srcsrc)/cutest_sh_unix.c \ - $(srcsrc)/cutest_slib.c \ - $(srcsrc)/cutest_zAVLTree.c \ - $(srcsrc)/cutest_sh_hash.c \ - $(srcsrc)/cutest_sh_tiger0.c - -CUTEST_OBJECTS = cutest_sh_tools.o \ - cutest_sh_utils.o \ - cutest_sh_unix.o \ - cutest_slib.o \ - cutest_zAVLTree.o \ - cutest_sh_hash.o \ - cutest_sh_tiger0.o - -$(CUTEST_OBJECTS): $(CUTEST_SOURCES) config_xor.h internal.h - @echo "./encode $(XOR_CODE) $(srcsrc)/`echo $@ |sed 's%\.o$$%%'`.c --> x_`echo $@ |sed 's%\.o$$%%'`.c"; \ - ./encode $(XOR_CODE) $(srcsrc)/`echo $@ |sed 's%\.o$$%%'`.c; \ - echo "$(COMPILE) $(VFLAG) -o `echo $@ |sed 's%.*/%%'` -c x_`echo $@ |sed 's%\.o$$%%'`.c"; \ - $(COMPILE) $(VFLAG) -o `echo $@ |sed 's%.*/%%'` -c x_`echo $@ |sed 's%\.o$$%%'`.c; \ - rm x_`echo $@ |sed 's%\.o$$%%'`.c - - -cutest: $(SOURCES) $(CUTEST_SOURCES) - @$(MAKE) CUTEST='-DSH_CUTEST=1' intcutest - -$(srcsrc)/CuTestMain.c: $(SOURCES) $(CUTEST_SOURCES) $(srcsrc)/make-tests.sh - cd $(srcsrc)/ && ./make-tests.sh >CuTestMain.c; - -intcutest: internal.h $(OBJECTS) $(CUTEST_OBJECTS) sh_tiger_i.o $(srcsrc)/CuTestMain.c - @$(COMPILE) -o CuTestMain.o -c $(srcsrc)/CuTestMain.c; \ - $(COMPILE) -o CuTest.o -c $(srcsrc)/CuTest.c; \ - rm -f samhain.o; \ - ./encode $(XOR_CODE) $(srcsrc)/samhain.c; \ - $(COMPILE) $(VFLAG) -o samhain.o -c x_samhain.c; \ - rm x_samhain.c; \ - $(LINK) sh_tiger_i.o $(CUTEST_OBJECTS) CuTestMain.o CuTest.o $(OBJECTS) $(LIBS_TRY); \ - test -f ./intcutest && mv ./intcutest ./cutest; \ - ./cutest - -runcutest: - gdb ./cutest - + @echo "$(LINK) $(OBJECTS) $(LIBS_TRY)"; \ + $(LINK) $(OBJECTS) $(LIBS_TRY) + + + +samhain_hide.o: $(srcsrc)/samhain_hide.c samhain_erase.o + gcc @lkm_inc@ -I. -Wall -O2 -c $(srcsrc)/samhain_hide.c + +samhain_erase.o: $(srcsrc)/samhain_erase.c + gcc @lkm_inc@ -I. -Wall -O2 -c $(srcsrc)/samhain_erase.c + +# -- NEW -- +samhain_hide.ko: $(srcsrc)/samhain_hide.c + @test -d m_comp || mkdir m_comp; \ + echo "KVERSION := \$$(shell uname -r)" > m_comp/Makefile;\ + echo "KSOURCE ?= /lib/modules/\$$(KVERSION)/build" >> m_comp/Makefile;\ + echo "obj-m := samhain_hide.o" >> m_comp/Makefile;\ + echo ".PHONY: modules install clean modules_add" >> m_comp/Makefile;\ + echo "install : modules_add" >> m_comp/Makefile;\ + echo "modules modules_install clean:" >> m_comp/Makefile;\ + echo "T\$$(MAKE) -C \$$(KSOURCE) \$$@ SUBDIRS=\$$(CURDIR) KBUILD_VERBOSE=2" | tr T '\t' >> m_comp/Makefile;\ + cp config.h m_comp/; \ + cp $(srcsrc)/samhain_hide.c m_comp/; \ + cd m_comp && make modules + @if test -f m_comp/samhain_hide.ko; then \ + cp -p m_comp/samhain_hide.ko samhain_hide.ko; \ + rm -rf m_comp/; \ + else \ + echo "Kernel module samhain_hide.ko not build"; \ + exit 1; \ + fi + +# -- NEW -- +lkm: @sh_lkm@ + + + +# For kernel syscall monitoring +kern_head: Makefile $(top_srcdir)/include/kern_head.h $(srcsrc)/kern_head.c + @echo "$(COMPILE) -DSYSTEMMAP=\"@systemmap@\" -o kern_head $(srcsrc)/kern_head.c $(LIBS_KVM)"; \ + $(COMPILE) -DSYSTEMMAP=\"@systemmap@\" -o kern_head $(srcsrc)/kern_head.c $(LIBS_KVM) + +sh_ks.h: kern_head + @sleep 1; \ + ./kern_head > sh_ks.h + +sh_ks_xor.h: encode sh_ks.h + @echo 'encode $(XOR_CODE) sh_ks.h'; \ + sleep 1; \ + ./encode $(XOR_CODE) sh_ks.h; \ + mv x_sh_ks.h sh_ks_xor.h # For bignum @@ -1233,12 +1136,11 @@ bignum.o: internal.h - # If your compiler can't handle long identifiers (> 6 chars), move the `#' to # the other line. mkhdr: $(srcsrc)/mkhdr.c config.h - @echo "$(BUILD_CC) -I. -o mkhdr $(srcsrc)/mkhdr.c"; \ + @echo "$(COMPILE) -o mkhdr $(srcsrc)/mkhdr.c"; \ sleep 1; \ - $(BUILD_CC) -I. -o mkhdr $(srcsrc)/mkhdr.c + $(COMPILE) -o mkhdr $(srcsrc)/mkhdr.c # $(COMPILE) -DBIG_SHORT_NAMES -o mkhdr $(srcdir)/mkhdr.c @@ -1263,9 +1165,11 @@ # prepare the data to be packed # -exepack.data: $(SAMHAIN) exepack_mkdata +exepack.data: $(SAMHAIN) exepack_mkdata sstrip @echo "cp ./$(SAMHAIN) ./samhain.pk.data"; \ cp ./$(SAMHAIN) ./samhain.pk.data; \ echo "strip ./samhain.pk.data"; \ strip ./samhain.pk.data > /dev/null 2>&1 || echo "... is already stripped"; \ + echo "./sstrip ./samhain.pk.data"; \ + ./sstrip ./samhain.pk.data > /dev/null 2>&1 || echo "sstrip returned false"; \ echo "./exepack_mkdata ./samhain.pk.data ./exepack.data 0"; \ ./exepack_mkdata ./samhain.pk.data ./exepack.data 0; \ @@ -1288,9 +1192,11 @@ $(LINK) exepack_fill.o minilzo.o -samhain.pk: $(SAMHAIN) exepack exepack_fill +samhain.pk: $(SAMHAIN) exepack exepack_fill sstrip @echo "cp ./$(SAMHAIN) ./samhain.pk.data"; \ cp ./$(SAMHAIN) ./samhain.pk.data; \ echo "strip ./samhain.pk.data"; \ strip ./samhain.pk.data > /dev/null 2>&1 || echo "... is already stripped"; \ + echo "./sstrip ./samhain.pk.data"; \ + ./sstrip ./samhain.pk.data > /dev/null 2>&1 || echo "sstrip returned false"; \ test -f exepack.out && rm exepack.out; \ echo "./exepack_fill exepack samhain.pk.data exepack.out"; \ @@ -1299,4 +1205,5 @@ echo "strip exepack.out"; \ strip exepack.out > /dev/null 2>&1 || echo "... is already stripped"; \ + ./sstrip exepack.out > /dev/null 2>&1 || echo "sstrip returned false"; \ echo "mv exepack.out samhain.pk"; \ rm -f samhain.pk; mv exepack.out samhain.pk @@ -1494,18 +1401,13 @@ -rm -rf $(distdir) -rm -f $(distdir).tar.gz.asc - gpg -a --detach-sign $(distdir).tar.gz; - $(TAR) chof $(distdir).tar $(distdir).tar.gz $(distdir).tar.gz.asc; - @if test x"$$?" != x0; then \ - rm -f $(distdir).tar.gz; \ - echo "ERROR creating $(PACKAGE)_signed-$(VERSION).tar.gz"; \ - else \ - rm -f $(distdir).tar.gz; \ - rm -f $(distdir).tar.gz.asc; \ - gzip --best $(distdir).tar; \ - mv $(distdir).tar.gz $(PACKAGE)_signed-$(VERSION).tar.gz; \ - echo "========================"; \ - echo "$(PACKAGE)_signed-$(VERSION).tar.gz is ready for distribution"; \ - echo "========================"; \ - fi; \ + @gpg -a --detach-sign $(distdir).tar.gz; \ + $(TAR) chof $(distdir).tar $(distdir).tar.gz $(distdir).tar.gz.asc; \ + rm -f $(distdir).tar.gz; \ + rm -f $(distdir).tar.gz.asc; \ + gzip --best $(distdir).tar + mv $(distdir).tar.gz $(PACKAGE)_signed-$(VERSION).tar.gz + @echo "========================"; \ + echo "$(PACKAGE)_signed-$(VERSION).tar.gz is ready for distribution"; \ + echo "========================" # @@ -1561,14 +1463,10 @@ # INITFILES=samhain.startIRIX samhain.startFreeBSD samhain.startSolaris \ -samhain.startLSB samhain.startGentoo samhain.startLinux samhain.startHPUX \ -samhain.startIRIX samhain.startMACOSX samhain.startSystemd - -SCRIPTFILES=redhat_i386.client.spec check_samhain.pl samhainadmin.pl \ -samhainadmin-gpg.pl samhainadmin-sig.pl logrotate \ -yuleadmin.pl samhain.ebuild samhain.ebuild-light samhain.spec +samhain.startLSB samhain.startGentoo samhain.startLinux samhain.startHPUX + +SCRIPTFILES=redhat_i386.client.spec check_samhain.pl samhainadmin.pl distdir: distfilecheck -rm -f $(top_srcdir)/init/*~ - -rm -f $(top_srcdir)/sql_init/*~ -rm -f $(top_srcdir)/dsys/*~ -rm -f $(top_srcdir)/docs/*~ @@ -1578,9 +1476,8 @@ -rm -f $(top_srcdir)/scripts/*~ (cd $(top_srcdir)/init && rm -f $(INITFILES)) + (cd $(top_srcdir)/scripts && rm -f $(SCRIPTFILES)) -rm -rf $(distdir) mkdir $(distdir) -chmod 777 $(distdir) - cp scripts/samhain.spec $(distdir)/samhain.spec; \ - (cd $(top_srcdir)/scripts && rm -f $(SCRIPTFILES)) @for file in $(DISTFILES); do \ d=$(top_srcdir); \ @@ -1589,4 +1486,5 @@ fi; \ done; \ + cp scripts/samhain.spec $(distdir)/samhain.spec; \ rm -f $(distdir)/scripts/*.spec @@ -1639,42 +1537,38 @@ - -samhain.o: $(srcsrc)/samhain.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_files.h $(srcinc)/sh_getopt.h $(srcinc)/sh_readconf.h $(srcinc)/sh_hash.h $(srcinc)/sh_dbIO.h $(srcinc)/sh_restrict.h $(srcinc)/sh_nmail.h $(srcinc)/sh_tiger.h $(srcinc)/sh_sig.h $(srcinc)/sh_mem.h $(srcinc)/sh_xfer.h $(srcinc)/sh_tools.h $(srcinc)/sh_hash.h $(srcinc)/sh_extern.h $(srcinc)/sh_modules.h $(srcinc)/sh_ignore.h $(srcinc)/sh_prelink.h $(srcinc)/sh_sem.h sh_MK.h $(srcinc)/sh_schedule.h -sh_unix.o: $(srcsrc)/sh_unix.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_utils.h $(srcinc)/sh_mem.h $(srcinc)/sh_hash.h $(srcinc)/sh_tools.h $(srcinc)/sh_restrict.h $(srcinc)/sh_ipvx.h $(srcinc)/sh_tiger.h $(srcinc)/sh_prelink.h $(srcinc)/sh_pthread.h $(srcinc)/sh_sem.h $(srcinc)/sh_static.h $(srcinc)/sh_prelude.h $(srcinc)/zAVLTree.h $(srcinc)/sh_subuid.h $(srcinc)/sh_ignore.h -sh_utils.o: $(srcsrc)/sh_utils.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_entropy.h $(srcinc)/sh_pthread.h -sh_error.o: $(srcsrc)/sh_error.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_cat.h $(srcinc)/sh_database.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_nmail.h $(srcinc)/sh_xfer.h $(srcinc)/sh_prelude.h $(srcinc)/sh_pthread.h $(srcinc)/sh_tools.h $(srcinc)/sh_extern.h $(srcinc)/sh_checksum.h -sh_files.o: $(srcsrc)/sh_files.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_files.h $(srcinc)/sh_tiger.h $(srcinc)/sh_hash.h $(srcinc)/sh_ignore.h $(srcinc)/sh_inotify.h $(srcinc)/zAVLTree.h $(srcinc)/sh_dbIO.h $(srcinc)/CuTest.h -sh_getopt.o: $(srcsrc)/sh_getopt.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_getopt.h $(srcinc)/sh_unix.h $(srcinc)/sh_files.h $(srcinc)/sh_utils.h $(srcinc)/sh_mail.h $(srcinc)/sh_xfer.h $(srcinc)/sh_hash.h $(srcinc)/sh_dbIO.h $(srcinc)/sh_dbCheck.h $(srcinc)/sh_dbCreate.h $(srcinc)/sh_sem.h $(srcinc)/sh_extern.h -sh_readconf.o: $(srcsrc)/sh_readconf.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_calls.h $(srcinc)/sh_error.h $(srcinc)/sh_extern.h $(srcinc)/sh_unix.h $(srcinc)/sh_files.h $(srcinc)/sh_xfer.h $(srcinc)/sh_sig.h $(srcinc)/sh_hash.h $(srcinc)/sh_dbIO.h $(srcinc)/sh_ignore.h $(srcinc)/sh_database.h $(srcinc)/sh_mail.h $(srcinc)/sh_modules.h $(srcinc)/sh_nmail.h $(srcinc)/sh_prelink.h $(srcinc)/sh_prelude.h $(srcinc)/sh_tiger.h $(srcinc)/sh_tools.h $(srcinc)/sh_utils.h $(srcinc)/sh_restrict.h $(srcinc)/sh_socket.h -sh_tiger0.o: $(srcsrc)/sh_tiger0.c Makefile config_xor.h $(srcinc)/sh_tiger.h $(srcinc)/sh_unix.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_pthread.h $(srcinc)/sh_string.h $(srcinc)/sh_checksum.h +samhain.o: $(srcsrc)/samhain.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_files.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_getopt.h $(srcinc)/sh_readconf.h $(srcinc)/sh_hash.h $(srcinc)/sh_mail.h $(srcinc)/sh_tiger.h $(srcinc)/sh_gpg.h $(srcinc)/sh_mem.h $(srcinc)/sh_forward.h $(srcinc)/sh_tools.h $(srcinc)/sh_hash.h $(srcinc)/sh_extern.h $(srcinc)/sh_modules.h $(srcinc)/sh_ignore.h $(srcinc)/sh_prelink.h sh_MK.h $(srcinc)/sh_schedule.h +sh_unix.o: $(srcsrc)/sh_unix.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_utils.h $(srcinc)/sh_mem.h $(srcinc)/sh_hash.h $(srcinc)/sh_tools.h $(srcinc)/sh_tiger.h $(srcinc)/sh_prelink.h $(srcinc)/sh_static.h $(srcinc)/sh_prelude.h $(srcinc)/sh_ignore.h +sh_utils.o: $(srcsrc)/sh_utils.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_entropy.h +sh_error.o: $(srcsrc)/sh_error.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_cat.h $(srcinc)/sh_database.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_mail.h $(srcinc)/sh_forward.h $(srcinc)/sh_prelude.h $(srcinc)/sh_tools.h $(srcinc)/sh_extern.h +sh_files.o: $(srcsrc)/sh_files.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_files.h $(srcinc)/sh_tiger.h $(srcinc)/sh_hash.h $(srcinc)/sh_ignore.h $(srcinc)/zAVLTree.h +sh_getopt.o: $(srcsrc)/sh_getopt.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_getopt.h $(srcinc)/sh_files.h $(srcinc)/sh_utils.h $(srcinc)/sh_mail.h $(srcinc)/sh_forward.h $(srcinc)/sh_hash.h $(srcinc)/sh_extern.h +sh_readconf.o: $(srcsrc)/sh_readconf.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_database.h $(srcinc)/sh_unix.h $(srcinc)/sh_utils.h $(srcinc)/sh_files.h $(srcinc)/sh_mail.h $(srcinc)/sh_calls.h $(srcinc)/sh_tiger.h $(srcinc)/sh_forward.h $(srcinc)/sh_modules.h $(srcinc)/sh_gpg.h $(srcinc)/sh_hash.h $(srcinc)/sh_ignore.h $(srcinc)/sh_prelink.h $(srcinc)/sh_extern.h $(srcinc)/sh_database.h $(srcinc)/sh_prelude.h +sh_tiger0.o: $(srcsrc)/sh_tiger0.c Makefile config_xor.h $(srcinc)/sh_tiger.h $(srcinc)/sh_unix.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h sh_tiger1.o: $(srcsrc)/sh_tiger1.c Makefile config_xor.h sh_tiger2.o: $(srcsrc)/sh_tiger2.c Makefile config_xor.h sh_tiger1_64.o: $(srcsrc)/sh_tiger1_64.c Makefile config_xor.h sh_tiger2_64.o: $(srcsrc)/sh_tiger2_64.c Makefile config_xor.h -sh_hash.o: $(srcsrc)/sh_hash.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_dbIO_int.h $(srcinc)/sh_dbIO.h $(srcinc)/sh_hash.h $(srcinc)/sh_error.h $(srcinc)/sh_tiger.h $(srcinc)/sh_sig.h $(srcinc)/sh_unix.h $(srcinc)/sh_files.h $(srcinc)/sh_ignore.h $(srcinc)/sh_pthread.h $(srcinc)/sh_xfer.h $(srcinc)/sh_hash.h $(srcinc)/sh_checksum.h -sh_mail.o: $(srcsrc)/sh_mail.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_mail.h $(srcinc)/sh_utils.h $(srcinc)/sh_fifo.h $(srcinc)/sh_tools.h $(srcinc)/sh_pthread.h $(srcinc)/sh_filter.h $(srcinc)/sh_mail_int.h $(srcinc)/sh_nmail.h $(srcinc)/sh_ipvx.h $(srcinc)/sh_static.h $(srcinc)/sh_tools.h -sh_nmail.o: $(srcsrc)/sh_nmail.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_mem.h $(srcinc)/sh_mail.h $(srcinc)/sh_tiger.h $(srcinc)/sh_string.h $(srcinc)/sh_utils.h $(srcinc)/sh_fifo.h $(srcinc)/sh_filter.h $(srcinc)/sh_mail_int.h $(srcinc)/zAVLTree.h -sh_mem.o: $(srcsrc)/sh_mem.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_mem.h $(srcinc)/sh_pthread.h -sh_entropy.o: $(srcsrc)/sh_entropy.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_calls.h $(srcinc)/sh_pthread.h $(srcinc)/sh_static.h $(srcinc)/sh_pthread.h $(srcinc)/CuTest.h -sh_xfer_client.o: $(srcsrc)/sh_xfer_client.c Makefile config_xor.h $(srcinc)/sh_ipvx.h $(srcinc)/samhain.h $(srcinc)/sh_tiger.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_xfer.h $(srcinc)/sh_srp.h $(srcinc)/sh_fifo.h $(srcinc)/sh_tools.h $(srcinc)/sh_entropy.h $(srcinc)/sh_html.h $(srcinc)/sh_nmail.h $(srcinc)/sh_socket.h $(srcinc)/sh_static.h $(srcinc)/rijndael-api-fst.h -sh_xfer_server.o: $(srcsrc)/sh_xfer_server.c Makefile config_xor.h $(srcinc)/sh_ipvx.h $(srcinc)/samhain.h $(srcinc)/sh_tiger.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_xfer.h $(srcinc)/sh_srp.h $(srcinc)/sh_fifo.h $(srcinc)/sh_tools.h $(srcinc)/sh_entropy.h $(srcinc)/sh_html.h $(srcinc)/sh_nmail.h $(srcinc)/sh_socket.h $(srcinc)/sh_static.h $(srcinc)/sh_guid.h $(srcinc)/rijndael-api-fst.h $(srcinc)/sh_readconf.h $(srcinc)/zAVLTree.h $(srcinc)/sh_extern.h -sh_xfer_syslog.o: $(srcsrc)/sh_xfer_syslog.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_tools.h $(srcinc)/sh_utils.h $(srcinc)/sh_ipvx.h -sh_modules.o: $(srcsrc)/sh_modules.c Makefile config_xor.h $(srcinc)/sh_modules.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utmp.h $(srcinc)/sh_mounts.h $(srcinc)/sh_userfiles.h $(srcinc)/sh_suidchk.h $(srcinc)/sh_processcheck.h $(srcinc)/sh_portcheck.h $(srcinc)/sh_logmon.h $(srcinc)/sh_registry.h $(srcinc)/sh_fInotify.h -sh_utmp.o: $(srcsrc)/sh_utmp.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_modules.h $(srcinc)/sh_utmp.h $(srcinc)/sh_pthread.h $(srcinc)/sh_inotify.h -sh_login_track.o: $(srcsrc)/sh_login_track.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_string.h $(srcinc)/sh_tools.h $(srcinc)/sh_ipvx.h $(srcinc)/sh_error_min.h $(srcinc)/CuTest.h $(srcinc)/CuTest.h -sh_suidchk.o: $(srcsrc)/sh_suidchk.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_modules.h $(srcinc)/sh_suidchk.h $(srcinc)/sh_hash.h $(srcinc)/sh_dbIO.h $(srcinc)/sh_unix.h $(srcinc)/sh_files.h $(srcinc)/sh_schedule.h $(srcinc)/sh_calls.h $(srcinc)/zAVLTree.h -sh_srp.o: $(srcsrc)/sh_srp.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_tiger.h $(srcinc)/sh_mem.h $(srcinc)/sh_utils.h $(srcinc)/sh_srp.h $(srcinc)/bignum.h $(srcinc)/CuTest.h -sh_fifo.o: $(srcsrc)/sh_fifo.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_mem.h $(srcinc)/sh_unix.h $(srcinc)/sh_utils.h $(srcinc)/sh_string.h $(srcinc)/sh_fifo.h $(srcinc)/CuTest.h -sh_tools.o: $(srcsrc)/sh_tools.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_mem.h $(srcinc)/sh_error.h $(srcinc)/sh_tools.h $(srcinc)/sh_utils.h $(srcinc)/sh_tiger.h $(srcinc)/sh_static.h $(srcinc)/sh_pthread.h $(srcinc)/sh_ipvx.h $(srcinc)/rijndael-api-fst.h $(srcinc)/rijndael-api-fst.h -sh_html.o: $(srcsrc)/sh_html.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_xfer.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_utils.h $(srcinc)/sh_html.h $(srcinc)/zAVLTree.h -sh_sig.o: $(srcsrc)/sh_sig.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_tiger.h $(srcinc)/sh_static.h $(srcinc)/sh_sig.h +sh_hash.o: $(srcsrc)/sh_hash.c Makefile config_xor.h $(srcinc)/sh_hash.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_tiger.h $(srcinc)/sh_gpg.h $(srcinc)/sh_unix.h $(srcinc)/sh_files.h $(srcinc)/sh_ignore.h $(srcinc)/sh_forward.h $(srcinc)/sh_hash.h +sh_mail.o: $(srcsrc)/sh_mail.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_mail.h $(srcinc)/sh_utils.h $(srcinc)/sh_fifo.h $(srcinc)/sh_tools.h $(srcinc)/sh_static.h $(srcinc)/sh_tools.h +sh_mem.o: $(srcsrc)/sh_mem.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_mem.h +sh_entropy.o: $(srcsrc)/sh_entropy.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_calls.h $(srcinc)/sh_static.h +sh_forward.o: $(srcsrc)/sh_forward.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_tiger.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_forward.h $(srcinc)/sh_srp.h $(srcinc)/sh_fifo.h $(srcinc)/sh_tools.h $(srcinc)/sh_entropy.h $(srcinc)/sh_html.h $(srcinc)/sh_mail.h $(srcinc)/sh_socket.h $(srcinc)/sh_static.h $(srcinc)/rijndael-api-fst.h $(srcinc)/sh_readconf.h $(srcinc)/zAVLTree.h $(srcinc)/sh_extern.h +sh_modules.o: $(srcsrc)/sh_modules.c Makefile config_xor.h $(srcinc)/sh_modules.h $(srcinc)/sh_utmp.h $(srcinc)/sh_mounts.h $(srcinc)/sh_userfiles.h $(srcinc)/sh_kern.h $(srcinc)/sh_suidchk.h +sh_utmp.o: $(srcsrc)/sh_utmp.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_modules.h $(srcinc)/sh_utmp.h +sh_kern.o: $(srcsrc)/sh_kern.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_modules.h $(srcinc)/sh_kern.h sh_ks_xor.h $(srcinc)/sh_unix.h $(srcinc)/sh_hash.h +sh_suidchk.o: $(srcsrc)/sh_suidchk.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_modules.h $(srcinc)/sh_suidchk.h $(srcinc)/sh_hash.h $(srcinc)/sh_unix.h $(srcinc)/sh_files.h $(srcinc)/sh_schedule.h $(srcinc)/sh_calls.h +sh_srp.o: $(srcsrc)/sh_srp.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_tiger.h $(srcinc)/sh_mem.h $(srcinc)/sh_utils.h $(srcinc)/sh_srp.h $(srcinc)/bignum.h +sh_fifo.o: $(srcsrc)/sh_fifo.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_mem.h $(srcinc)/sh_unix.h +sh_tools.o: $(srcsrc)/sh_tools.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_mem.h $(srcinc)/sh_error.h $(srcinc)/sh_tools.h $(srcinc)/sh_utils.h $(srcinc)/sh_tiger.h $(srcinc)/sh_static.h $(srcinc)/rijndael-api-fst.h $(srcinc)/rijndael-api-fst.h +sh_html.o: $(srcsrc)/sh_html.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_forward.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_utils.h $(srcinc)/sh_html.h $(srcinc)/zAVLTree.h +sh_gpg.o: $(srcsrc)/sh_gpg.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_tiger.h $(srcinc)/sh_static.h sh_cat.o: $(srcsrc)/sh_cat.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_cat.h -sh_calls.o: $(srcsrc)/sh_calls.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_ipvx.h $(srcinc)/sh_sub.h $(srcinc)/sh_utils.h -sh_extern.o: $(srcsrc)/sh_extern.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_extern.h $(srcinc)/sh_calls.h $(srcinc)/sh_filter.h $(srcinc)/sh_static.h +sh_calls.o: $(srcsrc)/sh_calls.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_calls.h +sh_extern.o: $(srcsrc)/sh_extern.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_extern.h $(srcinc)/sh_calls.h $(srcinc)/sh_static.h sh_database.o: $(srcsrc)/sh_database.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_cat.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h sh_err_log.o: $(srcsrc)/sh_err_log.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_tiger.h -sh_err_console.o: $(srcsrc)/sh_err_console.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_sem.h +sh_err_console.o: $(srcsrc)/sh_err_console.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h sh_err_syslog.o: $(srcsrc)/sh_err_syslog.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h -sh_schedule.o: $(srcsrc)/sh_schedule.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_mem.h $(srcinc)/sh_error_min.h $(srcinc)/sh_schedule.h +sh_schedule.o: $(srcsrc)/sh_schedule.c Makefile config_xor.h $(srcinc)/sh_mem.h $(srcinc)/sh_schedule.h bignum.o: $(srcsrc)/bignum.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/bignum.h mkhdr.o: $(srcsrc)/mkhdr.c Makefile config.h @@ -1682,52 +1576,22 @@ samhain_stealth.o: $(srcsrc)/samhain_stealth.c Makefile config_xor.h encode.o: $(srcsrc)/encode.c Makefile -trustfile.o: $(srcsrc)/trustfile.c Makefile config_xor.h $(srcinc)/sh_calls.h $(srcinc)/slib.h $(srcinc)/sh_static.h $(srcinc)/sh_pthread.h +sstrip.o: $(srcsrc)/sstrip.c Makefile +trustfile.o: $(srcsrc)/trustfile.c Makefile config_xor.h $(srcinc)/sh_calls.h $(srcinc)/slib.h $(srcinc)/sh_static.h exepack.o: $(srcsrc)/exepack.c Makefile config.h $(srcinc)/minilzo.h $(srcinc)/exepack.data exepack_fill.o: $(srcsrc)/exepack_fill.c Makefile config.h config.h $(srcinc)/minilzo.h exepack_mkdata.o: $(srcsrc)/exepack_mkdata.c Makefile config.h $(srcinc)/minilzo.h minilzo.o: $(srcsrc)/minilzo.c Makefile $(srcinc)/minilzo.h -slib.o: $(srcsrc)/slib.c Makefile config_xor.h $(srcinc)/slib.h $(srcinc)/sh_calls.h $(srcinc)/sh_static.h $(srcinc)/sh_pthread.h $(srcinc)/sh_string.h $(srcinc)/sh_mem.h -rijndael-alg-fst.o: $(srcsrc)/rijndael-alg-fst.c Makefile config_xor.h $(srcinc)/rijndael-alg-fst.h -rijndael-api-fst.o: $(srcsrc)/rijndael-api-fst.c Makefile config_xor.h $(srcinc)/rijndael-api-fst.h +slib.o: $(srcsrc)/slib.c Makefile config_xor.h $(srcinc)/slib.h $(srcinc)/sh_calls.h $(srcinc)/sh_static.h +rijndael-alg-fst.o: $(srcsrc)/rijndael-alg-fst.c Makefile config_xor.h $(srcinc)/rijndael-alg-fst.h $(srcinc)/rijndael-boxes-fst.h +rijndael-api-fst.o: $(srcsrc)/rijndael-api-fst.c Makefile config_xor.h $(srcinc)/rijndael-alg-fst.h $(srcinc)/rijndael-api-fst.h zAVLTree.o: $(srcsrc)/zAVLTree.c Makefile $(srcinc)/zAVLTree.h -sh_socket.o: $(srcsrc)/sh_socket.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_socket.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_calls.h $(srcinc)/sh_guid.h $(srcinc)/sh_fifo.h $(srcinc)/sh_utils.h $(srcinc)/sh_utils.h $(srcinc)/zAVLTree.h $(srcinc)/sh_html.h $(srcinc)/sh_tools.h $(srcinc)/CuTest.h -sh_ignore.o: $(srcsrc)/sh_ignore.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_mem.h $(srcinc)/sh_error.h $(srcinc)/CuTest.h +sh_socket.o: $(srcsrc)/sh_socket.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_socket.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_calls.h $(srcinc)/sh_utils.h $(srcinc)/zAVLTree.h $(srcinc)/sh_html.h $(srcinc)/sh_tools.h +sh_ignore.o: $(srcsrc)/sh_ignore.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_mem.h $(srcinc)/sh_error.h yulectl.o: $(srcsrc)/yulectl.c Makefile config_xor.h sh_mounts.o: $(srcsrc)/sh_mounts.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_modules.h $(srcinc)/sh_mounts.h -sh_userfiles.o: $(srcsrc)/sh_userfiles.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_modules.h $(srcinc)/sh_userfiles.h $(srcinc)/sh_utils.h $(srcinc)/sh_schedule.h $(srcinc)/sh_error.h $(srcinc)/sh_hash.h $(srcinc)/sh_files.h $(srcinc)/sh_static.h $(srcinc)/sh_pthread.h -sh_prelude.o: $(srcsrc)/sh_prelude.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_cat.h $(srcinc)/sh_error_min.h $(srcinc)/sh_prelude.h $(srcinc)/sh_static.h +sh_userfiles.o: $(srcsrc)/sh_userfiles.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_modules.h $(srcinc)/sh_userfiles.h $(srcinc)/sh_utils.h $(srcinc)/sh_schedule.h $(srcinc)/sh_error.h $(srcinc)/sh_hash.h $(srcinc)/sh_files.h +sh_prelude.o: $(srcsrc)/sh_prelude.c Makefile config_xor.h $(srcinc)/slib.h $(srcinc)/sh_cat.h $(srcinc)/sh_error_min.h $(srcinc)/sh_prelude.h +kern_head.o: $(srcsrc)/kern_head.c Makefile config.h $(srcinc)/kern_head.h $(srcinc)/kern_head.h sh_prelink.o: $(srcsrc)/sh_prelink.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_tiger.h $(srcinc)/sh_extern.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h -sh_static.o: $(srcsrc)/sh_static.c Makefile config_xor.h $(srcinc)/sh_pthread.h -sh_portcheck.o: $(srcsrc)/sh_portcheck.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_mem.h $(srcinc)/sh_calls.h $(srcinc)/sh_utils.h $(srcinc)/sh_modules.h $(srcinc)/sh_static.h $(srcinc)/sh_pthread.h $(srcinc)/sh_ipvx.h $(srcinc)/CuTest.h -sh_port2proc.o: $(srcsrc)/sh_port2proc.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_error_min.h $(srcinc)/sh_pthread.h $(srcinc)/sh_ipvx.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_ipvx.h -sh_processcheck.o: $(srcsrc)/sh_processcheck.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_modules.h $(srcinc)/sh_processcheck.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_extern.h $(srcinc)/sh_calls.h $(srcinc)/sh_pthread.h $(srcinc)/CuTest.h -sh_filter.o: $(srcsrc)/sh_filter.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_mem.h $(srcinc)/sh_filter.h -sh_pthread.o: $(srcsrc)/sh_pthread.c Makefile config_xor.h $(srcinc)/sh_pthread.h $(srcinc)/sh_calls.h $(srcinc)/sh_modules.h -sh_string.o: $(srcsrc)/sh_string.c Makefile config_xor.h $(srcinc)/sh_string.h $(srcinc)/sh_mem.h $(srcinc)/CuTest.h -sh_log_parse_syslog.o: $(srcsrc)/sh_log_parse_syslog.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_log_check.h $(srcinc)/sh_utils.h $(srcinc)/sh_string.h -sh_log_parse_pacct.o: $(srcsrc)/sh_log_parse_pacct.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_log_check.h $(srcinc)/sh_utils.h $(srcinc)/sh_string.h -sh_log_parse_samba.o: $(srcsrc)/sh_log_parse_samba.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_log_check.h $(srcinc)/sh_string.h -sh_log_parse_generic.o: $(srcsrc)/sh_log_parse_generic.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_log_check.h $(srcinc)/sh_string.h -sh_log_parse_apache.o: $(srcsrc)/sh_log_parse_apache.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_log_check.h $(srcinc)/sh_utils.h $(srcinc)/sh_string.h -sh_log_evalrule.o: $(srcsrc)/sh_log_evalrule.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_string.h $(srcinc)/sh_log_check.h $(srcinc)/sh_log_evalrule.h $(srcinc)/sh_log_correlate.h $(srcinc)/sh_log_mark.h $(srcinc)/sh_log_repeat.h $(srcinc)/zAVLTree.h -sh_log_correlate.o: $(srcsrc)/sh_log_correlate.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_string.h $(srcinc)/sh_log_check.h $(srcinc)/sh_log_evalrule.h -sh_log_mark.o: $(srcsrc)/sh_log_mark.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_mem.h $(srcinc)/sh_string.h $(srcinc)/sh_error_min.h $(srcinc)/sh_log_check.h $(srcinc)/sh_log_evalrule.h $(srcinc)/zAVLTree.h -sh_log_check.o: $(srcsrc)/sh_log_check.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_string.h $(srcinc)/sh_log_check.h $(srcinc)/sh_log_evalrule.h $(srcinc)/sh_log_correlate.h $(srcinc)/sh_log_mark.h $(srcinc)/sh_log_repeat.h $(srcinc)/sh_extern.h $(srcinc)/sh_modules.h -dnmalloc.o: $(srcsrc)/dnmalloc.c Makefile config.h -sh_inotify.o: $(srcsrc)/sh_inotify.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_calls.h $(srcinc)/sh_inotify.h $(srcinc)/sh_mem.h $(srcinc)/sh_utils.h $(srcinc)/slib.h $(srcinc)/zAVLTree.h $(srcinc)/sh_calls.h $(srcinc)/sh_inotify.h $(srcinc)/CuTest.h -sh_log_repeat.o: $(srcsrc)/sh_log_repeat.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_string.h $(srcinc)/sh_log_check.h $(srcinc)/sh_log_evalrule.h -sh_audit.o: $(srcsrc)/sh_audit.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_extern.h $(srcinc)/sh_utils.h -sh_registry.o: $(srcsrc)/sh_registry.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_modules.h $(srcinc)/sh_hash.h $(srcinc)/sh_tiger.h -sh_ipvx.o: $(srcsrc)/sh_ipvx.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_static.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_ipvx.h $(srcinc)/CuTest.h -sh_restrict.o: $(srcsrc)/sh_restrict.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_mem.h $(srcinc)/sh_error_min.h $(srcinc)/sh_string.h $(srcinc)/sh_utils.h $(srcinc)/sh_restrict.h $(srcinc)/CuTest.h -sh_filetype.o: $(srcsrc)/sh_filetype.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_mem.h $(srcinc)/sh_error_min.h $(srcinc)/sh_utils.h -sh_sub.o: $(srcsrc)/sh_sub.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h -sh_fInotify.o: $(srcsrc)/sh_fInotify.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_modules.h $(srcinc)/sh_pthread.h $(srcinc)/sh_inotify.h $(srcinc)/sh_unix.h $(srcinc)/sh_hash.h $(srcinc)/sh_dbIO.h $(srcinc)/sh_files.h $(srcinc)/sh_ignore.h -sh_checksum.o: $(srcsrc)/sh_checksum.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_checksum.h $(srcinc)/sh_utils.h $(srcinc)/CuTest.h -sh_guid.o: $(srcsrc)/sh_guid.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/CuTest.h -sh_sem.o: $(srcsrc)/sh_sem.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_sem.h $(srcinc)/sh_error_min.h -sh_dbIO.o: $(srcsrc)/sh_dbIO.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_dbIO_int.h $(srcinc)/sh_hash.h $(srcinc)/sh_dbIO.h $(srcinc)/sh_sig.h $(srcinc)/sh_tiger.h $(srcinc)/sh_xfer.h $(srcinc)/sh_pthread.h $(srcinc)/sh_socket.h $(srcinc)/sh_files.h $(srcinc)/zAVLTree.h -sh_dbCheck.o: $(srcsrc)/sh_dbCheck.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_unix.h $(srcinc)/sh_utils.h $(srcinc)/sh_hash.h $(srcinc)/sh_files.h $(srcinc)/sh_tiger.h $(srcinc)/sh_dbIO.h $(srcinc)/sh_dbIO_int.h $(srcinc)/sh_pthread.h -sh_dbCreate.o: $(srcsrc)/sh_dbCreate.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_hash.h $(srcinc)/sh_files.h $(srcinc)/sh_dbIO.h $(srcinc)/sh_dbIO_int.h $(srcinc)/sh_pthread.h $(srcinc)/sh_guid.h -sh_subuid.o: $(srcsrc)/sh_subuid.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_unix.h -t-test1.o: $(srcsrc)/t-test1.c Makefile config.h $(srcinc)/malloc.h +sh_static.o: $(srcsrc)/sh_static.c Makefile config_xor.h +sh_prelude_old.o: $(srcsrc)/sh_prelude_old.c Makefile config_xor.h $(srcinc)/slib.h $(srcinc)/sh_mem.h $(srcinc)/sh_cat.h $(srcinc)/sh_error_min.h $(srcinc)/sh_prelude.h $(srcinc)/sh_static.h Index: trunk/README =================================================================== --- trunk/README (revision 591) +++ trunk/README (revision 1) @@ -84,4 +84,16 @@ see the MANUAL. + + WARNING: + ------- + Some versions of gcc have a bug that generates incorrect + code if strength reducing is enabled. + If you modify the compiler flags, always use the -fno-strength-reduce + option with gcc, unless you are sure that your compiler does not + suffer from the problem (see README.gcc_bug). + Also, some gcc versions generate incorrect code unless the + -fno-omit-frame-pointer option is used. + The -fno-strength-reduce and the -fno-omit-frame-pointer options are + enabled by default by the 'configure' script. PGP SIGNATURES: Index: trunk/acconfig.h =================================================================== --- trunk/acconfig.h (revision 1) +++ trunk/acconfig.h (revision 1) @@ -0,0 +1,433 @@ + +#ifndef CONFIG_H +#define CONFIG_H + + +@TOP@ + +/* ---- compile options ------------ */ + +/* Define if you want database support */ +#undef WITH_DATABASE + +/* Define if the database is unixODBC */ +#undef WITH_ODBC + +/* Define if the database is oracle */ +#undef WITH_ORACLE + +/* Define if the database is mysql */ +#undef WITH_MYSQL + +/* Define if the database is postgresql */ +#undef WITH_POSTGRES + +/* Define if the server may listen on 514/udp */ +#undef INET_SYSLOG + +/* Define if you want logfile in XML format */ +#undef SH_USE_XML + +/* Define if you want external programs. */ +#undef WITH_EXTERNAL + +/* Define if you want to reload the database */ +/* on SIGHUP. */ +#undef RELOAD_DATABASE + +/* Define if you want SysV message queue. */ +#undef WITH_MESSAGE_QUEUE + +/* Define the mode of the message queue. */ +#undef MESSAGE_QUEUE_MODE + +/* Define which users are always trusted. */ +/* default = 0 ( = root) */ +#undef SL_ALWAYS_TRUSTED + +/* Define if you want network time. */ +/* default = no */ +#undef HAVE_NTIME + +/* The time server host address. */ +/* default = "NULL" */ +#undef DEFAULT_TIMESERVER +#undef ALT_TIMESERVER + +/* Define if you want to use the mail code. */ +/* default = yes */ +#undef SH_WITH_MAIL + +/* Define if you want client/server encryption*/ +#undef SH_ENCRYPT + +/* Define if you want version 2 encryption */ +#undef SH_ENCRYPT_2 + +/* Define if you want to watch for login/-out.*/ +/* default = no */ +#undef SH_USE_UTMP + +/* Define if you want to check mount options on filesystems */ +/* default = no */ +#undef SH_USE_MOUNTS + +/* Define if you want to keep an eye on */ +/* sensitive files that your users own */ +#undef SH_USE_USERFILES + +/* Define if you want to watch for suid/sgid */ +/* files */ +#undef SH_USE_SUIDCHK + +/* Define if you want to check kernel syscall */ +/* table to detect LKM rootkits. */ +/* default = no */ +#undef SH_USE_KERN + +/* Define if you want to use the Kernel */ +/* module to hide samhain. */ +#undef SH_USE_LKM + +/* Define if you have a vanilla Kernel */ +/* (2.4 or 2.2) */ +#undef SH_VANILLA_KERNEL + +/* Define to the name of the MAGIC_HIDE */ +/* string if you use the Kernel module to */ +/* hide samhain. */ +#undef SH_MAGIC_HIDE + +/* Define if you want 'micro' stealth mode. */ +/* default = no */ +#undef SH_STEALTH_MICRO + +/* Define if you want to use stealth mode. */ +/* default = no */ +#undef SH_STEALTH + +/* Define if you want stealth w/o CL parsing. */ +/* default = no */ +#undef SH_STEALTH_NOCL + +/* The magic argv[1] to re-enable CL parsing. */ +/* default = "yes" */ +#undef NOCL_CODE + +/* XOR value to hide literal strings. */ +/* default = 0 */ +#undef XOR_CODE + +/* The port number for TCP/IP connection. */ +/* default = 49777 */ +#undef SH_DEFAULT_PORT + +/* The identity to assume when dropping root */ +/* default = "nobody" */ +#undef DEFAULT_IDENT + +/* Directory for tmp files */ +#undef SH_TMPDIR + +/* The data root directory. */ +/* default="/var/lib/samhain" */ +#undef DEFAULT_DATAROOT + +/* The quarantine directory. */ +/* default="/var/lib/samhain/.quarantine */ +#undef DEFAULT_QDIR + +/* The location of the log file. */ +/* default="/var/log/samhain_log" */ +#undef DEFAULT_ERRFILE + +/* The directory of the log file. */ +/* default="/var/log" */ +#undef DEFAULT_LOGDIR + +/* The location of the pid file. */ +/* default="/var/run/samhain.pid" */ +#undef DEFAULT_ERRLOCK + +/* The location of the pid file directory. */ +/* default="/var/run " */ +#undef DEFAULT_PIDDIR + +/* The location of the configuration file. */ +/* default="/etc/samhainrc" */ +#undef DEFAULT_CONFIGFILE + +/* The location of the checksum data. */ +/* default="/var/lib/samhain/samhain_file" */ +#undef DEFAULT_DATA_FILE + +/* The location of the html report. */ +/* default="/var/log/.samhain.html" */ +#undef DEFAULT_HTML_FILE + +/* The install directory. */ +/* default="/usr/local/sbin" */ +#undef SH_INSTALL_DIR + +/* The install path. */ +/* default="/usr/local/sbin/samhain" */ +#undef SH_INSTALL_PATH +#undef SH_INSTALL_YULE_PATH + +/* The install name. */ +/* default="samhain" */ +#undef SH_INSTALL_NAME + +/* The sender name to use. */ +/* default = "daemon" */ +#undef DEFAULT_SENDER + +/* The address to send mail to. */ +/* default = "NULL" */ +#undef DEFAULT_MAILADDRESS +#undef ALT_MAILADDRESS + +/* The log server. */ +/* default = "NULL" */ +#undef DEFAULT_LOGSERVER +#undef ALT_LOGSERVER + +/* The console. */ +/* default = "NULL" */ +#undef DEFAULT_CONSOLE +#undef ALT_CONSOLE + +/* The default base for one-time pads. */ +/* default = compile_time,compile_time */ +#undef DEFKEY + +/* Define if you want more debug options. */ +/* default = no */ +#undef MEM_DEBUG + +/* Define if you want more debug output. */ +/* default = no */ +#undef WITH_TPT + +/* Define if you want tracing. */ +/* default = no */ +#undef WITH_TRACE + +/* Define if you want slib debug. */ +/* default = no */ +#undef SL_DEBUG + +/* Define if you want slib to abort on errors.*/ +/* default = no */ +#undef SL_FAIL_ON_ERROR + +/* Define if you want to use SRP authenticaton*/ +#undef USE_SRP_PROTOCOL + +/* Define if you want to use GnuPG to */ +/* verify database and configuation file. */ +#undef WITH_GPG + +/* The full path to GnuPG */ +#undef DEFAULT_GPG_PATH + +/* Define if using the gpg/pgp checksum. */ +#undef HAVE_GPG_CHECKSUM + +/* The tiger checksum of the gpg/pgp binary. */ +#undef GPG_HASH + +/* Define if you want to compile in the */ +/* public key fingerprint. */ +#undef USE_FINGERPRINT + +/* The public key fingerprint. */ +#undef SH_GPG_FP + +/* Use ptrace - screw up signal handling. */ +#undef SCREW_IT_UP + +/* ---- misc ------------ */ + +/* Define the package name. */ +#undef PACKAGE + +/* Define the package version. */ +#undef VERSION + +/* Define to the position of the key (1...8). */ +#undef POS_TF + +/* Init key for exepack. */ +#undef EXEPACK_STATE_0 +#undef EXEPACK_STATE_1 +#undef EXEPACK_STATE_2 + +/* ---- system-specific options ------------ */ + +/* Define to the address of sys_call_table */ +#undef SH_SYSCALLTABLE + +/* Define to use SVR4 statvfs to get filesystem type. */ +#undef FSTYPE_STATVFS + +/* Define to use SVR3.2 statfs to get filesystem type. */ +#undef FSTYPE_USG_STATFS + +/* Define to use AIX3 statfs to get filesystem type. */ +#undef FSTYPE_AIX_STATFS + +/* Define to use 4.3BSD getmntent to get filesystem type. */ +#undef FSTYPE_MNTENT + +/* Define to use 4.4BSD and OSF1 statfs to get filesystem type. */ +#undef FSTYPE_STATFS + +/* Define to use Ultrix getmnt to get filesystem type. */ +#undef FSTYPE_GETMNT + +/* the basic type to which we can cast a uid + */ +#undef UID_CAST + +/* for ext2fs flags */ +#undef HAVE_EXT2_IOCTLS +#undef HAVE_STAT_FLAGS + +/* obvious */ +#undef HOST_IS_LINUX +#undef HOST_IS_I86LINUX + +/* obvious */ +#undef HOST_IS_CYGWIN + +/* obvious */ +#undef HOST_IS_DARWIN + +/* obvious */ +#undef HOST_IS_FREEBSD + +/* obvious */ +#undef HOST_IS_AIX + +/* obvious */ +#undef HOST_IS_SOLARIS + +/* obvious */ +#undef HOST_IS_I86SOLARIS + +/* obvious */ +#undef HOST_IS_HPUX + +/* Define to the name of the random devices. */ +#undef NAME_OF_DEV_RANDOM + +#undef NAME_OF_DEV_URANDOM + +/* Define if you have long long. */ +#undef HAVE_LONG_LONG + +/* Define if short is 32 bits. */ +#undef HAVE_SHORT_32 + +/* Define if int is 32 bits. */ +#undef HAVE_INT_32 + +/* Define if long is 32 bits. */ +#undef HAVE_LONG_32 + +/* Define if long is 64 bits. */ +#undef HAVE_LONG_64 + +/* Define if UINT64 is 32 bits. */ +#undef UINT64_IS_32 + +/* Define if you have utmpx.h. */ +#undef HAVE_UTMPX_H + +/* Define if your struct utmpx has ut_xtime. */ +#undef HAVE_UTXTIME + +/* Define if your struct utmp has ut_type. */ +#undef HAVE_UTTYPE + +/* Define if your struct utmp has ut_host. */ +#undef HAVE_UTHOST + +/* Define if your struct utmp has ut_addr. */ +#undef HAVE_UTADDR + +/* Define if your includes are broken. */ +#undef HAVE_BROKEN_INCLUDES + +/* Define if your getcwd uses 'popen'. */ +#undef HAVE_BROKEN_GETCWD + +/* Define if your vsnprintf is broken. */ +#undef HAVE_BROKEN_VSNPRINTF + +/* Define if you have va_copy. */ +#undef VA_COPY + +/* Define if va_list may be copied as array. */ +#undef VA_COPY_AS_ARRAY + +/* Define if you need unix entropy gatherer. */ +#undef HAVE_UNIX_RANDOM + +/* Define if you have EGD. */ +#undef HAVE_EGD_RANDOM + +/* Define if you have /dev/random. */ +#undef HAVE_URANDOM + +/* Soket name for EGD. */ +#undef EGD_SOCKET_NAME + +/* Define if your mlock() is broken. */ +#undef HAVE_BROKEN_MLOCK + +/* Define the proc f_type. */ +#undef SH_PROC_MAGIC + +/* Define if you have statfs. */ +#undef HAVE_STATFS + +/* Define if statfs works. */ +#undef STATFS_WORKS + +/* Define to long if not defined. */ +#undef ptrdiff_t + +@BOTTOM@ + +/* dont modify this, unless you know what you do + */ +#define SRP_GENERATOR_1024 "2" +#define SRP_MODULUS_1024_1 \ +_("f488fd584e49dbcd20b49de49107366b336c380d451d0f7c88b31c7c5b2d8ef6") +#define SRP_MODULUS_1024_2 \ +_("f3c923c043f0a55b188d8ebb558cb85d38d334fd7c175743a31d186cde33212c") +#define SRP_MODULUS_1024_3 \ +_("b52aff3ce1b1294018118d7c84a70a72d686c40319c807297aca950cd9969fab") +#define SRP_MODULUS_1024_4 \ +_("d00a509b0246d3083d66a45d419f9c7cbd894b221926baaba25ec355e92f78c7") + +#define SDG_0RETU _("return.\n") +#define SDG_TERRO _("ERROR: file=<%s>, line=<%d>, reason=<%s>\n") +#define SDG_AERRO _("ERROR: file=<%s>, line=<%d>, failed_assertion=<%s>\n") +#define SDG_AFAIL _("FAILED: file=<%s>, line=<%d>, assertion=<%s>\n") +#define SDG_ENTER _("enter=<%s>\n") +#define SDG_RETUR _("return=<%s>.\n") +#define SDG_ERROR _("error=<%ld>.\n") + +#ifdef SH_STEALTH +char * globber(const char * string); +#define _(string) globber(string) +#define N_(string) string +#else +#define _(string) string +#define N_(string) string +#endif + +#endif Index: trunk/acinclude.m4 =================================================================== --- trunk/acinclude.m4 (revision 591) +++ (revision ) @@ -1,2106 +1,0 @@ - -dnl This program is distributed in the hope that it will be useful, -dnl but WITHOUT ANY WARRANTY, to the extent permitted by law; without -dnl even the implied warranty of MERCHANTABILITY or FITNESS FOR A -dnl PARTICULAR PURPOSE. - -# serial 1 - - -AC_DEFUN([sh_run_prog], -[if test "$cross_compiling" = "yes"; then - AC_MSG_ERROR([Can not probe non-portable values when cross compiling]) -fi -cat > conftest.$ac_ext </dev/null)` -then -dnl Don't remove the temporary files here, so they can be examined. -ifelse([$3], , :, [$3]) -else -echo "configure: failed program was:" >&AS_MESSAGE_LOG_FD -cat conftest.$ac_ext >&AS_MESSAGE_LOG_FD -ifelse([$4], , , [ rm -fr conftest* - $4 -]) -fi -rm -fr conftest* ]) - -dnl fs type number of the proc filing system -AC_DEFUN([sh_procfs_id], -[AC_MSG_CHECKING([f_type of /proc]) -AC_CACHE_VAL([sh_cv_proc_fstype], -[sh_run_prog( -changequote(<<, >>)dnl -<<#include -#ifdef HAVE_STDLIB_H -#include -#endif /* HAVE_STDLIB_H */ -#ifdef HAVE_UNISTD_H -#include -#endif /* HAVE_UNISTD_H */ -#ifdef HAVE_SYS_VFS_H -#include -#endif -#ifndef Q -#define __Q(x) #x -#define Q(x) __Q(x) -#endif -int main(void) -{ -struct statfs fsbuf; -long ft; -if (statfs("/", &fsbuf)!=0) - exit(1); -ft=fsbuf.f_type; -if (statfs("/proc/1", &fsbuf)!=0) - exit(1); -if (ft!=fsbuf.f_type) - printf("0x%08lx", fsbuf.f_type); -else - puts("statfs useless"); -exit(0); -} >> -changequote([, ]), sh_cv_proc_fstype,, sh_cv_proc_fstype="a fatal error occured")]) -AC_MSG_RESULT($sh_cv_proc_fstype) -if test "${sh_cv_proc_fstype}" = "a fatal error occured"; then - $1=$2 - $4 -else if test "${sh_cv_proc_fstype}" = "statfs useless"; then - $1=$2 - $4 -else - $1=$sh_cv_proc_fstype - $3 -fi; fi ]) - -# Check whether mlock is broken (hpux 10.20 raises a SIGBUS if mlock -# is not called from uid 0 (not tested whether uid 0 works) -dnl AC_CHECK_MLOCK -dnl -define([AC_CHECK_MLOCK], - [ AC_CHECK_FUNCS(mlock) - if test "$ac_cv_func_mlock" = "yes"; then - AC_MSG_CHECKING(whether mlock is broken) - AC_CACHE_VAL(ac_cv_have_broken_mlock, - AC_RUN_IFELSE([AC_LANG_SOURCE([[ - #include - #include - #include - #include - #include - #include - - int main() - { - char *pool; - int err; - long int pgsize = getpagesize(); - - pool = malloc( 4096 + pgsize ); - if( !pool ) - return 2; - pool += (pgsize - ((long int)pool % pgsize)); - - err = mlock( pool, 4096 ); - if( !err || errno == EPERM ) - return 0; /* okay */ - - return 1; /* hmmm */ - } - - ]])],[ac_cv_have_broken_mlock="no"],[ac_cv_have_broken_mlock="yes"],[ac_cv_have_broken_mlock="assume-no" - ]) - ) - if test "$ac_cv_have_broken_mlock" = "yes"; then - AC_DEFINE([HAVE_BROKEN_MLOCK], [1], [mlock broken]) - AC_MSG_RESULT(yes) - else - if test "$ac_cv_have_broken_mlock" = "no"; then - AC_MSG_RESULT(no) - else - AC_MSG_RESULT(assuming no) - fi - fi - fi - ]) - -dnl @synopsis AC_FUNC_VSNPRINTF -dnl -dnl Check whether there is a reasonably sane vsnprintf() function installed. -dnl "Reasonably sane" in this context means never clobbering memory beyond -dnl the buffer supplied, and having a sensible return value. It is -dnl explicitly allowed not to NUL-terminate the return value, however. -dnl -dnl @version $Id: ac_func_vsnprintf.m4,v 1.1 2001/07/26 02:00:21 guidod Exp $ -dnl @author Gaute Strokkenes -dnl -AC_DEFUN([SL_CHECK_VSNPRINTF], -[AC_CACHE_CHECK(for working vsnprintf, - ac_cv_func_vsnprintf, -[AC_RUN_IFELSE([AC_LANG_SOURCE([[#include -#include - -int -doit(char * s, ...) -{ - char buffer[32]; - va_list args; - int r; - - buffer[5] = 'X'; - - va_start(args, s); - r = vsnprintf(buffer, 5, s, args); - va_end(args); - - /* -1 is pre-C99, 7 is C99. R.W. 17.01.2003 disallow -1 */ - - if (r != 7) - exit(1); - - /* We deliberately do not care if the result is NUL-terminated or - not, since this is easy to work around like this. */ - - buffer[4] = 0; - - /* Simple sanity check. */ - - if (strcmp(buffer, "1234")) - exit(1); - - if (buffer[5] != 'X') - exit(1); - - exit(0); -} - -int -main(void) -{ - doit("1234567"); - exit(1); -}]])],[ac_cv_func_vsnprintf=yes],[ac_cv_func_vsnprintf=no],[ac_cv_func_vsnprintf=no])]) -dnl Note that the default is to be pessimistic in the case -dnl of cross compilation. -dnl If you know that the target has a sensible vsnprintf(), -dnl you can get around this -dnl by setting ac_func_vsnprintf to yes, as described in the Autoconf manual. -if test $ac_cv_func_vsnprintf = yes; then - : -else - AC_DEFINE([HAVE_BROKEN_VSNPRINTF], [1], - [Define if you have a broken version of the `vsnprintf' function.]) -fi -])# AC_FUNC_VSNPRINTF - -dnl SH_CHECK_TYPEDEF(TYPE, HAVE_NAME) -dnl Check whether a typedef exists and create a #define $2 if it exists -dnl -AC_DEFUN([SH_CHECK_TYPEDEF], - [ AC_MSG_CHECKING(for $1 typedef) - sh_cv_typedef_foo=`echo sh_cv_typedef_$1 | sed -e 's% %_%g'` - AC_CACHE_VAL( $sh_cv_typedef_foo, - [AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[ -#include -#include -#ifdef HAVE_STDINT_H -#include -#endif -#ifdef HAVE_INTTYPES_H -#include -#endif]], [[ - #undef $1 - int a = sizeof($1); - ]])],[sh_cv_typedef=yes],[sh_cv_typedef=no ])]) - AC_MSG_RESULT($sh_cv_typedef) - if test "$sh_cv_typedef" = yes; then - AC_DEFINE([$2], [1], [Define if type is defined in stdint.h or inttypes.h]) - sh_$2=yes - else - sh_$2=no - fi - ]) - - - -dnl ********************** -dnl *** va_copy checks *** -dnl ********************** -AC_DEFUN([SL_CHECK_VA_COPY], -[AC_MSG_CHECKING(for va_copy()) -AC_CACHE_VAL(sh_cv_va_copy,[ - AC_RUN_IFELSE([AC_LANG_SOURCE([[ - #include - void f (int i, ...) { - va_list args1, args2; - va_start (args1, i); - va_copy (args2, args1); - if (va_arg (args2, int) != 42) - exit (1); - if (va_arg (args1, int) != 42) - exit (1); - va_end (args1); va_end (args2); - } - int main() { - f (0, 42); - return 0; - }]])],[sh_cv_va_copy=yes - ],[sh_cv_va_copy=no - ],[sh_cv_va_copy=no]) -]) -AC_MSG_RESULT($sh_cv_va_copy) -AC_MSG_CHECKING(for __va_copy()) -AC_CACHE_VAL(sh_cv___va_copy,[ - AC_RUN_IFELSE([AC_LANG_SOURCE([[ - #include - void f (int i, ...) { - va_list args1, args2; - va_start (args1, i); - __va_copy (args2, args1); - if (va_arg (args2, int) != 42) - exit (1); - if (va_arg (args1, int) != 42) - exit (1); - va_end (args1); va_end (args2); - } - int main() { - f (0, 42); - return 0; - }]])],[sh_cv___va_copy=yes - ],[sh_cv___va_copy=no - ],[sh_cv___va_copy=no]) -]) -AC_MSG_RESULT($sh_cv___va_copy) -AC_MSG_CHECKING(whether va_lists can be copied by value) -AC_CACHE_VAL(sh_cv_va_val_copy,[ - AC_RUN_IFELSE([AC_LANG_SOURCE([[ - #include - void f (int i, ...) { - va_list args1, args2; - va_start (args1, i); - args2 = args1; - if (va_arg (args2, int) != 42) - exit (1); - if (va_arg (args1, int) != 42) - exit (1); - va_end (args1); va_end (args2); - } - int main() { - f (0, 42); - return 0; - }]])],[sh_cv_va_val_copy=yes - ],[sh_cv_va_val_copy=no - ],[sh_cv_va_val_copy=no]) -]) -if test "x$sh_cv_va_copy" = "xyes"; then - AC_DEFINE([VA_COPY], [va_copy], [va_copy type]) -else if test "x$sh_cv___va_copy" = "xyes"; then - AC_DEFINE([VA_COPY], [__va_copy], [va_copy type]) -fi -fi -if test "x$sh_cv_va_val_copy" = "xno"; then - AC_DEFINE([VA_COPY_AS_ARRAY], [1], [va_copy type]) -fi -AC_MSG_RESULT($sh_cv_va_val_copy) -]) - - -dnl SH_INIT_PARSE_ARGS() -m4_define([SH_INIT_PARSE_ARGS], -[ -m4_divert_push([PARSE_ARGS])dnl - -as_cr_letters='abcdefghijklmnopqrstuvwxyz' -as_cr_LETTERS='ABCDEFGHIJKLMNOPQRSTUVWXYZ' -as_cr_Letters=$as_cr_letters$as_cr_LETTERS -as_cr_digits='0123456789' -as_cr_alnum=$as_cr_Letters$as_cr_digits - -# Sed expression to map a string onto a valid CPP name. -as_tr_cpp="sed y%*$as_cr_letters%P$as_cr_LETTERS%;s%[[^_$as_cr_alnum]]%_%g" - -as_tr_sh="eval sed 'y%*+%pp%;s%[[^_$as_cr_alnum]]%_%g'" -# IFS -# We need space, tab and new line, in precisely that order. -as_nl=' -' -IFS=" $as_nl" - -# CDPATH. -$as_unset CDPATH || test "${CDPATH+set}" != set || { CDPATH=$PATH_SEPARATOR; export CDPATH; } - - -# Initialize some variables set by options. -ac_init_help= -ac_init_version=false -# The variables have the same names as the options, with -# dashes changed to underlines. -cache_file=/dev/null -AC_SUBST(exec_prefix, NONE)dnl -no_create= -no_recursion= -AC_SUBST(prefix, NONE)dnl -program_prefix=NONE -program_suffix=NONE -AC_SUBST(program_transform_name, [s,x,x,])dnl -silent= -site= -srcdir= -verbose= -x_includes=NONE -x_libraries=NONE -DESTDIR= -SH_ENABLE_OPTS="selinux posix-acl asm ssp db-reload xml-log message-queue login-watch process-check port-check mounts-check logfile-monitor userfiles debug ptrace static network udp nocl stealth micro-stealth install-name identity khide suidcheck base largefile mail external-scripts encrypt srp dnmalloc ipv6 shellexpand suid" -SH_WITH_OPTS="prelude libprelude-prefix database libwrap cflags libs console altconsole timeserver alttimeserver rnd egd-socket port logserver altlogserver signify pubkey-checksum gpg keyid checksum fp recipient sender trusted tmp-dir config-file log-file pid-file state-dir data-file html-file" - -# Installation directory options. -# These are left unexpanded so users can "make install exec_prefix=/foo" -# and all the variables that are supposed to be based on exec_prefix -# by default will actually change. -dnl Use braces instead of parens because sh, perl, etc. also accept them. -sbindir='${exec_prefix}/sbin' -sysconfdir='${prefix}/etc' -localstatedir='${prefix}/var' -mandir='${prefix}/share/man' - -AC_SUBST([sbindir], ['${exec_prefix}/sbin'])dnl -AC_SUBST([sysconfdir], ['${prefix}/etc'])dnl -AC_SUBST([localstatedir], ['${prefix}/var'])dnl -AC_SUBST([mandir], ['${prefix}/share/man'])dnl - - -# Initialize some other variables. -subdirs= -MFLAGS= MAKEFLAGS= -SHELL=${CONFIG_SHELL-/bin/sh} -# Maximum number of lines to put in a shell here document. -ac_max_here_lines=12 - -ac_prev= -for ac_option -do - - # If the previous option needs an argument, assign it. - if test -n "$ac_prev"; then - eval "$ac_prev=\$ac_option" - ac_prev= - continue - fi - - case "$ac_option" in -changequote(, )dnl - *=*) ac_optarg=`echo "$ac_option" | sed 's/[-_a-zA-Z0-9]*=//'` ;; -changequote([, ])dnl - *) ac_optarg= ;; - esac - - # Accept the important Cygnus configure options, so we can diagnose typos. - - case "$ac_option" in - - -build | --build | --buil | --bui | --bu) - ac_prev=build_alias ;; - -build=* | --build=* | --buil=* | --bui=* | --bu=*) - build_alias="$ac_optarg" ;; - - -cache-file | --cache-file | --cache-fil | --cache-fi \ - | --cache-f | --cache- | --cache | --cach | --cac | --ca | --c) - ac_prev=cache_file ;; - -cache-file=* | --cache-file=* | --cache-fil=* | --cache-fi=* \ - | --cache-f=* | --cache-=* | --cache=* | --cach=* | --cac=* | --ca=* | --c=*) - cache_file="$ac_optarg" ;; - - --config-cache | -C) - cache_file=config.cache ;; - - -disable-* | --disable-*) - ac_feature=`expr "x$ac_option" : 'x-*disable-\(.*\)'` - # Reject names that are not valid shell variable names. - expr "x$ac_feature" : "[.*[^-_$as_cr_alnum]]" >/dev/null && - AC_MSG_ERROR([invalid feature name: $ac_feature]) - ac_feature=`echo $ac_feature | sed 's/-/_/g'` - ac_enable_check_opt=no - for f in ${SH_ENABLE_OPTS} - do - f=`echo $f | sed 's/-/_/g'` - if test x${f} = x"${ac_feature}" - then - ac_enable_check_opt=yes - fi - done - if test x${ac_enable_check_opt} = xno - then - AC_MSG_ERROR([unrecognized option: $ac_option -Try `$[0] --help' for more information.]) - fi - eval "enable_$ac_feature=no" ;; - - -enable-* | --enable-*) - ac_feature=`expr "x$ac_option" : 'x-*enable-\([[^=]]*\)'` - # Reject names that are not valid shell variable names. - expr "x$ac_feature" : "[.*[^-_$as_cr_alnum]]" >/dev/null && - AC_MSG_ERROR([invalid feature name: $ac_feature]) - ac_feature=`echo $ac_feature | sed 's/-/_/g'` - case $ac_option in - *=*) ac_optarg=`echo "$ac_optarg" | sed "s/'/'\\\\\\\\''/g"`;; - *) ac_optarg=yes ;; - esac - ac_enable_check_opt=no - for f in ${SH_ENABLE_OPTS} - do - f=`echo $f | sed 's/-/_/g'` - if test x${f} = x"${ac_feature}" - then - ac_enable_check_opt=yes - fi - done - if test x${ac_enable_check_opt} = xno - then - AC_MSG_ERROR([unrecognized option: $ac_option -Try `$[0] --help' for more information.]) - fi - eval "enable_$ac_feature='$ac_optarg'" ;; - - -exec-prefix | --exec_prefix | --exec-prefix | --exec-prefi \ - | --exec-pref | --exec-pre | --exec-pr | --exec-p | --exec- \ - | --exec | --exe | --ex) - ac_prev=exec_prefix - ac_exec_prefix_set="yes" - ;; - -exec-prefix=* | --exec_prefix=* | --exec-prefix=* | --exec-prefi=* \ - | --exec-pref=* | --exec-pre=* | --exec-pr=* | --exec-p=* | --exec-=* \ - | --exec=* | --exe=* | --ex=*) - exec_prefix="$ac_optarg" - ac_exec_prefix_set="yes" - ;; - - -gas | --gas | --ga | --g) - # Obsolete; use --with-gas. - with_gas=yes ;; - - -help | --help | --hel | --he | -h) - ac_init_help=long ;; - -help=r* | --help=r* | --hel=r* | --he=r* | -hr*) - ac_init_help=recursive ;; - -help=s* | --help=s* | --hel=s* | --he=s* | -hs*) - ac_init_help=short ;; - - -host | --host | --hos | --ho) - ac_prev=host_alias ;; - -host=* | --host=* | --hos=* | --ho=*) - host_alias="$ac_optarg" ;; - - -localstatedir | --localstatedir | --localstatedi | --localstated \ - | --localstate | --localstat | --localsta | --localst \ - | --locals | --local | --loca | --loc | --lo) - ac_prev=localstatedir - ac_localstatedir_set="yes" - ;; - -localstatedir=* | --localstatedir=* | --localstatedi=* | --localstated=* \ - | --localstate=* | --localstat=* | --localsta=* | --localst=* \ - | --locals=* | --local=* | --loca=* | --loc=* | --lo=*) - localstatedir="$ac_optarg" - ac_localstatedir_set="yes" - ;; - - -mandir | --mandir | --mandi | --mand | --man | --ma | --m) - ac_prev=mandir - ac_mandir_set="yes" - ;; - -mandir=* | --mandir=* | --mandi=* | --mand=* | --man=* | --ma=* | --m=*) - mandir="$ac_optarg" - ac_mandir_set="yes" - ;; - - -nfp | --nfp | --nf) - # Obsolete; use --without-fp. - with_fp=no ;; - - -no-create | --no-create | --no-creat | --no-crea | --no-cre \ - | --no-cr | --no-c | -n) - no_create=yes ;; - - -no-recursion | --no-recursion | --no-recursio | --no-recursi \ - | --no-recurs | --no-recur | --no-recu | --no-rec | --no-re | --no-r) - no_recursion=yes ;; - - -prefix | --prefix | --prefi | --pref | --pre | --pr | --p) - ac_prev=prefix - ac_prefix_set="yes" - ;; - -prefix=* | --prefix=* | --prefi=* | --pref=* | --pre=* | --pr=* | --p=*) - prefix="$ac_optarg" - ac_prefix_set="yes" - ;; - - -q | -quiet | --quiet | --quie | --qui | --qu | --q \ - | -silent | --silent | --silen | --sile | --sil) - silent=yes ;; - - -sbindir | --sbindir | --sbindi | --sbind | --sbin | --sbi | --sb) - ac_prev=sbindir - ac_sbindir_set="yes" - ;; - -sbindir=* | --sbindir=* | --sbindi=* | --sbind=* | --sbin=* \ - | --sbi=* | --sb=*) - sbindir="$ac_optarg" - ac_sbindir_set="yes" - ;; - - -bindir | --bindir | --bindi | --bind | --bin | --bi | --b) - echo "WARNING: bindir will be ignored, use sbindir" - ;; - -bindir=* | --bindir=* | --bindi=* | --bind=* | --bin=* \ - | --bi=* | --b=*) - echo "WARNING: bindir will be ignored, use sbindir" - ;; - - -datadir | --datadir) - echo "WARNING: datadir will be ignored" - ;; - -datadir=* | --datadir=*) - echo "WARNING: datadir will be ignored" - ;; - - -includedir | --includedir) - echo "WARNING: includedir will be ignored" - ;; - -includedir=* | --includedir=*) - echo "WARNING: includedir will be ignored" - ;; - - -infodir | --infodir) - echo "WARNING: infodir will be ignored" - ;; - -infodir=* | --infodir=*) - echo "WARNING: infodir will be ignored" - ;; - - -libdir | --libdir) - echo "WARNING: libdir will be ignored" - ;; - -libdir=* | --libdir=*) - echo "WARNING: libdir will be ignored" - ;; - - -libexecdir | --libexecdir) - echo "WARNING: libexecdir will be ignored" - ;; - -libexecdir=* | --libexecdir=*) - echo "WARNING: libexecdir will be ignored" - ;; - - -sharedstatedir | --sharedstatedir) - echo "WARNING: sharedstatedir will be ignored" - ;; - -sharedstatedir=* | --sharedstatedir=*) - echo "WARNING: sharedstatedir will be ignored" - ;; - - -site | --site | --sit) - ac_prev=site ;; - -site=* | --site=* | --sit=*) - site="$ac_optarg" ;; - - -srcdir | --srcdir | --srcdi | --srcd | --src | --sr) - ac_prev=srcdir ;; - -srcdir=* | --srcdir=* | --srcdi=* | --srcd=* | --src=* | --sr=*) - srcdir="$ac_optarg" ;; - - -sysconfdir | --sysconfdir | --sysconfdi | --sysconfd | --sysconf \ - | --syscon | --sysco | --sysc | --sys | --sy) - ac_prev=sysconfdir - ac_sysconfdir_set="yes" - ;; - -sysconfdir=* | --sysconfdir=* | --sysconfdi=* | --sysconfd=* | --sysconf=* \ - | --syscon=* | --sysco=* | --sysc=* | --sys=* | --sy=*) - sysconfdir="$ac_optarg" - ac_sysconfdir_set="yes" - ;; - - -target | --target | --targe | --targ | --tar | --ta | --t) - ac_prev=target_alias ;; - -target=* | --target=* | --targe=* | --targ=* | --tar=* | --ta=* | --t=*) - target_alias="$ac_optarg" ;; - - -v | -verbose | --verbose | --verbos | --verbo | --verb) - verbose=yes ;; - - -version | --version | --versio | --versi | --vers) - ac_init_version=: ;; - - - -with-* | --with-*) - ac_package=`expr "x$ac_option" : 'x-*with-\([[^=]]*\)'` - # Reject names that are not valid shell variable names. - expr "x$ac_package" : "[.*[^-_$as_cr_alnum]]" >/dev/null && - AC_MSG_ERROR([invalid package name: $ac_package]) - ac_package=`echo $ac_package| sed 's/-/_/g'` - case $ac_option in - *=*) ac_optarg=`echo "$ac_optarg" | sed "s/'/'\\\\\\\\''/g"`;; - *) ac_optarg=yes ;; - esac - ac_with_check_opt=no - for f in ${SH_WITH_OPTS} - do - f=`echo $f | sed 's/-/_/g'` - if test x${f} = x"${ac_package}" - then - ac_with_check_opt=yes - fi - done - if test x${ac_with_check_opt} = xno - then - AC_MSG_ERROR([unrecognized option: $ac_option -Try `$[0] --help' for more information.]) - fi - eval "with_$ac_package='$ac_optarg'" ;; - - -without-* | --without-*) - ac_package=`expr "x$ac_option" : 'x-*without-\(.*\)'` - # Reject names that are not valid shell variable names. - expr "x$ac_package" : "[.*[^-_$as_cr_alnum]]" >/dev/null && - AC_MSG_ERROR([invalid package name: $ac_package]) - ac_package=`echo $ac_package | sed 's/-/_/g'` - ac_with_check_opt=no - for f in ${SH_WITH_OPTS} - do - f=`echo $f | sed 's/-/_/g'` - if test x${f} = x"${ac_package}" - then - ac_with_check_opt=yes - fi - done - if test x${ac_with_check_opt} = xno - then - AC_MSG_ERROR([unrecognized option: $ac_option -Try `$[0] --help' for more information.]) - fi - eval "with_$ac_package=no" ;; - - - -*) AC_MSG_ERROR([unrecognized option: $ac_option -Try `$[0] --help' for more information.]) - ;; - - *=*) - ac_envvar=`expr "x$ac_option" : 'x\([[^=]]*\)='` - # Reject names that are not valid shell variable names. - expr "x$ac_envvar" : "[.*[^_$as_cr_alnum]]" >/dev/null && - AC_MSG_ERROR([invalid variable name: $ac_envvar]) - ac_optarg=`echo "$ac_optarg" | sed "s/'/'\\\\\\\\''/g"` - eval "$ac_envvar='$ac_optarg'" - export $ac_envvar ;; - - *) - # FIXME: should be removed in autoconf 3.0. - AC_MSG_WARN([you should use --build, --host, --target]) - expr "x$ac_option" : "[.*[^-._$as_cr_alnum]]" >/dev/null && - AC_MSG_WARN([invalid host type: $ac_option]) - : ${build_alias=$ac_option} ${host_alias=$ac_option} ${target_alias=$ac_option} - ;; - - - esac -done - -if test -n "$ac_prev"; then - AC_MSG_ERROR(missing argument to --`echo $ac_prev | sed 's/_/-/g'`) -fi - -# Be sure to have absolute paths. -for ac_var in prefix exec_prefix -do - eval ac_val=$`echo $ac_var` - case $ac_val in - [[\\/$]]* | ?:[[\\/]]* | NONE | '' | OPT | USR ) ;; - *) AC_MSG_ERROR([expected an absolute directory name for --$ac_var: $ac_val]);; - esac -done - -# Be sure to have absolute paths. -for ac_var in sbindir sysconfdir localstatedir mandir -do - eval ac_val=$`echo $ac_var` - case $ac_val in - [[\\/$]]* | ?:[[\\/]]* ) ;; - *) AC_MSG_ERROR([expected an absolute directory name for --$ac_var: $ac_val]);; - esac -done - -# There might be people who depend on the old broken behavior: `$host' -# used to hold the argument of --host etc. -# FIXME: To remove some day. -build=$build_alias -host=$host_alias -target=$target_alias - -# FIXME: To remove some day. -if test "x$host_alias" != x; then - if test "x$build_alias" = x; then - cross_compiling=maybe - AC_MSG_WARN([If you wanted to set the --build type, don't use --host. - If a cross compiler is detected then cross compile mode will be used.]) - elif test "x$build_alias" != "x$host_alias"; then - cross_compiling=yes - fi -fi - -ac_tool_prefix= -test -n "$host_alias" && ac_tool_prefix=$host_alias- - -test "$silent" = yes && exec AS_MESSAGE_FD>/dev/null - -m4_divert_pop([PARSE_ARGS])dnl -])# SH_INIT_PARSE_ARGS - -m4_define([SH_INIT_HELP], -[m4_divert_push([HELP_BEGIN])dnl - -# -# Report the --help message. -# -if test "$ac_init_help" = "long"; then - # Omit some internal or obsolete options to make the list less imposing. - # This message is too long to be a string in the A/UX 3.1 sh. - cat <<_ACEOF -\`configure' configures m4_ifset([AC_PACKAGE_STRING], - [AC_PACKAGE_STRING], - [this package]) to adapt to many kinds of systems. - -Usage: $[0] [[OPTION]]... [[VAR=VALUE]]... - -[To assign environment variables (e.g., CC, CFLAGS...), specify them as -VAR=VALUE. See below for descriptions of some of the useful variables. - -Defaults for the options are specified in brackets. - -Configuration: - -h, --help display this help and exit - --help=short display options specific to this package - --help=recursive display the short help of all the included packages - -V, --version display version information and exit - -q, --quiet, --silent do not print \`checking...' messages - --cache-file=FILE cache test results in FILE [disabled] - -C, --config-cache alias for \`--cache-file=config.cache' - -n, --no-create do not create output files - --srcdir=DIR find the sources in DIR [configure dir or \`..'] - -_ACEOF - - cat <<_ACEOF -Installation directories: - --prefix=PREFIX install architecture-independent files in PREFIX - [$ac_default_prefix] - --exec-prefix=EPREFIX install architecture-dependent files in EPREFIX - [PREFIX] - -By default, \`make install' will install binaries in \`/usr/local/sbin', -the config file in \`/etc', manpage in \`/usr/local/share/man', and state -data in \`/var/lib/INSTALL_NAME' (FSH layout). You can specify other -FSH compliant layouts with \`--prefix=OPT' or \`--prefix=USR', or you -can specify a directory with \`--prefix=DIR' to install in \`DIR/sbin', -\`DIR/etc', etc. - -For better control, use the options below. - -Fine tuning of the installation directories: - --sbindir=DIR system admin executables [EPREFIX/sbin] - --sysconfdir=DIR read-only single-machine data [PREFIX/etc] - --localstatedir=DIR modifiable single-machine data [PREFIX/var] - --mandir=DIR man documentation [PREFIX/man] - -For even finer tuning, paths can be specified for individual files (see below) - -_ACEOF - - cat <<\_ACEOF] -m4_divert_pop([HELP_BEGIN])dnl -dnl The order of the diversions here is -dnl - HELP_BEGIN -dnl which may be prolongated by extra generic options such as with X or -dnl AC_ARG_PROGRAM. Displayed only in long --help. -dnl -dnl - HELP_CANON -dnl Support for cross compilation (--build, --host and --target). -dnl Display only in long --help. -dnl -dnl - HELP_ENABLE -dnl which starts with the trailer of the HELP_BEGIN, HELP_CANON section, -dnl then implements the header of the non generic options. -dnl -dnl - HELP_WITH -dnl -dnl - HELP_VAR -dnl -dnl - HELP_VAR_END -dnl -dnl - HELP_END -dnl initialized below, in which we dump the trailer (handling of the -dnl recursion for instance). -m4_divert_push([HELP_ENABLE])dnl -_ACEOF -fi - -if test -n "$ac_init_help"; then -m4_ifset([AC_PACKAGE_STRING], -[ case $ac_init_help in - short | recursive ) echo "Configuration of AC_PACKAGE_STRING:";; - esac]) - cat <<\_ACEOF -m4_divert_pop([HELP_ENABLE])dnl -m4_divert_push([HELP_END])dnl -m4_ifset([AC_PACKAGE_BUGREPORT], [ -Report bugs to .]) -_ACEOF -fi - -if test "$ac_init_help" = "recursive"; then - # If there are subdirs, report their specific --help. - ac_popdir=`pwd` - for ac_dir in : $ac_subdirs_all; do test "x$ac_dir" = x: && continue - test -d $ac_dir || continue - _AC_SRCPATHS(["$ac_dir"]) - cd $ac_dir - # Check for guested configure; otherwise get Cygnus style configure. - if test -f $ac_srcdir/configure.gnu; then - echo - $SHELL $ac_srcdir/configure.gnu --help=recursive - elif test -f $ac_srcdir/configure; then - echo - $SHELL $ac_srcdir/configure --help=recursive - elif test -f $ac_srcdir/configure.ac || - test -f $ac_srcdir/configure.in; then - echo - $ac_configure --help - else - AC_MSG_WARN([no configuration information is in $ac_dir]) - fi - cd $ac_popdir - done -fi - -test -n "$ac_init_help" && exit 0 -m4_divert_pop([HELP_END])dnl -])# SH_INIT_HELP - - - - - - - - -# Check whether sa_sigaction works. -# Rainer Wichmann , 2003. -# -# This file can be copied and used freely without restrictions. It can -# be used in projects which are not available under the GNU Public License. - -AC_DEFUN([AM_SA_SIGACTION_WORKS], - [ - am_cv_val_SA_SIGACTION=no - AC_CHECK_HEADER(signal.h, - [ - AM_SI_USER - AM_SA_SIGINFO - if test $am_cv_val_SI_USER = yes && test $am_cv_val_SA_SIGINFO = yes - then - AC_RUN_IFELSE([AC_LANG_SOURCE([[ -#include -#include -#include -#include - -volatile int xnum = 0; -volatile int xcode = 0; -jmp_buf Buf; -int xsig = SIGSEGV; - -void sighandler (int xsignam, siginfo_t * xsiginfo, void * xsigadd) -{ - static sigset_t x; - - if (xsiginfo == NULL) - exit(__LINE__); - if (xsiginfo->si_signo != xsignam) - exit(__LINE__); - ++xnum; - xcode = xsiginfo->si_code; - sigemptyset (&x); - sigprocmask(SIG_SETMASK, &x, NULL); - longjmp ( Buf, 1); -} - -int main () -{ - struct sigaction newact; - - newact.sa_sigaction = sighandler; - sigemptyset (&newact.sa_mask); - newact.sa_flags = SA_SIGINFO; - if (0 != sigaction (xsig, &newact, NULL)) - exit (__LINE__); - if(setjmp ( Buf)) { - if (xnum > 1) - goto Third; - goto Second; - } - memcpy((void *) 0x0, "test", 5); - Second: - if (xcode == SI_USER) - exit (__LINE__); - raise(xsig); - Third: - if (xcode != SI_USER) - exit (__LINE__); - if (xnum != 2) - exit (__LINE__); - return (0); -}]])],[am_cv_val_SA_SIGACTION=yes],[am_cv_val_SA_SIGACTION=no],[am_cv_val_SA_SIGACTION=no]) - fi - ]) - AC_MSG_CHECKING([whether sa_sigaction is supported]) - if test $am_cv_val_SA_SIGACTION = yes - then - AC_MSG_RESULT(yes) - AC_DEFINE([SA_SIGACTION_WORKS], [1], [Define if sa_sigaction works]) - else - AC_MSG_RESULT(no) - fi - ]) - -# Check whether SI_USER is available in . -# Rainer Wichmann , 2003. -# -# This file can be copied and used freely without restrictions. It can -# be used in projects which are not available under the GNU Public License. - - -AC_DEFUN([AM_SI_USER], - [if test $ac_cv_header_signal_h = yes; then - AC_CACHE_CHECK([for SI_USER in signal.h], am_cv_val_SI_USER, - [AC_LINK_IFELSE([AC_LANG_PROGRAM([[#include ]], [[return SI_USER]])],[am_cv_val_SI_USER=yes],[am_cv_val_SI_USER=no])]) - if test $am_cv_val_SI_USER = yes; then - AC_DEFINE([HAVE_SI_USER], [1], [Define if you have SI_USER]) - fi - fi]) - -# Check whether SA_SIGINFO is available in . -# Rainer Wichmann , 2003. -# -# This file can be copied and used freely without restrictions. It can -# be used in projects which are not available under the GNU Public License. - - -AC_DEFUN([AM_SA_SIGINFO], - [if test $ac_cv_header_signal_h = yes; then - AC_CACHE_CHECK([for SA_SIGINFO in signal.h], am_cv_val_SA_SIGINFO, - [AC_LINK_IFELSE([AC_LANG_PROGRAM([[#include ]], [[return SA_SIGINFO]])],[am_cv_val_SA_SIGINFO=yes],[am_cv_val_SA_SIGINFO=no])]) - if test $am_cv_val_SA_SIGINFO = yes; then - AC_DEFINE([HAVE_SA_SIGINFO], [1], [Define if you have SA_SIGINFO]) - fi - fi]) - -dnl -dnl Useful macros for autoconf to check for ssp-patched gcc -dnl 1.0 - September 2003 - Tiago Sousa -dnl 1.1 - August 2006 - Ted Percival -dnl * Stricter language checking (C or C++) -dnl * Adds GCC_STACK_PROTECT_LIB to add -lssp to LDFLAGS as necessary -dnl * Caches all results -dnl * Uses macros to ensure correct ouput in quiet/silent mode -dnl 1.2 - April 2007 - Ted Percival -dnl * Added GCC_STACK_PROTECTOR macro for simpler (one-line) invocation -dnl * GCC_STACK_PROTECT_LIB now adds -lssp to LIBS rather than LDFLAGS -dnl -dnl About ssp: -dnl GCC extension for protecting applications from stack-smashing attacks -dnl http://www.research.ibm.com/trl/projects/security/ssp/ -dnl -dnl Usage: -dnl Most people will simply call GCC_STACK_PROTECTOR. -dnl If you only use one of C or C++, you can save time by only calling the -dnl macro appropriate for that language. In that case you should also call -dnl GCC_STACK_PROTECT_LIB first. -dnl -dnl GCC_STACK_PROTECTOR -dnl Tries to turn on stack protection for C and C++ by calling the following -dnl three macros with the right languages. -dnl -dnl GCC_STACK_PROTECT_CC -dnl checks -fstack-protector with the C compiler, if it exists then updates -dnl CFLAGS and defines ENABLE_SSP_CC -dnl -dnl GCC_STACK_PROTECT_CXX -dnl checks -fstack-protector with the C++ compiler, if it exists then updates -dnl CXXFLAGS and defines ENABLE_SSP_CXX -dnl -dnl GCC_STACK_PROTECT_LIB -dnl adds -lssp to LIBS if it is available -dnl ssp is usually provided as part of libc, but was previously a separate lib -dnl It does not hurt to add -lssp even if libc provides SSP - in that case -dnl libssp will simply be ignored. -dnl - -AC_DEFUN([GCC_STACK_PROTECT_LIB],[ - AC_CACHE_CHECK([whether libssp exists], ssp_cv_lib, - [ssp_old_libs="$LIBS" - LIBS="$LIBS -lssp" - AC_LINK_IFELSE([AC_LANG_PROGRAM([[]], [[]])],[ssp_cv_lib=yes],[ssp_cv_lib=no]) - LIBS="$ssp_old_libs" - ]) - if test $ssp_cv_lib = yes; then - LIBS="$LIBS -lssp" - fi -]) - -AC_DEFUN([GCC_STACK_PROTECT_CC],[ - AC_LANG_ASSERT(C) - if test "X$CC" != "X"; then - AC_CACHE_CHECK([whether ${CC} accepts -fstack-protector-strong], - ssp_cv_cc, - [ssp_old_cflags="$CFLAGS" - CFLAGS="$CFLAGS -fstack-protector-strong" - AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[]], [[]])],[ssp_cv_cc=yes],[ssp_cv_cc=no]) - CFLAGS="$ssp_old_cflags" - ]) - if test $ssp_cv_cc = no; then - AC_CACHE_CHECK([whether ${CC} accepts -fstack-protector-all], - ssp_cv_cc, - [ssp_old_cflags="$CFLAGS" - CFLAGS="$CFLAGS -fstack-protector-all" - AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[]], [[]])],[ssp_cv_cc=yes],[ssp_cv_cc=no]) - CFLAGS="$ssp_old_cflags" - ]) - if test $ssp_cv_cc = no; then - AC_CACHE_CHECK([whether ${CC} accepts -fstack-protector], - ssp_cv_cc, - [ssp_old_cflags="$CFLAGS" - CFLAGS="$CFLAGS -fstack-protector" - AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[]], [[]])],[ssp_cv_cc=yes],[ssp_cv_cc=no]) - CFLAGS="$ssp_old_cflags" - ]) - if test $ssp_cv_cc = yes; then - CFLAGS="$CFLAGS -D_FORTIFY_SOURCE=2 -fstack-protector" - LDFLAGS="$LDFLAGS -fstack-protector" - AC_DEFINE([ENABLE_SSP_CC], [1], [Define if SSP C support is enabled.]) - fi - else - if test $ssp_cv_cc = yes; then - CFLAGS="$CFLAGS -D_FORTIFY_SOURCE=2 -fstack-protector-all" - LDFLAGS="$LDFLAGS -fstack-protector-all" - AC_DEFINE([ENABLE_SSP_CC], [1], [Define if SSP C support is enabled.]) - fi - fi - else - if test $ssp_cv_cc = yes; then - CFLAGS="$CFLAGS -D_FORTIFY_SOURCE=2 -fstack-protector-strong" - LDFLAGS="$LDFLAGS -fstack-protector-strong" - AC_DEFINE([ENABLE_SSP_CC], [1], [Define if SSP C support is enabled.]) - fi - fi - fi -]) - -AC_DEFUN([GCC_STACK_PROTECT_CXX],[ - AC_LANG_ASSERT(C++) - if test "X$CXX" != "X"; then - AC_CACHE_CHECK([whether ${CXX} accepts -fstack-protector], - ssp_cv_cxx, - [ssp_old_cxxflags="$CXXFLAGS" - CXXFLAGS="$CXXFLAGS -fstack-protector" - AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[]], [[]])],[ssp_cv_cxx=yes],[ssp_cv_cxx=no]) - CXXFLAGS="$ssp_old_cxxflags" - ]) - if test $ssp_cv_cxx = yes; then - CXXFLAGS="$CXXFLAGS -fstack-protector" - AC_DEFINE([ENABLE_SSP_CXX], [1], [Define if SSP C++ support is enabled.]) - fi - fi -]) - -AC_DEFUN([GCC_STACK_PROTECTOR],[ - GCC_STACK_PROTECT_LIB - - AC_LANG_PUSH([C]) - GCC_STACK_PROTECT_CC - AC_LANG_POP([C]) - - AC_LANG_PUSH([C++]) - GCC_STACK_PROTECT_CXX - AC_LANG_POP([C++]) -]) - - -AC_DEFUN([GCC_PIE_CC],[ - AC_LANG_ASSERT(C) - if test "X$CC" != "X"; then - AC_CACHE_CHECK([whether ${CC} accepts -pie -fPIE], - pie_cv_cc, - [pie_old_cflags="$CFLAGS" - CFLAGS="$CFLAGS -pie -fPIE" - AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[]], [[]])],[pie_cv_cc=yes],[pie_cv_cc=no]) - CFLAGS="$pie_old_cflags" - ]) - if test $pie_cv_cc = yes; then - case "$host_os" in - *cygwin*) - ;; - *) - PIE_CFLAGS="-fPIE" - PIE_LDFLAGS="-pie" - ;; - esac - fi - fi -]) - -AC_DEFUN([GCC_STACK_CHECK_CC],[ - AC_LANG_ASSERT(C) - if test "X$CC" != "X"; then - AC_CACHE_CHECK([whether ${CC} accepts -fstack-clash-protection], - stackcheck_cv_cc, - [stackcheck_old_cflags="$CFLAGS" - CFLAGS="$CFLAGS -fstack-clash-protection" - AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[]], [[]])],[stackcheck_cv_cc=yes],[stackcheck_cv_cc=no]) - CFLAGS="$stackcheck_old_cflags" - ]) - if test $stackcheck_cv_cc = yes; then - CFLAGS="$CFLAGS -fstack-clash-protection" - fi - fi -]) - -AC_DEFUN([GCC_FLAG_CHECK],[ - AC_LANG_ASSERT(C) - if test "X$CC" != "X"; then - AC_MSG_CHECKING([whether ${CC} accepts $1]) - saved_cflags="$CFLAGS" - # any -Wno- option will always succeed :-( - flag_check_opt=`echo $1 | sed 's,-Wno-,-W,'` - CFLAGS="$CFLAGS -Werror $flag_check_opt" - AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[]], [[]])],[flag_check_cv=yes],[flag_check_cv=no]) - CFLAGS="$saved_cflags" - if test $flag_check_cv = yes; then - CFLAGS="$CFLAGS $1" - AC_MSG_RESULT([yes]) - else - AC_MSG_RESULT([no]) - fi - fi -]) - -AC_DEFUN([SAMHAIN_POSIX],[ - AC_MSG_CHECKING([whether _POSIX_SOURCE is necessary]) - AC_COMPILE_IFELSE([AC_LANG_PROGRAM([[#include -void fileno(int);int fdopen(int, char *); ]], [[]])],[ - AC_MSG_RESULT(yes) - AC_DEFINE([_POSIX_SOURCE], [1], [Define if POSIX functions are required]) - ],[AC_MSG_RESULT(no)]) -])dnl - -dnl checks for a known 64 bit programming environment -dnl AC_RUN_IFELSE(PROGRAM, -dnl [ACTION-IF-TRUE], [ACTION-IF-FALSE], -dnl [ACTION-IF-CROSS-COMPILING = RUNTIME-ERROR]) -dnl -AC_DEFUN([SAMHAIN_PRG_ENV],[ - AC_MSG_CHECKING([for a known 64 bit programming environment]) - # Compile and run a program that determines the programming environment - AC_RUN_IFELSE([ - AC_LANG_SOURCE([[ -#include -int main(int argc,char **argv) -{ - if (argc > 1) { -#if defined(__arch64__) - printf("__arch64__\n"); -#elif defined(__ia64__) - printf("__ia64__\n"); -#elif defined(__x86_64__) - printf("__x86_64__\n"); -#elif defined(__LP64__) - printf("__LP64__\n"); -#elif defined(__64BIT__) - printf("__64BIT__\n"); -#elif defined(_LP64) - printf("_LP64\n"); -#elif defined(_M_IA64) - printf("_M_IA64\n"); -#elif defined(_MIPS_SZLONG) && (_MIPS_SZLONG == 64) - printf("_MIPS_64\n"); -#else -choke me -#endif - } - return 0; -} - ]]) - ],[ - # Program compiled and ran, so get version by adding argument. - samhain_prg_ENV=`./conftest$ac_exeext x` - samhain_64=yes - AC_MSG_RESULT([$samhain_prg_ENV]) - ],[ - AC_MSG_RESULT([none]) - ],[ - AC_MSG_RESULT([none]) - ]) -])dnl - -AC_DEFUN([SAMHAIN_X86_64],[ - AC_MSG_CHECKING([for x86_64]) - AC_RUN_IFELSE([AC_LANG_SOURCE([[ -int main() { -__asm__ volatile ( -"movq %rax, %rax" -); -return 0; -} - ]])],[ - AC_MSG_RESULT(yes) - samhain_64=yes - tiger_src=sh_tiger1_64.c - samhain_64_asm=yes - ],[ - AC_MSG_RESULT([no]) - ],[ - AC_MSG_RESULT([no]) - ]) -])dnl - - -AC_DEFUN([SAMHAIN_64],[ -samhain_64=no -tiger_src=sh_tiger1.c -samhain_64_asm=no -# -# if sizeof(unsigned long) = 4, try compiler macros for 64bit -# -if test "x$ac_cv_sizeof_unsigned_long" = x4; then - if test "x$ac_cv_sizeof_unsigned_long_long" = x8; then - SAMHAIN_PRG_ENV - if test "x$samhain_64" = xyes; then - tiger_src=sh_tiger1_64.c - fi - # - # if GCC and __i386__, use precompiled assembler - # - if test "x$GCC" = xyes; then - AC_MSG_CHECKING([for non-apple non-cygwin i386]) - samhain_i386=no - $CC -E -dM - < /dev/null | egrep '__i386__' >/dev/null 2>&1 - if test $? = 0; then - case "$host_os" in - *linux*) - # apples gcc does not understand the assembly we provide - $CC -E -dM - < /dev/null | egrep '(__sun__|__APPLE__|__CYGWIN__)' >/dev/null 2>&1 || samhain_i386=yes - ;; - *) - ;; - esac - fi - AC_MSG_RESULT([$samhain_i386]) - if test "x$samhain_i386" = xyes; then - GCC_PIE_CC - if test $pie_cv_cc = yes; then - tiger_src=sh_tiger1.s - AC_DEFINE([TIGER_32_BIT_S], [1], [Define to use tiger 32 bit i386 assembler]) - fi - fi - fi - # - # - # - else - samhain_64=no - tiger_src=sh_tiger1.c - fi -else - # - # sizeof(unsigned long) = 8 - # - tiger_src=sh_tiger1_64.c - samhain_64=yes - # - # check for x86_64 (enables assembly optimizations) - # - if test "x$GCC" = xyes; then - $CC -E -dM - < /dev/null | egrep '__clang__' >/dev/null 2>&1 - if ! test $? = 0; then - case "$host_os" in - *linux*) - SAMHAIN_X86_64 - ;; - *bsd*) - SAMHAIN_X86_64 - ;; - *) - SAMHAIN_X86_64 - ;; - esac - fi - fi -fi -if test "x$samhain_64" = xyes; then - AC_DEFINE([TIGER_64_BIT], [1], [Define to use tiger 64 bit implementation]) -fi -AC_MSG_CHECKING([for 64 bit environment]) -AC_MSG_RESULT([$samhain_64]) -AC_MSG_CHECKING([for tiger source to use]) -AC_MSG_RESULT([$tiger_src]) -AC_SUBST(tiger_src) -])dnl - -AC_DEFUN([sh_CHECK_POSIX_ACL], -[ - AC_CHECK_HEADERS(sys/acl.h) - if test $ac_cv_header_sys_acl_h = yes; then - - AC_CHECK_LIB([acl], [acl_get_file], sh_lacl=yes, sh_lacl=no) - if test x"$sh_lacl" = xyes; then - LIBACL=-lacl - else - LIBACL= - fi - - OLDLIBS="$LIBS" - LIBS="$LIBS $LIBACL" - AC_CHECK_FUNCS([acl_free acl_get_file acl_get_fd], - [sh_facl=yes],[sh_facl=no]) - LIBS="$OLDLIBS" - fi - - if test x"$sh_facl" = xyes; then - AC_DEFINE([USE_ACL], [1], [Define if you want ACL support.]) - LIBS="$LIBS $LIBACL" - else - if test "x$enable_posix_acl" != xcheck; then - AC_MSG_FAILURE([--enable-posix-acl was given, but test for acl support failed]) - fi - fi -]) - -AC_DEFUN([sh_CHECK_XATTR], -[ - AC_CHECK_HEADERS(attr/xattr.h) - if test $ac_cv_header_attr_xattr_h = yes; then - - AC_CHECK_LIB([attr], [getxattr], sh_lattr=yes, sh_lattr=no) - if test x"$sh_lattr" = xyes; then - LIBATTR=-lattr - else - LIBATTR= - fi - - OLDLIBS="$LIBS" - LIBS="$LIBS $LIBATTR" - AC_CHECK_FUNCS([getxattr lgetxattr fgetxattr], - [sh_fattr=yes],[sh_fattr=no]) - LIBS="$OLDLIBS" - fi - - if test x"$sh_fattr" = xyes; then - AC_DEFINE([USE_XATTR], [1], [Define if you want extended attributes support.]) - LIBS="$LIBS $LIBATTR" - else - if test "x$enable_selinux" != xcheck; then - AC_MSG_FAILURE([--enable-selinux was given, but test for selinux support failed]) - fi - fi -]) - -dnl Autoconf macros for libprelude -dnl $id$ - -# Modified for LIBPRELUDE -- Yoann Vandoorselaere -# Modified for LIBGNUTLS -- nmav -# Configure paths for LIBGCRYPT -# Shamelessly stolen from the one of XDELTA by Owen Taylor -# Werner Koch 99-12-09 - -dnl AM_PATH_LIBPRELUDE([MINIMUM-VERSION, [ACTION-IF-FOUND [, ACTION-IF-NOT-FOUND ]]]) -dnl Test for libprelude, and define LIBPRELUDE_PREFIX, LIBPRELUDE_CFLAGS, LIBPRELUDE_PTHREAD_CFLAGS, -dnl LIBPRELUDE_LDFLAGS, and LIBPRELUDE_LIBS -dnl -AC_DEFUN([AM_PATH_LIBPRELUDE], -[dnl -dnl Get the cflags and libraries from the libprelude-config script -dnl -dnl AC_ARG_WITH(libprelude-prefix, -dnl [ --with-libprelude-prefix=PFX Prefix where libprelude is installed (optional)], -dnl libprelude_config_prefix="$withval", libprelude_config_prefix="") -dnl -dnl if test x$libprelude_config_prefix != x ; then -dnl if test x${LIBPRELUDE_CONFIG+set} != xset ; then -dnl LIBPRELUDE_CONFIG=$libprelude_config_prefix/bin/libprelude-config -dnl fi -dnl fi -dnl -dnl AC_PATH_PROG(LIBPRELUDE_CONFIG, libprelude-config, no) - min_libprelude_version=ifelse([$1], ,0.1.0,$1) - AC_MSG_CHECKING(for libprelude - version >= $min_libprelude_version) - no_libprelude="" - if test "$LIBPRELUDE_CONFIG" = "no" ; then - no_libprelude=yes - else - LIBPRELUDE_CFLAGS=`$LIBPRELUDE_CONFIG $libprelude_config_args --cflags` - LIBPRELUDE_PTHREAD_CFLAGS=`$LIBPRELUDE_CONFIG $libprelude_config_args --pthread-cflags` - LIBPRELUDE_LDFLAGS=`$LIBPRELUDE_CONFIG $libprelude_config_args --ldflags` - LIBPRELUDE_LIBS=`$LIBPRELUDE_CONFIG $libprelude_config_args --libs` - LIBPRELUDE_PREFIX=`$LIBPRELUDE_CONFIG $libprelude_config_args --prefix` - LIBPRELUDE_CONFIG_PREFIX=`$LIBPRELUDE_CONFIG $libprelude_config_args --config-prefix` - libprelude_config_version=`$LIBPRELUDE_CONFIG $libprelude_config_args --version` - - - ac_save_CFLAGS="$CFLAGS" - ac_save_LDFLAGS="$LDFLAGS" - ac_save_LIBS="$LIBS" - CFLAGS="$CFLAGS $LIBPRELUDE_CFLAGS" - LDFLAGS="$LDFLAGS $LIBPRELUDE_LDFLAGS" - LIBS="$LIBS $LIBPRELUDE_LIBS" -dnl -dnl Now check if the installed libprelude is sufficiently new. Also sanity -dnl checks the results of libprelude-config to some extent -dnl - rm -f conf.libpreludetest - AC_RUN_IFELSE([AC_LANG_SOURCE([[ -#include -#include -#include -#include - -int -main () -{ - system ("touch conf.libpreludetest"); - - if( strcmp( prelude_check_version(NULL), "$libprelude_config_version" ) ) - { - printf("\n*** 'libprelude-config --version' returned %s, but LIBPRELUDE (%s)\n", - "$libprelude_config_version", prelude_check_version(NULL) ); - printf("*** was found! If libprelude-config was correct, then it is best\n"); - printf("*** to remove the old version of LIBPRELUDE. You may also be able to fix the error\n"); - printf("*** by modifying your LD_LIBRARY_PATH enviroment variable, or by editing\n"); - printf("*** /etc/ld.so.conf. Make sure you have run ldconfig if that is\n"); - printf("*** required on your system.\n"); - printf("*** If libprelude-config was wrong, set the environment variable LIBPRELUDE_CONFIG\n"); - printf("*** to point to the correct copy of libprelude-config, and remove the file config.cache\n"); - printf("*** before re-running configure\n"); - } - else if ( strcmp(prelude_check_version(NULL), LIBPRELUDE_VERSION ) ) - { - printf("\n*** LIBPRELUDE header file (version %s) does not match\n", LIBPRELUDE_VERSION); - printf("*** library (version %s)\n", prelude_check_version(NULL) ); - } - else - { - if ( prelude_check_version( "$min_libprelude_version" ) ) - { - return 0; - } - else - { - printf("no\n*** An old version of LIBPRELUDE (%s) was found.\n", - prelude_check_version(NULL) ); - printf("*** You need a version of LIBPRELUDE newer than %s. The latest version of\n", - "$min_libprelude_version" ); - printf("*** LIBPRELUDE is always available from http://www.prelude-ids.org/download/releases.\n"); - printf("*** \n"); - printf("*** If you have already installed a sufficiently new version, this error\n"); - printf("*** probably means that the wrong copy of the libprelude-config shell script is\n"); - printf("*** being found. The easiest way to fix this is to remove the old version\n"); - printf("*** of LIBPRELUDE, but you can also set the LIBPRELUDE_CONFIG environment to point to the\n"); - printf("*** correct copy of libprelude-config. (In this case, you will have to\n"); - printf("*** modify your LD_LIBRARY_PATH enviroment variable, or edit /etc/ld.so.conf\n"); - printf("*** so that the correct libraries are found at run-time))\n"); - } - } - return 1; -} -]])],[],[no_libprelude=yes],[echo $ac_n "cross compiling; assumed OK... $ac_c"]) - CFLAGS="$ac_save_CFLAGS" - LIBS="$ac_save_LIBS" - LDFLAGS="$ac_save_LDFLAGS" - fi - - if test "x$no_libprelude" = x ; then - AC_MSG_RESULT(yes) - ifelse([$2], , :, [$2]) - else - if test -f conf.libpreludetest ; then - : - else - AC_MSG_RESULT(no) - fi - if test "$LIBPRELUDE_CONFIG" = "no" ; then - echo "*** The libprelude-config script installed by LIBPRELUDE could not be found" - echo "*** If LIBPRELUDE was installed in PREFIX, make sure PREFIX/bin is in" - echo "*** your path, or set the LIBPRELUDE_CONFIG environment variable to the" - echo "*** full path to libprelude-config." - else - if test -f conf.libpreludetest ; then - : - else - echo "*** Could not run libprelude test program, checking why..." - CFLAGS="$CFLAGS $LIBPRELUDE_CFLAGS" - LDFLAGS="$LDFLAGS $LIBPRELUDE_LDFLAGS" - LIBS="$LIBS $LIBPRELUDE_LIBS" - AC_LINK_IFELSE([AC_LANG_PROGRAM([[ -#include -#include -#include -#include -]], [[ return !!prelude_check_version(NULL); ]])],[ echo "*** The test program compiled, but did not run. This usually means" - echo "*** that the run-time linker is not finding LIBPRELUDE or finding the wrong" - echo "*** version of LIBPRELUDE. If it is not finding LIBPRELUDE, you'll need to set your" - echo "*** LD_LIBRARY_PATH environment variable, or edit /etc/ld.so.conf to point" - echo "*** to the installed location Also, make sure you have run ldconfig if that" - echo "*** is required on your system" - echo "***" - echo "*** If you have an old version installed, it is best to remove it, although" - echo "*** you may also be able to get things to work by modifying LD_LIBRARY_PATH" - echo "***" ],[ echo "*** The test program failed to compile or link. See the file config.log for the" - echo "*** exact error that occured. This usually means LIBPRELUDE was incorrectly installed" - echo "*** or that you have moved LIBPRELUDE since it was installed. In the latter case, you" - echo "*** may want to edit the libprelude-config script: $LIBPRELUDE_CONFIG" ]) - CFLAGS="$ac_save_CFLAGS" - LDFLAGS="$ac_save_LDFLAGS" - LIBS="$ac_save_LIBS" - fi - fi - LIBPRELUDE_CFLAGS="" - LIBPRELUDE_LDFLAGS="" - LIBPRELUDE_LIBS="" - ifelse([$3], , :, [$3]) - fi - rm -f conf.libpreludetest - AC_SUBST(LIBPRELUDE_CFLAGS) - AC_SUBST(LIBPRELUDE_PTHREAD_CFLAGS) - AC_SUBST(LIBPRELUDE_LDFLAGS) - AC_SUBST(LIBPRELUDE_LIBS) - AC_SUBST(LIBPRELUDE_PREFIX) - AC_SUBST(LIBPRELUDE_CONFIG_PREFIX) -]) - - -##### http://autoconf-archive.cryp.to/acx_pthread.html -# -# SYNOPSIS -# -# ACX_PTHREAD([ACTION-IF-FOUND[, ACTION-IF-NOT-FOUND]]) -# -# DESCRIPTION -# -# This macro figures out how to build C programs using POSIX threads. -# It sets the PTHREAD_LIBS output variable to the threads library and -# linker flags, and the PTHREAD_CFLAGS output variable to any special -# C compiler flags that are needed. (The user can also force certain -# compiler flags/libs to be tested by setting these environment -# variables.) -# -# Also sets PTHREAD_CC to any special C compiler that is needed for -# multi-threaded programs (defaults to the value of CC otherwise). -# (This is necessary on AIX to use the special cc_r compiler alias.) -# -# NOTE: You are assumed to not only compile your program with these -# flags, but also link it with them as well. e.g. you should link -# with $PTHREAD_CC $CFLAGS $PTHREAD_CFLAGS $LDFLAGS ... $PTHREAD_LIBS -# $LIBS -# -# If you are only building threads programs, you may wish to use -# these variables in your default LIBS, CFLAGS, and CC: -# -# LIBS="$PTHREAD_LIBS $LIBS" -# CFLAGS="$CFLAGS $PTHREAD_CFLAGS" -# CC="$PTHREAD_CC" -# -# In addition, if the PTHREAD_CREATE_JOINABLE thread-attribute -# constant has a nonstandard name, defines PTHREAD_CREATE_JOINABLE to -# that name (e.g. PTHREAD_CREATE_UNDETACHED on AIX). -# -# ACTION-IF-FOUND is a list of shell commands to run if a threads -# library is found, and ACTION-IF-NOT-FOUND is a list of commands to -# run it if it is not found. If ACTION-IF-FOUND is not specified, the -# default action will define HAVE_PTHREAD. -# -# Please let the authors know if this macro fails on any platform, or -# if you have any other suggestions or comments. This macro was based -# on work by SGJ on autoconf scripts for FFTW (http://www.fftw.org/) -# (with help from M. Frigo), as well as ac_pthread and hb_pthread -# macros posted by Alejandro Forero Cuervo to the autoconf macro -# repository. We are also grateful for the helpful feedback of -# numerous users. -# -# LAST MODIFICATION -# -# 2007-07-29 -# -# COPYLEFT -# -# Copyright (c) 2007 Steven G. Johnson -# -# This program is free software: you can redistribute it and/or -# modify it under the terms of the GNU General Public License as -# published by the Free Software Foundation, either version 3 of the -# License, or (at your option) any later version. -# -# This program is distributed in the hope that it will be useful, but -# WITHOUT ANY WARRANTY; without even the implied warranty of -# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU -# General Public License for more details. -# -# You should have received a copy of the GNU General Public License -# along with this program. If not, see -# . -# -# As a special exception, the respective Autoconf Macro's copyright -# owner gives unlimited permission to copy, distribute and modify the -# configure scripts that are the output of Autoconf when processing -# the Macro. You need not follow the terms of the GNU General Public -# License when using or distributing such scripts, even though -# portions of the text of the Macro appear in them. The GNU General -# Public License (GPL) does govern all other use of the material that -# constitutes the Autoconf Macro. -# -# This special exception to the GPL applies to versions of the -# Autoconf Macro released by the Autoconf Macro Archive. When you -# make and distribute a modified version of the Autoconf Macro, you -# may extend this special exception to the GPL to apply to your -# modified version as well. - -AC_DEFUN([ACX_PTHREAD], [ -AC_REQUIRE([AC_CANONICAL_HOST]) -AC_LANG_SAVE -AC_LANG([C]) -acx_pthread_ok=no - -# We used to check for pthread.h first, but this fails if pthread.h -# requires special compiler flags (e.g. on True64 or Sequent). -# It gets checked for in the link test anyway. - -# First of all, check if the user has set any of the PTHREAD_LIBS, -# etcetera environment variables, and if threads linking works using -# them: -if test x"$PTHREAD_LIBS$PTHREAD_CFLAGS" != x; then - save_CFLAGS="$CFLAGS" - CFLAGS="$CFLAGS $PTHREAD_CFLAGS" - save_LIBS="$LIBS" - LIBS="$PTHREAD_LIBS $LIBS" - AC_MSG_CHECKING([for pthread_join in LIBS=$PTHREAD_LIBS with CFLAGS=$PTHREAD_CFLAGS]) - AC_TRY_LINK_FUNC(pthread_join, acx_pthread_ok=yes) - AC_MSG_RESULT($acx_pthread_ok) - if test x"$acx_pthread_ok" = xno; then - PTHREAD_LIBS="" - PTHREAD_CFLAGS="" - fi - LIBS="$save_LIBS" - CFLAGS="$save_CFLAGS" -fi - -# We must check for the threads library under a number of different -# names; the ordering is very important because some systems -# (e.g. DEC) have both -lpthread and -lpthreads, where one of the -# libraries is broken (non-POSIX). - -# Create a list of thread flags to try. Items starting with a "-" are -# C compiler flags, and other items are library names, except for "none" -# which indicates that we try without any flags at all, and "pthread-config" -# which is a program returning the flags for the Pth emulation library. - -acx_pthread_flags="pthreads none -Kthread -kthread lthread -pthread -pthreads -mthreads pthread --thread-safe -mt pthread-config" - -# The ordering *is* (sometimes) important. Some notes on the -# individual items follow: - -# pthreads: AIX (must check this before -lpthread) -# none: in case threads are in libc; should be tried before -Kthread and -# other compiler flags to prevent continual compiler warnings -# -Kthread: Sequent (threads in libc, but -Kthread needed for pthread.h) -# -kthread: FreeBSD kernel threads (preferred to -pthread since SMP-able) -# lthread: LinuxThreads port on FreeBSD (also preferred to -pthread) -# -pthread: Linux/gcc (kernel threads), BSD/gcc (userland threads) -# -pthreads: Solaris/gcc -# -mthreads: Mingw32/gcc, Lynx/gcc -# -mt: Sun Workshop C (may only link SunOS threads [-lthread], but it -# doesn't hurt to check since this sometimes defines pthreads too; -# also defines -D_REENTRANT) -# ... -mt is also the pthreads flag for HP/aCC -# pthread: Linux, etcetera -# --thread-safe: KAI C++ -# pthread-config: use pthread-config program (for GNU Pth library) - -case "${host_cpu}-${host_os}" in - *solaris*) - - # On Solaris (at least, for some versions), libc contains stubbed - # (non-functional) versions of the pthreads routines, so link-based - # tests will erroneously succeed. (We need to link with -pthreads/-mt/ - # -lpthread.) (The stubs are missing pthread_cleanup_push, or rather - # a function called by this macro, so we could check for that, but - # who knows whether they'll stub that too in a future libc.) So, - # we'll just look for -pthreads and -lpthread first: - - acx_pthread_flags="-pthreads pthread -mt -pthread $acx_pthread_flags" - ;; -esac - -if test x"$acx_pthread_ok" = xno; then -for flag in $acx_pthread_flags; do - - case $flag in - none) - AC_MSG_CHECKING([whether pthreads work without any flags]) - ;; - - -pthread) - AC_MSG_CHECKING([whether pthreads work with $flag]) - PTHREAD_CFLAGS="$flag" - ;; - - -*) - AC_MSG_CHECKING([whether pthreads work with $flag]) - PTHREAD_CFLAGS="$flag" - ;; - - pthread-config) - AC_CHECK_PROG(acx_pthread_config, pthread-config, yes, no) - if test x"$acx_pthread_config" = xno; then continue; fi - PTHREAD_CFLAGS="`pthread-config --cflags`" - PTHREAD_LIBS="`pthread-config --ldflags` `pthread-config --libs`" - ;; - - *) - AC_MSG_CHECKING([for the pthreads library -l$flag]) - PTHREAD_LIBS="-l$flag" - ;; - esac - - save_LIBS="$LIBS" - save_CFLAGS="$CFLAGS" - save_LDFLAGS="$LDFLAGS" - LIBS="$PTHREAD_LIBS $LIBS" - CFLAGS="$CFLAGS $PTHREAD_CFLAGS" - LDFLAGS="$LDFLAGS $PTHREAD_CFLAGS" - - # Check for various functions. We must include pthread.h, - # since some functions may be macros. (On the Sequent, we - # need a special flag -Kthread to make this header compile.) - # We check for pthread_join because it is in -lpthread on IRIX - # while pthread_create is in libc. We check for pthread_attr_init - # due to DEC craziness with -lpthreads. We check for - # pthread_cleanup_push because it is one of the few pthread - # functions on Solaris that doesn't have a non-functional libc stub. - # We try pthread_create on general principles. - AC_LINK_IFELSE([AC_LANG_PROGRAM([[#include ]], [[pthread_t th; pthread_join(th, 0); - pthread_attr_init(0); pthread_cleanup_push(0, 0); - pthread_create(0,0,0,0); pthread_cleanup_pop(0); ]])],[acx_pthread_ok=yes],[]) - - LIBS="$save_LIBS" - LDFLAGS="$save_LDFLAGS" - CFLAGS="$save_CFLAGS" - - AC_MSG_RESULT($acx_pthread_ok) - if test "x$acx_pthread_ok" = xyes; then - break; - fi - - PTHREAD_LIBS="" - PTHREAD_CFLAGS="" -done -fi - -# Various other checks: -if test "x$acx_pthread_ok" = xyes; then - save_LIBS="$LIBS" - LIBS="$PTHREAD_LIBS $LIBS" - save_CFLAGS="$CFLAGS" - CFLAGS="$CFLAGS $PTHREAD_CFLAGS" - - # Detect AIX lossage: JOINABLE attribute is called UNDETACHED. - AC_MSG_CHECKING([for joinable pthread attribute]) - attr_name=unknown - for attr in PTHREAD_CREATE_JOINABLE PTHREAD_CREATE_UNDETACHED; do - AC_LINK_IFELSE([AC_LANG_PROGRAM([[#include ]], [[int attr=$attr; return attr;]])],[attr_name=$attr; break],[]) - done - AC_MSG_RESULT($attr_name) - if test "$attr_name" != PTHREAD_CREATE_JOINABLE; then - AC_DEFINE_UNQUOTED([PTHREAD_CREATE_JOINABLE], [${attr_name}], - [Define to necessary symbol if this constant - uses a non-standard name on your system.]) - fi - - # Solaris lossage: default is obsolete semantics for getpwnam_r, - # getpwuid_r, getgrgid_r, unless _POSIX_PTHREAD_SEMANTICS is defined - AC_MSG_CHECKING([if more special flags are required for pthreads]) - flag=no - case "${host_cpu}-${host_os}" in - *-aix* | *-freebsd* | *-darwin*) flag="-D_THREAD_SAFE";; - *-osf* | *-hpux*) flag="-D_REENTRANT";; - *solaris*) flag="-D_POSIX_PTHREAD_SEMANTICS -D_REENTRANT";; - esac - AC_MSG_RESULT(${flag}) - if test "x$flag" != xno; then - PTHREAD_CFLAGS="$flag $PTHREAD_CFLAGS" - fi - - # Detect PTHREAD_MUTEX_RECURSIVE - AC_MSG_CHECKING([for recursive mutexes]) - mutex_recursive=no - AC_LINK_IFELSE([AC_LANG_PROGRAM([[ -#define _XOPEN_SOURCE 500 -#include ]], [[ -pthread_mutexattr_t mta; -pthread_mutexattr_settype(&mta, PTHREAD_MUTEX_RECURSIVE); -return 0;]])],[mutex_recursive=yes],[]) - if test "x$mutex_recursive" = "xyes" - then - AC_DEFINE([HAVE_PTHREAD_MUTEX_RECURSIVE], [1], [Define if you have recursive mutexes.]) - fi - AC_MSG_RESULT($mutex_recursive) - - LIBS="$save_LIBS" - CFLAGS="$save_CFLAGS" - - # More AIX lossage: must compile with xlc_r or cc_r - if test x"$GCC" != xyes; then - AC_CHECK_PROGS(PTHREAD_CC, xlc_r cc_r, ${CC}) - else - PTHREAD_CC=$CC - fi -else - PTHREAD_CC="$CC" -fi - -if test x"$acx_pthread_ok" = xyes; then - PTHREAD_CFLAGS="${PTHREAD_CFLAGS} -DUSE_MALLOC_LOCK=1" -fi - -AC_SUBST(PTHREAD_LIBS) -AC_SUBST(PTHREAD_CFLAGS) -AC_SUBST(PTHREAD_LDFLAGS) -AC_SUBST(PTHREAD_CC) - -# Finally, execute ACTION-IF-FOUND/ACTION-IF-NOT-FOUND: -if test x"$acx_pthread_ok" = xyes; then - ifelse([$1],,AC_DEFINE([HAVE_PTHREAD], [1], [Define if you have POSIX threads libraries and header files.]),[$1]) - : -else - acx_pthread_ok=no - $2 -fi -AC_LANG_RESTORE -])dnl ACX_PTHREAD - - - - -dnl Copyright © 2004 Loic Dachary -dnl -dnl This program is free software; you can redistribute it and/or modify -dnl it under the terms of the GNU General Public License as published by -dnl the Free Software Foundation; either version 2 of the License, or (at -dnl your option) any later version. -dnl -dnl Use ZLIB_HOME instead of option - -AC_DEFUN([CHECK_ZLIB],[ - -if test "x${ZLIB_HOME}" = "x"; then - ZLIB_HOME=/usr/local - if test ! -f "${ZLIB_HOME}/include/zlib.h" - then - ZLIB_HOME=/usr - fi -fi - -zlib_found=no - -ZLIB_OLD_LDFLAGS=$LDFLAGS -ZLIB_OLD_CPPFLAGS=$LDFLAGS -if test "x${ZLIB_HOME}" = "x/usr"; then - : -else - LDFLAGS="$LDFLAGS -L${ZLIB_HOME}/lib" - CPPFLAGS="$CPPFLAGS -I${ZLIB_HOME}/include" -fi -AC_LANG_SAVE -AC_LANG([C]) -AC_CHECK_LIB(z, inflateEnd, [zlib_cv_libz=yes], [zlib_cv_libz=no]) -AC_CHECK_HEADER(zlib.h, [zlib_cv_zlib_h=yes], [zlib_cv_zlib_h=no]) -AC_LANG_RESTORE -if test "$zlib_cv_libz" = "yes" -a "$zlib_cv_zlib_h" = "yes" -then - # - # If both library and header were found, use them - # - AC_CHECK_LIB(z, inflateEnd) - AC_MSG_CHECKING([zlib in ${ZLIB_HOME}]) - AC_MSG_RESULT(ok) - AC_CHECK_FUNCS([compressBound]) - zlib_found=yes -else - # - # If either header or library was not found, revert and bomb - # - AC_MSG_CHECKING(zlib in ${ZLIB_HOME}) - LDFLAGS="$ZLIB_OLD_LDFLAGS" - CPPFLAGS="$ZLIB_OLD_CPPFLAGS" - AC_MSG_RESULT(failed) - AC_MSG_WARN([zlib not found in ZLIB_HOME, /usr/local, or /usr]) -fi - -]) - -# SH_PROG_LD -# ---------- -# find the pathname to the GNU or non-GNU linker -AC_DEFUN([SH_PROG_LD], -[ -AC_REQUIRE([AC_PROG_CC])dnl -AC_REQUIRE([AC_CANONICAL_HOST])dnl -AC_REQUIRE([AC_CANONICAL_BUILD])dnl -ac_prog=ld -if test "$GCC" = yes; then - # Check if gcc -print-prog-name=ld gives a path. - AC_MSG_CHECKING([for ld used by $CC]) - case $host in - *-*-mingw*) - # gcc leaves a trailing carriage return which upsets mingw - ac_prog=`($CC -print-prog-name=ld) 2>&5 | tr -d '\015'` ;; - *) - ac_prog=`($CC -print-prog-name=ld) 2>&5` ;; - esac - case $ac_prog in - # Accept absolute paths. - [[\\/]]* | ?:[[\\/]]*) - re_direlt='/[[^/]][[^/]]*/\.\./' - # Canonicalize the pathname of ld - ac_prog=`echo $ac_prog| sed 's%\\\\%/%g'` - while echo $ac_prog | grep "$re_direlt" > /dev/null 2>&1; do - ac_prog=`echo $ac_prog| sed "s%$re_direlt%/%"` - done - test -z "$LD" && LD="$ac_prog" - ;; - "") - # If it fails, then pretend we aren't using GCC. - ac_prog=ld - ;; - *) - # If it is relative, then search for the first ld in PATH. - with_gnu_ld=unknown - ;; - esac -else - AC_MSG_CHECKING([for ld]) -fi -AC_CACHE_VAL(lt_cv_path_LD, -[if test -z "$LD"; then - lt_save_ifs="$IFS"; IFS=$PATH_SEPARATOR - for ac_dir in $PATH; do - IFS="$lt_save_ifs" - test -z "$ac_dir" && ac_dir=. - if test -f "$ac_dir/$ac_prog" || test -f "$ac_dir/$ac_prog$ac_exeext"; then - lt_cv_path_LD="$ac_dir/$ac_prog" - # Check to see if the program is GNU ld. I'd rather use --version, - # but apparently some variants of GNU ld only accept -v. - # Break only if it was the GNU/non-GNU ld that we prefer. - case `"$lt_cv_path_LD" -v 2>&1 &1 -#include -int main() -{ - struct tm tm; - char tt[64]; - memset(&tm, 0, sizeof(tm)); - strftime(tt, sizeof(tt), "%z", &tm); - - if (strlen(tt) != 5) return 1; - return 0; -} -]])],[ -AC_MSG_RESULT([yes]) -AC_DEFINE([HAVE_STRFTIME_Z], [1], [strftime supports %z]) -],[ -AC_MSG_RESULT([no]) -],[ -AC_MSG_RESULT([no]) -])]) - -AC_DEFUN([SH_GCC_VERSION], [ - GCC_VERSION="" - gcc_VERSION_MAJOR=0 - gcc_VERSION_MINOR=0 - AC_MSG_CHECKING([for gcc version]) - if test "x$GCC" = "xyes" - then - $CC -dumpversion >/dev/null 2>&1 - if test $? -eq 0 - then - GCC_VERSION=`$CC -dumpversion` - gcc_VERSION_MAJOR=`echo $GCC_VERSION | cut -d'.' -f1` - gcc_VERSION_MINOR=`echo $GCC_VERSION | cut -d'.' -f2` - AC_DEFINE_UNQUOTED([GCC_VERSION_MAJOR], [${gcc_VERSION_MAJOR}], [gcc version major]) - AC_DEFINE_UNQUOTED([GCC_VERSION_MINOR], [${gcc_VERSION_MINOR}], [gcc version minor]) - AC_MSG_RESULT([$GCC_VERSION]) - else - AC_MSG_RESULT([$CC -dumpversion working]) - fi - else - AC_MSG_RESULT([compiler is not gcc]) - fi -]) - - - -dnl *-*wedit:notab*-* Please keep this as the last line. - Index: trunk/aclocal.m4 =================================================================== --- trunk/aclocal.m4 (revision 1) +++ trunk/aclocal.m4 (revision 1) @@ -0,0 +1,1380 @@ +dnl aclocal.m4 generated automatically by aclocal 1.3 + +dnl Copyright (C) 1994, 1995, 1996, 1997, 1998 Free Software Foundation, Inc. +dnl This Makefile.in is free software; the Free Software Foundation +dnl gives unlimited permission to copy and/or distribute it, +dnl with or without modifications, as long as this notice is preserved. + +dnl This program is distributed in the hope that it will be useful, +dnl but WITHOUT ANY WARRANTY, to the extent permitted by law; without +dnl even the implied warranty of MERCHANTABILITY or FITNESS FOR A +dnl PARTICULAR PURPOSE. + +# Do all the work for Automake. This macro actually does too much -- +# some checks are only needed if your package does certain things. +# But this isn't really a big deal. + +# serial 1 + + +# serial 1 + +# +# Check to make sure that the build environment is sane. +# +AC_DEFUN([AM_INIT_AUTOMAKE], +[ +AC_REQUIRE([AM_PROG_INSTALL]) +PACKAGE=[$1] +AC_SUBST(PACKAGE) +VERSION=[$2] +AC_SUBST(VERSION) +dnl test to see if srcdir already configured +if test "`cd $srcdir && pwd`" != "`pwd`" && test -f $srcdir/config.status; then + AC_MSG_ERROR([source directory already configured; run "make distclean" there first]) +fi +ifelse([$3],, +AC_DEFINE_UNQUOTED(PACKAGE, "$PACKAGE") +AC_DEFINE_UNQUOTED(VERSION, "$VERSION")) +AC_REQUIRE([AC_PROG_MAKE_SET])]) + + +# serial 1 + +# @defmac AC_PROG_CC_STDC +# @maindex PROG_CC_STDC +# @ovindex CC +# If the C compiler in not in ANSI C mode by default, try to add an option +# to output variable @code{CC} to make it so. This macro tries various +# options that select ANSI C on some system or another. It considers the +# compiler to be in ANSI C mode if it handles function prototypes correctly. +# +# If you use this macro, you should check after calling it whether the C +# compiler has been set to accept ANSI C; if not, the shell variable +# @code{am_cv_prog_cc_stdc} is set to @samp{no}. If you wrote your source +# code in ANSI C, you can make an un-ANSIfied copy of it by using the +# program @code{ansi2knr}, which comes with Ghostscript. +# @end defmac + +AC_DEFUN([AM_PROG_CC_STDC], +[AC_REQUIRE([AC_PROG_CC]) +AC_BEFORE([$0], [AC_C_INLINE]) +AC_BEFORE([$0], [AC_C_CONST]) +dnl Force this before AC_PROG_CPP. Some cpp's, eg on HPUX, require +dnl a magic option to avoid problems with ANSI preprocessor commands +dnl like #elif. +dnl FIXME: can't do this because then AC_AIX won't work due to a +dnl circular dependency. +dnl AC_BEFORE([$0], [AC_PROG_CPP]) +AC_MSG_CHECKING(for ${CC-cc} option to accept ANSI C) +AC_CACHE_VAL(am_cv_prog_cc_stdc, +[am_cv_prog_cc_stdc=no +ac_save_CC="$CC" +# Don't try gcc -ansi; that turns off useful extensions and +# breaks some systems' header files. +# AIX -qlanglvl=ansi +# Ultrix and OSF/1 -std1 +# HP-UX -Aa -D_HPUX_SOURCE +# SVR4 -Xc -D__EXTENSIONS__ +for ac_arg in "" -qlanglvl=ansi -std1 "-Aa -D_HPUX_SOURCE" "-Xc -D__EXTENSIONS__" +do + CC="$ac_save_CC $ac_arg" + AC_TRY_COMPILE( +[#include +#include +#include +#include +/* Most of the following tests are stolen from RCS 5.7's src/conf.sh. */ +struct buf { int x; }; +FILE * (*rcsopen) (struct buf *, struct stat *, int); +static char *e (p, i) + char **p; + int i; +{ + return p[i]; +} +static char *f (char * (*g) (char **, int), char **p, ...) +{ + char *s; + va_list v; + va_start (v,p); + s = g (p, va_arg (v,int)); + va_end (v); + return s; +} +int test (int i, double x); +struct s1 {int (*f) (int a);}; +struct s2 {int (*f) (double a);}; +int pairnames (int, char **, FILE *(*)(struct buf *, struct stat *, int), int, int); +int argc; +char **argv; +], [ +return f (e, argv, 0) != argv[0] || f (e, argv, 1) != argv[1]; +], +[am_cv_prog_cc_stdc="$ac_arg"; break]) +done +CC="$ac_save_CC" +]) +if test -z "$am_cv_prog_cc_stdc"; then + AC_MSG_RESULT([none needed]) +else + AC_MSG_RESULT($am_cv_prog_cc_stdc) +fi +case "x$am_cv_prog_cc_stdc" in + x|xno) ;; + *) CC="$CC $am_cv_prog_cc_stdc" ;; +esac +]) + +# Define a conditional. + +AC_DEFUN([AM_CONDITIONAL], +[AC_SUBST($1_TRUE) +AC_SUBST($1_FALSE) +if $2; then + $1_TRUE= + $1_FALSE='#' +else + $1_TRUE='#' + $1_FALSE= +fi]) + + +AC_DEFUN([sh_run_prog], +[if test "$cross_compiling" = "yes"; then + AC_MSG_ERROR([Can not probe non-portable values when cross compiling]) +fi +cat > conftest.$ac_ext </dev/null)` +then +dnl Don't remove the temporary files here, so they can be examined. +ifelse([$3], , :, [$3]) +else +echo "configure: failed program was:" >&AC_FD_CC +cat conftest.$ac_ext >&AC_FD_CC +ifelse([$4], , , [ rm -fr conftest* + $4 +]) +fi +rm -fr conftest* ]) + +dnl fs type number of the proc filing system +AC_DEFUN([sh_procfs_id], +[AC_MSG_CHECKING([f_type of /proc]) +AC_CACHE_VAL([sh_cv_proc_fstype], +[sh_run_prog( +changequote(<<, >>)dnl +<<#include +#ifdef HAVE_STDLIB_H +#include +#endif /* HAVE_STDLIB_H */ +#ifdef HAVE_UNISTD_H +#include +#endif /* HAVE_UNISTD_H */ +#ifdef HAVE_SYS_VFS_H +#include +#endif +#ifndef Q +#define __Q(x) #x +#define Q(x) __Q(x) +#endif +int main(void) +{ +struct statfs fsbuf; +long ft; +if (statfs("/", &fsbuf)!=0) + exit(1); +ft=fsbuf.f_type; +if (statfs("/proc/1", &fsbuf)!=0) + exit(1); +if (ft!=fsbuf.f_type) + printf("0x%08lx", fsbuf.f_type); +else + puts("statfs useless"); +exit(0); +} >> +changequote([, ]), sh_cv_proc_fstype,, sh_cv_proc_fstype="a fatal error occured")]) +AC_MSG_RESULT($sh_cv_proc_fstype) +if test "${sh_cv_proc_fstype}" = "a fatal error occured"; then + $1=$2 + $4 +else if test "${sh_cv_proc_fstype}" = "statfs useless"; then + $1=$2 + $4 +else + $1=$sh_cv_proc_fstype + $3 +fi; fi ]) + +# Check whether mlock is broken (hpux 10.20 raises a SIGBUS if mlock +# is not called from uid 0 (not tested whether uid 0 works) +dnl AC_CHECK_MLOCK +dnl +define([AC_CHECK_MLOCK], + [ AC_CHECK_FUNCS(mlock) + if test "$ac_cv_func_mlock" = "yes"; then + AC_MSG_CHECKING(whether mlock is broken) + AC_CACHE_VAL(ac_cv_have_broken_mlock, + AC_TRY_RUN([ + #include + #include + #include + #include + #include + #include + + int main() + { + char *pool; + int err; + long int pgsize = getpagesize(); + + pool = malloc( 4096 + pgsize ); + if( !pool ) + return 2; + pool += (pgsize - ((long int)pool % pgsize)); + + err = mlock( pool, 4096 ); + if( !err || errno == EPERM ) + return 0; /* okay */ + + return 1; /* hmmm */ + } + + ], + ac_cv_have_broken_mlock="no", + ac_cv_have_broken_mlock="yes", + ac_cv_have_broken_mlock="assume-no" + ) + ) + if test "$ac_cv_have_broken_mlock" = "yes"; then + AC_DEFINE(HAVE_BROKEN_MLOCK) + AC_MSG_RESULT(yes) + else + if test "$ac_cv_have_broken_mlock" = "no"; then + AC_MSG_RESULT(no) + else + AC_MSG_RESULT(assuming no) + fi + fi + fi + ]) + +dnl @synopsis AC_FUNC_VSNPRINTF +dnl +dnl Check whether there is a reasonably sane vsnprintf() function installed. +dnl "Reasonably sane" in this context means never clobbering memory beyond +dnl the buffer supplied, and having a sensible return value. It is +dnl explicitly allowed not to NUL-terminate the return value, however. +dnl +dnl @version $Id: ac_func_vsnprintf.m4,v 1.1 2001/07/26 02:00:21 guidod Exp $ +dnl @author Gaute Strokkenes +dnl +AC_DEFUN([SL_CHECK_VSNPRINTF], +[AC_CACHE_CHECK(for working vsnprintf, + ac_cv_func_vsnprintf, +[AC_TRY_RUN( +[#include +#include + +int +doit(char * s, ...) +{ + char buffer[32]; + va_list args; + int r; + + buffer[5] = 'X'; + + va_start(args, s); + r = vsnprintf(buffer, 5, s, args); + va_end(args); + + /* -1 is pre-C99, 7 is C99. R.W. 17.01.2003 disallow -1 */ + + if (r != 7) + exit(1); + + /* We deliberately do not care if the result is NUL-terminated or + not, since this is easy to work around like this. */ + + buffer[4] = 0; + + /* Simple sanity check. */ + + if (strcmp(buffer, "1234")) + exit(1); + + if (buffer[5] != 'X') + exit(1); + + exit(0); +} + +int +main(void) +{ + doit("1234567"); + exit(1); +}], ac_cv_func_vsnprintf=yes, ac_cv_func_vsnprintf=no, ac_cv_func_vsnprintf=no)]) +dnl Note that the default is to be pessimistic in the case +dnl of cross compilation. +dnl If you know that the target has a sensible vsnprintf(), +dnl you can get around this +dnl by setting ac_func_vsnprintf to yes, as described in the Autoconf manual. +if test $ac_cv_func_vsnprintf = yes; then + : +else + AC_DEFINE(HAVE_BROKEN_VSNPRINTF, 1, + [Define if you have a broken version of the `vsnprintf' function.]) +fi +])# AC_FUNC_VSNPRINTF + +dnl SH_CHECK_TYPEDEF(TYPE, HAVE_NAME) +dnl Check whether a typedef exists and create a #define $2 if it exists +dnl +AC_DEFUN([SH_CHECK_TYPEDEF], + [ AC_MSG_CHECKING(for $1 typedef) + sh_cv_typedef_foo=`echo sh_cv_typedef_$1 | sed -e 's% %_%g'` + AC_CACHE_VAL( $sh_cv_typedef_foo, + [AC_TRY_COMPILE([#include + #include ], [ + #undef $1 + int a = sizeof($1); + ], sh_cv_typedef=yes, sh_cv_typedef=no )]) + AC_MSG_RESULT($sh_cv_typedef) + if test "$sh_cv_typedef" = yes; then + AC_DEFINE($2) + sh_$2=yes + else + sh_$2=no + fi + ]) + + + +dnl ********************** +dnl *** va_copy checks *** +dnl ********************** +AC_DEFUN([SL_CHECK_VA_COPY], +[AC_MSG_CHECKING(for va_copy()) +AC_CACHE_VAL(sh_cv_va_copy,[ + AC_TRY_RUN([ + #include + void f (int i, ...) { + va_list args1, args2; + va_start (args1, i); + va_copy (args2, args1); + if (va_arg (args2, int) != 42) + exit (1); + if (va_arg (args1, int) != 42) + exit (1); + va_end (args1); va_end (args2); + } + int main() { + f (0, 42); + return 0; + }], + sh_cv_va_copy=yes + , + sh_cv_va_copy=no + , + sh_cv_va_copy=no) +]) +AC_MSG_RESULT($sh_cv_va_copy) +AC_MSG_CHECKING(for __va_copy()) +AC_CACHE_VAL(sh_cv___va_copy,[ + AC_TRY_RUN([ + #include + void f (int i, ...) { + va_list args1, args2; + va_start (args1, i); + __va_copy (args2, args1); + if (va_arg (args2, int) != 42) + exit (1); + if (va_arg (args1, int) != 42) + exit (1); + va_end (args1); va_end (args2); + } + int main() { + f (0, 42); + return 0; + }], + sh_cv___va_copy=yes + , + sh_cv___va_copy=no + , + sh_cv___va_copy=no) +]) +AC_MSG_RESULT($sh_cv___va_copy) +AC_MSG_CHECKING(whether va_lists can be copied by value) +AC_CACHE_VAL(sh_cv_va_val_copy,[ + AC_TRY_RUN([ + #include + void f (int i, ...) { + va_list args1, args2; + va_start (args1, i); + args2 = args1; + if (va_arg (args2, int) != 42) + exit (1); + if (va_arg (args1, int) != 42) + exit (1); + va_end (args1); va_end (args2); + } + int main() { + f (0, 42); + return 0; + }], + sh_cv_va_val_copy=yes + , + sh_cv_va_val_copy=no + , + sh_cv_va_val_copy=no) +]) +if test "x$sh_cv_va_copy" = "xyes"; then + AC_DEFINE(VA_COPY, va_copy) +else if test "x$sh_cv___va_copy" = "xyes"; then + AC_DEFINE(VA_COPY, __va_copy) +fi +fi +if test "x$sh_cv_va_val_copy" = "xno"; then + AC_DEFINE(VA_COPY_AS_ARRAY) +fi +AC_MSG_RESULT($sh_cv_va_val_copy) +]) + + +dnl SH_INIT_PARSE_ARGS() +m4_define([SH_INIT_PARSE_ARGS], +[ +m4_divert_push([PARSE_ARGS])dnl + +as_cr_letters='abcdefghijklmnopqrstuvwxyz' +as_cr_LETTERS='ABCDEFGHIJKLMNOPQRSTUVWXYZ' +as_cr_Letters=$as_cr_letters$as_cr_LETTERS +as_cr_digits='0123456789' +as_cr_alnum=$as_cr_Letters$as_cr_digits + +# Sed expression to map a string onto a valid CPP name. +as_tr_cpp="sed y%*$as_cr_letters%P$as_cr_LETTERS%;s%[[^_$as_cr_alnum]]%_%g" + +as_tr_sh="eval sed 'y%*+%pp%;s%[[^_$as_cr_alnum]]%_%g'" +# IFS +# We need space, tab and new line, in precisely that order. +as_nl=' +' +IFS=" $as_nl" + +# CDPATH. +$as_unset CDPATH || test "${CDPATH+set}" != set || { CDPATH=$PATH_SEPARATOR; export CDPATH; } + + +# Initialize some variables set by options. +ac_init_help= +ac_init_version=false +# The variables have the same names as the options, with +# dashes changed to underlines. +cache_file=/dev/null +AC_SUBST(exec_prefix, NONE)dnl +no_create= +no_recursion= +AC_SUBST(prefix, NONE)dnl +program_prefix=NONE +program_suffix=NONE +AC_SUBST(program_transform_name, [s,x,x,])dnl +silent= +site= +srcdir= +verbose= +x_includes=NONE +x_libraries=NONE +DESTDIR= +SH_ENABLE_OPTS="db-reload xml-log message-queue login-watch mounts-check userfiles debug ptrace static network udp nocl stealth micro-stealth install-name identity khide suidcheck base largefile mail external-scripts encrypt srp" +SH_WITH_OPTS="prelude libprelude-prefix database libwrap cflags libs console altconsole timeserver alttimeserver rnd egd-socket port logserver altlogserver kcheck gpg checksum fp recipient sender trusted tmp-dir config-file log-file pid-file state-dir data-file html-file" + +# Installation directory options. +# These are left unexpanded so users can "make install exec_prefix=/foo" +# and all the variables that are supposed to be based on exec_prefix +# by default will actually change. +dnl Use braces instead of parens because sh, perl, etc. also accept them. +sbindir='${exec_prefix}/sbin' +sysconfdir='${prefix}/etc' +localstatedir='${prefix}/var' +mandir='${prefix}/share/man' + +AC_SUBST([sbindir], ['${exec_prefix}/sbin'])dnl +AC_SUBST([sysconfdir], ['${prefix}/etc'])dnl +AC_SUBST([localstatedir], ['${prefix}/var'])dnl +AC_SUBST([mandir], ['${prefix}/share/man'])dnl + + +# Initialize some other variables. +subdirs= +MFLAGS= MAKEFLAGS= +SHELL=${CONFIG_SHELL-/bin/sh} +# Maximum number of lines to put in a shell here document. +ac_max_here_lines=12 + +ac_prev= +for ac_option +do + + # If the previous option needs an argument, assign it. + if test -n "$ac_prev"; then + eval "$ac_prev=\$ac_option" + ac_prev= + continue + fi + + case "$ac_option" in +changequote(, )dnl + *=*) ac_optarg=`echo "$ac_option" | sed 's/[-_a-zA-Z0-9]*=//'` ;; +changequote([, ])dnl + *) ac_optarg= ;; + esac + + # Accept the important Cygnus configure options, so we can diagnose typos. + + case "$ac_option" in + + -build | --build | --buil | --bui | --bu) + ac_prev=build_alias ;; + -build=* | --build=* | --buil=* | --bui=* | --bu=*) + build_alias="$ac_optarg" ;; + + -cache-file | --cache-file | --cache-fil | --cache-fi \ + | --cache-f | --cache- | --cache | --cach | --cac | --ca | --c) + ac_prev=cache_file ;; + -cache-file=* | --cache-file=* | --cache-fil=* | --cache-fi=* \ + | --cache-f=* | --cache-=* | --cache=* | --cach=* | --cac=* | --ca=* | --c=*) + cache_file="$ac_optarg" ;; + + --config-cache | -C) + cache_file=config.cache ;; + + -disable-* | --disable-*) + ac_feature=`expr "x$ac_option" : 'x-*disable-\(.*\)'` + # Reject names that are not valid shell variable names. + expr "x$ac_feature" : "[.*[^-_$as_cr_alnum]]" >/dev/null && + AC_MSG_ERROR([invalid feature name: $ac_feature]) + ac_feature=`echo $ac_feature | sed 's/-/_/g'` + ac_enable_check_opt=no + for f in ${SH_ENABLE_OPTS} + do + f=`echo $f | sed 's/-/_/g'` + if test x${f} = x"${ac_feature}" + then + ac_enable_check_opt=yes + fi + done + if test x${ac_enable_check_opt} = xno + then + AC_MSG_ERROR([unrecognized option: $ac_option +Try `$[0] --help' for more information.]) + fi + eval "enable_$ac_feature=no" ;; + + -enable-* | --enable-*) + ac_feature=`expr "x$ac_option" : 'x-*enable-\([[^=]]*\)'` + # Reject names that are not valid shell variable names. + expr "x$ac_feature" : "[.*[^-_$as_cr_alnum]]" >/dev/null && + AC_MSG_ERROR([invalid feature name: $ac_feature]) + ac_feature=`echo $ac_feature | sed 's/-/_/g'` + case $ac_option in + *=*) ac_optarg=`echo "$ac_optarg" | sed "s/'/'\\\\\\\\''/g"`;; + *) ac_optarg=yes ;; + esac + ac_enable_check_opt=no + for f in ${SH_ENABLE_OPTS} + do + f=`echo $f | sed 's/-/_/g'` + if test x${f} = x"${ac_feature}" + then + ac_enable_check_opt=yes + fi + done + if test x${ac_enable_check_opt} = xno + then + AC_MSG_ERROR([unrecognized option: $ac_option +Try `$[0] --help' for more information.]) + fi + eval "enable_$ac_feature='$ac_optarg'" ;; + + -exec-prefix | --exec_prefix | --exec-prefix | --exec-prefi \ + | --exec-pref | --exec-pre | --exec-pr | --exec-p | --exec- \ + | --exec | --exe | --ex) + ac_prev=exec_prefix + ac_exec_prefix_set="yes" + ;; + -exec-prefix=* | --exec_prefix=* | --exec-prefix=* | --exec-prefi=* \ + | --exec-pref=* | --exec-pre=* | --exec-pr=* | --exec-p=* | --exec-=* \ + | --exec=* | --exe=* | --ex=*) + exec_prefix="$ac_optarg" + ac_exec_prefix_set="yes" + ;; + + -gas | --gas | --ga | --g) + # Obsolete; use --with-gas. + with_gas=yes ;; + + -help | --help | --hel | --he | -h) + ac_init_help=long ;; + -help=r* | --help=r* | --hel=r* | --he=r* | -hr*) + ac_init_help=recursive ;; + -help=s* | --help=s* | --hel=s* | --he=s* | -hs*) + ac_init_help=short ;; + + -host | --host | --hos | --ho) + ac_prev=host_alias ;; + -host=* | --host=* | --hos=* | --ho=*) + host_alias="$ac_optarg" ;; + + -localstatedir | --localstatedir | --localstatedi | --localstated \ + | --localstate | --localstat | --localsta | --localst \ + | --locals | --local | --loca | --loc | --lo) + ac_prev=localstatedir + ac_localstatedir_set="yes" + ;; + -localstatedir=* | --localstatedir=* | --localstatedi=* | --localstated=* \ + | --localstate=* | --localstat=* | --localsta=* | --localst=* \ + | --locals=* | --local=* | --loca=* | --loc=* | --lo=*) + localstatedir="$ac_optarg" + ac_localstatedir_set="yes" + ;; + + -mandir | --mandir | --mandi | --mand | --man | --ma | --m) + ac_prev=mandir + ac_mandir_set="yes" + ;; + -mandir=* | --mandir=* | --mandi=* | --mand=* | --man=* | --ma=* | --m=*) + mandir="$ac_optarg" + ac_mandir_set="yes" + ;; + + -nfp | --nfp | --nf) + # Obsolete; use --without-fp. + with_fp=no ;; + + -no-create | --no-create | --no-creat | --no-crea | --no-cre \ + | --no-cr | --no-c | -n) + no_create=yes ;; + + -no-recursion | --no-recursion | --no-recursio | --no-recursi \ + | --no-recurs | --no-recur | --no-recu | --no-rec | --no-re | --no-r) + no_recursion=yes ;; + + -prefix | --prefix | --prefi | --pref | --pre | --pr | --p) + ac_prev=prefix + ac_prefix_set="yes" + ;; + -prefix=* | --prefix=* | --prefi=* | --pref=* | --pre=* | --pr=* | --p=*) + prefix="$ac_optarg" + ac_prefix_set="yes" + ;; + + -q | -quiet | --quiet | --quie | --qui | --qu | --q \ + | -silent | --silent | --silen | --sile | --sil) + silent=yes ;; + + -sbindir | --sbindir | --sbindi | --sbind | --sbin | --sbi | --sb) + ac_prev=sbindir + ac_sbindir_set="yes" + ;; + -sbindir=* | --sbindir=* | --sbindi=* | --sbind=* | --sbin=* \ + | --sbi=* | --sb=*) + sbindir="$ac_optarg" + ac_sbindir_set="yes" + ;; + + -bindir | --bindir | --bindi | --bind | --bin | --bi | --b) + echo "WARNING: bindir will be ignored, use sbindir" + ;; + -bindir=* | --bindir=* | --bindi=* | --bind=* | --bin=* \ + | --bi=* | --b=*) + echo "WARNING: bindir will be ignored, use sbindir" + ;; + + -datadir | --datadir) + echo "WARNING: datadir will be ignored" + ;; + -datadir=* | --datadir=*) + echo "WARNING: datadir will be ignored" + ;; + + -includedir | --includedir) + echo "WARNING: includedir will be ignored" + ;; + -includedir=* | --includedir=*) + echo "WARNING: includedir will be ignored" + ;; + + -infodir | --infodir) + echo "WARNING: infodir will be ignored" + ;; + -infodir=* | --infodir=*) + echo "WARNING: infodir will be ignored" + ;; + + -libdir | --libdir) + echo "WARNING: libdir will be ignored" + ;; + -libdir=* | --libdir=*) + echo "WARNING: libdir will be ignored" + ;; + + -libexecdir | --libexecdir) + echo "WARNING: libexecdir will be ignored" + ;; + -libexecdir=* | --libexecdir=*) + echo "WARNING: libexecdir will be ignored" + ;; + + -sharedstatedir | --sharedstatedir) + echo "WARNING: sharedstatedir will be ignored" + ;; + -sharedstatedir=* | --sharedstatedir=*) + echo "WARNING: sharedstatedir will be ignored" + ;; + + -site | --site | --sit) + ac_prev=site ;; + -site=* | --site=* | --sit=*) + site="$ac_optarg" ;; + + -srcdir | --srcdir | --srcdi | --srcd | --src | --sr) + ac_prev=srcdir ;; + -srcdir=* | --srcdir=* | --srcdi=* | --srcd=* | --src=* | --sr=*) + srcdir="$ac_optarg" ;; + + -sysconfdir | --sysconfdir | --sysconfdi | --sysconfd | --sysconf \ + | --syscon | --sysco | --sysc | --sys | --sy) + ac_prev=sysconfdir + ac_sysconfdir_set="yes" + ;; + -sysconfdir=* | --sysconfdir=* | --sysconfdi=* | --sysconfd=* | --sysconf=* \ + | --syscon=* | --sysco=* | --sysc=* | --sys=* | --sy=*) + sysconfdir="$ac_optarg" + ac_sysconfdir_set="yes" + ;; + + -target | --target | --targe | --targ | --tar | --ta | --t) + ac_prev=target_alias ;; + -target=* | --target=* | --targe=* | --targ=* | --tar=* | --ta=* | --t=*) + target_alias="$ac_optarg" ;; + + -v | -verbose | --verbose | --verbos | --verbo | --verb) + verbose=yes ;; + + -version | --version | --versio | --versi | --vers) + ac_init_version=: ;; + + + -with-* | --with-*) + ac_package=`expr "x$ac_option" : 'x-*with-\([[^=]]*\)'` + # Reject names that are not valid shell variable names. + expr "x$ac_package" : "[.*[^-_$as_cr_alnum]]" >/dev/null && + AC_MSG_ERROR([invalid package name: $ac_package]) + ac_package=`echo $ac_package| sed 's/-/_/g'` + case $ac_option in + *=*) ac_optarg=`echo "$ac_optarg" | sed "s/'/'\\\\\\\\''/g"`;; + *) ac_optarg=yes ;; + esac + ac_with_check_opt=no + for f in ${SH_WITH_OPTS} + do + f=`echo $f | sed 's/-/_/g'` + if test x${f} = x"${ac_package}" + then + ac_with_check_opt=yes + fi + done + if test x${ac_with_check_opt} = xno + then + AC_MSG_ERROR([unrecognized option: $ac_option +Try `$[0] --help' for more information.]) + fi + eval "with_$ac_package='$ac_optarg'" ;; + + -without-* | --without-*) + ac_package=`expr "x$ac_option" : 'x-*without-\(.*\)'` + # Reject names that are not valid shell variable names. + expr "x$ac_package" : "[.*[^-_$as_cr_alnum]]" >/dev/null && + AC_MSG_ERROR([invalid package name: $ac_package]) + ac_package=`echo $ac_package | sed 's/-/_/g'` + ac_with_check_opt=no + for f in ${SH_WITH_OPTS} + do + f=`echo $f | sed 's/-/_/g'` + if test x${f} = x"${ac_package}" + then + ac_with_check_opt=yes + fi + done + if test x${ac_with_check_opt} = xno + then + AC_MSG_ERROR([unrecognized option: $ac_option +Try `$[0] --help' for more information.]) + fi + eval "with_$ac_package=no" ;; + + + -*) AC_MSG_ERROR([unrecognized option: $ac_option +Try `$[0] --help' for more information.]) + ;; + + *=*) + ac_envvar=`expr "x$ac_option" : 'x\([[^=]]*\)='` + # Reject names that are not valid shell variable names. + expr "x$ac_envvar" : "[.*[^_$as_cr_alnum]]" >/dev/null && + AC_MSG_ERROR([invalid variable name: $ac_envvar]) + ac_optarg=`echo "$ac_optarg" | sed "s/'/'\\\\\\\\''/g"` + eval "$ac_envvar='$ac_optarg'" + export $ac_envvar ;; + + *) + # FIXME: should be removed in autoconf 3.0. + AC_MSG_WARN([you should use --build, --host, --target]) + expr "x$ac_option" : "[.*[^-._$as_cr_alnum]]" >/dev/null && + AC_MSG_WARN([invalid host type: $ac_option]) + : ${build_alias=$ac_option} ${host_alias=$ac_option} ${target_alias=$ac_option} + ;; + + + esac +done + +if test -n "$ac_prev"; then + AC_MSG_ERROR(missing argument to --`echo $ac_prev | sed 's/_/-/g'`) +fi + +# Be sure to have absolute paths. +for ac_var in prefix exec_prefix +do + eval ac_val=$`echo $ac_var` + case $ac_val in + [[\\/$]]* | ?:[[\\/]]* | NONE | '' | OPT | USR ) ;; + *) AC_MSG_ERROR([expected an absolute directory name for --$ac_var: $ac_val]);; + esac +done + +# Be sure to have absolute paths. +for ac_var in sbindir sysconfdir localstatedir mandir +do + eval ac_val=$`echo $ac_var` + case $ac_val in + [[\\/$]]* | ?:[[\\/]]* ) ;; + *) AC_MSG_ERROR([expected an absolute directory name for --$ac_var: $ac_val]);; + esac +done + +# There might be people who depend on the old broken behavior: `$host' +# used to hold the argument of --host etc. +# FIXME: To remove some day. +build=$build_alias +host=$host_alias +target=$target_alias + +# FIXME: To remove some day. +if test "x$host_alias" != x; then + if test "x$build_alias" = x; then + cross_compiling=maybe + AC_MSG_WARN([If you wanted to set the --build type, don't use --host. + If a cross compiler is detected then cross compile mode will be used.]) + elif test "x$build_alias" != "x$host_alias"; then + cross_compiling=yes + fi +fi + +ac_tool_prefix= +test -n "$host_alias" && ac_tool_prefix=$host_alias- + +test "$silent" = yes && exec AS_MESSAGE_FD>/dev/null + +m4_divert_pop([PARSE_ARGS])dnl +])# SH_INIT_PARSE_ARGS + +m4_define([SH_INIT_HELP], +[m4_divert_push([HELP_BEGIN])dnl + +# +# Report the --help message. +# +if test "$ac_init_help" = "long"; then + # Omit some internal or obsolete options to make the list less imposing. + # This message is too long to be a string in the A/UX 3.1 sh. + cat <<_ACEOF +\`configure' configures m4_ifset([AC_PACKAGE_STRING], + [AC_PACKAGE_STRING], + [this package]) to adapt to many kinds of systems. + +Usage: $[0] [[OPTION]]... [[VAR=VALUE]]... + +[To assign environment variables (e.g., CC, CFLAGS...), specify them as +VAR=VALUE. See below for descriptions of some of the useful variables. + +Defaults for the options are specified in brackets. + +Configuration: + -h, --help display this help and exit + --help=short display options specific to this package + --help=recursive display the short help of all the included packages + -V, --version display version information and exit + -q, --quiet, --silent do not print \`checking...' messages + --cache-file=FILE cache test results in FILE [disabled] + -C, --config-cache alias for \`--cache-file=config.cache' + -n, --no-create do not create output files + --srcdir=DIR find the sources in DIR [configure dir or \`..'] + +_ACEOF + + cat <<_ACEOF +Installation directories: + --prefix=PREFIX install architecture-independent files in PREFIX + [$ac_default_prefix] + --exec-prefix=EPREFIX install architecture-dependent files in EPREFIX + [PREFIX] + +By default, \`make install' will install binaries in \`/usr/local/sbin', +the config file in \`/etc', manpage in \`/usr/local/share/man', and state +data in \`/var/lib/INSTALL_NAME' (FSH layout). You can specify other +FSH compliant layouts with \`--prefix=OPT' or \`--prefix=USR', or you +can specify a directory with \`--prefix=DIR' to install in \`DIR/sbin', +\`DIR/etc', etc. + +For better control, use the options below. + +Fine tuning of the installation directories: + --sbindir=DIR system admin executables [EPREFIX/sbin] + --sysconfdir=DIR read-only single-machine data [PREFIX/etc] + --localstatedir=DIR modifiable single-machine data [PREFIX/var] + --mandir=DIR man documentation [PREFIX/man] + +For even finer tuning, paths can be specified for individual files (see below) + +_ACEOF + + cat <<\_ACEOF] +m4_divert_pop([HELP_BEGIN])dnl +dnl The order of the diversions here is +dnl - HELP_BEGIN +dnl which may be prolongated by extra generic options such as with X or +dnl AC_ARG_PROGRAM. Displayed only in long --help. +dnl +dnl - HELP_CANON +dnl Support for cross compilation (--build, --host and --target). +dnl Display only in long --help. +dnl +dnl - HELP_ENABLE +dnl which starts with the trailer of the HELP_BEGIN, HELP_CANON section, +dnl then implements the header of the non generic options. +dnl +dnl - HELP_WITH +dnl +dnl - HELP_VAR +dnl +dnl - HELP_VAR_END +dnl +dnl - HELP_END +dnl initialized below, in which we dump the trailer (handling of the +dnl recursion for instance). +m4_divert_push([HELP_ENABLE])dnl +_ACEOF +fi + +if test -n "$ac_init_help"; then +m4_ifset([AC_PACKAGE_STRING], +[ case $ac_init_help in + short | recursive ) echo "Configuration of AC_PACKAGE_STRING:";; + esac]) + cat <<\_ACEOF +m4_divert_pop([HELP_ENABLE])dnl +m4_divert_push([HELP_END])dnl +m4_ifset([AC_PACKAGE_BUGREPORT], [ +Report bugs to .]) +_ACEOF +fi + +if test "$ac_init_help" = "recursive"; then + # If there are subdirs, report their specific --help. + ac_popdir=`pwd` + for ac_dir in : $ac_subdirs_all; do test "x$ac_dir" = x: && continue + test -d $ac_dir || continue + _AC_SRCPATHS(["$ac_dir"]) + cd $ac_dir + # Check for guested configure; otherwise get Cygnus style configure. + if test -f $ac_srcdir/configure.gnu; then + echo + $SHELL $ac_srcdir/configure.gnu --help=recursive + elif test -f $ac_srcdir/configure; then + echo + $SHELL $ac_srcdir/configure --help=recursive + elif test -f $ac_srcdir/configure.ac || + test -f $ac_srcdir/configure.in; then + echo + $ac_configure --help + else + AC_MSG_WARN([no configuration information is in $ac_dir]) + fi + cd $ac_popdir + done +fi + +test -n "$ac_init_help" && exit 0 +m4_divert_pop([HELP_END])dnl +])# SH_INIT_HELP + + + + + + + + +# Check whether sa_sigaction works. +# Rainer Wichmann , 2003. +# +# This file can be copied and used freely without restrictions. It can +# be used in projects which are not available under the GNU Public License. + +# serial 1 + +AC_DEFUN([AM_SA_SIGACTION_WORKS], + [ + am_cv_val_SA_SIGACTION=no + AC_CHECK_HEADER(signal.h, + [ + AM_SI_USER + AM_SA_SIGINFO + if test $am_cv_val_SI_USER = yes && test $am_cv_val_SA_SIGINFO = yes + then + AC_TRY_RUN([ +#include +#include +#include +#include + +volatile int xnum = 0; +volatile int xcode = 0; +jmp_buf Buf; +int xsig = SIGSEGV; + +void sighandler (int xsignam, siginfo_t * xsiginfo, void * xsigadd) +{ + static sigset_t x; + + if (xsiginfo == NULL) + exit(__LINE__); + if (xsiginfo->si_signo != xsignam) + exit(__LINE__); + ++xnum; + xcode = xsiginfo->si_code; + sigemptyset (&x); + sigprocmask(SIG_SETMASK, &x, NULL); + longjmp ( Buf, 1); +} + +int main () +{ + struct sigaction newact; + + newact.sa_sigaction = sighandler; + sigemptyset (&newact.sa_mask); + newact.sa_flags = SA_SIGINFO; + if (0 != sigaction (xsig, &newact, NULL)) + exit (__LINE__); + if(setjmp ( Buf)) { + if (xnum > 1) + goto Third; + goto Second; + } + memcpy((void *) 0x0, "test", 5); + Second: + if (xcode == SI_USER) + exit (__LINE__); + raise(xsig); + Third: + if (xcode != SI_USER) + exit (__LINE__); + if (xnum != 2) + exit (__LINE__); + return (0); +}], am_cv_val_SA_SIGACTION=yes, am_cv_val_SA_SIGACTION=no, am_cv_val_SA_SIGACTION=no) + fi + ]) + AC_MSG_CHECKING([whether sa_sigaction is supported]) + if test $am_cv_val_SA_SIGACTION = yes + then + AC_MSG_RESULT(yes) + AC_DEFINE([SA_SIGACTION_WORKS], 1, [Define if sa_sigaction works]) + else + AC_MSG_RESULT(no) + fi + ]) + +# Check whether SI_USER is available in . +# Rainer Wichmann , 2003. +# +# This file can be copied and used freely without restrictions. It can +# be used in projects which are not available under the GNU Public License. + +# serial 1 + + +AC_DEFUN([AM_SI_USER], + [if test $ac_cv_header_signal_h = yes; then + AC_CACHE_CHECK([for SI_USER in signal.h], am_cv_val_SI_USER, + [AC_TRY_LINK([#include ], [return SI_USER], + am_cv_val_SI_USER=yes, am_cv_val_SI_USER=no)]) + if test $am_cv_val_SI_USER = yes; then + AC_DEFINE([HAVE_SI_USER], 1, [Define if you have SI_USER]) + fi + fi]) + +# Check whether SA_SIGINFO is available in . +# Rainer Wichmann , 2003. +# +# This file can be copied and used freely without restrictions. It can +# be used in projects which are not available under the GNU Public License. + +# serial 1 + + +AC_DEFUN([AM_SA_SIGINFO], + [if test $ac_cv_header_signal_h = yes; then + AC_CACHE_CHECK([for SA_SIGINFO in signal.h], am_cv_val_SA_SIGINFO, + [AC_TRY_LINK([#include ], [return SA_SIGINFO], + am_cv_val_SA_SIGINFO=yes, am_cv_val_SA_SIGINFO=no)]) + if test $am_cv_val_SA_SIGINFO = yes; then + AC_DEFINE([HAVE_SA_SIGINFO], 1, [Define if you have SA_SIGINFO]) + fi + fi]) + +dnl +dnl Useful macros for autoconf to check for ssp-patched gcc +dnl 1.0 - September 2003 - Tiago Sousa +dnl +dnl About ssp: +dnl GCC extension for protecting applications from stack-smashing attacks +dnl http://www.research.ibm.com/trl/projects/security/ssp/ +dnl +dnl Usage: +dnl After calling the correct AC_LANG_*, use the corresponding macro: +dnl +dnl GCC_STACK_PROTECT_CC +dnl checks -fstack-protector with the C compiler, if it exists then updates +dnl CFLAGS and defines ENABLE_SSP_CC +dnl +AC_DEFUN([GCC_STACK_PROTECT_CC],[ + ssp_cc=yes + if test "X$GCC" = "Xyes"; then + AC_MSG_CHECKING([whether ${CC} accepts -fstack-protector]) + ssp_old_cflags="$CFLAGS" + CFLAGS="$CFLAGS -fstack-protector" + AC_TRY_COMPILE(,,, ssp_cc=no) + # echo $ssp_cc + if test "X$ssp_cc" = "Xno"; then + CFLAGS="$ssp_old_cflags" + AC_MSG_RESULT(no) + else + AC_MSG_RESULT(yes) + AC_DEFINE([ENABLE_SSP_CC], 1, [Define if SSP C support is enabled.]) + fi + fi +]) + +AC_DEFUN([SAMHAIN_POSIX],[ + AC_MSG_CHECKING([whether _POSIX_SOURCE is necessary]) + AC_TRY_COMPILE([#include +void fileno(int);int fdopen(int, char *); ],, + [ + AC_MSG_RESULT(yes) + AC_DEFINE([_POSIX_SOURCE],1,[Define if POSIX functions are required]) + ], + [AC_MSG_RESULT(no)]) +])dnl + +dnl Autoconf macros for libprelude +dnl $id$ + +# Modified for LIBPRELUDE -- Yoann Vandoorselaere +# Modified for LIBGNUTLS -- nmav +# Configure paths for LIBGCRYPT +# Shamelessly stolen from the one of XDELTA by Owen Taylor +# Werner Koch 99-12-09 + +dnl AM_PATH_LIBPRELUDE([MINIMUM-VERSION, [ACTION-IF-FOUND [, ACTION-IF-NOT-FOUND ]]]) +dnl Test for libprelude, and define LIBPRELUDE_PREFIX, LIBPRELUDE_CFLAGS, LIBPRELUDE_PTHREAD_CFLAGS, +dnl LIBPRELUDE_LDFLAGS, and LIBPRELUDE_LIBS +dnl +AC_DEFUN([AM_PATH_LIBPRELUDE], +[dnl +dnl Get the cflags and libraries from the libprelude-config script +dnl +dnl AC_ARG_WITH(libprelude-prefix, +dnl [ --with-libprelude-prefix=PFX Prefix where libprelude is installed (optional)], +dnl libprelude_config_prefix="$withval", libprelude_config_prefix="") +dnl +dnl if test x$libprelude_config_prefix != x ; then +dnl if test x${LIBPRELUDE_CONFIG+set} != xset ; then +dnl LIBPRELUDE_CONFIG=$libprelude_config_prefix/bin/libprelude-config +dnl fi +dnl fi +dnl +dnl AC_PATH_PROG(LIBPRELUDE_CONFIG, libprelude-config, no) + min_libprelude_version=ifelse([$1], ,0.1.0,$1) + AC_MSG_CHECKING(for libprelude - version >= $min_libprelude_version) + no_libprelude="" + if test "$LIBPRELUDE_CONFIG" = "no" ; then + no_libprelude=yes + else + LIBPRELUDE_CFLAGS=`$LIBPRELUDE_CONFIG $libprelude_config_args --cflags` + LIBPRELUDE_PTHREAD_CFLAGS=`$LIBPRELUDE_CONFIG $libprelude_config_args --pthread-cflags` + LIBPRELUDE_LDFLAGS=`$LIBPRELUDE_CONFIG $libprelude_config_args --ldflags` + LIBPRELUDE_LIBS=`$LIBPRELUDE_CONFIG $libprelude_config_args --libs` + LIBPRELUDE_PREFIX=`$LIBPRELUDE_CONFIG $libprelude_config_args --prefix` + LIBPRELUDE_CONFIG_PREFIX=`$LIBPRELUDE_CONFIG $libprelude_config_args --config-prefix` + libprelude_config_version=`$LIBPRELUDE_CONFIG $libprelude_config_args --version` + + + ac_save_CFLAGS="$CFLAGS" + ac_save_LDFLAGS="$LDFLAGS" + ac_save_LIBS="$LIBS" + CFLAGS="$CFLAGS $LIBPRELUDE_CFLAGS" + LDFLAGS="$LDFLAGS $LIBPRELUDE_LDFLAGS" + LIBS="$LIBS $LIBPRELUDE_LIBS" +dnl +dnl Now check if the installed libprelude is sufficiently new. Also sanity +dnl checks the results of libprelude-config to some extent +dnl + rm -f conf.libpreludetest + AC_TRY_RUN([ +#include +#include +#include +#include + +int +main () +{ + system ("touch conf.libpreludetest"); + + if( strcmp( prelude_check_version(NULL), "$libprelude_config_version" ) ) + { + printf("\n*** 'libprelude-config --version' returned %s, but LIBPRELUDE (%s)\n", + "$libprelude_config_version", prelude_check_version(NULL) ); + printf("*** was found! If libprelude-config was correct, then it is best\n"); + printf("*** to remove the old version of LIBPRELUDE. You may also be able to fix the error\n"); + printf("*** by modifying your LD_LIBRARY_PATH enviroment variable, or by editing\n"); + printf("*** /etc/ld.so.conf. Make sure you have run ldconfig if that is\n"); + printf("*** required on your system.\n"); + printf("*** If libprelude-config was wrong, set the environment variable LIBPRELUDE_CONFIG\n"); + printf("*** to point to the correct copy of libprelude-config, and remove the file config.cache\n"); + printf("*** before re-running configure\n"); + } + else if ( strcmp(prelude_check_version(NULL), LIBPRELUDE_VERSION ) ) + { + printf("\n*** LIBPRELUDE header file (version %s) does not match\n", LIBPRELUDE_VERSION); + printf("*** library (version %s)\n", prelude_check_version(NULL) ); + } + else + { + if ( prelude_check_version( "$min_libprelude_version" ) ) + { + return 0; + } + else + { + printf("no\n*** An old version of LIBPRELUDE (%s) was found.\n", + prelude_check_version(NULL) ); + printf("*** You need a version of LIBPRELUDE newer than %s. The latest version of\n", + "$min_libprelude_version" ); + printf("*** LIBPRELUDE is always available from http://www.prelude-ids.org/download/releases.\n"); + printf("*** \n"); + printf("*** If you have already installed a sufficiently new version, this error\n"); + printf("*** probably means that the wrong copy of the libprelude-config shell script is\n"); + printf("*** being found. The easiest way to fix this is to remove the old version\n"); + printf("*** of LIBPRELUDE, but you can also set the LIBPRELUDE_CONFIG environment to point to the\n"); + printf("*** correct copy of libprelude-config. (In this case, you will have to\n"); + printf("*** modify your LD_LIBRARY_PATH enviroment variable, or edit /etc/ld.so.conf\n"); + printf("*** so that the correct libraries are found at run-time))\n"); + } + } + return 1; +} +],, no_libprelude=yes,[echo $ac_n "cross compiling; assumed OK... $ac_c"]) + CFLAGS="$ac_save_CFLAGS" + LIBS="$ac_save_LIBS" + LDFLAGS="$ac_save_LDFLAGS" + fi + + if test "x$no_libprelude" = x ; then + AC_MSG_RESULT(yes) + ifelse([$2], , :, [$2]) + else + if test -f conf.libpreludetest ; then + : + else + AC_MSG_RESULT(no) + fi + if test "$LIBPRELUDE_CONFIG" = "no" ; then + echo "*** The libprelude-config script installed by LIBPRELUDE could not be found" + echo "*** If LIBPRELUDE was installed in PREFIX, make sure PREFIX/bin is in" + echo "*** your path, or set the LIBPRELUDE_CONFIG environment variable to the" + echo "*** full path to libprelude-config." + else + if test -f conf.libpreludetest ; then + : + else + echo "*** Could not run libprelude test program, checking why..." + CFLAGS="$CFLAGS $LIBPRELUDE_CFLAGS" + LDFLAGS="$LDFLAGS $LIBPRELUDE_LDFLAGS" + LIBS="$LIBS $LIBPRELUDE_LIBS" + AC_TRY_LINK([ +#include +#include +#include +#include +], [ return !!prelude_check_version(NULL); ], + [ echo "*** The test program compiled, but did not run. This usually means" + echo "*** that the run-time linker is not finding LIBPRELUDE or finding the wrong" + echo "*** version of LIBPRELUDE. If it is not finding LIBPRELUDE, you'll need to set your" + echo "*** LD_LIBRARY_PATH environment variable, or edit /etc/ld.so.conf to point" + echo "*** to the installed location Also, make sure you have run ldconfig if that" + echo "*** is required on your system" + echo "***" + echo "*** If you have an old version installed, it is best to remove it, although" + echo "*** you may also be able to get things to work by modifying LD_LIBRARY_PATH" + echo "***" ], + [ echo "*** The test program failed to compile or link. See the file config.log for the" + echo "*** exact error that occured. This usually means LIBPRELUDE was incorrectly installed" + echo "*** or that you have moved LIBPRELUDE since it was installed. In the latter case, you" + echo "*** may want to edit the libprelude-config script: $LIBPRELUDE_CONFIG" ]) + CFLAGS="$ac_save_CFLAGS" + LDFLAGS="$ac_save_LDFLAGS" + LIBS="$ac_save_LIBS" + fi + fi + LIBPRELUDE_CFLAGS="" + LIBPRELUDE_LDFLAGS="" + LIBPRELUDE_LIBS="" + ifelse([$3], , :, [$3]) + fi + rm -f conf.libpreludetest + AC_SUBST(LIBPRELUDE_CFLAGS) + AC_SUBST(LIBPRELUDE_PTHREAD_CFLAGS) + AC_SUBST(LIBPRELUDE_LDFLAGS) + AC_SUBST(LIBPRELUDE_LIBS) + AC_SUBST(LIBPRELUDE_PREFIX) + AC_SUBST(LIBPRELUDE_CONFIG_PREFIX) +]) + +dnl *-*wedit:notab*-* Please keep this as the last line. + Index: trunk/c_random.sh =================================================================== --- trunk/c_random.sh (revision 591) +++ trunk/c_random.sh (revision 1) @@ -16,5 +16,5 @@ if test -c "/dev/urandom"; then dd if=/dev/urandom ibs=1 count=4 > my_random_file 2>/dev/null - nsum=`cksum ./my_random_file | awk '{print $1 }' | sed 's%^0*%%g' 2>/dev/null` + nsum=`sum ./my_random_file | awk '{print $1 }' | sed 's%^0*%%g' 2>/dev/null` if test x$nsum != x; then rnd_tst=yes @@ -27,5 +27,5 @@ if test -c "/dev/srandom"; then dd if=/dev/srandom ibs=1 count=4 > my_random_file 2>/dev/null - nsum=`cksum ./my_random_file | awk '{print $1 }' | sed 's%^0*%%g' 2>/dev/null` + nsum=`sum ./my_random_file | awk '{print $1 }' | sed 's%^0*%%g' 2>/dev/null` if test x$nsum != x; then rnd_tst=yes @@ -218,16 +218,15 @@ fi # - nsum=`cksum ./my_random_file | awk '{print $1 }' | sed 's%^0*%%g' 2>/dev/null` + nsum=`sum ./my_random_file | awk '{print $1 }' | sed 's%^0*%%g' 2>/dev/null` # fi # -# 'cksum' is more portable than 'sum', but 32 bit +# 'sum' is portable, but only 16 bit # /bin/rm -f ./my_random_file 2>/dev/null -final=`expr $nsum \% 65536` -echo $final - - +echo $nsum + + Index: trunk/compile =================================================================== --- trunk/compile (revision 591) +++ (revision ) @@ -1,348 +1,0 @@ -#! /bin/sh -# Wrapper for compilers which do not understand '-c -o'. - -scriptversion=2018-03-07.03; # UTC - -# Copyright (C) 1999-2021 Free Software Foundation, Inc. -# Written by Tom Tromey . -# -# This program is free software; you can redistribute it and/or modify -# it under the terms of the GNU General Public License as published by -# the Free Software Foundation; either version 2, or (at your option) -# any later version. -# -# This program is distributed in the hope that it will be useful, -# but WITHOUT ANY WARRANTY; without even the implied warranty of -# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -# GNU General Public License for more details. -# -# You should have received a copy of the GNU General Public License -# along with this program. If not, see . - -# As a special exception to the GNU General Public License, if you -# distribute this file as part of a program that contains a -# configuration script generated by Autoconf, you may include it under -# the same distribution terms that you use for the rest of that program. - -# This file is maintained in Automake, please report -# bugs to or send patches to -# . - -nl=' -' - -# We need space, tab and new line, in precisely that order. Quoting is -# there to prevent tools from complaining about whitespace usage. -IFS=" "" $nl" - -file_conv= - -# func_file_conv build_file lazy -# Convert a $build file to $host form and store it in $file -# Currently only supports Windows hosts. If the determined conversion -# type is listed in (the comma separated) LAZY, no conversion will -# take place. -func_file_conv () -{ - file=$1 - case $file in - / | /[!/]*) # absolute file, and not a UNC file - if test -z "$file_conv"; then - # lazily determine how to convert abs files - case `uname -s` in - MINGW*) - file_conv=mingw - ;; - CYGWIN* | MSYS*) - file_conv=cygwin - ;; - *) - file_conv=wine - ;; - esac - fi - case $file_conv/,$2, in - *,$file_conv,*) - ;; - mingw/*) - file=`cmd //C echo "$file " | sed -e 's/"\(.*\) " *$/\1/'` - ;; - cygwin/* | msys/*) - file=`cygpath -m "$file" || echo "$file"` - ;; - wine/*) - file=`winepath -w "$file" || echo "$file"` - ;; - esac - ;; - esac -} - -# func_cl_dashL linkdir -# Make cl look for libraries in LINKDIR -func_cl_dashL () -{ - func_file_conv "$1" - if test -z "$lib_path"; then - lib_path=$file - else - lib_path="$lib_path;$file" - fi - linker_opts="$linker_opts -LIBPATH:$file" -} - -# func_cl_dashl library -# Do a library search-path lookup for cl -func_cl_dashl () -{ - lib=$1 - found=no - save_IFS=$IFS - IFS=';' - for dir in $lib_path $LIB - do - IFS=$save_IFS - if $shared && test -f "$dir/$lib.dll.lib"; then - found=yes - lib=$dir/$lib.dll.lib - break - fi - if test -f "$dir/$lib.lib"; then - found=yes - lib=$dir/$lib.lib - break - fi - if test -f "$dir/lib$lib.a"; then - found=yes - lib=$dir/lib$lib.a - break - fi - done - IFS=$save_IFS - - if test "$found" != yes; then - lib=$lib.lib - fi -} - -# func_cl_wrapper cl arg... -# Adjust compile command to suit cl -func_cl_wrapper () -{ - # Assume a capable shell - lib_path= - shared=: - linker_opts= - for arg - do - if test -n "$eat"; then - eat= - else - case $1 in - -o) - # configure might choose to run compile as 'compile cc -o foo foo.c'. - eat=1 - case $2 in - *.o | *.[oO][bB][jJ]) - func_file_conv "$2" - set x "$@" -Fo"$file" - shift - ;; - *) - func_file_conv "$2" - set x "$@" -Fe"$file" - shift - ;; - esac - ;; - -I) - eat=1 - func_file_conv "$2" mingw - set x "$@" -I"$file" - shift - ;; - -I*) - func_file_conv "${1#-I}" mingw - set x "$@" -I"$file" - shift - ;; - -l) - eat=1 - func_cl_dashl "$2" - set x "$@" "$lib" - shift - ;; - -l*) - func_cl_dashl "${1#-l}" - set x "$@" "$lib" - shift - ;; - -L) - eat=1 - func_cl_dashL "$2" - ;; - -L*) - func_cl_dashL "${1#-L}" - ;; - -static) - shared=false - ;; - -Wl,*) - arg=${1#-Wl,} - save_ifs="$IFS"; IFS=',' - for flag in $arg; do - IFS="$save_ifs" - linker_opts="$linker_opts $flag" - done - IFS="$save_ifs" - ;; - -Xlinker) - eat=1 - linker_opts="$linker_opts $2" - ;; - -*) - set x "$@" "$1" - shift - ;; - *.cc | *.CC | *.cxx | *.CXX | *.[cC]++) - func_file_conv "$1" - set x "$@" -Tp"$file" - shift - ;; - *.c | *.cpp | *.CPP | *.lib | *.LIB | *.Lib | *.OBJ | *.obj | *.[oO]) - func_file_conv "$1" mingw - set x "$@" "$file" - shift - ;; - *) - set x "$@" "$1" - shift - ;; - esac - fi - shift - done - if test -n "$linker_opts"; then - linker_opts="-link$linker_opts" - fi - exec "$@" $linker_opts - exit 1 -} - -eat= - -case $1 in - '') - echo "$0: No command. Try '$0 --help' for more information." 1>&2 - exit 1; - ;; - -h | --h*) - cat <<\EOF -Usage: compile [--help] [--version] PROGRAM [ARGS] - -Wrapper for compilers which do not understand '-c -o'. -Remove '-o dest.o' from ARGS, run PROGRAM with the remaining -arguments, and rename the output as expected. - -If you are trying to build a whole package this is not the -right script to run: please start by reading the file 'INSTALL'. - -Report bugs to . -EOF - exit $? - ;; - -v | --v*) - echo "compile $scriptversion" - exit $? - ;; - cl | *[/\\]cl | cl.exe | *[/\\]cl.exe | \ - icl | *[/\\]icl | icl.exe | *[/\\]icl.exe ) - func_cl_wrapper "$@" # Doesn't return... - ;; -esac - -ofile= -cfile= - -for arg -do - if test -n "$eat"; then - eat= - else - case $1 in - -o) - # configure might choose to run compile as 'compile cc -o foo foo.c'. - # So we strip '-o arg' only if arg is an object. - eat=1 - case $2 in - *.o | *.obj) - ofile=$2 - ;; - *) - set x "$@" -o "$2" - shift - ;; - esac - ;; - *.c) - cfile=$1 - set x "$@" "$1" - shift - ;; - *) - set x "$@" "$1" - shift - ;; - esac - fi - shift -done - -if test -z "$ofile" || test -z "$cfile"; then - # If no '-o' option was seen then we might have been invoked from a - # pattern rule where we don't need one. That is ok -- this is a - # normal compilation that the losing compiler can handle. If no - # '.c' file was seen then we are probably linking. That is also - # ok. - exec "$@" -fi - -# Name of file we expect compiler to create. -cofile=`echo "$cfile" | sed 's|^.*[\\/]||; s|^[a-zA-Z]:||; s/\.c$/.o/'` - -# Create the lock directory. -# Note: use '[/\\:.-]' here to ensure that we don't use the same name -# that we are using for the .o file. Also, base the name on the expected -# object file name, since that is what matters with a parallel build. -lockdir=`echo "$cofile" | sed -e 's|[/\\:.-]|_|g'`.d -while true; do - if mkdir "$lockdir" >/dev/null 2>&1; then - break - fi - sleep 1 -done -# FIXME: race condition here if user kills between mkdir and trap. -trap "rmdir '$lockdir'; exit 1" 1 2 15 - -# Run the compile. -"$@" -ret=$? - -if test -f "$cofile"; then - test "$cofile" = "$ofile" || mv "$cofile" "$ofile" -elif test -f "${cofile}bj"; then - test "${cofile}bj" = "$ofile" || mv "${cofile}bj" "$ofile" -fi - -rmdir "$lockdir" -exit $ret - -# Local Variables: -# mode: shell-script -# sh-indentation: 2 -# eval: (add-hook 'before-save-hook 'time-stamp) -# time-stamp-start: "scriptversion=" -# time-stamp-format: "%:y-%02m-%02d.%02H" -# time-stamp-time-zone: "UTC0" -# time-stamp-end: "; # UTC" -# End: Index: trunk/config.guess =================================================================== --- trunk/config.guess (revision 591) +++ trunk/config.guess (revision 1) @@ -1,13 +1,12 @@ #! /bin/sh # Attempt to guess a canonical system name. -# Copyright 1992-2022 Free Software Foundation, Inc. - -# shellcheck disable=SC2006,SC2268 # see below for rationale - -timestamp='2022-01-09' +# Copyright (C) 1992, 1993, 1994, 1995, 1996, 1997, 1998, 1999, +# 2000, 2001, 2002 Free Software Foundation, Inc. + +timestamp='2002-10-21' # This file is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by -# the Free Software Foundation, either version 3 of the License, or +# the Free Software Foundation; either version 2 of the License, or # (at your option) any later version. # @@ -18,28 +17,22 @@ # # You should have received a copy of the GNU General Public License -# along with this program; if not, see . +# along with this program; if not, write to the Free Software +# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. # # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under -# the same distribution terms that you use for the rest of that -# program. This Exception is an additional permission under section 7 -# of the GNU General Public License, version 3 ("GPLv3"). +# the same distribution terms that you use for the rest of that program. + +# Originally written by Per Bothner . +# Please send patches to . Submit a context +# diff and a properly formatted ChangeLog entry. # -# Originally written by Per Bothner; maintained since 2000 by Ben Elliston. +# This script attempts to guess a canonical system name similar to +# config.sub. If it succeeds, it prints the system name on stdout, and +# exits with 0. Otherwise, it exits with 1. # -# You can get the latest version of this script from: -# https://git.savannah.gnu.org/cgit/config.git/plain/config.guess -# -# Please send patches to . - - -# The "shellcheck disable" line above the timestamp inhibits complaints -# about features and limitations of the classic Bourne shell that were -# superseded or lifted in POSIX. However, this script identifies a wide -# variety of pre-POSIX systems that do not have POSIX shells at all, and -# even some reasonably current systems (Solaris 10 as case-in-point) still -# have a pre-POSIX /bin/sh. - +# The plan is that this can be called by configure scripts if you +# don't specify an explicit build system type. me=`echo "$0" | sed -e 's,.*/,,'` @@ -50,5 +43,5 @@ Output the configuration name of the system \`$me' is run on. -Options: +Operation modes: -h, --help print this help, then exit -t, --time-stamp print date of last modification, then exit @@ -61,5 +54,6 @@ Originally written by Per Bothner. -Copyright 1992-2022 Free Software Foundation, Inc. +Copyright (C) 1992, 1993, 1994, 1995, 1996, 1997, 1998, 1999, 2000, 2001 +Free Software Foundation, Inc. This is free software; see the source for copying conditions. There is NO @@ -73,9 +67,9 @@ case $1 in --time-stamp | --time* | -t ) - echo "$timestamp" ; exit ;; + echo "$timestamp" ; exit 0 ;; --version | -v ) - echo "$version" ; exit ;; + echo "$version" ; exit 0 ;; --help | --h* | -h ) - echo "$usage"; exit ;; + echo "$usage"; exit 0 ;; -- ) # Stop option processing shift; break ;; @@ -95,6 +89,5 @@ fi -# Just in case it came from the environment. -GUESS= +trap 'exit 1' 1 2 15 # CC_FOR_BUILD -- compiler used by this script. Note that the use of a @@ -106,40 +99,32 @@ # use `HOST_CC' if defined, but it is deprecated. -# Portable tmp directory creation inspired by the Autoconf team. - -tmp= -# shellcheck disable=SC2172 -trap 'test -z "$tmp" || rm -fr "$tmp"' 0 1 2 13 15 - -set_cc_for_build() { - # prevent multiple calls if $tmp is already set - test "$tmp" && return 0 - : "${TMPDIR=/tmp}" - # shellcheck disable=SC2039,SC3028 - { tmp=`(umask 077 && mktemp -d "$TMPDIR/cgXXXXXX") 2>/dev/null` && test -n "$tmp" && test -d "$tmp" ; } || - { test -n "$RANDOM" && tmp=$TMPDIR/cg$$-$RANDOM && (umask 077 && mkdir "$tmp" 2>/dev/null) ; } || - { tmp=$TMPDIR/cg-$$ && (umask 077 && mkdir "$tmp" 2>/dev/null) && echo "Warning: creating insecure temp directory" >&2 ; } || - { echo "$me: cannot create a temporary directory in $TMPDIR" >&2 ; exit 1 ; } - dummy=$tmp/dummy - case ${CC_FOR_BUILD-},${HOST_CC-},${CC-} in - ,,) echo "int x;" > "$dummy.c" - for driver in cc gcc c89 c99 ; do - if ($driver -c -o "$dummy.o" "$dummy.c") >/dev/null 2>&1 ; then - CC_FOR_BUILD=$driver - break - fi - done - if test x"$CC_FOR_BUILD" = x ; then - CC_FOR_BUILD=no_compiler_found - fi - ;; - ,,*) CC_FOR_BUILD=$CC ;; - ,*,*) CC_FOR_BUILD=$HOST_CC ;; - esac -} +# This shell variable is my proudest work .. or something. --bje + +set_cc_for_build='tmpdir=${TMPDIR-/tmp}/config-guess-$$ ; +(old=`umask` && umask 077 && mkdir $tmpdir && umask $old && unset old) + || (echo "$me: cannot create $tmpdir" >&2 && exit 1) ; +dummy=$tmpdir/dummy ; +files="$dummy.c $dummy.o $dummy.rel $dummy" ; +trap '"'"'rm -f $files; rmdir $tmpdir; exit 1'"'"' 1 2 15 ; +case $CC_FOR_BUILD,$HOST_CC,$CC in + ,,) echo "int x;" > $dummy.c ; + for c in cc gcc c89 c99 ; do + if ($c -c -o $dummy.o $dummy.c) >/dev/null 2>&1 ; then + CC_FOR_BUILD="$c"; break ; + fi ; + done ; + rm -f $files ; + if test x"$CC_FOR_BUILD" = x ; then + CC_FOR_BUILD=no_compiler_found ; + fi + ;; + ,,*) CC_FOR_BUILD=$CC ;; + ,*,*) CC_FOR_BUILD=$HOST_CC ;; +esac ; +unset files' # This is needed to find uname on a Pyramid OSx when run in the BSD universe. # (ghazi@noc.rutgers.edu 1994-08-24) -if test -f /.attbin/uname ; then +if (test -f /.attbin/uname) >/dev/null 2>&1 ; then PATH=$PATH:/.attbin ; export PATH fi @@ -147,52 +132,13 @@ UNAME_MACHINE=`(uname -m) 2>/dev/null` || UNAME_MACHINE=unknown UNAME_RELEASE=`(uname -r) 2>/dev/null` || UNAME_RELEASE=unknown -UNAME_SYSTEM=`(uname -s) 2>/dev/null` || UNAME_SYSTEM=unknown +UNAME_SYSTEM=`(uname -s) 2>/dev/null` || UNAME_SYSTEM=unknown UNAME_VERSION=`(uname -v) 2>/dev/null` || UNAME_VERSION=unknown -case $UNAME_SYSTEM in -Linux|GNU|GNU/*) - LIBC=unknown - - set_cc_for_build - cat <<-EOF > "$dummy.c" - #include - #if defined(__UCLIBC__) - LIBC=uclibc - #elif defined(__dietlibc__) - LIBC=dietlibc - #elif defined(__GLIBC__) - LIBC=gnu - #else - #include - /* First heuristic to detect musl libc. */ - #ifdef __DEFINED_va_list - LIBC=musl - #endif - #endif - EOF - cc_set_libc=`$CC_FOR_BUILD -E "$dummy.c" 2>/dev/null | grep '^LIBC' | sed 's, ,,g'` - eval "$cc_set_libc" - - # Second heuristic to detect musl libc. - if [ "$LIBC" = unknown ] && - command -v ldd >/dev/null && - ldd --version 2>&1 | grep -q ^musl; then - LIBC=musl - fi - - # If the system lacks a compiler, then just pick glibc. - # We could probably try harder. - if [ "$LIBC" = unknown ]; then - LIBC=gnu - fi - ;; -esac - # Note: order is significant - the case branches are not exclusive. -case $UNAME_MACHINE:$UNAME_SYSTEM:$UNAME_RELEASE:$UNAME_VERSION in +case "${UNAME_MACHINE}:${UNAME_SYSTEM}:${UNAME_RELEASE}:${UNAME_VERSION}" in *:NetBSD:*:*) # NetBSD (nbsd) targets should (where applicable) match one or - # more of the tuples: *-*-netbsdelf*, *-*-netbsdaout*, + # more of the tupples: *-*-netbsdelf*, *-*-netbsdaout*, # *-*-netbsdecoff* and *-*-netbsd*. For targets that recently # switched to ELF, *-*-netbsd* would select the old @@ -203,32 +149,21 @@ # Note: NetBSD doesn't particularly care about the vendor # portion of the name. We always set it to "unknown". - UNAME_MACHINE_ARCH=`(uname -p 2>/dev/null || \ - /sbin/sysctl -n hw.machine_arch 2>/dev/null || \ - /usr/sbin/sysctl -n hw.machine_arch 2>/dev/null || \ - echo unknown)` - case $UNAME_MACHINE_ARCH in - aarch64eb) machine=aarch64_be-unknown ;; + sysctl="sysctl -n hw.machine_arch" + UNAME_MACHINE_ARCH=`(/sbin/$sysctl 2>/dev/null || \ + /usr/sbin/$sysctl 2>/dev/null || echo unknown)` + case "${UNAME_MACHINE_ARCH}" in armeb) machine=armeb-unknown ;; arm*) machine=arm-unknown ;; sh3el) machine=shl-unknown ;; sh3eb) machine=sh-unknown ;; - sh5el) machine=sh5le-unknown ;; - earmv*) - arch=`echo "$UNAME_MACHINE_ARCH" | sed -e 's,^e\(armv[0-9]\).*$,\1,'` - endian=`echo "$UNAME_MACHINE_ARCH" | sed -ne 's,^.*\(eb\)$,\1,p'` - machine=${arch}${endian}-unknown - ;; - *) machine=$UNAME_MACHINE_ARCH-unknown ;; + *) machine=${UNAME_MACHINE_ARCH}-unknown ;; esac # The Operating System including object format, if it has switched - # to ELF recently (or will in the future) and ABI. - case $UNAME_MACHINE_ARCH in - earm*) - os=netbsdelf - ;; + # to ELF recently, or will in the future. + case "${UNAME_MACHINE_ARCH}" in arm*|i386|m68k|ns32k|sh3*|sparc|vax) - set_cc_for_build + eval $set_cc_for_build if echo __ELF__ | $CC_FOR_BUILD -E - 2>/dev/null \ - | grep -q __ELF__ + | grep __ELF__ >/dev/null then # Once all utilities can be ECOFF (netbsdecoff) or a.out (netbsdaout). @@ -240,220 +175,178 @@ ;; *) - os=netbsd - ;; - esac - # Determine ABI tags. - case $UNAME_MACHINE_ARCH in - earm*) - expr='s/^earmv[0-9]/-eabi/;s/eb$//' - abi=`echo "$UNAME_MACHINE_ARCH" | sed -e "$expr"` + os=netbsd ;; esac # The OS release - # Debian GNU/NetBSD machines have a different userland, and - # thus, need a distinct triplet. However, they do not need - # kernel version information, so it can be replaced with a - # suitable tag, in the style of linux-gnu. - case $UNAME_VERSION in - Debian*) - release='-gnu' - ;; - *) - release=`echo "$UNAME_RELEASE" | sed -e 's/[-_].*//' | cut -d. -f1,2` - ;; - esac + release=`echo ${UNAME_RELEASE}|sed -e 's/[-_].*/\./'` # Since CPU_TYPE-MANUFACTURER-KERNEL-OPERATING_SYSTEM: # contains redundant information, the shorter form: # CPU_TYPE-MANUFACTURER-OPERATING_SYSTEM is used. - GUESS=$machine-${os}${release}${abi-} - ;; - *:Bitrig:*:*) - UNAME_MACHINE_ARCH=`arch | sed 's/Bitrig.//'` - GUESS=$UNAME_MACHINE_ARCH-unknown-bitrig$UNAME_RELEASE - ;; + echo "${machine}-${os}${release}" + exit 0 ;; + amiga:OpenBSD:*:*) + echo m68k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + arc:OpenBSD:*:*) + echo mipsel-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + hp300:OpenBSD:*:*) + echo m68k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + mac68k:OpenBSD:*:*) + echo m68k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + macppc:OpenBSD:*:*) + echo powerpc-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + mvme68k:OpenBSD:*:*) + echo m68k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + mvme88k:OpenBSD:*:*) + echo m88k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + mvmeppc:OpenBSD:*:*) + echo powerpc-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + pmax:OpenBSD:*:*) + echo mipsel-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + sgi:OpenBSD:*:*) + echo mipseb-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + sun3:OpenBSD:*:*) + echo m68k-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; + wgrisc:OpenBSD:*:*) + echo mipsel-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; *:OpenBSD:*:*) - UNAME_MACHINE_ARCH=`arch | sed 's/OpenBSD.//'` - GUESS=$UNAME_MACHINE_ARCH-unknown-openbsd$UNAME_RELEASE - ;; - *:SecBSD:*:*) - UNAME_MACHINE_ARCH=`arch | sed 's/SecBSD.//'` - GUESS=$UNAME_MACHINE_ARCH-unknown-secbsd$UNAME_RELEASE - ;; - *:LibertyBSD:*:*) - UNAME_MACHINE_ARCH=`arch | sed 's/^.*BSD\.//'` - GUESS=$UNAME_MACHINE_ARCH-unknown-libertybsd$UNAME_RELEASE - ;; - *:MidnightBSD:*:*) - GUESS=$UNAME_MACHINE-unknown-midnightbsd$UNAME_RELEASE - ;; - *:ekkoBSD:*:*) - GUESS=$UNAME_MACHINE-unknown-ekkobsd$UNAME_RELEASE - ;; - *:SolidBSD:*:*) - GUESS=$UNAME_MACHINE-unknown-solidbsd$UNAME_RELEASE - ;; - *:OS108:*:*) - GUESS=$UNAME_MACHINE-unknown-os108_$UNAME_RELEASE - ;; - macppc:MirBSD:*:*) - GUESS=powerpc-unknown-mirbsd$UNAME_RELEASE - ;; - *:MirBSD:*:*) - GUESS=$UNAME_MACHINE-unknown-mirbsd$UNAME_RELEASE - ;; - *:Sortix:*:*) - GUESS=$UNAME_MACHINE-unknown-sortix - ;; - *:Twizzler:*:*) - GUESS=$UNAME_MACHINE-unknown-twizzler - ;; - *:Redox:*:*) - GUESS=$UNAME_MACHINE-unknown-redox - ;; - mips:OSF1:*.*) - GUESS=mips-dec-osf1 - ;; + echo ${UNAME_MACHINE}-unknown-openbsd${UNAME_RELEASE} + exit 0 ;; alpha:OSF1:*:*) - # Reset EXIT trap before exiting to avoid spurious non-zero exit code. - trap '' 0 - case $UNAME_RELEASE in - *4.0) + if test $UNAME_RELEASE = "V4.0"; then UNAME_RELEASE=`/usr/sbin/sizer -v | awk '{print $3}'` - ;; - *5.*) - UNAME_RELEASE=`/usr/sbin/sizer -v | awk '{print $4}'` - ;; - esac - # According to Compaq, /usr/sbin/psrinfo has been available on - # OSF/1 and Tru64 systems produced since 1995. I hope that - # covers most systems running today. This code pipes the CPU - # types through head -n 1, so we only detect the type of CPU 0. - ALPHA_CPU_TYPE=`/usr/sbin/psrinfo -v | sed -n -e 's/^ The alpha \(.*\) processor.*$/\1/p' | head -n 1` - case $ALPHA_CPU_TYPE in - "EV4 (21064)") - UNAME_MACHINE=alpha ;; - "EV4.5 (21064)") - UNAME_MACHINE=alpha ;; - "LCA4 (21066/21068)") - UNAME_MACHINE=alpha ;; - "EV5 (21164)") - UNAME_MACHINE=alphaev5 ;; - "EV5.6 (21164A)") - UNAME_MACHINE=alphaev56 ;; - "EV5.6 (21164PC)") - UNAME_MACHINE=alphapca56 ;; - "EV5.7 (21164PC)") - UNAME_MACHINE=alphapca57 ;; - "EV6 (21264)") - UNAME_MACHINE=alphaev6 ;; - "EV6.7 (21264A)") - UNAME_MACHINE=alphaev67 ;; - "EV6.8CB (21264C)") - UNAME_MACHINE=alphaev68 ;; - "EV6.8AL (21264B)") - UNAME_MACHINE=alphaev68 ;; - "EV6.8CX (21264D)") - UNAME_MACHINE=alphaev68 ;; - "EV6.9A (21264/EV69A)") - UNAME_MACHINE=alphaev69 ;; - "EV7 (21364)") - UNAME_MACHINE=alphaev7 ;; - "EV7.9 (21364A)") - UNAME_MACHINE=alphaev79 ;; - esac - # A Pn.n version is a patched version. + fi # A Vn.n version is a released version. # A Tn.n version is a released field test version. # A Xn.n version is an unreleased experimental baselevel. # 1.2 uses "1.2" for uname -r. - OSF_REL=`echo "$UNAME_RELEASE" | sed -e 's/^[PVTX]//' | tr ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz` - GUESS=$UNAME_MACHINE-dec-osf$OSF_REL - ;; + eval $set_cc_for_build + cat <$dummy.s + .data +\$Lformat: + .byte 37,100,45,37,120,10,0 # "%d-%x\n" + + .text + .globl main + .align 4 + .ent main +main: + .frame \$30,16,\$26,0 + ldgp \$29,0(\$27) + .prologue 1 + .long 0x47e03d80 # implver \$0 + lda \$2,-1 + .long 0x47e20c21 # amask \$2,\$1 + lda \$16,\$Lformat + mov \$0,\$17 + not \$1,\$18 + jsr \$26,printf + ldgp \$29,0(\$26) + mov 0,\$16 + jsr \$26,exit + .end main +EOF + $CC_FOR_BUILD -o $dummy $dummy.s 2>/dev/null + if test "$?" = 0 ; then + case `$dummy` in + 0-0) + UNAME_MACHINE="alpha" + ;; + 1-0) + UNAME_MACHINE="alphaev5" + ;; + 1-1) + UNAME_MACHINE="alphaev56" + ;; + 1-101) + UNAME_MACHINE="alphapca56" + ;; + 2-303) + UNAME_MACHINE="alphaev6" + ;; + 2-307) + UNAME_MACHINE="alphaev67" + ;; + 2-1307) + UNAME_MACHINE="alphaev68" + ;; + 3-1307) + UNAME_MACHINE="alphaev7" + ;; + esac + fi + rm -f $dummy.s $dummy && rmdir $tmpdir + echo ${UNAME_MACHINE}-dec-osf`echo ${UNAME_RELEASE} | sed -e 's/^[VTX]//' | tr 'ABCDEFGHIJKLMNOPQRSTUVWXYZ' 'abcdefghijklmnopqrstuvwxyz'` + exit 0 ;; + Alpha\ *:Windows_NT*:*) + # How do we know it's Interix rather than the generic POSIX subsystem? + # Should we change UNAME_MACHINE based on the output of uname instead + # of the specific Alpha model? + echo alpha-pc-interix + exit 0 ;; + 21064:Windows_NT:50:3) + echo alpha-dec-winnt3.5 + exit 0 ;; Amiga*:UNIX_System_V:4.0:*) - GUESS=m68k-unknown-sysv4 - ;; + echo m68k-unknown-sysv4 + exit 0;; *:[Aa]miga[Oo][Ss]:*:*) - GUESS=$UNAME_MACHINE-unknown-amigaos - ;; + echo ${UNAME_MACHINE}-unknown-amigaos + exit 0 ;; *:[Mm]orph[Oo][Ss]:*:*) - GUESS=$UNAME_MACHINE-unknown-morphos - ;; + echo ${UNAME_MACHINE}-unknown-morphos + exit 0 ;; *:OS/390:*:*) - GUESS=i370-ibm-openedition - ;; - *:z/VM:*:*) - GUESS=s390-ibm-zvmoe - ;; - *:OS400:*:*) - GUESS=powerpc-ibm-os400 - ;; + echo i370-ibm-openedition + exit 0 ;; arm:RISC*:1.[012]*:*|arm:riscix:1.[012]*:*) - GUESS=arm-acorn-riscix$UNAME_RELEASE - ;; - arm*:riscos:*:*|arm*:RISCOS:*:*) - GUESS=arm-unknown-riscos - ;; + echo arm-acorn-riscix${UNAME_RELEASE} + exit 0;; SR2?01:HI-UX/MPP:*:* | SR8000:HI-UX/MPP:*:*) - GUESS=hppa1.1-hitachi-hiuxmpp - ;; + echo hppa1.1-hitachi-hiuxmpp + exit 0;; Pyramid*:OSx*:*:* | MIS*:OSx*:*:* | MIS*:SMP_DC-OSx*:*:*) # akee@wpdis03.wpafb.af.mil (Earle F. Ake) contributed MIS and NILE. - case `(/bin/universe) 2>/dev/null` in - att) GUESS=pyramid-pyramid-sysv3 ;; - *) GUESS=pyramid-pyramid-bsd ;; - esac - ;; + if test "`(/bin/universe) 2>/dev/null`" = att ; then + echo pyramid-pyramid-sysv3 + else + echo pyramid-pyramid-bsd + fi + exit 0 ;; NILE*:*:*:dcosx) - GUESS=pyramid-pyramid-svr4 - ;; - DRS?6000:unix:4.0:6*) - GUESS=sparc-icl-nx6 - ;; - DRS?6000:UNIX_SV:4.2*:7* | DRS?6000:isis:4.2*:7*) + echo pyramid-pyramid-svr4 + exit 0 ;; + DRS?6000:UNIX_SV:4.2*:7*) case `/usr/bin/uname -p` in - sparc) GUESS=sparc-icl-nx7 ;; - esac - ;; - s390x:SunOS:*:*) - SUN_REL=`echo "$UNAME_RELEASE" | sed -e 's/[^.]*//'` - GUESS=$UNAME_MACHINE-ibm-solaris2$SUN_REL - ;; + sparc) echo sparc-icl-nx7 && exit 0 ;; + esac ;; sun4H:SunOS:5.*:*) - SUN_REL=`echo "$UNAME_RELEASE" | sed -e 's/[^.]*//'` - GUESS=sparc-hal-solaris2$SUN_REL - ;; + echo sparc-hal-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` + exit 0 ;; sun4*:SunOS:5.*:* | tadpole*:SunOS:5.*:*) - SUN_REL=`echo "$UNAME_RELEASE" | sed -e 's/[^.]*//'` - GUESS=sparc-sun-solaris2$SUN_REL - ;; - i86pc:AuroraUX:5.*:* | i86xen:AuroraUX:5.*:*) - GUESS=i386-pc-auroraux$UNAME_RELEASE - ;; - i86pc:SunOS:5.*:* | i86xen:SunOS:5.*:*) - set_cc_for_build - SUN_ARCH=i386 - # If there is a compiler, see if it is configured for 64-bit objects. - # Note that the Sun cc does not turn __LP64__ into 1 like gcc does. - # This test works for both compilers. - if test "$CC_FOR_BUILD" != no_compiler_found; then - if (echo '#ifdef __amd64'; echo IS_64BIT_ARCH; echo '#endif') | \ - (CCOPTS="" $CC_FOR_BUILD -m64 -E - 2>/dev/null) | \ - grep IS_64BIT_ARCH >/dev/null - then - SUN_ARCH=x86_64 - fi - fi - SUN_REL=`echo "$UNAME_RELEASE" | sed -e 's/[^.]*//'` - GUESS=$SUN_ARCH-pc-solaris2$SUN_REL - ;; + echo sparc-sun-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` + exit 0 ;; + i86pc:SunOS:5.*:*) + echo i386-pc-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` + exit 0 ;; sun4*:SunOS:6*:*) # According to config.sub, this is the proper way to canonicalize # SunOS6. Hard to guess exactly what SunOS6 will be like, but # it's likely to be more like Solaris than SunOS4. - SUN_REL=`echo "$UNAME_RELEASE" | sed -e 's/[^.]*//'` - GUESS=sparc-sun-solaris3$SUN_REL - ;; + echo sparc-sun-solaris3`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` + exit 0 ;; sun4*:SunOS:*:*) - case `/usr/bin/arch -k` in + case "`/usr/bin/arch -k`" in Series*|S4*) UNAME_RELEASE=`uname -v` @@ -461,25 +354,24 @@ esac # Japanese Language versions have a version number like `4.1.3-JL'. - SUN_REL=`echo "$UNAME_RELEASE" | sed -e 's/-/_/'` - GUESS=sparc-sun-sunos$SUN_REL - ;; + echo sparc-sun-sunos`echo ${UNAME_RELEASE}|sed -e 's/-/_/'` + exit 0 ;; sun3*:SunOS:*:*) - GUESS=m68k-sun-sunos$UNAME_RELEASE - ;; + echo m68k-sun-sunos${UNAME_RELEASE} + exit 0 ;; sun*:*:4.2BSD:*) UNAME_RELEASE=`(sed 1q /etc/motd | awk '{print substr($5,1,3)}') 2>/dev/null` - test "x$UNAME_RELEASE" = x && UNAME_RELEASE=3 - case `/bin/arch` in + test "x${UNAME_RELEASE}" = "x" && UNAME_RELEASE=3 + case "`/bin/arch`" in sun3) - GUESS=m68k-sun-sunos$UNAME_RELEASE + echo m68k-sun-sunos${UNAME_RELEASE} ;; sun4) - GUESS=sparc-sun-sunos$UNAME_RELEASE + echo sparc-sun-sunos${UNAME_RELEASE} ;; esac - ;; + exit 0 ;; aushp:SunOS:*:*) - GUESS=sparc-auspex-sunos$UNAME_RELEASE - ;; + echo sparc-auspex-sunos${UNAME_RELEASE} + exit 0 ;; # The situation for MiNT is a little confusing. The machine name # can be virtually everything (everything which is not @@ -491,42 +383,39 @@ # be no problem. atarist[e]:*MiNT:*:* | atarist[e]:*mint:*:* | atarist[e]:*TOS:*:*) - GUESS=m68k-atari-mint$UNAME_RELEASE - ;; + echo m68k-atari-mint${UNAME_RELEASE} + exit 0 ;; atari*:*MiNT:*:* | atari*:*mint:*:* | atarist[e]:*TOS:*:*) - GUESS=m68k-atari-mint$UNAME_RELEASE - ;; + echo m68k-atari-mint${UNAME_RELEASE} + exit 0 ;; *falcon*:*MiNT:*:* | *falcon*:*mint:*:* | *falcon*:*TOS:*:*) - GUESS=m68k-atari-mint$UNAME_RELEASE - ;; + echo m68k-atari-mint${UNAME_RELEASE} + exit 0 ;; milan*:*MiNT:*:* | milan*:*mint:*:* | *milan*:*TOS:*:*) - GUESS=m68k-milan-mint$UNAME_RELEASE - ;; + echo m68k-milan-mint${UNAME_RELEASE} + exit 0 ;; hades*:*MiNT:*:* | hades*:*mint:*:* | *hades*:*TOS:*:*) - GUESS=m68k-hades-mint$UNAME_RELEASE - ;; + echo m68k-hades-mint${UNAME_RELEASE} + exit 0 ;; *:*MiNT:*:* | *:*mint:*:* | *:*TOS:*:*) - GUESS=m68k-unknown-mint$UNAME_RELEASE - ;; - m68k:machten:*:*) - GUESS=m68k-apple-machten$UNAME_RELEASE - ;; + echo m68k-unknown-mint${UNAME_RELEASE} + exit 0 ;; powerpc:machten:*:*) - GUESS=powerpc-apple-machten$UNAME_RELEASE - ;; + echo powerpc-apple-machten${UNAME_RELEASE} + exit 0 ;; RISC*:Mach:*:*) - GUESS=mips-dec-mach_bsd4.3 - ;; + echo mips-dec-mach_bsd4.3 + exit 0 ;; RISC*:ULTRIX:*:*) - GUESS=mips-dec-ultrix$UNAME_RELEASE - ;; + echo mips-dec-ultrix${UNAME_RELEASE} + exit 0 ;; VAX*:ULTRIX*:*:*) - GUESS=vax-dec-ultrix$UNAME_RELEASE - ;; + echo vax-dec-ultrix${UNAME_RELEASE} + exit 0 ;; 2020:CLIX:*:* | 2430:CLIX:*:*) - GUESS=clipper-intergraph-clix$UNAME_RELEASE - ;; + echo clipper-intergraph-clix${UNAME_RELEASE} + exit 0 ;; mips:*:*:UMIPS | mips:*:*:RISCos) - set_cc_for_build - sed 's/^ //' << EOF > "$dummy.c" + eval $set_cc_for_build + sed 's/^ //' << EOF >$dummy.c #ifdef __cplusplus #include /* for printf() prototype */ @@ -537,11 +426,11 @@ #if defined (host_mips) && defined (MIPSEB) #if defined (SYSTYPE_SYSV) - printf ("mips-mips-riscos%ssysv\\n", argv[1]); exit (0); + printf ("mips-mips-riscos%ssysv\n", argv[1]); exit (0); #endif #if defined (SYSTYPE_SVR4) - printf ("mips-mips-riscos%ssvr4\\n", argv[1]); exit (0); + printf ("mips-mips-riscos%ssvr4\n", argv[1]); exit (0); #endif #if defined (SYSTYPE_BSD43) || defined(SYSTYPE_BSD) - printf ("mips-mips-riscos%sbsd\\n", argv[1]); exit (0); + printf ("mips-mips-riscos%sbsd\n", argv[1]); exit (0); #endif #endif @@ -549,82 +438,81 @@ } EOF - $CC_FOR_BUILD -o "$dummy" "$dummy.c" && - dummyarg=`echo "$UNAME_RELEASE" | sed -n 's/\([0-9]*\).*/\1/p'` && - SYSTEM_NAME=`"$dummy" "$dummyarg"` && - { echo "$SYSTEM_NAME"; exit; } - GUESS=mips-mips-riscos$UNAME_RELEASE - ;; + $CC_FOR_BUILD -o $dummy $dummy.c \ + && $dummy `echo "${UNAME_RELEASE}" | sed -n 's/\([0-9]*\).*/\1/p'` \ + && rm -f $dummy.c $dummy && rmdir $tmpdir && exit 0 + rm -f $dummy.c $dummy && rmdir $tmpdir + echo mips-mips-riscos${UNAME_RELEASE} + exit 0 ;; Motorola:PowerMAX_OS:*:*) - GUESS=powerpc-motorola-powermax - ;; + echo powerpc-motorola-powermax + exit 0 ;; Motorola:*:4.3:PL8-*) - GUESS=powerpc-harris-powermax - ;; - Night_Hawk:*:*:PowerMAX_OS | Synergy:PowerMAX_OS:*:*) - GUESS=powerpc-harris-powermax - ;; + echo powerpc-harris-powermax + exit 0 ;; + Night_Hawk:*:*:PowerMAX_OS) + echo powerpc-harris-powermax + exit 0 ;; Night_Hawk:Power_UNIX:*:*) - GUESS=powerpc-harris-powerunix - ;; + echo powerpc-harris-powerunix + exit 0 ;; m88k:CX/UX:7*:*) - GUESS=m88k-harris-cxux7 - ;; + echo m88k-harris-cxux7 + exit 0 ;; m88k:*:4*:R4*) - GUESS=m88k-motorola-sysv4 - ;; + echo m88k-motorola-sysv4 + exit 0 ;; m88k:*:3*:R3*) - GUESS=m88k-motorola-sysv3 - ;; + echo m88k-motorola-sysv3 + exit 0 ;; AViiON:dgux:*:*) - # DG/UX returns AViiON for all architectures - UNAME_PROCESSOR=`/usr/bin/uname -p` - if test "$UNAME_PROCESSOR" = mc88100 || test "$UNAME_PROCESSOR" = mc88110 + # DG/UX returns AViiON for all architectures + UNAME_PROCESSOR=`/usr/bin/uname -p` + if [ $UNAME_PROCESSOR = mc88100 ] || [ $UNAME_PROCESSOR = mc88110 ] then - if test "$TARGET_BINARY_INTERFACE"x = m88kdguxelfx || \ - test "$TARGET_BINARY_INTERFACE"x = x + if [ ${TARGET_BINARY_INTERFACE}x = m88kdguxelfx ] || \ + [ ${TARGET_BINARY_INTERFACE}x = x ] then - GUESS=m88k-dg-dgux$UNAME_RELEASE + echo m88k-dg-dgux${UNAME_RELEASE} else - GUESS=m88k-dg-dguxbcs$UNAME_RELEASE + echo m88k-dg-dguxbcs${UNAME_RELEASE} fi else - GUESS=i586-dg-dgux$UNAME_RELEASE - fi - ;; + echo i586-dg-dgux${UNAME_RELEASE} + fi + exit 0 ;; M88*:DolphinOS:*:*) # DolphinOS (SVR3) - GUESS=m88k-dolphin-sysv3 - ;; + echo m88k-dolphin-sysv3 + exit 0 ;; M88*:*:R3*:*) # Delta 88k system running SVR3 - GUESS=m88k-motorola-sysv3 - ;; + echo m88k-motorola-sysv3 + exit 0 ;; XD88*:*:*:*) # Tektronix XD88 system running UTekV (SVR3) - GUESS=m88k-tektronix-sysv3 - ;; + echo m88k-tektronix-sysv3 + exit 0 ;; Tek43[0-9][0-9]:UTek:*:*) # Tektronix 4300 system running UTek (BSD) - GUESS=m68k-tektronix-bsd - ;; + echo m68k-tektronix-bsd + exit 0 ;; *:IRIX*:*:*) - IRIX_REL=`echo "$UNAME_RELEASE" | sed -e 's/-/_/g'` - GUESS=mips-sgi-irix$IRIX_REL - ;; + echo mips-sgi-irix`echo ${UNAME_RELEASE}|sed -e 's/-/_/g'` + exit 0 ;; ????????:AIX?:[12].1:2) # AIX 2.2.1 or AIX 2.1.1 is RT/PC AIX. - GUESS=romp-ibm-aix # uname -m gives an 8 hex-code CPU id - ;; # Note that: echo "'`uname -s`'" gives 'AIX ' + echo romp-ibm-aix # uname -m gives an 8 hex-code CPU id + exit 0 ;; # Note that: echo "'`uname -s`'" gives 'AIX ' i*86:AIX:*:*) - GUESS=i386-ibm-aix - ;; + echo i386-ibm-aix + exit 0 ;; ia64:AIX:*:*) - if test -x /usr/bin/oslevel ; then + if [ -x /usr/bin/oslevel ] ; then IBM_REV=`/usr/bin/oslevel` else - IBM_REV=$UNAME_VERSION.$UNAME_RELEASE - fi - GUESS=$UNAME_MACHINE-ibm-aix$IBM_REV - ;; + IBM_REV=${UNAME_VERSION}.${UNAME_RELEASE} + fi + echo ${UNAME_MACHINE}-ibm-aix${IBM_REV} + exit 0 ;; *:AIX:2:3) if grep bos325 /usr/include/stdio.h >/dev/null 2>&1; then - set_cc_for_build - sed 's/^ //' << EOF > "$dummy.c" + eval $set_cc_for_build + sed 's/^ //' << EOF >$dummy.c #include @@ -637,141 +525,117 @@ } EOF - if $CC_FOR_BUILD -o "$dummy" "$dummy.c" && SYSTEM_NAME=`"$dummy"` - then - GUESS=$SYSTEM_NAME - else - GUESS=rs6000-ibm-aix3.2.5 - fi + $CC_FOR_BUILD -o $dummy $dummy.c && $dummy && rm -f $dummy.c $dummy && rmdir $tmpdir && exit 0 + rm -f $dummy.c $dummy && rmdir $tmpdir + echo rs6000-ibm-aix3.2.5 elif grep bos324 /usr/include/stdio.h >/dev/null 2>&1; then - GUESS=rs6000-ibm-aix3.2.4 + echo rs6000-ibm-aix3.2.4 else - GUESS=rs6000-ibm-aix3.2 - fi - ;; - *:AIX:*:[4567]) + echo rs6000-ibm-aix3.2 + fi + exit 0 ;; + *:AIX:*:[45]) IBM_CPU_ID=`/usr/sbin/lsdev -C -c processor -S available | sed 1q | awk '{ print $1 }'` - if /usr/sbin/lsattr -El "$IBM_CPU_ID" | grep ' POWER' >/dev/null 2>&1; then + if /usr/sbin/lsattr -El ${IBM_CPU_ID} | grep ' POWER' >/dev/null 2>&1; then IBM_ARCH=rs6000 else IBM_ARCH=powerpc fi - if test -x /usr/bin/lslpp ; then - IBM_REV=`/usr/bin/lslpp -Lqc bos.rte.libc | \ - awk -F: '{ print $3 }' | sed s/[0-9]*$/0/` + if [ -x /usr/bin/oslevel ] ; then + IBM_REV=`/usr/bin/oslevel` else - IBM_REV=$UNAME_VERSION.$UNAME_RELEASE - fi - GUESS=$IBM_ARCH-ibm-aix$IBM_REV - ;; + IBM_REV=${UNAME_VERSION}.${UNAME_RELEASE} + fi + echo ${IBM_ARCH}-ibm-aix${IBM_REV} + exit 0 ;; *:AIX:*:*) - GUESS=rs6000-ibm-aix - ;; - ibmrt:4.4BSD:*|romp-ibm:4.4BSD:*) - GUESS=romp-ibm-bsd4.4 - ;; + echo rs6000-ibm-aix + exit 0 ;; + ibmrt:4.4BSD:*|romp-ibm:BSD:*) + echo romp-ibm-bsd4.4 + exit 0 ;; ibmrt:*BSD:*|romp-ibm:BSD:*) # covers RT/PC BSD and - GUESS=romp-ibm-bsd$UNAME_RELEASE # 4.3 with uname added to - ;; # report: romp-ibm BSD 4.3 + echo romp-ibm-bsd${UNAME_RELEASE} # 4.3 with uname added to + exit 0 ;; # report: romp-ibm BSD 4.3 *:BOSX:*:*) - GUESS=rs6000-bull-bosx - ;; + echo rs6000-bull-bosx + exit 0 ;; DPX/2?00:B.O.S.:*:*) - GUESS=m68k-bull-sysv3 - ;; + echo m68k-bull-sysv3 + exit 0 ;; 9000/[34]??:4.3bsd:1.*:*) - GUESS=m68k-hp-bsd - ;; + echo m68k-hp-bsd + exit 0 ;; hp300:4.4BSD:*:* | 9000/[34]??:4.3bsd:2.*:*) - GUESS=m68k-hp-bsd4.4 - ;; + echo m68k-hp-bsd4.4 + exit 0 ;; 9000/[34678]??:HP-UX:*:*) - HPUX_REV=`echo "$UNAME_RELEASE" | sed -e 's/[^.]*.[0B]*//'` - case $UNAME_MACHINE in - 9000/31?) HP_ARCH=m68000 ;; - 9000/[34]??) HP_ARCH=m68k ;; + HPUX_REV=`echo ${UNAME_RELEASE}|sed -e 's/[^.]*.[0B]*//'` + case "${UNAME_MACHINE}" in + 9000/31? ) HP_ARCH=m68000 ;; + 9000/[34]?? ) HP_ARCH=m68k ;; 9000/[678][0-9][0-9]) - if test -x /usr/bin/getconf; then + if [ -x /usr/bin/getconf ]; then sc_cpu_version=`/usr/bin/getconf SC_CPU_VERSION 2>/dev/null` - sc_kernel_bits=`/usr/bin/getconf SC_KERNEL_BITS 2>/dev/null` - case $sc_cpu_version in - 523) HP_ARCH=hppa1.0 ;; # CPU_PA_RISC1_0 - 528) HP_ARCH=hppa1.1 ;; # CPU_PA_RISC1_1 - 532) # CPU_PA_RISC2_0 - case $sc_kernel_bits in - 32) HP_ARCH=hppa2.0n ;; - 64) HP_ARCH=hppa2.0w ;; - '') HP_ARCH=hppa2.0 ;; # HP-UX 10.20 - esac ;; - esac + sc_kernel_bits=`/usr/bin/getconf SC_KERNEL_BITS 2>/dev/null` + case "${sc_cpu_version}" in + 523) HP_ARCH="hppa1.0" ;; # CPU_PA_RISC1_0 + 528) HP_ARCH="hppa1.1" ;; # CPU_PA_RISC1_1 + 532) # CPU_PA_RISC2_0 + case "${sc_kernel_bits}" in + 32) HP_ARCH="hppa2.0n" ;; + 64) HP_ARCH="hppa2.0w" ;; + '') HP_ARCH="hppa2.0" ;; # HP-UX 10.20 + esac ;; + esac fi - if test "$HP_ARCH" = ""; then - set_cc_for_build - sed 's/^ //' << EOF > "$dummy.c" - - #define _HPUX_SOURCE - #include - #include - - int main () - { - #if defined(_SC_KERNEL_BITS) - long bits = sysconf(_SC_KERNEL_BITS); - #endif - long cpu = sysconf (_SC_CPU_VERSION); - - switch (cpu) - { - case CPU_PA_RISC1_0: puts ("hppa1.0"); break; - case CPU_PA_RISC1_1: puts ("hppa1.1"); break; - case CPU_PA_RISC2_0: - #if defined(_SC_KERNEL_BITS) - switch (bits) - { - case 64: puts ("hppa2.0w"); break; - case 32: puts ("hppa2.0n"); break; - default: puts ("hppa2.0"); break; - } break; - #else /* !defined(_SC_KERNEL_BITS) */ - puts ("hppa2.0"); break; - #endif - default: puts ("hppa1.0"); break; - } - exit (0); - } + if [ "${HP_ARCH}" = "" ]; then + eval $set_cc_for_build + sed 's/^ //' << EOF >$dummy.c + + #define _HPUX_SOURCE + #include + #include + + int main () + { + #if defined(_SC_KERNEL_BITS) + long bits = sysconf(_SC_KERNEL_BITS); + #endif + long cpu = sysconf (_SC_CPU_VERSION); + + switch (cpu) + { + case CPU_PA_RISC1_0: puts ("hppa1.0"); break; + case CPU_PA_RISC1_1: puts ("hppa1.1"); break; + case CPU_PA_RISC2_0: + #if defined(_SC_KERNEL_BITS) + switch (bits) + { + case 64: puts ("hppa2.0w"); break; + case 32: puts ("hppa2.0n"); break; + default: puts ("hppa2.0"); break; + } break; + #else /* !defined(_SC_KERNEL_BITS) */ + puts ("hppa2.0"); break; + #endif + default: puts ("hppa1.0"); break; + } + exit (0); + } EOF - (CCOPTS="" $CC_FOR_BUILD -o "$dummy" "$dummy.c" 2>/dev/null) && HP_ARCH=`"$dummy"` - test -z "$HP_ARCH" && HP_ARCH=hppa + (CCOPTS= $CC_FOR_BUILD -o $dummy $dummy.c 2>/dev/null) && HP_ARCH=`$dummy` + if test -z "$HP_ARCH"; then HP_ARCH=hppa; fi + rm -f $dummy.c $dummy && rmdir $tmpdir fi ;; esac - if test "$HP_ARCH" = hppa2.0w - then - set_cc_for_build - - # hppa2.0w-hp-hpux* has a 64-bit kernel and a compiler generating - # 32-bit code. hppa64-hp-hpux* has the same kernel and a compiler - # generating 64-bit code. GNU and HP use different nomenclature: - # - # $ CC_FOR_BUILD=cc ./config.guess - # => hppa2.0w-hp-hpux11.23 - # $ CC_FOR_BUILD="cc +DA2.0w" ./config.guess - # => hppa64-hp-hpux11.23 - - if echo __LP64__ | (CCOPTS="" $CC_FOR_BUILD -E - 2>/dev/null) | - grep -q __LP64__ - then - HP_ARCH=hppa2.0w - else - HP_ARCH=hppa64 - fi - fi - GUESS=$HP_ARCH-hp-hpux$HPUX_REV - ;; + echo ${HP_ARCH}-hp-hpux${HPUX_REV} + exit 0 ;; ia64:HP-UX:*:*) - HPUX_REV=`echo "$UNAME_RELEASE" | sed -e 's/[^.]*.[0B]*//'` - GUESS=ia64-hp-hpux$HPUX_REV - ;; + HPUX_REV=`echo ${UNAME_RELEASE}|sed -e 's/[^.]*.[0B]*//'` + echo ia64-hp-hpux${HPUX_REV} + exit 0 ;; 3050*:HI-UX:*:*) - set_cc_for_build - sed 's/^ //' << EOF > "$dummy.c" + eval $set_cc_for_build + sed 's/^ //' << EOF >$dummy.c #include int @@ -798,36 +662,36 @@ } EOF - $CC_FOR_BUILD -o "$dummy" "$dummy.c" && SYSTEM_NAME=`"$dummy"` && - { echo "$SYSTEM_NAME"; exit; } - GUESS=unknown-hitachi-hiuxwe2 - ;; - 9000/7??:4.3bsd:*:* | 9000/8?[79]:4.3bsd:*:*) - GUESS=hppa1.1-hp-bsd - ;; + $CC_FOR_BUILD -o $dummy $dummy.c && $dummy && rm -f $dummy.c $dummy && rmdir $tmpdir && exit 0 + rm -f $dummy.c $dummy && rmdir $tmpdir + echo unknown-hitachi-hiuxwe2 + exit 0 ;; + 9000/7??:4.3bsd:*:* | 9000/8?[79]:4.3bsd:*:* ) + echo hppa1.1-hp-bsd + exit 0 ;; 9000/8??:4.3bsd:*:*) - GUESS=hppa1.0-hp-bsd - ;; + echo hppa1.0-hp-bsd + exit 0 ;; *9??*:MPE/iX:*:* | *3000*:MPE/iX:*:*) - GUESS=hppa1.0-hp-mpeix - ;; - hp7??:OSF1:*:* | hp8?[79]:OSF1:*:*) - GUESS=hppa1.1-hp-osf - ;; + echo hppa1.0-hp-mpeix + exit 0 ;; + hp7??:OSF1:*:* | hp8?[79]:OSF1:*:* ) + echo hppa1.1-hp-osf + exit 0 ;; hp8??:OSF1:*:*) - GUESS=hppa1.0-hp-osf - ;; + echo hppa1.0-hp-osf + exit 0 ;; i*86:OSF1:*:*) - if test -x /usr/sbin/sysversion ; then - GUESS=$UNAME_MACHINE-unknown-osf1mk + if [ -x /usr/sbin/sysversion ] ; then + echo ${UNAME_MACHINE}-unknown-osf1mk else - GUESS=$UNAME_MACHINE-unknown-osf1 - fi - ;; + echo ${UNAME_MACHINE}-unknown-osf1 + fi + exit 0 ;; parisc*:Lites*:*:*) - GUESS=hppa1.1-hp-lites - ;; + echo hppa1.1-hp-lites + exit 0 ;; C1*:ConvexOS:*:* | convex:ConvexOS:C1*:*) - GUESS=c1-convex-bsd - ;; + echo c1-convex-bsd + exit 0 ;; C2*:ConvexOS:*:* | convex:ConvexOS:C2*:*) if getsysinfo -f scalar_acc @@ -835,148 +699,135 @@ else echo c2-convex-bsd fi - exit ;; + exit 0 ;; C34*:ConvexOS:*:* | convex:ConvexOS:C34*:*) - GUESS=c34-convex-bsd - ;; + echo c34-convex-bsd + exit 0 ;; C38*:ConvexOS:*:* | convex:ConvexOS:C38*:*) - GUESS=c38-convex-bsd - ;; + echo c38-convex-bsd + exit 0 ;; C4*:ConvexOS:*:* | convex:ConvexOS:C4*:*) - GUESS=c4-convex-bsd - ;; + echo c4-convex-bsd + exit 0 ;; CRAY*Y-MP:*:*:*) - CRAY_REL=`echo "$UNAME_RELEASE" | sed -e 's/\.[^.]*$/.X/'` - GUESS=ymp-cray-unicos$CRAY_REL - ;; + echo ymp-cray-unicos${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' + exit 0 ;; CRAY*[A-Z]90:*:*:*) - echo "$UNAME_MACHINE"-cray-unicos"$UNAME_RELEASE" \ + echo ${UNAME_MACHINE}-cray-unicos${UNAME_RELEASE} \ | sed -e 's/CRAY.*\([A-Z]90\)/\1/' \ -e y/ABCDEFGHIJKLMNOPQRSTUVWXYZ/abcdefghijklmnopqrstuvwxyz/ \ -e 's/\.[^.]*$/.X/' - exit ;; + exit 0 ;; CRAY*TS:*:*:*) - CRAY_REL=`echo "$UNAME_RELEASE" | sed -e 's/\.[^.]*$/.X/'` - GUESS=t90-cray-unicos$CRAY_REL + echo t90-cray-unicos${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' + exit 0 ;; + CRAY*T3D:*:*:*) + echo alpha-cray-unicosmk${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' + exit 0 ;; + CRAY*T3E:*:*:*) + echo alphaev5-cray-unicosmk${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' + exit 0 ;; + CRAY*SV1:*:*:*) + echo sv1-cray-unicos${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' + exit 0 ;; + F30[01]:UNIX_System_V:*:* | F700:UNIX_System_V:*:*) + FUJITSU_PROC=`uname -m | tr 'ABCDEFGHIJKLMNOPQRSTUVWXYZ' 'abcdefghijklmnopqrstuvwxyz'` + FUJITSU_SYS=`uname -p | tr 'ABCDEFGHIJKLMNOPQRSTUVWXYZ' 'abcdefghijklmnopqrstuvwxyz' | sed -e 's/\///'` + FUJITSU_REL=`echo ${UNAME_RELEASE} | sed -e 's/ /_/'` + echo "${FUJITSU_PROC}-fujitsu-${FUJITSU_SYS}${FUJITSU_REL}" + exit 0 ;; + i*86:BSD/386:*:* | i*86:BSD/OS:*:* | *:Ascend\ Embedded/OS:*:*) + echo ${UNAME_MACHINE}-pc-bsdi${UNAME_RELEASE} + exit 0 ;; + sparc*:BSD/OS:*:*) + echo sparc-unknown-bsdi${UNAME_RELEASE} + exit 0 ;; + *:BSD/OS:*:*) + echo ${UNAME_MACHINE}-unknown-bsdi${UNAME_RELEASE} + exit 0 ;; + *:FreeBSD:*:*) + # Determine whether the default compiler uses glibc. + eval $set_cc_for_build + sed 's/^ //' << EOF >$dummy.c + #include + #if __GLIBC__ >= 2 + LIBC=gnu + #else + LIBC= + #endif +EOF + eval `$CC_FOR_BUILD -E $dummy.c 2>/dev/null | grep ^LIBC=` + rm -f $dummy.c && rmdir $tmpdir + echo ${UNAME_MACHINE}-unknown-freebsd`echo ${UNAME_RELEASE}|sed -e 's/[-(].*//'`${LIBC:+-$LIBC} + exit 0 ;; + i*:CYGWIN*:*) + echo ${UNAME_MACHINE}-pc-cygwin + exit 0 ;; + i*:MINGW*:*) + echo ${UNAME_MACHINE}-pc-mingw32 + exit 0 ;; + i*:PW*:*) + echo ${UNAME_MACHINE}-pc-pw32 + exit 0 ;; + x86:Interix*:3*) + echo i386-pc-interix3 + exit 0 ;; + i*:Windows_NT*:* | Pentium*:Windows_NT*:*) + # How do we know it's Interix rather than the generic POSIX subsystem? + # It also conflicts with pre-2.0 versions of AT&T UWIN. Should we + # UNAME_MACHINE based on the output of uname instead of i386? + echo i386-pc-interix + exit 0 ;; + i*:UWIN*:*) + echo ${UNAME_MACHINE}-pc-uwin + exit 0 ;; + p*:CYGWIN*:*) + echo powerpcle-unknown-cygwin + exit 0 ;; + prep*:SunOS:5.*:*) + echo powerpcle-unknown-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` + exit 0 ;; + *:GNU:*:*) + echo `echo ${UNAME_MACHINE}|sed -e 's,[-/].*$,,'`-unknown-gnu`echo ${UNAME_RELEASE}|sed -e 's,/.*$,,'` + exit 0 ;; + i*86:Minix:*:*) + echo ${UNAME_MACHINE}-pc-minix + exit 0 ;; + arm*:Linux:*:*) + echo ${UNAME_MACHINE}-unknown-linux-gnu + exit 0 ;; + ia64:Linux:*:*) + echo ${UNAME_MACHINE}-unknown-linux-gnu + exit 0 ;; + m68*:Linux:*:*) + echo ${UNAME_MACHINE}-unknown-linux-gnu + exit 0 ;; + mips:Linux:*:*) + eval $set_cc_for_build + sed 's/^ //' << EOF >$dummy.c + #undef CPU + #undef mips + #undef mipsel + #if defined(__MIPSEL__) || defined(__MIPSEL) || defined(_MIPSEL) || defined(MIPSEL) + CPU=mipsel + #else + #if defined(__MIPSEB__) || defined(__MIPSEB) || defined(_MIPSEB) || defined(MIPSEB) + CPU=mips + #else + CPU= + #endif + #endif +EOF + eval `$CC_FOR_BUILD -E $dummy.c 2>/dev/null | grep ^CPU=` + rm -f $dummy.c && rmdir $tmpdir + test x"${CPU}" != x && echo "${CPU}-pc-linux-gnu" && exit 0 ;; - CRAY*T3E:*:*:*) - CRAY_REL=`echo "$UNAME_RELEASE" | sed -e 's/\.[^.]*$/.X/'` - GUESS=alphaev5-cray-unicosmk$CRAY_REL - ;; - CRAY*SV1:*:*:*) - CRAY_REL=`echo "$UNAME_RELEASE" | sed -e 's/\.[^.]*$/.X/'` - GUESS=sv1-cray-unicos$CRAY_REL - ;; - *:UNICOS/mp:*:*) - CRAY_REL=`echo "$UNAME_RELEASE" | sed -e 's/\.[^.]*$/.X/'` - GUESS=craynv-cray-unicosmp$CRAY_REL - ;; - F30[01]:UNIX_System_V:*:* | F700:UNIX_System_V:*:*) - FUJITSU_PROC=`uname -m | tr ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz` - FUJITSU_SYS=`uname -p | tr ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz | sed -e 's/\///'` - FUJITSU_REL=`echo "$UNAME_RELEASE" | sed -e 's/ /_/'` - GUESS=${FUJITSU_PROC}-fujitsu-${FUJITSU_SYS}${FUJITSU_REL} - ;; - 5000:UNIX_System_V:4.*:*) - FUJITSU_SYS=`uname -p | tr ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz | sed -e 's/\///'` - FUJITSU_REL=`echo "$UNAME_RELEASE" | tr ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz | sed -e 's/ /_/'` - GUESS=sparc-fujitsu-${FUJITSU_SYS}${FUJITSU_REL} - ;; - i*86:BSD/386:*:* | i*86:BSD/OS:*:* | *:Ascend\ Embedded/OS:*:*) - GUESS=$UNAME_MACHINE-pc-bsdi$UNAME_RELEASE - ;; - sparc*:BSD/OS:*:*) - GUESS=sparc-unknown-bsdi$UNAME_RELEASE - ;; - *:BSD/OS:*:*) - GUESS=$UNAME_MACHINE-unknown-bsdi$UNAME_RELEASE - ;; - arm:FreeBSD:*:*) - UNAME_PROCESSOR=`uname -p` - set_cc_for_build - if echo __ARM_PCS_VFP | $CC_FOR_BUILD -E - 2>/dev/null \ - | grep -q __ARM_PCS_VFP - then - FREEBSD_REL=`echo "$UNAME_RELEASE" | sed -e 's/[-(].*//'` - GUESS=$UNAME_PROCESSOR-unknown-freebsd$FREEBSD_REL-gnueabi - else - FREEBSD_REL=`echo "$UNAME_RELEASE" | sed -e 's/[-(].*//'` - GUESS=$UNAME_PROCESSOR-unknown-freebsd$FREEBSD_REL-gnueabihf - fi - ;; - *:FreeBSD:*:*) - UNAME_PROCESSOR=`/usr/bin/uname -p` - case $UNAME_PROCESSOR in - amd64) - UNAME_PROCESSOR=x86_64 ;; - i386) - UNAME_PROCESSOR=i586 ;; - esac - FREEBSD_REL=`echo "$UNAME_RELEASE" | sed -e 's/[-(].*//'` - GUESS=$UNAME_PROCESSOR-unknown-freebsd$FREEBSD_REL - ;; - i*:CYGWIN*:*) - GUESS=$UNAME_MACHINE-pc-cygwin - ;; - *:MINGW64*:*) - GUESS=$UNAME_MACHINE-pc-mingw64 - ;; - *:MINGW*:*) - GUESS=$UNAME_MACHINE-pc-mingw32 - ;; - *:MSYS*:*) - GUESS=$UNAME_MACHINE-pc-msys - ;; - i*:PW*:*) - GUESS=$UNAME_MACHINE-pc-pw32 - ;; - *:SerenityOS:*:*) - GUESS=$UNAME_MACHINE-pc-serenity - ;; - *:Interix*:*) - case $UNAME_MACHINE in - x86) - GUESS=i586-pc-interix$UNAME_RELEASE - ;; - authenticamd | genuineintel | EM64T) - GUESS=x86_64-unknown-interix$UNAME_RELEASE - ;; - IA64) - GUESS=ia64-unknown-interix$UNAME_RELEASE - ;; - esac ;; - i*:UWIN*:*) - GUESS=$UNAME_MACHINE-pc-uwin - ;; - amd64:CYGWIN*:*:* | x86_64:CYGWIN*:*:*) - GUESS=x86_64-pc-cygwin - ;; - prep*:SunOS:5.*:*) - SUN_REL=`echo "$UNAME_RELEASE" | sed -e 's/[^.]*//'` - GUESS=powerpcle-unknown-solaris2$SUN_REL - ;; - *:GNU:*:*) - # the GNU system - GNU_ARCH=`echo "$UNAME_MACHINE" | sed -e 's,[-/].*$,,'` - GNU_REL=`echo "$UNAME_RELEASE" | sed -e 's,/.*$,,'` - GUESS=$GNU_ARCH-unknown-$LIBC$GNU_REL - ;; - *:GNU/*:*:*) - # other systems with GNU libc and userland - GNU_SYS=`echo "$UNAME_SYSTEM" | sed 's,^[^/]*/,,' | tr "[:upper:]" "[:lower:]"` - GNU_REL=`echo "$UNAME_RELEASE" | sed -e 's/[-(].*//'` - GUESS=$UNAME_MACHINE-unknown-$GNU_SYS$GNU_REL-$LIBC - ;; - *:Minix:*:*) - GUESS=$UNAME_MACHINE-unknown-minix - ;; - aarch64:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; - aarch64_be:Linux:*:*) - UNAME_MACHINE=aarch64_be - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; + ppc:Linux:*:*) + echo powerpc-unknown-linux-gnu + exit 0 ;; + ppc64:Linux:*:*) + echo powerpc64-unknown-linux-gnu + exit 0 ;; alpha:Linux:*:*) - case `sed -n '/^cpu model/s/^.*: \(.*\)/\1/p' /proc/cpuinfo 2>/dev/null` in + case `sed -n '/^cpu model/s/^.*: \(.*\)/\1/p' < /proc/cpuinfo` in EV5) UNAME_MACHINE=alphaev5 ;; EV56) UNAME_MACHINE=alphaev56 ;; @@ -986,183 +837,85 @@ EV67) UNAME_MACHINE=alphaev67 ;; EV68*) UNAME_MACHINE=alphaev68 ;; + esac + objdump --private-headers /bin/sh | grep ld.so.1 >/dev/null + if test "$?" = 0 ; then LIBC="libc1" ; else LIBC="" ; fi + echo ${UNAME_MACHINE}-unknown-linux-gnu${LIBC} + exit 0 ;; + parisc:Linux:*:* | hppa:Linux:*:*) + # Look for CPU level + case `grep '^cpu[^a-z]*:' /proc/cpuinfo 2>/dev/null | cut -d' ' -f2` in + PA7*) echo hppa1.1-unknown-linux-gnu ;; + PA8*) echo hppa2.0-unknown-linux-gnu ;; + *) echo hppa-unknown-linux-gnu ;; esac - objdump --private-headers /bin/sh | grep -q ld.so.1 - if test "$?" = 0 ; then LIBC=gnulibc1 ; fi - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; - arc:Linux:*:* | arceb:Linux:*:* | arc32:Linux:*:* | arc64:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; - arm*:Linux:*:*) - set_cc_for_build - if echo __ARM_EABI__ | $CC_FOR_BUILD -E - 2>/dev/null \ - | grep -q __ARM_EABI__ - then - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - else - if echo __ARM_PCS_VFP | $CC_FOR_BUILD -E - 2>/dev/null \ - | grep -q __ARM_PCS_VFP - then - GUESS=$UNAME_MACHINE-unknown-linux-${LIBC}eabi - else - GUESS=$UNAME_MACHINE-unknown-linux-${LIBC}eabihf - fi - fi - ;; - avr32*:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; - cris:Linux:*:*) - GUESS=$UNAME_MACHINE-axis-linux-$LIBC - ;; - crisv32:Linux:*:*) - GUESS=$UNAME_MACHINE-axis-linux-$LIBC - ;; - e2k:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; - frv:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; - hexagon:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; + exit 0 ;; + parisc64:Linux:*:* | hppa64:Linux:*:*) + echo hppa64-unknown-linux-gnu + exit 0 ;; + s390:Linux:*:* | s390x:Linux:*:*) + echo ${UNAME_MACHINE}-ibm-linux + exit 0 ;; + sh*:Linux:*:*) + echo ${UNAME_MACHINE}-unknown-linux-gnu + exit 0 ;; + sparc:Linux:*:* | sparc64:Linux:*:*) + echo ${UNAME_MACHINE}-unknown-linux-gnu + exit 0 ;; + x86_64:Linux:*:*) + echo x86_64-unknown-linux-gnu + exit 0 ;; i*86:Linux:*:*) - GUESS=$UNAME_MACHINE-pc-linux-$LIBC - ;; - ia64:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; - k1om:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; - loongarch32:Linux:*:* | loongarch64:Linux:*:* | loongarchx32:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; - m32r*:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; - m68*:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; - mips:Linux:*:* | mips64:Linux:*:*) - set_cc_for_build - IS_GLIBC=0 - test x"${LIBC}" = xgnu && IS_GLIBC=1 - sed 's/^ //' << EOF > "$dummy.c" - #undef CPU - #undef mips - #undef mipsel - #undef mips64 - #undef mips64el - #if ${IS_GLIBC} && defined(_ABI64) - LIBCABI=gnuabi64 + # The BFD linker knows what the default object file format is, so + # first see if it will tell us. cd to the root directory to prevent + # problems with other programs or directories called `ld' in the path. + # Set LC_ALL=C to ensure ld outputs messages in English. + ld_supported_targets=`cd /; LC_ALL=C ld --help 2>&1 \ + | sed -ne '/supported targets:/!d + s/[ ][ ]*/ /g + s/.*supported targets: *// + s/ .*// + p'` + case "$ld_supported_targets" in + elf32-i386) + TENTATIVE="${UNAME_MACHINE}-pc-linux-gnu" + ;; + a.out-i386-linux) + echo "${UNAME_MACHINE}-pc-linux-gnuaout" + exit 0 ;; + coff-i386) + echo "${UNAME_MACHINE}-pc-linux-gnucoff" + exit 0 ;; + "") + # Either a pre-BFD a.out linker (linux-gnuoldld) or + # one that does not give us useful --help. + echo "${UNAME_MACHINE}-pc-linux-gnuoldld" + exit 0 ;; + esac + # Determine whether the default compiler is a.out or elf + eval $set_cc_for_build + sed 's/^ //' << EOF >$dummy.c + #include + #ifdef __ELF__ + # ifdef __GLIBC__ + # if __GLIBC__ >= 2 + LIBC=gnu + # else + LIBC=gnulibc1 + # endif + # else + LIBC=gnulibc1 + # endif #else - #if ${IS_GLIBC} && defined(_ABIN32) - LIBCABI=gnuabin32 + #ifdef __INTEL_COMPILER + LIBC=gnu #else - LIBCABI=${LIBC} - #endif - #endif - - #if ${IS_GLIBC} && defined(__mips64) && defined(__mips_isa_rev) && __mips_isa_rev>=6 - CPU=mipsisa64r6 - #else - #if ${IS_GLIBC} && !defined(__mips64) && defined(__mips_isa_rev) && __mips_isa_rev>=6 - CPU=mipsisa32r6 - #else - #if defined(__mips64) - CPU=mips64 - #else - CPU=mips - #endif - #endif - #endif - - #if defined(__MIPSEL__) || defined(__MIPSEL) || defined(_MIPSEL) || defined(MIPSEL) - MIPS_ENDIAN=el - #else - #if defined(__MIPSEB__) || defined(__MIPSEB) || defined(_MIPSEB) || defined(MIPSEB) - MIPS_ENDIAN= - #else - MIPS_ENDIAN= + LIBC=gnuaout #endif #endif EOF - cc_set_vars=`$CC_FOR_BUILD -E "$dummy.c" 2>/dev/null | grep '^CPU\|^MIPS_ENDIAN\|^LIBCABI'` - eval "$cc_set_vars" - test "x$CPU" != x && { echo "$CPU${MIPS_ENDIAN}-unknown-linux-$LIBCABI"; exit; } - ;; - mips64el:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; - openrisc*:Linux:*:*) - GUESS=or1k-unknown-linux-$LIBC - ;; - or32:Linux:*:* | or1k*:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; - padre:Linux:*:*) - GUESS=sparc-unknown-linux-$LIBC - ;; - parisc64:Linux:*:* | hppa64:Linux:*:*) - GUESS=hppa64-unknown-linux-$LIBC - ;; - parisc:Linux:*:* | hppa:Linux:*:*) - # Look for CPU level - case `grep '^cpu[^a-z]*:' /proc/cpuinfo 2>/dev/null | cut -d' ' -f2` in - PA7*) GUESS=hppa1.1-unknown-linux-$LIBC ;; - PA8*) GUESS=hppa2.0-unknown-linux-$LIBC ;; - *) GUESS=hppa-unknown-linux-$LIBC ;; - esac - ;; - ppc64:Linux:*:*) - GUESS=powerpc64-unknown-linux-$LIBC - ;; - ppc:Linux:*:*) - GUESS=powerpc-unknown-linux-$LIBC - ;; - ppc64le:Linux:*:*) - GUESS=powerpc64le-unknown-linux-$LIBC - ;; - ppcle:Linux:*:*) - GUESS=powerpcle-unknown-linux-$LIBC - ;; - riscv32:Linux:*:* | riscv32be:Linux:*:* | riscv64:Linux:*:* | riscv64be:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; - s390:Linux:*:* | s390x:Linux:*:*) - GUESS=$UNAME_MACHINE-ibm-linux-$LIBC - ;; - sh64*:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; - sh*:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; - sparc:Linux:*:* | sparc64:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; - tile*:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC - ;; - vax:Linux:*:*) - GUESS=$UNAME_MACHINE-dec-linux-$LIBC - ;; - x86_64:Linux:*:*) - set_cc_for_build - LIBCABI=$LIBC - if test "$CC_FOR_BUILD" != no_compiler_found; then - if (echo '#ifdef __ILP32__'; echo IS_X32; echo '#endif') | \ - (CCOPTS="" $CC_FOR_BUILD -E - 2>/dev/null) | \ - grep IS_X32 >/dev/null - then - LIBCABI=${LIBC}x32 - fi - fi - GUESS=$UNAME_MACHINE-pc-linux-$LIBCABI - ;; - xtensa*:Linux:*:*) - GUESS=$UNAME_MACHINE-unknown-linux-$LIBC + eval `$CC_FOR_BUILD -E $dummy.c 2>/dev/null | grep ^LIBC=` + rm -f $dummy.c && rmdir $tmpdir + test x"${LIBC}" != x && echo "${UNAME_MACHINE}-pc-linux-${LIBC}" && exit 0 + test x"${TENTATIVE}" != x && echo "${TENTATIVE}" && exit 0 ;; i*86:DYNIX/ptx:4*:*) @@ -1170,44 +923,23 @@ # earlier versions are messed up and put the nodename in both # sysname and nodename. - GUESS=i386-sequent-sysv4 - ;; + echo i386-sequent-sysv4 + exit 0 ;; i*86:UNIX_SV:4.2MP:2.*) - # Unixware is an offshoot of SVR4, but it has its own version - # number series starting with 2... - # I am not positive that other SVR4 systems won't match this, + # Unixware is an offshoot of SVR4, but it has its own version + # number series starting with 2... + # I am not positive that other SVR4 systems won't match this, # I just have to hope. -- rms. - # Use sysv4.2uw... so that sysv4* matches it. - GUESS=$UNAME_MACHINE-pc-sysv4.2uw$UNAME_VERSION - ;; - i*86:OS/2:*:*) - # If we were able to find `uname', then EMX Unix compatibility - # is probably installed. - GUESS=$UNAME_MACHINE-pc-os2-emx - ;; - i*86:XTS-300:*:STOP) - GUESS=$UNAME_MACHINE-unknown-stop - ;; - i*86:atheos:*:*) - GUESS=$UNAME_MACHINE-unknown-atheos - ;; - i*86:syllable:*:*) - GUESS=$UNAME_MACHINE-pc-syllable - ;; - i*86:LynxOS:2.*:* | i*86:LynxOS:3.[01]*:* | i*86:LynxOS:4.[02]*:*) - GUESS=i386-unknown-lynxos$UNAME_RELEASE - ;; - i*86:*DOS:*:*) - GUESS=$UNAME_MACHINE-pc-msdosdjgpp - ;; - i*86:*:4.*:*) - UNAME_REL=`echo "$UNAME_RELEASE" | sed 's/\/MP$//'` + # Use sysv4.2uw... so that sysv4* matches it. + echo ${UNAME_MACHINE}-pc-sysv4.2uw${UNAME_VERSION} + exit 0 ;; + i*86:*:4.*:* | i*86:SYSTEM_V:4.*:*) + UNAME_REL=`echo ${UNAME_RELEASE} | sed 's/\/MP$//'` if grep Novell /usr/include/link.h >/dev/null 2>/dev/null; then - GUESS=$UNAME_MACHINE-univel-sysv$UNAME_REL + echo ${UNAME_MACHINE}-univel-sysv${UNAME_REL} else - GUESS=$UNAME_MACHINE-pc-sysv$UNAME_REL - fi - ;; - i*86:*:5:[678]*) - # UnixWare 7.x, OpenUNIX and OpenServer 6. + echo ${UNAME_MACHINE}-pc-sysv${UNAME_REL} + fi + exit 0 ;; + i*86:*:5:[78]*) case `/bin/uname -X | grep "^Machine"` in *486*) UNAME_MACHINE=i486 ;; @@ -1215,10 +947,10 @@ *Pent*|*Celeron) UNAME_MACHINE=i686 ;; esac - GUESS=$UNAME_MACHINE-unknown-sysv${UNAME_RELEASE}${UNAME_SYSTEM}${UNAME_VERSION} - ;; + echo ${UNAME_MACHINE}-unknown-sysv${UNAME_RELEASE}${UNAME_SYSTEM}${UNAME_VERSION} + exit 0 ;; i*86:*:3.2:*) if test -f /usr/options/cb.name; then UNAME_REL=`sed -n 's/.*Version //p' /dev/null >/dev/null ; then UNAME_REL=`(/bin/uname -X|grep Release|sed -e 's/.*= //')` @@ -1230,337 +962,216 @@ (/bin/uname -X|grep '^Machine.*Pentium Pro' >/dev/null) \ && UNAME_MACHINE=i686 - GUESS=$UNAME_MACHINE-pc-sco$UNAME_REL + echo ${UNAME_MACHINE}-pc-sco$UNAME_REL else - GUESS=$UNAME_MACHINE-pc-sysv32 - fi - ;; + echo ${UNAME_MACHINE}-pc-sysv32 + fi + exit 0 ;; + i*86:*DOS:*:*) + echo ${UNAME_MACHINE}-pc-msdosdjgpp + exit 0 ;; pc:*:*:*) # Left here for compatibility: - # uname -m prints for DJGPP always 'pc', but it prints nothing about - # the processor, so we play safe by assuming i586. - # Note: whatever this is, it MUST be the same as what config.sub - # prints for the "djgpp" host, or else GDB configure will decide that - # this is a cross-build. - GUESS=i586-pc-msdosdjgpp - ;; + # uname -m prints for DJGPP always 'pc', but it prints nothing about + # the processor, so we play safe by assuming i386. + echo i386-pc-msdosdjgpp + exit 0 ;; Intel:Mach:3*:*) - GUESS=i386-pc-mach3 - ;; + echo i386-pc-mach3 + exit 0 ;; paragon:*:*:*) - GUESS=i860-intel-osf1 - ;; + echo i860-intel-osf1 + exit 0 ;; i860:*:4.*:*) # i860-SVR4 if grep Stardent /usr/include/sys/uadmin.h >/dev/null 2>&1 ; then - GUESS=i860-stardent-sysv$UNAME_RELEASE # Stardent Vistra i860-SVR4 + echo i860-stardent-sysv${UNAME_RELEASE} # Stardent Vistra i860-SVR4 else # Add other i860-SVR4 vendors below as they are discovered. - GUESS=i860-unknown-sysv$UNAME_RELEASE # Unknown i860-SVR4 - fi - ;; + echo i860-unknown-sysv${UNAME_RELEASE} # Unknown i860-SVR4 + fi + exit 0 ;; mini*:CTIX:SYS*5:*) # "miniframe" - GUESS=m68010-convergent-sysv - ;; + echo m68010-convergent-sysv + exit 0 ;; mc68k:UNIX:SYSTEM5:3.51m) - GUESS=m68k-convergent-sysv - ;; - M680?0:D-NIX:5.3:*) - GUESS=m68k-diab-dnix - ;; - M68*:*:R3V[5678]*:*) - test -r /sysV68 && { echo 'm68k-motorola-sysv'; exit; } ;; - 3[345]??:*:4.0:3.0 | 3[34]??A:*:4.0:3.0 | 3[34]??,*:*:4.0:3.0 | 3[34]??/*:*:4.0:3.0 | 4400:*:4.0:3.0 | 4850:*:4.0:3.0 | SKA40:*:4.0:3.0 | SDS2:*:4.0:3.0 | SHG2:*:4.0:3.0 | S7501*:*:4.0:3.0) + echo m68k-convergent-sysv + exit 0 ;; + M68*:*:R3V[567]*:*) + test -r /sysV68 && echo 'm68k-motorola-sysv' && exit 0 ;; + 3[34]??:*:4.0:3.0 | 3[34]??A:*:4.0:3.0 | 3[34]??,*:*:4.0:3.0 | 3[34]??/*:*:4.0:3.0 | 4400:*:4.0:3.0 | 4850:*:4.0:3.0 | SKA40:*:4.0:3.0) OS_REL='' test -r /etc/.relid \ && OS_REL=.`sed -n 's/[^ ]* [^ ]* \([0-9][0-9]\).*/\1/p' < /etc/.relid` /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ - && { echo i486-ncr-sysv4.3"$OS_REL"; exit; } + && echo i486-ncr-sysv4.3${OS_REL} && exit 0 /bin/uname -p 2>/dev/null | /bin/grep entium >/dev/null \ - && { echo i586-ncr-sysv4.3"$OS_REL"; exit; } ;; + && echo i586-ncr-sysv4.3${OS_REL} && exit 0 ;; 3[34]??:*:4.0:* | 3[34]??,*:*:4.0:*) - /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ - && { echo i486-ncr-sysv4; exit; } ;; - NCR*:*:4.2:* | MPRAS*:*:4.2:*) - OS_REL='.3' - test -r /etc/.relid \ - && OS_REL=.`sed -n 's/[^ ]* [^ ]* \([0-9][0-9]\).*/\1/p' < /etc/.relid` - /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ - && { echo i486-ncr-sysv4.3"$OS_REL"; exit; } - /bin/uname -p 2>/dev/null | /bin/grep entium >/dev/null \ - && { echo i586-ncr-sysv4.3"$OS_REL"; exit; } - /bin/uname -p 2>/dev/null | /bin/grep pteron >/dev/null \ - && { echo i586-ncr-sysv4.3"$OS_REL"; exit; } ;; + /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ + && echo i486-ncr-sysv4 && exit 0 ;; m68*:LynxOS:2.*:* | m68*:LynxOS:3.0*:*) - GUESS=m68k-unknown-lynxos$UNAME_RELEASE - ;; + echo m68k-unknown-lynxos${UNAME_RELEASE} + exit 0 ;; mc68030:UNIX_System_V:4.*:*) - GUESS=m68k-atari-sysv4 - ;; + echo m68k-atari-sysv4 + exit 0 ;; + i*86:LynxOS:2.*:* | i*86:LynxOS:3.[01]*:* | i*86:LynxOS:4.0*:*) + echo i386-unknown-lynxos${UNAME_RELEASE} + exit 0 ;; TSUNAMI:LynxOS:2.*:*) - GUESS=sparc-unknown-lynxos$UNAME_RELEASE - ;; + echo sparc-unknown-lynxos${UNAME_RELEASE} + exit 0 ;; rs6000:LynxOS:2.*:*) - GUESS=rs6000-unknown-lynxos$UNAME_RELEASE - ;; - PowerPC:LynxOS:2.*:* | PowerPC:LynxOS:3.[01]*:* | PowerPC:LynxOS:4.[02]*:*) - GUESS=powerpc-unknown-lynxos$UNAME_RELEASE - ;; + echo rs6000-unknown-lynxos${UNAME_RELEASE} + exit 0 ;; + PowerPC:LynxOS:2.*:* | PowerPC:LynxOS:3.[01]*:* | PowerPC:LynxOS:4.0*:*) + echo powerpc-unknown-lynxos${UNAME_RELEASE} + exit 0 ;; SM[BE]S:UNIX_SV:*:*) - GUESS=mips-dde-sysv$UNAME_RELEASE - ;; + echo mips-dde-sysv${UNAME_RELEASE} + exit 0 ;; RM*:ReliantUNIX-*:*:*) - GUESS=mips-sni-sysv4 - ;; + echo mips-sni-sysv4 + exit 0 ;; RM*:SINIX-*:*:*) - GUESS=mips-sni-sysv4 - ;; + echo mips-sni-sysv4 + exit 0 ;; *:SINIX-*:*:*) if uname -p 2>/dev/null >/dev/null ; then UNAME_MACHINE=`(uname -p) 2>/dev/null` - GUESS=$UNAME_MACHINE-sni-sysv4 + echo ${UNAME_MACHINE}-sni-sysv4 else - GUESS=ns32k-sni-sysv - fi - ;; - PENTIUM:*:4.0*:*) # Unisys `ClearPath HMP IX 4000' SVR4/MP effort - # says - GUESS=i586-unisys-sysv4 - ;; + echo ns32k-sni-sysv + fi + exit 0 ;; + PENTIUM:*:4.0*:*) # Unisys `ClearPath HMP IX 4000' SVR4/MP effort + # says + echo i586-unisys-sysv4 + exit 0 ;; *:UNIX_System_V:4*:FTX*) # From Gerald Hewes . # How about differentiating between stratus architectures? -djm - GUESS=hppa1.1-stratus-sysv4 - ;; + echo hppa1.1-stratus-sysv4 + exit 0 ;; *:*:*:FTX*) # From seanf@swdc.stratus.com. - GUESS=i860-stratus-sysv4 - ;; - i*86:VOS:*:*) - # From Paul.Green@stratus.com. - GUESS=$UNAME_MACHINE-stratus-vos - ;; + echo i860-stratus-sysv4 + exit 0 ;; *:VOS:*:*) # From Paul.Green@stratus.com. - GUESS=hppa1.1-stratus-vos - ;; + echo hppa1.1-stratus-vos + exit 0 ;; mc68*:A/UX:*:*) - GUESS=m68k-apple-aux$UNAME_RELEASE - ;; + echo m68k-apple-aux${UNAME_RELEASE} + exit 0 ;; news*:NEWS-OS:6*:*) - GUESS=mips-sony-newsos6 - ;; + echo mips-sony-newsos6 + exit 0 ;; R[34]000:*System_V*:*:* | R4000:UNIX_SYSV:*:* | R*000:UNIX_SV:*:*) - if test -d /usr/nec; then - GUESS=mips-nec-sysv$UNAME_RELEASE + if [ -d /usr/nec ]; then + echo mips-nec-sysv${UNAME_RELEASE} else - GUESS=mips-unknown-sysv$UNAME_RELEASE - fi - ;; + echo mips-unknown-sysv${UNAME_RELEASE} + fi + exit 0 ;; BeBox:BeOS:*:*) # BeOS running on hardware made by Be, PPC only. - GUESS=powerpc-be-beos - ;; + echo powerpc-be-beos + exit 0 ;; BeMac:BeOS:*:*) # BeOS running on Mac or Mac clone, PPC only. - GUESS=powerpc-apple-beos - ;; + echo powerpc-apple-beos + exit 0 ;; BePC:BeOS:*:*) # BeOS running on Intel PC compatible. - GUESS=i586-pc-beos - ;; - BePC:Haiku:*:*) # Haiku running on Intel PC compatible. - GUESS=i586-pc-haiku - ;; - x86_64:Haiku:*:*) - GUESS=x86_64-unknown-haiku - ;; + echo i586-pc-beos + exit 0 ;; SX-4:SUPER-UX:*:*) - GUESS=sx4-nec-superux$UNAME_RELEASE - ;; + echo sx4-nec-superux${UNAME_RELEASE} + exit 0 ;; SX-5:SUPER-UX:*:*) - GUESS=sx5-nec-superux$UNAME_RELEASE - ;; + echo sx5-nec-superux${UNAME_RELEASE} + exit 0 ;; SX-6:SUPER-UX:*:*) - GUESS=sx6-nec-superux$UNAME_RELEASE - ;; - SX-7:SUPER-UX:*:*) - GUESS=sx7-nec-superux$UNAME_RELEASE - ;; - SX-8:SUPER-UX:*:*) - GUESS=sx8-nec-superux$UNAME_RELEASE - ;; - SX-8R:SUPER-UX:*:*) - GUESS=sx8r-nec-superux$UNAME_RELEASE - ;; - SX-ACE:SUPER-UX:*:*) - GUESS=sxace-nec-superux$UNAME_RELEASE - ;; + echo sx6-nec-superux${UNAME_RELEASE} + exit 0 ;; Power*:Rhapsody:*:*) - GUESS=powerpc-apple-rhapsody$UNAME_RELEASE - ;; + echo powerpc-apple-rhapsody${UNAME_RELEASE} + exit 0 ;; *:Rhapsody:*:*) - GUESS=$UNAME_MACHINE-apple-rhapsody$UNAME_RELEASE - ;; - arm64:Darwin:*:*) - GUESS=aarch64-apple-darwin$UNAME_RELEASE - ;; + echo ${UNAME_MACHINE}-apple-rhapsody${UNAME_RELEASE} + exit 0 ;; *:Darwin:*:*) - UNAME_PROCESSOR=`uname -p` - case $UNAME_PROCESSOR in - unknown) UNAME_PROCESSOR=powerpc ;; - esac - if command -v xcode-select > /dev/null 2> /dev/null && \ - ! xcode-select --print-path > /dev/null 2> /dev/null ; then - # Avoid executing cc if there is no toolchain installed as - # cc will be a stub that puts up a graphical alert - # prompting the user to install developer tools. - CC_FOR_BUILD=no_compiler_found - else - set_cc_for_build - fi - if test "$CC_FOR_BUILD" != no_compiler_found; then - if (echo '#ifdef __LP64__'; echo IS_64BIT_ARCH; echo '#endif') | \ - (CCOPTS="" $CC_FOR_BUILD -E - 2>/dev/null) | \ - grep IS_64BIT_ARCH >/dev/null - then - case $UNAME_PROCESSOR in - i386) UNAME_PROCESSOR=x86_64 ;; - powerpc) UNAME_PROCESSOR=powerpc64 ;; - esac - fi - # On 10.4-10.6 one might compile for PowerPC via gcc -arch ppc - if (echo '#ifdef __POWERPC__'; echo IS_PPC; echo '#endif') | \ - (CCOPTS="" $CC_FOR_BUILD -E - 2>/dev/null) | \ - grep IS_PPC >/dev/null - then - UNAME_PROCESSOR=powerpc - fi - elif test "$UNAME_PROCESSOR" = i386 ; then - # uname -m returns i386 or x86_64 - UNAME_PROCESSOR=$UNAME_MACHINE - fi - GUESS=$UNAME_PROCESSOR-apple-darwin$UNAME_RELEASE - ;; + echo `uname -p`-apple-darwin${UNAME_RELEASE} + exit 0 ;; *:procnto*:*:* | *:QNX:[0123456789]*:*) UNAME_PROCESSOR=`uname -p` - if test "$UNAME_PROCESSOR" = x86; then + if test "$UNAME_PROCESSOR" = "x86"; then UNAME_PROCESSOR=i386 UNAME_MACHINE=pc fi - GUESS=$UNAME_PROCESSOR-$UNAME_MACHINE-nto-qnx$UNAME_RELEASE - ;; + echo ${UNAME_PROCESSOR}-${UNAME_MACHINE}-nto-qnx${UNAME_RELEASE} + exit 0 ;; *:QNX:*:4*) - GUESS=i386-pc-qnx - ;; - NEO-*:NONSTOP_KERNEL:*:*) - GUESS=neo-tandem-nsk$UNAME_RELEASE - ;; - NSE-*:NONSTOP_KERNEL:*:*) - GUESS=nse-tandem-nsk$UNAME_RELEASE - ;; - NSR-*:NONSTOP_KERNEL:*:*) - GUESS=nsr-tandem-nsk$UNAME_RELEASE - ;; - NSV-*:NONSTOP_KERNEL:*:*) - GUESS=nsv-tandem-nsk$UNAME_RELEASE - ;; - NSX-*:NONSTOP_KERNEL:*:*) - GUESS=nsx-tandem-nsk$UNAME_RELEASE - ;; + echo i386-pc-qnx + exit 0 ;; + NSR-[DGKLNPTVW]:NONSTOP_KERNEL:*:*) + echo nsr-tandem-nsk${UNAME_RELEASE} + exit 0 ;; *:NonStop-UX:*:*) - GUESS=mips-compaq-nonstopux - ;; + echo mips-compaq-nonstopux + exit 0 ;; BS2000:POSIX*:*:*) - GUESS=bs2000-siemens-sysv - ;; + echo bs2000-siemens-sysv + exit 0 ;; DS/*:UNIX_System_V:*:*) - GUESS=$UNAME_MACHINE-$UNAME_SYSTEM-$UNAME_RELEASE - ;; + echo ${UNAME_MACHINE}-${UNAME_SYSTEM}-${UNAME_RELEASE} + exit 0 ;; *:Plan9:*:*) # "uname -m" is not consistent, so use $cputype instead. 386 # is converted to i386 for consistency with other x86 # operating systems. - if test "${cputype-}" = 386; then + if test "$cputype" = "386"; then UNAME_MACHINE=i386 - elif test "x${cputype-}" != x; then - UNAME_MACHINE=$cputype - fi - GUESS=$UNAME_MACHINE-unknown-plan9 - ;; + else + UNAME_MACHINE="$cputype" + fi + echo ${UNAME_MACHINE}-unknown-plan9 + exit 0 ;; + i*86:OS/2:*:*) + # If we were able to find `uname', then EMX Unix compatibility + # is probably installed. + echo ${UNAME_MACHINE}-pc-os2-emx + exit 0 ;; *:TOPS-10:*:*) - GUESS=pdp10-unknown-tops10 - ;; + echo pdp10-unknown-tops10 + exit 0 ;; *:TENEX:*:*) - GUESS=pdp10-unknown-tenex - ;; + echo pdp10-unknown-tenex + exit 0 ;; KS10:TOPS-20:*:* | KL10:TOPS-20:*:* | TYPE4:TOPS-20:*:*) - GUESS=pdp10-dec-tops20 - ;; + echo pdp10-dec-tops20 + exit 0 ;; XKL-1:TOPS-20:*:* | TYPE5:TOPS-20:*:*) - GUESS=pdp10-xkl-tops20 - ;; + echo pdp10-xkl-tops20 + exit 0 ;; *:TOPS-20:*:*) - GUESS=pdp10-unknown-tops20 - ;; + echo pdp10-unknown-tops20 + exit 0 ;; *:ITS:*:*) - GUESS=pdp10-unknown-its - ;; - SEI:*:*:SEIUX) - GUESS=mips-sei-seiux$UNAME_RELEASE - ;; - *:DragonFly:*:*) - DRAGONFLY_REL=`echo "$UNAME_RELEASE" | sed -e 's/[-(].*//'` - GUESS=$UNAME_MACHINE-unknown-dragonfly$DRAGONFLY_REL - ;; - *:*VMS:*:*) - UNAME_MACHINE=`(uname -p) 2>/dev/null` - case $UNAME_MACHINE in - A*) GUESS=alpha-dec-vms ;; - I*) GUESS=ia64-dec-vms ;; - V*) GUESS=vax-dec-vms ;; - esac ;; - *:XENIX:*:SysV) - GUESS=i386-pc-xenix - ;; - i*86:skyos:*:*) - SKYOS_REL=`echo "$UNAME_RELEASE" | sed -e 's/ .*$//'` - GUESS=$UNAME_MACHINE-pc-skyos$SKYOS_REL - ;; - i*86:rdos:*:*) - GUESS=$UNAME_MACHINE-pc-rdos - ;; - i*86:Fiwix:*:*) - GUESS=$UNAME_MACHINE-pc-fiwix - ;; - *:AROS:*:*) - GUESS=$UNAME_MACHINE-unknown-aros - ;; - x86_64:VMkernel:*:*) - GUESS=$UNAME_MACHINE-unknown-esx - ;; - amd64:Isilon\ OneFS:*:*) - GUESS=x86_64-unknown-onefs - ;; - *:Unleashed:*:*) - GUESS=$UNAME_MACHINE-unknown-unleashed$UNAME_RELEASE - ;; + echo pdp10-unknown-its + exit 0 ;; + i*86:XTS-300:*:STOP) + echo ${UNAME_MACHINE}-unknown-stop + exit 0 ;; + i*86:atheos:*:*) + echo ${UNAME_MACHINE}-unknown-atheos + exit 0 ;; esac -# Do we have a guess based on uname results? -if test "x$GUESS" != x; then - echo "$GUESS" - exit -fi - -# No uname command or uname output not recognized. -set_cc_for_build -cat > "$dummy.c" <&2 +#echo "${UNAME_MACHINE}:${UNAME_SYSTEM}:${UNAME_RELEASE}:${UNAME_VERSION}" 1>&2 + +eval $set_cc_for_build +cat >$dummy.c < -#include -#endif -#if defined(ultrix) || defined(_ultrix) || defined(__ultrix) || defined(__ultrix__) -#if defined (vax) || defined (__vax) || defined (__vax__) || defined(mips) || defined(__mips) || defined(__mips__) || defined(MIPS) || defined(__MIPS__) -#include -#if defined(_SIZE_T_) || defined(SIGLOST) -#include -#endif -#endif +# include +# include #endif main () @@ -1575,10 +1186,18 @@ printf ("m68k-sony-newsos%s\n", #ifdef NEWSOS4 - "4" + "4" #else - "" -#endif - ); exit (0); -#endif + "" +#endif + ); exit (0); +#endif +#endif + +#if defined (__arm) && defined (__acorn) && defined (__unix) + printf ("arm-acorn-riscix"); exit (0); +#endif + +#if defined (hp300) && !defined (hpux) + printf ("m68k-hp-bsd\n"); exit (0); #endif @@ -1622,52 +1241,37 @@ #if defined (_SEQUENT_) - struct utsname un; - - uname(&un); - if (strncmp(un.version, "V2", 2) == 0) { - printf ("i386-sequent-ptx2\n"); exit (0); - } - if (strncmp(un.version, "V1", 2) == 0) { /* XXX is V1 correct? */ - printf ("i386-sequent-ptx1\n"); exit (0); - } - printf ("i386-sequent-ptx\n"); exit (0); + struct utsname un; + + uname(&un); + + if (strncmp(un.version, "V2", 2) == 0) { + printf ("i386-sequent-ptx2\n"); exit (0); + } + if (strncmp(un.version, "V1", 2) == 0) { /* XXX is V1 correct? */ + printf ("i386-sequent-ptx1\n"); exit (0); + } + printf ("i386-sequent-ptx\n"); exit (0); + #endif #if defined (vax) -#if !defined (ultrix) -#include -#if defined (BSD) -#if BSD == 43 - printf ("vax-dec-bsd4.3\n"); exit (0); -#else -#if BSD == 199006 - printf ("vax-dec-bsd4.3reno\n"); exit (0); -#else - printf ("vax-dec-bsd\n"); exit (0); -#endif -#endif -#else - printf ("vax-dec-bsd\n"); exit (0); -#endif -#else -#if defined(_SIZE_T_) || defined(SIGLOST) - struct utsname un; - uname (&un); - printf ("vax-dec-ultrix%s\n", un.release); exit (0); -#else - printf ("vax-dec-ultrix\n"); exit (0); -#endif -#endif -#endif -#if defined(ultrix) || defined(_ultrix) || defined(__ultrix) || defined(__ultrix__) -#if defined(mips) || defined(__mips) || defined(__mips__) || defined(MIPS) || defined(__MIPS__) -#if defined(_SIZE_T_) || defined(SIGLOST) - struct utsname *un; - uname (&un); - printf ("mips-dec-ultrix%s\n", un.release); exit (0); -#else - printf ("mips-dec-ultrix\n"); exit (0); -#endif -#endif +# if !defined (ultrix) +# include +# if defined (BSD) +# if BSD == 43 + printf ("vax-dec-bsd4.3\n"); exit (0); +# else +# if BSD == 199006 + printf ("vax-dec-bsd4.3reno\n"); exit (0); +# else + printf ("vax-dec-bsd\n"); exit (0); +# endif +# endif +# else + printf ("vax-dec-bsd\n"); exit (0); +# endif +# else + printf ("vax-dec-ultrix\n"); exit (0); +# endif #endif @@ -1680,44 +1284,50 @@ EOF -$CC_FOR_BUILD -o "$dummy" "$dummy.c" 2>/dev/null && SYSTEM_NAME=`"$dummy"` && - { echo "$SYSTEM_NAME"; exit; } +$CC_FOR_BUILD -o $dummy $dummy.c 2>/dev/null && $dummy && rm -f $dummy.c $dummy && rmdir $tmpdir && exit 0 +rm -f $dummy.c $dummy && rmdir $tmpdir # Apollos put the system type in the environment. -test -d /usr/apollo && { echo "$ISP-apollo-$SYSTYPE"; exit; } - -echo "$0: unable to guess system type" >&2 - -case $UNAME_MACHINE:$UNAME_SYSTEM in - mips:Linux | mips64:Linux) - # If we got here on MIPS GNU/Linux, output extra information. - cat >&2 <&2 <&2 < in order to provide the needed +information to handle your system. config.guess timestamp = $timestamp @@ -1738,15 +1348,14 @@ /usr/convex/getsysinfo = `(/usr/convex/getsysinfo) 2>/dev/null` -UNAME_MACHINE = "$UNAME_MACHINE" -UNAME_RELEASE = "$UNAME_RELEASE" -UNAME_SYSTEM = "$UNAME_SYSTEM" -UNAME_VERSION = "$UNAME_VERSION" +UNAME_MACHINE = ${UNAME_MACHINE} +UNAME_RELEASE = ${UNAME_RELEASE} +UNAME_SYSTEM = ${UNAME_SYSTEM} +UNAME_VERSION = ${UNAME_VERSION} EOF -fi exit 1 # Local variables: -# eval: (add-hook 'before-save-hook 'time-stamp) +# eval: (add-hook 'write-file-hooks 'time-stamp) # time-stamp-start: "timestamp='" # time-stamp-format: "%:y-%02m-%02d" Index: trunk/config.sub =================================================================== --- trunk/config.sub (revision 591) +++ trunk/config.sub (revision 1) @@ -1,32 +1,35 @@ #! /bin/sh # Configuration validation subroutine script. -# Copyright 1992-2022 Free Software Foundation, Inc. - -# shellcheck disable=SC2006,SC2268 # see below for rationale - -timestamp='2022-01-03' - -# This file is free software; you can redistribute it and/or modify it -# under the terms of the GNU General Public License as published by -# the Free Software Foundation, either version 3 of the License, or +# Copyright (C) 1992, 1993, 1994, 1995, 1996, 1997, 1998, 1999, +# 2000, 2001, 2002 Free Software Foundation, Inc. + +timestamp='2002-09-05' + +# This file is (in principle) common to ALL GNU software. +# The presence of a machine in this file suggests that SOME GNU software +# can handle that machine. It does not imply ALL GNU software can. +# +# This file is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; either version 2 of the License, or # (at your option) any later version. # -# This program is distributed in the hope that it will be useful, but -# WITHOUT ANY WARRANTY; without even the implied warranty of -# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU -# General Public License for more details. +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. # # You should have received a copy of the GNU General Public License -# along with this program; if not, see . -# +# along with this program; if not, write to the Free Software +# Foundation, Inc., 59 Temple Place - Suite 330, +# Boston, MA 02111-1307, USA. + # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under -# the same distribution terms that you use for the rest of that -# program. This Exception is an additional permission under section 7 -# of the GNU General Public License, version 3 ("GPLv3"). - - -# Please send patches to . +# the same distribution terms that you use for the rest of that program. + +# Please send patches to . Submit a context +# diff and a properly formatted ChangeLog entry. # # Configuration subroutine to validate and canonicalize a configuration type. @@ -34,7 +37,4 @@ # If it is invalid, we print an error message on stderr and exit with code 1. # Otherwise, we print the canonical config type on stdout and succeed. - -# You can get the latest version of this script from: -# https://git.savannah.gnu.org/cgit/config.git/plain/config.sub # This file is supposed to be the same for all GNU packages @@ -53,19 +53,13 @@ # It is wrong to echo any other type of specification. -# The "shellcheck disable" line above the timestamp inhibits complaints -# about features and limitations of the classic Bourne shell that were -# superseded or lifted in POSIX. However, this script identifies a wide -# variety of pre-POSIX systems that do not have POSIX shells at all, and -# even some reasonably current systems (Solaris 10 as case-in-point) still -# have a pre-POSIX /bin/sh. - me=`echo "$0" | sed -e 's,.*/,,'` usage="\ -Usage: $0 [OPTION] CPU-MFR-OPSYS or ALIAS +Usage: $0 [OPTION] CPU-MFR-OPSYS + $0 [OPTION] ALIAS Canonicalize a configuration name. -Options: +Operation modes: -h, --help print this help, then exit -t, --time-stamp print date of last modification, then exit @@ -77,5 +71,6 @@ GNU config.sub ($timestamp) -Copyright 1992-2022 Free Software Foundation, Inc. +Copyright (C) 1992, 1993, 1994, 1995, 1996, 1997, 1998, 1999, 2000, 2001 +Free Software Foundation, Inc. This is free software; see the source for copying conditions. There is NO @@ -89,9 +84,9 @@ case $1 in --time-stamp | --time* | -t ) - echo "$timestamp" ; exit ;; + echo "$timestamp" ; exit 0 ;; --version | -v ) - echo "$version" ; exit ;; + echo "$version" ; exit 0 ;; --help | --h* | -h ) - echo "$usage"; exit ;; + echo "$usage"; exit 0 ;; -- ) # Stop option processing shift; break ;; @@ -99,11 +94,11 @@ break ;; -* ) - echo "$me: invalid option $1$help" >&2 + echo "$me: invalid option $1$help" exit 1 ;; *local*) # First pass through any local machine types. - echo "$1" - exit ;; + echo $1 + exit 0;; * ) @@ -120,1400 +115,1123 @@ esac -# Split fields of configuration type -# shellcheck disable=SC2162 -saved_IFS=$IFS -IFS="-" read field1 field2 field3 field4 <&2 - exit 1 - ;; - *-*-*-*) - basic_machine=$field1-$field2 - basic_os=$field3-$field4 - ;; - *-*-*) - # Ambiguous whether COMPANY is present, or skipped and KERNEL-OS is two - # parts - maybe_os=$field2-$field3 - case $maybe_os in - nto-qnx* | linux-* | uclinux-uclibc* \ - | uclinux-gnu* | kfreebsd*-gnu* | knetbsd*-gnu* | netbsd*-gnu* \ - | netbsd*-eabi* | kopensolaris*-gnu* | cloudabi*-eabi* \ - | storm-chaos* | os2-emx* | rtmk-nova*) - basic_machine=$field1 - basic_os=$maybe_os - ;; - android-linux) - basic_machine=$field1-unknown - basic_os=linux-android - ;; - *) - basic_machine=$field1-$field2 - basic_os=$field3 - ;; - esac - ;; - *-*) - # A lone config we happen to match not fitting any pattern - case $field1-$field2 in - decstation-3100) - basic_machine=mips-dec - basic_os= - ;; - *-*) - # Second component is usually, but not always the OS - case $field2 in - # Prevent following clause from handling this valid os - sun*os*) - basic_machine=$field1 - basic_os=$field2 - ;; - zephyr*) - basic_machine=$field1-unknown - basic_os=$field2 - ;; - # Manufacturers - dec* | mips* | sequent* | encore* | pc533* | sgi* | sony* \ - | att* | 7300* | 3300* | delta* | motorola* | sun[234]* \ - | unicom* | ibm* | next | hp | isi* | apollo | altos* \ - | convergent* | ncr* | news | 32* | 3600* | 3100* \ - | hitachi* | c[123]* | convex* | sun | crds | omron* | dg \ - | ultra | tti* | harris | dolphin | highlevel | gould \ - | cbm | ns | masscomp | apple | axis | knuth | cray \ - | microblaze* | sim | cisco \ - | oki | wec | wrs | winbond) - basic_machine=$field1-$field2 - basic_os= - ;; - *) - basic_machine=$field1 - basic_os=$field2 - ;; - esac - ;; - esac - ;; - *) - # Convert single-component short-hands not valid as part of - # multi-component configurations. - case $field1 in - 386bsd) - basic_machine=i386-pc - basic_os=bsd - ;; - a29khif) - basic_machine=a29k-amd - basic_os=udi - ;; - adobe68k) - basic_machine=m68010-adobe - basic_os=scout - ;; - alliant) - basic_machine=fx80-alliant - basic_os= - ;; - altos | altos3068) - basic_machine=m68k-altos - basic_os= - ;; - am29k) - basic_machine=a29k-none - basic_os=bsd - ;; - amdahl) - basic_machine=580-amdahl - basic_os=sysv - ;; - amiga) - basic_machine=m68k-unknown - basic_os= - ;; - amigaos | amigados) - basic_machine=m68k-unknown - basic_os=amigaos - ;; - amigaunix | amix) - basic_machine=m68k-unknown - basic_os=sysv4 - ;; - apollo68) - basic_machine=m68k-apollo - basic_os=sysv - ;; - apollo68bsd) - basic_machine=m68k-apollo - basic_os=bsd - ;; - aros) - basic_machine=i386-pc - basic_os=aros - ;; - aux) - basic_machine=m68k-apple - basic_os=aux - ;; - balance) - basic_machine=ns32k-sequent - basic_os=dynix - ;; - blackfin) - basic_machine=bfin-unknown - basic_os=linux - ;; - cegcc) - basic_machine=arm-unknown - basic_os=cegcc - ;; - convex-c1) - basic_machine=c1-convex - basic_os=bsd - ;; - convex-c2) - basic_machine=c2-convex - basic_os=bsd - ;; - convex-c32) - basic_machine=c32-convex - basic_os=bsd - ;; - convex-c34) - basic_machine=c34-convex - basic_os=bsd - ;; - convex-c38) - basic_machine=c38-convex - basic_os=bsd - ;; - cray) - basic_machine=j90-cray - basic_os=unicos - ;; - crds | unos) - basic_machine=m68k-crds - basic_os= - ;; - da30) - basic_machine=m68k-da30 - basic_os= - ;; - decstation | pmax | pmin | dec3100 | decstatn) - basic_machine=mips-dec - basic_os= - ;; - delta88) - basic_machine=m88k-motorola - basic_os=sysv3 - ;; - dicos) - basic_machine=i686-pc - basic_os=dicos - ;; - djgpp) - basic_machine=i586-pc - basic_os=msdosdjgpp - ;; - ebmon29k) - basic_machine=a29k-amd - basic_os=ebmon - ;; - es1800 | OSE68k | ose68k | ose | OSE) - basic_machine=m68k-ericsson - basic_os=ose - ;; - gmicro) - basic_machine=tron-gmicro - basic_os=sysv - ;; - go32) - basic_machine=i386-pc - basic_os=go32 - ;; - h8300hms) - basic_machine=h8300-hitachi - basic_os=hms - ;; - h8300xray) - basic_machine=h8300-hitachi - basic_os=xray - ;; - h8500hms) - basic_machine=h8500-hitachi - basic_os=hms - ;; - harris) - basic_machine=m88k-harris - basic_os=sysv3 - ;; - hp300 | hp300hpux) - basic_machine=m68k-hp - basic_os=hpux - ;; - hp300bsd) - basic_machine=m68k-hp - basic_os=bsd - ;; - hppaosf) - basic_machine=hppa1.1-hp - basic_os=osf - ;; - hppro) - basic_machine=hppa1.1-hp - basic_os=proelf - ;; - i386mach) - basic_machine=i386-mach - basic_os=mach - ;; - isi68 | isi) - basic_machine=m68k-isi - basic_os=sysv - ;; - m68knommu) - basic_machine=m68k-unknown - basic_os=linux - ;; - magnum | m3230) - basic_machine=mips-mips - basic_os=sysv - ;; - merlin) - basic_machine=ns32k-utek - basic_os=sysv - ;; - mingw64) - basic_machine=x86_64-pc - basic_os=mingw64 - ;; - mingw32) - basic_machine=i686-pc - basic_os=mingw32 - ;; - mingw32ce) - basic_machine=arm-unknown - basic_os=mingw32ce - ;; - monitor) - basic_machine=m68k-rom68k - basic_os=coff - ;; - morphos) - basic_machine=powerpc-unknown - basic_os=morphos - ;; - moxiebox) - basic_machine=moxie-unknown - basic_os=moxiebox - ;; - msdos) - basic_machine=i386-pc - basic_os=msdos - ;; - msys) - basic_machine=i686-pc - basic_os=msys - ;; - mvs) - basic_machine=i370-ibm - basic_os=mvs - ;; - nacl) - basic_machine=le32-unknown - basic_os=nacl - ;; - ncr3000) - basic_machine=i486-ncr - basic_os=sysv4 - ;; - netbsd386) - basic_machine=i386-pc - basic_os=netbsd - ;; - netwinder) - basic_machine=armv4l-rebel - basic_os=linux - ;; - news | news700 | news800 | news900) - basic_machine=m68k-sony - basic_os=newsos - ;; - news1000) - basic_machine=m68030-sony - basic_os=newsos - ;; - necv70) - basic_machine=v70-nec - basic_os=sysv - ;; - nh3000) - basic_machine=m68k-harris - basic_os=cxux - ;; - nh[45]000) - basic_machine=m88k-harris - basic_os=cxux - ;; - nindy960) - basic_machine=i960-intel - basic_os=nindy - ;; - mon960) - basic_machine=i960-intel - basic_os=mon960 - ;; - nonstopux) - basic_machine=mips-compaq - basic_os=nonstopux - ;; - os400) - basic_machine=powerpc-ibm - basic_os=os400 - ;; - OSE68000 | ose68000) - basic_machine=m68000-ericsson - basic_os=ose - ;; - os68k) - basic_machine=m68k-none - basic_os=os68k - ;; - paragon) - basic_machine=i860-intel - basic_os=osf - ;; - parisc) - basic_machine=hppa-unknown - basic_os=linux - ;; - psp) - basic_machine=mipsallegrexel-sony - basic_os=psp - ;; - pw32) - basic_machine=i586-unknown - basic_os=pw32 - ;; - rdos | rdos64) - basic_machine=x86_64-pc - basic_os=rdos - ;; - rdos32) - basic_machine=i386-pc - basic_os=rdos - ;; - rom68k) - basic_machine=m68k-rom68k - basic_os=coff - ;; - sa29200) - basic_machine=a29k-amd - basic_os=udi - ;; - sei) - basic_machine=mips-sei - basic_os=seiux - ;; - sequent) - basic_machine=i386-sequent - basic_os= - ;; - sps7) - basic_machine=m68k-bull - basic_os=sysv2 - ;; - st2000) - basic_machine=m68k-tandem - basic_os= - ;; - stratus) - basic_machine=i860-stratus - basic_os=sysv4 - ;; - sun2) - basic_machine=m68000-sun - basic_os= - ;; - sun2os3) - basic_machine=m68000-sun - basic_os=sunos3 - ;; - sun2os4) - basic_machine=m68000-sun - basic_os=sunos4 - ;; - sun3) - basic_machine=m68k-sun - basic_os= - ;; - sun3os3) - basic_machine=m68k-sun - basic_os=sunos3 - ;; - sun3os4) - basic_machine=m68k-sun - basic_os=sunos4 - ;; - sun4) - basic_machine=sparc-sun - basic_os= - ;; - sun4os3) - basic_machine=sparc-sun - basic_os=sunos3 - ;; - sun4os4) - basic_machine=sparc-sun - basic_os=sunos4 - ;; - sun4sol2) - basic_machine=sparc-sun - basic_os=solaris2 - ;; - sun386 | sun386i | roadrunner) - basic_machine=i386-sun - basic_os= - ;; - sv1) - basic_machine=sv1-cray - basic_os=unicos - ;; - symmetry) - basic_machine=i386-sequent - basic_os=dynix - ;; - t3e) - basic_machine=alphaev5-cray - basic_os=unicos - ;; - t90) - basic_machine=t90-cray - basic_os=unicos - ;; - toad1) - basic_machine=pdp10-xkl - basic_os=tops20 - ;; - tpf) - basic_machine=s390x-ibm - basic_os=tpf - ;; - udi29k) - basic_machine=a29k-amd - basic_os=udi - ;; - ultra3) - basic_machine=a29k-nyu - basic_os=sym1 - ;; - v810 | necv810) - basic_machine=v810-nec - basic_os=none - ;; - vaxv) - basic_machine=vax-dec - basic_os=sysv - ;; - vms) - basic_machine=vax-dec - basic_os=vms - ;; - vsta) - basic_machine=i386-pc - basic_os=vsta - ;; - vxworks960) - basic_machine=i960-wrs - basic_os=vxworks - ;; - vxworks68) - basic_machine=m68k-wrs - basic_os=vxworks - ;; - vxworks29k) - basic_machine=a29k-wrs - basic_os=vxworks - ;; - xbox) - basic_machine=i686-pc - basic_os=mingw32 - ;; - ymp) - basic_machine=ymp-cray - basic_os=unicos - ;; - *) - basic_machine=$1 - basic_os= - ;; - esac - ;; +# Separate what the user gave into CPU-COMPANY and OS or KERNEL-OS (if any). +# Here we must recognize all the valid KERNEL-OS combinations. +maybe_os=`echo $1 | sed 's/^\(.*\)-\([^-]*-[^-]*\)$/\2/'` +case $maybe_os in + nto-qnx* | linux-gnu* | freebsd*-gnu* | storm-chaos* | os2-emx* | windows32-* | rtmk-nova*) + os=-$maybe_os + basic_machine=`echo $1 | sed 's/^\(.*\)-\([^-]*-[^-]*\)$/\1/'` + ;; + *) + basic_machine=`echo $1 | sed 's/-[^-]*$//'` + if [ $basic_machine != $1 ] + then os=`echo $1 | sed 's/.*-/-/'` + else os=; fi + ;; esac -# Decode 1-component or ad-hoc basic machines +### Let's recognize common machines as not being operating systems so +### that things like config.sub decstation-3100 work. We also +### recognize some manufacturers as not being operating systems, so we +### can provide default operating systems below. +case $os in + -sun*os*) + # Prevent following clause from handling this invalid input. + ;; + -dec* | -mips* | -sequent* | -encore* | -pc532* | -sgi* | -sony* | \ + -att* | -7300* | -3300* | -delta* | -motorola* | -sun[234]* | \ + -unicom* | -ibm* | -next | -hp | -isi* | -apollo | -altos* | \ + -convergent* | -ncr* | -news | -32* | -3600* | -3100* | -hitachi* |\ + -c[123]* | -convex* | -sun | -crds | -omron* | -dg | -ultra | -tti* | \ + -harris | -dolphin | -highlevel | -gould | -cbm | -ns | -masscomp | \ + -apple | -axis) + os= + basic_machine=$1 + ;; + -sim | -cisco | -oki | -wec | -winbond) + os= + basic_machine=$1 + ;; + -scout) + ;; + -wrs) + os=-vxworks + basic_machine=$1 + ;; + -chorusos*) + os=-chorusos + basic_machine=$1 + ;; + -chorusrdb) + os=-chorusrdb + basic_machine=$1 + ;; + -hiux*) + os=-hiuxwe2 + ;; + -sco5) + os=-sco3.2v5 + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -sco4) + os=-sco3.2v4 + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -sco3.2.[4-9]*) + os=`echo $os | sed -e 's/sco3.2./sco3.2v/'` + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -sco3.2v[4-9]*) + # Don't forget version if it is 3.2v4 or newer. + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -sco*) + os=-sco3.2v2 + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -udk*) + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -isc) + os=-isc2.2 + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -clix*) + basic_machine=clipper-intergraph + ;; + -isc*) + basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` + ;; + -lynx*) + os=-lynxos + ;; + -ptx*) + basic_machine=`echo $1 | sed -e 's/86-.*/86-sequent/'` + ;; + -windowsnt*) + os=`echo $os | sed -e 's/windowsnt/winnt/'` + ;; + -psos*) + os=-psos + ;; + -mint | -mint[0-9]*) + basic_machine=m68k-atari + os=-mint + ;; +esac + +# Decode aliases for certain CPU-COMPANY combinations. case $basic_machine in - # Here we handle the default manufacturer of certain CPU types. It is in - # some cases the only manufacturer, in others, it is the most popular. - w89k) - cpu=hppa1.1 - vendor=winbond - ;; - op50n) - cpu=hppa1.1 - vendor=oki - ;; - op60c) - cpu=hppa1.1 - vendor=oki - ;; - ibm*) - cpu=i370 - vendor=ibm - ;; - orion105) - cpu=clipper - vendor=highlevel - ;; - mac | mpw | mac-mpw) - cpu=m68k - vendor=apple - ;; - pmac | pmac-mpw) - cpu=powerpc - vendor=apple - ;; - - # Recognize the various machine names and aliases which stand - # for a CPU type and a company and sometimes even an OS. - 3b1 | 7300 | 7300-att | att-7300 | pc7300 | safari | unixpc) - cpu=m68000 - vendor=att - ;; - 3b*) - cpu=we32k - vendor=att - ;; - bluegene*) - cpu=powerpc - vendor=ibm - basic_os=cnk - ;; - decsystem10* | dec10*) - cpu=pdp10 - vendor=dec - basic_os=tops10 - ;; - decsystem20* | dec20*) - cpu=pdp10 - vendor=dec - basic_os=tops20 - ;; - delta | 3300 | motorola-3300 | motorola-delta \ - | 3300-motorola | delta-motorola) - cpu=m68k - vendor=motorola - ;; - dpx2*) - cpu=m68k - vendor=bull - basic_os=sysv3 - ;; - encore | umax | mmax) - cpu=ns32k - vendor=encore - ;; - elxsi) - cpu=elxsi - vendor=elxsi - basic_os=${basic_os:-bsd} - ;; - fx2800) - cpu=i860 - vendor=alliant - ;; - genix) - cpu=ns32k - vendor=ns - ;; - h3050r* | hiux*) - cpu=hppa1.1 - vendor=hitachi - basic_os=hiuxwe2 - ;; - hp3k9[0-9][0-9] | hp9[0-9][0-9]) - cpu=hppa1.0 - vendor=hp - ;; - hp9k2[0-9][0-9] | hp9k31[0-9]) - cpu=m68000 - vendor=hp - ;; - hp9k3[2-9][0-9]) - cpu=m68k - vendor=hp - ;; - hp9k6[0-9][0-9] | hp6[0-9][0-9]) - cpu=hppa1.0 - vendor=hp - ;; - hp9k7[0-79][0-9] | hp7[0-79][0-9]) - cpu=hppa1.1 - vendor=hp - ;; - hp9k78[0-9] | hp78[0-9]) - # FIXME: really hppa2.0-hp - cpu=hppa1.1 - vendor=hp - ;; - hp9k8[67]1 | hp8[67]1 | hp9k80[24] | hp80[24] | hp9k8[78]9 | hp8[78]9 | hp9k893 | hp893) - # FIXME: really hppa2.0-hp - cpu=hppa1.1 - vendor=hp - ;; - hp9k8[0-9][13679] | hp8[0-9][13679]) - cpu=hppa1.1 - vendor=hp - ;; - hp9k8[0-9][0-9] | hp8[0-9][0-9]) - cpu=hppa1.0 - vendor=hp - ;; - i*86v32) - cpu=`echo "$1" | sed -e 's/86.*/86/'` - vendor=pc - basic_os=sysv32 - ;; - i*86v4*) - cpu=`echo "$1" | sed -e 's/86.*/86/'` - vendor=pc - basic_os=sysv4 - ;; - i*86v) - cpu=`echo "$1" | sed -e 's/86.*/86/'` - vendor=pc - basic_os=sysv - ;; - i*86sol2) - cpu=`echo "$1" | sed -e 's/86.*/86/'` - vendor=pc - basic_os=solaris2 - ;; - j90 | j90-cray) - cpu=j90 - vendor=cray - basic_os=${basic_os:-unicos} - ;; - iris | iris4d) - cpu=mips - vendor=sgi - case $basic_os in - irix*) - ;; - *) - basic_os=irix4 - ;; - esac - ;; - miniframe) - cpu=m68000 - vendor=convergent - ;; - *mint | mint[0-9]* | *MiNT | *MiNT[0-9]*) - cpu=m68k - vendor=atari - basic_os=mint - ;; - news-3600 | risc-news) - cpu=mips - vendor=sony - basic_os=newsos - ;; - next | m*-next) - cpu=m68k - vendor=next - case $basic_os in - openstep*) - ;; - nextstep*) - ;; - ns2*) - basic_os=nextstep2 - ;; - *) - basic_os=nextstep3 - ;; - esac - ;; - np1) - cpu=np1 - vendor=gould - ;; - op50n-* | op60c-*) - cpu=hppa1.1 - vendor=oki - basic_os=proelf - ;; - pa-hitachi) - cpu=hppa1.1 - vendor=hitachi - basic_os=hiuxwe2 - ;; - pbd) - cpu=sparc - vendor=tti - ;; - pbb) - cpu=m68k - vendor=tti - ;; - pc532) - cpu=ns32k - vendor=pc532 - ;; - pn) - cpu=pn - vendor=gould - ;; - power) - cpu=power - vendor=ibm - ;; - ps2) - cpu=i386 - vendor=ibm - ;; - rm[46]00) - cpu=mips - vendor=siemens - ;; - rtpc | rtpc-*) - cpu=romp - vendor=ibm - ;; - sde) - cpu=mipsisa32 - vendor=sde - basic_os=${basic_os:-elf} - ;; - simso-wrs) - cpu=sparclite - vendor=wrs - basic_os=vxworks - ;; - tower | tower-32) - cpu=m68k - vendor=ncr - ;; - vpp*|vx|vx-*) - cpu=f301 - vendor=fujitsu - ;; - w65) - cpu=w65 - vendor=wdc - ;; - w89k-*) - cpu=hppa1.1 - vendor=winbond - basic_os=proelf - ;; - none) - cpu=none - vendor=none - ;; - leon|leon[3-9]) - cpu=sparc - vendor=$basic_machine - ;; - leon-*|leon[3-9]-*) - cpu=sparc - vendor=`echo "$basic_machine" | sed 's/-.*//'` - ;; - - *-*) - # shellcheck disable=SC2162 - saved_IFS=$IFS - IFS="-" read cpu vendor <&2 - exit 1 - ;; - esac - ;; -esac - -# Here we canonicalize certain aliases for manufacturers. -case $vendor in - digital*) - vendor=dec - ;; - commodore*) - vendor=cbm - ;; - *) - ;; -esac - -# Decode manufacturer-specific aliases for certain operating systems. - -if test x$basic_os != x -then - -# First recognize some ad-hoc cases, or perhaps split kernel-os, or else just -# set os. -case $basic_os in - gnu/linux*) - kernel=linux - os=`echo "$basic_os" | sed -e 's|gnu/linux|gnu|'` - ;; - os2-emx) - kernel=os2 - os=`echo "$basic_os" | sed -e 's|os2-emx|emx|'` - ;; - nto-qnx*) - kernel=nto - os=`echo "$basic_os" | sed -e 's|nto-qnx|qnx|'` - ;; - *-*) - # shellcheck disable=SC2162 - saved_IFS=$IFS - IFS="-" read kernel os <&2 + exit 1 + ;; + # Recognize the basic CPU types with company name. + 580-* \ + | a29k-* \ + | alpha-* | alphaev[4-8]-* | alphaev56-* | alphaev6[78]-* \ + | alpha64-* | alpha64ev[4-8]-* | alpha64ev56-* | alpha64ev6[78]-* \ + | alphapca5[67]-* | alpha64pca5[67]-* | arc-* \ + | arm-* | armbe-* | armle-* | armeb-* | armv*-* \ + | avr-* \ + | bs2000-* \ + | c[123]* | c30-* | [cjt]90-* | c4x-* | c54x-* \ + | clipper-* | cydra-* \ + | d10v-* | d30v-* | dlx-* \ + | elxsi-* \ + | f30[01]-* | f700-* | fr30-* | frv-* | fx80-* \ + | h8300-* | h8500-* \ + | hppa-* | hppa1.[01]-* | hppa2.0-* | hppa2.0[nw]-* | hppa64-* \ + | i*86-* | i860-* | i960-* | ia64-* \ + | ip2k-* \ + | m32r-* \ + | m68000-* | m680[012346]0-* | m68360-* | m683?2-* | m68k-* \ + | m88110-* | m88k-* | mcore-* \ + | mips-* | mipsbe-* | mipseb-* | mipsel-* | mipsle-* \ + | mips16-* \ + | mips64-* | mips64el-* \ + | mips64vr-* | mips64vrel-* \ + | mips64orion-* | mips64orionel-* \ + | mips64vr4100-* | mips64vr4100el-* \ + | mips64vr4300-* | mips64vr4300el-* \ + | mips64vr5000-* | mips64vr5000el-* \ + | mipsisa32-* | mipsisa32el-* \ + | mipsisa64-* | mipsisa64el-* \ + | mipsisa64sb1-* | mipsisa64sb1el-* \ + | mipsisa64sr71k-* | mipsisa64sr71kel-* \ + | mipstx39 | mipstx39el \ + | none-* | np1-* | ns16k-* | ns32k-* \ + | orion-* \ + | pdp10-* | pdp11-* | pj-* | pjl-* | pn-* | power-* \ + | powerpc-* | powerpc64-* | powerpc64le-* | powerpcle-* | ppcbe-* \ + | pyramid-* \ + | romp-* | rs6000-* \ + | sh-* | sh[1234]-* | sh3e-* | sh[34]eb-* | shbe-* \ + | shle-* | sh[1234]le-* | sh3ele-* | sh64-* | sh64le-* \ + | sparc-* | sparc64-* | sparc86x-* | sparclet-* | sparclite-* \ + | sparcv9-* | sparcv9b-* | strongarm-* | sv1-* | sx?-* \ + | tahoe-* | thumb-* | tic30-* | tic4x-* | tic54x-* | tic80-* | tron-* \ + | v850-* | v850e-* | vax-* \ + | we32k-* \ + | x86-* | x86_64-* | xps100-* | xscale-* | xstormy16-* \ + | xtensa-* \ + | ymp-* \ + | z8k-*) + ;; + # Recognize the various machine names and aliases which stand + # for a CPU type and a company and sometimes even an OS. 386bsd) - os=bsd - ;; - ctix* | uts*) - os=sysv - ;; - nova*) - os=rtmk-nova - ;; - ns2) - os=nextstep2 - ;; - # Preserve the version number of sinix5. - sinix5.*) - os=`echo "$os" | sed -e 's|sinix|sysv|'` - ;; - sinix*) - os=sysv4 - ;; - tpf*) - os=tpf - ;; - triton*) - os=sysv3 - ;; - oss*) - os=sysv3 - ;; - svr4*) - os=sysv4 - ;; - svr3) - os=sysv3 - ;; - sysvr4) - os=sysv4 - ;; - ose*) - os=ose - ;; - *mint | mint[0-9]* | *MiNT | MiNT[0-9]*) - os=mint - ;; - dicos*) - os=dicos - ;; - pikeos*) - # Until real need of OS specific support for - # particular features comes up, bare metal - # configurations are quite functional. - case $cpu in - arm*) - os=eabi + basic_machine=i386-unknown + os=-bsd + ;; + 3b1 | 7300 | 7300-att | att-7300 | pc7300 | safari | unixpc) + basic_machine=m68000-att + ;; + 3b*) + basic_machine=we32k-att + ;; + a29khif) + basic_machine=a29k-amd + os=-udi + ;; + adobe68k) + basic_machine=m68010-adobe + os=-scout + ;; + alliant | fx80) + basic_machine=fx80-alliant + ;; + altos | altos3068) + basic_machine=m68k-altos + ;; + am29k) + basic_machine=a29k-none + os=-bsd + ;; + amdahl) + basic_machine=580-amdahl + os=-sysv + ;; + amiga | amiga-*) + basic_machine=m68k-unknown + ;; + amigaos | amigados) + basic_machine=m68k-unknown + os=-amigaos + ;; + amigaunix | amix) + basic_machine=m68k-unknown + os=-sysv4 + ;; + apollo68) + basic_machine=m68k-apollo + os=-sysv + ;; + apollo68bsd) + basic_machine=m68k-apollo + os=-bsd + ;; + aux) + basic_machine=m68k-apple + os=-aux + ;; + balance) + basic_machine=ns32k-sequent + os=-dynix + ;; + c90) + basic_machine=c90-cray + os=-unicos + ;; + convex-c1) + basic_machine=c1-convex + os=-bsd + ;; + convex-c2) + basic_machine=c2-convex + os=-bsd + ;; + convex-c32) + basic_machine=c32-convex + os=-bsd + ;; + convex-c34) + basic_machine=c34-convex + os=-bsd + ;; + convex-c38) + basic_machine=c38-convex + os=-bsd + ;; + cray | j90) + basic_machine=j90-cray + os=-unicos + ;; + crds | unos) + basic_machine=m68k-crds + ;; + cris | cris-* | etrax*) + basic_machine=cris-axis + ;; + da30 | da30-*) + basic_machine=m68k-da30 + ;; + decstation | decstation-3100 | pmax | pmax-* | pmin | dec3100 | decstatn) + basic_machine=mips-dec + ;; + decsystem10* | dec10*) + basic_machine=pdp10-dec + os=-tops10 + ;; + decsystem20* | dec20*) + basic_machine=pdp10-dec + os=-tops20 + ;; + delta | 3300 | motorola-3300 | motorola-delta \ + | 3300-motorola | delta-motorola) + basic_machine=m68k-motorola + ;; + delta88) + basic_machine=m88k-motorola + os=-sysv3 + ;; + dpx20 | dpx20-*) + basic_machine=rs6000-bull + os=-bosx + ;; + dpx2* | dpx2*-bull) + basic_machine=m68k-bull + os=-sysv3 + ;; + ebmon29k) + basic_machine=a29k-amd + os=-ebmon + ;; + elxsi) + basic_machine=elxsi-elxsi + os=-bsd + ;; + encore | umax | mmax) + basic_machine=ns32k-encore + ;; + es1800 | OSE68k | ose68k | ose | OSE) + basic_machine=m68k-ericsson + os=-ose + ;; + fx2800) + basic_machine=i860-alliant + ;; + genix) + basic_machine=ns32k-ns + ;; + gmicro) + basic_machine=tron-gmicro + os=-sysv + ;; + go32) + basic_machine=i386-pc + os=-go32 + ;; + h3050r* | hiux*) + basic_machine=hppa1.1-hitachi + os=-hiuxwe2 + ;; + h8300hms) + basic_machine=h8300-hitachi + os=-hms + ;; + h8300xray) + basic_machine=h8300-hitachi + os=-xray + ;; + h8500hms) + basic_machine=h8500-hitachi + os=-hms + ;; + harris) + basic_machine=m88k-harris + os=-sysv3 + ;; + hp300-*) + basic_machine=m68k-hp + ;; + hp300bsd) + basic_machine=m68k-hp + os=-bsd + ;; + hp300hpux) + basic_machine=m68k-hp + os=-hpux + ;; + hp3k9[0-9][0-9] | hp9[0-9][0-9]) + basic_machine=hppa1.0-hp + ;; + hp9k2[0-9][0-9] | hp9k31[0-9]) + basic_machine=m68000-hp + ;; + hp9k3[2-9][0-9]) + basic_machine=m68k-hp + ;; + hp9k6[0-9][0-9] | hp6[0-9][0-9]) + basic_machine=hppa1.0-hp + ;; + hp9k7[0-79][0-9] | hp7[0-79][0-9]) + basic_machine=hppa1.1-hp + ;; + hp9k78[0-9] | hp78[0-9]) + # FIXME: really hppa2.0-hp + basic_machine=hppa1.1-hp + ;; + hp9k8[67]1 | hp8[67]1 | hp9k80[24] | hp80[24] | hp9k8[78]9 | hp8[78]9 | hp9k893 | hp893) + # FIXME: really hppa2.0-hp + basic_machine=hppa1.1-hp + ;; + hp9k8[0-9][13679] | hp8[0-9][13679]) + basic_machine=hppa1.1-hp + ;; + hp9k8[0-9][0-9] | hp8[0-9][0-9]) + basic_machine=hppa1.0-hp + ;; + hppa-next) + os=-nextstep3 + ;; + hppaosf) + basic_machine=hppa1.1-hp + os=-osf + ;; + hppro) + basic_machine=hppa1.1-hp + os=-proelf + ;; + i370-ibm* | ibm*) + basic_machine=i370-ibm + ;; +# I'm not sure what "Sysv32" means. Should this be sysv3.2? + i*86v32) + basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` + os=-sysv32 + ;; + i*86v4*) + basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` + os=-sysv4 + ;; + i*86v) + basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` + os=-sysv + ;; + i*86sol2) + basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` + os=-solaris2 + ;; + i386mach) + basic_machine=i386-mach + os=-mach + ;; + i386-vsta | vsta) + basic_machine=i386-unknown + os=-vsta + ;; + iris | iris4d) + basic_machine=mips-sgi + case $os in + -irix*) ;; *) - os=elf + os=-irix4 ;; esac ;; + isi68 | isi) + basic_machine=m68k-isi + os=-sysv + ;; + m88k-omron*) + basic_machine=m88k-omron + ;; + magnum | m3230) + basic_machine=mips-mips + os=-sysv + ;; + merlin) + basic_machine=ns32k-utek + os=-sysv + ;; + mingw32) + basic_machine=i386-pc + os=-mingw32 + ;; + miniframe) + basic_machine=m68000-convergent + ;; + *mint | -mint[0-9]* | *MiNT | *MiNT[0-9]*) + basic_machine=m68k-atari + os=-mint + ;; + mips3*-*) + basic_machine=`echo $basic_machine | sed -e 's/mips3/mips64/'` + ;; + mips3*) + basic_machine=`echo $basic_machine | sed -e 's/mips3/mips64/'`-unknown + ;; + mmix*) + basic_machine=mmix-knuth + os=-mmixware + ;; + monitor) + basic_machine=m68k-rom68k + os=-coff + ;; + morphos) + basic_machine=powerpc-unknown + os=-morphos + ;; + msdos) + basic_machine=i386-pc + os=-msdos + ;; + mvs) + basic_machine=i370-ibm + os=-mvs + ;; + ncr3000) + basic_machine=i486-ncr + os=-sysv4 + ;; + netbsd386) + basic_machine=i386-unknown + os=-netbsd + ;; + netwinder) + basic_machine=armv4l-rebel + os=-linux + ;; + news | news700 | news800 | news900) + basic_machine=m68k-sony + os=-newsos + ;; + news1000) + basic_machine=m68030-sony + os=-newsos + ;; + news-3600 | risc-news) + basic_machine=mips-sony + os=-newsos + ;; + necv70) + basic_machine=v70-nec + os=-sysv + ;; + next | m*-next ) + basic_machine=m68k-next + case $os in + -nextstep* ) + ;; + -ns2*) + os=-nextstep2 + ;; + *) + os=-nextstep3 + ;; + esac + ;; + nh3000) + basic_machine=m68k-harris + os=-cxux + ;; + nh[45]000) + basic_machine=m88k-harris + os=-cxux + ;; + nindy960) + basic_machine=i960-intel + os=-nindy + ;; + mon960) + basic_machine=i960-intel + os=-mon960 + ;; + nonstopux) + basic_machine=mips-compaq + os=-nonstopux + ;; + np1) + basic_machine=np1-gould + ;; + nsr-tandem) + basic_machine=nsr-tandem + ;; + op50n-* | op60c-*) + basic_machine=hppa1.1-oki + os=-proelf + ;; + or32 | or32-*) + basic_machine=or32-unknown + os=-coff + ;; + OSE68000 | ose68000) + basic_machine=m68000-ericsson + os=-ose + ;; + os68k) + basic_machine=m68k-none + os=-os68k + ;; + pa-hitachi) + basic_machine=hppa1.1-hitachi + os=-hiuxwe2 + ;; + paragon) + basic_machine=i860-intel + os=-osf + ;; + pbd) + basic_machine=sparc-tti + ;; + pbb) + basic_machine=m68k-tti + ;; + pc532 | pc532-*) + basic_machine=ns32k-pc532 + ;; + pentium | p5 | k5 | k6 | nexgen | viac3) + basic_machine=i586-pc + ;; + pentiumpro | p6 | 6x86 | athlon | athlon_*) + basic_machine=i686-pc + ;; + pentiumii | pentium2) + basic_machine=i686-pc + ;; + pentium-* | p5-* | k5-* | k6-* | nexgen-* | viac3-*) + basic_machine=i586-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + pentiumpro-* | p6-* | 6x86-* | athlon-*) + basic_machine=i686-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + pentiumii-* | pentium2-*) + basic_machine=i686-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + pn) + basic_machine=pn-gould + ;; + power) basic_machine=power-ibm + ;; + ppc) basic_machine=powerpc-unknown + ;; + ppc-*) basic_machine=powerpc-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + ppcle | powerpclittle | ppc-le | powerpc-little) + basic_machine=powerpcle-unknown + ;; + ppcle-* | powerpclittle-*) + basic_machine=powerpcle-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + ppc64) basic_machine=powerpc64-unknown + ;; + ppc64-*) basic_machine=powerpc64-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + ppc64le | powerpc64little | ppc64-le | powerpc64-little) + basic_machine=powerpc64le-unknown + ;; + ppc64le-* | powerpc64little-*) + basic_machine=powerpc64le-`echo $basic_machine | sed 's/^[^-]*-//'` + ;; + ps2) + basic_machine=i386-ibm + ;; + pw32) + basic_machine=i586-unknown + os=-pw32 + ;; + rom68k) + basic_machine=m68k-rom68k + os=-coff + ;; + rm[46]00) + basic_machine=mips-siemens + ;; + rtpc | rtpc-*) + basic_machine=romp-ibm + ;; + s390 | s390-*) + basic_machine=s390-ibm + ;; + s390x | s390x-*) + basic_machine=s390x-ibm + ;; + sa29200) + basic_machine=a29k-amd + os=-udi + ;; + sb1) + basic_machine=mipsisa64sb1-unknown + ;; + sb1el) + basic_machine=mipsisa64sb1el-unknown + ;; + sequent) + basic_machine=i386-sequent + ;; + sh) + basic_machine=sh-hitachi + os=-hms + ;; + sparclite-wrs | simso-wrs) + basic_machine=sparclite-wrs + os=-vxworks + ;; + sps7) + basic_machine=m68k-bull + os=-sysv2 + ;; + spur) + basic_machine=spur-unknown + ;; + st2000) + basic_machine=m68k-tandem + ;; + stratus) + basic_machine=i860-stratus + os=-sysv4 + ;; + sun2) + basic_machine=m68000-sun + ;; + sun2os3) + basic_machine=m68000-sun + os=-sunos3 + ;; + sun2os4) + basic_machine=m68000-sun + os=-sunos4 + ;; + sun3os3) + basic_machine=m68k-sun + os=-sunos3 + ;; + sun3os4) + basic_machine=m68k-sun + os=-sunos4 + ;; + sun4os3) + basic_machine=sparc-sun + os=-sunos3 + ;; + sun4os4) + basic_machine=sparc-sun + os=-sunos4 + ;; + sun4sol2) + basic_machine=sparc-sun + os=-solaris2 + ;; + sun3 | sun3-*) + basic_machine=m68k-sun + ;; + sun4) + basic_machine=sparc-sun + ;; + sun386 | sun386i | roadrunner) + basic_machine=i386-sun + ;; + sv1) + basic_machine=sv1-cray + os=-unicos + ;; + symmetry) + basic_machine=i386-sequent + os=-dynix + ;; + t3d) + basic_machine=alpha-cray + os=-unicos + ;; + t3e) + basic_machine=alphaev5-cray + os=-unicos + ;; + t90) + basic_machine=t90-cray + os=-unicos + ;; + tic4x | c4x*) + basic_machine=tic4x-unknown + os=-coff + ;; + tic54x | c54x*) + basic_machine=tic54x-unknown + os=-coff + ;; + tx39) + basic_machine=mipstx39-unknown + ;; + tx39el) + basic_machine=mipstx39el-unknown + ;; + toad1) + basic_machine=pdp10-xkl + os=-tops20 + ;; + tower | tower-32) + basic_machine=m68k-ncr + ;; + udi29k) + basic_machine=a29k-amd + os=-udi + ;; + ultra3) + basic_machine=a29k-nyu + os=-sym1 + ;; + v810 | necv810) + basic_machine=v810-nec + os=-none + ;; + vaxv) + basic_machine=vax-dec + os=-sysv + ;; + vms) + basic_machine=vax-dec + os=-vms + ;; + vpp*|vx|vx-*) + basic_machine=f301-fujitsu + ;; + vxworks960) + basic_machine=i960-wrs + os=-vxworks + ;; + vxworks68) + basic_machine=m68k-wrs + os=-vxworks + ;; + vxworks29k) + basic_machine=a29k-wrs + os=-vxworks + ;; + w65*) + basic_machine=w65-wdc + os=-none + ;; + w89k-*) + basic_machine=hppa1.1-winbond + os=-proelf + ;; + windows32) + basic_machine=i386-pc + os=-windows32-msvcrt + ;; + xps | xps100) + basic_machine=xps100-honeywell + ;; + ymp) + basic_machine=ymp-cray + os=-unicos + ;; + z8k-*-coff) + basic_machine=z8k-unknown + os=-sim + ;; + none) + basic_machine=none-none + os=-none + ;; + +# Here we handle the default manufacturer of certain CPU types. It is in +# some cases the only manufacturer, in others, it is the most popular. + w89k) + basic_machine=hppa1.1-winbond + ;; + op50n) + basic_machine=hppa1.1-oki + ;; + op60c) + basic_machine=hppa1.1-oki + ;; + romp) + basic_machine=romp-ibm + ;; + rs6000) + basic_machine=rs6000-ibm + ;; + vax) + basic_machine=vax-dec + ;; + pdp10) + # there are many clones, so DEC is not a safe bet + basic_machine=pdp10-unknown + ;; + pdp11) + basic_machine=pdp11-dec + ;; + we32k) + basic_machine=we32k-att + ;; + sh3 | sh4 | sh3eb | sh4eb | sh[1234]le | sh3ele) + basic_machine=sh-unknown + ;; + sh64) + basic_machine=sh64-unknown + ;; + sparc | sparcv9 | sparcv9b) + basic_machine=sparc-sun + ;; + cydra) + basic_machine=cydra-cydrome + ;; + orion) + basic_machine=orion-highlevel + ;; + orion105) + basic_machine=clipper-highlevel + ;; + mac | mpw | mac-mpw) + basic_machine=m68k-apple + ;; + pmac | pmac-mpw) + basic_machine=powerpc-apple + ;; + *-unknown) + # Make sure to match an already-canonicalized machine name. + ;; *) - # No normalization, but not necessarily accepted, that comes below. + echo Invalid configuration \`$1\': machine \`$basic_machine\' not recognized 1>&2 + exit 1 ;; esac +# Here we canonicalize certain aliases for manufacturers. +case $basic_machine in + *-digital*) + basic_machine=`echo $basic_machine | sed 's/digital.*/dec/'` + ;; + *-commodore*) + basic_machine=`echo $basic_machine | sed 's/commodore.*/cbm/'` + ;; + *) + ;; +esac + +# Decode manufacturer-specific aliases for certain operating systems. + +if [ x"$os" != x"" ] +then +case $os in + # First match some system type aliases + # that might get confused with valid system types. + # -solaris* is a basic system type, with this one exception. + -solaris1 | -solaris1.*) + os=`echo $os | sed -e 's|solaris1|sunos4|'` + ;; + -solaris) + os=-solaris2 + ;; + -svr4*) + os=-sysv4 + ;; + -unixware*) + os=-sysv4.2uw + ;; + -gnu/linux*) + os=`echo $os | sed -e 's|gnu/linux|linux-gnu|'` + ;; + # First accept the basic system types. + # The portable systems comes first. + # Each alternative MUST END IN A *, to match a version number. + # -sysv* is not here because it comes later, after sysvr4. + -gnu* | -bsd* | -mach* | -minix* | -genix* | -ultrix* | -irix* \ + | -*vms* | -sco* | -esix* | -isc* | -aix* | -sunos | -sunos[34]*\ + | -hpux* | -unos* | -osf* | -luna* | -dgux* | -solaris* | -sym* \ + | -amigaos* | -amigados* | -msdos* | -newsos* | -unicos* | -aof* \ + | -aos* \ + | -nindy* | -vxsim* | -vxworks* | -ebmon* | -hms* | -mvs* \ + | -clix* | -riscos* | -uniplus* | -iris* | -rtu* | -xenix* \ + | -hiux* | -386bsd* | -netbsd* | -openbsd* | -freebsd* | -riscix* \ + | -lynxos* | -bosx* | -nextstep* | -cxux* | -aout* | -elf* | -oabi* \ + | -ptx* | -coff* | -ecoff* | -winnt* | -domain* | -vsta* \ + | -udi* | -eabi* | -lites* | -ieee* | -go32* | -aux* \ + | -chorusos* | -chorusrdb* \ + | -cygwin* | -pe* | -psos* | -moss* | -proelf* | -rtems* \ + | -mingw32* | -linux-gnu* | -uxpv* | -beos* | -mpeix* | -udk* \ + | -interix* | -uwin* | -rhapsody* | -darwin* | -opened* \ + | -openstep* | -oskit* | -conix* | -pw32* | -nonstopux* \ + | -storm-chaos* | -tops10* | -tenex* | -tops20* | -its* \ + | -os2* | -vos* | -palmos* | -uclinux* | -nucleus* \ + | -morphos* | -superux* | -rtmk* | -rtmk-nova* | -windiss* | -powermax*) + # Remember, each alternative MUST END IN *, to match a version number. + ;; + -qnx*) + case $basic_machine in + x86-* | i*86-*) + ;; + *) + os=-nto$os + ;; + esac + ;; + -nto*) + os=-nto-qnx + ;; + -sim | -es1800* | -hms* | -xray | -os68k* | -none* | -v88r* \ + | -windows* | -osx | -abug | -netware* | -os9* | -beos* \ + | -macos* | -mpw* | -magic* | -mmixware* | -mon960* | -lnews*) + ;; + -mac*) + os=`echo $os | sed -e 's|mac|macos|'` + ;; + -linux*) + os=`echo $os | sed -e 's|linux|linux-gnu|'` + ;; + -sunos5*) + os=`echo $os | sed -e 's|sunos5|solaris2|'` + ;; + -sunos6*) + os=`echo $os | sed -e 's|sunos6|solaris3|'` + ;; + -opened*) + os=-openedition + ;; + -wince*) + os=-wince + ;; + -osfrose*) + os=-osfrose + ;; + -osf*) + os=-osf + ;; + -utek*) + os=-bsd + ;; + -dynix*) + os=-bsd + ;; + -acis*) + os=-aos + ;; + -atheos*) + os=-atheos + ;; + -386bsd) + os=-bsd + ;; + -ctix* | -uts*) + os=-sysv + ;; + -nova*) + os=-rtmk-nova + ;; + -ns2 ) + os=-nextstep2 + ;; + -nsk*) + os=-nsk + ;; + # Preserve the version number of sinix5. + -sinix5.*) + os=`echo $os | sed -e 's|sinix|sysv|'` + ;; + -sinix*) + os=-sysv4 + ;; + -triton*) + os=-sysv3 + ;; + -oss*) + os=-sysv3 + ;; + -svr4) + os=-sysv4 + ;; + -svr3) + os=-sysv3 + ;; + -sysvr4) + os=-sysv4 + ;; + # This must come after -sysvr4. + -sysv*) + ;; + -ose*) + os=-ose + ;; + -es1800*) + os=-ose + ;; + -xenix) + os=-xenix + ;; + -*mint | -mint[0-9]* | -*MiNT | -MiNT[0-9]*) + os=-mint + ;; + -none) + ;; + *) + # Get rid of the `-' at the beginning of $os. + os=`echo $os | sed 's/[^-]*-//'` + echo Invalid configuration \`$1\': system \`$os\' not recognized 1>&2 + exit 1 + ;; +esac else @@ -1528,361 +1246,223 @@ # system, and we'll never get to this point. -kernel= -case $cpu-$vendor in - score-*) - os=elf - ;; - spu-*) - os=elf - ;; +case $basic_machine in *-acorn) - os=riscix1.2 + os=-riscix1.2 ;; arm*-rebel) - kernel=linux - os=gnu + os=-linux ;; arm*-semi) - os=aout - ;; - c4x-* | tic4x-*) - os=coff - ;; - c8051-*) - os=elf - ;; - clipper-intergraph) - os=clix - ;; - hexagon-*) - os=elf - ;; - tic54x-*) - os=coff - ;; - tic55x-*) - os=coff - ;; - tic6x-*) - os=coff + os=-aout ;; # This must come before the *-dec entry. pdp10-*) - os=tops20 + os=-tops20 ;; pdp11-*) - os=none + os=-none ;; *-dec | vax-*) - os=ultrix4.2 + os=-ultrix4.2 ;; m68*-apollo) - os=domain + os=-domain ;; i386-sun) - os=sunos4.0.2 + os=-sunos4.0.2 ;; m68000-sun) - os=sunos3 + os=-sunos3 + # This also exists in the configure program, but was not the + # default. + # os=-sunos4 ;; m68*-cisco) - os=aout - ;; - mep-*) - os=elf + os=-aout ;; mips*-cisco) - os=elf + os=-elf ;; mips*-*) - os=elf + os=-elf ;; or32-*) - os=coff + os=-coff ;; *-tti) # must be before sparc entry or we get the wrong os. - os=sysv3 + os=-sysv3 ;; sparc-* | *-sun) - os=sunos4.1.1 - ;; - pru-*) - os=elf + os=-sunos4.1.1 ;; *-be) - os=beos + os=-beos ;; *-ibm) - os=aix - ;; - *-knuth) - os=mmixware + os=-aix ;; *-wec) - os=proelf + os=-proelf ;; *-winbond) - os=proelf + os=-proelf ;; *-oki) - os=proelf + os=-proelf ;; *-hp) - os=hpux + os=-hpux ;; *-hitachi) - os=hiux + os=-hiux ;; i860-* | *-att | *-ncr | *-altos | *-motorola | *-convergent) - os=sysv + os=-sysv ;; *-cbm) - os=amigaos + os=-amigaos ;; *-dg) - os=dgux + os=-dgux ;; *-dolphin) - os=sysv3 + os=-sysv3 ;; m68k-ccur) - os=rtu + os=-rtu ;; m88k-omron*) - os=luna + os=-luna + ;; + *-next ) + os=-nextstep + ;; + *-sequent) + os=-ptx + ;; + *-crds) + os=-unos + ;; + *-ns) + os=-genix + ;; + i370-*) + os=-mvs ;; *-next) - os=nextstep - ;; - *-sequent) - os=ptx - ;; - *-crds) - os=unos - ;; - *-ns) - os=genix - ;; - i370-*) - os=mvs + os=-nextstep3 ;; *-gould) - os=sysv + os=-sysv ;; *-highlevel) - os=bsd + os=-bsd ;; *-encore) - os=bsd + os=-bsd ;; *-sgi) - os=irix + os=-irix ;; *-siemens) - os=sysv4 + os=-sysv4 ;; *-masscomp) - os=rtu + os=-rtu ;; f30[01]-fujitsu | f700-fujitsu) - os=uxpv + os=-uxpv ;; *-rom68k) - os=coff + os=-coff ;; *-*bug) - os=coff + os=-coff ;; *-apple) - os=macos + os=-macos ;; *-atari*) - os=mint - ;; - *-wrs) - os=vxworks + os=-mint ;; *) - os=none + os=-none ;; esac - fi - -# Now, validate our (potentially fixed-up) OS. -case $os in - # Sometimes we do "kernel-libc", so those need to count as OSes. - musl* | newlib* | relibc* | uclibc*) - ;; - # Likewise for "kernel-abi" - eabi* | gnueabi*) - ;; - # VxWorks passes extra cpu info in the 4th filed. - simlinux | simwindows | spe) - ;; - # Now accept the basic system types. - # The portable systems comes first. - # Each alternative MUST end in a * to match a version number. - gnu* | android* | bsd* | mach* | minix* | genix* | ultrix* | irix* \ - | *vms* | esix* | aix* | cnk* | sunos | sunos[34]* \ - | hpux* | unos* | osf* | luna* | dgux* | auroraux* | solaris* \ - | sym* | plan9* | psp* | sim* | xray* | os68k* | v88r* \ - | hiux* | abug | nacl* | netware* | windows* \ - | os9* | macos* | osx* | ios* \ - | mpw* | magic* | mmixware* | mon960* | lnews* \ - | amigaos* | amigados* | msdos* | newsos* | unicos* | aof* \ - | aos* | aros* | cloudabi* | sortix* | twizzler* \ - | nindy* | vxsim* | vxworks* | ebmon* | hms* | mvs* \ - | clix* | riscos* | uniplus* | iris* | isc* | rtu* | xenix* \ - | mirbsd* | netbsd* | dicos* | openedition* | ose* \ - | bitrig* | openbsd* | secbsd* | solidbsd* | libertybsd* | os108* \ - | ekkobsd* | freebsd* | riscix* | lynxos* | os400* \ - | bosx* | nextstep* | cxux* | aout* | elf* | oabi* \ - | ptx* | coff* | ecoff* | winnt* | domain* | vsta* \ - | udi* | lites* | ieee* | go32* | aux* | hcos* \ - | chorusrdb* | cegcc* | glidix* | serenity* \ - | cygwin* | msys* | pe* | moss* | proelf* | rtems* \ - | midipix* | mingw32* | mingw64* | mint* \ - | uxpv* | beos* | mpeix* | udk* | moxiebox* \ - | interix* | uwin* | mks* | rhapsody* | darwin* \ - | openstep* | oskit* | conix* | pw32* | nonstopux* \ - | storm-chaos* | tops10* | tenex* | tops20* | its* \ - | os2* | vos* | palmos* | uclinux* | nucleus* | morphos* \ - | scout* | superux* | sysv* | rtmk* | tpf* | windiss* \ - | powermax* | dnix* | nx6 | nx7 | sei* | dragonfly* \ - | skyos* | haiku* | rdos* | toppers* | drops* | es* \ - | onefs* | tirtos* | phoenix* | fuchsia* | redox* | bme* \ - | midnightbsd* | amdhsa* | unleashed* | emscripten* | wasi* \ - | nsk* | powerunix* | genode* | zvmoe* | qnx* | emx* | zephyr* \ - | fiwix* ) - ;; - # This one is extra strict with allowed versions - sco3.2v2 | sco3.2v[4-9]* | sco5v6*) - # Don't forget version if it is 3.2v4 or newer. - ;; - none) - ;; - *) - echo Invalid configuration \`"$1"\': OS \`"$os"\' not recognized 1>&2 - exit 1 - ;; -esac - -# As a final step for OS-related things, validate the OS-kernel combination -# (given a valid OS), if there is a kernel. -case $kernel-$os in - linux-gnu* | linux-dietlibc* | linux-android* | linux-newlib* \ - | linux-musl* | linux-relibc* | linux-uclibc* ) - ;; - uclinux-uclibc* ) - ;; - -dietlibc* | -newlib* | -musl* | -relibc* | -uclibc* ) - # These are just libc implementations, not actual OSes, and thus - # require a kernel. - echo "Invalid configuration \`$1': libc \`$os' needs explicit kernel." 1>&2 - exit 1 - ;; - kfreebsd*-gnu* | kopensolaris*-gnu*) - ;; - vxworks-simlinux | vxworks-simwindows | vxworks-spe) - ;; - nto-qnx*) - ;; - os2-emx) - ;; - *-eabi* | *-gnueabi*) - ;; - -*) - # Blank kernel with real OS is always fine. - ;; - *-*) - echo "Invalid configuration \`$1': Kernel \`$kernel' not known to work with OS \`$os'." 1>&2 - exit 1 - ;; -esac # Here we handle the case where we know the os, and the CPU type, but not the # manufacturer. We pick the logical manufacturer. -case $vendor in - unknown) - case $cpu-$os in - *-riscix*) +vendor=unknown +case $basic_machine in + *-unknown) + case $os in + -riscix*) vendor=acorn ;; - *-sunos*) + -sunos*) vendor=sun ;; - *-cnk* | *-aix*) + -aix*) vendor=ibm ;; - *-beos*) + -beos*) vendor=be ;; - *-hpux*) + -hpux*) vendor=hp ;; - *-mpeix*) + -mpeix*) vendor=hp ;; - *-hiux*) + -hiux*) vendor=hitachi ;; - *-unos*) + -unos*) vendor=crds ;; - *-dgux*) + -dgux*) vendor=dg ;; - *-luna*) + -luna*) vendor=omron ;; - *-genix*) + -genix*) vendor=ns ;; - *-clix*) - vendor=intergraph - ;; - *-mvs* | *-opened*) + -mvs* | -opened*) vendor=ibm ;; - *-os400*) - vendor=ibm - ;; - s390-* | s390x-*) - vendor=ibm - ;; - *-ptx*) + -ptx*) vendor=sequent ;; - *-tpf*) - vendor=ibm - ;; - *-vxsim* | *-vxworks* | *-windiss*) + -vxsim* | -vxworks* | -windiss*) vendor=wrs ;; - *-aux*) + -aux*) vendor=apple ;; - *-hms*) + -hms*) vendor=hitachi ;; - *-mpw* | *-macos*) + -mpw* | -macos*) vendor=apple ;; - *-*mint | *-mint[0-9]* | *-*MiNT | *-MiNT[0-9]*) + -*mint | -mint[0-9]* | -*MiNT | -MiNT[0-9]*) vendor=atari ;; - *-vos*) + -vos*) vendor=stratus ;; esac + basic_machine=`echo $basic_machine | sed "s/unknown/$vendor/"` ;; esac -echo "$cpu-$vendor-${kernel:+$kernel-}$os" -exit +echo $basic_machine$os +exit 0 # Local variables: -# eval: (add-hook 'before-save-hook 'time-stamp) +# eval: (add-hook 'write-file-hooks 'time-stamp) # time-stamp-start: "timestamp='" # time-stamp-format: "%:y-%02m-%02d" Index: trunk/configure.ac =================================================================== --- trunk/configure.ac (revision 591) +++ trunk/configure.ac (revision 1) @@ -1,20 +1,41 @@ -dnl We want to override the standard _AC_INIT_PARSE_ARGS -dnl -AU_ALIAS([_AC_INIT_PARSE_ARGS], [SH_INIT_PARSE_ARGS], [], [silent]) -dnl AU_ALIAS([_AC_INIT_help], [SH_INIT_HELP]) - -AC_INIT([samhain],[4.5.3]) -AC_CONFIG_SRCDIR(src/samhain.c) - -AC_ARG_VAR([LIBS], [libraries to link against, e.g. -lintl]) +dnl We want to override the standard AC_INIT_PARSE_ARGS, +dnl which requires replacing AC_INIT() with its expanded +dnl content. +dnl +dnl include own macros +dnl +sinclude(acsite.m4)dnl +sinclude(./aclocal.m4)dnl + +dnl +dnl AC_INIT(samhain.c) +dnl +# Forbidden tokens and exceptions. +m4_pattern_forbid([^_?A[CHUM]_]) +m4_pattern_forbid([_AC_]) +m4_pattern_forbid([^LIBOBJS$], + [do not use LIBOBJS directly, use AC_LIBOBJ (see section `AC_LIBOBJ vs. LIBOBJS']) +# Actually reserved by M4sh. +m4_pattern_allow([^AS_FLAGS$]) +AS_INIT +dnl m4_ifval([$2], [_AC_INIT_PACKAGE($@)]) +_AC_INIT_DEFAULTS +SH_INIT_PARSE_ARGS +_AC_INIT_SRCDIR +SH_INIT_HELP +_AC_INIT_VERSION +_AC_INIT_CONFIG_LOG +_AC_INIT_PREPARE +_AC_INIT_NOTICE +_AC_INIT_COPYRIGHT +m4_ifval([$2], , [m4_ifval([$1], [AC_CONFIG_SRCDIR([$1])])])dnl + +AC_ARG_VAR([LIBS], + [libraries to link against, e.g. -lintl]) dnl dnl start dnl -dnl AM_INIT_AUTOMAKE -m4_pattern_allow([AC_DEFINE]) -AC_DEFINE([SAMHAIN], 1, [Application is samhain]) -AC_DEFINE_UNQUOTED([VERSION], [_("${PACKAGE_VERSION}")], [Current version] ) -AC_DEFINE_UNQUOTED([PACKAGE], [_("${PACKAGE_NAME}")], [Application name] ) +AM_INIT_AUTOMAKE(samhain, 2.1.1) AC_CANONICAL_HOST @@ -24,43 +45,22 @@ AC_PROG_CC -if test "$host" != "$build"; then - AC_CHECK_PROGS(BUILD_CC, gcc cc) -else - BUILD_CC=$CC -fi AC_PROG_CPP AC_PROG_INSTALL AC_PROG_LN_S AC_PROG_AWK -SH_PROG_LD AC_PATH_PROG(cmd_hostname,hostname) AC_SUBST(cmd_hostname) -AC_SUBST(BUILD_CC) - - -if test "x$GCC" = "xyes"; then - SH_GCC_VERSION -fi - -if test "x${gcc_VERSION_MAJOR}" != "x" -then - AC_MSG_CHECKING([for gcc compiler issues]) - if test ${gcc_VERSION_MAJOR} -ge 11 - then - dnmalloc_ok=no - AC_MSG_RESULT([dnmalloc does not work with gcc 11]) - else - dnmalloc_ok=yes - AC_MSG_RESULT([ok]) - fi -else - dnmalloc_ok=yes -fi - - -AC_CHECK_HEADERS([sys/ipc.h sys/sem.h sys/msg.h sys/uio.h fcntl.h]) - - -AC_MSG_CHECKING([for OS specific issues]) + +GCC_STACK_PROTECT_CC + +AC_HEADER_STDC +dnl +dnl first one is a dummy because of an autoconf bug +dnl (no HAVE_... for first one) +dnl +AC_CHECK_HEADERS([sys/ipc.h sys/msg.h sys/uio.h fcntl.h]) + + +AC_MSG_CHECKING([for host-specific issues]) mydebugflag=no myneedg3=no @@ -69,6 +69,4 @@ mynetbsd=no sh_use_lcaps="undef" -sh_use_pie=yes -enable_asm_ok=yes case "$host_os" in @@ -76,19 +74,15 @@ *linux*) sh_use_lcaps="yes" - AC_DEFINE([HOST_IS_LINUX], [1], [] ) - AC_DEFINE([HAVE_EXT2_IOCTLS], [1], [] ) - AC_MSG_RESULT([use ioctl to get e2fs flags]) + AC_DEFINE(HOST_IS_LINUX) + AC_DEFINE(HAVE_EXT2_IOCTLS) + AC_MSG_RESULT(LINUX use ioctl to get e2fs flags) case "$host_cpu" in i*86*) - AC_DEFINE([HOST_IS_I86LINUX], [1], [] ) - ;; - x86_64) - AC_DEFINE([HOST_IS_64LINUX], [1], [Define if host OS is 64bit Linux]) + AC_DEFINE(HOST_IS_I86LINUX) ;; *) ;; esac - LDFLAGS="${LDFLAGS} -Wl,--as-needed" - ;; + ;; *osf*) @@ -98,77 +92,46 @@ CFLAGS="$CFLAGS -O2 -assume noaligned_objects" myneedg3=yes - AC_MSG_RESULT([compiler needs assume noaligned_objects]) + AC_MSG_RESULT(OSF1 compiler needs assume noaligned_objects) else - AC_MSG_RESULT([none]) + AC_MSG_RESULT(none) fi ;; *cygwin*) - AC_DEFINE([HOST_IS_CYGWIN], [1], [] ) - AC_DEFINE([USE_REGISTRY_CHECK], 1, [Define for registry check]) - dnmalloc_ok=no - enable_asm_ok=no - AC_MSG_RESULT([no trusted paths, no dnmalloc. no asm optimize]) + AC_DEFINE(HOST_IS_CYGWIN) + AC_MSG_RESULT(CYGWIN do not check for trusted paths) ;; - *darwin*|*apple*) - AC_DEFINE([HOST_IS_DARWIN], [1], [] ) - dnmalloc_ok=no - AC_MSG_RESULT([check resource forks, no dnmalloc]) + *darwin*) + AC_DEFINE(HOST_IS_DARWIN) + AC_MSG_RESULT(DARWIN check resource forks) ;; - *freebsd7*) - AC_DEFINE([HOST_IS_FREEBSD], [1], [] ) + *freebsd*) + AC_DEFINE(HOST_IS_FREEBSD) selectconfig=freebsd - case "$host_cpu" in - amd64|x86_64) - sh_use_pie=no - dnmalloc_ok=no - AC_MSG_RESULT([no dnmalloc and broken compiler toolchain]) - ;; - *) - AC_MSG_RESULT([none]) - ;; - esac - ;; - - *freebsd*) - AC_DEFINE([HOST_IS_FREEBSD], [1], [] ) - selectconfig=freebsd - case "$host_cpu" in - amd64|x86_64) - dnmalloc_ok=no - AC_MSG_RESULT([no dnmalloc]) - ;; - *) - AC_MSG_RESULT([none]) - ;; - esac - AC_MSG_RESULT([none]) + AC_MSG_RESULT(none) ;; *openbsd*) - AC_DEFINE([HOST_IS_OPENBSD], 1, [Define if host OS is OPENBSD]) selectconfig=freebsd - dnmalloc_ok=no - AC_MSG_RESULT([dnmalloc does not work with pthreads]) + AC_MSG_RESULT(none) ;; *netbsd*) mynetbsd=yes - selectconfig=netbsd - AC_MSG_RESULT([bug with libresolve]) + AC_MSG_RESULT(NETBSD bug with libresolve) ;; *solaris*) selectconfig=solaris - AC_DEFINE([HOST_IS_SOLARIS], [1], [] ) + AC_DEFINE(HOST_IS_SOLARIS) case "$host_cpu" in i*86) - AC_DEFINE([HOST_IS_I86SOLARIS], [1], [] ) - AC_MSG_RESULT([vsnprintf prototype]) + AC_DEFINE(HOST_IS_I86SOLARIS) + AC_MSG_RESULT(SOLARIS I86 vsnprintf prototype) ;; *) - AC_MSG_RESULT([none]) + AC_MSG_RESULT(none) ;; esac @@ -190,10 +153,10 @@ *sun*) selectconfig=solaris - AC_DEFINE([HOST_IS_SOLARIS], [1], []) - AC_MSG_RESULT([none]) + AC_DEFINE(HOST_IS_SOLARIS) + AC_MSG_RESULT(none) ;; *aix*) - AC_DEFINE([HOST_IS_AIX], [1], [aix]) + AC_DEFINE(HOST_IS_AIX) selectconfig=aix5.2.0 uid_cast="unsigned long" @@ -208,19 +171,19 @@ CFLAGS="$CFLAGS -qstrict" fi - AC_MSG_RESULT([AIX size_t in the accept call and optimize O3 qstrict]) + AC_MSG_RESULT(AIX size_t in the accept call and optimize O3 qstrict) else - AC_MSG_RESULT([AIX size_t in the accept call]) + AC_MSG_RESULT(AIX size_t in the accept call) fi ;; *hpux*) - AC_MSG_RESULT([HPUX need _XOPEN_SOURCE_EXTENDED for h_errno]) - AC_DEFINE([HOST_IS_HPUX], [1], [hpux]) + AC_MSG_RESULT(HPUX has not always h_errno defined) + AC_DEFINE(HOST_IS_HPUX) if test "x$GCC" != "xyes"; then if test ! -z "`echo "$CFLAGS" | grep "\-g" 2> /dev/null`" ; then CFLAGS=`echo $CFLAGS | sed 's%\-g%%' ` fi - if test -z "`echo "$CFLAGS" | grep "\+O2" 2> /dev/null`"; then - CFLAGS="$CFLAGS +O2" + if test -z "`echo "$CFLAGS" | grep "\-fast" 2> /dev/null`"; then + CFLAGS="$CFLAGS -fast" fi fi @@ -228,16 +191,15 @@ *ultrix*) - AC_MSG_RESULT([ULTRIX getcwd uses popen]) - AC_DEFINE([HAVE_BROKEN_GETCWD], [1], [bad implementation of getcwd]) + AC_MSG_RESULT(ULTRIX getcwd uses popen) + AC_DEFINE(HAVE_BROKEN_GETCWD) ;; *) - AC_MSG_RESULT([none]) + AC_MSG_RESULT(none) ;; esac AC_SUBST(selectconfig) -AC_DEFINE_UNQUOTED([UID_CAST], [${uid_cast}], [basic type to which we can cast a uid]) - +AC_DEFINE_UNQUOTED(UID_CAST, ${uid_cast}) @@ -250,25 +212,15 @@ AC_HEADER_DIRENT AC_HEADER_MAJOR -AC_CHECK_HEADERS([sys/time.h]) +AC_HEADER_TIME dnl used in minilzo.c AC_HEADER_STAT - -AC_CHECK_DECLS([sys_siglist], [], [], -[#include -/* NetBSD declares sys_siglist in unistd.h. */ -#ifdef HAVE_UNISTD_H -# include -#endif -]) - -AC_CHECK_HEADERS(stddef.h libgen.h sched.h malloc.h sys/uio.h \ - sys/mman.h sys/param.h sys/inotify.h sys/sysmacros.h \ - sys/vfs.h mntent.h \ - sys/select.h sys/socket.h netinet/in.h ifaddrs.h \ - regex.h glob.h fnmatch.h \ - linux/ext2_fs.h linux/fs.h ext2fs/ext2_fs.h asm/segment.h \ - elf.h linux/elf.h auparse.h \ - paths.h arpa/nameser.h arpa/nameser_compat.h \ - rpc/rpcent.h rpc/rpc.h sys/statvfs.h, +AC_DECL_SYS_SIGLIST + +AC_CHECK_HEADERS(stddef.h libgen.h sched.h \ + sys/vfs.h \ + sys/select.h sys/socket.h netinet/in.h \ + regex.h glob.h \ + linux/ext2_fs.h ext2fs/ext2_fs.h \ + paths.h arpa/nameser.h arpa/nameser_compat.h, [], [], @@ -279,90 +231,20 @@ AC_CHECK_HEADER(utmpx.h, sh_utmpx="yes", sh_utmpx="no") if test "x$sh_utmpx" = "xyes"; then - AC_DEFINE([HAVE_UTMPX_H], [1], [whether we have utmpx.h]) - AC_EGREP_HEADER(ut_host, utmpx.h, AC_DEFINE([HAVE_UTHOST], [1], [] )) - AC_EGREP_HEADER(ut_addr, utmpx.h, AC_DEFINE([HAVE_UTADDR], [1], [] )) - AC_EGREP_HEADER(ut_addr_v6, utmpx.h, AC_DEFINE([HAVE_UTADDR_V6], [1], [] )) - AC_EGREP_HEADER(ut_xtime,utmpx.h, AC_DEFINE([HAVE_UTXTIME], [1], [] )) - AC_EGREP_HEADER(ut_type, utmpx.h, AC_DEFINE([HAVE_UTTYPE], [1], [] )) + if cat "/usr/include/utmpx.h" 2>&5 | + egrep "WTMPX_FILE" >/dev/null 2>&1; then + AC_DEFINE(HAVE_UTMPX_H) + AC_EGREP_HEADER(ut_host, utmpx.h, AC_DEFINE(HAVE_UTHOST) ) + AC_EGREP_HEADER(ut_addr, utmpx.h, AC_DEFINE(HAVE_UTADDR) ) + AC_EGREP_HEADER(ut_xtime,utmpx.h, AC_DEFINE(HAVE_UTXTIME) ) + AC_EGREP_HEADER(ut_type, utmpx.h, AC_DEFINE(HAVE_UTTYPE) ) + else + AC_EGREP_HEADER(ut_addr, utmp.h, AC_DEFINE(HAVE_UTADDR) ) + AC_EGREP_HEADER(ut_host, utmp.h, AC_DEFINE(HAVE_UTHOST) ) + AC_EGREP_HEADER(ut_type, utmp.h, AC_DEFINE(HAVE_UTTYPE) ) + fi else - AC_EGREP_HEADER(ut_addr, utmp.h, AC_DEFINE([HAVE_UTADDR], [1], [] )) - AC_EGREP_HEADER(ut_host, utmp.h, AC_DEFINE([HAVE_UTHOST], [1], [] )) - AC_EGREP_HEADER(ut_type, utmp.h, AC_DEFINE([HAVE_UTTYPE], [1], [] )) -fi - -dnl -dnl figure out where acct.h lives -dnl and whether fields are int/comp_t -dnl -dnl GNU Accounting Utilities -dnl Copyright (C) 1993, 1996, 1997, 2003, 2005 Free Software Foundation, Inc. -dnl The GNU Accounting Utilities are free software; you can redistribute -dnl them and/or modify them under the terms of the GNU General Public -dnl License as published by the Free Software Foundation; either version -dnl 2, or (at your option) any later version. -dnl -AC_CHECK_HEADER(sys/acct.h, - AC_DEFINE(HAVE_SYS_ACCT_H, , - [Define if you have the header file.]) - AC_EGREP_HEADER(ac_utime, sys/acct.h, - AC_DEFINE(HAVE_ACUTIME, , - [Define if has the AC_UTIME field.]) - AC_EGREP_HEADER(comp_t.*ac_utime, sys/acct.h, - AC_DEFINE(ACUTIME_COMPT, , - [Define if 's AC_UTIME field is a COMP_T.])) - ) - AC_EGREP_HEADER(ac_stime, sys/acct.h, - AC_DEFINE(HAVE_ACSTIME, , - [Define if has the AC_STIME field.]) - AC_EGREP_HEADER(comp_t.*ac_stime, sys/acct.h, - AC_DEFINE(ACSTIME_COMPT, , - [Define if 's AC_STIME field is a COMP_T.])) - ) - AC_EGREP_HEADER(ac_etime, sys/acct.h, - AC_DEFINE(HAVE_ACETIME, , - [Define if has the AC_ETIME field.]) - AC_EGREP_HEADER(comp_t.*ac_etime, sys/acct.h, - AC_DEFINE(ACETIME_COMPT, , - [Define if 's AC_ETIME field is a COMP_T.])) - ) - AC_EGREP_HEADER(ac_io, sys/acct.h, - AC_DEFINE(HAVE_ACIO, , - [Define if has the AC_IO field.]) - AC_EGREP_HEADER(comp_t.*ac_io, sys/acct.h, - AC_DEFINE(ACIO_COMPT, , - [Define if 's AC_IO field is a COMP_T.])) - ) - AC_EGREP_HEADER(ac_mem, sys/acct.h, - AC_DEFINE(HAVE_ACMEM, , - [Define if has the AC_MEM field.]) - AC_EGREP_HEADER(comp_t.*ac_mem, sys/acct.h, - AC_DEFINE(ACMEM_COMPT, , - [Define if 's AC_MEM field is a COMP_T.])) - ) - AC_EGREP_HEADER(ac_minflt, sys/acct.h, - AC_EGREP_HEADER(ac_majflt, sys/acct.h, - AC_EGREP_HEADER(ac_swaps, sys/acct.h, - AC_DEFINE(HAVE_PAGING, , - [Define if has the AC_MINFLT, AC_MAJFLT and AC_SWAPS fields.]) - AC_EGREP_HEADER(comp_t.*ac_minflt, sys/acct.h, - AC_DEFINE(ACMINFLT_COMPT, , - [Define if 's AC_MINFLT field is a COMP_T.])) - AC_EGREP_HEADER(comp_t.*ac_mayflt, sys/acct.h, - AC_DEFINE(ACMAJFLT_COMPT, , - [Define if 's AC_MAJFLT field is a COMP_T.])) - AC_EGREP_HEADER(comp_t.*ac_swaps, sys/acct.h, - AC_DEFINE(ACSWAPS_COMPT, , - [Define if 's AC_SWAPS field is a COMP_T.])) - ) - ) - ) - AC_EGREP_HEADER(comp_t, sys/acct.h, AC_DEFINE(HAVE_COMP_T, , - [Define if uses the COMP_T type.])) - AC_EGREP_HEADER([struct acct_v3], sys/acct.h, AC_DEFINE(HAVE_ACCT_V3, , - [Define if has struct acct_v3.])) - AC_EGREP_HEADER([struct acctv2], sys/acct.h, AC_DEFINE(HAVE_ACCTV2, , - [Define if has struct acctv2.])) - - ) + AC_EGREP_HEADER(ut_host, utmp.h, AC_DEFINE(HAVE_UTHOST) ) + AC_EGREP_HEADER(ut_type, utmp.h, AC_DEFINE(HAVE_UTTYPE) ) +fi dnl need to check because AIX 4.2 does not have it @@ -397,67 +279,45 @@ dnl ***************************************** AC_FUNC_STRFTIME -AC_CHECK_FUNCS(memcmp memcpy memmove memset getpwent endpwent fpurge \ - explicit_memset explicit_bzero \ +AC_CHECK_FUNCS(memcmp memcpy memmove memset getpwent endpwent \ gettimeofday strlcat strlcpy strstr strchr strerror strsignal \ seteuid setreuid setresuid lstat getwd getcwd ptrace \ usleep setpriority getpeereid nanosleep \ - strptime basename sched_yield hasmntopt \ + strptime basename sched_yield \ inet_aton gethostbyname setutent setrlimit gethostname uname \ - initgroups getpagesize getutxent \ - ttyname fchmod writev mmap tzset \ - getsid getpriority getpgid statvfs \ - strerror_r getgrgid_r getpwnam_r getpwuid_r \ - gmtime_r localtime_r rand_r readdir_r strtok_r \ - mincore posix_fadvise inotify_init1 scandir -) -AC_CHECK_FUNC([statfs], [ - AC_DEFINE([HAVE_STATFS], [1], [have statfs func]) - statfs="yes" - ], [statfs="no"]) + initgroups getpagesize \ + ttyname fchmod +) +AC_CHECK_FUNC(statfs, AC_DEFINE(HAVE_STATFS) statfs="yes", statfs="no") SL_CHECK_VA_COPY AC_CHECK_FUNCS(vsnprintf, [SL_CHECK_VSNPRINTF]) AC_CHECK_MLOCK -SH_STRFTIME_Z AC_MSG_CHECKING(how to get filesystem type) fstype=no # The order of these tests is important. -AC_PREPROC_IFELSE([AC_LANG_SOURCE([[#include -#include -]])], [ - AC_DEFINE([FSTYPE_STATVFS], [1], [statvfs]) - fstype=SVR4]) - +AC_TRY_CPP([#include +#include ], AC_DEFINE(FSTYPE_STATVFS) fstype=SVR4) if test $fstype = no; then -AC_PREPROC_IFELSE([AC_LANG_SOURCE([[#include -#include -]])], [ - AC_DEFINE([FSTYPE_USG_STATFS], [1], [usg]) - fstype=SVR3]) -fi - +AC_TRY_CPP([#include +#include ], AC_DEFINE(FSTYPE_USG_STATFS) fstype=SVR3) +fi if test $fstype = no; then -AC_PREPROC_IFELSE([AC_LANG_SOURCE([[#include -#include -]])], AC_DEFINE([FSTYPE_AIX_STATFS], [1], [aix]) fstype=AIX) -fi - +AC_TRY_CPP([#include +#include ], AC_DEFINE(FSTYPE_AIX_STATFS) fstype=AIX) +fi if test $fstype = no; then -AC_PREPROC_IFELSE([AC_LANG_SOURCE([[#include -]])], AC_DEFINE([FSTYPE_MNTENT], [1], [mtent]) fstype=4.3BSD) -fi - +AC_TRY_CPP([#include ], AC_DEFINE(FSTYPE_MNTENT) fstype=4.3BSD) +fi if test $fstype = no; then -AC_EGREP_HEADER(f_type;, sys/mount.h, AC_DEFINE([FSTYPE_STATFS], [1], [statfs]) fstype=4.4BSD/OSF) -fi - +AC_EGREP_HEADER(f_type;, sys/mount.h, AC_DEFINE(FSTYPE_STATFS) fstype=4.4BSD/OSF) +fi if test $fstype = no; then -AC_PREPROC_IFELSE([AC_LANG_SOURCE([[#include -#include -]])], AC_DEFINE([FSTYPE_GETMNT], [1], [getmnt]) fstype=Ultrix) +AC_TRY_CPP([#include +#include ], AC_DEFINE(FSTYPE_GETMNT) fstype=Ultrix) fi AC_MSG_RESULT($fstype) sh_libsocket= + dnl Solaris needs -lsocket and -lnsl. Unisys system includes dnl gethostbyname in libsocket but needs libnsl for socket. @@ -494,18 +354,4 @@ ]) -AC_CHECK_FUNCS( getnameinfo getaddrinfo ) - - -sh_auparse=no - -if test "x$ac_cv_header_auparse_h" = "xyes" -then - AC_CHECK_LIB(auparse, auparse_find_field, [ - LIBS="$LIBS -lauparse" - sh_auparse=yes - AC_DEFINE([HAVE_AUPARSE_LIB], [1], [Define if you have the auparse lib]) - ]) -fi - dnl arguments for accept @@ -519,6 +365,5 @@ AC_MSG_CHECKING(for socklen_t) -AC_COMPILE_IFELSE( -[AC_LANG_PROGRAM([[ +AC_TRY_COMPILE([ #ifdef HAVE_SYS_TYPES_H #include @@ -528,12 +373,9 @@ #endif socklen_t x; -]], [[]])], -[ +], [],[ AC_MSG_RESULT(yes) AC_DEFINE_UNQUOTED([ACCEPT_TYPE_ARG3],[socklen_t], [type of arg3 of accept]) - AC_DEFINE([HAVE_SOCKLEN_T], 1, [Define if you have socklen_t]) ],[ - AC_COMPILE_IFELSE( - [AC_LANG_PROGRAM([[ + AC_TRY_COMPILE([ #ifdef HAVE_SYS_TYPES_H #include @@ -543,6 +385,5 @@ #endif int accept (int, struct sockaddr *, size_t *); - ]],[[]])], - [ + ],[],[ AC_MSG_RESULT(size_t) AC_DEFINE_UNQUOTED([ACCEPT_TYPE_ARG3],[size_t], [type of arg3 of accept]) @@ -554,24 +395,4 @@ ]) -dnl ***************************************** -dnl checks for extended attribute or ACL -dnl support -dnl ***************************************** - -AC_ARG_ENABLE([selinux], - [AS_HELP_STRING([--enable-selinux], [support checking selinux attributes])], - [], - [enable_selinux=check]) -if test "x$enable_selinux" != xno; then - sh_CHECK_XATTR -fi - -AC_ARG_ENABLE([posix-acl], - [AS_HELP_STRING([--enable-posix-acl], [support checking posix acls])], - [], - [enable_posix_acl=check]) -if test "x$enable_posix_acl" != xno; then - sh_CHECK_POSIX_ACL -fi dnl ***************************************** @@ -579,14 +400,10 @@ dnl ***************************************** -AC_TYPE_LONG_DOUBLE +AC_C_LONG_DOUBLE SH_CHECK_TYPEDEF(long long, HAVE_LONG_LONG) -SH_CHECK_TYPEDEF(uint16_t, HAVE_UINT16_T) -SH_CHECK_TYPEDEF(uint32_t, HAVE_UINT32_T) -SH_CHECK_TYPEDEF(uint64_t, HAVE_UINT64_T) if test "$sh_HAVE_LONG_LONG" = "yes"; then AC_CHECK_SIZEOF(unsigned long long, 4) - sh_sizeof_unsigned_long_long=`echo "$ac_cv_sizeof_unsigned_long_long" | sed 's%[^0-9]%%g'` - if test "$sh_sizeof_unsigned_long_long" = "8"; then - AC_DEFINE([HAVE_LONG_LONG_64], [1], [Define if you have 64bit long long]) + if test "$ac_cv_sizeof_unsigned_long_long" = "8"; then + AC_DEFINE(HAVE_LONG_LONG_64, 1, [Define if you have 64bit long long]) fi fi @@ -598,29 +415,27 @@ AC_CHECK_SIZEOF(unsigned long, 4) -AC_CHECK_SIZEOF(unsigned int, 4) +AC_CHECK_SIZEOF(unsigned int , 4) AC_CHECK_SIZEOF(unsigned short, 2) -sh_sizeof_unsigned_long=`echo "$ac_cv_sizeof_unsigned_long" | sed 's%[^0-9]%%g'` -if test "$sh_sizeof_unsigned_long" = "4"; then - AC_DEFINE([HAVE_LONG_32], [1], [long32]) -fi -if test "$sh_sizeof_unsigned_long" = "8"; then - AC_DEFINE([HAVE_LONG_64], [1], [long64]) -fi -sh_sizeof_unsigned_int=`echo "$ac_cv_sizeof_unsigned_int" | sed 's%[^0-9]%%g'` -if test "$sh_sizeof_unsigned_int" = "4"; then - AC_DEFINE([HAVE_INT_32], [1], [int32]) -fi -sh_sizeof_unsigned_short=`echo "$ac_cv_sizeof_unsigned_short" | sed 's%[^0-9]%%g'` -if test "$sh_sizeof_unsigned_short" = "4"; then - AC_DEFINE([HAVE_SHORT_32], [1], [short32]) -fi - -dnl -dnl check for 64 bit programming environment -dnl -SAMHAIN_64 - +if test "$ac_cv_sizeof_unsigned_long" = "4"; then + AC_DEFINE(HAVE_LONG_32) +fi +if test "$ac_cv_sizeof_unsigned_long" = "8"; then + AC_DEFINE(HAVE_LONG_64) +fi +if test "$ac_cv_sizeof_unsigned_int" = "4"; then + AC_DEFINE(HAVE_INT_32) +fi + +dnl +dnl For Alpha +dnl +if test "$ac_cv_sizeof_unsigned_int_" = "4"; then + AC_DEFINE(HAVE_INT_32) +fi +if test "$ac_cv_sizeof_unsigned_short" = "4"; then + AC_DEFINE(HAVE_SHORT_32) +fi dnl ***************************************** @@ -635,28 +450,19 @@ AC_MSG_CHECKING(whether struct stat has a st_flags field) AC_CACHE_VAL(e2fsprogs_cv_struct_st_flags, - AC_COMPILE_IFELSE( - [AC_LANG_PROGRAM([[ -#include -]], - [[struct stat stat; stat.st_flags = 0;]])], + AC_TRY_COMPILE([#include ], + [struct stat stat; stat.st_flags = 0;], [e2fsprogs_cv_struct_st_flags=yes], - [e2fsprogs_cv_struct_st_flags=no] - )) + [e2fsprogs_cv_struct_st_flags=no])) AC_MSG_RESULT($e2fsprogs_cv_struct_st_flags) - if test "$e2fsprogs_cv_struct_st_flags" = yes; then AC_MSG_CHECKING(whether st_flags field is useful) AC_CACHE_VAL(e2fsprogs_cv_struct_st_flags_immut, - AC_COMPILE_IFELSE( - [AC_LANG_PROGRAM([[ -#include -]], - [[struct stat stat; stat.st_flags |= UF_IMMUTABLE;]])], + AC_TRY_COMPILE([#include ], + [struct stat stat; stat.st_flags |= UF_IMMUTABLE;], [e2fsprogs_cv_struct_st_flags_immut=yes], - [e2fsprogs_cv_struct_st_flags_immut=no] - )) + [e2fsprogs_cv_struct_st_flags_immut=no])) AC_MSG_RESULT($e2fsprogs_cv_struct_st_flags_immut) if test "$e2fsprogs_cv_struct_st_flags_immut" = yes; then - AC_DEFINE([HAVE_STAT_FLAGS], [1], [Have stat flags]) + AC_DEFINE(HAVE_STAT_FLAGS) fi fi @@ -666,77 +472,59 @@ dnl AC_MSG_CHECKING(for struct cmsgcred) -AC_COMPILE_IFELSE( - [AC_LANG_PROGRAM([[ +AC_TRY_COMPILE([ #include #include -]],[[ +],[ struct cmsgcred cred; cred.cmcred_pid = 0; -]])],sh_have_struct_cmsgcred=yes,sh_have_struct_cmsgcred=no) +],sh_have_struct_cmsgcred=yes,sh_have_struct_cmsgcred=no) AC_MSG_RESULT($sh_have_struct_cmsgcred) if test x$sh_have_struct_cmsgcred = xyes; then - AC_DEFINE([HAVE_STRUCT_CMSGCRED], [1], [Have cmsgcred structure]) + AC_DEFINE(HAVE_STRUCT_CMSGCRED,1,[Have cmsgcred structure]) fi AC_MSG_CHECKING(for struct fcred) -AC_COMPILE_IFELSE( - [AC_LANG_PROGRAM([[ +AC_TRY_COMPILE([ #include #include #include -]],[[ +],[ struct fcred sockcred; -]])],sh_have_struct_fcred=yes,sh_have_struct_fcred=no) +],sh_have_struct_fcred=yes,sh_have_struct_fcred=no) AC_MSG_RESULT($sh_have_struct_fcred) if test x$sh_have_struct_fcred = xyes; then - AC_DEFINE([HAVE_STRUCT_FCRED], [1], [Have fcred structure]) + AC_DEFINE(HAVE_STRUCT_FCRED,1,[Have fcred structure]) fi AC_MSG_CHECKING(for struct sockcred) -AC_COMPILE_IFELSE( - [AC_LANG_PROGRAM([[ +AC_TRY_COMPILE([ #include #include #include -]],[[ +],[ struct sockcred sockcred; -]])],sh_have_struct_sockcred=yes,sh_have_struct_sockcred=no) +],sh_have_struct_sockcred=yes,sh_have_struct_sockcred=no) AC_MSG_RESULT($sh_have_struct_sockcred) if test x$sh_have_struct_sockcred = xyes; then - AC_DEFINE([HAVE_STRUCT_SOCKCRED], [1], [Have sockcred structure]) + AC_DEFINE(HAVE_STRUCT_SOCKCRED,1,[Have sockcred structure]) fi AC_MSG_CHECKING(for SO_PEERCRED) -AC_COMPILE_IFELSE( - [AC_LANG_PROGRAM([[ +AC_TRY_COMPILE([ #include #include -]],[[ +],[ int test = SO_PEERCRED; -]])],sh_have_SO_PEERCRED=yes,sh_have_SO_PEERCRED=no) +],sh_have_SO_PEERCRED=yes,sh_have_SO_PEERCRED=no) AC_MSG_RESULT($sh_have_SO_PEERCRED) if test x$sh_have_SO_PEERCRED = xyes; then - AC_DEFINE([HAVE_SO_PEERCRED], [1], [Have SO_PEERCRED define]) -fi - -AC_MSG_CHECKING(for union semun) -AC_COMPILE_IFELSE( - [AC_LANG_PROGRAM([[ -#include -#include -#include -]],[[ -union semun foo; -]])], [sh_have_semun=yes], [sh_have_semun=no]) -AC_MSG_RESULT($sh_have_semun) -if test x$sh_have_semun = xyes -then - AC_DEFINE([HAVE_UNION_SEMUN], [1], [union semun already defined in sys/ipc.h or sys/sem.h]) -fi + AC_DEFINE(HAVE_SO_PEERCRED,1,[Have SO_PEERCRED define]) +fi + dnl ***************************************** @@ -746,29 +534,7 @@ AC_C_CONST AC_C_BIGENDIAN -AC_C_RESTRICT AM_SA_SIGACTION_WORKS -AC_ARG_ENABLE(ssp, - [ --disable-ssp disable the GCC stack protector], - [], - [enable_ssp=yes;] -) - -if test "x$GCC" = "xyes"; then - - if test x"${enable_ssp}" = xno; then - : - else - GCC_STACK_PROTECT_LIB - GCC_STACK_PROTECT_CC - GCC_STACK_CHECK_CC - GCC_PIE_CC - GCC_FLAG_CHECK([-fexceptions]) - GCC_FLAG_CHECK([-mcet -fcf-protection]) - fi - -fi - dnl ***************************************** dnl @@ -776,12 +542,4 @@ dnl dnl ***************************************** - -dnl -dnl check for /proc filesystem -dnl -if test -d "/proc/$$" -then - AC_DEFINE([HAVE_PROCFS], [1], [Define if you have a proc fs]) -fi dnl @@ -796,59 +554,8 @@ then # LIBS="-lgmp $LIBS" - AC_DEFINE([HAVE_LIBGMP], [1], [Have GNU gmp library]) + AC_DEFINE(HAVE_LIBGMP, 1, [Have GNU gmp library]) fi AC_CHECK_HEADERS(gmp.h) -AC_MSG_CHECKING([for ps]) -PS= -for ff in /usr/ucb /bin /usr/bin; do - if test -x "$ff/ps"; then - PS="$ff/ps" - AC_MSG_RESULT([$PS]) - break - fi -done -if test x$PS = x -then - AC_MSG_RESULT([no]) - AC_MSG_ERROR([Cannot find ps in any of /usr/ucb /bin /usr/bin]) -fi -AC_DEFINE_UNQUOTED([PSPATH], [_("$PS")], [Path to ps executable]) - -AC_MSG_CHECKING([how to use ps]) -$PS ax >/dev/null 2>&1 -if test $? -eq 0; then - case "$host_os" in - *openbsd*) - one=`$PS akx | wc -l` - ;; - *) - one=`$PS ax | wc -l` - ;; - esac -else - one=0 -fi -$PS -e >/dev/null 2>&1 -if test $? -eq 0; then - two=`$PS -e | wc -l` -else - two=0 -fi -if test $one -ge $two -then - case "$host_os" in - *openbsd*) - PSARG="akx" - ;; - *) - PSARG="ax" - ;; - esac -else - PSARG="-e" -fi -AC_DEFINE_UNQUOTED([PSARG], [_("$PSARG")], [Argument for ps]) -AC_MSG_RESULT([$PS $PSARG]) dnl ***************************************** @@ -859,8 +566,8 @@ AC_ARG_ENABLE(db-reload, - [ --enable-db-reload enable database reload on SIGHUP [[no]]], + [ --enable-db-reload enable database reload on SIGHUP [no]], [ if test "x${enable_db_reload}" = xyes; then - AC_DEFINE([RELOAD_DATABASE], [1], [database reload on SIGHUP]) + AC_DEFINE(RELOAD_DATABASE) fi ] @@ -871,5 +578,5 @@ [ if test "x${enable_xml_log}" = xyes; then - AC_DEFINE([SH_USE_XML], [1], [logfile in XML format]) + AC_DEFINE(SH_USE_XML) fi ] @@ -883,29 +590,8 @@ : else - AC_DEFINE([SH_WITH_MAIL], [1], [internal SMTP mailer]) + AC_DEFINE(SH_WITH_MAIL) fi ], - [AC_DEFINE([SH_WITH_MAIL], [1], [internal SMTP mailer])] -) - -AC_ARG_ENABLE(suid, - [ --enable-suid allow suid], - [ - if test "x${enable_suid}" = xyes; then - AC_DEFINE(SH_ALLOW_SUID, [1], [Define if you want to allow suid execution for samhain]) - fi - ] -) - -AC_ARG_ENABLE(shellexpand, - [ --disable-shellexpand disable shell expansion in config file], - [ - if test "x${enable_shellexpand}" = xno; then - : - else - AC_DEFINE(SH_EVAL_SHELL, [1], [Define if you want shell expansion in configuration file]) - fi - ], - [AC_DEFINE(SH_EVAL_SHELL, [1], [Define if you want shell expansion in configuration file])] + [AC_DEFINE(SH_WITH_MAIL)] ) @@ -916,8 +602,8 @@ : else - AC_DEFINE([WITH_EXTERNAL], [1], [can use external scripts]) + AC_DEFINE(WITH_EXTERNAL) fi ], - [AC_DEFINE([WITH_EXTERNAL], [1], [can use external scripts])] + [AC_DEFINE(WITH_EXTERNAL)] ) @@ -925,25 +611,15 @@ [ --enable-message-queue[[=MODE]] enable SysV message queue [[MODE=0700]]], [ - if test "x${ac_cv_header_sys_msg_h}" = "xyes"; then - if test "x${enable_message_queue}" = xyes; then - AC_DEFINE([WITH_MESSAGE_QUEUE], [1], [SysV message queue]) - AC_DEFINE_UNQUOTED([MESSAGE_QUEUE_MODE], [0700], [mode of message queue]) - elif test "x${enable_message_queue}" != xno; then - echo "${enableval}" | grep ['[^0123456789]'] >/dev/null 2>&1 && - AC_MSG_ERROR([With --enable-message-queue=MODE, MODE must be numeric]) - echo "${enableval}" | \ - grep ['0[0123456789][0123456789][0123456789]'] >/dev/null 2>&1 || - AC_MSG_ERROR([With --enable-message-queue=MODE, MODE must be an octal (0nnn) number]) - AC_DEFINE([WITH_MESSAGE_QUEUE], [1], [SysV message queue]) - AC_DEFINE_UNQUOTED([MESSAGE_QUEUE_MODE], [${enable_message_queue}], [mode of message queue]) - fi - else - echo - echo "**********************************************" - echo - AC_MSG_WARN([sys/msg.h missing, --enable-message-queue disabled]) - echo - echo "**********************************************" - echo + if test "x${enable_message_queue}" = xyes; then + AC_DEFINE(WITH_MESSAGE_QUEUE) + AC_DEFINE_UNQUOTED(MESSAGE_QUEUE_MODE, 0700) + elif test "x${enable_message_queue}" != xno; then + echo "${enableval}" | grep ['[^0123456789]'] >/dev/null 2>&1 && + AC_MSG_ERROR([--enable-message-queue: MODE must be numeric]) + echo "${enableval}" | \ + grep ['0[0123456789][0123456789][0123456789]'] >/dev/null 2>&1 || + AC_MSG_ERROR([--enable-message-queue: MODE must be an octal (0nnn) number]) + AC_DEFINE(WITH_MESSAGE_QUEUE) + AC_DEFINE_UNQUOTED(MESSAGE_QUEUE_MODE, ${enable_message_queue}) fi ] @@ -975,5 +651,5 @@ LIBWRAP_INC="" AC_ARG_WITH(libwrap, -[ --with-libwrap[=PATH] Compile in libwrap (TCP Wrappers) support], +[ --with-libwrap[=PATH] Compile in libwrap (TCP Wrappers) support], [ AC_MSG_RESULT($withval) case "$withval" in @@ -1006,15 +682,10 @@ AC_CHECK_HEADER(tcpd.h, [], - [ AC_MSG_ERROR([Could not find tcpd.h for libwrap. You need to install tcp_wrappers.]) ]) - AC_LINK_IFELSE( - [AC_LANG_PROGRAM([[ -#include -]],[[ -int allow_severity; -int deny_severity; -hosts_access((struct request_info *) 0); ]])], - [ AC_DEFINE([SH_USE_LIBWRAP], [1], [Build with tcp wrapper support]) ], - [ AC_MSG_ERROR([Could not find the libwrap library.]) ] - ) + [ AC_MSG_ERROR([Could not find tcpd.h for libwrap. You must first install tcp_wrappers]) ]) + AC_TRY_LINK([ #include + int allow_severity; int deny_severity; ], + [ hosts_access((struct request_info *) 0); ], + [ AC_DEFINE(SH_USE_LIBWRAP,1,[Build with tcp wrapper support]) ], + [ AC_MSG_ERROR([Could not find the libwrap library.]) ]) fi ], AC_MSG_RESULT(no) @@ -1022,184 +693,8 @@ -dnl -dnl NETWORK OPTIONS -dnl -AC_ARG_ENABLE(network, - [ --enable-network=[[client|server]] compile client or server [[no]]], - [ - if test "x$enable_network" = xclient; then - mytclient="-DSH_WITH_CLIENT" - yulectl_prg= - samhainadmin_prg= - setpwd_prg="samhain_setpwd" - sh_main_prg="samhain" - if test "x${sh_have_gmp}" = xyes - then - LIBS="-lgmp $LIBS" - fi -dnl AC_CHECK_HEADER(sys/capability.h, -dnl [AC_CHECK_LIB(cap, cap_get_proc,,sh_use_lcaps="no")], -dnl [sh_use_lcaps="no"]) - elif test "x$enable_network" = xserver; then - mytclient="-DSH_WITH_SERVER" - yulectl_prg="yulectl" - samhainadmin_prg="scripts/samhainadmin-gpg.pl scripts/samhainadmin-sig.pl" - setpwd_prg="samhain_setpwd" - sh_main_prg="yule" - if test "x${sh_have_gmp}" = xyes - then - LIBS="-lgmp $LIBS" - fi - sh_use_lcaps="undef" - elif test "x$enable_network" = xno; then - mytclient="-DSH_STANDALONE" - yulectl_prg= - samhainadmin_prg= - setpwd_prg= - sh_main_prg="samhain" -dnl AC_CHECK_HEADER(sys/capability.h, -dnl [AC_CHECK_LIB(cap, cap_get_proc,,sh_use_lcaps="no")], -dnl [sh_use_lcaps="no"]) - else - AC_MSG_ERROR([With --enable-network=WHAT, WHAT must be client, server, or no]) - fi - ], - [ - mytclient="-DSH_STANDALONE" - setpwd_prg= - yulectl_prg= - samhainadmin_prg= - sh_main_prg="samhain" -dnl AC_CHECK_HEADER(sys/capability.h, -dnl [AC_CHECK_LIB(cap, cap_get_proc,,sh_use_lcaps="no")], -dnl [sh_use_lcaps="no"]) - ], -) - -AC_SUBST(setpwd_prg) -AC_SUBST(yulectl_prg) -AC_SUBST(samhainadmin_prg) -AC_SUBST(sh_main_prg) -AC_SUBST(mytclient) - -# needed for the rpm spec -clmytclient=`echo ${mytclient} | sed s%\-%%` -AC_SUBST(clmytclient) - -sh_no_gcc_static=no - -AC_ARG_ENABLE(static, - [ --enable-static enable static linking [[no]]], - [ - if test x$enable_static = xyes; then - if test x"$mynetbsd" = xyes - then - tmp_LIBS=`echo $LIBS | sed 's%\-lresolv%%' ` - LIBS="${tmp_LIBS}" - fi - if test x"${sh_auparse}" = xyes - then - tmp_LIBS=`echo $LIBS | sed 's%\-lauparse%%' ` - LIBS="${tmp_LIBS}" - AC_MSG_WARN([--enable-static: no support for Linux Auditing System]) - fi - - if test "x$GCC" = "xyes"; - then - if test -n "`echo "$CFLAGS" | grep "\-flto" 2> /dev/null`" - then - AC_MSG_ERROR([--enable-static: not compatible with link-time optimisation]) - fi - case "$host_os" in - - *solaris*) - AC_MSG_WARN([option --enable-static ignored on Solaris]) - ;; - - *) - AC_DEFINE([SH_COMPILE_STATIC], [1], [Define if compiling static]) - sh_no_gcc_static=no - LDFLAGS="$LDFLAGS -static" - ;; - esac - else - AC_DEFINE([SH_COMPILE_STATIC], [1], [Define if compiling static]) - sh_no_gcc_static=yes - case "$host_os" in - - *aix*) - LDFLAGS="$LDFLAGS -bnso -bI:/lib/syscalls.exp" - ;; - - *hpux*) - LDFLAGS="$LDFLAGS -Wl,-a,archive" - ;; - - *osf*) - LDFLAGS="$LDFLAGS -non_shared" - ;; - - *irix*) - LDFLAGS="$LDFLAGS -non_shared" - ;; - - *sco*) - LDFLAGS="$LDFLAGS -dn" - ;; - - *sun*) - LDFLAGS="$LDFLAGS -Bstatic" - ;; - - *solaris*) - LDFLAGS="$LDFLAGS -Bstatic" - ;; - - *) - echo "***********************************************" - echo "*" - echo "* Don't know how to enable static linking" - echo "* with your compiler. Please set the environment" - echo "* variable LDFLAGS to:" - echo "* ${LDFLAGS} + the static linking flag" - echo "* and run configure again" - echo "*" - echo "***********************************************" - ;; - - esac - fi - fi - ] -) - -if test x"${mytclient}" = x-DSH_STANDALONE -o x"${mytclient}" = x-DSH_WITH_CLIENT; -then -dnl For threaded modules - ACX_PTHREAD - CFLAGS="$CFLAGS $PTHREAD_CFLAGS" - LIBS="$PTHREAD_LIBS $LIBS" - LDFLAGS="$PTHREAD_CFLAGS $LDFLAGS" - CC="$PTHREAD_CC" -dnl For MODI_TXT - CHECK_ZLIB() -fi - -if test x$enable_static = xyes; then - : -else - if test x$sh_use_pie = xyes; then - LDFLAGS="$LDFLAGS $PIE_LDFLAGS" - CFLAGS="$CFLAGS $PIE_CFLAGS" - fi -fi -AC_CHECK_FUNC(pmap_getmaps, - AC_DEFINE([HAVE_PMAP_GETMAPS], [1], [Define if pmap_getmaps available]), [],[]) - - # # this is from the snort configure.in # -AC_DEFUN([FAIL_MESSAGE],[ +AC_DEFUN(FAIL_MESSAGE,[ echo echo @@ -1216,10 +711,10 @@ AC_ARG_WITH(libprelude-prefix, - [ --with-libprelude-prefix=PFX Prefix where libprelude is installed (optional)], + [ --with-libprelude-prefix=PFX Prefix where libprelude is installed (optional)], libprelude_config_prefix="$withval", libprelude_config_prefix="") AC_MSG_CHECKING(whether to use prelude) AC_ARG_WITH(prelude, - [ --with-prelude Prelude IDS support [[no]]], + [ --with-prelude Prelude IDS support [[no]]], [ if test "x${withval}" = "xno"; then @@ -1244,10 +739,16 @@ case "$sh_libprelude_version" in 0.8*) - AC_MSG_ERROR([You have Libprelude 0.8, which is too old. Version 0.9.6 or higher is required.]) + sh_prelude_libs=`$LIBPRELUDE_CONFIG --libs | sed 's,\(.*\)\( -L.* -lprelude$\),\2 \1,'` + sh_prelude_cflags=`$LIBPRELUDE_CONFIG --cflags` + LIBS="$LIBS ${sh_prelude_libs}" + CFLAGS="$CFLAGS ${sh_prelude_cflags}" + AC_DEFINE(HAVE_LIBPRELUDE,1,[Have libprelude]) + AC_DEFINE(HAVE_LIBPRELUDE_8,1,[Have libprelude 0.8]) ;; *) - AM_PATH_LIBPRELUDE([0.9.6], + AM_PATH_LIBPRELUDE([0.9.0], [ - AC_DEFINE([HAVE_LIBPRELUDE], [1], [Have libprelude]) + AC_DEFINE(HAVE_LIBPRELUDE,1,[Have libprelude]) + AC_DEFINE(HAVE_LIBPRELUDE_9,1,[Have libprelude 0.9]) CFLAGS="$CFLAGS $LIBPRELUDE_PTHREAD_CFLAGS" LDFLAGS="$LDFLAGS $LIBPRELUDE_LDFLAGS" @@ -1255,10 +756,10 @@ ], [ - AC_MSG_ERROR([Could not find libprelude (if you are using --enable-static, the static library libprelude.a might be missing).]) + AC_MSG_ERROR([Could not find libprelude.]) ]) ;; esac else - AC_MSG_ERROR([Could not find libprelude-config.]) + AC_MSG_ERROR([Could not find libprelude.]) fi fi @@ -1267,4 +768,87 @@ AC_MSG_RESULT(no) ] +) + +dnl AC_MSG_CHECKING(whether to use prelude) +dnl AC_ARG_WITH(prelude, +dnl [ --with-prelude Prelude IDS support [[no]]], +dnl [ +dnl if test "x${withval}" = "xno"; then +dnl AC_MSG_RESULT(no) +dnl else +dnl AC_CHECK_PROG(HAVE_PRELUDE_CONFIG, libprelude-config, yes, no) +dnl if test "$HAVE_PRELUDE_CONFIG" = "yes"; then +dnl sh_prelude_libs=`libprelude-config --libs | sed 's,\(.*\)\( -L.* -lprelude$\),\2 \1,'` +dnl sh_prelude_cflags=`libprelude-config --cflags` +dnl LIBS="$LIBS ${sh_prelude_libs}" +dnl CFLAGS="$CFLAGS ${sh_prelude_cflags}" +dnl AC_DEFINE(HAVE_LIBPRELUDE,1,[Have libprelude]) +dnl else +dnl AC_MSG_ERROR([Could not find libprelude-config. Did you specify a valid path?]) +dnl fi +dnl fi +dnl ], +dnl AC_MSG_RESULT(no) +dnl ) + +AC_ARG_ENABLE(static, + [ --enable-static enable static linking (recommended) [[no]]], + [ + if test x$enable_static = xyes; then + if test x"$mynetbsd" = xyes + then + tmp_LIBS=`echo $LIBS | sed 's%\-lresolv%%' ` + LIBS="${tmp_LIBS}" + fi + AC_DEFINE(SH_COMPILE_STATIC, 1, [Define if compiling static]) + if test "x$GCC" = "xyes"; then + LDFLAGS="$LDFLAGS -static" + else + case "$host_os" in + + *aix*) + LDFLAGS="$LDFLAGS -bnso -bI:/lib/syscalls.exp" + ;; + + *hpux*) + LDFLAGS="$LDFLAGS -Wl,-a,archive" + ;; + + *osf*) + LDFLAGS="$LDFLAGS -non_shared" + ;; + + *irix*) + LDFLAGS="$LDFLAGS -non_shared" + ;; + + *sco*) + LDFLAGS="$LDFLAGS -dn" + ;; + + *sun*) + LDFLAGS="$LDFLAGS -Bstatic" + ;; + + *solaris*) + LDFLAGS="$LDFLAGS -Bstatic" + ;; + + *) + echo "***********************************************" + echo "*" + echo "* Don't know how to enable static linking" + echo "* with your compiler. Please set the environment" + echo "* variable LDFLAGS to:" + echo "* ${LDFLAGS} + the static linking flag" + echo "* and run configure again" + echo "*" + echo "***********************************************" + ;; + + esac + fi + fi + ] ) @@ -1275,25 +859,27 @@ [ --with-database=[[mysql|postgresql|oracle|odbc]] database support [[no]]], [ - if test x"$enable_static" = xyes; then - AC_MSG_WARN([With --enable-static, --with-database may fail to compile.]) - fi if test x"$enable_xml_log" != xyes; then - AC_MSG_ERROR([With --with-database, --enable-xml-log is required as well.]) + AC_MSG_ERROR([--with-database: --enable-xml-log required]) fi if test "x${withval}" = "xmysql"; then - if test "x$zlib_found" = "x" - then - CHECK_ZLIB() - fi AC_CHECK_PROG(HAVE_MYSQL_CONFIG, mysql_config, yes, no) if test "$HAVE_MYSQL_CONFIG" = "yes"; then + echo "mysql_config found" sh_mysql_libs="`mysql_config --libs`" + # echo ${sh_mysql_libs} sh_mysql_libs="`eval echo ${sh_mysql_libs}`" + # echo $mysql_libs + # save_libs="$LIBS" + # LIBS="$LIBS `mysql_config --libs`" + # echo $LIBS LIBS="$LIBS ${sh_mysql_libs}" + echo $LIBS sh_mysql_cflags="`mysql_config --cflags`" sh_mysql_cflags="`eval echo ${sh_mysql_cflags}`" + # CFLAGS="$CFLAGS `mysql_config --cflags`" + # CFLAGS="$CFLAGS ${sh_mysql_cflags}" CPPFLAGS="$CPPFLAGS ${sh_mysql_cflags}" else - AC_MSG_CHECKING([for MySQL in /usr /usr/local /usr/local/mysql MYSQL_HOME]) + AC_MSG_CHECKING(for MySQL in /usr /usr/local /usr/local/mysql MYSQL_HOME) mysql_directory="/usr /usr/local /usr/local/mysql ${MYSQL_HOME}" @@ -1359,25 +945,24 @@ CPPFLAGS="$CPPFLAGS -I${MYSQL_INC_DIR}" fi - AC_DEFINE([WITH_MYSQL], [1], [Use mysql as database]) - AC_DEFINE([WITH_DATABASE], [1], [Use a database]) - if test "x$zlib_found" = "xyes" + AC_DEFINE(WITH_MYSQL) + AC_DEFINE(WITH_DATABASE) + AC_CHECK_LIB(z, inflateEnd, [zlib_cv_libz=yes], [zlib_cv_libz=no]) + AC_MSG_CHECKING(for zlib) + if test "$zlib_cv_libz" = "yes" then LIBS="$LIBS -lz -lm" + AC_MSG_RESULT(ok) else + AC_MSG_RESULT(failed) echo - - echo " Mysql library was not found or not useable." - echo " Possible reasons include:" - echo " - an old, incompatible version compiled from source" - echo " - on Solaris, libmysql is compiled with the Solaris" - echo " compiler, thus the mysql_config script provides" - echo " compiler options unsuitable for gcc (move" - echo " mysql_config out of your PATH)" - echo " For other problems, check config.log for the error" + echo " Either the mysql or the zlib library was not found" + echo " or was unusable, maybe because an old, incompatible" + echo " version is installed on your system, eg compiled from" + echo " source long time ago. See config.log for the error" echo " message from the compiler." - echo - echo " If your mysql libraries are installed in an" - echo " unusual place, use --with-libs=-L/path/to/libdirectory" - echo " where libdirectory is the directory holding libmysql." + echo " Please review your installed mysql and zlib libraries" + echo " and/or use --with-libs=-L/path/to/libdirectory" + echo " where libdirectory is the directory holding libmysql" + echo " or libz." if test x"$enable_static" = xyes; then echo " Note that for compiling a static binary, you need" @@ -1385,10 +970,10 @@ fi echo - AC_MSG_ERROR([Could not find libmysql, or it is not useable.]) + AC_MSG_ERROR([libmysql or zlib not found or unuseable]) fi AC_CHECK_HEADERS(mysql/mysql.h) elif test "x${withval}" = "xpostgresql"; then - AC_DEFINE([WITH_POSTGRES], [1], [Use postgres as database]) - AC_DEFINE([WITH_DATABASE], [1], [Use a database]) + AC_DEFINE(WITH_POSTGRES) + AC_DEFINE(WITH_DATABASE) # PGCONF="no" @@ -1419,12 +1004,4 @@ if test -z "$PGSQL_DIR"; then for i in $pgsql_directory; do - if test -r $i/include/postgresql/libpq-fe.h; then - PGSQL_INC_DIR=$i/include - PGSQL_DIR=$i - fi - done - fi - if test -z "$PGSQL_DIR"; then - for i in $pgsql_directory; do if test -r $i/include/libpq-fe.h; then PGSQL_INC_DIR=$i/include @@ -1437,10 +1014,10 @@ tmp="" for i in $pgsql_directory; do - tmp="$tmp $i/include $i/include/pgsql $i/include/postgresql" + tmp="$tmp $i/include $i/include/pgsql" done FAIL_MESSAGE("PostgreSQL header file (libpq-fe.h)", $tmp) fi - for i in lib lib/pgsql lib/postgresql; do + for i in lib lib/pgsql; do str="$PGSQL_DIR/$i/libpq.*" for j in `echo $str`; do @@ -1454,5 +1031,5 @@ if test -z "$PGSQL_LIB_DIR"; then for ff in $pgsql_directory; do - for i in lib lib/pgsql lib/postgresql; do + for i in lib lib/pgsql; do str="$ff/$i/libpq.*" for j in `echo $str`; do @@ -1469,5 +1046,5 @@ tmp="" for i in $pgsql_directory; do - tmp="$i/lib $i/lib/pgsql $i/lib/postgresql" + tmp="$i/lib $i/lib/pgsql" done FAIL_MESSAGE("postgresql library libpq", $tmp) @@ -1485,5 +1062,4 @@ CPPFLAGS="$CPPFLAGS -I${PGSQL_INC_DIR}" AC_CHECK_HEADERS(pgsql/libpq-fe.h) - AC_CHECK_HEADERS(postgresql/libpq-fe.h) else pg_lib_dir=`${PGCONF} --libdir` @@ -1535,60 +1111,32 @@ CPPFLAGS="${CPPFLAGS} -I${ODBC_INC_DIR}" LIBS="${LIBS} -L${ODBC_LIB_DIR} -l$ODBC_LIB" - AC_DEFINE([WITH_ODBC], [1], [Use odbc as database]) - AC_DEFINE([WITH_DATABASE], [1], [Use a database]) + AC_DEFINE(WITH_ODBC) + AC_DEFINE(WITH_DATABASE) elif test "x${withval}" = "xoracle"; then - - AC_MSG_CHECKING(for oracle in ORACLE_HOME /usr/local /usr) - + AC_MSG_CHECKING(for oracle in /usr /usr/local ORACLE_HOME) oracle_directory="/usr /usr/local ${ORACLE_HOME}" for i in $oracle_directory; do - - ff=`find $i -name oci.h 2>/dev/null | tail -1` - if test "x$ff" = "x"; then - : - else - ORACLE_INC=`dirname $ff` - fi - - fg=`find $i -name libclntsh.so 2>/dev/null | tail -1` - if test "x$fg" = "x"; then - : - else - ORACLE_LIB=`dirname $fg` - fi - - done + if test -r $i/rdbms/demo/oci.h; then + ORACLE_DIR=$i + fi + done - if test -z "$ORACLE_INC"; then - + if test -z "$ORACLE_DIR"; then tmp="" for i in $oracle_directory; do - tmp="$tmp $i" + tmp="$tmp $i/rdbms/demo" done - FAIL_MESSAGE("OCI header file (oci.h) please define ORACLE_INC directory where oci.h resides", $tmp) - - elif test -z "$ORACLE_LIB"; then - - tmp="" - for i in $oracle_directory; do - tmp="$tmp $i" - done - FAIL_MESSAGE("OCI library file (libclntsh.so) please define ORACLE_LIB directory where libclntsh.so resides", $tmp) - - else - - ORACLE_CPP_FLAGS="-I$ORACLE_INC" - ORACLE_LIB_DIR="$ORACLE_LIB" - - AC_MSG_RESULT([$ORACLE_INC $ORACLE_LIB]) + FAIL_MESSAGE("OCI header file (oci.h)", $tmp) + else + for i in rdbms/demo rdbms/public network/public; do + ORACLE_CPP_FLAGS="$ORACLE_CPP_FLAGS -I$ORACLE_DIR/$i" + done + ORACLE_LIB_DIR="$ORACLE_DIR/lib" + AC_MSG_RESULT(yes) CPPFLAGS="${CPPFLAGS} ${ORACLE_CPP_FLAGS}" ORACLE_LIBS="-lclntsh" - - if test -r $ORACLE_LIB_DIR/libnnz11.so; then - ORACLE_LIBS="${ORACLE_LIBS} -lnnz11" - fi if test -r $ORACLE_LIB_DIR/libwtc9.so; then ORACLE_LIBS="${ORACLE_LIBS} -lwtc9" @@ -1597,13 +1145,10 @@ fi LIBS="${LIBS} -L${ORACLE_LIB_DIR} ${ORACLE_LIBS}" - if test "x$GCC" != "xyes"; then - CFLAGS="${CFLAGS} -fno-strict-aliasing" - fi fi - AC_DEFINE([WITH_ORACLE], [1], [Use oracle as database]) - AC_DEFINE([WITH_DATABASE], [1], [Use a database]) + AC_DEFINE(WITH_ORACLE) + AC_DEFINE(WITH_DATABASE) else - AC_MSG_ERROR([Option --with-database=database used with unsupported database ${withval}]) + AC_MSG_ERROR([--with-database: unsupported database ${withval}]) fi ] @@ -1611,14 +1156,14 @@ AC_ARG_WITH(console, - [ --with-console=PATH set path to console device [[/dev/console]]], + [ --with-console=PATH set path to console device [[/dev/console]]], [ if test "x${withval}" != xno; then mycons="$withval" - AC_DEFINE_UNQUOTED([DEFAULT_CONSOLE], [_("${mycons}")], [] ) + AC_DEFINE_UNQUOTED(DEFAULT_CONSOLE, _("${mycons}") ) fi ]) AC_ARG_WITH(altconsole, - [ --with-altconsole=PATH set path to second console device [[none]]], + [ --with-altconsole=PATH set path to second console device [[none]]], [ if test "x${withval}" != xno; then @@ -1629,12 +1174,12 @@ ], [myaltcons="NULL"]) -AC_DEFINE_UNQUOTED([ALT_CONSOLE], [_("${myaltcons}")], [] ) +AC_DEFINE_UNQUOTED(ALT_CONSOLE, _("${myaltcons}") ) AC_ARG_WITH(timeserver, - [ --with-timeserver=HOST set host address for time server [[none]]], + [ --with-timeserver=HOST set host address for time server [[none]]], [ if test "x${withval}" != xno; then mytimeserv="$withval" - AC_DEFINE([HAVE_NTIME], [1], [use time server]) + AC_DEFINE(HAVE_NTIME) else mytimeserv="NULL" @@ -1642,12 +1187,12 @@ ], mytimeserv="NULL") -AC_DEFINE_UNQUOTED([DEFAULT_TIMESERVER], [_("${mytimeserv}")], [] ) +AC_DEFINE_UNQUOTED(DEFAULT_TIMESERVER, _("${mytimeserv}") ) AC_ARG_WITH(alttimeserver, - [ --with-alttimeserver=HOST set address for backup time server [[none]]], + [ --with-alttimeserver=HOST set address for backup time server [[none]]], [ if test "x${withval}" != xno; then myalttimeserv="$withval" - AC_DEFINE([HAVE_NTIME], [1], [use time server]) + AC_DEFINE(HAVE_NTIME) else myalttimeserv="NULL" @@ -1655,5 +1200,5 @@ ], myalttimeserv="NULL") -AC_DEFINE_UNQUOTED([ALT_TIMESERVER], [_("${myalttimeserv}")], [] ) +AC_DEFINE_UNQUOTED(ALT_TIMESERVER, _("${myalttimeserv}") ) AC_ARG_ENABLE(login-watch, @@ -1661,5 +1206,5 @@ [ if test "x${enable_login_watch}" = xyes; then - AC_DEFINE([SH_USE_UTMP], [1], [watch for login/logout]) + AC_DEFINE(SH_USE_UTMP) fi ] @@ -1667,70 +1212,17 @@ AC_ARG_ENABLE(mounts-check, - [ --enable-mounts-check check mount options on filesystems [[no]]], + [ --enable-mounts-check check mount options on filesystems [[no]]], [ if test "x${enable_mounts_check}" = xyes; then - AC_DEFINE([SH_USE_MOUNTS], [1], [check mount options]) + AC_DEFINE(SH_USE_MOUNTS) fi ] ) -AC_ARG_ENABLE(logfile-monitor, - [ --enable-logfile-monitor monitor logfiles [[no]]], - [ - if test "x${enable_logfile_monitor}" = xyes; then - cflags_store="$CFLAGS" - CFLAGS="$CFLAGS -DPCRE2_CODE_UNIT_WIDTH=8" - AC_CHECK_HEADER(pcre2.h, - [ - AC_DEFINE([USE_LOGFILE_MONITOR], [1], [Define if you want the logfile monitor module.]) - LIBS="-lpcre2-8 $LIBS" - ], - [ - AC_CHECK_HEADER(pcre2/pcre2.h, - [ - AC_DEFINE([USE_LOGFILE_MONITOR], [1], [Define if you want the logfile monitor module.]) - AC_DEFINE([HAVE_PCRE2_PCRE2_H], [1], [Define if you have pcre2/pcre2.h.]) - LIBS="-lpcre2-8 $LIBS" - ], - [AC_MSG_ERROR([The --enable-logfile-monitor option requires libpcre. For compiling the pcre development package is needed.])] - ) - ] - ) - CFLAGS="$cflags_store" - fi - ] -) - - -AC_ARG_ENABLE(process-check, - [ --enable-process-check check processes [[no]]], - [ - if test "x${enable_process_check}" = xyes; then - AC_CHECK_LIB([rt], [sched_getparam], sh_lrt=yes, sh_lrt=no) - if test x"$sh_lrt" = xyes; then - LIBRT=-lrt - else - LIBRT= - fi - LIBS="$LIBS $LIBRT" - AC_DEFINE([SH_USE_PROCESSCHECK], [1], [Define if you want to check processes]) - fi - ] -) - -AC_ARG_ENABLE(port-check, - [ --enable-port-check check ports [[no]]], - [ - if test "x${enable_port_check}" = xyes; then - AC_DEFINE([SH_USE_PORTCHECK], [1], [Define if you want to check ports]) - fi - ] -) - AC_ARG_ENABLE(userfiles, - [ --enable-userfiles check for users' config files [[no]]], + [ --enable-userfiles check for users' config files [[no]]], [ if test "x${enableval}" = "xyes"; then - AC_DEFINE([SH_USE_USERFILES], [1], [check user files]) + AC_DEFINE(SH_USE_USERFILES) fi ] @@ -1742,11 +1234,9 @@ if test "x${enable_debug}" = "xyes"; then if test "x${mydebugflag}" != "xyes"; then - AC_DEFINE([MEM_DEBUG], [1], [] ) + AC_DEFINE(MEM_DEBUG) fi - AC_DEFINE([WITH_TPT], [1], [] ) - AC_DEFINE([SL_DEBUG], [1], [] ) - AC_DEFINE([DNMALLOC_CHECKS], [1], [Debug dnmalloc]) - AC_DEFINE([PARANOIA], [0], [Paranoia level for dnmalloc]) - AC_DEFINE([SL_FAIL_ON_ERROR], [1], [] ) + AC_DEFINE(WITH_TPT) + AC_DEFINE(SL_DEBUG) + AC_DEFINE(SL_FAIL_ON_ERROR) if test "x${myneedg3}" = "xyes"; then mydebugdef="-g3" @@ -1755,21 +1245,4 @@ fi mydebugit="yes" - elif test "x${enable_debug}" = "xmem"; then - AC_DEFINE([MEM_DEBUG], [1], [] ) - AC_DEFINE([SH_ABORT_ON_ERROR], [1], [Use abort]) - if test "x${myneedg3}" = "xyes"; then - mydebugdef="-g3" - else - mydebugdef="-g" - fi - mydebugit="yes" - elif test "x${enable_debug}" = "xgdb"; then - AC_DEFINE([SH_ABORT_ON_ERROR], [1], [Use abort]) - if test "x${myneedg3}" = "xyes"; then - mydebugdef="-g3" - else - mydebugdef="-g" - fi - mydebugit="yes" fi ] @@ -1777,71 +1250,4 @@ AC_SUBST(mydebugdef) -if test "x${enable_asm_ok}" = "xyes"; then - sh_enable_asm=yes -else - sh_enable_asm=no -fi -AC_ARG_ENABLE(asm, - [ --disable-asm disable asm inline code], - [ - if test "x${enable_asm}" = xno; then - sh_enable_asm=no - fi - ] -) - -if test "x${samhain_64_asm}" = xyes; then - if test "x${sh_enable_asm}" = xyes; then - AC_DEFINE([TIGER_OPT_ASM], [1], [Define to use tiger x86_64 optimized assembly]) - fi -fi - -AC_ARG_ENABLE(ipv6, - [ --disable-ipv6 disable ipv6 support], - [ - if test "x${enable_ipv6}" = xno; then - AC_DEFINE([USE_IPV4], [1], [Define if you do not want IPv6]) - fi - ] -) - -if test "x${dnmalloc_ok}" = "xyes"; then - sh_dnmalloc_enabled=yes -else - sh_dnmalloc_enabled=no -fi - -AC_ARG_ENABLE(dnmalloc, - [ --disable-dnmalloc disable dnmalloc], - [ - if test "x${enable_dnmalloc}" = xno; then - sh_dnmalloc_enabled=no - else - sh_dnmalloc_enabled=yes - fi - ] -) - -dnl Handle the problem that static linking against libc.a on Linux -dnl produces the error "multiple definitions of malloc" -dnl -if test "x$sh_dnmalloc_enabled" = "xyes"; then - if test x$enable_static = xyes; then - if test "x$sh_no_gcc_static" = "xyes"; then - sh_dnmalloc_enabled=no - else - if test "x$with_gnu_ld" = "xyes"; then - LDFLAGS="$LDFLAGS -Wl,--allow-multiple-definition" - else - sh_dnmalloc_enabled=no - fi - fi - fi -fi - -if test "x${sh_dnmalloc_enabled}" = xno; then - AC_DEFINE([USE_SYSTEM_MALLOC], [1], [Define if you want to use the system malloc]) -fi - AC_ARG_ENABLE(ptrace, [ --enable-ptrace use anti-debugger options [[no]]], @@ -1849,5 +1255,5 @@ if test "x${enable_ptrace}" = xyes; then if test "x$mydebugit" != "xyes"; then - AC_DEFINE([SCREW_IT_UP], [1], [anti debug]) + AC_DEFINE(SCREW_IT_UP) fi fi @@ -1861,16 +1267,10 @@ fi -dnl -W is the older name for -Wextra - - +dnl if test ! -z "`echo "$CFLAGS" | grep "\-O2" 2> /dev/null`" ; then +dnl CFLAGS=`echo $CFLAGS | sed 's%\-O2%\-O3%' ` +dnl fi + if test -z "`echo "$CFLAGS" | grep "\-Wall" 2> /dev/null`" ; then - case "$host_os" in - *solaris*) - CFLAGS="$CFLAGS -Wall -W -Wno-missing-braces " - ;; - *) - CFLAGS="$CFLAGS -Wall -W -Werror=implicit-function-declaration " - ;; - esac + CFLAGS="$CFLAGS -Wall -W " fi @@ -1879,5 +1279,5 @@ if test -z "`echo "$CFLAGS" | grep "\-fno\-strength\-reduce" 2> /dev/null`" then - GCC_FLAG_CHECK([-fno-strength-reduce]) + CFLAGS="$CFLAGS -fno-strength-reduce" fi fi @@ -1887,19 +1287,9 @@ if test -z "`echo "$CFLAGS" | grep "\-fno\-omit\-frame\-pointer" 2> /dev/null`" then - GCC_FLAG_CHECK([-fno-omit-frame-pointer]) + CFLAGS="$CFLAGS -fno-omit-frame-pointer" fi fi fi - -dnl Test whether gcc supports -Wno-empty-body -dnl Suppresses warnings from glibc pthread_cleanup_pop -dnl -GCC_FLAG_CHECK([-Wno-empty-body]) - -dnl This one is for clang -dnl -GCC_FLAG_CHECK([-Wno-invalid-source-encoding]) - AC_MSG_CHECKING([which random module to use]) @@ -1918,13 +1308,12 @@ * ) AC_MSG_RESULT([invalid argument]) - AC_MSG_ERROR([Option --with-rnd=module used with unsupported module ${use_static_rnd}]) + AC_MSG_ERROR([--with-rnd: there is no random module ${use_static_rnd}]) ;; esac -dnl for entropy gathering daemon AC_ARG_WITH(egd-socket, [ --with-egd-socket=NAME EGD socket name], egd_socket_name="$withval", egd_socket_name="" ) -AC_DEFINE_UNQUOTED([EGD_SOCKET_NAME], [_("$egd_socket_name")], [] ) +AC_DEFINE_UNQUOTED(EGD_SOCKET_NAME, _("$egd_socket_name") ) dnl @@ -1938,9 +1327,9 @@ ;; egd) - AC_DEFINE([HAVE_EGD_RANDOM], [1], [entropy gathering daemon]) + AC_DEFINE(HAVE_EGD_RANDOM) try_dev_random=no ;; unix) - AC_DEFINE([HAVE_UNIX_RANDOM], [1], [unix entropy gathering]) + AC_DEFINE(HAVE_UNIX_RANDOM) try_dev_random=no ;; @@ -1951,21 +1340,21 @@ AC_MSG_CHECKING(whether /dev/random exists) if test -r "/dev/srandom" && test -c "/dev/srandom"; then - AC_DEFINE([HAVE_URANDOM], [1], [] ) - AC_DEFINE_UNQUOTED([NAME_OF_DEV_RANDOM], [_("/dev/srandom")], [] ) + AC_DEFINE(HAVE_URANDOM) + AC_DEFINE_UNQUOTED(NAME_OF_DEV_RANDOM, _("/dev/srandom") ) AC_MSG_RESULT(yes) if test -r "/dev/urandom" && test -c "/dev/urandom"; then - AC_DEFINE_UNQUOTED([NAME_OF_DEV_URANDOM], [_("/dev/urandom")], [] ) + AC_DEFINE_UNQUOTED(NAME_OF_DEV_URANDOM, _("/dev/urandom") ) fi else if test -r "/dev/random" && test -c "/dev/random"; then - AC_DEFINE([HAVE_URANDOM], [1], [] ) - AC_DEFINE_UNQUOTED([NAME_OF_DEV_RANDOM], [_("/dev/random")], [] ) + AC_DEFINE(HAVE_URANDOM) + AC_DEFINE_UNQUOTED(NAME_OF_DEV_RANDOM, _("/dev/random") ) AC_MSG_RESULT(yes) if test -r "/dev/urandom" && test -c "/dev/urandom"; then - AC_DEFINE_UNQUOTED([NAME_OF_DEV_URANDOM], [_("/dev/urandom")], [] ) + AC_DEFINE_UNQUOTED(NAME_OF_DEV_URANDOM, _("/dev/urandom") ) fi else AC_MSG_RESULT(no) - AC_DEFINE([HAVE_UNIX_RANDOM], [1], [unix entropy gathering]) + AC_DEFINE(HAVE_UNIX_RANDOM) fi fi @@ -1973,9 +1362,70 @@ +dnl +dnl NETWORK OPTIONS +dnl + + +AC_ARG_ENABLE(network, + [ --enable-network=[[client|server]] compile client or server [[no]]], + [ + if test "x$enable_network" = xclient; then + mytclient="-DSH_WITH_CLIENT" + yulectl_prg= + setpwd_prg="samhain_setpwd" + sh_main_prg="samhain" + if test "x${sh_have_gmp}" = xyes + then + LIBS="-lgmp $LIBS" + fi +dnl AC_CHECK_HEADER(sys/capability.h, +dnl [AC_CHECK_LIB(cap, cap_get_proc,,sh_use_lcaps="no")], +dnl [sh_use_lcaps="no"]) + elif test "x$enable_network" = xserver; then + mytclient="-DSH_WITH_SERVER" + yulectl_prg="yulectl" + setpwd_prg="samhain_setpwd" + sh_main_prg="yule" + if test "x${sh_have_gmp}" = xyes + then + LIBS="-lgmp $LIBS" + fi + sh_use_lcaps="undef" + elif test "x$enable_network" = xno; then + mytclient="-DSH_STANDALONE" + yulectl_prg= + setpwd_prg= + sh_main_prg="samhain" +dnl AC_CHECK_HEADER(sys/capability.h, +dnl [AC_CHECK_LIB(cap, cap_get_proc,,sh_use_lcaps="no")], +dnl [sh_use_lcaps="no"]) + else + AC_MSG_ERROR([--enable-network=WHAT: WHAT must be client, server, or no]) + fi + ], + [ + mytclient="-DSH_STANDALONE" + setpwd_prg= + yulectl_prg= + sh_main_prg="samhain" +dnl AC_CHECK_HEADER(sys/capability.h, +dnl [AC_CHECK_LIB(cap, cap_get_proc,,sh_use_lcaps="no")], +dnl [sh_use_lcaps="no"]) + ], +) +AC_SUBST(setpwd_prg) +AC_SUBST(yulectl_prg) +AC_SUBST(sh_main_prg) +AC_SUBST(mytclient) + +# needed for the rpm spec +clmytclient=`echo ${mytclient} | sed s%\-%%` +AC_SUBST(clmytclient) + AC_ARG_ENABLE(udp, [ --enable-udp server can listen on port 514/udp [[no]]], [ if test "x${enable_udp}" = xyes; then - AC_DEFINE([INET_SYSLOG], [1], [server may listen on 514/udp for syslog reports]) + AC_DEFINE(INET_SYSLOG) fi ] @@ -1988,10 +1438,14 @@ if test "x${enable_encrypt}" = xno; then myencrypt=no + elif test "x${enable_encrypt}" = "x1"; then + myencrypt=1 fi ] ) if test "x${myencrypt}" = "xyes"; then - AC_DEFINE([SH_ENCRYPT], [1], [client/server encryption]) - AC_DEFINE([SH_ENCRYPT_2], [1], [client/server encryption v2]) + AC_DEFINE(SH_ENCRYPT) + AC_DEFINE(SH_ENCRYPT_2) +elif test "x${myencrypt}" = "x1"; then + AC_DEFINE(SH_ENCRYPT) fi @@ -2006,5 +1460,5 @@ ) if test "x${sh_use_srp_proto}" = xyes; then - AC_DEFINE([USE_SRP_PROTOCOL], [1], [auth with SRP]) + AC_DEFINE(USE_SRP_PROTOCOL) fi @@ -2013,9 +1467,9 @@ [ echo "${withval}" | grep ['[^0123456789]'] >/dev/null 2>&1 && - AC_MSG_ERROR([For --with-port=PORT, PORT must be numeric.]) + AC_MSG_ERROR([--with-port: PORT must be numeric]) myport=${withval} ], [myport="49777"]) -AC_DEFINE_UNQUOTED([SH_DEFAULT_PORT], [${myport}], [TCP port for client/server connection]) +AC_DEFINE_UNQUOTED(SH_DEFAULT_PORT, ${myport}) AC_SUBST(myport) @@ -2033,5 +1487,5 @@ ], [mylogsrv="NULL"]) -AC_DEFINE_UNQUOTED([DEFAULT_LOGSERVER], [_("${mylogsrv}")], [] ) +AC_DEFINE_UNQUOTED(DEFAULT_LOGSERVER, _("${mylogsrv}") ) AC_SUBST(mylogsrv) @@ -2049,5 +1503,5 @@ ], [myaltlogsrv="NULL"]) -AC_DEFINE_UNQUOTED([ALT_LOGSERVER], [_("${myaltlogsrv}")], [] ) +AC_DEFINE_UNQUOTED(ALT_LOGSERVER, _("${myaltlogsrv}")) @@ -2062,30 +1516,29 @@ [ if test "x${enableval}" != "x"; then - AC_DEFINE([SH_STEALTH_NOCL], [1], [restrict CL parsing]) + AC_DEFINE(SH_STEALTH_NOCL) fi if test "x${enableval}" = "xstop" || test "x${enableval}" = "xstart"; then - AC_MSG_ERROR([For --enable-nocl=PW start/stop/reload/restart/status are reserved words.]) + AC_MSG_ERROR([--enable-nocl: start/stop/reload/restart/status are reserved words]) fi if test "x${enableval}" = "xreload" || test "x${enableval}" = "xrestart"; then - AC_MSG_ERROR([For --enable-nocl=PW start/stop/reload/restart/status are reserved words.]) + AC_MSG_ERROR([--enable-nocl: start/stop/reload/restart/status are reserved words]) fi if test "x${enableval}" = "xstatus"; then - AC_MSG_ERROR([For --enable-nocl=PW start/stop/reload/restart/status are reserved words.]) + AC_MSG_ERROR([--enable-nocl: start/stop/reload/restart/status are reserved words]) fi if test "x${enableval}" = "xno"; then - AC_MSG_ERROR([With --enable-nocl=PW, the use of --enable-nocl=no is ambiguous.]) + AC_MSG_ERROR([--enable-nocl: use of --enable-nocl=no is ambiguous]) fi nocl_code="${enable_nocl}" ] ) -AC_DEFINE_UNQUOTED([NOCL_CODE], [_("${nocl_code}")], [code to enable CL parsing] ) +AC_DEFINE_UNQUOTED(NOCL_CODE, _("${nocl_code}") ) AC_SUBST(nocl_code) AC_ARG_ENABLE(stealth, [ --enable-stealth=XOR_VAL enable stealth mode [[no]]], - [ - AC_DEFINE([SH_STEALTH], [1], [enable stealth mode]) + [AC_DEFINE(SH_STEALTH) if test "x${enableval}" != "xyes"; then echo "${enableval}" | grep ['[^0123456789]'] >/dev/null 2>&1 && - AC_MSG_ERROR([For --enable-stealth=XOR_VAL, XOR_VAL must be numeric.]) + AC_MSG_ERROR([--enable-stealth: XOR_VAL must be numeric]) if test "${enableval}" -lt 127 || test "${enableval}" -gt 255; then if test x"${enableval}" = x0 @@ -2093,5 +1546,5 @@ : else - AC_MSG_ERROR([For --enable-stealth=XOR_VAL, XOR_VAL must be in the range 127 to 255.]) + AC_MSG_ERROR([--enable-stealth: XOR_VAL must be in the range 127 to 255]) fi fi @@ -2109,9 +1562,9 @@ [ --enable-micro-stealth=XOR_VAL enable micro stealth mode [[no]]], [ - AC_DEFINE([SH_STEALTH], [1], [enable stealth mode]) - AC_DEFINE([SH_STEALTH_MICRO], [1], [enable micro stealth mode]) + AC_DEFINE(SH_STEALTH) + AC_DEFINE(SH_STEALTH_MICRO) if test "x${enableval}" != "xyes"; then echo "${enableval}" | grep ['[^0123456789]'] >/dev/null 2>&1 && - AC_MSG_ERROR([For --enable-micro-stealth=XOR_VAL, XOR_VAL must be numeric.]) + AC_MSG_ERROR([--enable-micro-stealth: XOR_VAL must be numeric]) if test "${enableval}" -lt 127 || test "${enableval}" -gt 255; then if test x"${enableval}" = x0 @@ -2119,5 +1572,5 @@ : else - AC_MSG_ERROR([For --enable-micro-stealth=XOR_VAL, XOR_VAL must be in the range 127 to 255.]) + AC_MSG_ERROR([--enable-micro-stealth: XOR_VAL must be in the range 127 to 255]) fi fi @@ -2159,9 +1612,9 @@ fi echo "${myident}" | grep ['[^0123456789]'] >/dev/null 2>&1 || \ - AC_MSG_ERROR([With --enable-identity=USER, please supply a username, not a UID.]) + AC_MSG_ERROR([--enable-identity: need username, not UID]) myident_uid=`(cat /etc/passwd; ypcat passwd) 2>/dev/null |\ grep "^${myident}:" | awk -F: '{ print $3; }'` if test x"${myident_uid}" = x; then - AC_MSG_WARN([Option --enable-identity used, user ${myident} will be added upon install.]) + AC_MSG_WARN([--enable-identity: user ${myident} will be added upon install]) need_user_install=1 fi @@ -2185,8 +1638,85 @@ fi ]) -AC_DEFINE_UNQUOTED([DEFAULT_IDENT], [_("${myident}")], [use this as install name] ) +AC_DEFINE_UNQUOTED(DEFAULT_IDENT, _("${myident}") ) AC_SUBST(myident) AC_SUBST(need_user_install) +sh_insmod_cmd=": # no kernel module" +sh_lkm="" +lkm_inc="" +khidemap="/boot/System.map" +sh_syscalltable="0x0" +AC_ARG_ENABLE(khide, + [ --enable-khide=SYSTEM_MAP use kernel module to hide (Linux only)[[/boot/System.map]]], + [ + if test "x${enable_khide}" != xno; then + if test "x${enableval}" != "xyes"; then + khidemap="${enableval}" + fi + sh_syscalltable=`grep 'D sys_call_table' ${khidemap} | awk '{print $1}'` + if test x"$sh_syscalltable" = x; then + sh_syscalltable=`grep 'd sys_call_table' ${khidemap} | awk '{print $1}'` + if test x"$sh_syscalltable" = x; then + AC_MSG_ERROR([--enable-khide: symbol sys_call_table not found in ${khidemap}]) + fi + fi + sh_syscalltable="0x${sh_syscalltable}" + install_name_len=`echo ${install_name} | awk '{ print(length()); }'` + if test "${install_name_len}" -gt 15 ; then + AC_MSG_ERROR([--enable-khide: install_name exceeds 15 char length limit]) + fi + AC_DEFINE(SH_USE_LKM) + AC_DEFINE_UNQUOTED(SH_MAGIC_HIDE, "${install_name}") + + # -- NEW -- + kernel_version=`uname -r | sed s,2.6.*,LINUX26,` + if test x"$kernel_version" = xLINUX26 + then + sh_modlist_lock=`egrep ['[bd] modlist_lock$'] ${khidemap} | awk '{print $1}'` + if test x"$sh_modlist_lock" = x; then + AC_MSG_ERROR([--enable-khide: symbol modlist_lock not found in ${khidemap}]) + fi + sh_modlist_lock="0x${sh_modlist_lock}" + AC_DEFINE_UNQUOTED(SH_MODLIST_LOCK, ${sh_modlist_lock}, [The address of the modules list spinlock]) + + sh_list_modules=`egrep 'd modules$' ${khidemap} | awk '{print $1}'` + if test x"$sh_list_modules" = x; then + AC_MSG_ERROR([--enable-khide: symbol modules not found in ${khidemap}]) + fi + sh_list_modules="0x${sh_list_modules}" + AC_DEFINE_UNQUOTED(SH_LIST_MODULES, ${sh_list_modules}, [The address of the modules list]) + + AC_DEFINE(LINUX26, 1, [Define if kernel is 2.6]) + sh_insmod_cmd="modprobe ${install_name}_hide" + sh_lkm="samhain_hide.ko" + else + sh_insmod_cmd="insmod ${install_name}_hide; insmod ${install_name}_erase; rmmod ${install_name}_erase" + sh_lkm="samhain_hide.o samhain_erase.o" + fi + # -- END NEW -- + + kvers=`uname -r` + if test -f /lib/modules/${kvers}/build/include/linux/kernel.h; then + lkm_inc="-I/lib/modules/${kvers}/build/include" + else + AC_MSG_WARN([--enable-khide: /lib/modules/${kvers}/build/include/linux not found]) + AC_MSG_WARN([--enable-khide: You may need to install the kernel-source]) + AC_MSG_WARN([--enable-khide: headers for the currently-running kernel.]) + fi + sh_is_vanilla_kernel=yes + if test -f /lib/modules/${kvers}/build/include/linux/sched.h; then + grep 'next_task,' /lib/modules/${kvers}/build/include/linux/sched.h >/dev/null 2>&1 || sh_is_vanilla_kernel=no + fi + if test x"${sh_is_vanilla_kernel}" = xno; then + echo "This is not a 2.4 vanilla kernel" + else + AC_DEFINE(SH_VANILLA_KERNEL) + fi + fi + ] +) +AC_SUBST(lkm_inc) +AC_SUBST(sh_lkm) +AC_SUBST(sh_insmod_cmd) AC_SUBST(install_name) AC_SUBST(INSTALL_NAME) @@ -2194,5 +1724,6 @@ AC_SUBST(xor_code) -AC_DEFINE_UNQUOTED([XOR_CODE], [${xor_code}], [] ) +AC_DEFINE_UNQUOTED(XOR_CODE, ${xor_code}) +AC_DEFINE_UNQUOTED(SH_SYSCALLTABLE, ${sh_syscalltable}) @@ -2201,7 +1732,7 @@ exepack_state2=`${srcdir}/c_random.sh 2>/dev/null` -AC_DEFINE_UNQUOTED([EXEPACK_STATE_0], [${exepack_state0}], [exepack init key p1]) -AC_DEFINE_UNQUOTED([EXEPACK_STATE_1], [${exepack_state1}], [exepack init key p2]) -AC_DEFINE_UNQUOTED([EXEPACK_STATE_2], [${exepack_state2}], [exepack init key p3]) +AC_DEFINE_UNQUOTED(EXEPACK_STATE_0, ${exepack_state0}) +AC_DEFINE_UNQUOTED(EXEPACK_STATE_1, ${exepack_state1}) +AC_DEFINE_UNQUOTED(EXEPACK_STATE_2, ${exepack_state2}) @@ -2210,9 +1741,37 @@ [ if test "x${enableval}" = "xyes"; then - AC_DEFINE([SH_USE_SUIDCHK], [1], [check for suid/sgid files]) + AC_DEFINE(SH_USE_SUIDCHK) fi ] ) + +systemmap="/boot/System.map" +sh_libkvm="" +AC_ARG_WITH(kcheck, + [ --with-kcheck=SYSTEM_MAP check Linux kernel integrity [[/boot/System.map]]], + [ + if test "x${withval}" != "xno"; then + AC_DEFINE(SH_USE_KERN) + kernelversion=`uname -r` + AC_DEFINE_UNQUOTED(SH_KERNEL_VERSION, _("${kernelversion}"), [Define the kernel version]) + if test "x${withval}" != "xyes"; then + systemmap="${withval}" + fi + if test "x${cross_compiling}" = xyes; then + : + elif test "x$selectconfig" = "xfreebsd"; then + LIBS="$LIBS -lkvm" + sh_libkvm="-lkvm" + elif test -f "${systemmap}"; then + : + else + AC_MSG_ERROR([--with-kcheck: cannot find system map ${systemmap}]) + fi + fi + ] +) +AC_SUBST(systemmap) +AC_SUBST(sh_libkvm) AC_ARG_ENABLE(base, @@ -2224,13 +1783,13 @@ AC_MSG_RESULT(${my_key_A} ${my_key_B}) if test "x${my_key_A}" = x; then - AC_MSG_ERROR([Option --enable-base=B1,B2 used with invalid first base key (zero length).]) + AC_MSG_ERROR([--enable-base: first base key has zero length]) fi if test "x${my_key_B}" = x; then - AC_MSG_ERROR([Option --enable-base=B1,B2 used with invalid second base key (zero length).]) + AC_MSG_ERROR([--enable-base: second base key has zero length]) fi echo "${my_key_A}" | grep ['[^0123456789]'] >/dev/null 2>&1 && - AC_MSG_ERROR([For --enable-base=B1,B2, B1 and B2 must be numeric in the range 0 to 2147483647.]) + AC_MSG_ERROR([--enable-base: base key must be numeric in the range 0 to 2147483647]) echo "${my_key_B}" | grep ['[^0123456789]'] >/dev/null 2>&1 && - AC_MSG_ERROR([For --enable-base=B1,B2, B1 and B2 must be numeric in the range 0 to 2147483647.]) + AC_MSG_ERROR([--enable-base: base key must be numeric in the range 0 to 2147483647]) ], [ @@ -2281,107 +1840,18 @@ pos_tf=`expr $pos_tf_2 + 1` AC_MSG_RESULT(${pos_tf}) -AC_DEFINE_UNQUOTED([POS_TF], [${pos_tf}], [] ) +AC_DEFINE_UNQUOTED(POS_TF, ${pos_tf} ) mykeybase=`echo ${my_key_A},${my_key_B}` -AC_DEFINE_UNQUOTED([DEFKEY], [${mykeybase}], [] ) +AC_DEFINE_UNQUOTED(DEFKEY, ${mykeybase} ) AC_SUBST(mykeybase) dnl -dnl Signify/GnuPG options +dnl GPG/PGP options dnl - -AC_ARG_WITH(signify, - [ --with-signify=PATH use OpenBSD signify to verify database/config [[no]]], - [ - if test "x${withval}" != "xno"; then - if test "x${cross_compiling}" = xyes; then - mysignify="${withval}" - else - if test -f "${withval}"; then - mysignify="${withval}" - mychk0=`gpg --load-extension tiger --print-md TIGER192 ${withval} 2>/dev/null` - if test "x$?" != "x0"; then - mychktest=no - for sam_pre in ./samhain ./yule /usr/local/sbin/samhain /usr/local/bin/samhain /usr/bin/samhain /usr/sbin/samhain /usr/local/sbin/yule /usr/local/bin/yule /usr/bin/yule /usr/sbin/yule; do - if test x"${mychktest}" = xyes - then - : - else - if test -f ${sam_pre} - then - echo "use existing ${sam_pre} for signify checksum" - mychk0=`${sam_pre} -H ${withval} 2>/dev/null` - if test "x$?" != "x0"; then - if test "x${nocl_code}" != "x"; then - mychk0=`echo -H ${withval} | ${sam_pre} ${nocl_code} 2>/dev/null` - if test "x$?" != "x0"; then - : - else - mychk="${mychk0}" - mychktest=yes - fi - fi - else - mychk="${mychk0}" - mychktest=yes - fi - fi - fi - done - if test x${mychktest} = xno; then - AC_MSG_WARN([--with-signify: cannot determine TIGER192 checksum of ${withval}]) - echo "-------------------------------------------------------------" - echo " I cannot find an existing GnuPG or samhain binary to use." - echo " You can:" - echo " (a) run make to compile a samhain binary, then repeat" - echo " ./configure and make" - echo " (b) ignore the failure. The checksum of the signify binary" - echo " will not get compiled in, thus allowing an attacker" - echo " to replace signify with a trojan and subverting the" - echo " signature verification of configure and database files." - echo - echo " PLEASE IGNORE THIS MESSAGE IF YOU ALSO USE --with-checksum" - echo "-------------------------------------------------------------" - fi - else - mychk="${mychk0}" - fi - else - AC_MSG_ERROR([--with-signify: cannot find signify PATH=${withval}]) - fi - fi - AC_DEFINE([WITH_SIG], [1], [Define if signature checking is supported.]) - AC_DEFINE([WITH_SIGNIFY], [1], [Define if using OpenBSD signify for signature checking.]) - AC_DEFINE_UNQUOTED([DEFAULT_SIG_PATH], [_("${mysignify}")], [Define as path to signing binary]) - AC_SUBST(mysignify) - fi - ] -) - -AC_ARG_WITH(pubkey-checksum, - [ --with-pubkey-checksum=CHKSUM compile in TIGER192 checksum of signify public key [[no]]], - [ - if test "x${withval}" != "xno"; then - if test "x${withval}" == "xyes"; then - AC_MSG_ERROR([Option --with-pubkey-checksum=CHKSUM: checksum CHKSUM of signify public key not specified.]) - else - if test "x${withval}" = "x"; then - AC_MSG_ERROR([Option --with-checksum=CHKSUM: checksum CHKSUM of the signify public key not specified.]) - fi - fi - AC_DEFINE([HAVE_SIG_KEY_HASH], [1], [Define if signing binary checksum available.]) - AC_DEFINE_UNQUOTED([SIG_KEY_HASH], [_("${withval}")], [Define as the signify public key checksum.] ) - fi - ] -) - AC_ARG_WITH(gpg, [ --with-gpg=PATH use GnuPG to verify database/config [[no]]], [ - if test "x${mysignify}" != "x"; then - AC_MSG_ERROR([--with-gpg: already using --with-signify]) - fi if test "x${withval}" != "xno"; then if test "x${cross_compiling}" = xyes; then @@ -2403,13 +1873,5 @@ mychk0=`${sampre} -H ${withval} 2>/dev/null` if test "x$?" != "x0"; then - if test "x${nocl_code}" != "x"; then - mychk0=`echo -H ${withval} | ${sampre} ${nocl_code} 2>/dev/null` - if test "x$?" != "x0"; then - : - else - mychk="${mychk0}" - mychktest=yes - fi - fi + : else mychk="${mychk0}" @@ -2431,6 +1893,4 @@ echo " to replace gpg with a trojan and subverting the gpg" echo " signature verification of configure and database files." - echo - echo " PLEASE IGNORE THIS MESSAGE IF YOU ALSO USE --with-checksum" echo "-------------------------------------------------------------" fi @@ -2439,10 +1899,9 @@ fi else - AC_MSG_ERROR([--with-gpg: cannot find GnuPG PATH=${withval}]) + AC_MSG_WARN([--with-gpg: cannot find GnuPG PATH=${withval}]) fi fi - AC_DEFINE([WITH_SIG], [1], [Define if signature checking is supported.]) - AC_DEFINE([WITH_GPG], [1], [] ) - AC_DEFINE_UNQUOTED([DEFAULT_SIG_PATH], [_("${mygpg}")], [Define as path to signing binary]) + AC_DEFINE(WITH_GPG) + AC_DEFINE_UNQUOTED(DEFAULT_GPG_PATH, _("${mygpg}") ) AC_SUBST(mygpg) fi @@ -2450,27 +1909,13 @@ ) - - -AC_ARG_WITH(keyid, - [ --with-keyid=KEYID specify KeyID (0x...) for GPG/PGP functions [[none]]], - [ - if test "x${withval}" != "x"; then - echo "${withval}" | awk '{if((length($0)==10)||(length($0)==18)){exit 2}else{exit 0}}' && - AC_MSG_ERROR([--with-keyid:${withval} must be "0x" + 8|16 hex digits]) - echo "${withval}" | grep ['[^0][^x][^0123456789ABCDEFabcdef]'] >/dev/null 2>&1 && - AC_MSG_ERROR([--with-keyid:${withval} must be "0x" + 8|16 hex digits]) - mykeyid="$withval" - mykeytag="--default-key" - else - mykeyid="" - mykeytag="" - fi - AC_SUBST(mykeyid) - AC_SUBST(mykeytag) - ] -) +dnl AC_ARG_WITH(pgp, +dnl [ --with-pgp=PATH Use PGP to verify database/config (no).], +dnl [myppg="$withval" +dnl AC_DEFINE(WITH_PGP) +dnl AC_DEFINE_UNQUOTED(DEFAULT_PGP_PATH, _("${myppg}") ) +dnl ]) AC_ARG_WITH(checksum, - [ --with-checksum=CHKSUM compile in checksum of signing binary (e.g. gpg) [[yes]]], + [ --with-checksum=CHKSUM compile in gpg/pgp checksum [[yes]]], [ if test "x${withval}" != "xno"; then @@ -2478,5 +1923,5 @@ if test "x${mychk}" != "x"; then if test "x${mychk}" != "x${withval}"; then - AC_MSG_WARN([--with-checksum: possible signing binary CHKSUM problem]) + AC_MSG_WARN([--with-checksum: possible gpg CHKSUM problem]) AC_MSG_WARN([--with-checksum: CHKSUM=${withval}]) AC_MSG_WARN([--with-checksum: autodetected=${mychk}]) @@ -2486,19 +1931,18 @@ else if test "x${mychk}" = "x"; then - AC_MSG_ERROR([Option --with-checksum=CHKSUM: checksum CHKSUM of the signing binary not specified.]) + AC_MSG_ERROR([--with-checksum: gpg CHKSUM not specified]) fi fi - AC_DEFINE([HAVE_SIG_CHECKSUM], [1], [Define if signing binary checksum available.]) - AC_DEFINE_UNQUOTED([SIG_HASH], [_("${mychk}")], [Define as the signing binary TIGER192 checksum.] ) - echo "${mychk}" | sed 's,.*:,,g' | sed 's, ,,g' | sed 's,\(.\),\1:,g' | awk '{ split($0, arr, ":"); m = length($1)/2; print "#ifndef CHKSUM_H"; print "#define CHKSUM_H"; print "char sigchk[50];"; for (i=1; i <= m; i++) printf "sigchk[%d] = %c%s%c;\n", i-1, 39, arr[i], 39; printf "sigchk[48] = %c%c0%c;\n", 39, 92, 39; print "#endif"; }' > sh_sig_chksum.h + AC_DEFINE(HAVE_GPG_CHECKSUM) + AC_DEFINE_UNQUOTED(GPG_HASH, _("${mychk}") ) + echo "${mychk}" | sed 's,.*:,,g' | sed 's, ,,g' | sed 's,\(.\),\1:,g' | awk '{ split($0, arr, ":"); m = length($1)/2; print "#ifndef CHKSUM_H"; print "#define CHKSUM_H"; print "char gpgchk[50];"; for (i=1; i <= m; i++) printf "gpgchk[%d] = %c%s%c;\n", i-1, 39, arr[i], 39; printf "gpgchk[48] = %c%c0%c;\n", 39, 92, 39; print "#endif"; }' > sh_gpg_chksum.h fi ], [ - if test "x${mygpg}" != "x" || test "x${mysignify}" != "x" - then + if test "x${mygpg}" != "x"; then if test "x${mychk}" != "x"; then - AC_DEFINE([HAVE_SIG_CHECKSUM], [1], [Define if signing binary checksum available.]) - AC_DEFINE_UNQUOTED([SIG_HASH], [_("${mychk}")], [Define as the signing binary TIGER192 checksum.] ) - echo "${mychk}" | sed 's,.*:,,g' | sed 's, ,,g' | sed 's,\(.\),\1:,g' | awk '{ split($0, arr, ":"); m = length($1)/2; print "#ifndef CHKSUM_H"; print "#define CHKSUM_H"; print "char sigchk[50];"; for (i=1; i <= m; i++) printf "sigchk[%d] = %c%s%c;\n", i-1, 39, arr[i], 39; printf "sigchk[48] = %c%c0%c;\n", 39, 92, 39; print "#endif"; }' > sh_sig_chksum.h + AC_DEFINE(HAVE_GPG_CHECKSUM) + AC_DEFINE_UNQUOTED(GPG_HASH, _("${mychk}") ) + echo "${mychk}" | sed 's,.*:,,g' | sed 's, ,,g' | sed 's,\(.\),\1:,g' | awk '{ split($0, arr, ":"); m = length($1)/2; print "#ifndef CHKSUM_H"; print "#define CHKSUM_H"; print "char gpgchk[50];"; for (i=1; i <= m; i++) printf "gpgchk[%d] = %c%s%c;\n", i-1, 39, arr[i], 39; printf "gpgchk[48] = %c%c0%c;\n", 39, 92, 39; print "#endif"; }' > sh_gpg_chksum.h fi fi @@ -2514,5 +1958,5 @@ echo "${withval0}" | \ grep ['[^0123456789abcdefABCDEF]'] >/dev/null 2>&1 && - AC_MSG_ERROR([In option --with-fp=FINGERPRINT, there is an invalid character(s) in FINGERPRINT=${withval0}.]) + AC_MSG_ERROR([--with-fp: invalid character(s) in FINGERPRINT=${withval0}]) sh_len=`echo ${withval0} | wc -c | sed 's% %%g'` sh_len0=`expr ${sh_len} \- 1` @@ -2520,12 +1964,12 @@ then myfp="${withval0}" - AC_DEFINE([USE_FINGERPRINT], [1], [] ) - AC_DEFINE_UNQUOTED([SH_GPG_FP], [_("${myfp}")], [] ) + AC_DEFINE(USE_FINGERPRINT) + AC_DEFINE_UNQUOTED(SH_GPG_FP, _("${myfp}") ) echo "${myfp}" | sed 's,.*:,,g' | sed 's, ,,g' | sed 's,\(.\),\1:,g' | awk '{ split($0, arr, ":"); m = length($1)/2; print "#ifndef FINGERPRINT_H"; print "#define FINGERPRINT_H"; printf "char gpgfp[%d];\n", m+1; for (i=1; i <= m; i++) printf "gpgfp[%d] = %c%s%c;\n", i-1, 39, arr[i], 39; printf "gpgfp[%d] = %c%c0%c;\n", m, 39, 92, 39; print "#endif"; }' > sh_gpg_fp.h else - AC_MSG_ERROR([In option --with-fp=FINGERPRINT, the length (${sh_len0}) of FINGERPRINT ${withval0} is incorrect.]) + AC_MSG_ERROR([--with-fp: length (${sh_len0}) of FINGERPRINT ${withval0} incorrect]) fi else - AC_MSG_ERROR([For option --with-fp=FINGERPRINT, FINGERPRINT=yes is invalid, please specify a valid key fingerprint.]) + AC_MSG_ERROR([--with-fp: usage error ... FINGERPRINT=yes]) fi fi @@ -2544,15 +1988,13 @@ do case ${sh_item} in - *@localhost) - ;; *@*.*) sh_tmp=`echo ${sh_item} | awk '{ if ($1 ~ [/^[a-zA-Z0-9][a-zA-Z0-9\-_\.]*@[a-zA-Z0-9\-\.]+\.([a-zA-Z]+|[0-9]+)$/]) {print 1; } else { print 0}}'` if test "x${sh_tmp}" != "x1" then - AC_MSG_ERROR([Option --with-recipient=ADDR used with invalid mail address ${sh_item}.]) + AC_MSG_ERROR([--with-recipient: invalid mail address ${sh_item}]) fi ;; *) - AC_MSG_ERROR([Option --with-recipient=ADDR used with invalid mail address ${sh_item}.]) + AC_MSG_ERROR([--with-recipient: invalid mail address ${sh_item}]) ;; esac @@ -2561,5 +2003,5 @@ ], [myrcp="NULL"]) -AC_DEFINE_UNQUOTED([DEFAULT_MAILADDRESS], [_("${myrcp}")], [] ) +AC_DEFINE_UNQUOTED(DEFAULT_MAILADDRESS, _("${myrcp}") ) @@ -2572,5 +2014,5 @@ mysender="daemon" ]) -AC_DEFINE_UNQUOTED([DEFAULT_SENDER], [_("${mysender}")], [] ) +AC_DEFINE_UNQUOTED(DEFAULT_SENDER, _("${mysender}") ) @@ -2587,5 +2029,5 @@ do echo "${sh_tmp1}" | grep ['[^0123456789]'] >/dev/null 2>&1 && - AC_MSG_ERROR([Option --with-trusted=UID used with non-numeric UID in ${withval}.]) + AC_MSG_ERROR([--with-trusted: non-numeric UID in ${withval}]) if test "x${sh_tmp1}" = "x0" then @@ -2600,8 +2042,6 @@ ], [mytrust="0"] ) -AC_DEFINE_UNQUOTED([SL_ALWAYS_TRUSTED], [${mytrust}], [UIDs of trusted users] ) +AC_DEFINE_UNQUOTED(SL_ALWAYS_TRUSTED, ${mytrust} ) AC_SUBST(mytrust) - -mytmpdir= AC_ARG_WITH(tmp-dir, @@ -2609,21 +2049,15 @@ [ if test "x${cross_compiling}" = xyes; then - mytmpdir="$withval" - AC_DEFINE_UNQUOTED([SH_TMPDIR], [_("${mytmpdir}")], [] ) + : else if test -d "${withval}"; then - mytmpdir="$withval" - AC_DEFINE_UNQUOTED([SH_TMPDIR], [_("${mytmpdir}")], [] ) + my_tmp_dir="$withval" + AC_DEFINE_UNQUOTED(SH_TMPDIR, _("${my_tmp_dir}") ) else - mytmpdir="$withval" - AC_DEFINE_UNQUOTED([SH_TMPDIR], [_("${mytmpdir}")], [] ) - AC_MSG_WARN([--with-tmp-dir: tmp directory ${withval} does not exist]) + AC_MSG_ERROR([--with-tmp-dir: tmp directory ${withval} does not exist]) fi fi ] ) - -AC_SUBST(mytmpdir) - dnl @@ -2717,5 +2151,5 @@ ] ) -AC_DEFINE_UNQUOTED([DEFAULT_CONFIGFILE], [_("${myconffile}")], [] ) +AC_DEFINE_UNQUOTED(DEFAULT_CONFIGFILE, _("${myconffile}") ) AC_SUBST(myconffile) AC_SUBST(myrpmconffile) @@ -2739,6 +2173,6 @@ ] ) -AC_DEFINE_UNQUOTED([DEFAULT_ERRFILE], [_("${mylogfile}")], [] ) -AC_DEFINE_UNQUOTED([DEFAULT_LOGDIR], [_("${mylogdir}")], [] ) +AC_DEFINE_UNQUOTED(DEFAULT_ERRFILE, _("${mylogfile}") ) +AC_DEFINE_UNQUOTED(DEFAULT_LOGDIR, _("${mylogdir}") ) AC_SUBST(mylogfile) AC_SUBST(mylogdir) @@ -2753,15 +2187,10 @@ ], [ - if test -h /var/run && test -d /run; then - mylockfile="/run/${install_name}.pid" - mylockdir="/run" - else - mylockfile="${localstatedir}/run/${install_name}.pid" - mylockdir="${localstatedir}/run" - fi + mylockfile="${localstatedir}/run/${install_name}.pid" + mylockdir="${localstatedir}/run" ] ) -AC_DEFINE_UNQUOTED([DEFAULT_ERRLOCK], [_("${mylockfile}")], [] ) -AC_DEFINE_UNQUOTED([DEFAULT_PIDDIR], [_("${mylockdir}")], [] ) +AC_DEFINE_UNQUOTED(DEFAULT_ERRLOCK, _("${mylockfile}") ) +AC_DEFINE_UNQUOTED(DEFAULT_PIDDIR, _("${mylockdir}") ) AC_SUBST(mylockfile) AC_SUBST(mylockdir) @@ -2793,5 +2222,5 @@ echo "It should be REQ_FROM_SERVER/some/local/path" fi - AC_MSG_ERROR([Option --with-data-file=FILE used with invalid path ${withval}.]) + AC_MSG_ERROR([--with-data-file: invalid path ${withval}]) fi ], @@ -2800,12 +2229,12 @@ myrpmdatafile="${mydatafile}" ]) -AC_DEFINE_UNQUOTED([DEFAULT_DATA_FILE], [_("${mydatafile}")], [] ) +AC_DEFINE_UNQUOTED(DEFAULT_DATA_FILE, _("${mydatafile}") ) AC_SUBST(mydatafile) AC_SUBST(myrpmdatafile) -AC_DEFINE_UNQUOTED([DEFAULT_DATAROOT], [_("${mydataroot}")], [] ) +AC_DEFINE_UNQUOTED(DEFAULT_DATAROOT, _("${mydataroot}") ) AC_SUBST(mydataroot) -AC_DEFINE_UNQUOTED([DEFAULT_QDIR], [_("${mydataroot}/.quarantine")], [] ) +AC_DEFINE_UNQUOTED(DEFAULT_QDIR, _("${mydataroot}/.quarantine") ) AC_SUBST(myqdir) @@ -2819,5 +2248,5 @@ myhtmlfile="${mylogdir}/${install_name}.html" ]) -AC_DEFINE_UNQUOTED([DEFAULT_HTML_FILE], [_("${myhtmlfile}")], [] ) +AC_DEFINE_UNQUOTED(DEFAULT_HTML_FILE, _("${myhtmlfile}") ) AC_SUBST(myhtmlfile) @@ -2835,31 +2264,16 @@ -AC_DEFINE_UNQUOTED([SH_INSTALL_DIR], [_("${sbindir}")], [] ) -AC_DEFINE_UNQUOTED([SH_INSTALL_PATH], [_("${sbindir}/${install_name}")], [] ) -AC_DEFINE_UNQUOTED([SH_INSTALL_NAME], [_("${install_name}")], [] ) - -AH_TOP([ -#ifndef SH_CONFIG_H -#define SH_CONFIG_H -]) -AH_BOTTOM([ -#ifdef SH_STEALTH -char * globber(const char * string); -#define _(string) globber(string) -#define N_(string) string -#else -#define _(string) string -#define N_(string) string -#endif - -#endif -]) -AC_CONFIG_HEADERS([config.h]) -AC_CONFIG_FILES([ +AC_DEFINE_UNQUOTED(SH_INSTALL_DIR, _("${sbindir}")) +AC_DEFINE_UNQUOTED(SH_INSTALL_PATH, _("${sbindir}/${install_name}")) +AC_DEFINE_UNQUOTED(SH_INSTALL_NAME, _("${install_name}")) + +AC_CONFIG_HEADER(config.h) + +AC_OUTPUT( +[ Makefile samhain-install.sh init/samhain.startLSB init/samhain.startLinux -init/samhain.startSystemd init/samhain.startGentoo init/samhain.startFreeBSD @@ -2867,42 +2281,25 @@ init/samhain.startHPUX init/samhain.startIRIX -init/samhain.startMACOSX samhain.spec rules.deb rules.deb-light hp_ux.psf -scripts/logrotate scripts/samhain.spec scripts/redhat_i386.client.spec scripts/samhain.ebuild scripts/samhain.ebuild-light -scripts/samhainadmin-gpg.pl -scripts/samhainadmin-sig.pl -scripts/yuleadmin.pl +scripts/samhainadmin.pl scripts/check_samhain.pl deploy.sh -]) -AC_CONFIG_COMMANDS([stamp-h],[ +], +[ echo timestamp > stamp-h chmod +x samhain-install.sh -chmod +x scripts/samhainadmin-gpg.pl -chmod +x scripts/samhainadmin-sig.pl -chmod +x scripts/yuleadmin.pl +chmod +x scripts/samhainadmin.pl chmod +x scripts/check_samhain.pl ] ) -AC_OUTPUT chmod +x deploy.sh - -if test "x${mysignify}" != x -then - cp -a scripts/samhainadmin-sig.pl scripts/samhainadmin.pl -fi -if test "x${mygpg}" != x -then - cp -a scripts/samhainadmin-gpg.pl scripts/samhainadmin.pl -fi - if test "x${cross_compiling}" = xyes @@ -2919,5 +2316,5 @@ echo "ac_cv_sizeof_char_p size of pointer to char ${ac_cv_sizeof_char_p}" echo "ac_cv_sizeof_char_p size of size_t ${ac_cv_sizeof_size_t}" -echo "ac_cv_sizeof_unsigned_int size of unsigned int ${ac_cv_sizeof_unsigned_int}" +echo "ac_cv_sizeof_unsigned_int_ size of unsigned int ${ac_cv_sizeof_unsigned_int_}" echo "ac_cv_sizeof_unsigned_long size of unsigned long ${ac_cv_sizeof_unsigned_long}" echo "ac_cv_sizeof_unsigned_short size of unsigned short ${ac_cv_sizeof_unsigned_short}" @@ -2945,13 +2342,8 @@ echo " Configuration file: ${myconffile}" echo " Manual pages: ${mandir}" - echo " Data directory: ${mydataroot}" - echo " Database file: ${mydatafile}" + echo " Data: ${mydataroot}" echo " PID file: ${mylockfile}" echo " Log file: ${mylogfile}" echo " Base key: ${mykeybase}" - if test x"$mykeyid" != x - then - echo " target GPG/PGP key: ${mykeyid}" - fi echo if test x"$mytclient" = x"-DSH_WITH_SERVER" Index: trunk/depend.dep =================================================================== --- trunk/depend.dep (revision 591) +++ trunk/depend.dep (revision 1) @@ -1,38 +1,38 @@ # DO NOT DELETE THIS LINE -samhain.o: $(srcsrc)/samhain.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_files.h $(srcinc)/sh_getopt.h $(srcinc)/sh_readconf.h $(srcinc)/sh_hash.h $(srcinc)/sh_dbIO.h $(srcinc)/sh_restrict.h $(srcinc)/sh_nmail.h $(srcinc)/sh_tiger.h $(srcinc)/sh_sig.h $(srcinc)/sh_mem.h $(srcinc)/sh_xfer.h $(srcinc)/sh_tools.h $(srcinc)/sh_hash.h $(srcinc)/sh_extern.h $(srcinc)/sh_modules.h $(srcinc)/sh_ignore.h $(srcinc)/sh_prelink.h $(srcinc)/sh_sem.h sh_MK.h $(srcinc)/sh_schedule.h -sh_unix.o: $(srcsrc)/sh_unix.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_utils.h $(srcinc)/sh_mem.h $(srcinc)/sh_hash.h $(srcinc)/sh_tools.h $(srcinc)/sh_restrict.h $(srcinc)/sh_ipvx.h $(srcinc)/sh_tiger.h $(srcinc)/sh_prelink.h $(srcinc)/sh_pthread.h $(srcinc)/sh_sem.h $(srcinc)/sh_static.h $(srcinc)/sh_prelude.h $(srcinc)/zAVLTree.h $(srcinc)/sh_subuid.h $(srcinc)/sh_ignore.h -sh_utils.o: $(srcsrc)/sh_utils.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_entropy.h $(srcinc)/sh_pthread.h -sh_error.o: $(srcsrc)/sh_error.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_cat.h $(srcinc)/sh_database.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_nmail.h $(srcinc)/sh_xfer.h $(srcinc)/sh_prelude.h $(srcinc)/sh_pthread.h $(srcinc)/sh_tools.h $(srcinc)/sh_extern.h $(srcinc)/sh_checksum.h -sh_files.o: $(srcsrc)/sh_files.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_files.h $(srcinc)/sh_tiger.h $(srcinc)/sh_hash.h $(srcinc)/sh_ignore.h $(srcinc)/sh_inotify.h $(srcinc)/zAVLTree.h $(srcinc)/sh_dbIO.h $(srcinc)/CuTest.h -sh_getopt.o: $(srcsrc)/sh_getopt.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_getopt.h $(srcinc)/sh_unix.h $(srcinc)/sh_files.h $(srcinc)/sh_utils.h $(srcinc)/sh_mail.h $(srcinc)/sh_xfer.h $(srcinc)/sh_hash.h $(srcinc)/sh_dbIO.h $(srcinc)/sh_dbCheck.h $(srcinc)/sh_dbCreate.h $(srcinc)/sh_sem.h $(srcinc)/sh_extern.h -sh_readconf.o: $(srcsrc)/sh_readconf.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_calls.h $(srcinc)/sh_error.h $(srcinc)/sh_extern.h $(srcinc)/sh_unix.h $(srcinc)/sh_files.h $(srcinc)/sh_xfer.h $(srcinc)/sh_sig.h $(srcinc)/sh_hash.h $(srcinc)/sh_dbIO.h $(srcinc)/sh_ignore.h $(srcinc)/sh_database.h $(srcinc)/sh_mail.h $(srcinc)/sh_modules.h $(srcinc)/sh_nmail.h $(srcinc)/sh_prelink.h $(srcinc)/sh_prelude.h $(srcinc)/sh_tiger.h $(srcinc)/sh_tools.h $(srcinc)/sh_utils.h $(srcinc)/sh_restrict.h $(srcinc)/sh_socket.h -sh_tiger0.o: $(srcsrc)/sh_tiger0.c Makefile config_xor.h $(srcinc)/sh_tiger.h $(srcinc)/sh_unix.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_pthread.h $(srcinc)/sh_string.h $(srcinc)/sh_checksum.h +samhain.o: $(srcsrc)/samhain.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_files.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_getopt.h $(srcinc)/sh_readconf.h $(srcinc)/sh_hash.h $(srcinc)/sh_mail.h $(srcinc)/sh_tiger.h $(srcinc)/sh_gpg.h $(srcinc)/sh_mem.h $(srcinc)/sh_forward.h $(srcinc)/sh_tools.h $(srcinc)/sh_hash.h $(srcinc)/sh_extern.h $(srcinc)/sh_modules.h $(srcinc)/sh_ignore.h $(srcinc)/sh_prelink.h sh_MK.h $(srcinc)/sh_schedule.h +sh_unix.o: $(srcsrc)/sh_unix.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_utils.h $(srcinc)/sh_mem.h $(srcinc)/sh_hash.h $(srcinc)/sh_tools.h $(srcinc)/sh_tiger.h $(srcinc)/sh_prelink.h $(srcinc)/sh_static.h $(srcinc)/sh_prelude.h $(srcinc)/sh_ignore.h +sh_utils.o: $(srcsrc)/sh_utils.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_entropy.h +sh_error.o: $(srcsrc)/sh_error.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_cat.h $(srcinc)/sh_database.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_mail.h $(srcinc)/sh_forward.h $(srcinc)/sh_prelude.h $(srcinc)/sh_tools.h $(srcinc)/sh_extern.h +sh_files.o: $(srcsrc)/sh_files.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_files.h $(srcinc)/sh_tiger.h $(srcinc)/sh_hash.h $(srcinc)/sh_ignore.h $(srcinc)/zAVLTree.h +sh_getopt.o: $(srcsrc)/sh_getopt.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_getopt.h $(srcinc)/sh_files.h $(srcinc)/sh_utils.h $(srcinc)/sh_mail.h $(srcinc)/sh_forward.h $(srcinc)/sh_hash.h $(srcinc)/sh_extern.h +sh_readconf.o: $(srcsrc)/sh_readconf.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_database.h $(srcinc)/sh_unix.h $(srcinc)/sh_utils.h $(srcinc)/sh_files.h $(srcinc)/sh_mail.h $(srcinc)/sh_calls.h $(srcinc)/sh_tiger.h $(srcinc)/sh_forward.h $(srcinc)/sh_modules.h $(srcinc)/sh_gpg.h $(srcinc)/sh_hash.h $(srcinc)/sh_ignore.h $(srcinc)/sh_prelink.h $(srcinc)/sh_extern.h $(srcinc)/sh_database.h $(srcinc)/sh_prelude.h +sh_tiger0.o: $(srcsrc)/sh_tiger0.c Makefile config_xor.h $(srcinc)/sh_tiger.h $(srcinc)/sh_unix.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h sh_tiger1.o: $(srcsrc)/sh_tiger1.c Makefile config_xor.h sh_tiger2.o: $(srcsrc)/sh_tiger2.c Makefile config_xor.h sh_tiger1_64.o: $(srcsrc)/sh_tiger1_64.c Makefile config_xor.h sh_tiger2_64.o: $(srcsrc)/sh_tiger2_64.c Makefile config_xor.h -sh_hash.o: $(srcsrc)/sh_hash.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_dbIO_int.h $(srcinc)/sh_dbIO.h $(srcinc)/sh_hash.h $(srcinc)/sh_error.h $(srcinc)/sh_tiger.h $(srcinc)/sh_sig.h $(srcinc)/sh_unix.h $(srcinc)/sh_files.h $(srcinc)/sh_ignore.h $(srcinc)/sh_pthread.h $(srcinc)/sh_xfer.h $(srcinc)/sh_hash.h $(srcinc)/sh_checksum.h -sh_mail.o: $(srcsrc)/sh_mail.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_mail.h $(srcinc)/sh_utils.h $(srcinc)/sh_fifo.h $(srcinc)/sh_tools.h $(srcinc)/sh_pthread.h $(srcinc)/sh_filter.h $(srcinc)/sh_mail_int.h $(srcinc)/sh_nmail.h $(srcinc)/sh_ipvx.h $(srcinc)/sh_static.h $(srcinc)/sh_tools.h -sh_mem.o: $(srcsrc)/sh_mem.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_mem.h $(srcinc)/sh_pthread.h -sh_entropy.o: $(srcsrc)/sh_entropy.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_calls.h $(srcinc)/sh_pthread.h $(srcinc)/sh_static.h $(srcinc)/sh_pthread.h $(srcinc)/CuTest.h -sh_forward.o: $(srcsrc)/sh_forward.c Makefile config_xor.h $(srcinc)/sh_ipvx.h $(srcinc)/samhain.h $(srcinc)/sh_tiger.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_forward.h $(srcinc)/sh_srp.h $(srcinc)/sh_fifo.h $(srcinc)/sh_tools.h $(srcinc)/sh_entropy.h $(srcinc)/sh_html.h $(srcinc)/sh_nmail.h $(srcinc)/sh_socket.h $(srcinc)/sh_static.h $(srcinc)/rijndael-api-fst.h $(srcinc)/sh_readconf.h $(srcinc)/zAVLTree.h $(srcinc)/sh_extern.h -sh_modules.o: $(srcsrc)/sh_modules.c Makefile config_xor.h $(srcinc)/sh_modules.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utmp.h $(srcinc)/sh_mounts.h $(srcinc)/sh_userfiles.h $(srcinc)/sh_suidchk.h $(srcinc)/sh_processcheck.h $(srcinc)/sh_portcheck.h $(srcinc)/sh_logmon.h $(srcinc)/sh_registry.h $(srcinc)/sh_fInotify.h -sh_utmp.o: $(srcsrc)/sh_utmp.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_modules.h $(srcinc)/sh_utmp.h $(srcinc)/sh_pthread.h $(srcinc)/sh_inotify.h -sh_kern.o: $(srcsrc)/sh_kern.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_modules.h $(srcinc)/sh_kern.h sh_ks_xor.h $(srcinc)/sh_unix.h $(srcinc)/sh_hash.h -sh_suidchk.o: $(srcsrc)/sh_suidchk.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_modules.h $(srcinc)/sh_suidchk.h $(srcinc)/sh_hash.h $(srcinc)/sh_dbIO.h $(srcinc)/sh_unix.h $(srcinc)/sh_files.h $(srcinc)/sh_schedule.h $(srcinc)/sh_calls.h $(srcinc)/zAVLTree.h -sh_srp.o: $(srcsrc)/sh_srp.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_tiger.h $(srcinc)/sh_mem.h $(srcinc)/sh_utils.h $(srcinc)/sh_srp.h $(srcinc)/bignum.h $(srcinc)/CuTest.h -sh_fifo.o: $(srcsrc)/sh_fifo.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_mem.h $(srcinc)/sh_unix.h $(srcinc)/sh_utils.h $(srcinc)/sh_string.h $(srcinc)/sh_fifo.h $(srcinc)/CuTest.h -sh_tools.o: $(srcsrc)/sh_tools.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_mem.h $(srcinc)/sh_error.h $(srcinc)/sh_tools.h $(srcinc)/sh_utils.h $(srcinc)/sh_tiger.h $(srcinc)/sh_static.h $(srcinc)/sh_pthread.h $(srcinc)/sh_ipvx.h $(srcinc)/rijndael-api-fst.h $(srcinc)/rijndael-api-fst.h -sh_html.o: $(srcsrc)/sh_html.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_xfer.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_utils.h $(srcinc)/sh_html.h $(srcinc)/zAVLTree.h -sh_gpg.o: $(srcsrc)/sh_gpg.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_tiger.h $(srcinc)/sh_static.h $(srcinc)/sh_gpg.h +sh_hash.o: $(srcsrc)/sh_hash.c Makefile config_xor.h $(srcinc)/sh_hash.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_tiger.h $(srcinc)/sh_gpg.h $(srcinc)/sh_unix.h $(srcinc)/sh_files.h $(srcinc)/sh_ignore.h $(srcinc)/sh_forward.h $(srcinc)/sh_hash.h +sh_mail.o: $(srcsrc)/sh_mail.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_mail.h $(srcinc)/sh_utils.h $(srcinc)/sh_fifo.h $(srcinc)/sh_tools.h $(srcinc)/sh_static.h $(srcinc)/sh_tools.h +sh_mem.o: $(srcsrc)/sh_mem.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_mem.h +sh_entropy.o: $(srcsrc)/sh_entropy.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_calls.h $(srcinc)/sh_static.h +sh_forward.o: $(srcsrc)/sh_forward.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_tiger.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_forward.h $(srcinc)/sh_srp.h $(srcinc)/sh_fifo.h $(srcinc)/sh_tools.h $(srcinc)/sh_entropy.h $(srcinc)/sh_html.h $(srcinc)/sh_mail.h $(srcinc)/sh_socket.h $(srcinc)/sh_static.h $(srcinc)/rijndael-api-fst.h $(srcinc)/sh_readconf.h $(srcinc)/zAVLTree.h $(srcinc)/sh_extern.h +sh_modules.o: $(srcsrc)/sh_modules.c Makefile config_xor.h $(srcinc)/sh_modules.h $(srcinc)/sh_utmp.h $(srcinc)/sh_mounts.h $(srcinc)/sh_userfiles.h $(srcinc)/sh_kern.h $(srcinc)/sh_suidchk.h +sh_utmp.o: $(srcsrc)/sh_utmp.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_modules.h $(srcinc)/sh_utmp.h +sh_kern.o: $(srcsrc)/sh_kern.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_modules.h $(srcinc)/sh_kern.h sh_ks_xor.h $(srcinc)/sh_unix.h $(srcinc)/sh_hash.h +sh_suidchk.o: $(srcsrc)/sh_suidchk.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_modules.h $(srcinc)/sh_suidchk.h $(srcinc)/sh_hash.h $(srcinc)/sh_unix.h $(srcinc)/sh_files.h $(srcinc)/sh_schedule.h $(srcinc)/sh_calls.h +sh_srp.o: $(srcsrc)/sh_srp.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_tiger.h $(srcinc)/sh_mem.h $(srcinc)/sh_utils.h $(srcinc)/sh_srp.h $(srcinc)/bignum.h +sh_fifo.o: $(srcsrc)/sh_fifo.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_mem.h $(srcinc)/sh_unix.h +sh_tools.o: $(srcsrc)/sh_tools.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_mem.h $(srcinc)/sh_error.h $(srcinc)/sh_tools.h $(srcinc)/sh_utils.h $(srcinc)/sh_tiger.h $(srcinc)/sh_static.h $(srcinc)/rijndael-api-fst.h $(srcinc)/rijndael-api-fst.h +sh_html.o: $(srcsrc)/sh_html.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_forward.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_utils.h $(srcinc)/sh_html.h $(srcinc)/zAVLTree.h +sh_gpg.o: $(srcsrc)/sh_gpg.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_tiger.h $(srcinc)/sh_static.h sh_cat.o: $(srcsrc)/sh_cat.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_cat.h -sh_calls.o: $(srcsrc)/sh_calls.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_ipvx.h $(srcinc)/sh_sub.h $(srcinc)/sh_utils.h -sh_extern.o: $(srcsrc)/sh_extern.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_extern.h $(srcinc)/sh_calls.h $(srcinc)/sh_filter.h $(srcinc)/sh_static.h +sh_calls.o: $(srcsrc)/sh_calls.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_calls.h +sh_extern.o: $(srcsrc)/sh_extern.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_tiger.h $(srcinc)/sh_extern.h $(srcinc)/sh_calls.h $(srcinc)/sh_static.h sh_database.o: $(srcsrc)/sh_database.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_cat.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h sh_err_log.o: $(srcsrc)/sh_err_log.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_tiger.h -sh_err_console.o: $(srcsrc)/sh_err_console.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h $(srcinc)/sh_sem.h +sh_err_console.o: $(srcsrc)/sh_err_console.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_utils.h sh_err_syslog.o: $(srcsrc)/sh_err_syslog.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h -sh_schedule.o: $(srcsrc)/sh_schedule.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_mem.h $(srcinc)/sh_error_min.h $(srcinc)/sh_schedule.h +sh_schedule.o: $(srcsrc)/sh_schedule.c Makefile config_xor.h $(srcinc)/sh_mem.h $(srcinc)/sh_schedule.h bignum.o: $(srcsrc)/bignum.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/bignum.h mkhdr.o: $(srcsrc)/mkhdr.c Makefile config.h @@ -40,64 +40,22 @@ samhain_stealth.o: $(srcsrc)/samhain_stealth.c Makefile config_xor.h encode.o: $(srcsrc)/encode.c Makefile -sstrip.o: $(srcsrc)/sstrip.c Makefile config.h -trustfile.o: $(srcsrc)/trustfile.c Makefile config_xor.h $(srcinc)/sh_calls.h $(srcinc)/slib.h $(srcinc)/sh_static.h $(srcinc)/sh_pthread.h +sstrip.o: $(srcsrc)/sstrip.c Makefile +trustfile.o: $(srcsrc)/trustfile.c Makefile config_xor.h $(srcinc)/sh_calls.h $(srcinc)/slib.h $(srcinc)/sh_static.h exepack.o: $(srcsrc)/exepack.c Makefile config.h $(srcinc)/minilzo.h $(srcinc)/exepack.data exepack_fill.o: $(srcsrc)/exepack_fill.c Makefile config.h config.h $(srcinc)/minilzo.h exepack_mkdata.o: $(srcsrc)/exepack_mkdata.c Makefile config.h $(srcinc)/minilzo.h minilzo.o: $(srcsrc)/minilzo.c Makefile $(srcinc)/minilzo.h -slib.o: $(srcsrc)/slib.c Makefile config_xor.h $(srcinc)/slib.h $(srcinc)/sh_calls.h $(srcinc)/sh_static.h $(srcinc)/sh_pthread.h $(srcinc)/sh_string.h $(srcinc)/sh_mem.h -rijndael-alg-fst.o: $(srcsrc)/rijndael-alg-fst.c Makefile config_xor.h $(srcinc)/rijndael-alg-fst.h -rijndael-api-fst.o: $(srcsrc)/rijndael-api-fst.c Makefile config_xor.h $(srcinc)/rijndael-api-fst.h +slib.o: $(srcsrc)/slib.c Makefile config_xor.h $(srcinc)/slib.h $(srcinc)/sh_calls.h $(srcinc)/sh_static.h +rijndael-alg-fst.o: $(srcsrc)/rijndael-alg-fst.c Makefile config_xor.h $(srcinc)/rijndael-alg-fst.h $(srcinc)/rijndael-boxes-fst.h +rijndael-api-fst.o: $(srcsrc)/rijndael-api-fst.c Makefile config_xor.h $(srcinc)/rijndael-alg-fst.h $(srcinc)/rijndael-api-fst.h zAVLTree.o: $(srcsrc)/zAVLTree.c Makefile $(srcinc)/zAVLTree.h -sh_socket.o: $(srcsrc)/sh_socket.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_socket.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_calls.h $(srcinc)/sh_guid.h $(srcinc)/sh_fifo.h $(srcinc)/sh_utils.h $(srcinc)/sh_utils.h $(srcinc)/zAVLTree.h $(srcinc)/sh_html.h $(srcinc)/sh_tools.h $(srcinc)/CuTest.h -sh_ignore.o: $(srcsrc)/sh_ignore.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_mem.h $(srcinc)/sh_error.h $(srcinc)/CuTest.h +sh_socket.o: $(srcsrc)/sh_socket.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_socket.h $(srcinc)/sh_error.h $(srcinc)/sh_unix.h $(srcinc)/sh_calls.h $(srcinc)/sh_utils.h $(srcinc)/zAVLTree.h $(srcinc)/sh_html.h $(srcinc)/sh_tools.h +sh_ignore.o: $(srcsrc)/sh_ignore.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_mem.h $(srcinc)/sh_error.h yulectl.o: $(srcsrc)/yulectl.c Makefile config_xor.h sh_mounts.o: $(srcsrc)/sh_mounts.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_modules.h $(srcinc)/sh_mounts.h -sh_userfiles.o: $(srcsrc)/sh_userfiles.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_modules.h $(srcinc)/sh_userfiles.h $(srcinc)/sh_utils.h $(srcinc)/sh_schedule.h $(srcinc)/sh_error.h $(srcinc)/sh_hash.h $(srcinc)/sh_files.h $(srcinc)/sh_static.h $(srcinc)/sh_pthread.h -sh_prelude.o: $(srcsrc)/sh_prelude.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_cat.h $(srcinc)/sh_error_min.h $(srcinc)/sh_prelude.h $(srcinc)/sh_static.h +sh_userfiles.o: $(srcsrc)/sh_userfiles.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_modules.h $(srcinc)/sh_userfiles.h $(srcinc)/sh_utils.h $(srcinc)/sh_schedule.h $(srcinc)/sh_error.h $(srcinc)/sh_hash.h $(srcinc)/sh_files.h +sh_prelude.o: $(srcsrc)/sh_prelude.c Makefile config_xor.h $(srcinc)/slib.h $(srcinc)/sh_cat.h $(srcinc)/sh_error_min.h $(srcinc)/sh_prelude.h sh_prelink.o: $(srcsrc)/sh_prelink.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_tiger.h $(srcinc)/sh_extern.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h -sh_static.o: $(srcsrc)/sh_static.c Makefile config_xor.h $(srcinc)/sh_pthread.h -sh_portcheck.o: $(srcsrc)/sh_portcheck.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_mem.h $(srcinc)/sh_calls.h $(srcinc)/sh_utils.h $(srcinc)/sh_modules.h $(srcinc)/sh_static.h $(srcinc)/sh_pthread.h $(srcinc)/sh_ipvx.h $(srcinc)/CuTest.h -sh_processcheck.o: $(srcsrc)/sh_processcheck.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_modules.h $(srcinc)/sh_processcheck.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_extern.h $(srcinc)/sh_calls.h $(srcinc)/sh_pthread.h $(srcinc)/CuTest.h -sh_prelude_old.o: $(srcsrc)/sh_prelude_old.c Makefile config_xor.h $(srcinc)/slib.h $(srcinc)/sh_mem.h $(srcinc)/sh_cat.h $(srcinc)/sh_error_min.h $(srcinc)/sh_prelude.h $(srcinc)/sh_static.h $(srcinc)/sh_pthread.h -sh_pthread.o: $(srcsrc)/sh_pthread.c Makefile config_xor.h $(srcinc)/sh_pthread.h $(srcinc)/sh_calls.h $(srcinc)/sh_modules.h +sh_static.o: $(srcsrc)/sh_static.c Makefile config_xor.h kern_head.o: $(srcsrc)/kern_head.c Makefile config.h $(srcinc)/kern_head.h $(srcinc)/kern_head.h -sh_string.o: $(srcsrc)/sh_string.c Makefile config_xor.h $(srcinc)/sh_string.h $(srcinc)/sh_mem.h $(srcinc)/CuTest.h -dnmalloc-1.0.beta5-rw.o: $(srcsrc)/dnmalloc-1.0.beta5-rw.c Makefile -t-test1.o: $(srcsrc)/t-test1.c Makefile config.h $(srcinc)/malloc.h -dnmalloc-portable.o: $(srcsrc)/dnmalloc-portable.c Makefile config.h -dnmalloc.o: $(srcsrc)/dnmalloc.c Makefile config.h -sh_port2proc.o: $(srcsrc)/sh_port2proc.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_error_min.h $(srcinc)/sh_pthread.h $(srcinc)/sh_ipvx.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_ipvx.h -sh_log_parse_syslog.o: $(srcsrc)/sh_log_parse_syslog.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_log_check.h $(srcinc)/sh_utils.h $(srcinc)/sh_string.h -sh_log_parse_pacct.o: $(srcsrc)/sh_log_parse_pacct.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_log_check.h $(srcinc)/sh_utils.h $(srcinc)/sh_string.h -sh_log_parse_apache.o: $(srcsrc)/sh_log_parse_apache.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_log_check.h $(srcinc)/sh_utils.h $(srcinc)/sh_string.h -sh_log_evalrule.o: $(srcsrc)/sh_log_evalrule.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_string.h $(srcinc)/sh_log_check.h $(srcinc)/sh_log_evalrule.h $(srcinc)/sh_log_correlate.h $(srcinc)/sh_log_mark.h $(srcinc)/sh_log_repeat.h $(srcinc)/zAVLTree.h -sh_log_check.o: $(srcsrc)/sh_log_check.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_string.h $(srcinc)/sh_log_check.h $(srcinc)/sh_log_evalrule.h $(srcinc)/sh_log_correlate.h $(srcinc)/sh_log_mark.h $(srcinc)/sh_log_repeat.h $(srcinc)/sh_extern.h $(srcinc)/sh_modules.h -sh_log_parse_samba.o: $(srcsrc)/sh_log_parse_samba.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_log_check.h $(srcinc)/sh_string.h -sh_nmail.o: $(srcsrc)/sh_nmail.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_mem.h $(srcinc)/sh_mail.h $(srcinc)/sh_tiger.h $(srcinc)/sh_string.h $(srcinc)/sh_utils.h $(srcinc)/sh_fifo.h $(srcinc)/sh_filter.h $(srcinc)/sh_mail_int.h $(srcinc)/zAVLTree.h -sh_filter.o: $(srcsrc)/sh_filter.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_mem.h $(srcinc)/sh_filter.h -sh_inotify.o: $(srcsrc)/sh_inotify.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_calls.h $(srcinc)/sh_inotify.h $(srcinc)/sh_mem.h $(srcinc)/sh_utils.h $(srcinc)/slib.h $(srcinc)/zAVLTree.h $(srcinc)/sh_calls.h $(srcinc)/sh_inotify.h $(srcinc)/CuTest.h -sh_log_correlate.o: $(srcsrc)/sh_log_correlate.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_string.h $(srcinc)/sh_log_check.h $(srcinc)/sh_log_evalrule.h -sh_log_mark.o: $(srcsrc)/sh_log_mark.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_mem.h $(srcinc)/sh_string.h $(srcinc)/sh_error_min.h $(srcinc)/sh_log_check.h $(srcinc)/sh_log_evalrule.h $(srcinc)/zAVLTree.h -sh_log_repeat.o: $(srcsrc)/sh_log_repeat.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_string.h $(srcinc)/sh_log_check.h $(srcinc)/sh_log_evalrule.h -sh_log_parse_generic.o: $(srcsrc)/sh_log_parse_generic.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_log_check.h $(srcinc)/sh_string.h -sh_login_track.o: $(srcsrc)/sh_login_track.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_string.h $(srcinc)/sh_tools.h $(srcinc)/sh_ipvx.h $(srcinc)/sh_error_min.h $(srcinc)/CuTest.h $(srcinc)/CuTest.h -sh_audit.o: $(srcsrc)/sh_audit.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_error.h $(srcinc)/sh_extern.h $(srcinc)/sh_utils.h -sh_registry.o: $(srcsrc)/sh_registry.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_modules.h $(srcinc)/sh_hash.h $(srcinc)/sh_tiger.h -sh_ipvx.o: $(srcsrc)/sh_ipvx.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_static.h $(srcinc)/sh_pthread.h $(srcinc)/sh_utils.h $(srcinc)/sh_ipvx.h $(srcinc)/CuTest.h -sh_restrict.o: $(srcsrc)/sh_restrict.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_mem.h $(srcinc)/sh_error_min.h $(srcinc)/sh_string.h $(srcinc)/sh_utils.h $(srcinc)/sh_restrict.h $(srcinc)/CuTest.h -sh_filetype.o: $(srcsrc)/sh_filetype.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_mem.h $(srcinc)/sh_error_min.h $(srcinc)/sh_utils.h -sh_sub.o: $(srcsrc)/sh_sub.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_pthread.h -sh_fInotify.o: $(srcsrc)/sh_fInotify.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_modules.h $(srcinc)/sh_pthread.h $(srcinc)/sh_inotify.h $(srcinc)/sh_unix.h $(srcinc)/sh_hash.h $(srcinc)/sh_dbIO.h $(srcinc)/sh_files.h $(srcinc)/sh_ignore.h -sh_checksum.o: $(srcsrc)/sh_checksum.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_checksum.h $(srcinc)/sh_utils.h $(srcinc)/CuTest.h -sh_guid.o: $(srcsrc)/sh_guid.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/CuTest.h -sh_dbIO.o: $(srcsrc)/sh_dbIO.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_dbIO_int.h $(srcinc)/sh_hash.h $(srcinc)/sh_dbIO.h $(srcinc)/sh_sig.h $(srcinc)/sh_tiger.h $(srcinc)/sh_xfer.h $(srcinc)/sh_pthread.h $(srcinc)/sh_socket.h $(srcinc)/sh_files.h $(srcinc)/zAVLTree.h -sh_dbCheck.o: $(srcsrc)/sh_dbCheck.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_unix.h $(srcinc)/sh_utils.h $(srcinc)/sh_hash.h $(srcinc)/sh_files.h $(srcinc)/sh_tiger.h $(srcinc)/sh_dbIO.h $(srcinc)/sh_dbIO_int.h $(srcinc)/sh_pthread.h -sh_dbCreate.o: $(srcsrc)/sh_dbCreate.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_hash.h $(srcinc)/sh_files.h $(srcinc)/sh_dbIO.h $(srcinc)/sh_dbIO_int.h $(srcinc)/sh_pthread.h $(srcinc)/sh_guid.h -sh_xfer_client.o: $(srcsrc)/sh_xfer_client.c Makefile config_xor.h $(srcinc)/sh_ipvx.h $(srcinc)/samhain.h $(srcinc)/sh_tiger.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_xfer.h $(srcinc)/sh_srp.h $(srcinc)/sh_fifo.h $(srcinc)/sh_tools.h $(srcinc)/sh_entropy.h $(srcinc)/sh_html.h $(srcinc)/sh_nmail.h $(srcinc)/sh_socket.h $(srcinc)/sh_static.h $(srcinc)/rijndael-api-fst.h -sh_xfer_server.o: $(srcsrc)/sh_xfer_server.c Makefile config_xor.h $(srcinc)/sh_ipvx.h $(srcinc)/samhain.h $(srcinc)/sh_tiger.h $(srcinc)/sh_utils.h $(srcinc)/sh_unix.h $(srcinc)/sh_xfer.h $(srcinc)/sh_srp.h $(srcinc)/sh_fifo.h $(srcinc)/sh_tools.h $(srcinc)/sh_entropy.h $(srcinc)/sh_html.h $(srcinc)/sh_nmail.h $(srcinc)/sh_socket.h $(srcinc)/sh_static.h $(srcinc)/sh_guid.h $(srcinc)/rijndael-api-fst.h $(srcinc)/sh_readconf.h $(srcinc)/zAVLTree.h $(srcinc)/sh_extern.h -sh_xfer_syslog.o: $(srcsrc)/sh_xfer_syslog.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_tools.h $(srcinc)/sh_utils.h $(srcinc)/sh_ipvx.h -sh_xload_client.o: $(srcsrc)/sh_xload_client.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_fifo.h $(srcinc)/sh_guid.h -sh_sem.o: $(srcsrc)/sh_sem.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_sem.h $(srcinc)/sh_error_min.h -sh_subuid.o: $(srcsrc)/sh_subuid.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_unix.h -sh_sig.o: $(srcsrc)/sh_sig.c Makefile config_xor.h $(srcinc)/samhain.h $(srcinc)/sh_utils.h $(srcinc)/sh_error.h $(srcinc)/sh_tiger.h $(srcinc)/sh_static.h $(srcinc)/sh_sig.h +sh_prelude_old.o: $(srcsrc)/sh_prelude_old.c Makefile config_xor.h $(srcinc)/slib.h $(srcinc)/sh_mem.h $(srcinc)/sh_cat.h $(srcinc)/sh_error_min.h $(srcinc)/sh_prelude.h $(srcinc)/sh_static.h Index: trunk/depend.sum =================================================================== --- trunk/depend.sum (revision 591) +++ trunk/depend.sum (revision 1) @@ -1,1 +1,1 @@ -3600310821 +1152497988 Index: trunk/deploy.sh.in =================================================================== --- trunk/deploy.sh.in (revision 591) +++ trunk/deploy.sh.in (revision 1) @@ -1,22 +1,3 @@ #! /bin/sh - -# -# Copyright Rainer Wichmann (2005) -# -# License Information: -# This program is free software; you can redistribute it and/or modify -# it under the terms of the GNU General Public License as published by -# the Free Software Foundation; either version 2 of the License, or -# (at your option) any later version. -# -# This program is distributed in the hope that it will be useful, -# but WITHOUT ANY WARRANTY; without even the implied warranty of -# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -# GNU General Public License for more details. -# -# You should have received a copy of the GNU General Public License -# along with this program; if not, write to the Free Software -# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. -# #VERSION2.0 @@ -168,9 +149,4 @@ yule_data="@mydataroot@" -# The temporary directory to use. Default is '/tmp', but some -# sites may mount this 'noexec'. -# -temp_dir="/tmp" - #__END_CUT__ @@ -224,5 +200,4 @@ export yule_conf export yule_data -export temp_dir # dialog @@ -250,9 +225,4 @@ host= export host - -# hostgroup; empty default -# -hostgroup= -export hostgroup @@ -335,5 +305,4 @@ echo echo " --host= The host where you want to uninstall." - echo " --tmpdir= Temporary directory to use on the this host." echo { (exit 0); exit 0; } @@ -429,5 +398,4 @@ echo " --user= Login as to the build host (root)." echo " --add-path= Append 'path' to the PATH variable on the build host." - echo " --tmpdir= Temporary directory to use on the build host." { (exit 0); exit 0; } } @@ -445,5 +413,4 @@ echo echo " --host= The host where you want to install." - echo " --group= Optional group the host belongs to." echo " --arch= The architecture/operating system of this host." echo " This is used to get the correct binary package." @@ -459,5 +426,4 @@ echo " --local= Local command (executed twice: " echo " after config installation and before client startup)." - echo " --tmpdir= Temporary directory to use on the this host." { (exit 0); exit 0; } } @@ -571,12 +537,4 @@ ;; - --group | -group) - opt_prev=hostgroup - ;; - - --group=* | -group=*) - hostgroup="$optarg"; export hostgroup - ;; - # Build @@ -649,11 +607,4 @@ --arch=* | -arch=*) arch="$optarg"; export arch - ;; - - --tmpdir | -tmpdir) - opt_prev=temp_dir - ;; - --tmpdir=* | -tmpdir=*) - temp_dir="$optarg"; export temp_dir ;; Index: trunk/docs/BUGS =================================================================== --- trunk/docs/BUGS (revision 591) +++ trunk/docs/BUGS (revision 1) @@ -1,13 +1,2 @@ -AIX: ---- - -Samhain must either be compiled as 32bit application, or with the --disable-dnmalloc -configure flag, because the OS provides no way to enforce usage of 32bit address space. - -MacOS X: -------- - -(1) Pointed out by David: static linking is not supported on MacOS X, - see http://developer.apple.com/qa/qa2001/qa1118.html Solaris: Index: trunk/docs/Changelog =================================================================== --- trunk/docs/Changelog (revision 591) +++ trunk/docs/Changelog (revision 1) @@ -1,1187 +1,6 @@ -4.5.3: - * fix inadvertent inclusion of scripts/logrotate and init/samhain.startSystemd - (reported by kjd) - * fix annoying message from systemd about read permissions for service file - (reported by kjd) - * fix compiler warnings about unused variables - * move logfile monitor module from PCRE to PCRE2 (PCRE is end of life and no - longer actively maintained) - * fix obsolete gpg option --secret-keyring used in samhainadmin script - * fix some more warnings, mostly false positives from cppcheck - -4.5.2 (02-01-2025): - * fix segfault with --enable-static on unresolvable host name - * fix autoreconf (problem reported by Pascal de Bruijn) - * add missing items to distclean Makefile target (problem - reported by Pascal de Bruijn) - -4.5.1 (08-09-2024): - * fix for regression in SHELL option for log file monitoring - (issue reported by ssha) - -4.5.0 (31-10-2023): - * fix for reading file attributes on Linux file systems - * new option UseAttributesCheck (boolean, default=yes) - -4.4.10 (14-05-2023): - * fix for (very minor) memleak in sh_unix.c: sh_check_rotated_log() - * fix for memleak in sh_files.c: sh_files_checkdir(), not all cases for - scandir() covered (issue reported by T. Greulich) - -4.4.9 (10-05-2022): - * fix for double newline stripping when reading from database - -4.4.8 (01-05-2022): - * new server option Alias=alias@hostname (based on - patch by A. Hofland) - -4.4.7 (07-03-2022): - * fix compile error on MacOS - * disable dnmalloc for gcc 11 (regexec does not work) - * fix minor compile issues with gcc 11.2 - * fix problem with login/logout monitoring on MacOS (reported - by Peter) - * fix problem caused by switch from pubkey.gpg to pubkey.kbx - (reported by A. Hofland) - -4.4.6 (05-10-2021): - * fix Debian 10 compile problem in dnmalloc (mallinfo2), - reported by A. Hofland and others - * fix compile problem on Ubuntu 20 with 'make deb' - (Debian optimization CFLAGS clash with ASM for Tiger) - * fix 'make deb' issue when compiling as client - (reported by A. Hofland) - * fix issue with inotify (reported by Thorsten) - -4.4.5 (01-07-2021): - * fix a memory leak introduced in 4.4.4 - -4.4.4 (30-06-2021): - * fix more gcc 10 compiler warnings - * fix bug with signify-openbsd in client/server setup (reported - by Sdoba) - * patch by K. Hacene for reproducible database generation - * fix recognition of invalid compiler options in configure.ac - -4.4.3 (31-10-2020): - * allow console logging to a unix domain socket - * fix spurious cppcheck warnings - * fix gcc 10 compiler warning in sh_audit.c - * fix gcc 10 compiler warning in sh_ipvx.c - * fix gcc 10 compile problem in sh_tiger1_64.c - * fix gcc 10 compiler warning in sh_portcheck.c - -4.4.2 (01-08-2020): - * re-enabled reading options from option group [samhain] in my.cnf - * fix server install in configure.ac: samhainadmin.pl <-> ..-gpg.pl, ..-sig.pl - * add more verbosity to portable binary installer, fix minor issues - -4.4.1 (27-02-2020): - * fix compatibility problem with older (version 2.0.x) GnuPG - -4.4.0 (31-10-2019): - * support for OpenBSD signify as alternative to GnuPG - -4.3.3 (11-07-2019): - * fix broken 'make deb' makefile target - * eliminate obsolete 'sstrip' utility - * systemd support - * fix broken rpm specfile (patch by Franky Van L.) - * fix broken mysql init script - * fix some issues with link-time optimisation (option -flto with - recent gcc versions) - * fix compiler warning in sh_prelude.c - * add patch (by Kamel H.) to init for alternative root fs) - -4.3.2 (07-01-2019): - * fix compile failure on OpenBSD (reported by Mithrond) - -4.3.1 (25-09.2018): - * fix compile failure on non-Linux systems (reported by Romain and Tim) - * provide more information for error message about bad baseline - database file (issue raised by Romain) - -4.3.0 (10-09-2018): - * add support for /etc/subuid, /etc/subgid maps - * fix compiler warning on Ubuntu 18.04 - -4.2.4 (21-12-2017): - * fix 'clobbered by..' compiler warning is src/sh_portcheck.c - * fix compiler warning because of deprecated _BSD_SOURCE macro - * fix 'make deb' for Debian stretch (reported by Alasdair) - * add RPM spec file patch for SLES12 (by Pirmin) - * better fix for RPMTOP detection - * fix missing entry for yuleadmin.pl in RPM spec file - * fix bug in static dns resolver (reported by Piotr G.) - -4.2.3 (31-10-2017): - * fix order of search directories for 'make rpm' (issue reported by - Z. Drableg) - -4.2.2 (03-07-2017): - * fix bug with PortCheckSkip: for any given port, only first interface - specified in config is checked (reported by A. Hofland) - * fix PortCheck bug that occasionally causes spurious detections of - open ports (patch by A. Hofland) - * add success/failure message for closing baseline database at init - -4.2.1 (06-04-2017): - * fix for broken SetSocketPassword authentication - (reported by Todd Stansell) - * fix compile issue on Solaris 11 (reported by Rolf) - * fix alignment problem with semget() (reported by Rolf) - * fix dependency on chkconfig package on Redhat/CentOS: search - /etc/init.d/functions also under /etc/rc.d/init.d/functions - (issue reported by Ernie) - * fix build issue with musl libc (report & patch by A. Kuster) - * fix case sensitivity (tcp vs TCP, udp vs UDP) in portcheck - directives (reported by A. Hofland) - * fix documentation typo ('make deploy-install' -> - 'make install-deploy', reported by Ben) - * fix dsys/funcINSTALL: proper error message if no binary - packages built yet (problem reported by Ben) - * fix install-data: make datadir chmod conditional and - align with documentation - -4.2.0 (31-10-2016): - * fix handle tracefs (permission for stat denied) when running - suidcheck without root privilege (for testing) - * fix compiler warnings on gcc 6.2 - * fix incorrect mandir option in Install.sh (reported by David) - * add option 'SetAuditdFlags = r|w|x|a' to (re-)define flags supplied - to auditd (request by David) - * fix minor bug in error message (tf_trust_errfile needs copy to - keep relevant value). - * fix SH_DEADFILE (too big, some architectures have nlink_t - as uint16, e.g. FreeBSD). - * add portcheck option 'PortCheckDevice = device' to monitor a - device regardless of address assigned to it (patch by A. Hofland, plus - some additions) - * fix case sensitivity of severity/class options (issue raised by - A. Hofland). - * clarify restrictions for ProcessCheckPSArg (user manual) - -4.1.5 (09-08-2016): - * fix memory leak in server (reported by C. Doerr). - -4.1.4 (02-06-2016): - * fix problems with wildcard pattern re-evaluation (reported by - A. Ansari): - - not stored if no match at startup - - only one (the first) stored if same pattern for file and dir - * fix problems with directory creation in inotify watched tree - (reported by A. Ansari): - - recursive depth not decreased - - watched as directory even when recursion depth should drop below zero - -4.1.3 (19-04-2016): - * on Cygwin, the AvoidBlock function is now off by default - (problem reported by Fred C) - * tighter sanity checks in sh_static.c - * fix regression with '--enable-static' in sh_static.c - (reported by amaiket). - -4.1.2 (21-12-2015): - * add options --enable-selinux and --enable-posix-acl for "hard fail" - if libraries aren't found (requested feature) - * fix wrong policy assignment when inotify is active and change occurs - during a reload (reported by Bond) - * fix failure to detect open UDP port for some daemons - (reported by James) - * fix broken 'rpm' and 'rpm-light' makefile targets - (reported by Bond) - * fix message for self-check - -4.1.1 (01-11-2015): - * fix problem with timezone calculation on month rollover for - negative timezones (west of GMT; reported by Bond) - * fix problem with rotated logfiles when content is always constant, - i.e. checksum does not change (reported by Bond). - * fix problem with baseline update on FreeBSD and probably other - non-GNU/Linux systems (reported by L.Vasiliev) - * fix bad check_libwrap() call in sh_xfer_server.c - (reported by L.Vasiliev) - -4.1.0 (24-09-2015): - * fix quirks with Linux audit support - * implement 'silent check' (requested feature) - * fix call of self_check for exit on sigterm - * fix safe_logger() - uses the logger utility with a non-posix option - * fix missing reporting on shell expansion capability in --version - * fix missing error message on invalid list for skipchecksum - (reported by Bond) - * fix missing definition for a sh_dummy_ var on BSD et al. - (reported by Andrew) - -4.0.0 (20-07-2015): - * fix and document default settings for mounts check - * new -w CL option to wait on scan completion - * new option ReportCheckflags - * enhance testsuite to cover new functionality - * implement draft for change control integration: - * new database format to store change flags - * refactoring of db I/O and client/server code - * option StartupLoadDelay - * --create-database CL option - * --outfile CL option - * --binary, --list-filter CL options - * --verify-database CL option - * yulectl -c DELTA: command - * option SetDeltaRetryCount - * option SetDeltaRetryInterval - * update documentation - * remove old/unused code - * fix compiler warnings with gcc 5.1.0 - * update config.sub, config.guess - -3.1.6 (08-06-2015): - * Modify testcompile.sh to remove 'smatch' and use 'clang' - instead. - * Fix compile problems with clang. - * Modify testcompile.sh to remove 'uno' and use 'cppcheck' - for static checking - * Move AC_CHECK_FUNCS( getnameinfo getaddrinfo ) behind - the check for libsocket to have them found on Solaris - * Fix IPv4-only bug in bind_addr use in retry_connect() - * Add more debug code in connect_port() - -3.1.5 (26-03-2015): - * Fix IPv6 issue with portcheck (need to be able to specify - IPv6 interfaces). - * Fix minor issues with bugs in testing code - * Add command line option '--server-host' to set the log server - * In samhain.startLinux.in start script template, add code to read - options from /etc/sysconfig/${NAME} for RedHat - -3.1.4 (17-02-2015): - * Add non-existent file to the regression test config - * Fix erroneous call to sh_hash_init when a missing file - is specified in the configuration - * Fix buffer allocation for getgrnam_r for large groups - (problem reported by Sergio B) - * Search RPM in $HOME/rpmbuild if test -d _topdir fails (CentOS - recommends '%(echo $HOME)/topdir', reported by E. Taft) - -3.1.3 (01-11-2014): - * Remove initgroups() from the popen call in unix entropy gatherer - * Add error message for update mode if local baseline cannot be found - -3.1.2 (07-08-2014): - * Fixed incorrect memset in sh_checksum.c (sha256) - * Circumvent a gcc compiler bug with inline asm (gcc 4.8) - * Allow multiple exclusions for SUID check - * Use calloc instead of malloc - * Add overflow check in minilzo.c (but the potential integer - overflow [CVE-2014-4607,LMS-2014-06-16-1] is irrelevant anyway - because the function is never used on external data). - * Fixed a minor bug in exepack_fill.c that was unearthed by the minilzo - overflow check (the required buffer length information for the check - wasn't provided) - * Fixed incorrect logic in setting the ALLIGNORE flag (more specific - directory / file directives were ignored) - * Fix for tickets #358 (repetitive lstat warning about deleted - directory) and #359 (reporting of deleted/added top level directory) - * Fix a free() on NULL (harmless but avoids spurious warning) - -3.1.1 (01-05-2014): - * Disable inline asm on Cygwin (issue reported by Erik) - * Fix sh_ipvx_is_ipv4 such that numeric hostnames are not - incorrectly recognised as IP address (reported by A. Hofland) - * Fix sh_ipvx_is_ipv6 - -3.1.0 (31-10-2013): - * Add support for SHA2-256 checksum function - * Drop support for --enable-khide on kernel version 3.x and above - * Fix IgnoreAdded to anchor regex at beginning of path (reported by - R.Lindner) - * Add check to detect availability of pmap_getmaps() (missing in - static library on recent Linux systems as reported by Ian Baldwin) - * Fixes for Ubuntu 13.4: - - no error msg for failing stat on /run/user/Username/gvfs in - suidcheck - - no error message for failing hardlink check on /run/user/Username - - eliminate compiler warnings - * Add option '--disable-asm' to work around a gcc issue in Debian - unstable (reported by micah) - * Remove option '-i' from mkitab in samhain-install.sh.in (reported - by N. Kerski) - -3.0.13 (11-06-2013): - * Fix detection of nonfunctional /dev/kmem - * Fix race condition in GrowingLogfiles policy that - causes spurious reports (problem noticed by J. Daubert) - -3.0.12 (16-05-2013): - * Fix compiler warning in bignum.c (unused parameter) - * Detect if /var/run is a symlink and /run exists - * Fix for broken support for audit subsystem (reported - by isquish) - * Fix for incorrect use of sh_inotify_add_watch_later - which causes a steady increase in memory usage - (issue reported by Maxime V) - * Fix for potential minor memory leak - * Fix for bug in negated conditionals for config file - (reported by M. Ward) - -3.0.11 (08-04-2013): - * Fix for compile error on HP-UX (reported by P. Alves) - * Propagate ERANGE error from getgrxxx_r (issue raised by C. Feikes) - * Fix reconnecting to database for Oracle - * Add better logrotate handling for the GrowingLogs policy (search - rotated log and verify it, don't report if this succeeds) - * Add ability to create debian packages with preset password (use - env var PASSWORD) - * Add option KernelCheckProc (bool) to suppress kernel /proc test - * Add option IgnoreModified to cover transient files that - not only get added/deleted but also modified - -3.0.10 (13-01-2013): - * Revert to previous logic in samhain.c because it will block - otherwise (reported by Alexandr Sabitov) - -3.0.9 (21-12-2012): - * Fixed a Cygwin compile warning - * Change logic in samhain.c to make sure inotify doesn't cause - excessive full scans - * Add option IgnoreTimestampsOnly in Windows registry check (ignore - changes if only timestamp has changed) - * Fix the probe command (misses clients if their startup message - has been missed) - * Fix the RPM spec file for --enable-network=client and no password - (reported by Mitch St Martin) - * Fix build error with Linux audit (reported by Andy Jack) - * Fix detection of utmpx.h (reported by D. Thiel) - -3.0.8 (01-11-2012): - * rename to 3.0.8 for release - * useful exit status for samhainadmin.pl --examine - -3.0.7a (25-12-2012): - * add ability to create RPM with preset password (use - env var PASSWORD) - * fix the rpm-light makefile target - * fix minor bug in samhain_setpwd.c (incorrect error message) - -3.0.7 (25-10-2012): - * update documentation for prelude - * fix configure to properly search for Oracle Instantclient SDK - * pass through TNS_ADMIN environment variable for Oracle - * optimize audit rules automatically - * zero out the html status file at server exit - * don't check for assembly optimization unless linux or *BSD - -3.0.6 (01-09-2012): - * install logrotate script if /etc/logrotate.d is detected - * new option --enable-suid for nagios - * fix for --enable-ptrace: make the save_tv variable thread specific - * fix bug in inotify code which made it follow symlinks (by [anonymous]) - * fix two missing SH_MUTEX_LOCK(mutex_thread_nolog) (by [anonymous]) - * fix for 'no such process' message from sh_fInotify_init_internal() - (by [anonymous]) - * fix for --enable-ptrace with threads (by [anonymous]) - * option SetReportFile for writing out summary after file check - -3.0.5 (11-07-2012): - * fix xml format templates for registry check - * fix database download on registry check init (reported by ldieu) - -3.0.4 (01-05-2012): - * fix verbosity of message for alerts on already deleted watches - (set it to debug - suggested by xrx) - * fix extraneous error messages about file not found from - sh_fInotify_init_internal() (bug reports by xrx and aj) - -3.0.3 (28-03-2012): - * fix potential deadlock in sh_ext_popen() - * make sure sh_processes_readps cannot hang forever - * fix for deadlock if sh_processes_readps hangs - * fix for deadlock if suid check and inotify are used together - (reported by A. Jack) - * fixed problem with samhain_stealth.c (handle input config - files that don't end with a newline) - * fixed compiler warnings for yulectl.c with stealth - * fixed lacking support for O_NOATIME on 64bit linux - -3.0.2a (23-02-2012): - * Fix compile error on Solaris 10 - -3.0.2 (16-02-2012): - * change sql init scripts to make bigint fields unsigned (problem - reported by A. Sabitov) - * patch by Andy Jack for issue with the --with-gpg option (hangs with - high cpu load at startup) - * call ./samhain-install.sh as /bin/sh ./samhain-install.sh in the - RPM spec file, because /var might be mounted noexec (reported by GC) - * fixed configure.ac for the case that --with-gpg and --enable-nocl are - used (./samhain for gpg checksum; problem report by Andy Jack) - * fixed a potential NULL pointer dereference in sh_inotify.c on - systems where inotify is not available (reported by ) - * fixed: the config file template mentions (in a comment) the - non-existent directive SetLockPath instead of the correct - SetLockfilePath (reported by Curtis). - * fixed: the definition of O_NOATIME isn't seen in sh_files.c. - -3.0.1 (07-12-2011): - * fix a memory leak (reported by C. Westlake) - * fix an uninitialized variable in the suidcheck code (problem - reports by T- Luettgert and Kai) - * fix a bug in the port check with --disable-ipv6 (reported - by C. Westlake) - * fix potential deadlock in sh_files.c (reported by S. Mirolo) - * change Makefile.in to stop on compile error rather than at link stage - (suggested by S. Mirolo) - * fix compile errors caused by missing #define (pthread disabled) and - wrong function call (OSX specific code), reported by S. Mirolo - * fix warning by the llvm/clang static checker - * fix compile issues on freebsd - * handle (ignore) SIGPIPE more thoroughly - * update config.guess, config.sub - -3.0.0a (06-10-2011): - * Fix compile-time issues on RHEL5 (reported by Thomas) - -3.0.0 (01-11-2011): - * Add support for the inotify API - * If --disable-shellexpand is used, also disable setting - the prelink/ps paths - * Fix missing check_mask storage for glob pattern - * Add support for integer keys in zAVL - * Fix compiler warnings with gcc 4.6.1 (variables that get set - but then remain unused) - * Add more server-side debugging for IPv6 - * Make kern_head compile with 3.x kernels - -2.8.6 (20-09-2011): - * Manual updated. - * Added an option LogmonDeadtime to avoid repetitive reporting - on correlated events. - * Fix problems with timestamp handling in logfile correlation - (problem reported by D. Dearmore) - * List the policy under which a directory/file is checked - * Option to use a textfile with a list of files for update - * Fix --enable-db-reload option (reported by David L.) - * Fix samhain_kmem compilation, need to compile under chosen - name if --enable-install-name is used (reported by David L.) - * Fix uninitialized string in error message (reported by mimox) - -2.8.5a (16-06-2011): - * Fix autolocal.m4 for new configure option - -2.8.5 (15-06-2011): - * Detect non-working /dev/kmem in configure script, and fix - a bug in the samhain_kmem kernel module. - * Fix wrong handler for LogmonMarkSeverity (reported by S. Chittenden) - * Better protection against the 'intruder on server' scenario - pointed out by xrx. Add option to disable shell expansion in - configuration files, and check gpg signature earlier. - * Support /opt/local/bin in the Unix entropy gatherer (suggestion - by Sean Chittenden) - * Cache timeserver response for one second (suggestion by - Sean Chittenden) - -2.8.4a (11-05-2011): - * Fix for compile error with --with-prelude - (reported by Sean Chittenden), missing regression test added - * Fix for compile error with --enable-udp (reported by Sean Chittenden), - missing regression test added - -2.8.4 (30-04-2011): - * Fix another reload bug in the log monitoring module - * Add unit tests for IgnoreAdded/IgnoreDeleted configuration directives - * Fix deadlock after reload when compiled with --enable-login-watch - (reported by M. Teege and O. Cobanoglu) - * Fix compile error for samhain_hide.ko with recent kernel - * Include patch by J. Graumann to specify the location of the - secret keyring with samhainadmin.pl - * Fix potential timeout problem in sh_sub_stat_int() and propagate the - error (issue reported by mtg) - * Add support for X-Forwarded-For in apache logfile parser, add - option 'RE{regex}' to insert arbitrary regex - * New options PortcheckMinPort, PortcheckMaxPort for the open ports - check - -2.8.3a (23-03-2011): - * Fix two 'label at end of compound statement' errors on FreeBSD - (reported by David E. Thiel) - -2.8.3 (22-03-2011): - * init scripts: load samhain_kmem.ko before samhain starts - * slib.c: eliminate mutex from sl_create_ticket() - * sh_entropy.c: move pthread usage out of child - * sh_hash.c, sh_pthread.c, sh_pthread.h: sh_hash_hashdelete() - needs deadlock detection, may be called from within sh_hash_init() - via atexit handler on error condition - * sh_suidchk.c, sh_calls.c, sh_calls.h: need a nosub version of lstat() - to use with relative path after chdir() - * samhain.c, sh_calls.c, sh_calls.h: only run (l)stat() in subprocess - after reading config file (to allow disabling) - * sh_unix.c: run sh_sub_kill() in parent after forking the daemon - * fix zeroing of result from getnameinfo() (problem reported by Richard) - * fix spurious warnings about unsupported address family (reported - by N Silverman) - * option to run lstat/stat in subprocess to avoid hanging on NFS mounts - (off by default) - * fix Windows/Cygwin compile error (reported by A. Schmidt) - -2.8.2 (16-02-2011): - * add function to skip checksumming - * Fix missing check for recursion depth >= 0 if not IgnoreAll - * Fix hardcoded path for temp directory in deployment scripts - * Fix bad compile on CentOS 4.8 with gcc 4.1.2 - * Fix minor bug in check_samhain.pl (pointed out by J.-S. Eon long ago) - -2.8.1 (17-11-2010): - * Document handling of missing files with secondary schedule - * Fix incorrect handling of missing files when secondary schedule - is used (reported by Sergey) - * Fix null pointer dereference in config parse handler for SetMailAlias - (reported by Sergey) - * Fix incorrect memset() in sh_kern.c (passed struct by value...), - reported by Roman and Stefan - * Fix 'make install' to create user-defined directory - * fix minor issues noticed by T. Luettgert (test code assumes port - 0/tcp is unused, wrong ifdef order (without impact on compilation)) - * fix compile error on AIX 5.3 with --enable-login-watch, - reported by M. El Nahass (time.h missing in src/sh_login_track.c) - -2.8.0 (01-11-2010): - * Support IPv6 - * Add registry checking - * Use auditd records to find out who did it - -2.7.2c (23-09-2010): - * Fix uppercase hostname problem in client/server communication - - -2.7.2b (05-09-2010): - * Fix compile errors on Solaris 10 (reported by A. Saheba) - -2.7.2a (23-08-2010): - * rewrote rijndaelKeySched() in a more conservative way to fix - compile problem on SLES 11. - -2.7.2 (16-08-2010): - * sh_utils.c: fixed an endianess issue that prevented cross-verification - of email signatures (reported by A. Zangerl) - * sh_login_track.c: fix compiler warning (ignored return value - of fwrite) - * sh_readconf.c: fix comparison of SeverityUserX string - (reported by max__) - * sh_processcheck.c: sh_prochk_set_maxpid: set retval on success - (reported by max__) - * fixed some compiler warnings on cygwin - * sh_extern.c: As reported by T. Luettgert, gcc 4.4.4 on Fedora 13 - will throw a warning if execve is called with a NULL argv pointer. - Need to provide a dummy argp[]. - -2.7.1 (07-06-2010): - * samhain_kmem.c: fix compile problems - * fix problems with config file parser: increase max. line length, - support quoting/escaping of filenames (as in 'ls --quoting-style=c') - * check for pcre_dfa_exec (not available in old versions - of libpcre, reported by Shinoj) - * patch to allow server to log client reports to prelude - (by J. Ventura) - -2.7.0a (09-05-2010): - * fix /dev/kmem detection (reported by S. Clormann) - -2.7.0 (01-05-2010): - * sh_utmp.c, sh_login_track.c: additional login checks - * sh_unix.c: use SIGTTIN as alternative for SIGABRT - (SIGABRT seems not to work on AIX, reported by Peter) - * sh_utmp.c: fix compile error without pthreads (inotify_watch used) - * sh_kern.c, kern_head.c: fix some 64bit issues - * dnmalloc.c: fix compiler warning (ignored ret value) - * Fix LSB init script for kernel module - * samhain_kmem kernel module for /proc/kmem added - -2.6.4 (22-03-2010): - * Don't read proc_root_iops in sh_kern.c (Problem report - by H. R.) - * Logfile check can check output of shell commands - * Use data directory as default for logfile checkpoints - * Fix broken checkpoint save/restore for logfiles - -2.6.3 (10-03-2010): - * Fix bug in mail module, recipients incorrectly flagged - as aliases, which breaks immediate mail for 'alert' - (reported by Jesse) - -2.6.2 (28-01-2010): - * Makefile.in: fix problem in deploy system caused - by adding build number for debs in 2.5.9 (reported - by roman) - * add option for per-rule email alias in log monitoring - module - * sh_readconf.c: make keywords case-independent - * sh_mail.c: on error, report full reply of mail server - * sh_mail.c: report smtp transcript at debug level - * make sure mail aliases are not emailed twice, and - recipients cannot be defined after aliasing them - * handle named pipes in log monitoring module - (open in nonblocking mode, ignore read error if empty) - * fix bug in the server function to probe for necessity - of configuration reload for client - -2.6.1b (23-12-2009): - * fix missing include for sh_inotify.h in sh_inotify.c - (reported by Ack) - -2.6.1a (22-12-2009): - * fix typo in code for older inotify versions without - inotify_init1(), reported by Forll - -2.6.1 (21-12-2009): - * add a routine to log monitoring module to guess the proper year - for timestamps without year (standard syslog) - * add feature to automatically detect and report bursts of - similar messages in log monitoring module - * add feature to check for missing heartbeat messages in - log monitoring module - * cache UIDs/GIDs to reduce the number of lookups - * use inotify to track login/logout (sh_inotify.c, sh_utmp.c) - * support event correlation in log monitoring module - * make sure host matching is done in a case insensitive way - (reported by Tracy) - * fix invalid use of mutex_mlock in src/sh_unix.c, function - sh_unix_count_mlock() (reported by Remco Landegge). - -2.6.0 (01-11-2009): - * don't use statvfs() for process checking on FreeBSD - * fix bug with parallel compilation of cutest in Makefile - * sh_mem.c: fix deadlock in debug-only code - * Evaluate glob patterns for each run of file check - * Add compile option to disable compiling with SSP - * Run SUID check in separate thread - * By default disable scanning ..namedfork/rsrc (deprecated by Apple) - -2.5.10 (12-10-2009): - * sh_suidchk.c: handle $HOME/.gvfs mount gracefully - * slib.c: fix race condition caused by closing a stream and the fd - -2.5.9c (01-10-2009): - * move stale file record error message closer to problem zone - * sh_port2proc.c: fix flawed logic for interpreting /proc/net/udp,tcp - -2.5.9b (22-09-2009): - * remove stale file record when creating handle, and raise diagnostic - error to find origin of stale record - * sh_port2proc.c: check /proc/net/upd6 for IPv6-only UDP sockets - -2.5.9a (17-09-2009): - * fixed a race condition in closing of file handles - -2.5.9 (11-09-2009): - * added code to generate directory for pid file, since it - would get cleaned if /var/run is a tmpfs mount (problem - reported by M. Athanasiou) - * fixed a bug that prevented reporting of user/executable path - for open UDP ports (issue reported by N. Rath) - * added more debugging code - -2.5.8a (18-08-2009): - * fixed a bug in sh_files.c that would prevent samhain from - running on MacOS X (reported by David) - -2.5.8 (06-08-2009): - * fixed a bug in the MX resolver routine which causes it to fail - sometimes (issue reported by N. Rath). - * fixed deadlock with mutex_listall in sh_nmail_test_recipients() if - error occurs within sh_nmail_flush (problem reported by N. Rath) - -2.5.7 (21-07-2009): - * sh_userfiles.c: set userUids = NULL at reconfiguration (issue - reported by U. Melzer) - * if available, use %z to print timezone as hour offset from GMT - in email date headers (problem reported by NP, solution suggested - by TimB). - * eliminate C99-style comments (problem reported by - venkat) - * fix bad variable name for AC_CACHE_CHECK - * fix potential deadlock when external programm is called - (problem reported by A. Dunkel) - -2.5.6 (09-06-2009): - * recognize fdesc filesystem on MacOS X for suid check (Problem - reported by David) - -2.5.5 (01-05-2009): - * fix some warnings from gcc 4.4 (strict aliasing) - * fix minor memory leak in process check - * t-test1.c: change function names because of clashes with an - AIX system header file - * fix warnings with -fstack-check (too large stack frames) - * fix for incorrect handling of hostnames in database insertion - (reported by byron) - -2.5.4 (04-03-2009): - * fix for incorrect input check in SRP implementation (discovered - by Thomas Ptacek) - * option KernelCheckPCI to switch off check of PCI expansion ROMs - -2.5.3 (25-02-2009): - * disable dnmalloc on MacOS X, doesn't work properly - * stat -> lstat in sh_unix_file_exists (OS X nameforks, report - by David) - * Fix problem in standalone trustfile, does not work correctly on - group-writeable files (reported by David). - * Option SetThrottle to throttle throughput for db download - * Option SetConnectionTimeout to configure the client connection - timeout configurable - * Provide getrpcbynumber, getservbyname implementations - to avoid dependencies with static linkage - * Fix missing sh.host.(system|release|machine) on FreeBSD, - reported by D.Lowry - * New option SetMailPort to allow setting of SMTP port (patch - by lucas sizzo org) - * allow POSIX regexes for filters - * consolidate filtering code from sh_extern.c, sh_(n)mail.c - * rewrite mail subsystem to allow individual filtering - for recipients - * allow shell expansion for values of config file options - * allow list as value for option PortCheckInterface - * fix bug in trustfile.c (with slapping on "/../" for symlinks) - * lock baseline database upon writing - -2.5.2b (29-01-2009): - * turn warnings into errors in the compile test suite - * fix missing define in sh_portcheck.c to eliminate compiler warning - (reported by joerg) - -2.5.2a (26-01-2009): - * fix problem building deb package (bit rot; reported by joerg) - -2.5.2 (22-01-2009): - * samhain.c: report module failure with positive offset - * sh_database.c: parse numerical fields into ulong - * fix regression test script for postgresql - * fix regression test script for SELinux/ACL test - * fix reporting of user for open ports to prelude - * report process pid for open ports - * replace _exit() by raise(SIGKILL) b/o pthread problem - * new option LooseDirCheck ([false]/true), request by - Alexander - * improved help output of samhain_stealth (as suggested - by Michael Athanasiou) - * new option ProcessCheckIsOpenVZ ([false]/true) - -2.5.1 (07-12-2008): - * workaround for freebsd7 amd64 lossage (compiler toolchain, - no mmap to 32bit address space) - * samhain-install.sh: check for presence of stealth_template.ps - before trying to create it - * use -Wno-empty-body if supported to suppress warnings about - glibc pthread_cleanup_pop implementation - * fix text relocations for i386 in src/sh_tiger1.s - * implement server->client SCAN command to initiate file check - * implement @if / @else conditionals with more tests in config file - * new option SetDropCache to drop checksummed files from cache - * report process/user for open ports on FreeBSD (code - lifted from FreeBSD sockstat.c) - * fix for config reload issue with stealth mode (reported by - siim) - * add -fstack-protector flags to LDFLAGS - * cygwin fix: don't use dnmalloc, doesn't work with pthreads - * cygwin fix: make trust check in samhain-install.sh return zero - * improved diagnostics for file read errors - * fixed script permissions (754 -> 755), reported by Christoph - * constness patch by Joe MacDonald - * GnuPG key ID patch by Jim Dutton - * sh_kern.c: more error checking for reads from kernel - -2.5.0 (01-11-2008): - * dnmalloc.c: fix inconsistent chunksize on 64bit systems - * fix improved error reporting for failed fstat in checksumming - * report process/user for open ports (Linux only currently) - * fix deadlock on exit in sh_hash_init() - * fix --enable-mounts-check for FreeBSD 7.0 (no MNT_NODEV anymore) - * log monitoring support - * fixed constness in trustfile interface - * remove libprelude 0.8 support (obsolete) - * sh_forward.c: increase TIME_OUT_DEF to 900 secs - * dnmalloc.c: initialize rc in dnmalloc_fork_child(), - reported by B. Podlipnik - -2.4.6a (09-10-2008): - * fix compile problem on Fedora 9 (reported by pierpaolo), - 'struct ucred' in sh_socket.c requires _GNU_SOURCE - -2.4.6 (27-08-2008): - * fix compile failure on win2k/cygwin (sh_unix_mlock prototype), - reported by jhamilton - * fix potential deadlock with dnmalloc upon fork() - * fix non-portable use of 'hostname -f' in regression test suite - (reported by Borut Podlipnik) - -2.4.5a (18-08-2008): - * fix compile problem in dnmalloc.c (remove prototypes for - memset/memcpy), problem reported by Juergen Daubert - -2.4.5 (07-08-2008): - * testscripts: 'chmod -R' -> 'chmod -f -R', since Solaris 10 - bails out on a chmod on a dangling link - * fix bug in check_samhain.pl nagios script (J.-S. Eon) - * use the UNO static checker - * compile as position independent executable (PIE) - * handle EINPROGRESS error (Windows/cygwin issue) - * make sure every function uses less than one page of stack - (proactive security against gap jumping, Gael Delalleau) - * use dnmalloc instead of system malloc - (proactive security against heap buffer overflows) - * fix dnmalloc bugs and portability problems - * check for compressBound, since older zlibs don't have it - -2.4.4 (30-04-2008): - * sh_database.c: fix maximum size of sql query string, maximum - size of strings in struct dbins_ - * sh_hash.c: fix maximum size of message string - * fix typo in the base64 decoder - * fix 'make cutest' for parallel compiling - * fix compile warnings with -Wstrict-prototypes - * sh_static.c: override getgrgid, getpwuid for libacl - * fix more warnings about variables clobbered by 'longjmp' - or 'vfork' (due to library internal handling of mutexes) - * fix configure warning about unused datarootdir - * configure.ac: warn, but accept nonexistent tmp dir - (Problem reported by Brian) - * sh_unix.c: undef P_ALL, P_PID, P_PGID before including - sys/wait.h (compile problem reported by Reputation) - * syslog function tested ok with Syslog Fuzzer v0.1 - by Jaime Blasco (c) 2008 - * slib.c: call fflush when writing trace to file - * sh_readconf.c: don't set OnlyStderr to false if gpg (problem - reported by Irene Reed) - * fix unconditional removal of pid file in atexit handler (bug - reported by Brian) - * fix invalid free() in sh_unix_checksum_size() - * sh_processcheck.c: workaround for stupid OpenBSD bug (returns - ENODEV instead of EAGAIN, because fgetc does - fcntl(0,F_SETFL,O_NONBLOCK) [ENODEV] internally), problem - reported by Roman R. - * fix buf that cause incomplete reporting of modified symlink if - symlink has changed and both old and new paths are >48 bytes - * fix bug that prevented mount check from running in one-shot mode - * enable mount check for openbsd - * fix processcheck default options and test script for openbsd - * option --list-file to list content of file (if saved) - * sh_tools.c: use strcasecmp in reverse lookup since DNS is case - insensitive (bug reported by Phil) - * fill content if MODI_TXT, zlib compress, base64 encode and add - as link_path in sh_unix.c; add to report in sh_hash.c - * testsuite: add test for gpg fingerprint option - * sh_extern.c: add 'CloseCommand' for syntactic sugar, - add in testsuite - -2.4.3a (12-02-2008): - * fix compile error caused by open() with O_CREAT and no third argument - (reported by J.-S. Eon) - -2.4.3 (31-01-2008): - * sh_kern.c: don't require asm/segment.h for kernel check module - * use global var with pid of initial thread instead of getpid(), - since LinuxThreads returns different value in each thread (problem - reported by Steffen Mueller) - * sh_kern.c: no inode check for pci rom (creates spurious messages) - * slib.c: eliminate prototype for vsnprintf (compile problem reported - by eddy_cs) - * Makefile.in: fix missing dependency on 'encode' for $(OBJECTS) - (reported by Matthias Ehrmann) - -2.4.2 (17-01-2008): - * fix broken option --with-checksum (reported by halosfan), - regression test added - * change HP-UX default optimization to +O2 since +O3 breaks - cutest unit testing framework - * put result vector of rng in skey struct - * fix more compiler warnings, and a potential (compiler-dependent) - NULL dereference in the unix entropy collector - * fix some compiler warnings - * use -D_FORTIFY_SOURCE=1 -fstack-protector-all instead - of -fstack-protector - * always add PTHREAD_CFLAGS to LDFLAGS - * sh_tiger0.c: checksum functions return length of file hashed, - needed to fix GrowingLogfile bug (researched by - siim at p6drad dash teel dot net) - * sh_static.c: fix more 'label at end of compound statement' - (SH_MUTEX_UNLOCK closing brace; reported anonymously) - * make sh_hash.c thread-safe - * remove plenty of tiny allocations - * improve sh_mem_dump - * modify port check to run as thread - * new option PortCheckSkip to skip ports - * fix unsetting of sh_thread_pause_flag (was too early) - -2.4.1a (28-11-2007): - * fix overwrite of ErrFlags (functionality bug) - -2.4.1 (26-11-2007): - * security fix: regression in the seeding routine for the PRNG - (detected by C. Mueller) - * regression test added for PRNG seeding routine - * fix problem with PCI ROM check (spurious messages about modified - timestamps, reported by S. Clormann) - -2.4.0a (08-11-2007): - * fix compile failure with --enable-static (reported by S. Clormann) - * fix potential deadlock if SIGHUP is received while suspended - -2.4.0 (01-11-2007): - * eliminate alarm() for I/O timeout (replaced by select) - * use getgrgid_r, getpwnam_r, getpwuid_r, gmtime_r, localtime_r, - rand_r, strtok_r if available - * protect readdir(), getpwent(), gethostname() with mutexes - (readdir_r considered harmful) - * make checksum/hash, entropy, rng functions reentrant - * use thread-specific conversion buffer for globber() - * fixed compile problems and problems with test suite - * modify login watch to run as thread - * modify process check to run as thread - -2.3.8 (03-10-2007): - * new option PortCheckIgnore = interface:portlist - -2.3.7 (13-09-2007): - * Makefile.in: fix 'make deb' target, wrong name of config file - written to debian/conffiles (reported by marc) - * configure.ac: fix incorrect order of with-prelude, enable-static - (libprelude test was always without -static) - -2.3.6 (06-09-2007): - * added yuleadmin.pl script contributed by Riccardo Murri - * fix compile error with -f-stack-protector on some systems (reported - by marc); we now check for libssp - * fix local DoS attack on BSD systems lacking getpeereid() (reported - by Rob Holland). - * fix yulectl password reading from $HOME/.yulectl_cred, erroneously - rejected passwords with exactly 14 chars (reported by Jerry Brown) - * introduce 'fflags' flag for suid files to detect new files already - found in regular file check (problem reported by J. Crutchfield); - also add regression test to ascertain that files in baseline - database are not quarantined erroneously - * sh_hash.c: replace check for prefix 'K' with check for not prefix'/' - to allow for arbitrary module-specific store/lookup in db - * replace 'visited', 'reported', 'allignore' with generic 'fflags' field - * sh_cat.c: reduce priority of MSG_TCP_RESET to avoid spamming if - port checking is used on same host as server (reported by kadafax) - * Install.sh: don't use --separate-output with non-checklist - widgets (problem discovered by D. Denton) - * sh_gpg.c, sh_userfiles.c: use sh_getpwnam et al. wrappers - -2.3.5 (20-06-2007): - * sh_portcheck.c: try to tear down connections more gracefully - (request by S. Petersen) - * fix incorrect handling of files with zero size in GrowingLogFiles - (problem reported by S. Petersen) - * fix incorrect encoding of null checksums in stealth mode - * sh_hash.c: fix repeated printing of acl/attributes in database dump - * sh_unix.c: fix option useaclcheck ignored if both useaclcheck and - useselinuxcheck are supported - -2.3.4 (01-05-2007): - * sh_processcheck.c: fix missing init of sh_prochk_res array before - check (leads to degrading functionality over time and 'fake pid' - warnings; reported by D. Ossenbrueggen and - soren dot petersen at musiker dot nu) - * sh_processcheck.c: fix memory leak - * sh_kern.c: for 2.6.21+ don't check proc_root_lookup (not possible - anymore? proc_root_inode.lookup != proc_root_lookup) - * sh_extern.c: flush streams before forking (problem if [Prelink] - used together with prelude logging, reported by M. deJong) - * fixed compilation of kern_head (regression cause by cross-compiling - fix; problem reported by S. Clormann) - * more typos fixed (reported by John Horne) - -2.3.3 (27-03-2007): - * fixed typos in configure.ac and manual (reported by John Horne) - * don't use mysql_options on x86_64, since libmysql is broken - * fixed cross-compiling (patch by Joe MacDonald) - * refactor sh_kern.c, sh_suidchk.c - * fix bug with leading slashes in linked path of symlinks within - the root directory - * sh_kern.c: check PCI ROM (Linux), refactor code - * move file descriptor closing more towards program startup - * kernel check: support OpenBSD 4.0 (wishlist) - * fix samhain_hide module (in-)compatibility with recent kernels - (reported by Jonny Halfmoon) - -2.3.2 (29-01-2007): - * fix regression in full stealth mode (incorrect comparison of - bytes read vs. maximum capacity), reported by B. Fleming - -2.3.1a (21-01-2007): - * fix incorrect use of sh_gpg_fill_startup if option --with-fp is used - (reported by zeroXten) - -2.3.1 (21-01-2007): - * fix bug that may cause accidental closure of yule TCP socket - (problem reported by B. Masuda) - * fix sh_kern.c for kernel 2.6.19 (reported by S. Clormann) - * don't use sstrip in 'make deb', since dh_shlibdeps uses objdump - (reported by B. Masuda) - * rm report.pl from rules.deb.in (reported by B. Masuda) - * samhainctl(): longer timeout (bad status reporting at startup, - reported by Phil and by Dan Track) - * sh_portcheck.c: make connect errors more descriptive - * sh_portcheck.c: fix ignored setting of PortCheckActive - * sh_processcheck.c: add statvfs, and wrap for EINTR - * sh_portcheck.c: add wrappers for EINTR - * report user and executable for hidden processes - * fix update failure if reportonlyonce = false (reported - by D. Strine) - * fix compile error in sh_portcheck.c (problem on cygwin - reported by J. D. Fiori) - * check filenames ending in space (also for utf8 spaces) - * check and escape csv formatted db listing - * cache results of sl_trustfile_euid() - * trustfile: use 4096 for MAXFILENAME, switch to strncpy - * CL option -v|--version for info on version and compiled-in options - -2.3.0a (01-11-2006): - * fix compile failure with portcheck + stealth (reported by lucas) - -2.3.0 (01-11-2006): - * fix concurrency for inserts in oracle db - * add acl_(new|old) to database schema - * check for selix attributes and/or posix acl - * new option UseSelinuxCheck (bool) - * new option UseAclCheck (bool) - * regression tests for above - * add module to check for open ports - * add module to check processes (hidden/fake/missing) - * use const char* for argument of module configuration callbacks - -2.2.6 (31-10-2006): - * fix missing support for MacOX X init script (reported - by Daniel Kowalewski) - * fix error about non-readable file with no checksum required - * fix server warning about 'no server name known' - * fix 'make deb' makefile target - * fix default export severity for server - -2.2.5 (05-10-2006): - * fix broken Install.sh, reported by Alexander Kraemer - * workaround for glob(3) sillyness on MacOS X (reported by David) - * fix for broken resorce fork check (reported by David) - * fix for broken compilation on cygwin (reported by Elias) - -2.2.4 (03-09-2006): - * add regression test for the GrowingLogFiles issue to test suite - * fixed sh_unix.c: bug in database init if GrowingLogFiles used - with signed database (reported by Timothy Stotts) - * bug in manual fixed (incorrect documentation of --enable-user, - noticed by M. Brown) - * rc.subr compatible init script for FreeBSD/NetBSD - * improve routine to find rpm after build - * add netbsd rc file from Brian Seklecki (taken from pkgsrc-wip) - * fix error in manual (location of lock file) - * fix bug with SuidExclude (files in directory were still checked) - -2.2.3 (31-07-2006): - * fix samhainadmin.pl: check for gpg-agent running if use-agent is set - (ticket #28 by anonymous) - * fix stealth mode (regression in parser), problem reported by - Joschi Kuphal - * fix minor typo in sh_database.c (compile problem reported by - Joschi Kuphal) - -2.2.2 (17-07-2006) - * minor fixes for regression test scripts - * minor updates to the manual (suggested by Brian A. Seklecki) - * fix sh_kern.c, kern_head.c: kernel rootkit detection for 2.6.17+ - (problem reported by Leonhard Maylein) - * fix samhain_hide.c for 2.6.17+: use module_param() if MODULE_PARM - is not defined - -2.2.1c (11-07-2006) - * fix sh_extern.c: sh_ext_add_default() cast to (void) was too early - (Solaris 8 build failure reported by Jesse) - * fix sh_unix.c: wrong prototype for sh_unix_mlock() - if HAVE_BROKEN_MLOCK (AIX 5.2 build failure reported by - Jonathan Kaufman) - -2.2.1b (20-06-2006): - * fix compile error on SuSE 10.1 (reported by Leonhard Maylein) - -2.2.1a (15-06-2006): - * fix compile error on i686/MacOS X (reported by Andreas Neth) - -2.2.1 (13-06-2006): - * fix gcc 4 warnings and build failure on x86_64 (debian bug #370808) - * fix compiling with Oracle (noticed by Colapinto Giovanni) - * fix configure.ac for most recent autoconf version - (debian bug #369503) - * fix a regression that would make impossible local updates w/clients - * fix a few missing '\n' in sh_getopt.c - * sh_kern.c: fall back on mmap() if read() fails on /dev/kmem - * fix Solaris package creation - * recognize Solaris doors and event ports - * fix the idmef_inode_t patch: provide required info to avoid stat() - * fix bug on database update: fill in dev and rdev fields - * fix get_file_infos() in sh_prelude.c: avoid premature return - * GCC_STACK_PROTECT_CC: AC_TRY_COMPILE -> AC_TRY_LINK - * deploy.sh: allow to set a group for hosts upon installation - * patch by Yoann: fix an issue when setting the idmef_inode_t object - * fix memory leaks in error paths in sh_prelude.c - * fix concurrent inserts with postgres in sh_database.c - * code cleanup - * fix manual version in spec file, first noticed by Imre Gergely - -2.2.0 (01-05-2006): - * patch by Jim Simmons for samhainadmin.pl.in - * fix testsuite portability problems - * fix md5 endianess problem detected on HP-UX 11i / PA-RISC 8700 - * fix potential NULL dereference in sh_utmp_endutent() - * patch by Neil Gorsuch for suidchk.c (do not scan lustre, afs, mmfs) - * fix sh_ext_popen (OpenBSD needs non-null argv[0] in execve) - * fix make_tests.sh portability (echo '"\n"' does not work on OpenBSD) - * fix bug in sh_utils_obscurename (check isascii) - * scan h_aliases for FQDN if h_name is not - * add copyright/license info to test scripts - * add copyright/license info to deployment system scripts - * support server-to-server relay - * new CL option --server-port - * minor improvements in manual - * patch by Yoann Vandoorselaere for sh_prelude.c - * allow --longopt arg as well as --longopt=arg - * verify checksum of growing log files (up to previous size) - * rewrite of the test suite - * added a bit of unit testing - * minor optimizations in various places - * optimized implementation of tiger checksum algorithm - * read in 64k blocks (faster than 4k) - * sh_unix.c, sh_hash.c: support file flags on *BSD, update Linux - file attribute code - * kern_head: fix compilation of kernel check module on OpenBSD - * updated samhainrc.linux, samhainrc.freebsd - * sh_unix.c: fix setrlimit (RLIMIT_NOFILE, ..) - * sh_files.c: fix missing use of flag_err_info - * sh_tiger0.c: remove repetitive use of mlock - * slib.c: remove fcntl's from sl_read_timeout (caller sets O_NONBLOCK), - add function sl_read_timeout_prep - -2.1.3 (13-03-2006): - * fix compile problem in slib.c (reported by Lawrence Bowie) - * fix bug with combination of one-shot update mode and file check - schedule (reportedby Dan Track) - * improved the windows howto according to suggestions by - Jorge Morgado - * fix samhain_hide kernel module for new linux kernel versions - * fix minor problem with dead client detection (problem reported - by Michal Kustosik) - -2.1.2 (10-01-2006): - * fix startup error with combination of gpg+prelude - -2.1.1a (22-12-2005): - * fixed a stupid bug in sh_files.c (break if file = dir) - -2.1.1 (21-12-2005): - * sh_calls.c: protect sh_calls_set_bind_addr against overriding - * comINSTALL, updateDB: use locking - * samhainadmin.pl: use locking +2.1.1: * fix typos in samhainrc.solaris (noticed by Robby Cauwerts) * improve zAVLSearch (remove redundant strcmp) - * use AVL tree in sh_files.c instead of linked list (better scaling) + * use AVL tree in sh_files.c instead of linked list (scales way better) * fix bug with suidcheck (no update/check in one-shot mode with schedule instead of check interval; noticed by R. Rati) @@ -1561,5 +380,5 @@ on solaris - noticed by Bob Bloom) * sh_suidcheck: don't truncate quarantined file if nlink > 1 - * fix Install.sh (no --separate-output with --radiolist); patch by + * fix Install.sh (no --seperate-output with --radiolist); patch by Greg Kimberly Index: trunk/docs/FAQ.html =================================================================== --- trunk/docs/FAQ.html (revision 591) +++ trunk/docs/FAQ.html (revision 1) @@ -31,5 +31,4 @@ div.warnblock { background: #b6c5f2; color: #000; - background: #ffffcc; color: #000; margin: 1em; padding: 0 1em 0 1em; border-width: 1px; @@ -130,14 +129,5 @@

Rainer Wichmann

-
-
    -
  • If you encounter problems after installing samhain, disable daemon - mode and run it in the foreground with - samhain --foreground [more options] for debugging.
    • -
  • If you have problems getting client/server mode to work, please check - the HOWTO client+server troubleshooting document.
    • -
-
-

FAQ Revised: Monday 17 September 2018 15:13:17

+

FAQ Revised: Saturday 17 September 2005 09:10:07

Table of Contents

@@ -147,19 +137,16 @@
  • 1.2. samhain exits with the message "Untrusted path" for config/log/pid/database files
  • 1.3. It does not log anything / Can't stop logging to console
    • -
  • 1.4. samhain exits with the message "Record with bad version number in file signature database"
    • -
  • 1.5. Client cannot self-resolve, but nslookup works fine
    • -
  • 1.6. Server logs hostname instead of FQDN (or vice versa)
    • +
  • 1.4. Client cannot self-resolve, but nslookup works fine
    • 2. Build and install
    3. File checking
    @@ -221,5 +208,4 @@
  • 7.3. I don't want the client TIMESTAMP messages in the SQL database
  • 7.4. What does the log_ref field mean ?
    • -
  • 7.5. How can I check what is in the database ?
    • @@ -281,9 +267,5 @@ is a bad idea, because samhain will open the device and write (i.e. it is a very inefficient method).

    -
    1.4. samhain exits with the message "Record with bad version number in file signature database"
    -
    This typically happens when the initialisation of the database has been -done repeatedly, i.e. by using '-t init' multiple times, without (re)moving -the previous database first before an initialisation.

    -
    1.5. Client cannot self-resolve, but nslookup works fine
    +
    1.4. Client cannot self-resolve, but nslookup works fine
    • Nslookup is a program to query Internet domain name servers. @@ -336,15 +318,16 @@ xxx.xxx.xxx.xxx myhost.mydomain.tld myhost

    -
    1.6. Server logs hostname instead of FQDN (or vice versa)
    -
    The default is to log the hostname only, if you want the FQDN -then there is an option for the server configuration: -
    -        [Misc]
-	SetStripDomain = true / false
-


    2. Build and install

    -
    2.1. "make" loops infinitely !
    +
    2.1. [Fedora Core] Cannot compile with --enable-khide
    +
    The Fedora Core kernel is patched to unconditionally deny reading +from /dev/kmem. Compiling the stealth kernel modules is not possible +under these circumstances.

    +
    2.2. [Fedora Core] Cannot compile with --with-kcheck
    +
    The Fedora Core kernel is patched to unconditionally deny reading +from /dev/kmem. Checking the kernel for the presence of rootkits is +not possible under these circumstances.

    +
    2.3. "make" loops infinitely !
    This may happen (e.g. when building via NFS for multiple architectures) if the relative timestamps in the source directory are @@ -353,9 +336,9 @@ "touch * && make distclean" in the source directory to recover.

    -
    2.2. Why does static compiling (--enable-static) on Solaris fail ?
    +
    2.4. Why does static compiling (--enable-static) on Solaris fail ?
    Ingo Rogalsky has provided the following information: It isn't possible to link Samhain statically with Solaris. This is a Solaris issue (see Sun Infodoc ID12624) and not a samhain problem.

    -
    2.3. Compilation fails with '/usr/bin/ld: cannot find -lnss_files'
    +
    2.5. Compilation fails with '/usr/bin/ld: cannot find -lnss_files'
    For Linux, this is a known problem with --enable-static if you compile in MySQL support. The problem is that the @@ -373,5 +356,5 @@ client_libs variable, and remove all instances of -lnss_files and -lnss_dns.

    -
    2.4. The executable is corrupted after installation
    +
    2.6. The executable is corrupted after installation
    The executable will get stripped during the installation. On suitable systems (i386 Linux/FreeBSD currently), additionally @@ -383,40 +366,11 @@ executable, therefore trying to strip manually after installation will corrupt the executable.

    -
    2.5. --enable-xml-log has no effect
    +
    2.7. --enable-xml-log has no effect
    If you have compiled for stealth, you won't see much, because if obfuscated, then both a 'normal' and an XML logfile look, well ... obfuscated. Use samhain -jL /path/to/logfile to view the logfile.

    -
    2.6. ./install-sh: strip: not found (Solaris)
    +
    2.8. ./install-sh: strip: not found (Solaris)
    Install the SUNWbtool package.

    -
    2.7. What is sh_tiger1.s?
    -
    This is a precompiled assembly file for the i386 architecture -generated from sh_tiger1.c using gcc 3.4.0 with the following options, -that were found to generate the fastest code: -
    - -O1 -fno-delayed-branch -fexpensive-optimizations -fstrength-reduce 
-     -fpeephole2 -fschedule-insns2 -fregmove -frename-registers -fweb 
-     -momit-leaf-frame-pointer -funroll-loops
-
    -These options were determined using -acovea 5.1.1 -by Scott Robert Ladd. The file is provided as precompiled assembly -because different versions of gcc can have very different performance, -require different options to compile optimal code, and -it would be impossible to maintain a library of optimal compile options -for every version of gcc.

    -
    2.8. Why does static compiling (--enable-static) on MaxOS X fail ?
    -
    Static linking is not supported on MacOS X, see -Technical Q&A QA1118. -This is a MacOS X issue and not a bug in samhain.

    -
    2.9. Why does compiling with MySQL fail on Solaris ?
    -
    The reason is often the shell script 'mysql_config' that comes as part -of MySQL. This script is intended to print appropriate compiler flags for -compiling applications that use MySQL. Unfortunately, since Sun compiles -MySQL with the Solaris compiler, this script outputs options for the Solaris -compiler (i.e. unsuitable for gcc). To solve this problem, you need to move -this script (i.e. 'mysql_config') out of your PATH before running -./configure (unless of course you are using the Solaris compiler -rather than gcc).

    3. File checking

    @@ -482,5 +436,5 @@ as "localhost" to the server, thus the server needs to trust the client name -as reported by the client itself, and suppress all errors on resolving +as reported by the client itself, and suppress all eroors on resolving this name to the apparent address. In the server configuration: @@ -600,6 +554,5 @@

    Alternatively, you can scp the database - to the client, run samhain -t update -l none --foreground - (you + to the client, run samhain -t update -l none (you need to avoid logging because otherwise you will get in conflict with the running samhain daemon), and then scp the @@ -790,5 +743,5 @@ 2.) In your client or server configuration file, you are using - the option for a custom message header, but without paying attention + the option for a custum message header, but without paying attention to preserving the XML format.

    @@ -800,5 +753,5 @@ This will enable/disable logging of the server timestamp for client - messages. The server timestamp will be written to a separate record, + messages. The server timestamp will be written to a seperate record, with log_ref set to the value of log_index of the corresponding client message.

    @@ -840,13 +793,4 @@ number of the corresponding client message). Zero indicates a message by the server itself (e.g. the server's start message).

    -

    7.5. How can I check what is in the database ?
    -
    Use a command line client to login to the database and query it: -
    -     sh$ mysql -u <user_name> -p <database_name>
-     Enter password: ****
-     mysql> SELECT log_index,log_ref,log_host,log_sev,log_msg,path FROM <table_name> WHERE entry_status = 'NEW' ORDER BY log_index;
-     ....
-     mysql> \q 
-


    Index: trunk/docs/HOWTO-client+server-troubleshooting.html =================================================================== --- trunk/docs/HOWTO-client+server-troubleshooting.html (revision 591) +++ trunk/docs/HOWTO-client+server-troubleshooting.html (revision 1) @@ -30,5 +30,4 @@ div.warnblock { background: #b6c5f2; color: #000; - background: #ffffcc; color: #000; margin: 1em; padding: 0 1em 0 1em; border-width: 1px; @@ -132,29 +131,4 @@
    -
    -
      -
    • Almost all problems can only be diagnosed correctly by checking the - server logs.
      • -
    • - If the server does not write logs, fix this first. For debugging, - stop the server, then run it in the foreground with - yule -p info --foreground -
        -
      • - By default, the server logs to the file - /var/log/yule/yule_log, and since the server drops - root privileges on startup, the directory /var/log/yule - must be writable for the nonprivileged user the server runs - as (the first existing out of: yule, daemon, nobody). -
        • -
      • - Logging to the logfile must be enabled in the - /etc/yulerc config file (e.g. LogSeverity=mark, or - LogSeverity=info for enhanced verbosity). -
        • -
      -
      • -
    -

    This document aims to explain how to diagnose and fix common problems that @@ -273,25 +247,13 @@

    - This does not work for a number of people because -

      -
    1. - the - /etc/hosts file on the client machine has errors - (yes, there are plenty machines with a completely - messed up /etc/hosts file), -
      2. -
    2. - the - server cannot resolve the client address because the local DNS is - misconfigured, or -
      3. -
    3. - the client machine has multiple network interfaces, and - the interface used is not the one the client name resolves to. -
      4. -
    -

    - -

    + This does not work for a number of people because (1) the + /etc/hosts file on the client machine has errors + (yes, there are plenty machines with a completely + messed up /etc/hosts file), (2) the + server cannot resolve the client address because the local DNS is + f***ed up, or (3) the client machine has multiple network interfaces, and + the interface used is not the one the client name resolves to. +

    +

    If the client uses the wrong interface on a multi-interface machine, there is a config file option @@ -299,30 +261,29 @@ that allows to choose the interface the client will use for outgoing connections. -

    -

    +

    +

    If you want to download the config file from the server, you - should instead use the corresponding command line option + should instead use the corresponding command line --bind-address=IP address to select the interface. -

    - -

    - If you encounter problems, you may (1) fix your - /etc/hosts file(s), (2) fix your local DNS, or - (3) switch to the second method. -

    -

    - Error messages related to name resolving/cross-checking can be - suppressed by setting a - very low severity (lower than the logging threshold), e.g. -

    -

    - SeverityLookup=debug -

    -

    - in the Misc section of the server configuration, - if you prefer running unsafe at any speed - instead of fixing the problem (you have been warned). Doing so will - allow an attacker to pose as the client. +

    + +

    + If you encounter problems, you may (1) fix your + /etc/hosts file(s), (2) fix your local DNS, or + (3) switch to the second method. +

    +

    + Errors in name resolving/cross-checking can be avoided by setting a + very low severity (lower than the logging threshold), e.g. +

    +

    + SeverityLookup=debug +

    +

    + in the Misc section of the server configuration, + if you prefer running unsafe at any speed + instead of fixing the problem (you have been warned). Doing so will + allow an attacker to pose as the client.

    @@ -353,6 +314,5 @@

    The client does not tell the server the path to the requested -file - it just tells the type of the file, i.e. -either a configuration file or a database file. It is entirely the +file - it just requests a config or a database file. It's entirely the responsibility of the server to locate the correct file and send it.

    @@ -385,15 +345,4 @@ To fix: put the file in the correct location, make sure the permissions are ok. -
      -
    • - Note that the server drops root privileges at startup and - runs as an unprivileged user (the first existing out of: - yule, daemon, nobody). -
      • -
    • - Also remember that to access a file, at least execute permission is required - for every directory in the path. -
      • -

    Index: trunk/docs/HOWTO-client+server.html =================================================================== --- trunk/docs/HOWTO-client+server.html (revision 591) +++ trunk/docs/HOWTO-client+server.html (revision 1) @@ -144,5 +144,5 @@ Client and server are distict applications, and must be -built separately. By default, installation names and paths (e.g. +built seperately. By default, installation names and paths (e.g. the configuration file) are different. Do not blame us if you abuse './configure' options to Index: trunk/docs/HOWTO-samhain+GnuPG.html =================================================================== --- trunk/docs/HOWTO-samhain+GnuPG.html (revision 591) +++ trunk/docs/HOWTO-samhain+GnuPG.html (revision 1) @@ -329,5 +329,5 @@ emails signed by them).

    -So which is the correct file? Here we have to consider two separate +So which is the correct file? Here we have to consider two seperate cases:

    Index: trunk/docs/HOWTO-samhain-on-windows.html =================================================================== --- trunk/docs/HOWTO-samhain-on-windows.html (revision 591) +++ trunk/docs/HOWTO-samhain-on-windows.html (revision 1) @@ -135,6 +135,5 @@ Cygwin POSIX emulation layer, and how to install it as a service. These instructions have been written by Kris Dom, -who has tested this on WinXP Professional, with additions by Geries Handal -and Jorge Morgado. +who has tested this on WinXP Professional.

    @@ -151,6 +150,5 @@ logging) because Interix does not provide some of the required functionality to build the email module. This issue should be fixed as of samhain -version 2.0.7 (not tested).
    -[Based on information kindly provided by Geries Handal]. +version 2.0.7 (not tested).
    [Based on information kindly provided by Geries Handal].

    @@ -194,21 +192,4 @@ -
    -

    -You don't need to download and install All packages. It is enough to keep -the Default and then add the following additional packages: -

    -

    - Category Devel -> gcc: C compiler upgrade helper
    - Category Devel -> make: The GNU version of the 'make' utility
    - Category Libs -> minires: A simple synchronous non caching stub resolver
    -

    -

    -When selecting these packages, Cygwin installer will automatically add -other packages based on their dependencies. -The package minires is only necessary for a minimal Cygwin installation -(below). [Kindly pointed out by Jorge Morgado]. -

    -

    Cygwin installation

    @@ -273,12 +254,4 @@
  • Configure:
       $ ./configure --enable-xml-log=yes --with-tmp-dir=/usr/local/tmp --with-config-file=/usr/local/etc/samhainrc --with-log-file=/usr/local/log/samhain.log --with-pid-file=/usr/local/var/samhain.pid --with-state-dir=/usr/local/var
    -
    -

    -In my experience, the paths given in the 'configure' command should refer to -the Cygwin filesystem view, i.e. /cygdrive/c/..., otherwise -samhain may not work from a pure DOS shell, and may not run as a Windows -service [Rainer Wichmann]. -

    -
  • Make the binary:
    @@ -328,28 +301,4 @@
    • - -
  • -Files needed from c:\Cygwin\bin to create the /etc/passwd and /etc/group files: -
      -
    • - mkpasswd.exe -
      • -
    • - mkgroup.exe -
      • -
    -

    -To generate these files on a minimal Cygwin installation execute - on a -Windows Command Prompt: -

    -   mkdir c:\etc
    -   path\to\mkpasswd.exe -l > c:\etc\passwd
    -   path\to\mkgroup.exe -l > c:\etc\group -

    -IMPORTANT NOTE: You should re-create these two files, each time the -Windows users and groups accounts database changes. Failing to do this -might generate critical log messages (depending on your configuration -file). -

  • @@ -382,6 +331,6 @@
  • Under the newly created "Parameters" key, add a new String - value called "Application".
    -    The value for "Application" + value called "Applications".
    +    The value for "Applications" should be "c:\usr\local\sbin\samhain.exe".
    • @@ -399,28 +348,4 @@ -
    -

    -It seems that start/stop/restart the service does not work if samhain -is configured to run as a daemon, because the Windows service manager -cannot track the forked daemon process. -

    -

    Therefore, if you run Samhain as a Windows service, it might be better -to configure it as a 'normal' process which does not fork a daemon: -

      -
    • - Set 'Daemon = no' in the samhainrc configuration file. -
      • -
    • - Edit the key HKEY_LOCAL_MACHINE->SYSTEM->CurrentControlSet->Services->Samhain->Parameters to add a string value named 'AppParameters', with - the value '--forever'. -
      • -
    -[Rainer Wichmann]. -

    -
    -

    -Also see http://support.microsoft.com/kb/q137890/ for information regarding the creation of a -user-defined service. -

    Note: the first time I tried to install samhain as an NT service, I first @@ -429,67 +354,4 @@ Samhain as a service.

    - - -

    Troubleshooting samhain

    - -

    -[Rainer Wichmann] I had some problems at first getting it to run as a -Windows service. Some tips: -

      -
    • - Running samhain from a pure DOS shell (outside the Cygwin environment) - helps to identify problems, in particular if it refuses to start - as a Windows service. -
      • -
    • - I found it neccessary to put the cygwin1.dll DLL into the - same directory as the samhain.exe executable. Also, you - can use the command ldd ./samhain.exe to identify further - Cygwin-specific DLL that may be required (if any). -
      • -
    • - Also, I found it neccessary to use Cygwin-style paths - (/cygdrive/c/...) in the './configure ..' command when - compiling samhain. -
      • -
    -

    - -

    -[Tip from Jorge Morgado] If you, like me, have a Windows server not part of any domain and (for -security reasons) you even turn off DNS resolution, you might probably get -the following error when initializing the baseline database: -

    -
    -  ---------   sh_unix.c  ---   1487 ---------
-  According to uname, your nodename is yourcomputername, but your resolver
-  library cannot resolve this nodename to a FQDN.
-  Rather, it resolves this to yourcomputername.
-  For more information, see the entry about self-resolving under
-  'Most frequently' in the FAQ that you will find in the docs/ subdirectory
-  ----------------------------------------------
-
    -

    -To fix this problem open the Registry Editor and create the following -entries under the key -HKLM\System\CurrentControlSet\Services\Tcpip\Parameters -

    -

    - -Name: Domain
    -Type: REG_SZ
    -Data: your.domain.name -     -

    - -Name: NV Domain
    -Type: REG_SZ
    -Data: your.domain.name -     -

    -The NV Domain registry value contains the computer's primary DNS suffix -while the Domain registry value contains the computer's primary DNS -domain. This will make the warning message go away. -

    Index: trunk/docs/HOWTO-write-modules.html =================================================================== --- trunk/docs/HOWTO-write-modules.html (revision 591) +++ trunk/docs/HOWTO-write-modules.html (revision 1) @@ -662,7 +662,6 @@ When checking files, samhain will walk the database to find files that are in the database, but have been deleted from the disk. If you enter -data, you need to mark it as such by using a key that -starts with something else but '/', otherwise samhain will complain -if it has not been checked during the file check. +non-file data, you need to mark it as such by using a key that +starts with a 'K'. 

    @@ -683,5 +682,5 @@
 (max. (PATH_MAX-1)/2). As noted
 above, you need to supply a key (stored as the 'filepath', which should
-start with a character different from '/'). To retrieve data, you can use
+start with the character 'K'). To retrieve data, you can use
 'sh_hash_db2pop'. The return value is either NULL (if no string was
 stored under this key), or the stored string (length returned in 'size').
Index: trunk/docs/MANUAL-2_0.ps
===================================================================
--- trunk/docs/MANUAL-2_0.ps	(revision 1)
+++ trunk/docs/MANUAL-2_0.ps	(revision 1)
@@ -0,0 +1,49475 @@
+%!PS-Adobe-2.0
+%%Creator: dvips(k) 5.92b Copyright 2002 Radical Eye Software
+%%Title: MANUAL-2_0.dvi
+%%Pages: 134
+%%PageOrder: Ascend
+%%BoundingBox: 0 0 596 842
+%%DocumentFonts: Helvetica-Bold Times-Roman Times-Italic Times-Bold
+%%+ Helvetica Courier Courier-Bold Helvetica-Oblique Courier-BoldOblique
+%%+ Courier-Oblique
+%%EndComments
+%DVIPSWebPage: (www.radicaleye.com)
+%DVIPSCommandLine: dvips -O 0cm,1cm MANUAL-2_0.dvi
+%DVIPSParameters: dpi=600, compressed
+%DVIPSSource:  TeX output 2005.10.31:2204
+%%BeginProcSet: texc.pro
+%!
+/TeXDict 300 dict def TeXDict begin/N{def}def/B{bind def}N/S{exch}N/X{S
+N}B/A{dup}B/TR{translate}N/isls false N/vsize 11 72 mul N/hsize 8.5 72
+mul N/landplus90{false}def/@rigin{isls{[0 landplus90{1 -1}{-1 1}ifelse 0
+0 0]concat}if 72 Resolution div 72 VResolution div neg scale isls{
+landplus90{VResolution 72 div vsize mul 0 exch}{Resolution -72 div hsize
+mul 0}ifelse TR}if Resolution VResolution vsize -72 div 1 add mul TR[
+matrix currentmatrix{A A round sub abs 0.00001 lt{round}if}forall round
+exch round exch]setmatrix}N/@landscape{/isls true N}B/@manualfeed{
+statusdict/manualfeed true put}B/@copies{/#copies X}B/FMat[1 0 0 -1 0 0]
+N/FBB[0 0 0 0]N/nn 0 N/IEn 0 N/ctr 0 N/df-tail{/nn 8 dict N nn begin
+/FontType 3 N/FontMatrix fntrx N/FontBBox FBB N string/base X array
+/BitMaps X/BuildChar{CharBuilder}N/Encoding IEn N end A{/foo setfont}2
+array copy cvx N load 0 nn put/ctr 0 N[}B/sf 0 N/df{/sf 1 N/fntrx FMat N
+df-tail}B/dfs{div/sf X/fntrx[sf 0 0 sf neg 0 0]N df-tail}B/E{pop nn A
+definefont setfont}B/Cw{Cd A length 5 sub get}B/Ch{Cd A length 4 sub get
+}B/Cx{128 Cd A length 3 sub get sub}B/Cy{Cd A length 2 sub get 127 sub}
+B/Cdx{Cd A length 1 sub get}B/Ci{Cd A type/stringtype ne{ctr get/ctr ctr
+1 add N}if}B/id 0 N/rw 0 N/rc 0 N/gp 0 N/cp 0 N/G 0 N/CharBuilder{save 3
+1 roll S A/base get 2 index get S/BitMaps get S get/Cd X pop/ctr 0 N Cdx
+0 Cx Cy Ch sub Cx Cw add Cy setcachedevice Cw Ch true[1 0 0 -1 -.1 Cx
+sub Cy .1 sub]/id Ci N/rw Cw 7 add 8 idiv string N/rc 0 N/gp 0 N/cp 0 N{
+rc 0 ne{rc 1 sub/rc X rw}{G}ifelse}imagemask restore}B/G{{id gp get/gp
+gp 1 add N A 18 mod S 18 idiv pl S get exec}loop}B/adv{cp add/cp X}B
+/chg{rw cp id gp 4 index getinterval putinterval A gp add/gp X adv}B/nd{
+/cp 0 N rw exit}B/lsh{rw cp 2 copy get A 0 eq{pop 1}{A 255 eq{pop 254}{
+A A add 255 and S 1 and or}ifelse}ifelse put 1 adv}B/rsh{rw cp 2 copy
+get A 0 eq{pop 128}{A 255 eq{pop 127}{A 2 idiv S 128 and or}ifelse}
+ifelse put 1 adv}B/clr{rw cp 2 index string putinterval adv}B/set{rw cp
+fillstr 0 4 index getinterval putinterval adv}B/fillstr 18 string 0 1 17
+{2 copy 255 put pop}for N/pl[{adv 1 chg}{adv 1 chg nd}{1 add chg}{1 add
+chg nd}{adv lsh}{adv lsh nd}{adv rsh}{adv rsh nd}{1 add adv}{/rc X nd}{
+1 add set}{1 add clr}{adv 2 chg}{adv 2 chg nd}{pop nd}]A{bind pop}
+forall N/D{/cc X A type/stringtype ne{]}if nn/base get cc ctr put nn
+/BitMaps get S ctr S sf 1 ne{A A length 1 sub A 2 index S get sf div put
+}if put/ctr ctr 1 add N}B/I{cc 1 add D}B/bop{userdict/bop-hook known{
+bop-hook}if/SI save N @rigin 0 0 moveto/V matrix currentmatrix A 1 get A
+mul exch 0 get A mul add .99 lt{/QV}{/RV}ifelse load def pop pop}N/eop{
+SI restore userdict/eop-hook known{eop-hook}if showpage}N/@start{
+userdict/start-hook known{start-hook}if pop/VResolution X/Resolution X
+1000 div/DVImag X/IEn 256 array N 2 string 0 1 255{IEn S A 360 add 36 4
+index cvrs cvn put}for pop 65781.76 div/vsize X 65781.76 div/hsize X}N
+/p{show}N/RMat[1 0 0 -1 0 0]N/BDot 260 string N/Rx 0 N/Ry 0 N/V{}B/RV/v{
+/Ry X/Rx X V}B statusdict begin/product where{pop false[(Display)(NeXT)
+(LaserWriter 16/600)]{A length product length le{A length product exch 0
+exch getinterval eq{pop true exit}if}{pop}ifelse}forall}{false}ifelse
+end{{gsave TR -.1 .1 TR 1 1 scale Rx Ry false RMat{BDot}imagemask
+grestore}}{{gsave TR -.1 .1 TR Rx Ry scale 1 1 false RMat{BDot}
+imagemask grestore}}ifelse B/QV{gsave newpath transform round exch round
+exch itransform moveto Rx 0 rlineto 0 Ry neg rlineto Rx neg 0 rlineto
+fill grestore}B/a{moveto}B/delta 0 N/tail{A/delta X 0 rmoveto}B/M{S p
+delta add tail}B/b{S p tail}B/c{-4 M}B/d{-3 M}B/e{-2 M}B/f{-1 M}B/g{0 M}
+B/h{1 M}B/i{2 M}B/j{3 M}B/k{4 M}B/w{0 rmoveto}B/l{p -4 w}B/m{p -3 w}B/n{
+p -2 w}B/o{p -1 w}B/q{p 1 w}B/r{p 2 w}B/s{p 3 w}B/t{p 4 w}B/x{0 S
+rmoveto}B/y{3 2 roll p a}B/bos{/SS save N}B/eos{SS restore}B end
+
+%%EndProcSet
+%%BeginProcSet: 8r.enc
+% File  8r.enc as of 2002-03-12 for PSNFSS 9
+%
+% This is the encoding vector for Type1 and TrueType fonts to be used
+% with TeX.  This file is part of the PSNFSS bundle, version 9
+% 
+% Authors: S. Rahtz, P. MacKay, Alan Jeffrey, B. Horn, K. Berry, W. Schmidt
+%
+% Idea is to have all the characters normally included in Type 1 fonts
+% available for typesetting. This is effectively the characters in Adobe
+% Standard Encoding + ISO Latin 1 + extra characters from Lucida + Euro.
+% 
+% Character code assignments were made as follows:
+% 
+% (1) the Windows ANSI characters are almost all in their Windows ANSI
+% positions, because some Windows users cannot easily reencode the
+% fonts, and it makes no difference on other systems. The only Windows
+% ANSI characters not available are those that make no sense for
+% typesetting -- rubout (127 decimal), nobreakspace (160), softhyphen
+% (173). quotesingle and grave are moved just because it's such an
+% irritation not having them in TeX positions.
+% 
+% (2) Remaining characters are assigned arbitrarily to the lower part
+% of the range, avoiding 0, 10 and 13 in case we meet dumb software.
+% 
+% (3) Y&Y Lucida Bright includes some extra text characters; in the
+% hopes that other PostScript fonts, perhaps created for public
+% consumption, will include them, they are included starting at 0x12.
+% 
+% (4) Remaining positions left undefined are for use in (hopefully)
+% upward-compatible revisions, if someday more characters are generally
+% available.
+% 
+% (5) hyphen appears twice for compatibility with both ASCII and Windows.
+%
+% (6) /Euro is assigned to 128, as in Windows ANSI
+% 
+/TeXBase1Encoding [
+% 0x00 (encoded characters from Adobe Standard not in Windows 3.1)
+  /.notdef /dotaccent /fi /fl
+  /fraction /hungarumlaut /Lslash /lslash
+  /ogonek /ring /.notdef
+  /breve /minus /.notdef 
+% These are the only two remaining unencoded characters, so may as
+% well include them.
+  /Zcaron /zcaron 
+% 0x10
+ /caron /dotlessi 
+% (unusual TeX characters available in, e.g., Lucida Bright)
+ /dotlessj /ff /ffi /ffl 
+ /.notdef /.notdef /.notdef /.notdef
+ /.notdef /.notdef /.notdef /.notdef
+ % very contentious; it's so painful not having quoteleft and quoteright
+ % at 96 and 145 that we move the things normally found there down to here.
+ /grave /quotesingle 
+% 0x20 (ASCII begins)
+ /space /exclam /quotedbl /numbersign
+ /dollar /percent /ampersand /quoteright
+ /parenleft /parenright /asterisk /plus /comma /hyphen /period /slash
+% 0x30
+ /zero /one /two /three /four /five /six /seven
+ /eight /nine /colon /semicolon /less /equal /greater /question
+% 0x40
+ /at /A /B /C /D /E /F /G /H /I /J /K /L /M /N /O
+% 0x50
+ /P /Q /R /S /T /U /V /W
+ /X /Y /Z /bracketleft /backslash /bracketright /asciicircum /underscore
+% 0x60
+ /quoteleft /a /b /c /d /e /f /g /h /i /j /k /l /m /n /o
+% 0x70
+ /p /q /r /s /t /u /v /w
+ /x /y /z /braceleft /bar /braceright /asciitilde
+ /.notdef % rubout; ASCII ends
+% 0x80
+ /Euro /.notdef /quotesinglbase /florin
+ /quotedblbase /ellipsis /dagger /daggerdbl
+ /circumflex /perthousand /Scaron /guilsinglleft
+ /OE /.notdef /.notdef /.notdef
+% 0x90
+ /.notdef /.notdef /.notdef /quotedblleft
+ /quotedblright /bullet /endash /emdash
+ /tilde /trademark /scaron /guilsinglright
+ /oe /.notdef /.notdef /Ydieresis
+% 0xA0
+ /.notdef % nobreakspace
+ /exclamdown /cent /sterling
+ /currency /yen /brokenbar /section
+ /dieresis /copyright /ordfeminine /guillemotleft
+ /logicalnot
+ /hyphen % Y&Y (also at 45); Windows' softhyphen
+ /registered
+ /macron
+% 0xD0
+ /degree /plusminus /twosuperior /threesuperior
+ /acute /mu /paragraph /periodcentered
+ /cedilla /onesuperior /ordmasculine /guillemotright
+ /onequarter /onehalf /threequarters /questiondown
+% 0xC0
+ /Agrave /Aacute /Acircumflex /Atilde /Adieresis /Aring /AE /Ccedilla
+ /Egrave /Eacute /Ecircumflex /Edieresis
+ /Igrave /Iacute /Icircumflex /Idieresis
+% 0xD0
+ /Eth /Ntilde /Ograve /Oacute
+ /Ocircumflex /Otilde /Odieresis /multiply
+ /Oslash /Ugrave /Uacute /Ucircumflex
+ /Udieresis /Yacute /Thorn /germandbls
+% 0xE0
+ /agrave /aacute /acircumflex /atilde
+ /adieresis /aring /ae /ccedilla
+ /egrave /eacute /ecircumflex /edieresis
+ /igrave /iacute /icircumflex /idieresis
+% 0xF0
+ /eth /ntilde /ograve /oacute
+ /ocircumflex /otilde /odieresis /divide
+ /oslash /ugrave /uacute /ucircumflex
+ /udieresis /yacute /thorn /ydieresis
+] def
+
+%%EndProcSet
+%%BeginProcSet: texps.pro
+%!
+TeXDict begin/rf{findfont dup length 1 add dict begin{1 index/FID ne 2
+index/UniqueID ne and{def}{pop pop}ifelse}forall[1 index 0 6 -1 roll
+exec 0 exch 5 -1 roll VResolution Resolution div mul neg 0 0]FontType 0
+ne{/Metrics exch def dict begin Encoding{exch dup type/integertype ne{
+pop pop 1 sub dup 0 le{pop}{[}ifelse}{FontMatrix 0 get div Metrics 0 get
+div def}ifelse}forall Metrics/Metrics currentdict end def}{{1 index type
+/nametype eq{exit}if exch pop}loop}ifelse[2 index currentdict end
+definefont 3 -1 roll makefont/setfont cvx]cvx def}def/ObliqueSlant{dup
+sin S cos div neg}B/SlantFont{4 index mul add}def/ExtendFont{3 -1 roll
+mul exch}def/ReEncodeFont{CharStrings rcheck{/Encoding false def dup[
+exch{dup CharStrings exch known not{pop/.notdef/Encoding true def}if}
+forall Encoding{]exch pop}{cleartomark}ifelse}if/Encoding exch def}def
+end
+
+%%EndProcSet
+%%BeginProcSet: special.pro
+%!
+TeXDict begin/SDict 200 dict N SDict begin/@SpecialDefaults{/hs 612 N
+/vs 792 N/ho 0 N/vo 0 N/hsc 1 N/vsc 1 N/ang 0 N/CLIP 0 N/rwiSeen false N
+/rhiSeen false N/letter{}N/note{}N/a4{}N/legal{}N}B/@scaleunit 100 N
+/@hscale{@scaleunit div/hsc X}B/@vscale{@scaleunit div/vsc X}B/@hsize{
+/hs X/CLIP 1 N}B/@vsize{/vs X/CLIP 1 N}B/@clip{/CLIP 2 N}B/@hoffset{/ho
+X}B/@voffset{/vo X}B/@angle{/ang X}B/@rwi{10 div/rwi X/rwiSeen true N}B
+/@rhi{10 div/rhi X/rhiSeen true N}B/@llx{/llx X}B/@lly{/lly X}B/@urx{
+/urx X}B/@ury{/ury X}B/magscale true def end/@MacSetUp{userdict/md known
+{userdict/md get type/dicttype eq{userdict begin md length 10 add md
+maxlength ge{/md md dup length 20 add dict copy def}if end md begin
+/letter{}N/note{}N/legal{}N/od{txpose 1 0 mtx defaultmatrix dtransform S
+atan/pa X newpath clippath mark{transform{itransform moveto}}{transform{
+itransform lineto}}{6 -2 roll transform 6 -2 roll transform 6 -2 roll
+transform{itransform 6 2 roll itransform 6 2 roll itransform 6 2 roll
+curveto}}{{closepath}}pathforall newpath counttomark array astore/gc xdf
+pop ct 39 0 put 10 fz 0 fs 2 F/|______Courier fnt invertflag{PaintBlack}
+if}N/txpose{pxs pys scale ppr aload pop por{noflips{pop S neg S TR pop 1
+-1 scale}if xflip yflip and{pop S neg S TR 180 rotate 1 -1 scale ppr 3
+get ppr 1 get neg sub neg ppr 2 get ppr 0 get neg sub neg TR}if xflip
+yflip not and{pop S neg S TR pop 180 rotate ppr 3 get ppr 1 get neg sub
+neg 0 TR}if yflip xflip not and{ppr 1 get neg ppr 0 get neg TR}if}{
+noflips{TR pop pop 270 rotate 1 -1 scale}if xflip yflip and{TR pop pop
+90 rotate 1 -1 scale ppr 3 get ppr 1 get neg sub neg ppr 2 get ppr 0 get
+neg sub neg TR}if xflip yflip not and{TR pop pop 90 rotate ppr 3 get ppr
+1 get neg sub neg 0 TR}if yflip xflip not and{TR pop pop 270 rotate ppr
+2 get ppr 0 get neg sub neg 0 S TR}if}ifelse scaleby96{ppr aload pop 4
+-1 roll add 2 div 3 1 roll add 2 div 2 copy TR .96 dup scale neg S neg S
+TR}if}N/cp{pop pop showpage pm restore}N end}if}if}N/normalscale{
+Resolution 72 div VResolution 72 div neg scale magscale{DVImag dup scale
+}if 0 setgray}N/psfts{S 65781.76 div N}N/startTexFig{/psf$SavedState
+save N userdict maxlength dict begin/magscale true def normalscale
+currentpoint TR/psf$ury psfts/psf$urx psfts/psf$lly psfts/psf$llx psfts
+/psf$y psfts/psf$x psfts currentpoint/psf$cy X/psf$cx X/psf$sx psf$x
+psf$urx psf$llx sub div N/psf$sy psf$y psf$ury psf$lly sub div N psf$sx
+psf$sy scale psf$cx psf$sx div psf$llx sub psf$cy psf$sy div psf$ury sub
+TR/showpage{}N/erasepage{}N/setpagedevice{pop}N/copypage{}N/p 3 def
+@MacSetUp}N/doclip{psf$llx psf$lly psf$urx psf$ury currentpoint 6 2 roll
+newpath 4 copy 4 2 roll moveto 6 -1 roll S lineto S lineto S lineto
+closepath clip newpath moveto}N/endTexFig{end psf$SavedState restore}N
+/@beginspecial{SDict begin/SpecialSave save N gsave normalscale
+currentpoint TR @SpecialDefaults count/ocount X/dcount countdictstack N}
+N/@setspecial{CLIP 1 eq{newpath 0 0 moveto hs 0 rlineto 0 vs rlineto hs
+neg 0 rlineto closepath clip}if ho vo TR hsc vsc scale ang rotate
+rwiSeen{rwi urx llx sub div rhiSeen{rhi ury lly sub div}{dup}ifelse
+scale llx neg lly neg TR}{rhiSeen{rhi ury lly sub div dup scale llx neg
+lly neg TR}if}ifelse CLIP 2 eq{newpath llx lly moveto urx lly lineto urx
+ury lineto llx ury lineto closepath clip}if/showpage{}N/erasepage{}N
+/setpagedevice{pop}N/copypage{}N newpath}N/@endspecial{count ocount sub{
+pop}repeat countdictstack dcount sub{end}repeat grestore SpecialSave
+restore end}N/@defspecial{SDict begin}N/@fedspecial{end}B/li{lineto}B
+/rl{rlineto}B/rc{rcurveto}B/np{/SaveX currentpoint/SaveY X N 1
+setlinecap newpath}N/st{stroke SaveX SaveY moveto}N/fil{fill SaveX SaveY
+moveto}N/ellipse{/endangle X/startangle X/yrad X/xrad X/savematrix
+matrix currentmatrix N TR xrad yrad scale 0 0 1 startangle endangle arc
+savematrix setmatrix}N end
+
+%%EndProcSet
+%%BeginProcSet: color.pro
+%!
+TeXDict begin/setcmykcolor where{pop}{/setcmykcolor{dup 10 eq{pop
+setrgbcolor}{1 sub 4 1 roll 3{3 index add neg dup 0 lt{pop 0}if 3 1 roll
+}repeat setrgbcolor pop}ifelse}B}ifelse/TeXcolorcmyk{setcmykcolor}def
+/TeXcolorrgb{setrgbcolor}def/TeXcolorgrey{setgray}def/TeXcolorgray{
+setgray}def/TeXcolorhsb{sethsbcolor}def/currentcmykcolor where{pop}{
+/currentcmykcolor{currentrgbcolor 10}B}ifelse/DC{exch dup userdict exch
+known{pop pop}{X}ifelse}B/GreenYellow{0.15 0 0.69 0 setcmykcolor}DC
+/Yellow{0 0 1 0 setcmykcolor}DC/Goldenrod{0 0.10 0.84 0 setcmykcolor}DC
+/Dandelion{0 0.29 0.84 0 setcmykcolor}DC/Apricot{0 0.32 0.52 0
+setcmykcolor}DC/Peach{0 0.50 0.70 0 setcmykcolor}DC/Melon{0 0.46 0.50 0
+setcmykcolor}DC/YellowOrange{0 0.42 1 0 setcmykcolor}DC/Orange{0 0.61
+0.87 0 setcmykcolor}DC/BurntOrange{0 0.51 1 0 setcmykcolor}DC
+/Bittersweet{0 0.75 1 0.24 setcmykcolor}DC/RedOrange{0 0.77 0.87 0
+setcmykcolor}DC/Mahogany{0 0.85 0.87 0.35 setcmykcolor}DC/Maroon{0 0.87
+0.68 0.32 setcmykcolor}DC/BrickRed{0 0.89 0.94 0.28 setcmykcolor}DC/Red{
+0 1 1 0 setcmykcolor}DC/OrangeRed{0 1 0.50 0 setcmykcolor}DC/RubineRed{
+0 1 0.13 0 setcmykcolor}DC/WildStrawberry{0 0.96 0.39 0 setcmykcolor}DC
+/Salmon{0 0.53 0.38 0 setcmykcolor}DC/CarnationPink{0 0.63 0 0
+setcmykcolor}DC/Magenta{0 1 0 0 setcmykcolor}DC/VioletRed{0 0.81 0 0
+setcmykcolor}DC/Rhodamine{0 0.82 0 0 setcmykcolor}DC/Mulberry{0.34 0.90
+0 0.02 setcmykcolor}DC/RedViolet{0.07 0.90 0 0.34 setcmykcolor}DC
+/Fuchsia{0.47 0.91 0 0.08 setcmykcolor}DC/Lavender{0 0.48 0 0
+setcmykcolor}DC/Thistle{0.12 0.59 0 0 setcmykcolor}DC/Orchid{0.32 0.64 0
+0 setcmykcolor}DC/DarkOrchid{0.40 0.80 0.20 0 setcmykcolor}DC/Purple{
+0.45 0.86 0 0 setcmykcolor}DC/Plum{0.50 1 0 0 setcmykcolor}DC/Violet{
+0.79 0.88 0 0 setcmykcolor}DC/RoyalPurple{0.75 0.90 0 0 setcmykcolor}DC
+/BlueViolet{0.86 0.91 0 0.04 setcmykcolor}DC/Periwinkle{0.57 0.55 0 0
+setcmykcolor}DC/CadetBlue{0.62 0.57 0.23 0 setcmykcolor}DC
+/CornflowerBlue{0.65 0.13 0 0 setcmykcolor}DC/MidnightBlue{0.98 0.13 0
+0.43 setcmykcolor}DC/NavyBlue{0.94 0.54 0 0 setcmykcolor}DC/RoyalBlue{1
+0.50 0 0 setcmykcolor}DC/Blue{1 1 0 0 setcmykcolor}DC/Cerulean{0.94 0.11
+0 0 setcmykcolor}DC/Cyan{1 0 0 0 setcmykcolor}DC/ProcessBlue{0.96 0 0 0
+setcmykcolor}DC/SkyBlue{0.62 0 0.12 0 setcmykcolor}DC/Turquoise{0.85 0
+0.20 0 setcmykcolor}DC/TealBlue{0.86 0 0.34 0.02 setcmykcolor}DC
+/Aquamarine{0.82 0 0.30 0 setcmykcolor}DC/BlueGreen{0.85 0 0.33 0
+setcmykcolor}DC/Emerald{1 0 0.50 0 setcmykcolor}DC/JungleGreen{0.99 0
+0.52 0 setcmykcolor}DC/SeaGreen{0.69 0 0.50 0 setcmykcolor}DC/Green{1 0
+1 0 setcmykcolor}DC/ForestGreen{0.91 0 0.88 0.12 setcmykcolor}DC
+/PineGreen{0.92 0 0.59 0.25 setcmykcolor}DC/LimeGreen{0.50 0 1 0
+setcmykcolor}DC/YellowGreen{0.44 0 0.74 0 setcmykcolor}DC/SpringGreen{
+0.26 0 0.76 0 setcmykcolor}DC/OliveGreen{0.64 0 0.95 0.40 setcmykcolor}
+DC/RawSienna{0 0.72 1 0.45 setcmykcolor}DC/Sepia{0 0.83 1 0.70
+setcmykcolor}DC/Brown{0 0.81 1 0.60 setcmykcolor}DC/Tan{0.14 0.42 0.56 0
+setcmykcolor}DC/Gray{0 0 0 0.50 setcmykcolor}DC/Black{0 0 0 1
+setcmykcolor}DC/White{0 0 0 0 setcmykcolor}DC end
+
+%%EndProcSet
+TeXDict begin @defspecial
+
+ /DvipsToPDF { 72.27 mul Resolution div } def /PDFToDvips { 72.27 div
+Resolution mul } def /HyperBorder { 1 PDFToDvips } def /H.V {pdf@hoff
+pdf@voff null} def /H.B {/Rect[pdf@llx pdf@lly pdf@urx pdf@ury]} def
+/H.S { currentpoint HyperBorder add /pdf@lly exch def dup DvipsToPDF
+/pdf@hoff exch def HyperBorder sub /pdf@llx exch def } def /H.L { 2
+sub dup /HyperBasePt exch def PDFToDvips /HyperBaseDvips exch def currentpoint
+HyperBaseDvips sub /pdf@ury exch def /pdf@urx exch def } def /H.A {
+H.L currentpoint exch pop vsize 72 sub exch DvipsToPDF HyperBasePt
+sub sub /pdf@voff exch def } def /H.R { currentpoint HyperBorder sub
+/pdf@ury exch def HyperBorder add /pdf@urx exch def currentpoint exch
+pop vsize 72 sub exch DvipsToPDF sub /pdf@voff exch def } def systemdict
+/pdfmark known not {userdict /pdfmark systemdict /cleartomark get put}
+if
+ 
+@fedspecial end TeXDict begin
+39158280 55380996 1000 600 600 (MANUAL-2_0.dvi) @start
+/Fa 106[21 149[{ TeXBase1Encoding ReEncodeFont }1 59.7758
+/Times-Roman rf /Fb 139[33 1[33 2[33 5[33 33 3[33 33
+51[33 47[{ TeXBase1Encoding ReEncodeFont }8 54.4708 /Courier-BoldOblique
+rf /Fc 139[45 1[45 2[45 5[45 45 2[45 17[45 14[45 45 5[45
+61[{ TeXBase1Encoding ReEncodeFont }10 74.7198 /Courier-Bold
+rf /Fd 137[36 1[36 36 36 2[36 36 4[36 36 2[36 36 36 51[36
+47[{ TeXBase1Encoding ReEncodeFont }12 60.523 /Courier-BoldOblique
+rf /Fe 106[23 149[{ TeXBase1Encoding ReEncodeFont }1
+66.4176 /Helvetica rf
+%DVIPSBitmapFont: Ff cmmi10 10 2
+/Ff 2 63 df60
+D<126012FCB4FCEA7FC0EA1FF0EA07FCEA01FF38007FC0EB1FF0EB07FCEB01FF9038007F
+C0EC1FF0EC07FCEC01FF9138007FC0ED1FF0ED07FCED01FF9238007FC0EE1FF0EE07FCEE
+01FF9338007F80EF1FC0A2EF7F80933801FF00EE07FCEE1FF0EE7FC04B48C7FCED07FCED
+1FF0ED7FC04A48C8FCEC07FCEC1FF0EC7FC04948C9FCEB07FCEB1FF0EB7FC04848CAFCEA
+07FCEA3FF0EA7FC048CBFC12FC1270323279AD41>62 D E
+%EndDVIPSBitmapFont
+/Fg 134[40 1[40 1[40 40 40 40 1[40 40 40 40 40 3[40 2[40
+40 1[40 40 1[40 47[40 47[{ TeXBase1Encoding ReEncodeFont }18
+67.2479 /Courier-Oblique rf
+%DVIPSBitmapFont: Fh cmmi9 9 2
+/Fh 2 63 df<171C177EEE01FEEE07FCEE1FF0EE7FC0923801FF00ED07FCED1FF0ED7FC0
+4A48C7FCEC07FCEC1FF0EC7FC04948C8FCEB07FCEB1FF0EB7FC04848C9FCEA07FCEA1FF0
+EA7FC048CAFCA2EA7FC0EA1FF0EA07FCEA01FF38007FC0EB1FF0EB07FCEB01FF9038007F
+C0EC1FF0EC07FCEC01FF9138007FC0ED1FF0ED07FCED01FF9238007FC0EE1FF0EE07FCEE
+01FEEE007E171C2F2E7AA93C>60 D<127012FCB4FCEA7FC0EA1FF0EA07FCEA01FF38007F
+C0EB1FF0EB07FCEB01FF9038007FC0EC1FF0EC07FCEC01FF9138007FC0ED1FF0ED07FCED
+01FF9238007FC0EE1FF0EE07FCEE01FEA2EE07FCEE1FF0EE7FC0923801FF00ED07FCED1F
+F0ED7FC04A48C7FCEC07FCEC1FF0EC7FC04948C8FCEB07FCEB1FF0EB7FC04848C9FCEA07
+FCEA1FF0EA7FC048CAFC12FC12702F2E7AA93C>62 D E
+%EndDVIPSBitmapFont
+%DVIPSBitmapFont: Fi cmmi8 8 2
+/Fi 2 63 df60
+D<12E012F812FEEA3F80EA0FE0EA03F8EA00FEEB3F80EB0FE0EB03F8EB00FC143FEC0FC0
+EC07F0EC01FCEC007FED1FC0ED07F0ED01FCED007FEE1FC01607161FEE7F00ED01FCED07
+F0ED1FC0037FC7FCEC01FCEC07F0EC0FC0023FC8FC14FCEB03F8EB0FE0EB3F8001FEC9FC
+EA03F8EA0FE0EA3F8000FECAFC12F812E02A2B7AA537>62 D E
+%EndDVIPSBitmapFont
+/Fj 134[55 55 1[55 61 33 55 39 1[61 61 61 89 28 55 1[28
+61 61 33 55 61 55 61 55 12[61 66 72 1[66 2[83 5[78 3[72
+1[72 7[55 55 55 55 55 55 55 55 55 55 28 28 33 42[61 2[{
+ TeXBase1Encoding ReEncodeFont }44 99.6264 /Helvetica-Bold
+rf /Fk 134[45 4[45 45 45 2[45 45 45 45 2[45 2[45 45 45
+45 45 45 97[{ TeXBase1Encoding ReEncodeFont }15 74.7198
+/Courier-Oblique rf /Fl 129[45 1[45 2[45 45 45 45 45
+45 45 45 1[45 45 45 45 45 45 45 45 45 45 45 45 45 45
+45 45 1[45 1[45 45 45 1[45 45 2[45 45 45 45 1[45 45 45
+45 45 45 1[45 45 45 45 45 45 45 45 45 45 1[45 45 3[45
+45 45 45 45 45 1[45 45 45 45 45 45 45 45 1[45 45 2[45
+2[45 34[{ TeXBase1Encoding ReEncodeFont }72 74.7198 /Courier-BoldOblique
+rf /Fm 134[40 40 1[40 40 40 40 40 1[40 40 40 40 40 2[40
+40 40 40 40 40 40 40 40 8[40 9[40 40 7[40 3[40 17[40
+1[40 1[40 43[{ TeXBase1Encoding ReEncodeFont }29 67.2479
+/Courier-BoldOblique rf /Fn 134[36 2[36 36 36 36 36 1[36
+36 36 36 36 2[36 36 36 1[36 36 1[36 36 36 48[36 36 36
+45[{ TeXBase1Encoding ReEncodeFont }22 60.523 /Courier-Bold
+rf /Fo 140[36 10[36 5[36 36 60[36 36[{ TeXBase1Encoding ReEncodeFont }5
+60.523 /Courier rf /Fp 133[60 66 66 93 66 73 40 66 47
+73 73 73 73 106 33 66 1[33 73 73 40 66 73 66 73 66 8[80
+113 80 86 73 80 86 93 80 93 86 100 73 2[33 86 93 73 80
+86 86 86 86 1[73 4[40 66 66 66 66 66 66 66 66 66 66 33
+33 40 3[40 40 37[73 2[{ TeXBase1Encoding ReEncodeFont }65
+119.552 /Helvetica-Bold rf /Fq 133[37 37 37 54 37 42
+21 37 25 42 42 42 42 62 17 37 1[17 42 42 21 42 42 37
+42 42 3[21 1[21 1[50 50 2[54 46 50 3[58 54 62 42 50 1[21
+54 58 1[50 54 54 50 50 3[44 4[42 42 2[42 1[42 42 42 21
+21 25 3[25 25 17 36[37 2[{ TeXBase1Encoding ReEncodeFont }59
+74.7198 /Helvetica-Oblique rf /Fr 129[45 45 45 45 45
+45 45 45 45 45 45 45 45 45 45 45 45 45 45 45 45 45 45
+45 45 45 45 45 45 45 45 45 1[45 45 45 1[45 45 45 45 45
+45 45 45 45 45 45 45 45 45 45 1[45 45 45 45 45 45 45
+45 45 45 45 45 45 45 45 45 45 45 45 45 45 45 45 45 45
+45 45 45 45 45 45 45 45 45 45 1[45 45 45 45 45 33[{
+ TeXBase1Encoding ReEncodeFont }90 74.7198 /Courier rf
+/Fs 131[40 1[40 40 40 40 40 40 40 40 40 1[40 40 40 40
+40 40 1[40 40 40 40 40 40 40 40 40 40 40 1[40 1[40 1[40
+40 40 1[40 40 40 40 1[40 40 40 40 3[40 40 1[40 40 40
+40 40 40 40 1[40 40 2[40 40 40 40 40 40 40 40 40 40 40
+40 40 40 40 6[40 40 1[40 34[{ TeXBase1Encoding ReEncodeFont }69
+67.2479 /Courier-Bold rf /Ft 129[40 1[40 1[40 40 40 40
+40 40 40 40 40 1[40 40 40 40 40 40 1[40 40 40 40 40 40
+40 40 40 1[40 1[40 40 40 6[40 40 40 2[40 1[40 3[40 40
+2[40 3[40 1[40 1[40 1[40 40 40 6[40 40 40 40 40 40 40
+1[40 40 40 3[40 40 40 34[{ TeXBase1Encoding ReEncodeFont }57
+67.2479 /Courier rf /Fu 133[72 80 80 112 80 88 48 80
+56 88 88 88 88 128 40 80 1[40 88 88 48 80 88 80 88 80
+9[135 96 104 88 96 104 112 96 112 1[120 88 104 1[40 104
+112 88 96 104 104 104 104 6[48 80 80 80 80 80 80 80 80
+80 80 40 40 48 40 2[48 48 40 104 35[88 2[{
+ TeXBase1Encoding ReEncodeFont }66 143.462 /Helvetica-Bold
+rf /Fv 104[75 2[25 25 24[37 37 37 54 37 42 21 37 25 42
+42 42 42 62 17 37 17 17 42 42 21 42 42 37 42 42 1[42
+1[21 1[21 46 50 50 71 50 54 46 50 54 58 50 58 54 62 42
+50 1[21 54 58 46 50 54 54 50 50 2[44 44 1[21 21 42 42
+42 42 42 42 1[42 42 42 21 21 25 21 44 29 25 25 17 1[66
+2[27 21 30[37 2[{ TeXBase1Encoding ReEncodeFont }83 74.7198
+/Helvetica rf /Fw 133[37 42 1[58 42 46 25 42 29 1[46
+46 46 66 21 42 21 21 46 46 25 42 46 42 46 42 1[42 1[25
+1[25 1[50 50 1[50 54 46 50 54 58 50 58 54 62 46 54 1[21
+54 1[46 50 54 54 1[54 3[44 2[25 9[42 21 21 25 3[25 25
+21 36[46 2[{ TeXBase1Encoding ReEncodeFont }58 74.7198
+/Helvetica-Bold rf /Fx 104[74 25[33 1[33 32 37 37 55
+37 42 23 32 32 42 42 42 42 60 23 37 23 23 42 42 23 37
+42 37 42 42 1[42 1[32 1[32 2[51 1[51 60 46 42 51 60 51
+60 55 69 46 55 1[28 60 60 51 51 60 55 51 51 76 2[56 2[28
+42 42 42 42 42 42 42 42 42 42 23 21 28 21 40[42 42 2[{
+ TeXBase1Encoding ReEncodeFont }73 83.022 /Times-Italic
+rf /Fy 104[83 26[18 1[37 42 42 60 42 46 28 32 37 46 46
+42 46 69 23 46 28 23 46 42 28 37 46 37 46 42 1[42 1[28
+23 28 1[60 60 1[60 60 55 46 60 65 51 65 60 78 55 65 1[32
+65 65 51 55 60 60 55 60 77 2[47 1[28 28 42 42 42 42 42
+42 42 42 42 42 23 21 28 21 47 1[28 28 28 69 1[42 42 46
+28 30[46 2[{ TeXBase1Encoding ReEncodeFont }83 83.022
+/Times-Bold rf /Fz 104[172 29[96 96 1[96 105 57 96 67
+1[105 105 105 153 48 96 1[48 105 105 57 96 105 96 105
+96 12[105 115 2[115 3[105 2[48 124 134 105 115 124 124
+124 124 7[96 96 96 96 96 96 96 96 96 96 48 48 1[48 41[105
+2[{ TeXBase1Encoding ReEncodeFont }50 172.154 /Helvetica-Bold
+rf /FA 138[33 18 26 26 2[33 33 48 3[18 3[29 1[29 1[33
+11[48 6[44 1[37 4[48 41 1[48 68[{ TeXBase1Encoding ReEncodeFont }17
+66.4176 /Times-Italic rf /FB 106[23 27[33 33 48 33 33
+18 26 22 1[33 33 33 52 18 33 1[18 33 33 22 29 33 29 33
+29 7[48 1[63 48 48 41 37 2[37 2[59 3[22 2[37 2[44 44
+48 6[18 33 1[33 1[33 1[33 33 33 33 18 17 22 17 2[22 22
+40[{ TeXBase1Encoding ReEncodeFont }51 66.4176 /Times-Roman
+rf /FC 86[63 17[83 2[37 37 20[45 1[17 1[37 42 42 60 42
+42 23 32 28 42 42 42 42 65 23 42 23 23 42 42 28 37 42
+37 42 37 1[42 39 28 1[28 51 60 60 78 60 60 51 46 55 60
+46 60 60 74 51 60 32 28 60 60 46 51 60 55 55 60 76 37
+47 47 47 23 23 42 42 42 42 42 42 42 42 42 42 23 21 28
+21 47 42 28 28 28 65 69 42 42 34 28 29[46 46 2[{
+ TeXBase1Encoding ReEncodeFont }96 83.022 /Times-Roman
+rf /FD 134[46 2[46 51 28 46 32 1[51 51 51 74 23 2[23
+51 51 28 46 51 46 51 46 13[55 2[55 2[69 51 2[23 2[51
+1[60 60 64[51 2[{ TeXBase1Encoding ReEncodeFont }29 83.022
+/Helvetica-Bold rf /FE 145[126 184 3[57 126 6[115 13[138
+83[{ TeXBase1Encoding ReEncodeFont }6 206.584 /Helvetica-Bold
+rf end
+%%EndProlog
+%%BeginSetup
+%%Feature: *Resolution 600dpi
+TeXDict begin
+%%PaperSize: A4
+ end
+%%EndSetup
+%%Page: 1 1
+TeXDict begin 1 0 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a -600 -364
+a
+SDict begin [ /Title () /Subject () /Creator (LaTeX with hyperref package)
+/Author () /Producer (dvips + Distiller) /Keywords () /DOCINFO pdfmark
+end
+ -600 -364 a Black 0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a
+0 TeXcolorgray 0 TeXcolorgray -2 134 a
+SDict begin H.R end
+ -2 134 a -2 134
+a
+SDict begin [ /View [/XYZ H.V] /Dest (page.1) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black -2 226 a
+SDict begin [ /Count -0 /Dest (1.0) cvn /Title (Samhain) /OUT pdfmark
+end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (2.0) cvn /Title (Table of Contents)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (3.0) cvn /Title (Chapter 1. Introduction)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -10 /Dest (4.0) cvn /Title (Chapter 2. Compiling and installing)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (4.1.1) cvn /Title (2.1. Overview) /OUT
+pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (4.2.1) cvn /Title (2.2. Requirements)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (4.3.1) cvn /Title (2.3. Download and extract)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (4.4.1) cvn /Title (2.4. Configuring the source)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (4.5.1) cvn /Title (2.5. Build) /OUT
+pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -1 /Dest (4.6.1) cvn /Title (2.6. Install) /OUT
+pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (4.6.1.2) cvn /Title (2.6.1. Important make targets)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (4.7.1) cvn /Title (2.7. Customize) /OUT
+pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (4.8.1) cvn /Title (2.8. Initialize the baseline database)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (4.9.1) cvn /Title (2.9. Run samhain)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -4 /Dest (4.10.1) cvn /Title (2.10. Files and directory layout)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (4.10.2.2) cvn /Title (2.10.1. Trusted users and trusted paths)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (4.10.3.2) cvn /Title (2.10.2. Directory layout)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -2 /Dest (4.10.4.2) cvn /Title (2.10.3. Runtime files)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (4.10.4.1.3) cvn /Title (2.10.3.1. Standalone or client)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (4.10.4.2.3) cvn /Title (2.10.3.2. Server)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -2 /Dest (4.10.5.2) cvn /Title (2.10.4. Installed files)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (4.10.5.3.3) cvn /Title (2.10.4.1. Standalone or client)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (4.10.5.4.3) cvn /Title (2.10.4.2. Server)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -10 /Dest (5.0) cvn /Title (Chapter 3. General usage notes)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (5.11.1) cvn /Title (3.1. How to invoke)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (5.12.1) cvn /Title (3.2. Using daemontool \(or similar utilities\))
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (5.13.1) cvn /Title (3.3. Controlling the daemon)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (5.14.1) cvn /Title (3.4. Signals) /OUT
+pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (5.15.1) cvn /Title (3.5. PID file) /OUT
+pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (5.16.1) cvn /Title (3.6. Log file rotation)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (5.17.1) cvn /Title (3.7. Updating the file signature database)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (5.18.1) cvn /Title (3.8. Improving the signaltonoise ratio)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (5.19.1) cvn /Title (3.9. Runtime options: commandline configuration file)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (5.20.1) cvn /Title (3.10. Support / Bugs / Problems)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -12 /Dest (6.0) cvn /Title (Chapter 4. Configuration of logging facilities)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -2 /Dest (6.21.1) cvn /Title (4.1. Severity levels and classes of log messages)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (6.21.6.2) cvn /Title (4.1.1. Severity levels)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (6.21.7.2) cvn /Title (4.1.2. Classes)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (6.22.1) cvn /Title (4.2. Overview of logging facilities)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (6.23.1) cvn /Title (4.3. Activating logging facilities and filtering messages)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -1 /Dest (6.24.1) cvn /Title (4.4. Email) /OUT
+pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (6.24.8.2) cvn /Title (4.4.1. Email reports and their integrity)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -1 /Dest (6.25.1) cvn /Title (4.5. Log file) /OUT
+pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (6.25.9.2) cvn /Title (4.5.1. The log file and its integrity)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -1 /Dest (6.26.1) cvn /Title (4.6. Log server)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (6.26.10.2) cvn /Title (4.6.1. Details)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (6.27.1) cvn /Title (4.7. External facilities)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (6.28.1) cvn /Title (4.8. Console) /OUT
+pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -2 /Dest (6.29.1) cvn /Title (4.9. Prelude) /OUT
+pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (6.29.11.2) cvn /Title (4.9.1. Registering to a Prelude 0.9 manager)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (6.29.12.2) cvn /Title (4.9.2. Registering to a Prelude 0.8 manager)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (6.30.1) cvn /Title (4.10. Using samhain with nagios)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (6.31.1) cvn /Title (4.11. Syslog) /OUT
+pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (6.32.1) cvn /Title (4.12. SQL Database)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -15 /Dest (7.0) cvn /Title (Chapter 5. Configuration samhain, the file monitor)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.33.1) cvn /Title (5.1. Usage overview)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.34.1) cvn /Title (5.2. Available checksum functions)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.35.1) cvn /Title (5.3. File signatures)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -9 /Dest (7.36.1) cvn /Title (5.4. Defining which files/directories to monitor)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.36.13.2) cvn /Title (5.4.1. Monitoring policies)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -1 /Dest (7.36.14.2) cvn /Title (5.4.2. File/directory specification)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.36.14.5.3) cvn /Title (5.4.2.1. Rules)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.36.15.2) cvn /Title (5.4.3. Suppress messages about new/deleted files)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.36.16.2) cvn /Title (5.4.4. Dynamic database update \(modified/disappeared/new files\))
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.36.17.2) cvn /Title (5.4.5. Recursion depth\(s\))
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -1 /Dest (7.36.18.2) cvn /Title (5.4.6. Hardlink check)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.36.18.6.3) cvn /Title (5.4.6.1. Specify exceptions for the hardlink check)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.36.19.2) cvn /Title (5.4.7. Check for weird filenames)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.36.20.2) cvn /Title (5.4.8. Support for prelink)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.36.21.2) cvn /Title (5.4.9. Codes in messages about reported files)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.37.1) cvn /Title (5.5. Excluding files and/or subdirectories \(All except \))
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -1 /Dest (7.38.1) cvn /Title (5.6. Timing file checks)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.38.22.2) cvn /Title (5.6.1. Using a second schedule)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.39.1) cvn /Title (5.7. Initializing, updating, or checking)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.40.1) cvn /Title (5.8. The file signature database)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -2 /Dest (7.41.1) cvn /Title (5.9. Checking the file system for SUID/SGID binaries)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.41.23.2) cvn /Title (5.9.1. Quarantine SUID/SGID files)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.41.24.2) cvn /Title (5.9.2. Configuration)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -4 /Dest (7.42.1) cvn /Title (5.10. Detecting Kernel rootkits)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.42.25.2) cvn /Title (5.10.1. Configuration)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.42.26.2) cvn /Title (5.10.2. What is a kernel rootkit ?)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.42.27.2) cvn /Title (5.10.3. Implemented integrity checks)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.42.28.2) cvn /Title (5.10.4. Error messages)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.43.1) cvn /Title (5.11. Monitoring login/logout events)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.44.1) cvn /Title (5.12. Checking mounted filesystem policies)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.45.1) cvn /Title (5.13. Checking sensitive files owned by users)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.46.1) cvn /Title (5.14. Modules) /OUT
+pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (7.47.1) cvn /Title (5.15. Performance tuning)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -13 /Dest (8.0) cvn /Title (Chapter 6. yule, the log server)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (8.48.1) cvn /Title (6.1. General) /OUT
+pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (8.49.1) cvn /Title (6.2. Important installation notes)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (8.50.1) cvn /Title (6.3. Registering a client)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (8.51.1) cvn /Title (6.4. Enabling logging to the server)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -2 /Dest (8.52.1) cvn /Title (6.5. Enabling baseline database / configuration file download from the server)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (8.52.29.2) cvn /Title (6.5.1. Configuration file)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (8.52.30.2) cvn /Title (6.5.2. Database file)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (8.53.1) cvn /Title (6.6. Rules for logging of client messages)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (8.54.1) cvn /Title (6.7. Detecting 'dead' clients)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (8.55.1) cvn /Title (6.8. The HTML server status page)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (8.56.1) cvn /Title (6.9. Chroot) /OUT
+pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (8.57.1) cvn /Title (6.10. Restrict access with libwrap \(tcp wrappers\))
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -2 /Dest (8.58.1) cvn /Title (6.11. Sending commands to clients)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (8.58.31.2) cvn /Title (6.11.1. Communicating with the server)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (8.58.32.2) cvn /Title (6.11.2. Authenticating to the server)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (8.59.1) cvn /Title (6.12. Syslog logging)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (8.60.1) cvn /Title (6.13. Performance tuning)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -3 /Dest (9.0) cvn /Title (Chapter 7. Hooks for External Programs)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (9.61.1) cvn /Title (7.1. Pipes) /OUT
+pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (9.62.1) cvn /Title (7.2. System V message queue)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -1 /Dest (9.63.1) cvn /Title (7.3. Calling external programs)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (9.63.33.2) cvn /Title (7.3.1. Example setup for paging)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -1 /Dest (10.0) cvn /Title (Chapter 8. Additional Features Signed Configuration/Database Files)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (10.64.1) cvn /Title (8.1. The samhainadmin script)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -2 /Dest (11.0) cvn /Title (Chapter 9. Additional Features Stealth)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -1 /Dest (11.65.1) cvn /Title (9.1. Hiding the executable)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (11.65.34.2) cvn /Title (9.1.1. Using kernel modules to hide samhain \(Linux/ix86 only\))
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (11.66.1) cvn /Title (9.2. Packing the executable)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -2 /Dest (12.0) cvn /Title (Chapter 10. Deployment to remote hosts)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -12 /Dest (12.67.1) cvn /Title (10.1. Method A: The deployment system)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.67.35.2) cvn /Title (10.1.1. Requirements)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -2 /Dest (12.67.36.2) cvn /Title (10.1.2. Layout of the deployment system)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.67.36.7.3) cvn /Title (10.1.2.1. The configs subdirectory)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.67.36.8.3) cvn /Title (10.1.2.2. The archpkg subdirectory)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -4 /Dest (12.67.37.2) cvn /Title (10.1.3. Customizing the system)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.67.37.9.3) cvn /Title (10.1.3.1. Setting default options)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.67.37.10.3) cvn /Title (10.1.3.2. Adding support for an architecture)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.67.37.11.3) cvn /Title (10.1.3.3. Perarchitecture pre/postinstallation scripts)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.67.37.12.3) cvn /Title (10.1.3.4. Perhost runtime configuration)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -1 /Dest (12.67.38.2) cvn /Title (10.1.4. Using the deploy.sh script)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.67.38.13.3) cvn /Title (10.1.4.1. General options)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -1 /Dest (12.67.39.2) cvn /Title (10.1.5. deploy.sh info)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.67.39.14.3) cvn /Title (10.1.5.1. Specific options)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -1 /Dest (12.67.40.2) cvn /Title (10.1.6. deploy.sh clean)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.67.40.15.3) cvn /Title (10.1.6.1. Specific options)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -1 /Dest (12.67.41.2) cvn /Title (10.1.7. deploy.sh download)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.67.41.16.3) cvn /Title (10.1.7.1. Specific options)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -1 /Dest (12.67.42.2) cvn /Title (10.1.8. deploy.sh checksrc)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.67.42.17.3) cvn /Title (10.1.8.1. Specific options)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -1 /Dest (12.67.43.2) cvn /Title (10.1.9. deploy.sh build)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.67.43.18.3) cvn /Title (10.1.9.1. Specific options)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -1 /Dest (12.67.44.2) cvn /Title (10.1.10. deploy.sh install)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.67.44.19.3) cvn /Title (10.1.10.1. Specific options)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -1 /Dest (12.67.45.2) cvn /Title (10.1.11. deploy.sh uninstall)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.67.45.20.3) cvn /Title (10.1.11.1. Specific options)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.67.46.2) cvn /Title (10.1.12. Usage notes)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -5 /Dest (12.68.1) cvn /Title (10.2. Method B: The native package manager)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -2 /Dest (12.68.47.2) cvn /Title (10.2.1. Building an RPM)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.68.47.21.3) cvn /Title (10.2.1.1. Custom RPM)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.68.47.22.3) cvn /Title (10.2.1.2. Singlehost)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.68.48.2) cvn /Title (10.2.2. Building an HPUX package)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.68.49.2) cvn /Title (10.2.3. Building a Solaris package)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.68.50.2) cvn /Title (10.2.4. Building a Gentoo Linux package)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (12.68.51.2) cvn /Title (10.2.5. Building a Debian package)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -5 /Dest (13.0) cvn /Title (Chapter 11. Security Design)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (13.69.1) cvn /Title (11.1. Usage) /OUT
+pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (13.70.1) cvn /Title (11.2. Integrity of the executable)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (13.71.1) cvn /Title (11.3. Client executable integrity)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (13.72.1) cvn /Title (11.4. The server)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (13.73.1) cvn /Title (11.5. General)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -5 /Dest (14.0) cvn /Title (Appendix A. List of options for the ./configure script)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (14.74.1) cvn /Title (A.1. General) /OUT
+pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (14.75.1) cvn /Title (A.2. Optional modules to perfor additional checks)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (14.76.1) cvn /Title (A.3. OpenPGP Signatures on Configuration/Database Files)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (14.77.1) cvn /Title (A.4. Client/Server Connectivity)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (14.78.1) cvn /Title (A.5. Paths) /OUT
+pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -3 /Dest (15.0) cvn /Title (Appendix B. List of command line options)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (15.79.1) cvn /Title (B.1. General) /OUT
+pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (15.80.1) cvn /Title (B.2. samhain) /OUT
+pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (15.81.1) cvn /Title (B.3. yule) /OUT
+pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -13 /Dest (16.0) cvn /Title (Appendix C. List of configuration file options)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -1 /Dest (16.82.1) cvn /Title (C.1. General) /OUT
+pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (16.82.52.2) cvn /Title (C.1.1. Conditionals)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (16.83.1) cvn /Title (C.2. Files to check)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (16.84.1) cvn /Title (C.3. Severity of events)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (16.85.1) cvn /Title (C.4. Logging thresholds)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (16.86.1) cvn /Title (C.5. Watching login/logout events)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (16.87.1) cvn /Title (C.6. Checking for kernel module rootkits)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (16.88.1) cvn /Title (C.7. Checking for SUID/SGID files)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (16.89.1) cvn /Title (C.8. Checking for mount options)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (16.90.1) cvn /Title (C.9. Checking for user files)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (16.91.1) cvn /Title (C.10. Database)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (16.92.1) cvn /Title (C.11. Miscellaneous)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (16.93.1) cvn /Title (C.12. External)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (16.94.1) cvn /Title (C.13. Clients)
+/OUT pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -3 /Dest (17.0) cvn /Title (Appendix D. List of database fields)
+/OUT pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Count -0 /Dest (17.95.1) cvn /Title (D.1. General) /OUT
+pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (17.96.1) cvn /Title (D.2. Modules) /OUT
+pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ /Count -0 /Dest (17.97.1) cvn /Title (D.3. Syslog) /OUT
+pdfmark end
+ -2
+226 a -2 226 a
+SDict begin [ /Page 1 /View [ /Fit ] /PageMode /UseOutlines  /DOCVIEW
+pdfmark end
+ -2 226 a -2 226 a
+SDict begin [ {Catalog} << /ViewerPreferences << >> >> /PUT pdfmark
+end
+ -2 226 a -2 226 a
+SDict begin H.S end
+ -2
+226 a -2 226 a
+SDict begin 12 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (Doc-Start) cvn H.B /DEST pdfmark
+end
+ -2 226 a -2 226 a
+SDict begin H.S end
+ -2
+226 a -2 226 a
+SDict begin 12 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:INDEX) cvn H.B /DEST pdfmark
+end
+ -2 226 a 1441 376 a
+FE(Samhain)2302 376 y
+SDict begin H.S end
+ 2302 376 a 2302 376 a
+SDict begin 32.348 H.A end
+ 2302 376
+a 2302 376 a
+SDict begin [ /View [/XYZ H.V] /Dest (1.0) cvn H.B /DEST pdfmark end
+ 2302 376 a Black Black eop end
+%%Page: 2 2
+TeXDict begin 2 1 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black 0
+TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.2) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black 175 x
+FD(Samhain)-2 417 y FC(Cop)o(yright)18 b(\251)j(2002-2005)c(Rainer)j(W)
+m(ichmann)-2 608 y FB(Permission)e(is)e(granted)j(to)f(cop)o(y)l(,)f
+(distrib)o(ute)i(and/or)f(modify)g(this)f(document)i(under)f(the)g
+(terms)f(of)g(the)g FA(GNU)g(F)l(r)n(ee)g(Documentation)j(License)p
+FB(,)e(V)-7 b(ersion)18 b(1.1)-2 716 y(or)f(an)o(y)g(later)i(v)o
+(ersion)f(published)h(by)e(the)h(Free)f(Softw)o(are)i(F)o(oundation)g
+(with)f(no)f(In)m(v)n(ariant)j(Sections,)e(no)f(Front-Co)o(v)o(er)i(T)
+-5 b(e)o(xts,)17 b(and)h(no)f(Back-Co)o(v)o(er)i(T)-5
+b(e)o(xts.)-2 823 y(Y)e(ou)16 b(may)h(obtain)i(a)e(cop)o(y)h(of)f(the)h
+FA(GNU)f(F)l(r)n(ee)g(Documentation)j(License)e FB(from)f(the)h(Free)f
+(Softw)o(are)i(F)o(oundation)g(by)e(visiting)i(their)g(W)-5
+b(eb)16 b(site)-2 931 y(\(http://www)l(.fsf.or)o(g\))i(or)f(by)g
+(writing)i(to:)f(Free)f(Softw)o(are)i(F)o(oundation,)g(Inc.,)d(59)h(T)
+-5 b(emple)18 b(Place)h(-)e(Suite)h(330,)e(Boston,)i(MA)f(02111-1307,)h
+(USA.)p Black Black eop end
+%%Page: 3 3
+TeXDict begin 3 2 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black 0
+TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.3) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black 217 x
+Fz(T)-14 b(ab)n(le)48 b(of)g(Contents)1435 351 y
+SDict begin H.S end
+ 1435
+351 a 1435 351 a
+SDict begin 26.957 H.A end
+ 1435 351 a 1435 351 a
+SDict begin [ /View [/XYZ H.V] /Dest (2.0) cvn H.B /DEST pdfmark end
+ 1435 351 a 0 TeXcolorgray
+396 494 a
+SDict begin H.S end
+ 396 494 a Fy(1.)20 b(Intr)o(oduction)931 494
+y
+SDict begin 13 H.L end
+ 931 494 a 931 494 a
+SDict begin [ /Subtype /Link /Dest (0:INTRO) cvn /H /I /Border [0 0
+0] /Color [1 0 0] H.B /ANN pdfmark end
+ 931 494 a Black Black 1 w Fy(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black 0 TeXcolorgray 3703 494 a
+SDict begin H.S end
+
+3703 494 a Fy(1)3745 494 y
+SDict begin 13 H.L end
+ 3745 494 a 3745 494 a
+SDict begin [ /Subtype /Link /Dest (0:INTRO) cvn /H /I /Border [0 0
+0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745
+494 a Black 0 TeXcolorgray 396 621 a
+SDict begin H.S end
+ 396 621 a Fy(2.)g(Compiling)h(and)
+f(installing)1356 621 y
+SDict begin 13 H.L end
+ 1356 621 a 1356 621 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1356 621
+a Black Black 12 w Fy(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black 0 TeXcolorgray 3703 621 a
+SDict begin H.S end
+ 3703 621 a Fy(2)3745
+621 y
+SDict begin 13 H.L end
+ 3745 621 a 3745 621 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 621 a Black 0 TeXcolorgray
+596 749 a
+SDict begin H.S end
+ 596 749 a FC(2.1.)f(Ov)o(ervie)n(w)1067 749
+y
+SDict begin 13 H.L end
+ 1067 749 a 1067 749 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-OVERVIEW) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1067 749 a Black Black 10 w FC(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black 0 TeXcolorgray 3703 749 a
+SDict begin H.S end
+ 3703 749 a FC(2)3745
+749 y
+SDict begin 13 H.L end
+ 3745 749 a 3745 749 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-OVERVIEW) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 749 a Black 0 TeXcolorgray
+596 857 a
+SDict begin H.S end
+ 596 857 a FC(2.2.)g(Requirements)1204 857 y
+SDict begin 13 H.L end
+
+1204 857 a 1204 857 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-REQUIREMENTS) cvn
+/H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1204 857 a Black Black 18 w FC(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+0 TeXcolorgray 3703 857 a
+SDict begin H.S end
+ 3703 857 a FC(3)3745 857 y
+SDict begin 13 H.L end
+
+3745 857 a 3745 857 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-REQUIREMENTS) cvn
+/H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 857 a Black 0 TeXcolorgray
+596 965 a
+SDict begin H.S end
+ 596 965 a FC(2.3.)g(Do)n(wnload)f(and)i(e)o(xtract)1472
+965 y
+SDict begin 13 H.L end
+ 1472 965 a 1472 965 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-DOWNLOAD) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1472 965 a Black Black -1
+w FC(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black 0 TeXcolorgray 3703 965 a
+SDict begin H.S end
+ 3703 965 a FC(3)3745
+965 y
+SDict begin 13 H.L end
+ 3745 965 a 3745 965 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-DOWNLOAD) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 965 a Black 0 TeXcolorgray
+596 1073 a
+SDict begin H.S end
+ 596 1073 a FC(2.4.)f(Con\002guring)f(the)i(source)1503
+1073 y
+SDict begin 13 H.L end
+ 1503 1073 a 1503 1073 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-CONFIGURE) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1503 1073 a Black Black
+10 w FC(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black 0 TeXcolorgray 3703
+1073 a
+SDict begin H.S end
+ 3703 1073 a FC(4)3745 1073 y
+SDict begin 13 H.L end
+ 3745 1073 a 3745
+1073 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-CONFIGURE) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 1073 a Black 0 TeXcolorgray 596 1181 a
+SDict begin H.S end
+ 596
+1181 a FC(2.5.)f(Build)926 1181 y
+SDict begin 13 H.L end
+ 926 1181 a 926 1181
+a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-BUILD) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 926 1181 a Black Black 6 w FC(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black 0 TeXcolorgray 3703 1181 a
+SDict begin H.S end
+ 3703 1181 a FC(6)3745
+1181 y
+SDict begin 13 H.L end
+ 3745 1181 a 3745 1181 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-BUILD) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 1181 a Black 0 TeXcolorgray
+596 1289 a
+SDict begin H.S end
+ 596 1289 a FC(2.6.)g(Install)949 1289 y
+SDict begin 13 H.L end
+ 949
+1289 a 949 1289 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-INSTALL) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 949 1289 a Black Black 4 w FC(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black 0 TeXcolorgray 3703 1289 a
+SDict begin H.S end
+ 3703 1289 a FC(6)3745
+1289 y
+SDict begin 13 H.L end
+ 3745 1289 a 3745 1289 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-INSTALL) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 1289 a Black 0 TeXcolorgray
+596 1397 a
+SDict begin H.S end
+ 596 1397 a FC(2.7.)g(Customize)1097 1397 y
+SDict begin 13 H.L end
+
+1097 1397 a 1097 1397 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-CUSTOMIZE) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1097 1397 a Black Black 1 w FC(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+0 TeXcolorgray 3703 1397 a
+SDict begin H.S end
+ 3703 1397 a FC(8)3745 1397
+y
+SDict begin 13 H.L end
+ 3745 1397 a 3745 1397 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-CUSTOMIZE) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 1397 a Black 0 TeXcolorgray
+596 1505 a
+SDict begin H.S end
+ 596 1505 a FC(2.8.)g(Initialize)h(the)g(baseline)g(database)
+1759 1505 y
+SDict begin 13 H.L end
+ 1759 1505 a 1759 1505 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-INITIALIZE) cvn
+/H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1759 1505 a Black
+Black 3 w FC(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+0 TeXcolorgray 3703 1505 a
+SDict begin H.S end
+ 3703 1505 a FC(8)3745 1505
+y
+SDict begin 13 H.L end
+ 3745 1505 a 3745 1505 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-INITIALIZE) cvn
+/H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 1505 a Black 0 TeXcolorgray
+596 1613 a
+SDict begin H.S end
+ 596 1613 a FC(2.9.)f(Run)h(samhain)1178 1613
+y
+SDict begin 13 H.L end
+ 1178 1613 a 1178 1613 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-RUNNING) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1178 1613 a Black Black 3 w
+FC(.)p Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black 0 TeXcolorgray 3703
+1613 a
+SDict begin H.S end
+ 3703 1613 a FC(9)3745 1613 y
+SDict begin 13 H.L end
+ 3745 1613 a 3745
+1613 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-RUNNING) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 1613 a Black 0 TeXcolorgray 596 1721 a
+SDict begin H.S end
+ 596
+1721 a FC(2.10.)e(Files)k(and)d(directory)g(layout)1635
+1721 y
+SDict begin 13 H.L end
+ 1635 1721 a 1635 1721 a
+SDict begin [ /Subtype /Link /Dest (0:LAYOUT) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1635 1721 a Black Black
+2 w FC(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black 0 TeXcolorgray 3703
+1721 a
+SDict begin H.S end
+ 3703 1721 a FC(9)3745 1721 y
+SDict begin 13 H.L end
+ 3745 1721 a 3745
+1721 a
+SDict begin [ /Subtype /Link /Dest (0:LAYOUT) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 1721 a Black 0 TeXcolorgray 396 1849 a
+SDict begin H.S end
+ 396
+1849 a Fy(3.)h(General)g(usage)g(notes)1190 1849 y
+SDict begin 13 H.L end
+ 1190
+1849 a 1190 1849 a
+SDict begin [ /Subtype /Link /Dest (0:USAGE) cvn /H /I /Border [0 0
+0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1190 1849 a Black Black 12 w Fy(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black 0 TeXcolorgray
+3661 1849 a
+SDict begin H.S end
+ 3661 1849 a Fy(13)3745 1849 y
+SDict begin 13 H.L end
+ 3745 1849 a
+3745 1849 a
+SDict begin [ /Subtype /Link /Dest (0:USAGE) cvn /H /I /Border [0 0
+0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 1849 a Black 0 TeXcolorgray 596 1976
+a
+SDict begin H.S end
+ 596 1976 a FC(3.1.)f(Ho)n(w)h(to)g(in)m(v)n(ok)o(e)1228
+1976 y
+SDict begin 13 H.L end
+ 1228 1976 a 1228 1976 a
+SDict begin [ /Subtype /Link /Dest (0:HOW-TO-INVOKE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1228 1976 a Black Black
+15 w FC(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black 0 TeXcolorgray 3661 1976 a
+SDict begin H.S end
+ 3661 1976 a FC(13)3745
+1976 y
+SDict begin 13 H.L end
+ 3745 1976 a 3745 1976 a
+SDict begin [ /Subtype /Link /Dest (0:HOW-TO-INVOKE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 1976 a Black 0 TeXcolorgray
+596 2084 a
+SDict begin H.S end
+ 596 2084 a FC(3.2.)f(Using)h(daemontool)e(\(or)h(similar)i
+(utilities\))2019 2084 y
+SDict begin 13 H.L end
+ 2019 2084 a 2019 2084 a
+SDict begin [ /Subtype /Link /Dest (0:DAEMONTOOL) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2019
+2084 a Black Black 13 w FC(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black 0 TeXcolorgray 3661 2084 a
+SDict begin H.S end
+ 3661
+2084 a FC(13)3745 2084 y
+SDict begin 13 H.L end
+ 3745 2084 a 3745 2084 a
+SDict begin [ /Subtype /Link /Dest (0:DAEMONTOOL) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745
+2084 a Black 0 TeXcolorgray 596 2192 a
+SDict begin H.S end
+ 596 2192 a FC(3.3.)e
+(Controlling)f(the)j(daemon)1532 2192 y
+SDict begin 13 H.L end
+ 1532 2192 a 1532
+2192 a
+SDict begin [ /Subtype /Link /Dest (0:CONTROLLING-THE-DAEMON) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1532 2192 a Black Black 2 w FC(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black 0 TeXcolorgray 3661 2192 a
+SDict begin H.S end
+ 3661 2192
+a FC(13)3745 2192 y
+SDict begin 13 H.L end
+ 3745 2192 a 3745 2192 a
+SDict begin [ /Subtype /Link /Dest (0:CONTROLLING-THE-DAEMON) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 2192
+a Black 0 TeXcolorgray 596 2300 a
+SDict begin H.S end
+ 596 2300 a FC(3.4.)e(Signals)986
+2300 y
+SDict begin 13 H.L end
+ 986 2300 a 986 2300 a
+SDict begin [ /Subtype /Link /Dest (0:SIGNALS) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 986 2300 a Black Black 8
+w FC(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+0 TeXcolorgray 3661 2300 a
+SDict begin H.S end
+ 3661 2300 a FC(14)3745 2300
+y
+SDict begin 13 H.L end
+ 3745 2300 a 3745 2300 a
+SDict begin [ /Subtype /Link /Dest (0:SIGNALS) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 2300 a Black 0 TeXcolorgray
+596 2408 a
+SDict begin H.S end
+ 596 2408 a FC(3.5.)g(PID)h(\002le)1001 2408
+y
+SDict begin 13 H.L end
+ 1001 2408 a 1001 2408 a
+SDict begin [ /Subtype /Link /Dest (0:PID-FILE) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1001 2408 a Black Black 14
+w FC(.)p Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black 0 TeXcolorgray 3661 2408
+a
+SDict begin H.S end
+ 3661 2408 a FC(15)3745 2408 y
+SDict begin 13 H.L end
+ 3745 2408 a 3745 2408
+a
+SDict begin [ /Subtype /Link /Dest (0:PID-FILE) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 2408 a Black 0 TeXcolorgray 596 2516 a
+SDict begin H.S end
+ 596 2516
+a FC(3.6.)f(Log)g(\002le)i(rotation)1282 2516 y
+SDict begin 13 H.L end
+ 1282
+2516 a 1282 2516 a
+SDict begin [ /Subtype /Link /Dest (0:LOG-FILE-ROTATION) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1282 2516 a Black Black 3 w FC(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black 0 TeXcolorgray 3661 2516 a
+SDict begin H.S end
+ 3661
+2516 a FC(15)3745 2516 y
+SDict begin 13 H.L end
+ 3745 2516 a 3745 2516 a
+SDict begin [ /Subtype /Link /Dest (0:LOG-FILE-ROTATION) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745
+2516 a Black 0 TeXcolorgray 596 2624 a
+SDict begin H.S end
+ 596 2624 a FC(3.7.)e(Updating)g
+(the)h(\002le)h(signature)e(database)1932 2624 y
+SDict begin 13 H.L end
+ 1932
+2624 a 1932 2624 a
+SDict begin [ /Subtype /Link /Dest (0:UPDATING-THE-FILE-SIGNATURE-DATABASE)
+cvn /H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1932 2624 a Black Black 17 w FC(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black 0 TeXcolorgray 3661 2624 a
+SDict begin H.S end
+ 3661 2624 a FC(16)3745
+2624 y
+SDict begin 13 H.L end
+ 3745 2624 a 3745 2624 a
+SDict begin [ /Subtype /Link /Dest (0:UPDATING-THE-FILE-SIGNATURE-DATABASE)
+cvn /H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 2624 a Black 0 TeXcolorgray
+596 2732 a
+SDict begin H.S end
+ 596 2732 a FC(3.8.)g(Impro)o(ving)e(the)j(signal-to-noise)e
+(ratio)1900 2732 y
+SDict begin 13 H.L end
+ 1900 2732 a 1900 2732 a
+SDict begin [ /Subtype /Link /Dest (0:IMPROVING-THE-SIGNAL-TO-NOISE-RATIO)
+cvn /H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1900 2732
+a Black Black 7 w FC(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black 0 TeXcolorgray 3661 2732 a
+SDict begin H.S end
+ 3661 2732 a FC(17)3745
+2732 y
+SDict begin 13 H.L end
+ 3745 2732 a 3745 2732 a
+SDict begin [ /Subtype /Link /Dest (0:IMPROVING-THE-SIGNAL-TO-NOISE-RATIO)
+cvn /H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 2732 a Black 0 TeXcolorgray
+596 2840 a
+SDict begin H.S end
+ 596 2840 a FC(3.9.)h(Runtime)h(options:)f(command-line)e(&)k
+(con\002guration)c(\002le)2491 2840 y
+SDict begin 13 H.L end
+ 2491 2840 a 2491
+2840 a
+SDict begin [ /Subtype /Link /Dest (0:OPTIONS-CONFIGURATION-FILE) cvn
+/H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2491 2840 a Black Black 18 w FC(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black 0 TeXcolorgray 3661 2840 a
+SDict begin H.S end
+ 3661 2840 a FC(17)3745
+2840 y
+SDict begin 13 H.L end
+ 3745 2840 a 3745 2840 a
+SDict begin [ /Subtype /Link /Dest (0:OPTIONS-CONFIGURATION-FILE) cvn
+/H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 2840 a Black 0 TeXcolorgray
+596 2948 a
+SDict begin H.S end
+ 596 2948 a FC(3.10.)h(Support)h(/)i(Bugs)f(/)h(Problems)1660
+2948 y
+SDict begin 13 H.L end
+ 1660 2948 a 1660 2948 a
+SDict begin [ /Subtype /Link /Dest (0:SUPPORT) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1660 2948 a Black Black
+19 w FC(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black 0 TeXcolorgray 3661 2948 a
+SDict begin H.S end
+ 3661
+2948 a FC(17)3745 2948 y
+SDict begin 13 H.L end
+ 3745 2948 a 3745 2948 a
+SDict begin [ /Subtype /Link /Dest (0:SUPPORT) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745
+2948 a Black 0 TeXcolorgray 396 3076 a
+SDict begin H.S end
+ 396 3076 a Fy(4.)f
+(Con\002guration)f(of)h(logging)f(facilities)1663 3076
+y
+SDict begin 13 H.L end
+ 1663 3076 a 1663 3076 a
+SDict begin [ /Subtype /Link /Dest (0:BASIC-CONFIGURATION) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1663 3076 a Black Black 16
+w Fy(.)p Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black 0 TeXcolorgray 3661 3076 a
+SDict begin H.S end
+ 3661 3076
+a Fy(19)3745 3076 y
+SDict begin 13 H.L end
+ 3745 3076 a 3745 3076 a
+SDict begin [ /Subtype /Link /Dest (0:BASIC-CONFIGURATION) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 3076
+a Black 0 TeXcolorgray 596 3203 a
+SDict begin H.S end
+ 596 3203 a FC(4.1.)g(Se)n(v)o(erity)g
+(le)n(v)o(els)h(and)g(classes)h(of)f(log)g(messages)2169
+3203 y
+SDict begin 13 H.L end
+ 2169 3203 a 2169 3203 a
+SDict begin [ /Subtype /Link /Dest (0:LOGDEF) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2169 3203 a Black Black
+8 w FC(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black 0 TeXcolorgray
+3661 3203 a
+SDict begin H.S end
+ 3661 3203 a FC(19)3745 3203 y
+SDict begin 13 H.L end
+ 3745 3203 a
+3745 3203 a
+SDict begin [ /Subtype /Link /Dest (0:LOGDEF) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 3203 a Black 0 TeXcolorgray 596 3311
+a
+SDict begin H.S end
+ 596 3311 a FC(4.2.)f(Ov)o(ervie)n(w)g(of)h(logging)e(f)o(acilities)
+1735 3311 y
+SDict begin 13 H.L end
+ 1735 3311 a 1735 3311 a
+SDict begin [ /Subtype /Link /Dest (0:CONFIGFACILITY) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1735 3311 a Black
+Black 6 w FC(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black 0 TeXcolorgray 3661 3311
+a
+SDict begin H.S end
+ 3661 3311 a FC(21)3745 3311 y
+SDict begin 13 H.L end
+ 3745 3311 a 3745 3311
+a
+SDict begin [ /Subtype /Link /Dest (0:CONFIGFACILITY) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 3311 a Black 0 TeXcolorgray 596 3419 a
+SDict begin H.S end
+ 596 3419
+a FC(4.3.)h(Acti)n(v)n(ating)g(logging)f(f)o(acilities)j(and)f
+(\002ltering)g(messages)2427 3419 y
+SDict begin 13 H.L end
+ 2427 3419 a 2427
+3419 a
+SDict begin [ /Subtype /Link /Dest (0:THRESHOLDS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2427 3419 a Black Black -1 w FC(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black 0 TeXcolorgray 3661 3419 a
+SDict begin H.S end
+ 3661
+3419 a FC(22)3745 3419 y
+SDict begin 13 H.L end
+ 3745 3419 a 3745 3419 a
+SDict begin [ /Subtype /Link /Dest (0:THRESHOLDS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745
+3419 a Black 0 TeXcolorgray 596 3527 a
+SDict begin H.S end
+ 596 3527 a FC(4.4.)f(E-mail)968
+3527 y
+SDict begin 13 H.L end
+ 968 3527 a 968 3527 a
+SDict begin [ /Subtype /Link /Dest (0:CONFIGURATION-EMAIL) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 968 3527 a Black Black 5
+w FC(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black 0 TeXcolorgray 3661 3527 a
+SDict begin H.S end
+ 3661 3527
+a FC(24)3745 3527 y
+SDict begin 13 H.L end
+ 3745 3527 a 3745 3527 a
+SDict begin [ /Subtype /Link /Dest (0:CONFIGURATION-EMAIL) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 3527
+a Black 0 TeXcolorgray 596 3635 a
+SDict begin H.S end
+ 596 3635 a FC(4.5.)g(Log)g(\002le)
+1001 3635 y
+SDict begin 13 H.L end
+ 1001 3635 a 1001 3635 a
+SDict begin [ /Subtype /Link /Dest (0:TRUSTEDEXAMPLE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1001 3635 a Black
+Black 14 w FC(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black 0 TeXcolorgray
+3661 3635 a
+SDict begin H.S end
+ 3661 3635 a FC(28)3745 3635 y
+SDict begin 13 H.L end
+ 3745 3635 a
+3745 3635 a
+SDict begin [ /Subtype /Link /Dest (0:TRUSTEDEXAMPLE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 3635 a Black 0 TeXcolorgray 596 3743
+a
+SDict begin H.S end
+ 596 3743 a FC(4.6.)g(Log)g(serv)o(er)1098 3743 y
+SDict begin 13 H.L end
+ 1098
+3743 a 1098 3743 a
+SDict begin [ /Subtype /Link /Dest (0:CONFIGURATION-LOGSERVER) cvn
+/H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1098 3743 a Black Black FC(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black 0 TeXcolorgray 3661 3743 a
+SDict begin H.S end
+ 3661 3743 a FC(30)3745
+3743 y
+SDict begin 13 H.L end
+ 3745 3743 a 3745 3743 a
+SDict begin [ /Subtype /Link /Dest (0:CONFIGURATION-LOGSERVER) cvn
+/H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 3743 a Black 0 TeXcolorgray
+596 3851 a
+SDict begin H.S end
+ 596 3851 a FC(4.7.)g(External)g(f)o(acilities)1328
+3851 y
+SDict begin 13 H.L end
+ 1328 3851 a 1328 3851 a
+SDict begin [ /Subtype /Link /Dest (0:CONFIGURATION-EXTERNAL) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1328 3851 a Black Black
+19 w FC(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black 0 TeXcolorgray 3661 3851
+a
+SDict begin H.S end
+ 3661 3851 a FC(31)3745 3851 y
+SDict begin 13 H.L end
+ 3745 3851 a 3745 3851
+a
+SDict begin [ /Subtype /Link /Dest (0:CONFIGURATION-EXTERNAL) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 3851 a Black 0 TeXcolorgray 596 3959 a
+SDict begin H.S end
+ 596 3959
+a FC(4.8.)g(Console)1014 3959 y
+SDict begin 13 H.L end
+ 1014 3959 a 1014 3959
+a
+SDict begin [ /Subtype /Link /Dest (0:CONSOLEDETAILS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1014 3959 a Black Black 1 w FC(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black 0 TeXcolorgray 3661 3959 a
+SDict begin H.S end
+ 3661 3959
+a FC(31)3745 3959 y
+SDict begin 13 H.L end
+ 3745 3959 a 3745 3959 a
+SDict begin [ /Subtype /Link /Dest (0:CONSOLEDETAILS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 3959
+a Black 0 TeXcolorgray 596 4067 a
+SDict begin H.S end
+ 596 4067 a FC(4.9.)g(Prelude)996
+4067 y
+SDict begin 13 H.L end
+ 996 4067 a 996 4067 a
+SDict begin [ /Subtype /Link /Dest (0:PRELUDEDETAILS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 996 4067 a Black Black 19
+w FC(.)p Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black 0 TeXcolorgray 3661 4067
+a
+SDict begin H.S end
+ 3661 4067 a FC(31)3745 4067 y
+SDict begin 13 H.L end
+ 3745 4067 a 3745 4067
+a
+SDict begin [ /Subtype /Link /Dest (0:PRELUDEDETAILS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 4067 a Black 0 TeXcolorgray 596 4175 a
+SDict begin H.S end
+ 596 4175
+a FC(4.10.)f(Using)i(samhain)g(with)g(nagios)1685 4175
+y
+SDict begin 13 H.L end
+ 1685 4175 a 1685 4175 a
+SDict begin [ /Subtype /Link /Dest (0:NAGIOS) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1685 4175 a Black Black 15
+w FC(.)p Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+0 TeXcolorgray 3661 4175 a
+SDict begin H.S end
+ 3661 4175 a FC(35)3745 4175
+y
+SDict begin 13 H.L end
+ 3745 4175 a 3745 4175 a
+SDict begin [ /Subtype /Link /Dest (0:NAGIOS) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 4175 a Black 0 TeXcolorgray
+596 4283 a
+SDict begin H.S end
+ 596 4283 a FC(4.11.)e(Syslog)1009 4283 y
+SDict begin 13 H.L end
+ 1009
+4283 a 1009 4283 a
+SDict begin [ /Subtype /Link /Dest (0:SYSLOGDETAILS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1009 4283 a Black Black 6 w FC(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black 0 TeXcolorgray 3661 4283
+a
+SDict begin H.S end
+ 3661 4283 a FC(36)3745 4283 y
+SDict begin 13 H.L end
+ 3745 4283 a 3745 4283
+a
+SDict begin [ /Subtype /Link /Dest (0:SYSLOGDETAILS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 4283 a Black 0 TeXcolorgray 596 4391 a
+SDict begin H.S end
+ 596 4391
+a FC(4.12.)g(SQL)j(Database)1265 4391 y
+SDict begin 13 H.L end
+ 1265 4391 a 1265
+4391 a
+SDict begin [ /Subtype /Link /Dest (0:SQLDETAILS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1265 4391 a Black Black 20 w FC(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black 0 TeXcolorgray 3661 4391 a
+SDict begin H.S end
+ 3661 4391 a FC(36)3745
+4391 y
+SDict begin 13 H.L end
+ 3745 4391 a 3745 4391 a
+SDict begin [ /Subtype /Link /Dest (0:SQLDETAILS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 4391 a Black 0 TeXcolorgray
+396 4519 a
+SDict begin H.S end
+ 396 4519 a Fy(5.)f(Con\002guration)f(\227)i(samhain,)f(the)h
+(\002le)g(monitor)1989 4519 y
+SDict begin 13 H.L end
+ 1989 4519 a 1989 4519 a
+SDict begin [ /Subtype /Link /Dest (0:FILE-MONITOR) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+
+1989 4519 a Black Black 1 w Fy(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+0 TeXcolorgray 3661 4519 a
+SDict begin H.S end
+ 3661 4519 a Fy(39)3745 4519
+y
+SDict begin 13 H.L end
+ 3745 4519 a 3745 4519 a
+SDict begin [ /Subtype /Link /Dest (0:FILE-MONITOR) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 4519 a Black 0 TeXcolorgray
+596 4646 a
+SDict begin H.S end
+ 596 4646 a FC(5.1.)e(Usage)h(o)o(v)o(ervie)n(w)1276
+4646 y
+SDict begin 13 H.L end
+ 1276 4646 a 1276 4646 a
+SDict begin [ /Subtype /Link /Dest (0:BASCLT) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1276 4646 a Black Black
+9 w FC(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black 0 TeXcolorgray 3661 4646
+a
+SDict begin H.S end
+ 3661 4646 a FC(39)3745 4646 y
+SDict begin 13 H.L end
+ 3745 4646 a 3745 4646
+a
+SDict begin [ /Subtype /Link /Dest (0:BASCLT) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 4646 a Black 0 TeXcolorgray 596 4754 a
+SDict begin H.S end
+ 596 4754
+a FC(5.2.)f(A)-6 b(v)n(ailable)19 b(checksum)g(functions)1740
+4754 y
+SDict begin 13 H.L end
+ 1740 4754 a 1740 4754 a
+SDict begin [ /Subtype /Link /Dest (0:HASH-FUNCTION) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1740 4754 a Black Black
+1 w FC(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black 0 TeXcolorgray 3661 4754 a
+SDict begin H.S end
+ 3661
+4754 a FC(40)3745 4754 y
+SDict begin 13 H.L end
+ 3745 4754 a 3745 4754 a
+SDict begin [ /Subtype /Link /Dest (0:HASH-FUNCTION) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745
+4754 a Black 0 TeXcolorgray 596 4862 a
+SDict begin H.S end
+ 596 4862 a FC(5.3.)g(File)i
+(signatures)1229 4862 y
+SDict begin 13 H.L end
+ 1229 4862 a 1229 4862 a
+SDict begin [ /Subtype /Link /Dest (0:FILE-SIGNATURES) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1229
+4862 a Black Black 14 w FC(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black 0 TeXcolorgray 3661 4862
+a
+SDict begin H.S end
+ 3661 4862 a FC(40)3745 4862 y
+SDict begin 13 H.L end
+ 3745 4862 a 3745 4862
+a
+SDict begin [ /Subtype /Link /Dest (0:FILE-SIGNATURES) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 4862 a Black 0 TeXcolorgray 596 4970 a
+SDict begin H.S end
+ 596 4970
+a FC(5.4.)e(De\002ning)g(which)h(\002les/directories)f(to)i(monitor)
+2159 4970 y
+SDict begin 13 H.L end
+ 2159 4970 a 2159 4970 a
+SDict begin [ /Subtype /Link /Dest (0:FILEDEF) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2159 4970 a Black
+Black 18 w FC(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black 0 TeXcolorgray
+3661 4970 a
+SDict begin H.S end
+ 3661 4970 a FC(41)3745 4970 y
+SDict begin 13 H.L end
+ 3745 4970 a
+3745 4970 a
+SDict begin [ /Subtype /Link /Dest (0:FILEDEF) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 4970 a Black 0 TeXcolorgray 596 5078
+a
+SDict begin H.S end
+ 596 5078 a FC(5.5.)e(Excluding)f(\002les)j(and/or)e(subdirectories)f
+(\(All)j(e)o(xcept)e(.)12 b(.)g(.)g(\))2499 5078 y
+SDict begin 13 H.L end
+ 2499
+5078 a 2499 5078 a
+SDict begin [ /Subtype /Link /Dest (0:ALL-EXCEPT) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2499 5078 a Black Black 10 w FC(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black 0 TeXcolorgray 3661 5078 a
+SDict begin H.S end
+ 3661
+5078 a FC(48)3745 5078 y
+SDict begin 13 H.L end
+ 3745 5078 a 3745 5078 a
+SDict begin [ /Subtype /Link /Dest (0:ALL-EXCEPT) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745
+5078 a Black 0 TeXcolorgray 596 5186 a
+SDict begin H.S end
+ 596 5186 a FC(5.6.)19
+b(T)m(iming)g(\002le)i(checks)1357 5186 y
+SDict begin 13 H.L end
+ 1357 5186 a
+1357 5186 a
+SDict begin [ /Subtype /Link /Dest (0:TIMING-FILE-CHECKS) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1357 5186 a Black Black 11 w FC(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+0 TeXcolorgray 3661 5186 a
+SDict begin H.S end
+ 3661 5186 a FC(49)3745 5186
+y
+SDict begin 13 H.L end
+ 3745 5186 a 3745 5186 a
+SDict begin [ /Subtype /Link /Dest (0:TIMING-FILE-CHECKS) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 5186 a Black 0 TeXcolorgray
+596 5294 a
+SDict begin H.S end
+ 596 5294 a FC(5.7.)e(Initializing,)g(updating,)f(or)i
+(checking)1871 5294 y
+SDict begin 13 H.L end
+ 1871 5294 a 1871 5294 a
+SDict begin [ /Subtype /Link /Dest (0:INITIALIZING-UPDATING-CHECKING)
+cvn /H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1871 5294
+a Black Black 16 w FC(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black 0 TeXcolorgray 3661 5294
+a
+SDict begin H.S end
+ 3661 5294 a FC(50)3745 5294 y
+SDict begin 13 H.L end
+ 3745 5294 a 3745 5294
+a
+SDict begin [ /Subtype /Link /Dest (0:INITIALIZING-UPDATING-CHECKING)
+cvn /H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 5294 a Black 0 TeXcolorgray 596 5402 a
+SDict begin H.S end
+ 596 5402
+a FC(5.8.)f(The)h(\002le)h(signature)e(database)1630
+5402 y
+SDict begin 13 H.L end
+ 1630 5402 a 1630 5402 a
+SDict begin [ /Subtype /Link /Dest (0:DATABASEFILE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1630 5402 a Black Black
+7 w FC(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+0 TeXcolorgray 3661 5402 a
+SDict begin H.S end
+ 3661 5402 a FC(50)3745 5402
+y
+SDict begin 13 H.L end
+ 3745 5402 a 3745 5402 a
+SDict begin [ /Subtype /Link /Dest (0:DATABASEFILE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 5402 a Black Black 3675
+5805 a Fx(iii)p Black eop end
+%%Page: 4 4
+TeXDict begin 4 3 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black 0
+TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.4) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black 0 TeXcolorgray
+596 309 a
+SDict begin H.S end
+ 596 309 a FC(5.9.)19 b(Checking)g(the)h(\002le)h(system)f
+(for)g(SUID/SGID)g(binaries)2393 309 y
+SDict begin 13 H.L end
+ 2393 309 a 2393
+309 a
+SDict begin [ /Subtype /Link /Dest (0:SUIDCHK) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2393 309 a Black Black 12 w FC(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black 0 TeXcolorgray
+3661 309 a
+SDict begin H.S end
+ 3661 309 a FC(51)3745 309 y
+SDict begin 13 H.L end
+ 3745 309 a 3745
+309 a
+SDict begin [ /Subtype /Link /Dest (0:SUIDCHK) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 309 a Black 0 TeXcolorgray 596 417 a
+SDict begin H.S end
+ 596 417
+a FC(5.10.)e(Detecting)i(K)n(ernel)f(rootkits)1625 417
+y
+SDict begin 13 H.L end
+ 1625 417 a 1625 417 a
+SDict begin [ /Subtype /Link /Dest (0:KERNELDEF) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1625 417 a Black Black 12 w FC(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black 0 TeXcolorgray
+3661 417 a
+SDict begin H.S end
+ 3661 417 a FC(53)3745 417 y
+SDict begin 13 H.L end
+ 3745 417 a 3745
+417 a
+SDict begin [ /Subtype /Link /Dest (0:KERNELDEF) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 417 a Black 0 TeXcolorgray 596 525 a
+SDict begin H.S end
+ 596 525
+a FC(5.11.)f(Monitoring)g(login/logout)g(e)n(v)o(ents)1818
+525 y
+SDict begin 13 H.L end
+ 1818 525 a 1818 525 a
+SDict begin [ /Subtype /Link /Dest (0:MONDEF) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1818 525 a Black Black 6
+w FC(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black 0 TeXcolorgray 3661 525 a
+SDict begin H.S end
+ 3661 525 a FC(57)3745
+525 y
+SDict begin 13 H.L end
+ 3745 525 a 3745 525 a
+SDict begin [ /Subtype /Link /Dest (0:MONDEF) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 525 a Black 0 TeXcolorgray
+596 632 a
+SDict begin H.S end
+ 596 632 a FC(5.12.)g(Checking)h(mounted)g(\002lesystem)h
+(policies)2049 632 y
+SDict begin 13 H.L end
+ 2049 632 a 2049 632 a
+SDict begin [ /Subtype /Link /Dest (0:MOUNTCHECK) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2049 632 a
+Black Black 4 w FC(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black 0 TeXcolorgray
+3661 632 a
+SDict begin H.S end
+ 3661 632 a FC(58)3745 632 y
+SDict begin 13 H.L end
+ 3745 632 a 3745
+632 a
+SDict begin [ /Subtype /Link /Dest (0:MOUNTCHECK) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 632 a Black 0 TeXcolorgray 596 740 a
+SDict begin H.S end
+ 596 740
+a FC(5.13.)e(Checking)h(sensiti)n(v)o(e)h(\002les)h(o)n(wned)e(by)h
+(users)2103 740 y
+SDict begin 13 H.L end
+ 2103 740 a 2103 740 a
+SDict begin [ /Subtype /Link /Dest (0:USERCHECK) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2103 740 a Black
+Black 12 w FC(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black 0 TeXcolorgray
+3661 740 a
+SDict begin H.S end
+ 3661 740 a FC(58)3745 740 y
+SDict begin 13 H.L end
+ 3745 740 a 3745
+740 a
+SDict begin [ /Subtype /Link /Dest (0:USERCHECK) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 740 a Black 0 TeXcolorgray 596 848 a
+SDict begin H.S end
+ 596 848
+a FC(5.14.)e(Modules)1074 848 y
+SDict begin 13 H.L end
+ 1074 848 a 1074 848 a
+SDict begin [ /Subtype /Link /Dest (0:MODULES) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+
+1074 848 a Black Black 3 w FC(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black 0 TeXcolorgray 3661 848 a
+SDict begin H.S end
+ 3661 848 a FC(59)3745
+848 y
+SDict begin 13 H.L end
+ 3745 848 a 3745 848 a
+SDict begin [ /Subtype /Link /Dest (0:MODULES) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 848 a Black 0 TeXcolorgray
+596 956 a
+SDict begin H.S end
+ 596 956 a FC(5.15.)g(Performance)g(tuning)1441
+956 y
+SDict begin 13 H.L end
+ 1441 956 a 1441 956 a
+SDict begin [ /Subtype /Link /Dest (0:PERFORMANCE-TUNING) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1441 956 a Black Black 10
+w FC(.)p Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black 0 TeXcolorgray
+3661 956 a
+SDict begin H.S end
+ 3661 956 a FC(59)3745 956 y
+SDict begin 13 H.L end
+ 3745 956 a 3745
+956 a
+SDict begin [ /Subtype /Link /Dest (0:PERFORMANCE-TUNING) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 956 a Black 0 TeXcolorgray 396 1084 a
+SDict begin H.S end
+ 396
+1084 a Fy(6.)i(yule,)g(the)h(log)f(ser)o(v)o(er)1147
+1084 y
+SDict begin 13 H.L end
+ 1147 1084 a 1147 1084 a
+SDict begin [ /Subtype /Link /Dest (0:YULE) cvn /H /I /Border [0 0
+0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1147 1084 a Black Black
+13 w Fy(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black 0 TeXcolorgray 3661 1084 a
+SDict begin H.S end
+ 3661
+1084 a Fy(62)3745 1084 y
+SDict begin 13 H.L end
+ 3745 1084 a 3745 1084 a
+SDict begin [ /Subtype /Link /Dest (0:YULE) cvn /H /I /Border [0 0
+0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745
+1084 a Black 0 TeXcolorgray 596 1212 a
+SDict begin H.S end
+ 596 1212 a FC(6.1.)f(General)
+1005 1212 y
+SDict begin 13 H.L end
+ 1005 1212 a 1005 1212 a
+SDict begin [ /Subtype /Link /Dest (0:GENERAL) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1005 1212 a Black
+Black 10 w FC(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black 0 TeXcolorgray
+3661 1212 a
+SDict begin H.S end
+ 3661 1212 a FC(62)3745 1212 y
+SDict begin 13 H.L end
+ 3745 1212 a
+3745 1212 a
+SDict begin [ /Subtype /Link /Dest (0:GENERAL) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 1212 a Black 0 TeXcolorgray 596 1320
+a
+SDict begin H.S end
+ 596 1320 a FC(6.2.)g(Important)f(installation)i(notes)1655
+1320 y
+SDict begin 13 H.L end
+ 1655 1320 a 1655 1320 a
+SDict begin [ /Subtype /Link /Dest (0:DROPROOT) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1655 1320 a Black Black
+3 w FC(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black 0 TeXcolorgray
+3661 1320 a
+SDict begin H.S end
+ 3661 1320 a FC(63)3745 1320 y
+SDict begin 13 H.L end
+ 3745 1320 a
+3745 1320 a
+SDict begin [ /Subtype /Link /Dest (0:DROPROOT) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 1320 a Black 0 TeXcolorgray 596 1428
+a
+SDict begin H.S end
+ 596 1428 a FC(6.3.)f(Re)o(gistering)g(a)i(client)1386
+1428 y
+SDict begin 13 H.L end
+ 1386 1428 a 1386 1428 a
+SDict begin [ /Subtype /Link /Dest (0:CLIENTS) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1386 1428 a Black Black
+2 w FC(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black 0 TeXcolorgray
+3661 1428 a
+SDict begin H.S end
+ 3661 1428 a FC(64)3745 1428 y
+SDict begin 13 H.L end
+ 3745 1428 a
+3745 1428 a
+SDict begin [ /Subtype /Link /Dest (0:CLIENTS) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 1428 a Black 0 TeXcolorgray 596 1536
+a
+SDict begin H.S end
+ 596 1536 a FC(6.4.)e(Enabling)f(logging)h(to)h(the)g(serv)o(er)1746
+1536 y
+SDict begin 13 H.L end
+ 1746 1536 a 1746 1536 a
+SDict begin [ /Subtype /Link /Dest (0:ENABLING-LOGGING-TO-THE-SERVER)
+cvn /H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1746 1536 a Black Black
+16 w FC(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black 0 TeXcolorgray 3661 1536 a
+SDict begin H.S end
+ 3661 1536 a FC(65)3745
+1536 y
+SDict begin 13 H.L end
+ 3745 1536 a 3745 1536 a
+SDict begin [ /Subtype /Link /Dest (0:ENABLING-LOGGING-TO-THE-SERVER)
+cvn /H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 1536 a Black 0 TeXcolorgray
+596 1644 a
+SDict begin H.S end
+ 596 1644 a FC(6.5.)f(Enabling)f(baseline)i(database)g(/)h
+(con\002guration)c(\002le)k(do)n(wnload)d(from)h(the)h(serv)o(er)3148
+1644 y
+SDict begin 13 H.L end
+ 3148 1644 a 3148 1644 a
+SDict begin [ /Subtype /Link /Dest (0:DATABASE-CONFIGURATION-FILE-DOWNLOAD)
+cvn /H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3148 1644 a Black Black
+5 w FC(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black 0 TeXcolorgray
+3661 1644 a
+SDict begin H.S end
+ 3661 1644 a FC(66)3745 1644 y
+SDict begin 13 H.L end
+ 3745 1644 a
+3745 1644 a
+SDict begin [ /Subtype /Link /Dest (0:DATABASE-CONFIGURATION-FILE-DOWNLOAD)
+cvn /H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 1644 a Black 0 TeXcolorgray 596 1752
+a
+SDict begin H.S end
+ 596 1752 a FC(6.6.)f(Rules)i(for)e(logging)g(of)h(client)g(messages)
+1952 1752 y
+SDict begin 13 H.L end
+ 1952 1752 a 1952 1752 a
+SDict begin [ /Subtype /Link /Dest (0:SERVER-LOGGING) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1952 1752 a Black
+Black 18 w FC(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black 0 TeXcolorgray 3661 1752 a
+SDict begin H.S end
+ 3661 1752 a FC(68)3745
+1752 y
+SDict begin 13 H.L end
+ 3745 1752 a 3745 1752 a
+SDict begin [ /Subtype /Link /Dest (0:SERVER-LOGGING) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 1752 a Black 0 TeXcolorgray
+596 1860 a
+SDict begin H.S end
+ 596 1860 a FC(6.7.)f(Detecting)g(')l(dead')g(clients)1530
+1860 y
+SDict begin 13 H.L end
+ 1530 1860 a 1530 1860 a
+SDict begin [ /Subtype /Link /Dest (0:GCM) cvn /H /I /Border [0 0 0]
+/Color [1 0 0] H.B /ANN pdfmark end
+ 1530 1860 a Black Black
+4 w FC(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black 0 TeXcolorgray
+3661 1860 a
+SDict begin H.S end
+ 3661 1860 a FC(68)3745 1860 y
+SDict begin 13 H.L end
+ 3745 1860 a
+3745 1860 a
+SDict begin [ /Subtype /Link /Dest (0:GCM) cvn /H /I /Border [0 0 0]
+/Color [1 0 0] H.B /ANN pdfmark end
+ 3745 1860 a Black 0 TeXcolorgray 596 1967
+a
+SDict begin H.S end
+ 596 1967 a FC(6.8.)g(The)h(HTML)g(serv)o(er)f(status)i(page)1737
+1967 y
+SDict begin 13 H.L end
+ 1737 1967 a 1737 1967 a
+SDict begin [ /Subtype /Link /Dest (0:SERVER-STATUS-INFORMATION) cvn
+/H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1737 1967 a Black Black
+4 w FC(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black 0 TeXcolorgray 3661 1967 a
+SDict begin H.S end
+ 3661
+1967 a FC(69)3745 1967 y
+SDict begin 13 H.L end
+ 3745 1967 a 3745 1967 a
+SDict begin [ /Subtype /Link /Dest (0:SERVER-STATUS-INFORMATION) cvn
+/H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745
+1967 a Black 0 TeXcolorgray 596 2075 a
+SDict begin H.S end
+ 596 2075 a FC(6.9.)e(Chroot)973
+2075 y
+SDict begin 13 H.L end
+ 973 2075 a 973 2075 a
+SDict begin [ /Subtype /Link /Dest (0:CHROOT) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 973 2075 a Black Black FC(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black 0 TeXcolorgray 3661 2075 a
+SDict begin H.S end
+ 3661 2075 a FC(70)3745
+2075 y
+SDict begin 13 H.L end
+ 3745 2075 a 3745 2075 a
+SDict begin [ /Subtype /Link /Dest (0:CHROOT) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 2075 a Black 0 TeXcolorgray
+596 2183 a
+SDict begin H.S end
+ 596 2183 a FC(6.10.)f(Restrict)j(access)g(with)g(libwrap)e
+(\(tcp)h(wrappers\))2221 2183 y
+SDict begin 13 H.L end
+ 2221 2183 a 2221 2183
+a
+SDict begin [ /Subtype /Link /Dest (0:LIBWRAP) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2221 2183 a Black Black 18 w FC(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black 0 TeXcolorgray 3661 2183 a
+SDict begin H.S end
+ 3661 2183
+a FC(72)3745 2183 y
+SDict begin 13 H.L end
+ 3745 2183 a 3745 2183 a
+SDict begin [ /Subtype /Link /Dest (0:LIBWRAP) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 2183
+a Black 0 TeXcolorgray 596 2291 a
+SDict begin H.S end
+ 596 2291 a FC(6.11.)e(Sending)h
+(commands)g(to)h(clients)1758 2291 y
+SDict begin 13 H.L end
+ 1758 2291 a 1758
+2291 a
+SDict begin [ /Subtype /Link /Dest (0:SEND-COMMANDS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1758 2291 a Black Black 4 w FC(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black 0 TeXcolorgray
+3661 2291 a
+SDict begin H.S end
+ 3661 2291 a FC(72)3745 2291 y
+SDict begin 13 H.L end
+ 3745 2291 a
+3745 2291 a
+SDict begin [ /Subtype /Link /Dest (0:SEND-COMMANDS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 2291 a Black 0 TeXcolorgray 596 2399
+a
+SDict begin H.S end
+ 596 2399 a FC(6.12.)e(Syslog)i(logging)1285 2399 y
+SDict begin 13 H.L end
+
+1285 2399 a 1285 2399 a
+SDict begin [ /Subtype /Link /Dest (0:UDP) cvn /H /I /Border [0 0 0]
+/Color [1 0 0] H.B /ANN pdfmark end
+ 1285 2399 a Black Black FC(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black 0 TeXcolorgray 3661 2399 a
+SDict begin H.S end
+ 3661
+2399 a FC(73)3745 2399 y
+SDict begin 13 H.L end
+ 3745 2399 a 3745 2399 a
+SDict begin [ /Subtype /Link /Dest (0:UDP) cvn /H /I /Border [0 0 0]
+/Color [1 0 0] H.B /ANN pdfmark end
+ 3745
+2399 a Black 0 TeXcolorgray 596 2507 a
+SDict begin H.S end
+ 596 2507 a FC(6.13.)e
+(Performance)g(tuning)1441 2507 y
+SDict begin 13 H.L end
+ 1441 2507 a 1441 2507
+a
+SDict begin [ /Subtype /Link /Dest (0:PERFORMANCE-TUNING-SERVER) cvn
+/H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1441 2507 a Black Black 10 w FC(.)p Black Black -1
+w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black 0 TeXcolorgray 3661 2507
+a
+SDict begin H.S end
+ 3661 2507 a FC(74)3745 2507 y
+SDict begin 13 H.L end
+ 3745 2507 a 3745 2507
+a
+SDict begin [ /Subtype /Link /Dest (0:PERFORMANCE-TUNING-SERVER) cvn
+/H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 2507 a Black 0 TeXcolorgray 396 2635 a
+SDict begin H.S end
+ 396 2635
+a Fy(7.)i(Hooks)g(f)n(or)g(Exter)o(nal)f(Pr)o(ograms)1530
+2635 y
+SDict begin 13 H.L end
+ 1530 2635 a 1530 2635 a
+SDict begin [ /Subtype /Link /Dest (0:EXTERN) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1530 2635 a Black Black
+4 w Fy(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black 0 TeXcolorgray
+3661 2635 a
+SDict begin H.S end
+ 3661 2635 a Fy(76)3745 2635 y
+SDict begin 13 H.L end
+ 3745 2635 a
+3745 2635 a
+SDict begin [ /Subtype /Link /Dest (0:EXTERN) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 2635 a Black 0 TeXcolorgray 596 2763
+a
+SDict begin H.S end
+ 596 2763 a FC(7.1.)g(Pipes)921 2763 y
+SDict begin 13 H.L end
+ 921 2763 a 921
+2763 a
+SDict begin [ /Subtype /Link /Dest (0:PIPES) cvn /H /I /Border [0 0
+0] /Color [1 0 0] H.B /ANN pdfmark end
+ 921 2763 a Black Black 11 w FC(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black 0 TeXcolorgray 3661 2763
+a
+SDict begin H.S end
+ 3661 2763 a FC(76)3745 2763 y
+SDict begin 13 H.L end
+ 3745 2763 a 3745 2763
+a
+SDict begin [ /Subtype /Link /Dest (0:PIPES) cvn /H /I /Border [0 0
+0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 2763 a Black 0 TeXcolorgray 596 2871 a
+SDict begin H.S end
+ 596 2871
+a FC(7.2.)g(System)h(V)h(message)f(queue)1589 2871 y
+SDict begin 13 H.L end
+
+1589 2871 a 1589 2871 a
+SDict begin [ /Subtype /Link /Dest (0:SYSTEM-V-MESSAGE-QUEUE) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1589 2871 a Black Black 7 w FC(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black 0 TeXcolorgray 3661 2871
+a
+SDict begin H.S end
+ 3661 2871 a FC(76)3745 2871 y
+SDict begin 13 H.L end
+ 3745 2871 a 3745 2871
+a
+SDict begin [ /Subtype /Link /Dest (0:SYSTEM-V-MESSAGE-QUEUE) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 2871 a Black 0 TeXcolorgray 596 2979 a
+SDict begin H.S end
+ 596 2979
+a FC(7.3.)f(Calling)h(e)o(xternal)f(programs)1609 2979
+y
+SDict begin 13 H.L end
+ 1609 2979 a 1609 2979 a
+SDict begin [ /Subtype /Link /Dest (0:CALLING-EXTERNAL-PROGRAMS) cvn
+/H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1609 2979 a Black Black 8 w
+FC(.)p Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black 0 TeXcolorgray 3661 2979 a
+SDict begin H.S end
+ 3661 2979
+a FC(76)3745 2979 y
+SDict begin 13 H.L end
+ 3745 2979 a 3745 2979 a
+SDict begin [ /Subtype /Link /Dest (0:CALLING-EXTERNAL-PROGRAMS) cvn
+/H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 2979
+a Black 0 TeXcolorgray 396 3107 a
+SDict begin H.S end
+ 396 3107 a Fy(8.)h(Additional)g(F)n
+(eatur)o(es)f(\227)i(Signed)g(Con\002guration/Database)c(Files)2604
+3107 y
+SDict begin 13 H.L end
+ 2604 3107 a 2604 3107 a
+SDict begin [ /Subtype /Link /Dest (0:SIGNED-FILES) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2604 3107 a Black Black
+9 w Fy(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+0 TeXcolorgray 3661 3107 a
+SDict begin H.S end
+ 3661 3107 a Fy(79)3745 3107
+y
+SDict begin 13 H.L end
+ 3745 3107 a 3745 3107 a
+SDict begin [ /Subtype /Link /Dest (0:SIGNED-FILES) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 3107 a Black 0 TeXcolorgray
+596 3234 a
+SDict begin H.S end
+ 596 3234 a FC(8.1.)i(The)h(samhainadmin)e(script)1581
+3234 y
+SDict begin 13 H.L end
+ 1581 3234 a 1581 3234 a
+SDict begin [ /Subtype /Link /Dest (0:SAMHAINADMIN) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1581 3234 a Black Black
+15 w FC(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black 0 TeXcolorgray
+3661 3234 a
+SDict begin H.S end
+ 3661 3234 a FC(80)3745 3234 y
+SDict begin 13 H.L end
+ 3745 3234 a
+3745 3234 a
+SDict begin [ /Subtype /Link /Dest (0:SAMHAINADMIN) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 3234 a Black 0 TeXcolorgray 396 3362
+a
+SDict begin H.S end
+ 396 3362 a Fy(9.)i(Additional)g(F)n(eatur)o(es)f(\227)i(Stealth)1558
+3362 y
+SDict begin 13 H.L end
+ 1558 3362 a 1558 3362 a
+SDict begin [ /Subtype /Link /Dest (0:STEALTHMODE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1558 3362 a Black Black
+17 w Fy(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+0 TeXcolorgray 3661 3362 a
+SDict begin H.S end
+ 3661 3362 a Fy(82)3745 3362
+y
+SDict begin 13 H.L end
+ 3745 3362 a 3745 3362 a
+SDict begin [ /Subtype /Link /Dest (0:STEALTHMODE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 3362 a Black 0 TeXcolorgray
+596 3490 a
+SDict begin H.S end
+ 596 3490 a FC(9.1.)e(Hiding)g(the)h(e)o(x)o(ecutable)1469
+3490 y
+SDict begin 13 H.L end
+ 1469 3490 a 1469 3490 a
+SDict begin [ /Subtype /Link /Dest (0:HIDING-THE-EXECUTABLE) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1469 3490 a Black Black
+2 w FC(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black 0 TeXcolorgray 3661 3490
+a
+SDict begin H.S end
+ 3661 3490 a FC(82)3745 3490 y
+SDict begin 13 H.L end
+ 3745 3490 a 3745 3490
+a
+SDict begin [ /Subtype /Link /Dest (0:HIDING-THE-EXECUTABLE) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 3490 a Black 0 TeXcolorgray 596 3598 a
+SDict begin H.S end
+ 596 3598
+a FC(9.2.)f(P)o(acking)g(the)h(e)o(x)o(ecutable)1505
+3598 y
+SDict begin 13 H.L end
+ 1505 3598 a 1505 3598 a
+SDict begin [ /Subtype /Link /Dest (0:PACKING-THE-EXECUTABLE) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1505 3598 a Black Black
+8 w FC(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+0 TeXcolorgray 3661 3598 a
+SDict begin H.S end
+ 3661 3598 a FC(85)3745 3598
+y
+SDict begin 13 H.L end
+ 3745 3598 a 3745 3598 a
+SDict begin [ /Subtype /Link /Dest (0:PACKING-THE-EXECUTABLE) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 3598 a Black 0 TeXcolorgray
+396 3726 a
+SDict begin H.S end
+ 396 3726 a Fy(10.)g(Deployment)f(to)h(r)o(emote)g(hosts)1509
+3726 y
+SDict begin 13 H.L end
+ 1509 3726 a 1509 3726 a
+SDict begin [ /Subtype /Link /Dest (0:DEPLOYMENT) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1509 3726 a Black Black
+4 w Fy(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+0 TeXcolorgray 3661 3726 a
+SDict begin H.S end
+ 3661 3726 a Fy(87)3745 3726
+y
+SDict begin 13 H.L end
+ 3745 3726 a 3745 3726 a
+SDict begin [ /Subtype /Link /Dest (0:DEPLOYMENT) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 3726 a Black 0 TeXcolorgray
+596 3854 a
+SDict begin H.S end
+ 596 3854 a FC(10.1.)e(Method)h(A:)i(The)f(deplo)o(yment)e
+(system)1958 3854 y
+SDict begin 13 H.L end
+ 1958 3854 a 1958 3854 a
+SDict begin [ /Subtype /Link /Dest (0:DEPLOY.SH) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1958 3854
+a Black Black 12 w FC(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black 0 TeXcolorgray 3661 3854 a
+SDict begin H.S end
+ 3661 3854
+a FC(87)3745 3854 y
+SDict begin 13 H.L end
+ 3745 3854 a 3745 3854 a
+SDict begin [ /Subtype /Link /Dest (0:DEPLOY.SH) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 3854
+a Black 0 TeXcolorgray 596 3962 a
+SDict begin H.S end
+ 596 3962 a FC(10.2.)g(Method)h(B:)j
+(The)d(nati)n(v)o(e)h(package)e(manager)2111 3962 y
+SDict begin 13 H.L end
+ 2111
+3962 a 2111 3962 a
+SDict begin [ /Subtype /Link /Dest (0:NATIVE-PACKAGES) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2111 3962 a Black Black 4 w FC(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black 0 TeXcolorgray 3661 3962
+a
+SDict begin H.S end
+ 3661 3962 a FC(97)3745 3962 y
+SDict begin 13 H.L end
+ 3745 3962 a 3745 3962
+a
+SDict begin [ /Subtype /Link /Dest (0:NATIVE-PACKAGES) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3745 3962 a Black 0 TeXcolorgray 396 4090 a
+SDict begin H.S end
+ 396 4090
+a Fy(11.)i(Security)g(Design)1077 4090 y
+SDict begin 13 H.L end
+ 1077 4090 a
+1077 4090 a
+SDict begin [ /Subtype /Link /Dest (0:SECURITY-DESIGN) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1077 4090 a Black Black Fy(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black 0 TeXcolorgray 3620
+4090 a
+SDict begin H.S end
+ 3620 4090 a Fy(101)3746 4090 y
+SDict begin 13 H.L end
+ 3746 4090 a 3746
+4090 a
+SDict begin [ /Subtype /Link /Dest (0:SECURITY-DESIGN) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 4090 a Black 0 TeXcolorgray 596 4217 a
+SDict begin H.S end
+ 596
+4217 a FC(11.1.)e(Usage)990 4217 y
+SDict begin 13 H.L end
+ 990 4217 a 990 4217
+a
+SDict begin [ /Subtype /Link /Dest (0:SECURITY-USAGE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 990 4217 a Black Black 4 w FC(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black 0 TeXcolorgray
+3620 4217 a
+SDict begin H.S end
+ 3620 4217 a FC(101)3746 4217 y
+SDict begin 13 H.L end
+ 3746 4217
+a 3746 4217 a
+SDict begin [ /Subtype /Link /Dest (0:SECURITY-USAGE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 4217 a Black 0 TeXcolorgray 596 4325
+a
+SDict begin H.S end
+ 596 4325 a FC(11.2.)g(Inte)o(grity)h(of)h(the)g(e)o(x)o(ecutable)1655
+4325 y
+SDict begin 13 H.L end
+ 1655 4325 a 1655 4325 a
+SDict begin [ /Subtype /Link /Dest (0:KEYPAD) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1655 4325 a Black Black
+3 w FC(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black 0 TeXcolorgray 3620 4325 a
+SDict begin H.S end
+ 3620 4325 a FC(101)3746
+4325 y
+SDict begin 13 H.L end
+ 3746 4325 a 3746 4325 a
+SDict begin [ /Subtype /Link /Dest (0:KEYPAD) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 4325 a Black 0 TeXcolorgray
+596 4433 a
+SDict begin H.S end
+ 596 4433 a FC(11.3.)e(Client)j(e)o(x)o(ecutable)d(inte)o
+(grity)1661 4433 y
+SDict begin 13 H.L end
+ 1661 4433 a 1661 4433 a
+SDict begin [ /Subtype /Link /Dest (0:CLIENT-INTEGRITY) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1661 4433
+a Black Black 18 w FC(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black 0 TeXcolorgray 3620 4433 a
+SDict begin H.S end
+ 3620 4433 a FC(103)3746
+4433 y
+SDict begin 13 H.L end
+ 3746 4433 a 3746 4433 a
+SDict begin [ /Subtype /Link /Dest (0:CLIENT-INTEGRITY) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 4433 a Black 0 TeXcolorgray
+596 4541 a
+SDict begin H.S end
+ 596 4541 a FC(11.4.)g(The)i(serv)o(er)1135
+4541 y
+SDict begin 13 H.L end
+ 1135 4541 a 1135 4541 a
+SDict begin [ /Subtype /Link /Dest (0:SERVER-SECURITY) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1135 4541 a Black Black
+4 w FC(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black 0 TeXcolorgray 3620 4541 a
+SDict begin H.S end
+ 3620 4541 a FC(103)3746
+4541 y
+SDict begin 13 H.L end
+ 3746 4541 a 3746 4541 a
+SDict begin [ /Subtype /Link /Dest (0:SERVER-SECURITY) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 4541 a Black 0 TeXcolorgray
+596 4649 a
+SDict begin H.S end
+ 596 4649 a FC(11.5.)e(General)1046 4649 y
+SDict begin 13 H.L end
+
+1046 4649 a 1046 4649 a
+SDict begin [ /Subtype /Link /Dest (0:DESIGN) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1046 4649 a Black Black 10 w
+FC(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black 0 TeXcolorgray 3620 4649 a
+SDict begin H.S end
+ 3620
+4649 a FC(103)3746 4649 y
+SDict begin 13 H.L end
+ 3746 4649 a 3746 4649 a
+SDict begin [ /Subtype /Link /Dest (0:DESIGN) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746
+4649 a Black 0 TeXcolorgray 396 4777 a
+SDict begin H.S end
+ 396 4777 a Fy(A.)j(List)g(of)f
+(options)g(f)n(or)g(the)g(./con\002gur)o(e)f(script)1880
+4777 y
+SDict begin 13 H.L end
+ 1880 4777 a 1880 4777 a
+SDict begin [ /Subtype /Link /Dest (0:COMPILATION-OPTIONS) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1880 4777 a Black Black
+7 w Fy(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black 0 TeXcolorgray 3620
+4777 a
+SDict begin H.S end
+ 3620 4777 a Fy(105)3746 4777 y
+SDict begin 13 H.L end
+ 3746 4777 a 3746
+4777 a
+SDict begin [ /Subtype /Link /Dest (0:COMPILATION-OPTIONS) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 4777 a Black 0 TeXcolorgray 596 4905 a
+SDict begin H.S end
+ 596
+4905 a FC(A.1.)g(General)1023 4905 y
+SDict begin 13 H.L end
+ 1023 4905 a 1023
+4905 a
+SDict begin [ /Subtype /Link /Dest (0:COMPILATION-OPTIONS-GENERAL)
+cvn /H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1023 4905 a Black Black 13 w FC(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black 0 TeXcolorgray 3620 4905 a
+SDict begin H.S end
+ 3620
+4905 a FC(105)3746 4905 y
+SDict begin 13 H.L end
+ 3746 4905 a 3746 4905 a
+SDict begin [ /Subtype /Link /Dest (0:COMPILATION-OPTIONS-GENERAL)
+cvn /H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746
+4905 a Black 0 TeXcolorgray 596 5013 a
+SDict begin H.S end
+ 596 5013 a FC(A.2.)g(Optional)h
+(modules)f(to)h(perfor)f(additional)f(checks)2261 5013
+y
+SDict begin 13 H.L end
+ 2261 5013 a 2261 5013 a
+SDict begin [ /Subtype /Link /Dest (0:COMPILATION-CHECKS) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2261 5013 a Black Black 20
+w FC(.)p Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black 0 TeXcolorgray 3620 5013 a
+SDict begin H.S end
+ 3620
+5013 a FC(107)3746 5013 y
+SDict begin 13 H.L end
+ 3746 5013 a 3746 5013 a
+SDict begin [ /Subtype /Link /Dest (0:COMPILATION-CHECKS) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746
+5013 a Black 0 TeXcolorgray 596 5121 a
+SDict begin H.S end
+ 596 5121 a FC(A.3.)h(OpenPGP)h
+(Signatures)f(on)h(Con\002guration/Database)d(Files)2557
+5121 y
+SDict begin 13 H.L end
+ 2557 5121 a 2557 5121 a
+SDict begin [ /Subtype /Link /Dest (0:OPENPGP-SIGNATURES) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2557 5121 a Black Black
+14 w FC(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+0 TeXcolorgray 3620 5121 a
+SDict begin H.S end
+ 3620 5121 a FC(107)3746 5121
+y
+SDict begin 13 H.L end
+ 3746 5121 a 3746 5121 a
+SDict begin [ /Subtype /Link /Dest (0:OPENPGP-SIGNATURES) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 5121 a Black 0 TeXcolorgray
+596 5229 a
+SDict begin H.S end
+ 596 5229 a FC(A.4.)i(Client/Serv)o(er)g(Connecti)n(vity)1650
+5229 y
+SDict begin 13 H.L end
+ 1650 5229 a 1650 5229 a
+SDict begin [ /Subtype /Link /Dest (0:CLIENT-SERVER-CONNECTIVITY) cvn
+/H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1650 5229 a Black Black
+8 w FC(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black 0 TeXcolorgray 3620 5229 a
+SDict begin H.S end
+ 3620 5229 a FC(108)3746
+5229 y
+SDict begin 13 H.L end
+ 3746 5229 a 3746 5229 a
+SDict begin [ /Subtype /Link /Dest (0:CLIENT-SERVER-CONNECTIVITY) cvn
+/H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 5229 a Black 0 TeXcolorgray
+596 5337 a
+SDict begin H.S end
+ 596 5337 a FC(A.5.)g(P)o(aths)938 5337 y
+SDict begin 13 H.L end
+ 938
+5337 a 938 5337 a
+SDict begin [ /Subtype /Link /Dest (0:PATHS) cvn /H /I /Border [0 0
+0] /Color [1 0 0] H.B /ANN pdfmark end
+ 938 5337 a Black Black 15 w FC(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+0 TeXcolorgray 3620 5337 a
+SDict begin H.S end
+ 3620 5337 a FC(109)3746 5337
+y
+SDict begin 13 H.L end
+ 3746 5337 a 3746 5337 a
+SDict begin [ /Subtype /Link /Dest (0:PATHS) cvn /H /I /Border [0 0
+0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 5337 a Black Black 3684
+5805 a Fx(iv)p Black eop end
+%%Page: 5 5
+TeXDict begin 5 4 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black 0
+TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.5) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black 0 TeXcolorgray
+396 309 a
+SDict begin H.S end
+ 396 309 a Fy(B.)21 b(List)g(of)f(command)g(line)h(options)
+1522 309 y
+SDict begin 13 H.L end
+ 1522 309 a 1522 309 a
+SDict begin [ /Subtype /Link /Dest (0:COMMAND-LINE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1522 309 a Black Black
+12 w Fy(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black 0 TeXcolorgray 3620 309 a
+SDict begin H.S end
+ 3620 309 a Fy(111)3746
+309 y
+SDict begin 13 H.L end
+ 3746 309 a 3746 309 a
+SDict begin [ /Subtype /Link /Dest (0:COMMAND-LINE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 309 a Black 0 TeXcolorgray
+596 437 a
+SDict begin H.S end
+ 596 437 a FC(B.1.)f(General)1019 437 y
+SDict begin 13 H.L end
+ 1019
+437 a 1019 437 a
+SDict begin [ /Subtype /Link /Dest (0:COMMAND-LINE-GENERAL) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1019 437 a Black Black 17 w FC(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black 0 TeXcolorgray 3620 437 a
+SDict begin H.S end
+
+3620 437 a FC(111)3746 437 y
+SDict begin 13 H.L end
+ 3746 437 a 3746 437 a
+SDict begin [ /Subtype /Link /Dest (0:COMMAND-LINE-GENERAL) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746
+437 a Black 0 TeXcolorgray 596 544 a
+SDict begin H.S end
+ 596 544 a FC(B.2.)g(samhain)1033
+544 y
+SDict begin 13 H.L end
+ 1033 544 a 1033 544 a
+SDict begin [ /Subtype /Link /Dest (0:SAMHAIN-COMMAND-LINE) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1033 544 a Black Black 3
+w FC(.)p Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black 0 TeXcolorgray 3620
+544 a
+SDict begin H.S end
+ 3620 544 a FC(112)3746 544 y
+SDict begin 13 H.L end
+ 3746 544 a 3746 544
+a
+SDict begin [ /Subtype /Link /Dest (0:SAMHAIN-COMMAND-LINE) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 544 a Black 0 TeXcolorgray 596 652 a
+SDict begin H.S end
+ 596 652 a
+FC(B.3.)g(yule)899 652 y
+SDict begin 13 H.L end
+ 899 652 a 899 652 a
+SDict begin [ /Subtype /Link /Dest (0:COMMAND-LINE-YULE) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 899 652
+a Black Black 12 w FC(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+0 TeXcolorgray 3620 652 a
+SDict begin H.S end
+ 3620 652 a FC(112)3746 652
+y
+SDict begin 13 H.L end
+ 3746 652 a 3746 652 a
+SDict begin [ /Subtype /Link /Dest (0:COMMAND-LINE-YULE) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 652 a Black 0 TeXcolorgray
+396 780 a
+SDict begin H.S end
+ 396 780 a Fy(C.)h(List)g(of)f(con\002guration)f(\002le)i
+(options)1629 780 y
+SDict begin 13 H.L end
+ 1629 780 a 1629 780 a
+SDict begin [ /Subtype /Link /Dest (0:THE-CONFIGURATION-FILE) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1629 780 a
+Black Black 8 w Fy(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black 0 TeXcolorgray 3620
+780 a
+SDict begin H.S end
+ 3620 780 a Fy(113)3746 780 y
+SDict begin 13 H.L end
+ 3746 780 a 3746 780
+a
+SDict begin [ /Subtype /Link /Dest (0:THE-CONFIGURATION-FILE) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 780 a Black 0 TeXcolorgray 596 908 a
+SDict begin H.S end
+ 596 908 a
+FC(C.1.)f(General)1019 908 y
+SDict begin 13 H.L end
+ 1019 908 a 1019 908 a
+SDict begin [ /Subtype /Link /Dest (0:CONFIGFILE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1019
+908 a Black Black 17 w FC(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black 0 TeXcolorgray 3620 908 a
+SDict begin H.S end
+ 3620 908 a FC(113)3746
+908 y
+SDict begin 13 H.L end
+ 3746 908 a 3746 908 a
+SDict begin [ /Subtype /Link /Dest (0:CONFIGFILE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 908 a Black 0 TeXcolorgray
+596 1016 a
+SDict begin H.S end
+ 596 1016 a FC(C.2.)g(Files)h(to)f(check)1217
+1016 y
+SDict begin 13 H.L end
+ 1217 1016 a 1217 1016 a
+SDict begin [ /Subtype /Link /Dest (0:FILES-TO-CHECK) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1217 1016 a Black Black
+5 w FC(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black 0 TeXcolorgray
+3620 1016 a
+SDict begin H.S end
+ 3620 1016 a FC(114)3746 1016 y
+SDict begin 13 H.L end
+ 3746 1016
+a 3746 1016 a
+SDict begin [ /Subtype /Link /Dest (0:FILES-TO-CHECK) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 1016 a Black 0 TeXcolorgray 596 1124
+a
+SDict begin H.S end
+ 596 1124 a FC(C.3.)g(Se)n(v)o(erity)f(of)h(e)n(v)o(ents)1349
+1124 y
+SDict begin 13 H.L end
+ 1349 1124 a 1349 1124 a
+SDict begin [ /Subtype /Link /Dest (0:SEVERITY-OF-EVENTS) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1349 1124 a Black Black
+19 w FC(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black 0 TeXcolorgray 3620
+1124 a
+SDict begin H.S end
+ 3620 1124 a FC(114)3746 1124 y
+SDict begin 13 H.L end
+ 3746 1124 a 3746
+1124 a
+SDict begin [ /Subtype /Link /Dest (0:SEVERITY-OF-EVENTS) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 1124 a Black 0 TeXcolorgray 596 1232 a
+SDict begin H.S end
+ 596
+1232 a FC(C.4.)g(Logging)e(thresholds)1400 1232 y
+SDict begin 13 H.L end
+ 1400
+1232 a 1400 1232 a
+SDict begin [ /Subtype /Link /Dest (0:LOGGING-THRESHOLDS) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1400 1232 a Black Black 9 w FC(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black 0 TeXcolorgray
+3620 1232 a
+SDict begin H.S end
+ 3620 1232 a FC(115)3746 1232 y
+SDict begin 13 H.L end
+ 3746 1232
+a 3746 1232 a
+SDict begin [ /Subtype /Link /Dest (0:LOGGING-THRESHOLDS) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 1232 a Black 0 TeXcolorgray 596 1340
+a
+SDict begin H.S end
+ 596 1340 a FC(C.5.)i(W)-7 b(atching)20 b(login/logout)d(e)n(v)o(ents)
+1728 1340 y
+SDict begin 13 H.L end
+ 1728 1340 a 1728 1340 a
+SDict begin [ /Subtype /Link /Dest (0:WATCHING-LOGIN-LOGOUT-EVENTS)
+cvn /H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1728 1340 a Black
+Black 13 w FC(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+0 TeXcolorgray 3620 1340 a
+SDict begin H.S end
+ 3620 1340 a FC(116)3746 1340
+y
+SDict begin 13 H.L end
+ 3746 1340 a 3746 1340 a
+SDict begin [ /Subtype /Link /Dest (0:WATCHING-LOGIN-LOGOUT-EVENTS)
+cvn /H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 1340 a Black 0 TeXcolorgray
+596 1448 a
+SDict begin H.S end
+ 596 1448 a FC(C.6.)j(Checking)f(for)g(k)o(ernel)h(module)e
+(rootkits)1963 1448 y
+SDict begin 13 H.L end
+ 1963 1448 a 1963 1448 a
+SDict begin [ /Subtype /Link /Dest (0:CHECKING-FOR-KERNEL-MODULE-ROOTKITS)
+cvn /H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1963 1448
+a Black Black 7 w FC(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black 0 TeXcolorgray 3620 1448 a
+SDict begin H.S end
+
+3620 1448 a FC(117)3746 1448 y
+SDict begin 13 H.L end
+ 3746 1448 a 3746 1448
+a
+SDict begin [ /Subtype /Link /Dest (0:CHECKING-FOR-KERNEL-MODULE-ROOTKITS)
+cvn /H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 1448 a Black 0 TeXcolorgray 596 1556 a
+SDict begin H.S end
+ 596 1556
+a FC(C.7.)i(Checking)f(for)g(SUID/SGID)h(\002les)1780
+1556 y
+SDict begin 13 H.L end
+ 1780 1556 a 1780 1556 a
+SDict begin [ /Subtype /Link /Dest (0:CHECKING-FOR-SUID-FILES) cvn
+/H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1780 1556 a Black Black
+3 w FC(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black 0 TeXcolorgray 3620 1556 a
+SDict begin H.S end
+ 3620 1556 a
+FC(117)3746 1556 y
+SDict begin 13 H.L end
+ 3746 1556 a 3746 1556 a
+SDict begin [ /Subtype /Link /Dest (0:CHECKING-FOR-SUID-FILES) cvn
+/H /I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 1556
+a Black 0 TeXcolorgray 596 1664 a
+SDict begin H.S end
+ 596 1664 a FC(C.8.)g(Checking)f(for)g
+(mount)g(options)1690 1664 y
+SDict begin 13 H.L end
+ 1690 1664 a 1690 1664 a
+SDict begin [ /Subtype /Link /Dest (0:CHECKING-MOUNTS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+
+1690 1664 a Black Black 10 w FC(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+0 TeXcolorgray 3620 1664 a
+SDict begin H.S end
+ 3620 1664 a FC(118)3746 1664
+y
+SDict begin 13 H.L end
+ 3746 1664 a 3746 1664 a
+SDict begin [ /Subtype /Link /Dest (0:CHECKING-MOUNTS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 1664 a Black 0 TeXcolorgray
+596 1772 a
+SDict begin H.S end
+ 596 1772 a FC(C.9.)h(Checking)f(for)g(user)h(\002les)1508
+1772 y
+SDict begin 13 H.L end
+ 1508 1772 a 1508 1772 a
+SDict begin [ /Subtype /Link /Dest (0:CHECKING-USERFILES) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1508 1772 a Black Black
+5 w FC(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black 0 TeXcolorgray 3620 1772 a
+SDict begin H.S end
+ 3620
+1772 a FC(118)3746 1772 y
+SDict begin 13 H.L end
+ 3746 1772 a 3746 1772 a
+SDict begin [ /Subtype /Link /Dest (0:CHECKING-USERFILES) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746
+1772 a Black 0 TeXcolorgray 596 1879 a
+SDict begin H.S end
+ 596 1879 a FC(C.10.)f(Database)
+1101 1879 y
+SDict begin 13 H.L end
+ 1101 1879 a 1101 1879 a
+SDict begin [ /Subtype /Link /Dest (0:DATABASE) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1101 1879 a Black
+Black 18 w FC(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black 0 TeXcolorgray 3620
+1879 a
+SDict begin H.S end
+ 3620 1879 a FC(119)3746 1879 y
+SDict begin 13 H.L end
+ 3746 1879 a 3746
+1879 a
+SDict begin [ /Subtype /Link /Dest (0:DATABASE) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 1879 a Black 0 TeXcolorgray 596 1987 a
+SDict begin H.S end
+ 596
+1987 a FC(C.11.)g(Miscellaneous)1277 1987 y
+SDict begin 13 H.L end
+ 1277 1987
+a 1277 1987 a
+SDict begin [ /Subtype /Link /Dest (0:MISCELLANEOUS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1277 1987 a Black Black 8 w FC(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black 0 TeXcolorgray 3620
+1987 a
+SDict begin H.S end
+ 3620 1987 a FC(120)3746 1987 y
+SDict begin 13 H.L end
+ 3746 1987 a 3746
+1987 a
+SDict begin [ /Subtype /Link /Dest (0:MISCELLANEOUS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 1987 a Black 0 TeXcolorgray 596 2095 a
+SDict begin H.S end
+ 596
+2095 a FC(C.12.)g(External)1079 2095 y
+SDict begin 13 H.L end
+ 1079 2095 a 1079
+2095 a
+SDict begin [ /Subtype /Link /Dest (0:EXTERNAL) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1079 2095 a Black Black 19 w FC(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black 0 TeXcolorgray 3620 2095 a
+SDict begin H.S end
+ 3620
+2095 a FC(125)3746 2095 y
+SDict begin 13 H.L end
+ 3746 2095 a 3746 2095 a
+SDict begin [ /Subtype /Link /Dest (0:EXTERNAL) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746
+2095 a Black 0 TeXcolorgray 596 2203 a
+SDict begin H.S end
+ 596 2203 a FC(C.13.)g(Clients)
+1031 2203 y
+SDict begin 13 H.L end
+ 1031 2203 a 1031 2203 a
+SDict begin [ /Subtype /Link /Dest (0:CONFIGFILE-CLIENTS) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1031 2203 a Black
+Black 5 w FC(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+0 TeXcolorgray 3620 2203 a
+SDict begin H.S end
+ 3620 2203 a FC(125)3746 2203
+y
+SDict begin 13 H.L end
+ 3746 2203 a 3746 2203 a
+SDict begin [ /Subtype /Link /Dest (0:CONFIGFILE-CLIENTS) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 2203 a Black 0 TeXcolorgray
+396 2331 a
+SDict begin H.S end
+ 396 2331 a Fy(D.)i(List)g(of)f(database)f(\002elds)1265
+2331 y
+SDict begin 13 H.L end
+ 1265 2331 a 1265 2331 a
+SDict begin [ /Subtype /Link /Dest (0:DATABASE-FIELDS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1265 2331 a Black Black
+20 w Fy(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+0 TeXcolorgray 3620 2331 a
+SDict begin H.S end
+ 3620 2331 a Fy(127)3746 2331
+y
+SDict begin 13 H.L end
+ 3746 2331 a 3746 2331 a
+SDict begin [ /Subtype /Link /Dest (0:DATABASE-FIELDS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 2331 a Black 0 TeXcolorgray
+596 2459 a
+SDict begin H.S end
+ 596 2459 a FC(D.1.)g(General)1023 2459 y
+SDict begin 13 H.L end
+ 1023
+2459 a 1023 2459 a
+SDict begin [ /Subtype /Link /Dest (0:GEN-DB-FIELDS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1023 2459 a Black Black 13 w FC(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black 0 TeXcolorgray 3620
+2459 a
+SDict begin H.S end
+ 3620 2459 a FC(127)3746 2459 y
+SDict begin 13 H.L end
+ 3746 2459 a 3746
+2459 a
+SDict begin [ /Subtype /Link /Dest (0:GEN-DB-FIELDS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 2459 a Black 0 TeXcolorgray 596 2567 a
+SDict begin H.S end
+ 596
+2567 a FC(D.2.)g(Modules)1051 2567 y
+SDict begin 13 H.L end
+ 1051 2567 a 1051
+2567 a
+SDict begin [ /Subtype /Link /Dest (0:MOD-DB-FIELDS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1051 2567 a Black Black 5 w FC(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+0 TeXcolorgray 3620 2567 a
+SDict begin H.S end
+ 3620 2567 a FC(129)3746 2567
+y
+SDict begin 13 H.L end
+ 3746 2567 a 3746 2567 a
+SDict begin [ /Subtype /Link /Dest (0:MOD-DB-FIELDS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 2567 a Black 0 TeXcolorgray
+596 2675 a
+SDict begin H.S end
+ 596 2675 a FC(D.3.)g(Syslog)986 2675 y
+SDict begin 13 H.L end
+ 986
+2675 a 986 2675 a
+SDict begin [ /Subtype /Link /Dest (0:SYS-DB-FIELDS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 986 2675 a Black Black 8 w FC(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black Black(.)p Black Black(.)p Black Black(.)p Black
+Black -1 w(.)p Black Black(.)p Black Black(.)p Black
+Black(.)p Black Black -1 w(.)p Black Black(.)p Black
+Black(.)p Black Black(.)p Black Black -1 w(.)p Black
+Black(.)p Black Black(.)p Black Black(.)p Black Black
+-1 w(.)p Black Black(.)p Black Black(.)p Black Black(.)p
+Black Black -1 w(.)p Black Black(.)p Black Black(.)p
+Black Black(.)p Black Black -1 w(.)p Black Black(.)p
+Black Black(.)p Black Black(.)p Black Black -1 w(.)p
+Black 0 TeXcolorgray 3620 2675 a
+SDict begin H.S end
+ 3620 2675 a FC(129)3746
+2675 y
+SDict begin 13 H.L end
+ 3746 2675 a 3746 2675 a
+SDict begin [ /Subtype /Link /Dest (0:SYS-DB-FIELDS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3746 2675 a Black Black
+3707 5805 a Fx(v)p Black eop end
+%%Page: 1 6
+TeXDict begin 1 5 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black 0
+TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.1) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black -2 226
+a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:INTRO) cvn H.B /DEST pdfmark
+end
+ -2 226 a 125 x
+Fz(Chapter)48 b(1.)f(Intr)m(oduction)1887 351 y
+SDict begin H.S end
+ 1887
+351 a 1887 351 a
+SDict begin 26.957 H.A end
+ 1887 351 a 1887 351 a
+SDict begin [ /View [/XYZ H.V] /Dest (3.0) cvn H.B /DEST pdfmark end
+ 1887 351 a -2
+607 a
+SDict begin H.S end
+ -2 607 a -2 607 a
+SDict begin 13 H.A end
+ -2 607 a -2 607 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:14) cvn H.B /DEST pdfmark end
+ -2 607 a -2
+607 a
+SDict begin H.S end
+ -2 607 a -2 607 a
+SDict begin 13 H.A end
+ -2 607 a -2 607 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:15) cvn H.B /DEST pdfmark end
+ -2 607 a 396
+679 a FC(samhain)20 b(is)h(a)f(data)h(inte)o(grity)d(and)i(intrusion)f
+(alert)h(system)h(that)f(can)g(be)g(used)g(on)g(single)g(hosts)g(as)h
+(well)g(as)g(for)396 787 y(lar)o(ge,)e(UNIX-based)g(netw)o(orks.)1392
+787 y
+SDict begin H.S end
+ 1392 787 a 1392 787 a
+SDict begin 13 H.A end
+ 1392 787 a 1392 787 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:16) cvn H.B /DEST pdfmark end
+ 1392
+787 a FC(samhain)h(of)n(fers)f(se)n(v)o(eral)g(features)h(to)g(support)
+f(and)h(f)o(acilitate)g(centralized)396 895 y(monitoring.)-2
+1079 y
+SDict begin H.S end
+ -2 1079 a -2 1079 a
+SDict begin 13 H.A end
+ -2 1079 a -2 1079 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:17) cvn H.B /DEST pdfmark end
+ -2 1079
+a 396 1169 a FC(In)g(particular)m(,)843 1169 y
+SDict begin H.S end
+ 843 1169
+a 843 1169 a
+SDict begin 13 H.A end
+ 843 1169 a 843 1169 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:18) cvn H.B /DEST pdfmark end
+ 843 1169 a FC(samhain)f(can)h
+(optionally)e(be)j(used)f(as)g(a)h(client/serv)o(er)e(system)h(with)h
+(monitoring)c(clients)k(on)396 1277 y(indi)n(vidual)e(hosts,)h(and)g(a)
+g(central)g(log)g(serv)o(er)f(that)h(collects)h(the)f(messages)g(of)g
+(all)h(clients.)-2 1461 y
+SDict begin H.S end
+ -2 1461 a -2 1461 a
+SDict begin 13 H.A end
+ -2 1461
+a -2 1461 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:19) cvn H.B /DEST pdfmark end
+ -2 1461 a 396 1551 a FC(The)e(con\002guration)d(and)i
+(database)g(\002les)h(for)f(each)h(client)f(can)h(be)f(stored)h
+(centrally)e(and)h(do)n(wnloaded)e(by)j(clients)396 1659
+y(from)g(the)i(log)e(serv)o(er)-5 b(.)20 b(Using)g(conditionals)f
+(\(based)g(on)h(hostname,)f(machine)g(type,)g(OS,)i(and)e(OS)i
+(release,)f(all)396 1767 y(with)h(re)o(gular)d(e)o(xpresions\))g(a)j
+(single)f(con\002guration)e(\002le)j(for)e(all)i(hosts)f(on)g(the)g
+(netw)o(ork)f(can)h(be)g(constructed.)-2 1951 y
+SDict begin H.S end
+ -2 1951
+a -2 1951 a
+SDict begin 13 H.A end
+ -2 1951 a -2 1951 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:20) cvn H.B /DEST pdfmark end
+ -2 1951 a 396 2041 a
+FC(The)g(client)g(\(or)g(standalone\))e(part)i(is)h(called)1717
+2041 y
+SDict begin H.S end
+ 1717 2041 a 1717 2041 a
+SDict begin 13 H.A end
+ 1717 2041 a 1717 2041
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:21) cvn H.B /DEST pdfmark end
+ 1717 2041 a FC(samhain,)f(while)g(the)g(serv)o(er)f(is)i(referred)e
+(to)h(as)3120 2041 y
+SDict begin H.S end
+ 3120 2041 a 3120 2041 a
+SDict begin 13 H.A end
+ 3120 2041
+a 3120 2041 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:22) cvn H.B /DEST pdfmark end
+ 3120 2041 a FC(yule.)g(Both)g(can)g(run)396
+2149 y(as)h(daemon)e(processes.)p Black 3703 5805 a Fx(1)p
+Black eop end
+%%Page: 2 7
+TeXDict begin 2 6 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black 0
+TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.2) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black -2 226
+a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:INSTALLATION) cvn H.B /DEST
+pdfmark end
+ -2 226 a 125 x
+Fz(Chapter)48 b(2.)f(Compiling)i(and)f(installing)2887
+351 y
+SDict begin H.S end
+ 2887 351 a 2887 351 a
+SDict begin 26.957 H.A end
+ 2887 351 a 2887 351 a
+SDict begin [ /View [/XYZ H.V] /Dest (4.0) cvn H.B /DEST pdfmark end
+ 2887
+351 a -2 443 a
+SDict begin H.S end
+ -2 443 a -2 443 a
+SDict begin 11.7 H.A end
+ -2 443 a -2 443 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:25) cvn H.B /DEST pdfmark end
+ -2
+443 a -2 568 a
+SDict begin H.S end
+ -2 568 a -2 568 a
+SDict begin 11.7 H.A end
+ -2 568 a -2 568 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:27) cvn H.B /DEST pdfmark end
+ -2
+568 a 562 627 a Fw(Samhain)20 b(as)f(a)i(c)o(lient/ser)q(ver)16
+b(system:)j Fv(This)h(chapter)f(f)n(ocuses)h(on)g(b)o(uilding)d(a)j
+(standalone)d(samhain)562 724 y(e)n(x)n(ecutab)o(le)o(.)g(F)n(or)j(a)g
+(client/ser)r(v)n(er)f(system,)i(client)e(and)h(ser)r(v)n(er)g(e)n(x)n
+(ecutab)o(le)d(are)j(b)o(uilt)f(from)h(the)f(same)562
+821 y(source)o(,)h(b)o(ut)f(with)h(diff)n(erent)d(options)i(f)n(or)h
+(the)f('con\002gure')f(scr)q(ipt)j(\(see)p 0 TeXcolorgray
+2612 821 a
+SDict begin H.S end
+ 2612 821 a Fv(Section)e(2.4)2987 821 y
+SDict begin 11.7 H.L end
+ 2987
+821 a 2987 821 a
+SDict begin [ /Subtype /Link /Dest (0:INSTALLATION-CONFIGURE) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2987 821 a Black -1 w Fv(>\).)-2 879
+y
+SDict begin H.S end
+ -2 879 a -2 879 a
+SDict begin 11.7 H.A end
+ -2 879 a -2 879 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:29) cvn H.B /DEST pdfmark end
+ -2 879 a 562 960
+a Fv(Please)g(ref)n(er)h(to)g(the)f(chapter)p 0 TeXcolorgray
+1461 960 a
+SDict begin H.S end
+ 1461 960 a Fv(Chapter)g(6)1790 960 y
+SDict begin 11.7 H.L end
+ 1790
+960 a 1790 960 a
+SDict begin [ /Subtype /Link /Dest (0:YULE) cvn /H /I /Border [0 0
+0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1790 960 a Black 20 w Fv(f)n(or)h(an)g(e)n(xplanation)
+c(of)k(the)g(client/ser)r(v)n(er)f(setup)m(.)39 1109
+y
+SDict begin H.S end
+ 39 1109 a 39 1109 a
+SDict begin 13 H.A end
+ 39 1109 a 39 1109 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:INSTALLATION-OVERVIEW) cvn
+H.B /DEST pdfmark end
+ 39 1109 a -2
+1486 a Fu(2.1.)39 b(Over)q(vie)n(w)916 1486 y
+SDict begin H.S end
+ 916 1486
+a 916 1486 a
+SDict begin 22.464 H.A end
+ 916 1486 a 916 1486 a
+SDict begin [ /View [/XYZ H.V] /Dest (4.1.1) cvn H.B /DEST pdfmark
+end
+ 916 1486 a -2 1654
+a
+SDict begin H.S end
+ -2 1654 a -2 1654 a
+SDict begin 13 H.A end
+ -2 1654 a -2 1654 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:33) cvn H.B /DEST pdfmark end
+ -2 1654 a 396
+1760 a FC(Do)n(wnload:)-2 1844 y
+SDict begin H.S end
+ -2 1844 a -2 1844 a
+SDict begin 11.7 H.A end
+
+-2 1844 a -2 1844 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:34) cvn H.B /DEST pdfmark end
+ -2 1844 a 531 1940 a
+SDict begin H.S end
+ 531 1940 a 531
+1940 a
+SDict begin 11.7 H.A end
+ 531 1940 a 531 1940 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:35) cvn H.B /DEST pdfmark end
+ 531 1940 a Ft(sh$)692 1940
+y
+SDict begin H.S end
+ 692 1940 a 692 1940 a
+SDict begin 11.7 H.A end
+ 692 1940 a 692 1940 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:36) cvn H.B /DEST pdfmark end
+ 692 1940
+a Fs(wget)j(http://la-samhna.de)q(/sa)q(mha)q(in/)q(sam)q(hai)q(n-c)q
+(urr)q(en)q(t.t)q(ar.)q(gz)-2 2394 y
+SDict begin H.S end
+ -2 2394 a -2 2394
+a
+SDict begin 13 H.A end
+ -2 2394 a -2 2394 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:37) cvn H.B /DEST pdfmark end
+ -2 2394 a 396 2502 a FC(Extract)20
+b(\(and)f(v)o(erify)g(PGP)i(signature\):)-2 2603 y
+SDict begin H.S end
+ -2
+2603 a -2 2603 a
+SDict begin 11.7 H.A end
+ -2 2603 a -2 2603 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:38) cvn H.B /DEST pdfmark end
+ -2 2603 a 531 2683
+a
+SDict begin H.S end
+ 531 2683 a 531 2683 a
+SDict begin 11.7 H.A end
+ 531 2683 a 531 2683 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:39) cvn H.B /DEST pdfmark end
+ 531 2683
+a Ft(sh$)692 2683 y
+SDict begin H.S end
+ 692 2683 a 692 2683 a
+SDict begin 11.7 H.A end
+ 692 2683 a
+692 2683 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:40) cvn H.B /DEST pdfmark end
+ 692 2683 a Fs(gunzip)43 b(-c)e(samhain-current.tar.)q(gz)47
+b(|)40 b(tar)i(xvf)f(-)531 2780 y
+SDict begin H.S end
+ 531 2780 a 531 2780
+a
+SDict begin 11.7 H.A end
+ 531 2780 a 531 2780 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:41) cvn H.B /DEST pdfmark end
+ 531 2780 a Ft(sh$)692 2780 y
+SDict begin H.S end
+
+692 2780 a 692 2780 a
+SDict begin 11.7 H.A end
+ 692 2780 a 692 2780 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:42) cvn H.B /DEST pdfmark end
+ 692 2780
+a Fs(gpg)h(--verify)h(samhain-N.N.N.tar.gz)q(.as)q(c)j
+(samhain-N.N.N.tar)531 2877 y
+SDict begin H.S end
+ 531 2877 a 531 2877 a
+SDict begin 11.7 H.A end
+ 531
+2877 a 531 2877 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:43) cvn H.B /DEST pdfmark end
+ 531 2877 a Ft(sh$)692 2877 y
+SDict begin H.S end
+ 692 2877
+a 692 2877 a
+SDict begin 11.7 H.A end
+ 692 2877 a 692 2877 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:44) cvn H.B /DEST pdfmark end
+ 692 2877 a Fs(gunzip)d
+(samhain-N.N.N.tar.gz)k(|)41 b(tar)g(xvf)g(-)531 2974
+y
+SDict begin H.S end
+ 531 2974 a 531 2974 a
+SDict begin 11.7 H.A end
+ 531 2974 a 531 2974 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:45) cvn H.B /DEST pdfmark end
+ 531 2974
+a Ft(sh$)692 2974 y
+SDict begin H.S end
+ 692 2974 a 692 2974 a
+SDict begin 11.7 H.A end
+ 692 2974 a
+692 2974 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:46) cvn H.B /DEST pdfmark end
+ 692 2974 a Fs(cd)g(samhain-N.N.N)-2 3428 y
+SDict begin H.S end
+
+-2 3428 a -2 3428 a
+SDict begin 13 H.A end
+ -2 3428 a -2 3428 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:47) cvn H.B /DEST pdfmark end
+ -2 3428 a 396
+3536 a FC(Con\002gure:)-2 3637 y
+SDict begin H.S end
+ -2 3637 a -2 3637 a
+SDict begin 11.7 H.A end
+
+-2 3637 a -2 3637 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:48) cvn H.B /DEST pdfmark end
+ -2 3637 a 531 3716 a
+SDict begin H.S end
+ 531 3716 a 531
+3716 a
+SDict begin 11.7 H.A end
+ 531 3716 a 531 3716 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:49) cvn H.B /DEST pdfmark end
+ 531 3716 a Ft(sh$)692 3716
+y
+SDict begin H.S end
+ 692 3716 a 692 3716 a
+SDict begin 11.7 H.A end
+ 692 3716 a 692 3716 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:50) cvn H.B /DEST pdfmark end
+ 692 3716
+a Fs(./configure)-2 4170 y
+SDict begin H.S end
+ -2 4170 a -2 4170 a
+SDict begin 13 H.A end
+ -2 4170
+a -2 4170 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:51) cvn H.B /DEST pdfmark end
+ -2 4170 a 396 4278 a FC(Compile:)-2 4379
+y
+SDict begin H.S end
+ -2 4379 a -2 4379 a
+SDict begin 11.7 H.A end
+ -2 4379 a -2 4379 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:52) cvn H.B /DEST pdfmark end
+ -2 4379 a 531
+4458 a
+SDict begin H.S end
+ 531 4458 a 531 4458 a
+SDict begin 11.7 H.A end
+ 531 4458 a 531 4458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:53) cvn H.B /DEST pdfmark end
+ 531
+4458 a Ft(sh$)692 4458 y
+SDict begin H.S end
+ 692 4458 a 692 4458 a
+SDict begin 11.7 H.A end
+ 692 4458
+a 692 4458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:54) cvn H.B /DEST pdfmark end
+ 692 4458 a Fs(make)-2 4913 y
+SDict begin H.S end
+ -2 4913 a -2
+4913 a
+SDict begin 13 H.A end
+ -2 4913 a -2 4913 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:55) cvn H.B /DEST pdfmark end
+ -2 4913 a 396 5020 a FC(Install:)-2
+5104 y
+SDict begin H.S end
+ -2 5104 a -2 5104 a
+SDict begin 11.7 H.A end
+ -2 5104 a -2 5104 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:56) cvn H.B /DEST pdfmark end
+ -2 5104
+a 531 5201 a
+SDict begin H.S end
+ 531 5201 a 531 5201 a
+SDict begin 11.7 H.A end
+ 531 5201 a 531 5201
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:57) cvn H.B /DEST pdfmark end
+ 531 5201 a Ft(sh$)692 5201 y
+SDict begin H.S end
+ 692 5201 a 692 5201 a
+SDict begin 11.7 H.A end
+
+692 5201 a 692 5201 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:58) cvn H.B /DEST pdfmark end
+ 692 5201 a Fs(make)h(install)p
+Black -2 5805 a
+SDict begin H.S end
+ -2 5805 a -2 5805 a
+SDict begin 13 H.A end
+ -2 5805 a -2 5805
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:59) cvn H.B /DEST pdfmark end
+ -2 5805 a 3703 5874 a Fx(2)p Black eop end
+%%Page: 3 8
+TeXDict begin 3 7 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black 0
+TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.3) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2538 104 a
+Fx(Chapter)20 b(2.)g(Compiling)f(and)h(installing)p Black
+396 583 a FC(Customize:)531 763 y Ft(sh$)692 763 y
+SDict begin H.S end
+ 692
+763 a 692 763 a
+SDict begin 11.7 H.A end
+ 692 763 a 692 763 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:62) cvn H.B /DEST pdfmark end
+ 692 763 a Fs(vi)41
+b(/etc/samhainrc)-2 1217 y
+SDict begin H.S end
+ -2 1217 a -2 1217 a
+SDict begin 13 H.A end
+ -2 1217
+a -2 1217 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:63) cvn H.B /DEST pdfmark end
+ -2 1217 a 396 1325 a FC(Initialize)20 b(the)g(baseline)g
+(database:)-2 1409 y
+SDict begin H.S end
+ -2 1409 a -2 1409 a
+SDict begin 11.7 H.A end
+ -2 1409 a -2
+1409 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:64) cvn H.B /DEST pdfmark end
+ -2 1409 a 531 1505 a
+SDict begin H.S end
+ 531 1505 a 531 1505 a
+SDict begin 11.7 H.A end
+ 531
+1505 a 531 1505 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:65) cvn H.B /DEST pdfmark end
+ 531 1505 a Ft(sh$)692 1505 y
+SDict begin H.S end
+ 692 1505
+a 692 1505 a
+SDict begin 11.7 H.A end
+ 692 1505 a 692 1505 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:66) cvn H.B /DEST pdfmark end
+ 692 1505 a Fs(samhain)43
+b(-t)e(init)-2 1959 y
+SDict begin H.S end
+ -2 1959 a -2 1959 a
+SDict begin 13 H.A end
+ -2 1959 a -2
+1959 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:67) cvn H.B /DEST pdfmark end
+ -2 1959 a 396 2067 a FC(Start)21 b(the)f(samhain)g(daemon:)-2
+2151 y
+SDict begin H.S end
+ -2 2151 a -2 2151 a
+SDict begin 11.7 H.A end
+ -2 2151 a -2 2151 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:68) cvn H.B /DEST pdfmark end
+ -2 2151
+a 531 2247 a
+SDict begin H.S end
+ 531 2247 a 531 2247 a
+SDict begin 11.7 H.A end
+ 531 2247 a 531 2247
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:69) cvn H.B /DEST pdfmark end
+ 531 2247 a Ft(sh$)692 2247 y
+SDict begin H.S end
+ 692 2247 a 692 2247 a
+SDict begin 11.7 H.A end
+
+692 2247 a 692 2247 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:70) cvn H.B /DEST pdfmark end
+ 692 2247 a Fs(samhain)43 b(-t)e(check)h(-D)-2
+2545 y
+SDict begin H.S end
+ -2 2545 a -2 2545 a
+SDict begin 13 H.A end
+ -2 2545 a -2 2545 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:INSTALLATION-REQUIREMENTS)
+cvn H.B /DEST pdfmark end
+ -2 2545
+a 378 x Fu(2.2.)d(Requirements)1237 2923 y
+SDict begin H.S end
+ 1237 2923
+a 1237 2923 a
+SDict begin 22.464 H.A end
+ 1237 2923 a 1237 2923 a
+SDict begin [ /View [/XYZ H.V] /Dest (4.2.1) cvn H.B /DEST pdfmark
+end
+ 1237 2923 a -2
+3119 a
+SDict begin H.S end
+ -2 3119 a -2 3119 a
+SDict begin 13 H.A end
+ -2 3119 a -2 3119 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:73) cvn H.B /DEST pdfmark end
+ -2 3119
+a -2 3119 a
+SDict begin H.S end
+ -2 3119 a -2 3119 a
+SDict begin 13 H.A end
+ -2 3119 a -2 3119 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:74) cvn H.B /DEST pdfmark end
+ -2
+3119 a -2 3243 a
+SDict begin H.S end
+ -2 3243 a -2 3243 a
+SDict begin 13 H.A end
+ -2 3243 a -2 3243
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:76) cvn H.B /DEST pdfmark end
+ -2 3243 a 396 3321 a FC(POSIX)21 b(en)m(vironment)-2
+3322 y
+SDict begin H.S end
+ -2 3322 a -2 3322 a
+SDict begin 13 H.A end
+ -2 3322 a -2 3322 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:77) cvn H.B /DEST pdfmark end
+ -2 3322
+a Black Black 562 3471 a
+SDict begin H.S end
+ 562 3471 a 562 3471 a
+SDict begin 13 H.A end
+ 562 3471
+a 562 3471 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:78) cvn H.B /DEST pdfmark end
+ 562 3471 a 562 3471 a
+SDict begin H.S end
+ 562 3471 a 562 3471
+a
+SDict begin 13 H.A end
+ 562 3471 a 562 3471 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:79) cvn H.B /DEST pdfmark end
+ 562 3471 a FC(Samhain)f(will)h(only)e(compile)g
+(and)h(run)f(in)i(a)1895 3471 y
+SDict begin H.S end
+ 1895 3471 a 1895 3471
+a
+SDict begin 13 H.A end
+ 1895 3471 a 1895 3471 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:80) cvn H.B /DEST pdfmark end
+ 1895 3471 a Fx(POSIX)i FC(operating)18
+b(system,)j(or)f(an)g(emulation)f(thereof)f(\(e.g.)562
+3579 y(the)j(free)834 3579 y
+SDict begin H.S end
+ 834 3579 a 834 3579 a
+SDict begin 13 H.A end
+ 834
+3579 a 834 3579 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:81) cvn H.B /DEST pdfmark end
+ 834 3579 a FC(Cygwin)f(POSIX)h(emulation)d(for)i(W)m
+(indo)n(ws)g(XP/2000\).)-2 3680 y
+SDict begin H.S end
+ -2 3680 a -2 3680 a
+SDict begin 13 H.A end
+
+-2 3680 a -2 3680 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:83) cvn H.B /DEST pdfmark end
+ -2 3680 a 396 3770 a FC(ANSI)h(C)g(compiler)e(and)g
+(b)n(uild)h(system)-2 3788 y
+SDict begin H.S end
+ -2 3788 a -2 3788 a
+SDict begin 13 H.A end
+ -2 3788
+a -2 3788 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:84) cvn H.B /DEST pdfmark end
+ -2 3788 a Black Black 562 3919 a
+SDict begin H.S end
+ 562 3919
+a 562 3919 a
+SDict begin 13 H.A end
+ 562 3919 a 562 3919 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:85) cvn H.B /DEST pdfmark end
+ 562 3919 a FC(Y)-9
+b(ou)20 b(need)f(an)994 3919 y
+SDict begin H.S end
+ 994 3919 a 994 3919 a
+SDict begin 13 H.A end
+
+994 3919 a 994 3919 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:86) cvn H.B /DEST pdfmark end
+ 994 3919 a Fx(ANSI)h(C)h(compiler)g
+FC(to)g(compile)e(samhain.)g(The)2425 3919 y
+SDict begin H.S end
+ 2425 3919
+a 2425 3919 a
+SDict begin 13 H.A end
+ 2425 3919 a 2425 3919 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:87) cvn H.B /DEST pdfmark end
+ 2425 3919 a FC(GNU)i(C)g
+(compiler)e(\(GCC\))562 4027 y(\(http://www)-5 b(.gnu.or)o(g/softw)o
+(are/gcc)o(/gcc.)o(html\))14 b(from)19 b(the)2349 4027
+y
+SDict begin H.S end
+ 2349 4027 a 2349 4027 a
+SDict begin 13 H.A end
+ 2349 4027 a 2349 4027 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:88) cvn H.B /DEST pdfmark end
+ 2349
+4027 a FC(Free)h(Softw)o(are)f(F)o(oundation)f(\(FSF\))562
+4135 y(\(http://www)-5 b(.gnu.or)o(g/\))16 b(is)21 b(\002ne.)f(If)g
+(your)f(v)o(endor')-5 b(s)18 b(compiler)h(is)i(ANSI)g(compliant,)d(you)
+h(should)h(gi)n(v)o(e)f(it)i(a)562 4243 y(try)-5 b(,)20
+b(since)g(it)h(might)e(produce)g(f)o(aster)h(code.)f(Also)i(you)e(will)
+i(need)f(to)g(ha)n(v)o(e)f(standard)g(tools)i(lik)o(e)3393
+4243 y
+SDict begin H.S end
+ 3393 4243 a 3393 4243 a
+SDict begin 13 H.A end
+ 3393 4243 a 3393 4243
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:89) cvn H.B /DEST pdfmark end
+ 3393 4243 a FC(mak)o(e)f(in)562 4351 y(your)f(P)-8
+b(A)f(TH)21 b(\(the)f(POSIX)g(standard)f(actually)h(mandates)f(the)i
+(presence)e(of)h(the)2932 4351 y
+SDict begin H.S end
+ 2932 4351 a 2932 4351
+a
+SDict begin 13 H.A end
+ 2932 4351 a 2932 4351 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:90) cvn H.B /DEST pdfmark end
+ 2932 4351 a FC(mak)o(e)g(utility\).)-2
+4452 y
+SDict begin H.S end
+ -2 4452 a -2 4452 a
+SDict begin 13 H.A end
+ -2 4452 a -2 4452 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:92) cvn H.B /DEST pdfmark end
+ -2 4452
+a 396 4542 a FC([OPTION)m(AL])f(GnuPG)-2 4555 y
+SDict begin H.S end
+ -2 4555
+a -2 4555 a
+SDict begin 13 H.A end
+ -2 4555 a -2 4555 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:93) cvn H.B /DEST pdfmark end
+ -2 4555 a Black Black
+562 4691 a
+SDict begin H.S end
+ 562 4691 a 562 4691 a
+SDict begin 13 H.A end
+ 562 4691 a 562 4691
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:94) cvn H.B /DEST pdfmark end
+ 562 4691 a FC(If)h(you)g(w)o(ant)g(to)g(use)h(signed)e
+(con\002guration)f(and)h(database)h(\002les)h(\(this)g(is)g(an)f
+(optional)f(feature\),)3425 4691 y
+SDict begin H.S end
+ 3425 4691 a 3425 4691
+a
+SDict begin 13 H.A end
+ 3425 4691 a 3425 4691 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:95) cvn H.B /DEST pdfmark end
+ 3425 4691 a FC(GnuPG)562 4799
+y(\(gpg\))g(must)h(be)g(installed.)-2 4959 y
+SDict begin H.S end
+ -2 4959
+a -2 4959 a
+SDict begin 13 H.A end
+ -2 4959 a -2 4959 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:INSTALLATION-DOWNLOAD) cvn
+H.B /DEST pdfmark end
+ -2 4959 a Black 3703
+5805 a Fx(3)p Black eop end
+%%Page: 4 9
+TeXDict begin 4 8 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black 0
+TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.4) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2538 104 a
+Fx(Chapter)20 b(2.)g(Compiling)f(and)h(installing)p Black
+-2 327 a Fu(2.3.)39 b(Do)n(wnload)e(and)i(e)n(xtract)1765
+327 y
+SDict begin H.S end
+ 1765 327 a 1765 327 a
+SDict begin 22.464 H.A end
+ 1765 327 a 1765 327 a
+SDict begin [ /View [/XYZ H.V] /Dest (4.3.1) cvn H.B /DEST pdfmark
+end
+ 1765
+327 a -2 495 a
+SDict begin H.S end
+ -2 495 a -2 495 a
+SDict begin 13 H.A end
+ -2 495 a -2 495 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:98) cvn H.B /DEST pdfmark end
+ -2
+495 a 396 601 a FC(The)20 b(current)f(v)o(ersion)g(of)1156
+601 y
+SDict begin H.S end
+ 1156 601 a 1156 601 a
+SDict begin 13 H.A end
+ 1156 601 a 1156 601 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:99) cvn H.B /DEST pdfmark end
+ 1156
+601 a FC(samhain)g(can)h(be)g(do)n(wnloaded)e(from)396
+709 y
+SDict begin H.S end
+ 396 709 a 396 709 a
+SDict begin 13 H.A end
+ 396 709 a 396 709 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:100) cvn H.B /DEST pdfmark
+end
+ 396 709
+a FC(http://www)-5 b(.la-samhna.de/samhain/samhain-)o(cur)o(ren)o
+(t.tar)g(.gz)o(.)15 b(Older)20 b(v)o(ersions)f(of)2933
+709 y
+SDict begin H.S end
+ 2933 709 a 2933 709 a
+SDict begin 13 H.A end
+ 2933 709 a 2933 709 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:101) cvn H.B /DEST pdfmark
+end
+ 2933
+709 a FC(samhain)g(are)h(a)n(v)n(ailable)396 817 y(from)f(the)701
+817 y
+SDict begin H.S end
+ 701 817 a 701 817 a
+SDict begin 13 H.A end
+ 701 817 a 701 817 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:102) cvn H.B /DEST pdfmark
+end
+ 701 817
+a FC(online)g(archi)n(v)o(e)g(\(http://www)-5 b
+(.la-samhna.de/samhain/arch)o(i)n(v)n(e.h)o(tml\).)14
+b(Y)-9 b(ou)20 b(should)f(al)o(w)o(ays)i(mak)o(e)396
+925 y(sure)f(that)h(you)e(ha)n(v)o(e)h(a)g(complete)f(and)h
+(unmodi\002ed)e(v)o(ersion)h(of)2297 925 y
+SDict begin H.S end
+ 2297 925 a
+2297 925 a
+SDict begin 13 H.A end
+ 2297 925 a 2297 925 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:103) cvn H.B /DEST pdfmark
+end
+ 2297 925 a FC(samhain.)g(This)h(can)g
+(be)g(done)g(by)f(v)o(erifying)f(the)396 1033 y(PGP)j(signature)e
+(\(see)i(belo)n(w\).)-2 1217 y
+SDict begin H.S end
+ -2 1217 a -2 1217 a
+SDict begin 13 H.A end
+ -2
+1217 a -2 1217 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:104) cvn H.B /DEST pdfmark
+end
+ -2 1217 a 396 1307 a FC(The)f(do)n(wnloaded)e(tarball)
+h(will)i(contain)f(e)o(xactly)f(tw)o(o)h(\002les:)2225
+1307 y
+SDict begin H.S end
+ 2225 1307 a 2225 1307 a
+SDict begin 13 H.A end
+ 2225 1307 a 2225 1307
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:105) cvn H.B /DEST pdfmark
+end
+ 2225 1307 a -2 1335 a
+SDict begin H.S end
+ -2 1335 a -2 1335 a
+SDict begin 13 H.A end
+ -2 1335 a
+-2 1335 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:106) cvn H.B /DEST pdfmark
+end
+ -2 1335 a Black 463 1477 a FC(1.)p Black 546
+1477 a
+SDict begin H.S end
+ 546 1477 a 546 1477 a
+SDict begin 13 H.A end
+ 546 1477 a 546 1477 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:107) cvn H.B /DEST pdfmark
+end
+ 546
+1477 a FC(A)g(tarball)g(named)f(samhain-N.N.N.tar)-5
+b(.gz)18 b(\(N.N.N)h(is)j(the)e(v)o(ersion)f(number\))f(containing)g
+(the)i(source)546 1585 y(tree,)g(and)-2 1597 y
+SDict begin H.S end
+ -2 1597
+a -2 1597 a
+SDict begin 13 H.A end
+ -2 1597 a -2 1597 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:108) cvn H.B /DEST pdfmark
+end
+ -2 1597 a Black 463 1734
+a FC(2.)p Black 546 1734 a
+SDict begin H.S end
+ 546 1734 a 546 1734 a
+SDict begin 13 H.A end
+ 546
+1734 a 546 1734 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:109) cvn H.B /DEST pdfmark
+end
+ 546 1734 a FC(the)g(PGP)h(signature)e(for)h(this)g
+(tarball,)g(i.e.)g(a)h(\002le)g(named)e(samhain-N.N.N.tar)-5
+b(.gz.asc.)-2 1835 y
+SDict begin H.S end
+ -2 1835 a -2 1835 a
+SDict begin 11.7 H.A end
+ -2 1835 a -2
+1835 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:110) cvn H.B /DEST pdfmark
+end
+ -2 1835 a -2 1835 a
+SDict begin H.S end
+ -2 1835 a -2 1835 a
+SDict begin 11.7 H.A end
+ -2 1835
+a -2 1835 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:111) cvn H.B /DEST pdfmark
+end
+ -2 1835 a 396 1915 a Ft(sh$)558 1915 y
+SDict begin H.S end
+ 558
+1915 a 558 1915 a
+SDict begin 11.7 H.A end
+ 558 1915 a 558 1915 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:112) cvn H.B /DEST pdfmark
+end
+ 558 1915 a Fs(wget)41
+b(http://la-samhna.d)q(e/s)q(amh)q(ain)q(/s)q(amh)q(ain)q(-cu)q(rre)q
+(nt.)q(tar)q(.gz)-2 1924 y
+SDict begin H.S end
+ -2 1924 a -2 1924 a
+SDict begin 11.7 H.A end
+ -2 1924
+a -2 1924 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:113) cvn H.B /DEST pdfmark
+end
+ -2 1924 a 396 2012 a Ft(sh$)558 2012 y
+SDict begin H.S end
+ 558
+2012 a 558 2012 a
+SDict begin 11.7 H.A end
+ 558 2012 a 558 2012 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:114) cvn H.B /DEST pdfmark
+end
+ 558 2012 a Fs(gunzip)h
+(samhain-current.tar)q(.gz)47 b(|)41 b(tar)g(tvf)h(-)396
+2109 y Fr(-rw-r--r--)h(500/100)268 b(920753)44 b(2004-05-24)f(19:57:55)
+h(samhain-1.8.8.tar.gz)396 2206 y(-rw-r--r--)f(500/100)403
+b(189)44 b(2004-05-24)f(19:58:29)h(samhain-1.8.8.tar.gz.asc)-2
+2563 y
+SDict begin H.S end
+ -2 2563 a -2 2563 a
+SDict begin 13 H.A end
+ -2 2563 a -2 2563 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:115) cvn H.B /DEST pdfmark
+end
+ -2 2563
+a 396 2671 a FC(Y)-9 b(ou)20 b(might)f(wish)i(to)f(v)o(erify)f(the)h
+(PGP)h(signature)e(no)n(w)-5 b(,)19 b(in)i(order)e(to)h(mak)o(e)g(sure)
+g(that)g(you)f(ha)n(v)o(e)h(recei)n(v)o(ed)f(a)396 2779
+y(complete)g(and)h(unmodi\002ed)e(v)o(ersion)h(of)1615
+2779 y
+SDict begin H.S end
+ 1615 2779 a 1615 2779 a
+SDict begin 13 H.A end
+ 1615 2779 a 1615 2779
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:116) cvn H.B /DEST pdfmark
+end
+ 1615 2779 a FC(samhain.)g(All)2060 2779 y
+SDict begin H.S end
+ 2060 2779
+a 2060 2779 a
+SDict begin 13 H.A end
+ 2060 2779 a 2060 2779 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:117) cvn H.B /DEST pdfmark
+end
+ 2060 2779 a FC(samhain)g
+(releases)i(are)f(signed)g(with)g(the)g(k)o(e)o(y)396
+2887 y(0F571F6C)f(\(Rainer)h(W)m(ichmann\).)-2 3068 y
+SDict begin H.S end
+
+-2 3068 a -2 3068 a
+SDict begin 13 H.A end
+ -2 3068 a -2 3068 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:118) cvn H.B /DEST pdfmark
+end
+ -2 3068 a 396
+3161 a FC(K)n(e)o(y)g(\002ngerprint)e(=)j(EF6C)f(EF54)g(701A)f(0AFD)i
+(B86A)f(F4C3)g(1AAD)g(26C8)g(0F57)f(1F6C)-2 3262 y
+SDict begin H.S end
+ -2
+3262 a -2 3262 a
+SDict begin 11.7 H.A end
+ -2 3262 a -2 3262 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:119) cvn H.B /DEST pdfmark
+end
+ -2 3262 a -2 3262
+a
+SDict begin H.S end
+ -2 3262 a -2 3262 a
+SDict begin 11.7 H.A end
+ -2 3262 a -2 3262 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:120) cvn H.B /DEST pdfmark
+end
+ -2 3262 a 396
+3341 a Ft(sh$)558 3341 y
+SDict begin H.S end
+ 558 3341 a 558 3341 a
+SDict begin 11.7 H.A end
+ 558 3341
+a 558 3341 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:121) cvn H.B /DEST pdfmark
+end
+ 558 3341 a Fs(gpg)41 b(--keyserver)j(blackhole.pca.dfn.)q
+(de)j(--recv-keys)d(0F571F6C)-2 3350 y
+SDict begin H.S end
+ -2 3350 a -2 3350
+a
+SDict begin 11.7 H.A end
+ -2 3350 a -2 3350 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:122) cvn H.B /DEST pdfmark
+end
+ -2 3350 a 396 3438 a Ft(sh$)558
+3438 y
+SDict begin H.S end
+ 558 3438 a 558 3438 a
+SDict begin 11.7 H.A end
+ 558 3438 a 558 3438 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:123) cvn H.B /DEST pdfmark
+end
+ 558
+3438 a Fs(gpg)d(--verify)i(samhain-N.N.N.tar.g)q(z.)q(asc)k
+(samhain-1.8.8.tar.g)q(z)-2 3613 y
+SDict begin H.S end
+ -2 3613 a -2 3613
+a
+SDict begin 13 H.A end
+ -2 3613 a -2 3613 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:124) cvn H.B /DEST pdfmark
+end
+ -2 3613 a 396 3712 a FC(No)n(w)20
+b(you)g(can)g(proceed)e(to)i(e)o(xtract)g(the)g(source)g(tarball:)-2
+3813 y
+SDict begin H.S end
+ -2 3813 a -2 3813 a
+SDict begin 11.7 H.A end
+ -2 3813 a -2 3813 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:125) cvn H.B /DEST pdfmark
+end
+ -2 3813
+a -2 3813 a
+SDict begin H.S end
+ -2 3813 a -2 3813 a
+SDict begin 11.7 H.A end
+ -2 3813 a -2 3813 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:126) cvn H.B /DEST pdfmark
+end
+ -2
+3813 a 396 3892 a Ft(sh$)558 3892 y
+SDict begin H.S end
+ 558 3892 a 558 3892
+a
+SDict begin 11.7 H.A end
+ 558 3892 a 558 3892 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:127) cvn H.B /DEST pdfmark
+end
+ 558 3892 a Fs(gunzip)42 b(samhain-N.N.N.tar.g)q
+(z)k(|)41 b(tar)h(tvf)f(-)-2 4075 y
+SDict begin H.S end
+ -2 4075 a -2 4075
+a
+SDict begin 13 H.A end
+ -2 4075 a -2 4075 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:128) cvn H.B /DEST pdfmark
+end
+ -2 4075 a 396 4166 a FC(This)21
+b(will)g(create)e(a)i(ne)n(w)f(subdirectory)1584 4166
+y
+SDict begin H.S end
+ 1584 4166 a 1584 4166 a
+SDict begin 13 H.A end
+ 1584 4166 a 1584 4166 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:129) cvn H.B /DEST pdfmark
+end
+ 1584
+4166 a Fr(samhain-N.N.N)e FC(under)h(your)g(current)g(directory)-5
+b(.)18 b(Y)-9 b(ou)19 b(should)3559 4166 y
+SDict begin H.S end
+ 3559 4166
+a 3559 4166 a
+SDict begin 13 H.A end
+ 3559 4166 a 3559 4166 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:130) cvn H.B /DEST pdfmark
+end
+ 3559 4166 a Fy(cd)396
+4274 y FC(into)h(this)h(subdirectory)d(to)i(proceed)f(with)h
+(con\002guring)d(the)k(source:)-2 4375 y
+SDict begin H.S end
+ -2 4375 a -2
+4375 a
+SDict begin 11.7 H.A end
+ -2 4375 a -2 4375 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:131) cvn H.B /DEST pdfmark
+end
+ -2 4375 a -2 4375 a
+SDict begin H.S end
+ -2 4375
+a -2 4375 a
+SDict begin 11.7 H.A end
+ -2 4375 a -2 4375 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:132) cvn H.B /DEST pdfmark
+end
+ -2 4375 a 396 4454 a
+Ft(sh$)558 4454 y
+SDict begin H.S end
+ 558 4454 a 558 4454 a
+SDict begin 11.7 H.A end
+ 558 4454 a 558
+4454 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:133) cvn H.B /DEST pdfmark
+end
+ 558 4454 a Fs(cd)41 b(samhain-N.N.N)-2 4545 y
+SDict begin H.S end
+
+-2 4545 a -2 4545 a
+SDict begin 13 H.A end
+ -2 4545 a -2 4545 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:INSTALLATION-CONFIGURE) cvn
+H.B /DEST pdfmark end
+ -2 4545 a 369
+x Fu(2.4.)e(Con\002guring)e(the)i(sour)m(ce)1854 4914
+y
+SDict begin H.S end
+ 1854 4914 a 1854 4914 a
+SDict begin 22.464 H.A end
+ 1854 4914 a 1854 4914 a
+SDict begin [ /View [/XYZ H.V] /Dest (4.4.1) cvn H.B /DEST pdfmark
+end
+ 1854
+4914 a -2 5112 a
+SDict begin H.S end
+ -2 5112 a -2 5112 a
+SDict begin 13 H.A end
+ -2 5112 a -2 5112
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:136) cvn H.B /DEST pdfmark
+end
+ -2 5112 a 396 5188 a FC(Before)20 b(you)f(can)h(start)h(to)f
+(compile,)f(it)i(is)g(neccessary)f(to)g(con\002gure)e(the)j(source)e
+(for)h(your)e(particular)h(platform)396 5296 y(and)h(your)f(personal)g
+(requirements.)f(This)i(is)h(done)e(by)h(running)e(the)2418
+5296 y
+SDict begin H.S end
+ 2418 5296 a 2418 5296 a
+SDict begin 13 H.A end
+ 2418 5296 a 2418 5296
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:137) cvn H.B /DEST pdfmark
+end
+ 2418 5296 a Fr(configure)i FC(in)g(the)g(source)g(directory)-5
+b(.)18 b(If)396 5404 y(you)i(type)705 5404 y
+SDict begin H.S end
+ 705 5404
+a 705 5404 a
+SDict begin 13 H.A end
+ 705 5404 a 705 5404 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:138) cvn H.B /DEST pdfmark
+end
+ 705 5404 a Fy(./con\002gur)o(e)f
+FC(with)i(no)f(options,)f(the)h(source)f(will)i(get)f(con\002gured)e
+(with)j(the)f(def)o(ault)f(options.)g(In)p Black 3703
+5805 a Fx(4)p Black eop end
+%%Page: 5 10
+TeXDict begin 5 9 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black 0
+TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.5) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2538 104 a
+Fx(Chapter)20 b(2.)g(Compiling)f(and)h(installing)p Black
+396 309 a FC(particular)m(,)f(a)h(standalone)f(v)o(ersion)g(of)1540
+309 y
+SDict begin H.S end
+ 1540 309 a 1540 309 a
+SDict begin 13 H.A end
+ 1540 309 a 1540 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:139) cvn H.B /DEST pdfmark
+end
+ 1540
+309 a FC(samhain)g(will)i(get)f(b)n(uilt)h(which)f(uses)g(the)g
+(Filesystem)h(Hierarchy)396 417 y(Standard)e(\(FHS\))h(for)g
+(\002le/directory)f(layout.)g(This)h(is)2001 417 y
+SDict begin H.S end
+ 2001
+417 a 2001 417 a
+SDict begin 13 H.A end
+ 2001 417 a 2001 417 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:140) cvn H.B /DEST pdfmark
+end
+ 2001 417 a Fx(not)i
+FC(the)e(standard)f(GNU)h(layout)g(of)g('e)n(v)o(erything)d(under)396
+525 y(/usr/local'.)-2 691 y
+SDict begin H.S end
+ -2 691 a -2 691 a
+SDict begin 13 H.A end
+ -2 691
+a -2 691 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:141) cvn H.B /DEST pdfmark
+end
+ -2 691 a 396 799 a FC(T)-7 b(o)21 b(change)d(the)j(def)o
+(aults,)1184 799 y
+SDict begin H.S end
+ 1184 799 a 1184 799 a
+SDict begin 13 H.A end
+ 1184 799 a 1184
+799 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:142) cvn H.B /DEST pdfmark
+end
+ 1184 799 a Fy(./con\002gur)o(e)e FC(accepts)h(a)h(v)n(ariety)e
+(of)h(command-line)e(options)h(and)h(en)m(vironment)396
+906 y(v)n(ariables)g(\(use)874 906 y
+SDict begin H.S end
+ 874 906 a 874 906
+a
+SDict begin 13 H.A end
+ 874 906 a 874 906 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:143) cvn H.B /DEST pdfmark
+end
+ 874 906 a Fy(./con\002gur)o(e)f(--help)h
+FC(for)g(a)g(complete)f(list\).)i(The)f(a)n(v)n(ailable)g(command)e
+(line)i(options)f(are)i(listed)396 1014 y(and)f(e)o(xplained)e(in)p
+0 TeXcolorgray 965 1014 a
+SDict begin H.S end
+ 965 1014 a FC(Appendix)g(A)1373
+1014 y
+SDict begin 13 H.L end
+ 1373 1014 a 1373 1014 a
+SDict begin [ /Subtype /Link /Dest (0:COMPILATION-OPTIONS) cvn /H /I
+/Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1373 1014 a Black FC(>.)-2
+1032 y
+SDict begin H.S end
+ -2 1032 a -2 1032 a
+SDict begin 11.7 H.A end
+ -2 1032 a -2 1032 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:145) cvn H.B /DEST pdfmark
+end
+ -2 1032
+a -2 1157 a
+SDict begin H.S end
+ -2 1157 a -2 1157 a
+SDict begin 11.7 H.A end
+ -2 1157 a -2 1157 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:147) cvn H.B /DEST pdfmark
+end
+ -2
+1157 a 562 1236 a Fw(P)n(aths:)h Fv(\(A\))930 1236 y
+SDict begin H.S end
+
+930 1236 a 930 1236 a
+SDict begin 11.7 H.A end
+ 930 1236 a 930 1236 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:148) cvn H.B /DEST pdfmark
+end
+ 930 1236
+a Fv(samhain)g(is)h(a)h(Filesystem)e(Hier)o(arch)n(y)h(Standard)e
+(\(FHS\))i(compliant)e(application.)f(Thus)j(the)562
+1333 y(def)n(ault)e(director)r(y)i(la)n(y)o(out)e(is)1406
+1333 y
+SDict begin H.S end
+ 1406 1333 a 1406 1333 a
+SDict begin 11.7 H.A end
+ 1406 1333 a 1406 1333
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:149) cvn H.B /DEST pdfmark
+end
+ 1406 1333 a Fq(not)26 b Fv(the)20 b(standard)e(GNU)j(la)n(y)o(out)d
+(\(see)p 0 TeXcolorgray 2543 1333 a
+SDict begin H.S end
+ 2543 1333 a Fv(Section)g(2.10)2959
+1333 y
+SDict begin 11.7 H.L end
+ 2959 1333 a 2959 1333 a
+SDict begin [ /Subtype /Link /Dest (0:LAYOUT) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2959 1333 a Black -1 w
+Fv(>\).)-2 1390 y
+SDict begin H.S end
+ -2 1390 a -2 1390 a
+SDict begin 11.7 H.A end
+ -2 1390 a -2 1390
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:151) cvn H.B /DEST pdfmark
+end
+ -2 1390 a 562 1472 a Fv(\(B\))683 1472 y
+SDict begin H.S end
+ 683 1472 a
+683 1472 a
+SDict begin 11.7 H.A end
+ 683 1472 a 683 1472 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:152) cvn H.B /DEST pdfmark
+end
+ 683 1472 a Fv(samhain)h(has)h(a)g
+(concept)g(of)1555 1472 y
+SDict begin H.S end
+ 1555 1472 a 1555 1472 a
+SDict begin 11.7 H.A end
+ 1555
+1472 a 1555 1472 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:153) cvn H.B /DEST pdfmark
+end
+ 1555 1472 a Fq(tr)q(usted)f(users)r
+Fv(,)i(and)e(will)g(refuse)h(to)g(r)q(un)g(if)g(the)g(path)f(to)h(cr)q
+(itical)f(\002les)i(is)562 1569 y(wr)q(iteab)o(le)d(b)o(y)i(users)g
+(not)g(in)g(its)g(list)g(of)g(tr)q(usted)g(users)g(\(def)n(ault:)e
+(root,)h(and)g(the)h(user)g(who)g(has)g(star)s(ted)562
+1666 y
+SDict begin H.S end
+ 562 1666 a 562 1666 a
+SDict begin 11.7 H.A end
+ 562 1666 a 562 1666 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:154) cvn H.B /DEST pdfmark
+end
+ 562
+1666 a Fv(samhain\).)f(Please)g(read)p 0 TeXcolorgray
+1331 1666 a
+SDict begin H.S end
+ 1331 1666 a Fv(Section)g(2.10.1)1811 1666
+y
+SDict begin 11.7 H.L end
+ 1811 1666 a 1811 1666 a
+SDict begin [ /Subtype /Link /Dest (0:DEFTRUST) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1811 1666 a Black -3 w Fv(>)i(f)n(or)e
+(details)o(.)-2 1982 y
+SDict begin H.S end
+ -2 1982 a -2 1982 a
+SDict begin 13 H.A end
+ -2 1982 a
+-2 1982 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:156) cvn H.B /DEST pdfmark
+end
+ -2 1982 a 396 2090 a FC(Also,)i(if)f(you)f(w)o(ant)i(to)f
+(use)g(an)o(y)g(options/modules)e(that)i(are)g(not)g(enabled)f(by)h
+(def)o(ault)f(\(e.g.)g(because)h(the)o(y)396 2197 y(require)f
+(additional)g(programs)f(and/or)h(libraries\),)g(at)i(this)g(point)e
+(you)h(need)f(to)h(specify)g(them.)f(This)i(is)g(true)f(in)396
+2305 y(particular)f(if)h(you)f(w)o(ant)g(to)h(use)g(signed)f
+(con\002guration)e(and)j(database)f(\002les)h(\(see)p
+0 TeXcolorgray 2806 2305 a
+SDict begin H.S end
+ 2806 2305 a FC(Chapter)g(8)3132
+2305 y
+SDict begin 13 H.L end
+ 3132 2305 a 3132 2305 a
+SDict begin [ /Subtype /Link /Dest (0:SIGNED-FILES) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3132 2305 a Black FC(>\),)f(use)h(the)g
+(options)396 2413 y(for)g(a)g(stealth)h(mode)e(of)h(operation)e(\(see)p
+0 TeXcolorgray 1593 2413 a
+SDict begin H.S end
+ 1593 2413 a FC(Chapter)h(9)1918
+2413 y
+SDict begin 13 H.L end
+ 1918 2413 a 1918 2413 a
+SDict begin [ /Subtype /Link /Dest (0:STEALTHMODE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1918 2413 a Black FC(>\),)h(log)g(to)g
+(a)h(relational)e(database)h(\(--enable-xml-log)396 2521
+y(--with-database=[mysql|postgresql|o)o(rac)o(le|od)o(bc)o(]\),)14
+b(w)o(atch)20 b(for)g(login/logout)e(e)n(v)o(ents)396
+2629 y(\(--enable-login-w)o(atch\),)d(check)20 b(the)g(disk)g(for)g
+(rogue)f(SUID/SGID)h(\002les)h(\(--enable-suidcheck\))16
+b(and/or)i(check)396 2737 y(for)i(k)o(ernel)f(rootkits)h(\(on)f
+(Linux/FreeBSD;)g(--with-kcheck=SYSTEM_MAP\).)-2 2918
+y
+SDict begin H.S end
+ -2 2918 a -2 2918 a
+SDict begin 13 H.A end
+ -2 2918 a -2 2918 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:159) cvn H.B /DEST pdfmark
+end
+ -2 2918 a 396
+3011 a FC(T)-7 b(o)21 b(con\002gure)d(a)j(standalone)d(v)o(ersion)h(of)
+1624 3011 y
+SDict begin H.S end
+ 1624 3011 a 1624 3011 a
+SDict begin 13 H.A end
+ 1624 3011 a 1624
+3011 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:160) cvn H.B /DEST pdfmark
+end
+ 1624 3011 a FC(samhain:)-2 3112 y
+SDict begin H.S end
+ -2 3112 a -2
+3112 a
+SDict begin 11.7 H.A end
+ -2 3112 a -2 3112 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:161) cvn H.B /DEST pdfmark
+end
+ -2 3112 a -2 3112 a
+SDict begin H.S end
+ -2 3112
+a -2 3112 a
+SDict begin 11.7 H.A end
+ -2 3112 a -2 3112 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:162) cvn H.B /DEST pdfmark
+end
+ -2 3112 a 396 3191 a
+Ft(sh$)558 3191 y
+SDict begin H.S end
+ 558 3191 a 558 3191 a
+SDict begin 11.7 H.A end
+ 558 3191 a 558
+3191 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:163) cvn H.B /DEST pdfmark
+end
+ 558 3191 a Fs(./configure)44 b([more)e(options])-2
+3548 y
+SDict begin H.S end
+ -2 3548 a -2 3548 a
+SDict begin 13 H.A end
+ -2 3548 a -2 3548 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:164) cvn H.B /DEST pdfmark
+end
+ -2 3548
+a 396 3656 a FC(T)-7 b(o)21 b(con\002gure)d(a)j(client)f(v)o(ersion)f
+(of)1454 3656 y
+SDict begin H.S end
+ 1454 3656 a 1454 3656 a
+SDict begin 13 H.A end
+ 1454 3656 a 1454
+3656 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:165) cvn H.B /DEST pdfmark
+end
+ 1454 3656 a FC(samhain)g(that)h(can)g(connect)f(to)i(a)f
+(central)g(serv)o(er:)-2 3757 y
+SDict begin H.S end
+ -2 3757 a -2 3757 a
+SDict begin 11.7 H.A end
+ -2
+3757 a -2 3757 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:166) cvn H.B /DEST pdfmark
+end
+ -2 3757 a -2 3757 a
+SDict begin H.S end
+ -2 3757 a -2 3757
+a
+SDict begin 11.7 H.A end
+ -2 3757 a -2 3757 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:167) cvn H.B /DEST pdfmark
+end
+ -2 3757 a 396 3836 a Ft(sh$)558
+3836 y
+SDict begin H.S end
+ 558 3836 a 558 3836 a
+SDict begin 11.7 H.A end
+ 558 3836 a 558 3836 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:168) cvn H.B /DEST pdfmark
+end
+ 558
+3836 a Fs(./configure)44 b(--enable-network=cli)q(en)q(t)i([more)c
+(options])-2 4193 y
+SDict begin H.S end
+ -2 4193 a -2 4193 a
+SDict begin 13 H.A end
+ -2 4193 a -2
+4193 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:169) cvn H.B /DEST pdfmark
+end
+ -2 4193 a 396 4301 a FC(T)-7 b(o)21 b(con\002gure)d(a)j(serv)o
+(er)e(v)o(ersion)g(of)1471 4301 y
+SDict begin H.S end
+ 1471 4301 a 1471 4301
+a
+SDict begin 13 H.A end
+ 1471 4301 a 1471 4301 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:170) cvn H.B /DEST pdfmark
+end
+ 1471 4301 a FC(samhain)g(that)h(will)h(act)g
+(as)g(a)f(central)g(log)g(serv)o(er:)-2 4402 y
+SDict begin H.S end
+ -2 4402
+a -2 4402 a
+SDict begin 11.7 H.A end
+ -2 4402 a -2 4402 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:171) cvn H.B /DEST pdfmark
+end
+ -2 4402 a -2 4402 a
+SDict begin H.S end
+ -2
+4402 a -2 4402 a
+SDict begin 11.7 H.A end
+ -2 4402 a -2 4402 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:172) cvn H.B /DEST pdfmark
+end
+ -2 4402 a 396 4481
+a Ft(sh$)558 4481 y
+SDict begin H.S end
+ 558 4481 a 558 4481 a
+SDict begin 11.7 H.A end
+ 558 4481 a
+558 4481 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:173) cvn H.B /DEST pdfmark
+end
+ 558 4481 a Fs(./configure)44 b(--enable-network=ser)q(ve)q
+(r)i([more)c(options])-2 4490 y
+SDict begin H.S end
+ -2 4490 a -2 4490 a
+SDict begin 11.7 H.A end
+ -2
+4490 a -2 4490 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:174) cvn H.B /DEST pdfmark
+end
+ -2 4490 a Black 3703 5805 a Fx(5)p Black
+eop end
+%%Page: 6 11
+TeXDict begin 6 10 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.6) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:212) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2538 104 a Fx(Chapter)20
+b(2.)g(Compiling)f(and)h(installing)p Black 977 242 2668
+17 v 977 1212 17 970 v 1945 437 a Fp(IMPOR)n(T)-11 b(ANT)-5
+b(:)1019 605 y
+SDict begin H.S end
+ 1019 605 a 1019 605 a
+SDict begin 11.7 H.A end
+ 1019 605 a 1019
+605 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:176) cvn H.B /DEST pdfmark
+end
+ 1019 605 a 96 x Fv(Please)19 b(read)p 0 TeXcolorgray
+1438 701 a
+SDict begin H.S end
+ 1438 701 a Fv(Chapter)g(6)1767 701 y
+SDict begin 11.7 H.L end
+ 1767
+701 a 1767 701 a
+SDict begin [ /Subtype /Link /Dest (0:YULE) cvn /H /I /Border [0 0
+0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1767 701 a Black -1 w Fv(>)i(if)f(y)o(ou)g(intend)e
+(to)i(use)2477 701 y
+SDict begin H.S end
+ 2477 701 a 2477 701 a
+SDict begin 11.7 H.A end
+ 2477 701 a
+2477 701 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:178) cvn H.B /DEST pdfmark
+end
+ 2477 701 a Fv(samhain)f(as)i(a)f(client/ser)r(v)n(er)1019
+798 y(system.)h(Things)e(will)h(not)f(w)o(or)q(k)i(automagically)d
+(just)i(because)f(y)o(ou)h(compiled)e(a)j(client)1019
+895 y(and)e(a)i(ser)r(v)n(er)f(v)n(ersion)g(of)1798 895
+y
+SDict begin H.S end
+ 1798 895 a 1798 895 a
+SDict begin 11.7 H.A end
+ 1798 895 a 1798 895 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:179) cvn H.B /DEST pdfmark
+end
+ 1798 895
+a Fv(samhain.)f(In)h(par)s(ticular)l(,)e(clients)i(need)f(to)3056
+895 y
+SDict begin H.S end
+ 3056 895 a 3056 895 a
+SDict begin 11.7 H.A end
+ 3056 895 a 3056 895 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:180) cvn H.B /DEST pdfmark
+end
+ 3056
+895 a Fq(authenticate)1019 992 y Fv(themselv)n(es)h(to)g(the)f(ser)r(v)
+n(er)l(,)i(and)f(special)f(con\002gure)g(options)g(are)g(required)f(if)
+i(y)o(ou)1019 1089 y(w)o(ant)f(to)h(k)o(eep)g(the)f(con\002gur)o(ation)
+f(\002le\(s\))j(and)e(the)h(baseline)e(database\(s\))g(on)i(the)1019
+1186 y(centr)o(al)f(ser)r(v)n(er)l(.)p 3628 1212 17 970
+v 977 1229 2668 17 v -2 1398 a
+SDict begin H.S end
+ -2 1398 a -2 1398 a
+SDict begin 13 H.A end
+ -2
+1398 a -2 1398 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:INSTALLATION-BUILD) cvn H.B
+/DEST pdfmark end
+ -2 1398 a 377 x Fu(2.5.)39 b(Build)637
+1775 y
+SDict begin H.S end
+ 637 1775 a 637 1775 a
+SDict begin 22.464 H.A end
+ 637 1775 a 637 1775 a
+SDict begin [ /View [/XYZ H.V] /Dest (4.5.1) cvn H.B /DEST pdfmark
+end
+ 637
+1775 a -2 1943 a
+SDict begin H.S end
+ -2 1943 a -2 1943 a
+SDict begin 13 H.A end
+ -2 1943 a -2 1943
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:183) cvn H.B /DEST pdfmark
+end
+ -2 1943 a 396 2049 a FC(After)20 b(con\002guring)e(the)i(source,)f
+(to)i(b)n(uild)1651 2049 y
+SDict begin H.S end
+ 1651 2049 a 1651 2049 a
+SDict begin 13 H.A end
+ 1651
+2049 a 1651 2049 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:184) cvn H.B /DEST pdfmark
+end
+ 1651 2049 a FC(samhain)f(you)f(just)i(ha)n(v)o(e)e
+(to)i(type)e(the)i(command:)-2 2150 y
+SDict begin H.S end
+ -2 2150 a -2 2150
+a
+SDict begin 11.7 H.A end
+ -2 2150 a -2 2150 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:185) cvn H.B /DEST pdfmark
+end
+ -2 2150 a -2 2150 a
+SDict begin H.S end
+ -2 2150 a -2
+2150 a
+SDict begin 11.7 H.A end
+ -2 2150 a -2 2150 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:186) cvn H.B /DEST pdfmark
+end
+ -2 2150 a 396 2229 a Ft(sh$)558
+2229 y
+SDict begin H.S end
+ 558 2229 a 558 2229 a
+SDict begin 11.7 H.A end
+ 558 2229 a 558 2229 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:187) cvn H.B /DEST pdfmark
+end
+ 558
+2229 a Fs(make)-2 2586 y
+SDict begin H.S end
+ -2 2586 a -2 2586 a
+SDict begin 13 H.A end
+ -2 2586
+a -2 2586 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:188) cvn H.B /DEST pdfmark
+end
+ -2 2586 a 396 2694 a FC(The)f(standalone/client)f(e)o(x)o
+(ecutable)f(\()1531 2694 y
+SDict begin H.S end
+ 1531 2694 a 1531 2694 a
+SDict begin 13 H.A end
+ 1531
+2694 a 1531 2694 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:189) cvn H.B /DEST pdfmark
+end
+ 1531 2694 a FC(samhain\))h(and)g(the)h(log)g(serv)o
+(er)g(\()2496 2694 y
+SDict begin H.S end
+ 2496 2694 a 2496 2694 a
+SDict begin 13 H.A end
+ 2496 2694
+a 2496 2694 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:190) cvn H.B /DEST pdfmark
+end
+ 2496 2694 a FC(yule\))f(cannnot)f(be)i(compiled)396
+2802 y(simultaneously)-5 b(.)18 b(Y)-9 b(ou)20 b(need)f(to)i(run)1484
+2802 y
+SDict begin H.S end
+ 1484 2802 a 1484 2802 a
+SDict begin 13 H.A end
+ 1484 2802 a 1484 2802
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:191) cvn H.B /DEST pdfmark
+end
+ 1484 2802 a Fy(./con\002gur)o(e)e(&&)i(mak)o(e)g FC(separately)e(for)
+h(both.)-2 2986 y
+SDict begin H.S end
+ -2 2986 a -2 2986 a
+SDict begin 13 H.A end
+ -2 2986 a -2 2986
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:192) cvn H.B /DEST pdfmark
+end
+ -2 2986 a 396 3076 a FC(If)g(you)g(w)o(ant)g(to)g(use)h(your)e(nati)n
+(v)o(e)g(package)g(manager)f(for)i(installation,)f(you)h(might)f
+(rather)h(w)o(ant)g(to)g(b)n(uild)g(a)396 3184 y(binary)f(package.)943
+3184 y
+SDict begin H.S end
+ 943 3184 a 943 3184 a
+SDict begin 13 H.A end
+ 943 3184 a 943 3184 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:193) cvn H.B /DEST pdfmark
+end
+ 943
+3184 a FC(samhain)g(has)i(support)d(for)i(RPM)h(\(rpm\),)e(Debian)g
+(\(deb\),)g(Gentoo)g(\(tbz2\),)g(HP-UX)h(\(depot\),)396
+3292 y(and)g(Solaris)g(packages.)f(Instead)h(of)g(simply)f(typing)1964
+3292 y
+SDict begin H.S end
+ 1964 3292 a 1964 3292 a
+SDict begin 13 H.A end
+ 1964 3292 a 1964 3292
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:194) cvn H.B /DEST pdfmark
+end
+ 1964 3292 a Fy(mak)o(e)p FC(,)i(you)e(need)g(to)i(type:)-2
+3393 y
+SDict begin H.S end
+ -2 3393 a -2 3393 a
+SDict begin 11.7 H.A end
+ -2 3393 a -2 3393 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:195) cvn H.B /DEST pdfmark
+end
+ -2 3393
+a -2 3393 a
+SDict begin H.S end
+ -2 3393 a -2 3393 a
+SDict begin 11.7 H.A end
+ -2 3393 a -2 3393 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:196) cvn H.B /DEST pdfmark
+end
+ -2
+3393 a 396 3472 a Ft(sh$)558 3472 y
+SDict begin H.S end
+ 558 3472 a 558 3472
+a
+SDict begin 11.7 H.A end
+ 558 3472 a 558 3472 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:197) cvn H.B /DEST pdfmark
+end
+ 558 3472 a Fs(make)41 b(rpm|deb|tbz2|depot)q
+(|so)q(lar)q(is-)q(pk)q(g)-2 3655 y
+SDict begin H.S end
+ -2 3655 a -2 3655
+a
+SDict begin 13 H.A end
+ -2 3655 a -2 3655 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:198) cvn H.B /DEST pdfmark
+end
+ -2 3655 a 396 3746 a FC(This)21
+b(will)g(create)e(a)i(custom)f(binary)f(package)f(according)g(to)j(the)
+f(options)f(that)i(you)e(used)h(when)f(con\002guring)396
+3854 y(the)h(source)g(\(see)g(pre)n(vious)f(section\).)g(F)o(or)h(more)
+f(details,)i(see)p 0 TeXcolorgray 2231 3854 a
+SDict begin H.S end
+ 2231 3854
+a FC(Section)e(10.2)2647 3854 y
+SDict begin 13 H.L end
+ 2647 3854 a 2647 3854
+a
+SDict begin [ /Subtype /Link /Dest (0:NATIVE-PACKAGES) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2647 3854 a Black -1 w FC(>.)-2 4038 y
+SDict begin H.S end
+ -2 4038 a -2
+4038 a
+SDict begin 13 H.A end
+ -2 4038 a -2 4038 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:200) cvn H.B /DEST pdfmark
+end
+ -2 4038 a 396 4128 a FC(If)h(you)g(don')o(t)
+e(w)o(ant)i(to)h(include)e(documentation,)e(you)i(can)h(instead)g(use:)
+-2 4229 y
+SDict begin H.S end
+ -2 4229 a -2 4229 a
+SDict begin 11.7 H.A end
+ -2 4229 a -2 4229 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:201) cvn H.B /DEST pdfmark
+end
+ -2
+4229 a -2 4229 a
+SDict begin H.S end
+ -2 4229 a -2 4229 a
+SDict begin 11.7 H.A end
+ -2 4229 a -2 4229
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:202) cvn H.B /DEST pdfmark
+end
+ -2 4229 a 396 4308 a Ft(sh$)558 4308 y
+SDict begin H.S end
+ 558 4308 a 558
+4308 a
+SDict begin 11.7 H.A end
+ 558 4308 a 558 4308 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:203) cvn H.B /DEST pdfmark
+end
+ 558 4308 a Fs(make)41 b
+(rpm-light|deb-ligh)q(t|d)q(epo)q(t-l)q(ig)q(ht|)q(tbz)q(2-l)q(igh)q
+(t|s)q(ola)q(ris)q(-p)q(kg-)q(lig)q(ht)-2 4491 y
+SDict begin H.S end
+ -2 4491
+a -2 4491 a
+SDict begin 13 H.A end
+ -2 4491 a -2 4491 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:204) cvn H.B /DEST pdfmark
+end
+ -2 4491 a 396 4582 a
+FC(Finally)-5 b(,)20 b(the)g(Mak)o(e\002le)g(supports)f(b)n(uilding)g
+(a)i(portable)d(\(Unix\))h(binary)g(installer)i(package)d(based)i(on)g
+(the)396 4690 y
+SDict begin H.S end
+ 396 4690 a 396 4690 a
+SDict begin 13 H.A end
+ 396 4690 a 396
+4690 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:205) cvn H.B /DEST pdfmark
+end
+ 396 4690 a FC(mak)o(eself)g(installer)g(\(\(c\))g(1998-2004)c
+(Stephane)j(Peter\).)h(There)f(will)i(be)f(no)g(documentation)d
+(included.)i(Just)396 4798 y(type:)-2 4899 y
+SDict begin H.S end
+ -2 4899
+a -2 4899 a
+SDict begin 11.7 H.A end
+ -2 4899 a -2 4899 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:206) cvn H.B /DEST pdfmark
+end
+ -2 4899 a -2 4899 a
+SDict begin H.S end
+ -2
+4899 a -2 4899 a
+SDict begin 11.7 H.A end
+ -2 4899 a -2 4899 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:207) cvn H.B /DEST pdfmark
+end
+ -2 4899 a 396 4978
+a Ft(sh$)558 4978 y
+SDict begin H.S end
+ 558 4978 a 558 4978 a
+SDict begin 11.7 H.A end
+ 558 4978 a
+558 4978 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:208) cvn H.B /DEST pdfmark
+end
+ 558 4978 a Fs(make)41 b(run)-2 5069 y
+SDict begin H.S end
+ -2 5069
+a -2 5069 a
+SDict begin 13 H.A end
+ -2 5069 a -2 5069 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:INSTALLATION-INSTALL) cvn H.B
+/DEST pdfmark end
+ -2 5069 a Black 3701
+5805 a Fx(6)p Black eop end
+%%Page: 7 12
+TeXDict begin 7 11 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.7) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:254) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2538 104 a Fx(Chapter)20
+b(2.)g(Compiling)f(and)h(installing)p Black -2 327 a
+Fu(2.6.)39 b(Install)693 327 y
+SDict begin H.S end
+ 693 327 a 693 327 a
+SDict begin 22.464 H.A end
+ 693
+327 a 693 327 a
+SDict begin [ /View [/XYZ H.V] /Dest (4.6.1) cvn H.B /DEST pdfmark
+end
+ 693 327 a -2 495 a
+SDict begin H.S end
+ -2 495 a -2 495 a
+SDict begin 13 H.A end
+
+-2 495 a -2 495 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:211) cvn H.B /DEST pdfmark
+end
+ -2 495 a 396 601 a FC(After)20 b(successful)g
+(compilation,)e(you)i(can)g(install)g(samhain)g(by)g(typing:)396
+781 y Ft(sh$)558 781 y
+SDict begin H.S end
+ 558 781 a 558 781 a
+SDict begin 11.7 H.A end
+ 558 781 a
+558 781 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:214) cvn H.B /DEST pdfmark
+end
+ 558 781 a Fs(make)41 b(install)-2 955 y
+SDict begin H.S end
+ -2
+955 a -2 955 a
+SDict begin 13 H.A end
+ -2 955 a -2 955 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:215) cvn H.B /DEST pdfmark
+end
+ -2 955 a 396 1055 a
+FC(The)20 b(installation)g(routine)f(will)i(not)f(o)o(v)o(erwrite)e
+(your)h(con\002guration)e(\002le)k(from)e(a)i(pre)n(vious)e
+(installation.)-2 1239 y
+SDict begin H.S end
+ -2 1239 a -2 1239 a
+SDict begin 13 H.A end
+ -2 1239
+a -2 1239 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:216) cvn H.B /DEST pdfmark
+end
+ -2 1239 a 396 1329 a FC(Ex)o(ecutables)g(will)i(be)f
+(stripped)f(upon)g(installation.)h(On)g(Linux)f(i386)g(and)h(FreeBSD)h
+(i386,)e(the)3243 1329 y
+SDict begin H.S end
+ 3243 1329 a 3243 1329 a
+SDict begin 13 H.A end
+ 3243
+1329 a 3243 1329 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:217) cvn H.B /DEST pdfmark
+end
+ 3243 1329 a Fy(sstrip)i FC(utility)396
+1437 y(\(cop)o(yright)d(1999)h(by)h(Brian)g(Raiter)m(,)g(under)f(the)h
+(GNU)h(GPL\))f(will)h(be)f(used)g(to)g(strip)g(the)h(e)o(x)o(ecutable)d
+(e)n(v)o(en)396 1545 y(more,)h(to)i(pre)n(v)o(ent)d(deb)n(ugging)g
+(with)i(the)g(GNU)1821 1545 y
+SDict begin H.S end
+ 1821 1545 a 1821 1545 a
+SDict begin 13 H.A end
+
+1821 1545 a 1821 1545 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:218) cvn H.B /DEST pdfmark
+end
+ 1821 1545 a Fy(gdb)g FC(deb)n(ugger)-5
+b(.)-2 1729 y
+SDict begin H.S end
+ -2 1729 a -2 1729 a
+SDict begin 13 H.A end
+ -2 1729 a -2 1729 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:219) cvn H.B /DEST pdfmark
+end
+
+-2 1729 a 396 1819 a FC(After)20 b(installation,)g(you)f(will)i(be)f
+(of)n(fered)e(to)j(run)1872 1819 y
+SDict begin H.S end
+ 1872 1819 a 1872 1819
+a
+SDict begin 13 H.A end
+ 1872 1819 a 1872 1819 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:220) cvn H.B /DEST pdfmark
+end
+ 1872 1819 a Fy(mak)o(e)g(install-boot)e
+FC(in)h(order)f(to)i(install)f(the)g(init)h(scripts)f(that)396
+1927 y(are)g(required)f(to)h(start)1065 1927 y
+SDict begin H.S end
+ 1065 1927
+a 1065 1927 a
+SDict begin 13 H.A end
+ 1065 1927 a 1065 1927 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:221) cvn H.B /DEST pdfmark
+end
+ 1065 1927 a FC(samhain)f
+(automatically)g(when)h(your)f(system)h(\(re-\)boots.)e(F)o(or)i(man)o
+(y)f(operating)396 2035 y(systems)i(\(Linux,)d(FreeBSD,)j(Solaris,)f
+(HP-UX,)g(IRIX\),)2105 2035 y
+SDict begin H.S end
+ 2105 2035 a 2105 2035 a
+SDict begin 13 H.A end
+
+2105 2035 a 2105 2035 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:222) cvn H.B /DEST pdfmark
+end
+ 2105 2035 a Fy(con\002gur)o(e)f
+FC(will)i(generate)e(init)i(scripts,)f(and)3439 2035
+y
+SDict begin H.S end
+ 3439 2035 a 3439 2035 a
+SDict begin 13 H.A end
+ 3439 2035 a 3439 2035 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:223) cvn H.B /DEST pdfmark
+end
+ 3439
+2035 a Fy(mak)o(e)396 2143 y(install-boot)f FC(will)i(\002gure)f(out)g
+(which)f(of)h(them)g(to)g(install,)h(and)e(where)h(\(if)g(the)g
+(correct)g(distrib)n(ution)f(cannot)g(be)396 2251 y(determined,)f(none)
+h(of)h(them)g(will)h(be)f(installed\).)-2 2349 y
+SDict begin H.S end
+ -2 2349
+a -2 2349 a
+SDict begin 11.7 H.A end
+ -2 2349 a -2 2349 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:224) cvn H.B /DEST pdfmark
+end
+ -2 2349 a -2 2349 a
+SDict begin H.S end
+ -2
+2349 a -2 2349 a
+SDict begin 11.7 H.A end
+ -2 2349 a -2 2349 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:225) cvn H.B /DEST pdfmark
+end
+ -2 2349 a 396 2431
+a Ft(sh$)558 2431 y
+SDict begin H.S end
+ 558 2431 a 558 2431 a
+SDict begin 11.7 H.A end
+ 558 2431 a
+558 2431 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:226) cvn H.B /DEST pdfmark
+end
+ 558 2431 a Fs(make)41 b(install-boot)-2 2439
+y
+SDict begin H.S end
+ -2 2439 a -2 2439 a
+SDict begin 13 H.A end
+ -2 2439 a -2 2439 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:TARGETS) cvn H.B /DEST pdfmark
+end
+ -2 2439 a 396
+2759 a Fp(2.6.1.)36 b(Impor)r(tant)d(make)i(tar)n(g)q(ets)2051
+2759 y
+SDict begin H.S end
+ 2051 2759 a 2051 2759 a
+SDict begin 18.72 H.A end
+ 2051 2759 a 2051 2759
+a
+SDict begin [ /View [/XYZ H.V] /Dest (4.6.1.2) cvn H.B /DEST pdfmark
+end
+ 2051 2759 a -2 2869 a
+SDict begin H.S end
+ -2 2869 a -2 2869 a
+SDict begin 11.7 H.A end
+ -2 2869 a
+-2 2869 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:229) cvn H.B /DEST pdfmark
+end
+ -2 2869 a -2 2869 a
+SDict begin H.S end
+ -2 2869 a -2 2869 a
+SDict begin 11.7 H.A end
+ -2
+2869 a -2 2869 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:230) cvn H.B /DEST pdfmark
+end
+ -2 2869 a 396 2939 a Ft(sh$)558 2939
+y
+SDict begin H.S end
+ 558 2939 a 558 2939 a
+SDict begin 11.7 H.A end
+ 558 2939 a 558 2939 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:231) cvn H.B /DEST pdfmark
+end
+ 558 2939
+a Fs(make)41 b(install)-2 3113 y
+SDict begin H.S end
+ -2 3113 a -2 3113 a
+SDict begin 13 H.A end
+
+-2 3113 a -2 3113 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:232) cvn H.B /DEST pdfmark
+end
+ -2 3113 a 396 3213 a FC(Create)21
+b(the)f(required)e(directories)h(\(if)i(not)e(e)o(xisting)h(already\),)
+e(and)i(install)h(the)f(compiled)f(e)o(x)o(ecutable)f(and)i(the)396
+3321 y(con\002guration)e(\002le.)-2 3422 y
+SDict begin H.S end
+ -2 3422 a
+-2 3422 a
+SDict begin 11.7 H.A end
+ -2 3422 a -2 3422 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:233) cvn H.B /DEST pdfmark
+end
+ -2 3422 a -2 3422 a
+SDict begin H.S end
+ -2
+3422 a -2 3422 a
+SDict begin 11.7 H.A end
+ -2 3422 a -2 3422 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:234) cvn H.B /DEST pdfmark
+end
+ -2 3422 a 396 3501
+a Ft(bash$)638 3501 y
+SDict begin H.S end
+ 638 3501 a 638 3501 a
+SDict begin 11.7 H.A end
+ 638 3501
+a 638 3501 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:235) cvn H.B /DEST pdfmark
+end
+ 638 3501 a Fs(make)42 b(DESTDIR=/somedir)k(install)-2
+3675 y
+SDict begin H.S end
+ -2 3675 a -2 3675 a
+SDict begin 13 H.A end
+ -2 3675 a -2 3675 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:236) cvn H.B /DEST pdfmark
+end
+ -2 3675
+a 396 3775 a FC(Install)21 b(as)f(if)786 3775 y
+SDict begin H.S end
+ 786 3775
+a 786 3775 a
+SDict begin 13 H.A end
+ 786 3775 a 786 3775 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:237) cvn H.B /DEST pdfmark
+end
+ 786 3775 a Fr(/somedir)f
+FC(is)j(the)e(root)f(directory)-5 b(.)18 b(Useful)i(for)g(creating)f
+(packages)g(or)h(installing)g(for)f(chroot)396 3883 y(\(serv)o(er\).)-2
+3981 y
+SDict begin H.S end
+ -2 3981 a -2 3981 a
+SDict begin 11.7 H.A end
+ -2 3981 a -2 3981 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:238) cvn H.B /DEST pdfmark
+end
+ -2 3981
+a -2 3981 a
+SDict begin H.S end
+ -2 3981 a -2 3981 a
+SDict begin 11.7 H.A end
+ -2 3981 a -2 3981 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:239) cvn H.B /DEST pdfmark
+end
+ -2
+3981 a 396 4063 a Ft(sh$)558 4063 y
+SDict begin H.S end
+ 558 4063 a 558 4063
+a
+SDict begin 11.7 H.A end
+ 558 4063 a 558 4063 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:240) cvn H.B /DEST pdfmark
+end
+ 558 4063 a Fs(make)41 b(install-boot)-2
+4237 y
+SDict begin H.S end
+ -2 4237 a -2 4237 a
+SDict begin 13 H.A end
+ -2 4237 a -2 4237 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:241) cvn H.B /DEST pdfmark
+end
+ -2 4237
+a 396 4337 a FC(Install)21 b(runle)n(v)o(el)d(start/stop)i(scripts)h
+(or)f(create)g(inittab)g(entry)f(\(AIX\))h(in)g(order)f(to)h(start)h
+(the)f(daemon)f(upon)396 4445 y(system)i(boot.)e(Supported)f(on)i
+(Linux,)e(FreeBSD,)j(Solaris\(*\),)e(HP-UX\(*\),)g(AIX\(*\),)g
+(IRIX\(*\))g([\(*\))g(untested].)-2 4546 y
+SDict begin H.S end
+ -2 4546 a
+-2 4546 a
+SDict begin 11.7 H.A end
+ -2 4546 a -2 4546 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:242) cvn H.B /DEST pdfmark
+end
+ -2 4546 a -2 4546 a
+SDict begin H.S end
+ -2
+4546 a -2 4546 a
+SDict begin 11.7 H.A end
+ -2 4546 a -2 4546 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:243) cvn H.B /DEST pdfmark
+end
+ -2 4546 a 396 4625
+a Ft(sh$)558 4625 y
+SDict begin H.S end
+ 558 4625 a 558 4625 a
+SDict begin 11.7 H.A end
+ 558 4625 a
+558 4625 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:244) cvn H.B /DEST pdfmark
+end
+ 558 4625 a Fs(make)41 b(uninstall)-2 4799
+y
+SDict begin H.S end
+ -2 4799 a -2 4799 a
+SDict begin 13 H.A end
+ -2 4799 a -2 4799 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:245) cvn H.B /DEST pdfmark
+end
+ -2 4799 a 396
+4899 a FC(Uninstall)20 b(the)h(e)o(x)o(ecutable)d(and)i(remo)o(v)o(e)e
+(directories)h(if)h(empty)-5 b(.)19 b(Does)i(not)e(uninstall)h(the)g
+(con\002guration)e(\002le.)-2 5000 y
+SDict begin H.S end
+ -2 5000 a -2 5000
+a
+SDict begin 11.7 H.A end
+ -2 5000 a -2 5000 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:246) cvn H.B /DEST pdfmark
+end
+ -2 5000 a -2 5000 a
+SDict begin H.S end
+ -2 5000 a -2
+5000 a
+SDict begin 11.7 H.A end
+ -2 5000 a -2 5000 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:247) cvn H.B /DEST pdfmark
+end
+ -2 5000 a 396 5080 a Ft(sh$)558
+5080 y
+SDict begin H.S end
+ 558 5080 a 558 5080 a
+SDict begin 11.7 H.A end
+ 558 5080 a 558 5080 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:248) cvn H.B /DEST pdfmark
+end
+ 558
+5080 a Fs(make)41 b(purge)-2 5255 y
+SDict begin H.S end
+ -2 5255 a -2 5255
+a
+SDict begin 13 H.A end
+ -2 5255 a -2 5255 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:249) cvn H.B /DEST pdfmark
+end
+ -2 5255 a 396 5354 a FC(As)509
+5354 y
+SDict begin H.S end
+ 509 5354 a 509 5354 a
+SDict begin 13 H.A end
+ 509 5354 a 509 5354 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:250) cvn H.B /DEST pdfmark
+end
+ 509
+5354 a Fy(mak)o(e)21 b(uninstall)p FC(,)g(b)n(ut)f(also)g(remo)o(v)o(e)
+e(the)j(the)f(con\002guration)d(\002le.)p Black 3700
+5805 a Fx(7)p Black eop end
+%%Page: 8 13
+TeXDict begin 8 12 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.8) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:297) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2538 104 a Fx(Chapter)20
+b(2.)g(Compiling)f(and)h(installing)p Black -2 226 a
+SDict begin H.S end
+
+-2 226 a -2 226 a
+SDict begin 11.7 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:251) cvn H.B /DEST pdfmark
+end
+ -2 226 a -2 226 a
+SDict begin H.S end
+
+-2 226 a -2 226 a
+SDict begin 11.7 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:252) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309
+a Ft(sh$)558 309 y
+SDict begin H.S end
+ 558 309 a 558 309 a
+SDict begin 11.7 H.A end
+ 558 309 a 558
+309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:253) cvn H.B /DEST pdfmark
+end
+ 558 309 a Fs(make)41 b(uninstall-boot)396 583 y
+FC(Uninstall)20 b(the)h(runle)n(v)o(el)d(start/stop)i(scripts.)-2
+601 y
+SDict begin H.S end
+ -2 601 a -2 601 a
+SDict begin 11.7 H.A end
+ -2 601 a -2 601 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:255) cvn H.B /DEST pdfmark
+end
+ -2 601 a -2
+725 a
+SDict begin H.S end
+ -2 725 a -2 725 a
+SDict begin 11.7 H.A end
+ -2 725 a -2 725 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:257) cvn H.B /DEST pdfmark
+end
+ -2 725 a 562
+804 a Fw(TIP:)g Fv(Y)-10 b(ou)19 b(can)i(sa)o(v)n(e)f(the)g(scr)q(ipt)
+1509 804 y
+SDict begin H.S end
+ 1509 804 a 1509 804 a
+SDict begin 11.7 H.A end
+ 1509 804 a 1509 804
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:258) cvn H.B /DEST pdfmark
+end
+ 1509 804 a Fv(samhain-install.sh)d(and)i(use)h(it)g(f)n(or)g
+(uninstalling)d(if)j(y)o(ou)f(e)n(v)n(er)h(w)o(ant)g(to)562
+901 y(remo)o(v)n(e)g(samhain:)-2 985 y
+SDict begin H.S end
+ -2 985 a -2 985
+a
+SDict begin 10.53 H.A end
+ -2 985 a -2 985 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:259) cvn H.B /DEST pdfmark
+end
+ -2 985 a -2 985 a
+SDict begin H.S end
+ -2 985 a -2 985
+a
+SDict begin 10.53 H.A end
+ -2 985 a -2 985 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:260) cvn H.B /DEST pdfmark
+end
+ -2 985 a 562 1072 a Fo(sh$)708 1072
+y
+SDict begin H.S end
+ 708 1072 a 708 1072 a
+SDict begin 10.53 H.A end
+ 708 1072 a 708 1072 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:261) cvn H.B /DEST pdfmark
+end
+ 708 1072
+a Fn(samhain-install.sh)42 b(purge)-2 1080 y
+SDict begin H.S end
+ -2 1080
+a -2 1080 a
+SDict begin 10.53 H.A end
+ -2 1080 a -2 1080 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:262) cvn H.B /DEST pdfmark
+end
+ -2 1080 a 562 1159 a
+Fo(sh$)708 1159 y
+SDict begin H.S end
+ 708 1159 a 708 1159 a
+SDict begin 10.53 H.A end
+ 708 1159 a 708
+1159 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:263) cvn H.B /DEST pdfmark
+end
+ 708 1159 a Fn(samhain-install.sh)g(uninstall-boot)-2
+1655 y
+SDict begin H.S end
+ -2 1655 a -2 1655 a
+SDict begin 13 H.A end
+ -2 1655 a -2 1655 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:INSTALLATION-CUSTOMIZE) cvn
+H.B /DEST pdfmark end
+ -2 1655
+a 377 x Fu(2.7.)d(Customiz)q(e)1006 2032 y
+SDict begin H.S end
+ 1006 2032
+a 1006 2032 a
+SDict begin 22.464 H.A end
+ 1006 2032 a 1006 2032 a
+SDict begin [ /View [/XYZ H.V] /Dest (4.7.1) cvn H.B /DEST pdfmark
+end
+ 1006 2032 a -2
+2200 a
+SDict begin H.S end
+ -2 2200 a -2 2200 a
+SDict begin 13 H.A end
+ -2 2200 a -2 2200 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:266) cvn H.B /DEST pdfmark
+end
+ -2 2200
+a -2 2200 a
+SDict begin H.S end
+ -2 2200 a -2 2200 a
+SDict begin 13 H.A end
+ -2 2200 a -2 2200 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:267) cvn H.B /DEST pdfmark
+end
+ -2
+2200 a 396 2306 a FC(samhain)20 b(comes)g(with)g(def)o(ault)f
+(con\002guration)f(\002les)j(for)f(se)n(v)o(eral)f(operating)g
+(systems:)2979 2306 y
+SDict begin H.S end
+ 2979 2306 a 2979 2306 a
+SDict begin 13 H.A end
+ 2979 2306
+a 2979 2306 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:268) cvn H.B /DEST pdfmark
+end
+ 2979 2306 a Fr(samhainrc.linux)p FC(,)396
+2414 y
+SDict begin H.S end
+ 396 2414 a 396 2414 a
+SDict begin 13 H.A end
+ 396 2414 a 396 2414 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:269) cvn H.B /DEST pdfmark
+end
+ 396
+2414 a Fr(samhainrc.solaris)p FC(,)1200 2414 y
+SDict begin H.S end
+ 1200 2414
+a 1200 2414 a
+SDict begin 13 H.A end
+ 1200 2414 a 1200 2414 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:270) cvn H.B /DEST pdfmark
+end
+ 1200 2414 a Fr(samhainrc.freebsd)
+p FC(,)2004 2414 y
+SDict begin H.S end
+ 2004 2414 a 2004 2414 a
+SDict begin 13 H.A end
+ 2004 2414
+a 2004 2414 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:271) cvn H.B /DEST pdfmark
+end
+ 2004 2414 a Fr(samhainrc.aix5.2.0)e FC(\(and)3000
+2414 y
+SDict begin H.S end
+ 3000 2414 a 3000 2414 a
+SDict begin 13 H.A end
+ 3000 2414 a 3000 2414
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:272) cvn H.B /DEST pdfmark
+end
+ 3000 2414 a Fr(yulerc)i FC(for)h(the)396 2522 y(serv)o(er\).)f(The)h
+(installation)g(routine)f(will)i(choose)e(the)h(one)g(matching)e
+(closest)j(your)e(system,)h(or)g(f)o(all)h(back)e(to)396
+2630 y
+SDict begin H.S end
+ 396 2630 a 396 2630 a
+SDict begin 13 H.A end
+ 396 2630 a 396 2630 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:273) cvn H.B /DEST pdfmark
+end
+ 396
+2630 a Fr(samhainrc.linux)p FC(,)f(if)h(no)g(good)f(match)h(could)g(be)
+g(found.)f(Ho)n(we)n(v)o(er)m(,)f(all)j(these)g(con\002guration)c
+(\002les)21 b(are)e(k)o(ept)396 2738 y(v)o(ery)g(general,)g(and)h(most)
+g(probably)e(you)h(w)o(ant)i(to)f(adjust)g(settings)g(lik)o(e:)2582
+2738 y
+SDict begin H.S end
+ 2582 2738 a 2582 2738 a
+SDict begin 13 H.A end
+ 2582 2738 a 2582 2738
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:274) cvn H.B /DEST pdfmark
+end
+ 2582 2738 a -2 2784 a
+SDict begin H.S end
+ -2 2784 a -2 2784 a
+SDict begin 13 H.A end
+ -2 2784 a
+-2 2784 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:275) cvn H.B /DEST pdfmark
+end
+ -2 2784 a Black 396 2945 a FB(\225)p Black
+479 2945 a
+SDict begin H.S end
+ 479 2945 a 479 2945 a
+SDict begin 13 H.A end
+ 479 2945 a 479 2945
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:276) cvn H.B /DEST pdfmark
+end
+ 479 2945 a FC(which)g(\002les/directories)g(should)f(be)h(check)o(ed)
+-2 2946 y
+SDict begin H.S end
+ -2 2946 a -2 2946 a
+SDict begin 13 H.A end
+ -2 2946 a -2 2946 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:277) cvn H.B /DEST pdfmark
+end
+ -2
+2946 a Black 396 3094 a FB(\225)p Black 479 3094 a
+SDict begin H.S end
+ 479
+3094 a 479 3094 a
+SDict begin 13 H.A end
+ 479 3094 a 479 3094 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:278) cvn H.B /DEST pdfmark
+end
+ 479 3094 a FC(which)g(logging)e
+(f)o(acilities)j(should)e(be)i(used)396 3243 y(The)f(def)o(ault)g
+(location)f(of)h(the)g(con\002guration)d(\002le)k(is)1963
+3243 y
+SDict begin H.S end
+ 1963 3243 a 1963 3243 a
+SDict begin 13 H.A end
+ 1963 3243 a 1963 3243
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:279) cvn H.B /DEST pdfmark
+end
+ 1963 3243 a Fr(/etc/samhainrc)e FC(\(see)p 0 TeXcolorgray
+2766 3243 a
+SDict begin H.S end
+ 2766 3243 a FC(Section)h(2.10)3183 3243 y
+SDict begin 13 H.L end
+
+3183 3243 a 3183 3243 a
+SDict begin [ /Subtype /Link /Dest (0:LAYOUT) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3183 3243 a Black -2 w FC(>\).)g(T)-7
+b(o)396 3351 y(customize,)19 b(type:)-2 3452 y
+SDict begin H.S end
+ -2 3452
+a -2 3452 a
+SDict begin 11.7 H.A end
+ -2 3452 a -2 3452 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:281) cvn H.B /DEST pdfmark
+end
+ -2 3452 a -2 3452 a
+SDict begin H.S end
+ -2
+3452 a -2 3452 a
+SDict begin 11.7 H.A end
+ -2 3452 a -2 3452 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:282) cvn H.B /DEST pdfmark
+end
+ -2 3452 a 396 3532
+a Ft(sh$)558 3532 y
+SDict begin H.S end
+ 558 3532 a 558 3532 a
+SDict begin 11.7 H.A end
+ 558 3532 a
+558 3532 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:283) cvn H.B /DEST pdfmark
+end
+ 558 3532 a Fs(vi)41 b(/etc/samhainrc)-2 3705
+y
+SDict begin H.S end
+ -2 3705 a -2 3705 a
+SDict begin 13 H.A end
+ -2 3705 a -2 3705 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:284) cvn H.B /DEST pdfmark
+end
+ -2 3705 a 396
+3806 a FC(The)20 b(def)o(ault)g(con\002guration)d(\002le)k(is)g(hea)n
+(vily)f(commented)e(to)i(help)g(you.)f(F)o(or)h(a)g(list)i(of)d(all)i
+(runtime)396 3913 y(con\002guration)d(directi)n(v)o(es,)h(please)h(ha)n
+(v)o(e)g(a)g(look)g(at)p 0 TeXcolorgray 1930 3913 a
+SDict begin H.S end
+ 1930
+3913 a FC(Appendix)e(C)2333 3913 y
+SDict begin 13 H.L end
+ 2333 3913 a 2333 3913
+a
+SDict begin [ /Subtype /Link /Dest (0:THE-CONFIGURATION-FILE) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2333 3913 a Black 1 w FC(>.)-2 4097 y
+SDict begin H.S end
+ -2 4097 a -2
+4097 a
+SDict begin 13 H.A end
+ -2 4097 a -2 4097 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:286) cvn H.B /DEST pdfmark
+end
+ -2 4097 a 396 4187 a FC(If)i(you)g(ha)n(v)o
+(e)f(an)o(y)h(typos)f(or)h(other)g(errors)f(in)h(your)f
+(con\002guration)f(\002le,)2497 4187 y
+SDict begin H.S end
+ 2497 4187 a 2497
+4187 a
+SDict begin 13 H.A end
+ 2497 4187 a 2497 4187 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:287) cvn H.B /DEST pdfmark
+end
+ 2497 4187 a FC(samhain)i(will)h(log)f(w)
+o(arning)f(messages)396 4295 y(upon)g(startup)h(including)e(the)i
+(corresponding)d(line)j(number)f(of)h(the)g(con\002guration)d(\002le.)
+-2 4324 y
+SDict begin H.S end
+ -2 4324 a -2 4324 a
+SDict begin 13 H.A end
+ -2 4324 a -2 4324 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:INSTALLATION-INITIALIZE) cvn
+H.B /DEST pdfmark end
+ -2
+4324 a 359 x Fu(2.8.)39 b(Initializ)q(e)f(the)h(baseline)f(database)
+2377 4683 y
+SDict begin H.S end
+ 2377 4683 a 2377 4683 a
+SDict begin 22.464 H.A end
+ 2377 4683 a 2377
+4683 a
+SDict begin [ /View [/XYZ H.V] /Dest (4.8.1) cvn H.B /DEST pdfmark
+end
+ 2377 4683 a -2 4851 a
+SDict begin H.S end
+ -2 4851 a -2 4851 a
+SDict begin 13 H.A end
+ -2 4851
+a -2 4851 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:290) cvn H.B /DEST pdfmark
+end
+ -2 4851 a -2 4851 a
+SDict begin H.S end
+ -2 4851 a -2 4851 a
+SDict begin 13 H.A end
+ -2
+4851 a -2 4851 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:291) cvn H.B /DEST pdfmark
+end
+ -2 4851 a 396 4957 a FC(samhain)20 b(w)o(orks)g(by)f
+(comparing)f(the)i(present)g(state)h(of)f(the)g(\002lesystem)g(agains)g
+(a)h(baseline)e(database.)h(Of)396 5065 y(course,)f(this)i(baseline)f
+(database)g(must)g(be)g(initialized)g(\002rst)h(\(and)e(preferably)f
+(from)h(a)i(kno)n(wn)d(good)h(state)i(!\).)f(T)-7 b(o)396
+5173 y(perform)18 b(the)j(initialization)e(\(i.e.)h(create)g(the)g
+(baseline)g(database\),)f(type:)-2 5274 y
+SDict begin H.S end
+ -2 5274 a -2
+5274 a
+SDict begin 11.7 H.A end
+ -2 5274 a -2 5274 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:292) cvn H.B /DEST pdfmark
+end
+ -2 5274 a -2 5274 a
+SDict begin H.S end
+ -2 5274
+a -2 5274 a
+SDict begin 11.7 H.A end
+ -2 5274 a -2 5274 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:293) cvn H.B /DEST pdfmark
+end
+ -2 5274 a 396 5353 a
+Ft(sh$)558 5353 y
+SDict begin H.S end
+ 558 5353 a 558 5353 a
+SDict begin 11.7 H.A end
+ 558 5353 a 558
+5353 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:294) cvn H.B /DEST pdfmark
+end
+ 558 5353 a Fs(samhain)42 b(-t)f(init)h(-p)f(info)p
+Black 3703 5805 a Fx(8)p Black eop end
+%%Page: 9 14
+TeXDict begin 9 13 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.9) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2538 104 a
+Fx(Chapter)20 b(2.)g(Compiling)f(and)h(installing)p Black
+-2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:295) cvn H.B /DEST pdfmark
+end
+ -2 226 a
+396 309 a FC(\(with)592 309 y
+SDict begin H.S end
+ 592 309 a 592 309 a
+SDict begin 13 H.A end
+ 592
+309 a 592 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:296) cvn H.B /DEST pdfmark
+end
+ 592 309 a Fx(-p)g(info)p FC(,)g(messages)g(of)g(se)n(v)
+o(erity)f('info')g(or)h(higher)f(will)i(be)f(printed)f(to)h(your)f
+(terminal/console\).)396 583 y(If)h(the)h(database)e(\002le)i(already)e
+(e)o(xists,)h Fy(samhain)h(-t)f(init)h FC(will)2210 583
+y
+SDict begin H.S end
+ 2210 583 a 2210 583 a
+SDict begin 13 H.A end
+ 2210 583 a 2210 583 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:299) cvn H.B /DEST pdfmark
+end
+ 2210 583
+a Fx(append)f FC(to)h(it.)f(This)h(is)g(a)f(feature)g(that)g(is)h
+(intended)396 691 y(to)g(help)e(you)h(operating)1125
+691 y
+SDict begin H.S end
+ 1125 691 a 1125 691 a
+SDict begin 13 H.A end
+ 1125 691 a 1125 691 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:300) cvn H.B /DEST pdfmark
+end
+ 1125
+691 a FC(samhain)f(in)i(a)f(slightly)g(more)g(stealthy)f(w)o(ay:)i(you)
+e(can)h(append)e(the)j(database)e(e.g.)h(to)g(a)396 799
+y(JPEG)h(picture)e(\(and)h(the)g(picture)f(will)i(still)h(display)d
+(normally)g(-)h(JPEG)h(ignores)e(appended)f('garbage'\).)-2
+817 y
+SDict begin H.S end
+ -2 817 a -2 817 a
+SDict begin 11.7 H.A end
+ -2 817 a -2 817 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:301) cvn H.B /DEST pdfmark
+end
+ -2 817 a -2
+941 a
+SDict begin H.S end
+ -2 941 a -2 941 a
+SDict begin 11.7 H.A end
+ -2 941 a -2 941 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:303) cvn H.B /DEST pdfmark
+end
+ -2 941 a 562
+1020 a Fw(NO)m(TE::)i Fv(It)h(is)f(usually)g(an)g(error)f(to)h(r)q(un)
+1723 1020 y
+SDict begin H.S end
+ 1723 1020 a 1723 1020 a
+SDict begin 11.7 H.A end
+ 1723 1020 a 1723
+1020 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:304) cvn H.B /DEST pdfmark
+end
+ 1723 1020 a Fw(samhain)f(-t)i(init)e Fv(twice)o(,)h(because)f
+(\(a\))h(it)g(will)3059 1020 y
+SDict begin H.S end
+ 3059 1020 a 3059 1020
+a
+SDict begin 11.7 H.A end
+ 3059 1020 a 3059 1020 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:305) cvn H.B /DEST pdfmark
+end
+ 3059 1020 a Fq(append)25 b
+Fv(a)20 b(second)562 1117 y(baseline)e(database)g(to)j(the)e(e)n
+(xisting)g(one)o(,)g(and)g(\(b\))i(only)e(the)h(\002rst)h(baseline)d
+(database)g(will)i(be)g(used.)f(Use)562 1214 y
+SDict begin H.S end
+ 562 1214
+a 562 1214 a
+SDict begin 11.7 H.A end
+ 562 1214 a 562 1214 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:306) cvn H.B /DEST pdfmark
+end
+ 562 1214 a Fw(samhain)g(-t)i(update)
+d Fv(f)n(or)i(updating)e(the)h(baseline)f(database)o(.)g(Delete)h(or)h
+(rename)f(the)h(baseline)e(database)562 1312 y(\002le)j(if)f(y)o(ou)f
+(really)h(w)o(ant)f(to)h(r)q(un)1466 1312 y
+SDict begin H.S end
+ 1466 1312
+a 1466 1312 a
+SDict begin 11.7 H.A end
+ 1466 1312 a 1466 1312 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:307) cvn H.B /DEST pdfmark
+end
+ 1466 1312 a Fw(samhain)f(-t)i
+(init)e Fv(a)i(second)e(time)o(.)-2 1544 y
+SDict begin H.S end
+ -2 1544 a
+-2 1544 a
+SDict begin 13 H.A end
+ -2 1544 a -2 1544 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:INSTALLATION-RUNNING) cvn H.B
+/DEST pdfmark end
+ -2 1544 a 377 x Fu(2.9.)39
+b(Run)g(samhain)1180 1921 y
+SDict begin H.S end
+ 1180 1921 a 1180 1921 a
+SDict begin 22.464 H.A end
+ 1180
+1921 a 1180 1921 a
+SDict begin [ /View [/XYZ H.V] /Dest (4.9.1) cvn H.B /DEST pdfmark
+end
+ 1180 1921 a -2 2089 a
+SDict begin H.S end
+ -2 2089 a -2
+2089 a
+SDict begin 13 H.A end
+ -2 2089 a -2 2089 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:310) cvn H.B /DEST pdfmark
+end
+ -2 2089 a 396 2195 a FC(After)20
+b(successful)g(initialization)g(of)g(the)g(baseline)g(database,)f(you)g
+(can)h(run)2640 2195 y
+SDict begin H.S end
+ 2640 2195 a 2640 2195 a
+SDict begin 13 H.A end
+ 2640 2195
+a 2640 2195 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:311) cvn H.B /DEST pdfmark
+end
+ 2640 2195 a FC(samhain)f(in)h('check')f(mode)g(by)396
+2303 y(typing:)-2 2404 y
+SDict begin H.S end
+ -2 2404 a -2 2404 a
+SDict begin 11.7 H.A end
+ -2 2404
+a -2 2404 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:312) cvn H.B /DEST pdfmark
+end
+ -2 2404 a -2 2404 a
+SDict begin H.S end
+ -2 2404 a -2 2404 a
+SDict begin 11.7 H.A end
+ -2
+2404 a -2 2404 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:313) cvn H.B /DEST pdfmark
+end
+ -2 2404 a 396 2483 a Ft(sh$)558 2483
+y
+SDict begin H.S end
+ 558 2483 a 558 2483 a
+SDict begin 11.7 H.A end
+ 558 2483 a 558 2483 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:314) cvn H.B /DEST pdfmark
+end
+ 558 2483
+a Fs(samhain)42 b(-t)f(check)-2 2657 y
+SDict begin H.S end
+ -2 2657 a -2 2657
+a
+SDict begin 13 H.A end
+ -2 2657 a -2 2657 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:315) cvn H.B /DEST pdfmark
+end
+ -2 2657 a 396 2757 a FC(T)-7 b(o)21
+b(run)634 2757 y
+SDict begin H.S end
+ 634 2757 a 634 2757 a
+SDict begin 13 H.A end
+ 634 2757 a 634
+2757 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:316) cvn H.B /DEST pdfmark
+end
+ 634 2757 a FC(samhain)f(as)g(a)h(daemon,)d(you)i(can)g(either)f
+(use)i(the)f(command)e(line)j(option)e('-D',)g(or)h(set)h(daemon)d
+(mode)396 2865 y(in)j(the)f(con\002guration)d(\002le)k(with)g(the)f
+(option)f('Daemon=yes'.)-2 2893 y
+SDict begin H.S end
+ -2 2893 a -2 2893 a
+SDict begin 13 H.A end
+
+-2 2893 a -2 2893 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:LAYOUT) cvn H.B /DEST pdfmark
+end
+ -2 2893 a 360 x Fu(2.10.)39 b(Files)g(and)f
+(director)q(y)h(la)m(y)l(out)2091 3253 y
+SDict begin H.S end
+ 2091 3253 a
+2091 3253 a
+SDict begin 22.464 H.A end
+ 2091 3253 a 2091 3253 a
+SDict begin [ /View [/XYZ H.V] /Dest (4.10.1) cvn H.B /DEST pdfmark
+end
+ 2091 3253 a -2 3282
+a
+SDict begin H.S end
+ -2 3282 a -2 3282 a
+SDict begin 11.7 H.A end
+ -2 3282 a -2 3282 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:319) cvn H.B /DEST pdfmark
+end
+ -2 3282 a -2
+3407 a
+SDict begin H.S end
+ -2 3407 a -2 3407 a
+SDict begin 11.7 H.A end
+ -2 3407 a -2 3407 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:321) cvn H.B /DEST pdfmark
+end
+ -2 3407
+a 562 3474 a Fw(TIP:)724 3474 y
+SDict begin H.S end
+ 724 3474 a 724 3474 a
+SDict begin 11.7 H.A end
+
+724 3474 a 724 3474 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:322) cvn H.B /DEST pdfmark
+end
+ 724 3474 a Fv(samhain)19 b(has)i(its)f(o)o(wn)g
+(set)g(of)1624 3474 y
+SDict begin H.S end
+ 1624 3474 a 1624 3474 a
+SDict begin 11.7 H.A end
+ 1624 3474
+a 1624 3474 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:323) cvn H.B /DEST pdfmark
+end
+ 1624 3474 a Fq(tr)q(usted)g(users)r Fv(.)g(P)m(aths)g(to)
+g(cr)q(itical)f(\002les)i(\(e)o(.g.)e(the)h(con\002gur)o(ation)e
+(\002le\))562 3571 y(m)o(ust)i(be)e(wr)q(iteab)o(le)e(b)o(y)i(tr)q
+(usted)g(users)h(only)-7 b(.)17 b(F)l(ailure)g(to)h(ensure)g(this)g
+(\(e)o(.g.)g(b)o(y)g(compiling)f(in)h(an)g(appropr)q(iate)562
+3669 y(set)j(of)f(tr)q(usted)f(users\))h(is)1319 3669
+y
+SDict begin H.S end
+ 1319 3669 a 1319 3669 a
+SDict begin 11.7 H.A end
+ 1319 3669 a 1319 3669 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:324) cvn H.B /DEST pdfmark
+end
+ 1319
+3669 a Fq(one)g(of)g(the)f(most)i(frequent)d(reasons)h(f)n(or)h(prob)o
+(lems)r Fv(.)f(See)g(belo)o(w)g(f)n(or)h(details)o(.)39
+3818 y
+SDict begin H.S end
+ 39 3818 a 39 3818 a
+SDict begin 13 H.A end
+ 39 3818 a 39 3818 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEFTRUST) cvn H.B /DEST pdfmark
+end
+ 39 3818
+a 396 4146 a Fp(2.10.1.)36 b(T)-10 b(rusted)34 b(user)n(s)h(and)e
+(trusted)h(paths)2610 4146 y
+SDict begin H.S end
+ 2610 4146 a 2610 4146 a
+SDict begin 18.72 H.A end
+
+2610 4146 a 2610 4146 a
+SDict begin [ /View [/XYZ H.V] /Dest (4.10.2.2) cvn H.B /DEST pdfmark
+end
+ 2610 4146 a -2 4171 a
+SDict begin H.S end
+ -2 4171
+a -2 4171 a
+SDict begin 13 H.A end
+ -2 4171 a -2 4171 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:327) cvn H.B /DEST pdfmark
+end
+ -2 4171 a -2 4195 a
+SDict begin H.S end
+ -2
+4195 a -2 4195 a
+SDict begin 13 H.A end
+ -2 4195 a -2 4195 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:328) cvn H.B /DEST pdfmark
+end
+ -2 4195 a Black
+396 4343 a FB(\225)p Black 479 4343 a
+SDict begin H.S end
+ 479 4343 a 479
+4343 a
+SDict begin 13 H.A end
+ 479 4343 a 479 4343 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:329) cvn H.B /DEST pdfmark
+end
+ 479 4343 a 479 4343 a
+SDict begin H.S end
+ 479
+4343 a 479 4343 a
+SDict begin 13 H.A end
+ 479 4343 a 479 4343 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:330) cvn H.B /DEST pdfmark
+end
+ 479 4343 a Fx(T)-5
+b(rusted)21 b(user)o(s)g FC(are)1066 4343 y
+SDict begin H.S end
+ 1066 4343
+a 1066 4343 a
+SDict begin 13 H.A end
+ 1066 4343 a 1066 4343 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:331) cvn H.B /DEST pdfmark
+end
+ 1066 4343 a Fx(r)l(oot)h
+FC(and)e(the)1486 4343 y
+SDict begin H.S end
+ 1486 4343 a 1486 4343 a
+SDict begin 13 H.A end
+ 1486
+4343 a 1486 4343 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:332) cvn H.B /DEST pdfmark
+end
+ 1486 4343 a Fx(ef)o(fective)g(user)j
+FC(of)d(the)g(process)g(\(usually)-5 b(,)18 b(the)i(ef)n(fecti)n(v)o(e)
+f(user)h(will)h(be)f(root)479 4451 y(herself\).)f(Additional)g(trusted)
+h(users)g(can)g(be)g(de\002ned)g(in)g(the)g(con\002guration)e(\002le)j
+(\(see)f(Sect.)p 0 TeXcolorgray 3225 4451 a
+SDict begin H.S end
+ 3225 4451
+a FC(Section)g(4.5)3600 4451 y
+SDict begin 13 H.L end
+ 3600 4451 a 3600 4451
+a
+SDict begin [ /Subtype /Link /Dest (0:TRUSTEDEXAMPLE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3600 4451 a Black 20 w FC(for)479 4559 y(an)g(e)o(xample\),)f(or)h
+(at)g(compile)f(time,)i(with)f(the)g(option)-2 4619 y
+SDict begin H.S end
+
+-2 4619 a -2 4619 a
+SDict begin 11.7 H.A end
+ -2 4619 a -2 4619 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:334) cvn H.B /DEST pdfmark
+end
+ -2 4619 a -2
+4619 a
+SDict begin H.S end
+ -2 4619 a -2 4619 a
+SDict begin 11.7 H.A end
+ -2 4619 a -2 4619 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:335) cvn H.B /DEST pdfmark
+end
+ -2 4619
+a 479 4698 a Ft(bash$)679 4698 y
+SDict begin H.S end
+ 679 4698 a 679 4698
+a
+SDict begin 11.7 H.A end
+ 679 4698 a 679 4698 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:336) cvn H.B /DEST pdfmark
+end
+ 679 4698 a Fs(./configure)46
+b(--with-trusted=0,..)q(.)-2 4707 y
+SDict begin H.S end
+ -2 4707 a -2 4707
+a
+SDict begin 13 H.A end
+ -2 4707 a -2 4707 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:337) cvn H.B /DEST pdfmark
+end
+ -2 4707 a Black 396 4847 a FB(\225)p
+Black 479 4847 a
+SDict begin H.S end
+ 479 4847 a 479 4847 a
+SDict begin 13 H.A end
+ 479 4847 a 479
+4847 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:338) cvn H.B /DEST pdfmark
+end
+ 479 4847 a FC(A)560 4847 y
+SDict begin H.S end
+ 560 4847 a 560 4847
+a
+SDict begin 13 H.A end
+ 560 4847 a 560 4847 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:339) cvn H.B /DEST pdfmark
+end
+ 560 4847 a Fx(trusted)20 b(path)g
+FC(is)h(a)f(path)g(with)h(all)f(elements)g(writeable)g(only)f(by)h
+(trusted)g(users.)2926 4847 y
+SDict begin H.S end
+ 2926 4847 a 2926 4847 a
+SDict begin 13 H.A end
+
+2926 4847 a 2926 4847 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:340) cvn H.B /DEST pdfmark
+end
+ 2926 4847 a FC(samhain)f(requires)h(the)479
+4955 y(paths)g(to)h(the)f(con\002guration)d(and)j(log)g(\002le)h(to)f
+(be)g(trusted)g(paths,)g(as)h(well)f(as)h(the)f(path)g(to)h(the)f(pid)g
+(\002le.)p Black 3703 5805 a Fx(9)p Black eop end
+%%Page: 10 15
+TeXDict begin 10 14 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.10) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2538 104 a
+Fx(Chapter)20 b(2.)g(Compiling)f(and)h(installing)p Black
+-2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:341) cvn H.B /DEST pdfmark
+end
+ -2 226 a
+396 309 a FC(If)g(a)h(path)f(element)f(is)i(group)e(writeable,)g(all)i
+(group)d(members)i(must)g(be)g(trusted.)f(If)h(the)h(path)e(to)i(the)
+396 417 y(con\002guration)d(\002le)j(itself)f(is)i(writeable)d(by)h
+(other)f(users)i(than)2229 417 y
+SDict begin H.S end
+ 2229 417 a 2229 417
+a
+SDict begin 13 H.A end
+ 2229 417 a 2229 417 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:342) cvn H.B /DEST pdfmark
+end
+ 2229 417 a Fx(r)l(oot)h FC(and)e(the)2649
+417 y
+SDict begin H.S end
+ 2649 417 a 2649 417 a
+SDict begin 13 H.A end
+ 2649 417 a 2649 417 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:343) cvn H.B /DEST pdfmark
+end
+ 2649
+417 a Fx(ef)o(fective)g(user)j FC(these)d(must)g(be)396
+525 y(de\002ned)f(as)i(trusted)f(already)f(at)i(compile)e(time.)-2
+543 y
+SDict begin H.S end
+ -2 543 a -2 543 a
+SDict begin 11.7 H.A end
+ -2 543 a -2 543 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:344) cvn H.B /DEST pdfmark
+end
+ -2 543 a -2
+667 a
+SDict begin H.S end
+ -2 667 a -2 667 a
+SDict begin 11.7 H.A end
+ -2 667 a -2 667 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:346) cvn H.B /DEST pdfmark
+end
+ -2 667 a 562
+746 a Fw(NO)m(TE:)i Fv(The)e(list)h(of)g(g)o(roup)f(members)h(in)1779
+746 y
+SDict begin H.S end
+ 1779 746 a 1779 746 a
+SDict begin 11.7 H.A end
+ 1779 746 a 1779 746 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:347) cvn H.B /DEST pdfmark
+end
+ 1779
+746 a Ft(/etc/group)25 b Fv(ma)n(y)20 b(be)g(incomplete)e(or)i(e)n(v)n
+(en)g(empty)-7 b(.)3353 746 y
+SDict begin H.S end
+ 3353 746 a 3353 746 a
+SDict begin 11.7 H.A end
+ 3353
+746 a 3353 746 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:348) cvn H.B /DEST pdfmark
+end
+ 3353 746 a Fv(samhain)562 843 y(will)20
+b(chec)o(k)901 843 y
+SDict begin H.S end
+ 901 843 a 901 843 a
+SDict begin 11.7 H.A end
+ 901 843 a 901
+843 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:349) cvn H.B /DEST pdfmark
+end
+ 901 843 a Ft(/etc/passwd)25 b Fv(\(where)19 b(each)h(user)g(has)g
+(a)g(GID)h(\002eld\))f(in)g(addition)d(to)2948 843 y
+SDict begin H.S end
+
+2948 843 a 2948 843 a
+SDict begin 11.7 H.A end
+ 2948 843 a 2948 843 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:350) cvn H.B /DEST pdfmark
+end
+ 2948 843
+a Ft(/etc/group)24 b Fv(to)c(\002nd)h(all)562 940 y(members)f(of)h(a)f
+(g)o(roup)m(.)-2 1173 y
+SDict begin H.S end
+ -2 1173 a -2 1173 a
+SDict begin 13 H.A end
+ -2 1173 a
+-2 1173 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:LAYOUT-DETAILS) cvn H.B /DEST
+pdfmark end
+ -2 1173 a 396 1501 a Fp(2.10.2.)36 b(Director)q(y)e(la)n(y)m
+(out)1700 1501 y
+SDict begin H.S end
+ 1700 1501 a 1700 1501 a
+SDict begin 18.72 H.A end
+ 1700 1501 a
+1700 1501 a
+SDict begin [ /View [/XYZ H.V] /Dest (4.10.3.2) cvn H.B /DEST pdfmark
+end
+ 1700 1501 a -2 1692 a
+SDict begin H.S end
+ -2 1692 a -2 1692 a
+SDict begin 13 H.A end
+
+-2 1692 a -2 1692 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:353) cvn H.B /DEST pdfmark
+end
+ -2 1692 a -2 1692 a
+SDict begin H.S end
+ -2 1692 a -2
+1692 a
+SDict begin 13 H.A end
+ -2 1692 a -2 1692 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:354) cvn H.B /DEST pdfmark
+end
+ -2 1692 a 396 1775 a FC(samhain)20
+b(conforms)e(to)i(the)h(FHS,)f(which)g(mandates)f(a)i(directory)d
+(layout)i(that)g(is)h(dif)n(ferent)e(from)g(the)h(def)o(ault)396
+1883 y(GNU)h(layout)e(\(e)n(v)o(erything)e(in)k(subdirectories)d(under)
+2007 1883 y
+SDict begin H.S end
+ 2007 1883 a 2007 1883 a
+SDict begin 13 H.A end
+ 2007 1883 a 2007
+1883 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:355) cvn H.B /DEST pdfmark
+end
+ 2007 1883 a Fr(/etc/local)p FC(\).)-2 1901 y
+SDict begin H.S end
+ -2
+1901 a -2 1901 a
+SDict begin 11.7 H.A end
+ -2 1901 a -2 1901 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:356) cvn H.B /DEST pdfmark
+end
+ -2 1901 a -2 2025
+a
+SDict begin H.S end
+ -2 2025 a -2 2025 a
+SDict begin 11.7 H.A end
+ -2 2025 a -2 2025 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:358) cvn H.B /DEST pdfmark
+end
+ -2 2025 a 562
+2105 a Fw(TIP:)i Fv(There)f(is)i(an)f(option)1343 2105
+y
+SDict begin H.S end
+ 1343 2105 a 1343 2105 a
+SDict begin 11.7 H.A end
+ 1343 2105 a 1343 2105 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:359) cvn H.B /DEST pdfmark
+end
+ 1343
+2105 a Fw(./con\002gure)e(--enab)o(le-install-name=)2542
+2105 y
+SDict begin H.S end
+ 2542 2105 a 2542 2105 a
+SDict begin 11.7 H.A end
+ 2542 2105 a 2542 2105
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:360) cvn H.B /DEST pdfmark
+end
+ 2542 2105 a Fm(NAME)5 b Fv(.)16 b(When)j(this)h(option)e(is)j(used,)e
+(not)562 2202 y(only)h(the)g(e)n(x)n(ecutab)o(le)d(is)k(installed)c(as)
+1690 2202 y
+SDict begin H.S end
+ 1690 2202 a 1690 2202 a
+SDict begin 11.7 H.A end
+ 1690 2202 a 1690
+2202 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:361) cvn H.B /DEST pdfmark
+end
+ 1690 2202 a Fq(NAME)7 b Fv(,)21 b(b)o(ut)e(also)h(in)f(all)h
+(the)g(paths)o(,)2758 2202 y
+SDict begin H.S end
+ 2758 2202 a 2758 2202 a
+SDict begin 11.7 H.A end
+
+2758 2202 a 2758 2202 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:362) cvn H.B /DEST pdfmark
+end
+ 2758 2202 a Fq(samhain)g Fv(is)h(replaced)d
+(with)562 2299 y
+SDict begin H.S end
+ 562 2299 a 562 2299 a
+SDict begin 11.7 H.A end
+ 562 2299 a 562
+2299 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:363) cvn H.B /DEST pdfmark
+end
+ 562 2299 a Fq(NAME)7 b Fv(.)39 2438 y
+SDict begin H.S end
+ 39 2438
+a 39 2438 a
+SDict begin 11.7 H.A end
+ 39 2438 a 39 2438 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:364) cvn H.B /DEST pdfmark
+end
+ 39 2438 a -2 2604 a
+SDict begin H.S end
+ -2
+2604 a -2 2604 a
+SDict begin 11.7 H.A end
+ -2 2604 a -2 2604 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:366) cvn H.B /DEST pdfmark
+end
+ -2 2604 a 562 2701
+a Fw(NO)m(TE:)21 b Fv(F)n(or)e(the)1068 2701 y
+SDict begin H.S end
+ 1068 2701
+a 1068 2701 a
+SDict begin 11.7 H.A end
+ 1068 2701 a 1068 2701 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:367) cvn H.B /DEST pdfmark
+end
+ 1068 2701 a Fv(yule)h(ser)r(v)n
+(er)l(,)g(replace)1737 2701 y
+SDict begin H.S end
+ 1737 2701 a 1737 2701 a
+SDict begin 11.7 H.A end
+
+1737 2701 a 1737 2701 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:368) cvn H.B /DEST pdfmark
+end
+ 1737 2701 a Fq(samhain)g Fv(with)2195
+2701 y
+SDict begin H.S end
+ 2195 2701 a 2195 2701 a
+SDict begin 11.7 H.A end
+ 2195 2701 a 2195 2701
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:369) cvn H.B /DEST pdfmark
+end
+ 2195 2701 a Fq(yule)i Fv(in)d(the)h(paths)g(e)n(xplained)d(belo)o(w)l
+(.)-2 3016 y
+SDict begin H.S end
+ -2 3016 a -2 3016 a
+SDict begin 13 H.A end
+ -2 3016 a -2 3016 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:370) cvn H.B /DEST pdfmark
+end
+
+-2 3016 a 396 3124 a FC(The)j(follo)n(wing)f(table)h(e)o(xplains)f
+(which)h(directory)e(layout)h(results)i(from)2558 3124
+y
+SDict begin H.S end
+ 2558 3124 a 2558 3124 a
+SDict begin 13 H.A end
+ 2558 3124 a 2558 3124 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:371) cvn H.B /DEST pdfmark
+end
+ 2558
+3124 a Fy(./con\002gur)o(e)e(--pr)o(e\002x=)3263 3124
+y
+SDict begin H.S end
+ 3263 3124 a 3263 3124 a
+SDict begin 13 H.A end
+ 3263 3124 a 3263 3124 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:372) cvn H.B /DEST pdfmark
+end
+ 3263
+3124 a Fl(PREFIX)-2 3142 y
+SDict begin H.S end
+ -2 3142 a -2 3142 a
+SDict begin 13 H.A end
+ -2 3142
+a -2 3142 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:373) cvn H.B /DEST pdfmark
+end
+ -2 3142 a -2 3236 a
+SDict begin H.S end
+ -2 3236 a -2 3236 a
+SDict begin 13 H.A end
+ -2
+3236 a -2 3236 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:374) cvn H.B /DEST pdfmark
+end
+ -2 3236 a -2 3236 a
+SDict begin H.S end
+ -2 3236 a -2 3236
+a
+SDict begin 13 H.A end
+ -2 3236 a -2 3236 a
+SDict begin [ /View [/XYZ H.V] /Dest (table.1) cvn H.B /DEST pdfmark
+end
+ -2 3236 a 396 3239 3365 4 v 396
+3239 V 396 3363 4 125 v 424 3338 a FD(sbindir)p 1237
+3363 V 564 w(mandir)p 2077 3363 V 563 w(sysconfdir)p
+2917 3363 V 420 w(localstatedir)p 3758 3363 V 396 3367
+3365 4 v 396 3367 V 396 3491 4 125 v 424 3466 a FC(PREFIX)p
+1237 3491 V 555 w(\(none\))p 2077 3491 V 2917 3491 V
+3758 3491 V 396 3495 3365 4 v 396 3495 V 396 3619 4 125
+v 424 3594 a(/usr/local/sbin)p 1237 3619 V 369 w(/usr/local/man)p
+2077 3619 V 363 w(/etc)p 2917 3619 V 720 w(/v)n(ar)p
+3758 3619 V 396 3622 3365 4 v 396 3622 V 396 3747 4 125
+v 424 3722 a(PREFIX)p 1237 3747 V 555 w(USR)i(\(all)f(capital\))p
+2077 3747 V 2917 3747 V 3758 3747 V 396 3750 3365 4 v
+396 3750 V 396 3875 4 125 v 424 3850 a(/usr/sbin)p 1237
+3875 V 554 w(/usr/share/man)p 2077 3875 V 349 w(/etc)p
+2917 3875 V 720 w(/v)n(ar)p 3758 3875 V 396 3878 3365
+4 v 396 3878 V 396 4003 4 125 v 424 3978 a(PREFIX)p 1237
+4003 V 555 w(OPT)g(\(all)h(capital\))p 2077 4003 V 2917
+4003 V 3758 4003 V 396 4006 3365 4 v 396 4006 V 396 4130
+4 125 v 424 4106 a(/opt/samhain/bin)p 1237 4130 V 280
+w(/opt/samhain/man)p 2077 4130 V 242 w(/etc/opt)p 2917
+4130 V 590 w(/v)n(ar/opt/samhain)p 3758 4130 V 396 4134
+3365 4 v 396 4134 V 396 4258 4 125 v 424 4233 a(PREFIX)p
+1237 4258 V 555 w(/other)p 2077 4258 V 2917 4258 V 3758
+4258 V 396 4262 3365 4 v 396 4262 V 396 4386 4 125 v
+424 4361 a(/other/sbin)p 1237 4386 V 484 w(/other/share/man)p
+2077 4386 V 279 w(/other/etc)p 2917 4386 V 525 w(/other/v)n(ar)p
+3758 4386 V 396 4390 3365 4 v 396 4390 V -2 4556 a
+SDict begin H.S end
+ -2
+4556 a -2 4556 a
+SDict begin 13 H.A end
+ -2 4556 a -2 4556 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:422) cvn H.B /DEST pdfmark
+end
+ -2 4556 a 396 4639
+a FC(The)f(\002le)h(signature)e(database)h(will)h(be)f(written)g(to)
+1895 4639 y
+SDict begin H.S end
+ 1895 4639 a 1895 4639 a
+SDict begin 13 H.A end
+ 1895 4639 a 1895
+4639 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:423) cvn H.B /DEST pdfmark
+end
+ 1895 4639 a Fk(localstatedir)s FC(/lib/samhain/samhain_\002le,)
+15 b(the)20 b(pid)g(\002le)396 4747 y(to)482 4747 y
+SDict begin H.S end
+ 482
+4747 a 482 4747 a
+SDict begin 13 H.A end
+ 482 4747 a 482 4747 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:424) cvn H.B /DEST pdfmark
+end
+ 482 4747 a Fk(localstatedir)s
+FC(/run/samhain.pid,)14 b(and)20 b(the)g(log)g(\002le)h(to)2271
+4747 y
+SDict begin H.S end
+ 2271 4747 a 2271 4747 a
+SDict begin 13 H.A end
+ 2271 4747 a 2271 4747
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:425) cvn H.B /DEST pdfmark
+end
+ 2271 4747 a Fk(localstatedir)s FC(/log/samhain_log.)15
+b(In)396 4854 y(addition,)710 4854 y
+SDict begin H.S end
+ 710 4854 a 710 4854
+a
+SDict begin 13 H.A end
+ 710 4854 a 710 4854 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:426) cvn H.B /DEST pdfmark
+end
+ 710 4854 a FC(yule)20 b(writes)g(an)g(HTML)g
+(status)h(\002le)g(to)1874 4854 y
+SDict begin H.S end
+ 1874 4854 a 1874 4854
+a
+SDict begin 13 H.A end
+ 1874 4854 a 1874 4854 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:427) cvn H.B /DEST pdfmark
+end
+ 1874 4854 a Fk(localstatedir)s
+FC(/log/yule/yule.html)-2 5038 y
+SDict begin H.S end
+ -2 5038 a -2 5038 a
+SDict begin 13 H.A end
+
+-2 5038 a -2 5038 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:428) cvn H.B /DEST pdfmark
+end
+ -2 5038 a 396 5128 a FC(T)-7 b(o)21
+b(get)f(a)g(more)g(\002ne-grained)e(control)h(on)g(the)i(layout,)e(the)
+h(follo)n(wing)2490 5128 y
+SDict begin H.S end
+ 2490 5128 a 2490 5128 a
+SDict begin 13 H.A end
+ 2490
+5128 a 2490 5128 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:429) cvn H.B /DEST pdfmark
+end
+ 2490 5128 a Fy(con\002gur)o(e)g FC(options)f(are)h
+(pro)o(vided)3565 5128 y
+SDict begin H.S end
+ 3565 5128 a 3565 5128 a
+SDict begin 13 H.A end
+ 3565
+5128 a 3565 5128 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:430) cvn H.B /DEST pdfmark
+end
+ 3565 5128 a -2 5157 a
+SDict begin H.S end
+ -2 5157 a -2
+5157 a
+SDict begin 13 H.A end
+ -2 5157 a -2 5157 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:431) cvn H.B /DEST pdfmark
+end
+ -2 5157 a Black 396 5299 a
+FB(\225)p Black 479 5299 a
+SDict begin H.S end
+ 479 5299 a 479 5299 a
+SDict begin 13 H.A end
+ 479
+5299 a 479 5299 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:432) cvn H.B /DEST pdfmark
+end
+ 479 5299 a 479 5299 a
+SDict begin H.S end
+ 479 5299 a 479
+5299 a
+SDict begin 13 H.A end
+ 479 5299 a 479 5299 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:433) cvn H.B /DEST pdfmark
+end
+ 479 5299 a Fx(--with-con\002g-\002le=FILE)
+e FC(\227)j(The)f(path)g(of)f(the)i(con\002guration)c(\002le.)-2
+5317 y
+SDict begin H.S end
+ -2 5317 a -2 5317 a
+SDict begin 13 H.A end
+ -2 5317 a -2 5317 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:434) cvn H.B /DEST pdfmark
+end
+ -2 5317
+a Black 3661 5805 a Fx(10)p Black eop end
+%%Page: 11 16
+TeXDict begin 11 15 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.11) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2538 104 a
+Fx(Chapter)20 b(2.)g(Compiling)f(and)h(installing)p Black
+Black 396 309 a FB(\225)p Black 479 309 a
+SDict begin H.S end
+ 479 309 a 479
+309 a
+SDict begin 13 H.A end
+ 479 309 a 479 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:435) cvn H.B /DEST pdfmark
+end
+ 479 309 a 479 309 a
+SDict begin H.S end
+ 479 309
+a 479 309 a
+SDict begin 13 H.A end
+ 479 309 a 479 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:436) cvn H.B /DEST pdfmark
+end
+ 479 309 a Fx(--with-lo)o(g-\002le=FILE)
+g FC(\227)g(The)g(path)g(of)g(the)g(log)g(\002le.)-2
+327 y
+SDict begin H.S end
+ -2 327 a -2 327 a
+SDict begin 13 H.A end
+ -2 327 a -2 327 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:437) cvn H.B /DEST pdfmark
+end
+ -2 327 a Black
+396 458 a FB(\225)p Black 479 458 a
+SDict begin H.S end
+ 479 458 a 479 458
+a
+SDict begin 13 H.A end
+ 479 458 a 479 458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:438) cvn H.B /DEST pdfmark
+end
+ 479 458 a 479 458 a
+SDict begin H.S end
+ 479 458 a 479
+458 a
+SDict begin 13 H.A end
+ 479 458 a 479 458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:439) cvn H.B /DEST pdfmark
+end
+ 479 458 a Fx(--with-pid-\002le=FILE)f
+FC(\227)i(The)f(path)g(of)g(the)g(pid)g(\002le.)-2 476
+y
+SDict begin H.S end
+ -2 476 a -2 476 a
+SDict begin 13 H.A end
+ -2 476 a -2 476 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:440) cvn H.B /DEST pdfmark
+end
+ -2 476 a Black
+396 608 a FB(\225)p Black 479 608 a
+SDict begin H.S end
+ 479 608 a 479 608
+a
+SDict begin 13 H.A end
+ 479 608 a 479 608 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:441) cvn H.B /DEST pdfmark
+end
+ 479 608 a 479 608 a
+SDict begin H.S end
+ 479 608 a 479
+608 a
+SDict begin 13 H.A end
+ 479 608 a 479 608 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:442) cvn H.B /DEST pdfmark
+end
+ 479 608 a Fx(--with-data-\002le=FILE)f
+FC(\227)i(The)f(path)f(of)h(the)g(\002le)h(signature)e(database)h
+(\002le.)-2 626 y
+SDict begin H.S end
+ -2 626 a -2 626 a
+SDict begin 13 H.A end
+ -2 626 a -2 626 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:443) cvn H.B /DEST pdfmark
+end
+
+-2 626 a Black 396 757 a FB(\225)p Black 479 757 a
+SDict begin H.S end
+ 479
+757 a 479 757 a
+SDict begin 13 H.A end
+ 479 757 a 479 757 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:444) cvn H.B /DEST pdfmark
+end
+ 479 757 a 479 757
+a
+SDict begin H.S end
+ 479 757 a 479 757 a
+SDict begin 13 H.A end
+ 479 757 a 479 757 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:445) cvn H.B /DEST pdfmark
+end
+ 479 757 a Fx
+(--with-html-\002le=FILE)g FC(\227)h(The)f(path)f(of)h(the)g(HTML)g
+(status)h(\002le)g(\(serv)o(er)e(only\).)-2 916 y
+SDict begin H.S end
+ -2
+916 a -2 916 a
+SDict begin 13 H.A end
+ -2 916 a -2 916 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:RUNTIME-FILES) cvn H.B /DEST
+pdfmark end
+ -2 916 a 396 1245 a
+Fp(2.10.3.)36 b(Runtime)f(\002les)1545 1245 y
+SDict begin H.S end
+ 1545 1245
+a 1545 1245 a
+SDict begin 18.72 H.A end
+ 1545 1245 a 1545 1245 a
+SDict begin [ /View [/XYZ H.V] /Dest (4.10.4.2) cvn H.B /DEST pdfmark
+end
+ 1545 1245 a -2
+1246 a
+SDict begin H.S end
+ -2 1246 a -2 1246 a
+SDict begin 13 H.A end
+ -2 1246 a -2 1246 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:RUNTIME-CLIENT) cvn H.B /DEST
+pdfmark end
+ -2 1246
+a 396 1532 a Fj(2.10.3.1.)29 b(Standalone)f(or)g(c)n(lient)1762
+1532 y
+SDict begin H.S end
+ 1762 1532 a 1762 1532 a
+SDict begin 15.6 H.A end
+ 1762 1532 a 1762 1532
+a
+SDict begin [ /View [/XYZ H.V] /Dest (4.10.4.1.3) cvn H.B /DEST pdfmark
+end
+ 1762 1532 a -2 1533 a
+SDict begin H.S end
+ -2 1533 a -2 1533 a
+SDict begin 13 H.A end
+ -2 1533 a
+-2 1533 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:450) cvn H.B /DEST pdfmark
+end
+ -2 1533 a -2 1636 a
+SDict begin H.S end
+ -2 1636 a -2 1636 a
+SDict begin 13 H.A end
+ -2
+1636 a -2 1636 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:451) cvn H.B /DEST pdfmark
+end
+ -2 1636 a -2 1636 a
+SDict begin H.S end
+ -2 1636 a -2 1636
+a
+SDict begin 13 H.A end
+ -2 1636 a -2 1636 a
+SDict begin [ /View [/XYZ H.V] /Dest (table.2) cvn H.B /DEST pdfmark
+end
+ -2 1636 a 396 1640 3359 4 v 396
+1640 V 396 1764 4 125 v 424 1739 a FD(Purpose)p 2074
+1764 V 1346 w(Director)q(y)p 3751 1764 V 396 1768 3359
+4 v 396 1768 V 396 1892 4 125 v 424 1867 a FC(Log\002les)p
+2074 1892 V 1405 w Fk(localstatedir)s FC(/log/)p 3751
+1892 V 396 1895 3359 4 v 396 1895 V 396 2020 4 125 v
+424 1995 a(Data)21 b(\002les)p 2074 2020 V 1362 w Fk(localstatedir)s
+FC(/lib/samhain/)p 3751 2020 V 396 2023 3359 4 v 396
+2023 V 396 2148 4 125 v 424 2123 a(Pid)g(\002le)p 2074
+2148 V 1440 w Fk(localstatedir)s FC(/run/)p 3751 2148
+V 396 2151 3359 4 v 396 2151 V -2 2234 a
+SDict begin H.S end
+ -2 2234 a -2
+2234 a
+SDict begin 13 H.A end
+ -2 2234 a -2 2234 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:RUNTIME-SERVER) cvn H.B /DEST
+pdfmark end
+ -2 2234 a 396 2505 a Fj(2.10.3.2.)29
+b(Ser)q(ver)1122 2505 y
+SDict begin H.S end
+ 1122 2505 a 1122 2505 a
+SDict begin 15.6 H.A end
+ 1122
+2505 a 1122 2505 a
+SDict begin [ /View [/XYZ H.V] /Dest (4.10.4.2.3) cvn H.B /DEST pdfmark
+end
+ 1122 2505 a -2 2506 a
+SDict begin H.S end
+ -2 2506 a -2
+2506 a
+SDict begin 11.7 H.A end
+ -2 2506 a -2 2506 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:471) cvn H.B /DEST pdfmark
+end
+ -2 2506 a -2 2631 a
+SDict begin H.S end
+ -2 2631
+a -2 2631 a
+SDict begin 11.7 H.A end
+ -2 2631 a -2 2631 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:473) cvn H.B /DEST pdfmark
+end
+ -2 2631 a 562 2726 a
+Fw(NO)m(TE:)21 b Fv(The)e(ser)r(v)n(er)i(will)e(drop)h(root)f(pr)q
+(ivileges)f(after)i(star)s(tup)m(.)f(I)i(does)e(not)h(need)f(wr)q(ite)h
+(access)h(to)f(the)g(data)562 2824 y(\002les)o(,)g(thus)g(the)f(data)g
+(\002le)h(director)r(y)f(is)i(chmod)e(555)g(on)h(installation.)c(It)k
+(does)g(need)e(wr)q(ite)i(access)h(to)e(the)h(log)562
+2921 y(\002le)h(director)r(y)-7 b(.)18 b(As)j(the)f(system)h(log\002le)
+e(director)r(y)h(usually)f(is)i(o)o(wned)e(b)o(y)h(root,)f(the)h
+(install)e(scr)q(ipt)j(will)e(b)o(y)562 3018 y(def)n(ault)f(create)i(a)
+g(subdirector)r(y)f(and)g(cho)o(wn)h(it)g(to)g(the)g(unpr)q(ivileged)c
+(yule)k(user)l(.)g(The)g(PID)g(\002le)g(is)h(wr)q(itten)562
+3115 y(bef)n(ore)e(dropping)e(root.)39 3264 y
+SDict begin H.S end
+ 39 3264
+a 39 3264 a
+SDict begin 13 H.A end
+ 39 3264 a 39 3264 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:474) cvn H.B /DEST pdfmark
+end
+ 39 3264 a -2 3430 a
+SDict begin H.S end
+ -2
+3430 a -2 3430 a
+SDict begin 13 H.A end
+ -2 3430 a -2 3430 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:475) cvn H.B /DEST pdfmark
+end
+ -2 3430 a -2 3430
+a
+SDict begin H.S end
+ -2 3430 a -2 3430 a
+SDict begin 13 H.A end
+ -2 3430 a -2 3430 a
+SDict begin [ /View [/XYZ H.V] /Dest (table.3) cvn H.B /DEST pdfmark
+end
+ -2 3430 a 396
+3434 3359 4 v 396 3434 V 396 3558 4 125 v 424 3533 a
+FD(Purpose)p 2074 3558 V 1346 w(Director)q(y)p 3751 3558
+V 396 3562 3359 4 v 396 3562 V 396 3686 4 125 v 424 3661
+a FC(Log\002les)p 2074 3686 V 1405 w Fk(localstatedir)s
+FC(/log/yule/)p 3751 3686 V 396 3690 3359 4 v 396 3690
+V 396 3814 4 125 v 424 3789 a(Data)k(\002les)p 2074 3814
+V 1362 w Fk(localstatedir)s FC(/lib/yule/)p 3751 3814
+V 396 3817 3359 4 v 396 3817 V 396 3942 4 125 v 424 3917
+a(Pid)g(\002le)p 2074 3942 V 1440 w Fk(localstatedir)s
+FC(/run/)p 3751 3942 V 396 3945 3359 4 v 396 3945 V -2
+4111 a
+SDict begin H.S end
+ -2 4111 a -2 4111 a
+SDict begin 13 H.A end
+ -2 4111 a -2 4111 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:INSTALLATION-FILES) cvn H.B
+/DEST pdfmark end
+ -2 4111
+a 396 4414 a Fp(2.10.4.)36 b(Installed)f(\002les)1551
+4414 y
+SDict begin H.S end
+ 1551 4414 a 1551 4414 a
+SDict begin 18.72 H.A end
+ 1551 4414 a 1551 4414
+a
+SDict begin [ /View [/XYZ H.V] /Dest (4.10.5.2) cvn H.B /DEST pdfmark
+end
+ 1551 4414 a -2 4415 a
+SDict begin H.S end
+ -2 4415 a -2 4415 a
+SDict begin 13 H.A end
+ -2 4415 a
+-2 4415 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:INSTALLED-CLIENT) cvn H.B /DEST
+pdfmark end
+ -2 4415 a 396 4702 a Fj(2.10.4.1.)29 b(Standalone)f(or)g(c)n
+(lient)1762 4702 y
+SDict begin H.S end
+ 1762 4702 a 1762 4702 a
+SDict begin 15.6 H.A end
+ 1762 4702
+a 1762 4702 a
+SDict begin [ /View [/XYZ H.V] /Dest (4.10.5.3.3) cvn H.B /DEST pdfmark
+end
+ 1762 4702 a -2 4703 a
+SDict begin H.S end
+ -2 4703 a -2 4703
+a
+SDict begin 13 H.A end
+ -2 4703 a -2 4703 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:497) cvn H.B /DEST pdfmark
+end
+ -2 4703 a -2 4806 a
+SDict begin H.S end
+ -2 4806 a -2
+4806 a
+SDict begin 13 H.A end
+ -2 4806 a -2 4806 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:498) cvn H.B /DEST pdfmark
+end
+ -2 4806 a -2 4806 a
+SDict begin H.S end
+ -2 4806
+a -2 4806 a
+SDict begin 13 H.A end
+ -2 4806 a -2 4806 a
+SDict begin [ /View [/XYZ H.V] /Dest (table.4) cvn H.B /DEST pdfmark
+end
+ -2 4806 a 396 4809 3362
+4 v 396 4809 V 396 4934 4 125 v 424 4909 a FD(File)p
+1516 4934 V 977 w(Installed)23 b(to)p 2635 4934 V 680
+w(Mode)p 3754 4934 V 396 4937 3362 4 v 396 4937 V 396
+5062 4 125 v 424 5037 a FC(samhain)p 1516 5062 V 842
+w Fk(sbindir)s FC(/samhain)p 2635 5062 V 500 w(700)p
+3754 5062 V 396 5065 3362 4 v 396 5065 V 396 5189 4 125
+v 424 5165 a(samhainrc)p 1516 5189 V 777 w Fk(sysconfdir)s
+FC(/samhainrc)p 2635 5189 V 300 w(600)p 3754 5189 V 396
+5193 3362 4 v 396 5193 V 396 5317 4 125 v 424 5292 a(samhain.8)p
+1516 5317 V 779 w Fk(mandir)s FC(/man8/samhain.8)p 2635
+5317 V 273 w(644)p 3754 5317 V 396 5321 3362 4 v Black
+3661 5805 a Fx(11)p Black eop end
+%%Page: 12 17
+TeXDict begin 12 16 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.12) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2538 104 a
+Fx(Chapter)20 b(2.)g(Compiling)f(and)h(installing)p Black
+396 229 3362 4 v 396 229 V 396 354 4 125 v 424 329 a
+FD(File)p 1516 354 V 977 w(Installed)j(to)p 2635 354
+V 680 w(Mode)p 3754 354 V 396 354 3362 4 v 396 478 4
+125 v 424 453 a FC(samhainrc.5)p 1516 478 V 714 w Fk(mandir)s
+FC(/man5/samhainrc.5)p 2635 478 V 208 w(644)p 3754 478
+V 396 481 3362 4 v 396 481 V 396 606 4 125 v 424 581
+a(\(samhain_setpwd\))p 1516 606 V 508 w Fk(sbindir)s
+FC(/samhain_setpwd)p 2635 606 V 222 w(700)p 3754 606
+V 396 609 3362 4 v 396 609 V 396 734 4 125 v 424 709
+a(\(samhain_stealth\))p 1516 734 V 527 w Fk(sbindir)s
+FC(/samhain_stealth)p 2635 734 V 241 w(700)p 3754 734
+V 396 737 3362 4 v 396 737 V -2 820 a
+SDict begin H.S end
+ -2 820 a -2 820
+a
+SDict begin 13 H.A end
+ -2 820 a -2 820 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:INSTALLED-SERVER) cvn H.B /DEST
+pdfmark end
+ -2 820 a 396 1091 a Fj(2.10.4.2.)29
+b(Ser)q(ver)1122 1091 y
+SDict begin H.S end
+ 1122 1091 a 1122 1091 a
+SDict begin 15.6 H.A end
+ 1122
+1091 a 1122 1091 a
+SDict begin [ /View [/XYZ H.V] /Dest (4.10.5.4.3) cvn H.B /DEST pdfmark
+end
+ 1122 1091 a -2 1092 a
+SDict begin H.S end
+ -2 1092 a -2
+1092 a
+SDict begin 13 H.A end
+ -2 1092 a -2 1092 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:537) cvn H.B /DEST pdfmark
+end
+ -2 1092 a -2 1195 a
+SDict begin H.S end
+ -2 1195
+a -2 1195 a
+SDict begin 13 H.A end
+ -2 1195 a -2 1195 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:538) cvn H.B /DEST pdfmark
+end
+ -2 1195 a -2 1195 a
+SDict begin H.S end
+ -2
+1195 a -2 1195 a
+SDict begin 13 H.A end
+ -2 1195 a -2 1195 a
+SDict begin [ /View [/XYZ H.V] /Dest (table.5) cvn H.B /DEST pdfmark
+end
+ -2 1195 a 396 1198
+3362 4 v 396 1198 V 396 1323 4 125 v 424 1298 a FD(File)p
+1516 1323 V 977 w(Installed)23 b(to)p 2635 1323 V 680
+w(Mode)p 3754 1323 V 396 1326 3362 4 v 396 1326 V 396
+1451 4 125 v 424 1426 a FC(yule)p 1516 1451 V 976 w Fk(sbindir)s
+FC(/yule)p 2635 1451 V 634 w(700)p 3754 1451 V 396 1454
+3362 4 v 396 1454 V 396 1579 4 125 v 424 1554 a(yulectl)p
+1516 1579 V 893 w Fk(sbindir)s FC(/yulectl)p 2635 1579
+V 551 w(700)p 3754 1579 V 396 1582 3362 4 v 396 1582
+V 396 1706 4 125 v 424 1681 a(yulerc)p 1516 1706 V 911
+w Fk(sysconfdir)s FC(/yulerc)p 2635 1706 V 434 w(600)p
+3754 1706 V 396 1710 3362 4 v 396 1710 V 396 1834 4 125
+v 424 1809 a(samhain.8)p 1516 1834 V 779 w Fk(mandir)s
+FC(/man8/yule.8)p 2635 1834 V 407 w(644)p 3754 1834 V
+396 1838 3362 4 v 396 1838 V 396 1962 4 125 v 424 1937
+a(samhainrc.5)p 1516 1962 V 714 w Fk(mandir)s FC(/man5/yulerc.5)p
+2635 1962 V 342 w(644)p 3754 1962 V 396 1965 3362 4 v
+396 1965 V 396 2090 4 125 v 424 2065 a(samhain_setpwd)p
+1516 2090 V 564 w Fk(sbindir)s FC(/yule_setpwd)p 2635
+2090 V 356 w(700)p 3754 2090 V 396 2093 3362 4 v 396
+2093 V Black 3661 5805 a Fx(12)p Black eop end
+%%Page: 13 18
+TeXDict begin 13 17 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.13) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black -2 226
+a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:USAGE) cvn H.B /DEST pdfmark
+end
+ -2 226 a 125 x
+Fz(Chapter)48 b(3.)f(General)g(usa)n(g)r(e)h(notes)2581
+351 y
+SDict begin H.S end
+ 2581 351 a 2581 351 a
+SDict begin 26.957 H.A end
+ 2581 351 a 2581 351 a
+SDict begin [ /View [/XYZ H.V] /Dest (5.0) cvn H.B /DEST pdfmark end
+ 2581
+351 a -2 443 a
+SDict begin H.S end
+ -2 443 a -2 443 a
+SDict begin 13 H.A end
+ -2 443 a -2 443 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:HOW-TO-INVOKE) cvn H.B /DEST
+pdfmark end
+ -2
+443 a 339 x Fu(3.1.)39 b(Ho)n(w)g(to)g(in)-6 b(v)l(oke)1239
+782 y
+SDict begin H.S end
+ 1239 782 a 1239 782 a
+SDict begin 22.464 H.A end
+ 1239 782 a 1239 782 a
+SDict begin [ /View [/XYZ H.V] /Dest (5.11.1) cvn H.B /DEST pdfmark
+end
+ 1239
+782 a -2 950 a
+SDict begin H.S end
+ -2 950 a -2 950 a
+SDict begin 13 H.A end
+ -2 950 a -2 950 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:579) cvn H.B /DEST pdfmark
+end
+ -2
+950 a -2 950 a
+SDict begin H.S end
+ -2 950 a -2 950 a
+SDict begin 13 H.A end
+ -2 950 a -2 950 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:580) cvn H.B /DEST pdfmark
+end
+ -2
+950 a 396 1056 a Fx(F)h(r)l(om)21 b(the)f(command)f(line)-2
+1057 y
+SDict begin H.S end
+ -2 1057 a -2 1057 a
+SDict begin 13 H.A end
+ -2 1057 a -2 1057 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:581) cvn H.B /DEST pdfmark
+end
+ -2 1057
+a -2 1067 a
+SDict begin H.S end
+ -2 1067 a -2 1067 a
+SDict begin 13 H.A end
+ -2 1067 a -2 1067 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:582) cvn H.B /DEST pdfmark
+end
+ -2
+1067 a Black 396 1226 a FB(\225)p Black 479 1226 a
+SDict begin H.S end
+ 479
+1226 a 479 1226 a
+SDict begin 13 H.A end
+ 479 1226 a 479 1226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:583) cvn H.B /DEST pdfmark
+end
+ 479 1226 a 479
+1226 a
+SDict begin H.S end
+ 479 1226 a 479 1226 a
+SDict begin 13 H.A end
+ 479 1226 a 479 1226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:584) cvn H.B /DEST pdfmark
+end
+ 479
+1226 a Fy(samhain)i(-t)f(init)h([mor)o(e)e(options])h
+FC(\227)h(T)-7 b(o)20 b(initialize)g(the)g(database)-2
+1243 y
+SDict begin H.S end
+ -2 1243 a -2 1243 a
+SDict begin 13 H.A end
+ -2 1243 a -2 1243 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:585) cvn H.B /DEST pdfmark
+end
+ -2 1243
+a Black 396 1376 a FB(\225)p Black 479 1376 a
+SDict begin H.S end
+ 479 1376
+a 479 1376 a
+SDict begin 13 H.A end
+ 479 1376 a 479 1376 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:586) cvn H.B /DEST pdfmark
+end
+ 479 1376 a 479 1376
+a
+SDict begin H.S end
+ 479 1376 a 479 1376 a
+SDict begin 13 H.A end
+ 479 1376 a 479 1376 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:587) cvn H.B /DEST pdfmark
+end
+ 479 1376
+a Fy(samhain)h(-t)f(check)h([mor)o(e)e(options])h FC(\227)g(T)-7
+b(o)21 b(check)e(against)h(the)g(database)-2 1560 y
+SDict begin H.S end
+ -2
+1560 a -2 1560 a
+SDict begin 13 H.A end
+ -2 1560 a -2 1560 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:588) cvn H.B /DEST pdfmark
+end
+ -2 1560 a 396 1650
+a FC(By)h(def)o(ault,)785 1650 y
+SDict begin H.S end
+ 785 1650 a 785 1650
+a
+SDict begin 13 H.A end
+ 785 1650 a 785 1650 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:589) cvn H.B /DEST pdfmark
+end
+ 785 1650 a FC(samhain)f(will)1233
+1650 y
+SDict begin H.S end
+ 1233 1650 a 1233 1650 a
+SDict begin 13 H.A end
+ 1233 1650 a 1233 1650
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:590) cvn H.B /DEST pdfmark
+end
+ 1233 1650 a Fx(not)h FC(become)e(a)h(daemon,)f(b)n(ut)h(stay)h(in)f
+(the)g(fore)o(ground.)c(Daemon)j(mode)g(must)i(be)396
+1758 y(set)g(in)g(the)f(con\002guration)d(\002le)k(or)f(on)g(the)g
+(command)e(line.)i(Also)h(by)f(def)o(ault,)2690 1758
+y
+SDict begin H.S end
+ 2690 1758 a 2690 1758 a
+SDict begin 13 H.A end
+ 2690 1758 a 2690 1758 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:591) cvn H.B /DEST pdfmark
+end
+ 2690
+1758 a FC(samhain)f(will)3137 1758 y
+SDict begin H.S end
+ 3137 1758 a 3137
+1758 a
+SDict begin 13 H.A end
+ 3137 1758 a 3137 1758 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:592) cvn H.B /DEST pdfmark
+end
+ 3137 1758 a Fx(neither)j
+FC(initialize)396 1866 y(its)f(\002le)g(system)g(database)1180
+1866 y
+SDict begin H.S end
+ 1180 1866 a 1180 1866 a
+SDict begin 13 H.A end
+ 1180 1866 a 1180 1866
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:593) cvn H.B /DEST pdfmark
+end
+ 1180 1866 a Fx(nor)h FC(check)e(the)g(\002le)h(system)f(against)g
+(it.)g(The)g(desired)g(mode)f(must)h(be)g(set)h(in)g(the)396
+1974 y(con\002guration)d(\002le)j(or)f(on)f(the)i(command)d(line.)i(A)g
+(complete)g(list)h(of)f(command)e(line)i(options)f(is)j(gi)n(v)o(en)d
+(in)h(the)396 2081 y(appendix.)-2 2265 y
+SDict begin H.S end
+ -2 2265 a -2
+2265 a
+SDict begin 13 H.A end
+ -2 2265 a -2 2265 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:594) cvn H.B /DEST pdfmark
+end
+ -2 2265 a -2 2265 a
+SDict begin H.S end
+ -2 2265
+a -2 2265 a
+SDict begin 13 H.A end
+ -2 2265 a -2 2265 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:595) cvn H.B /DEST pdfmark
+end
+ -2 2265 a 396 2355 a
+Fx(T)-8 b(o)21 b(start)g(as)g(daemon)d(during)h(the)i(boot)e(sequence)
+-2 2538 y
+SDict begin H.S end
+ -2 2538 a -2 2538 a
+SDict begin 13 H.A end
+ -2 2538 a -2 2538 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:596) cvn H.B /DEST pdfmark
+end
+ -2
+2538 a 396 2629 a FC(F)o(or)h(Linux)f(\(Debian,)g(Redhat,)h(Gentoo,)f
+(and)g(SuSE\),)h(FreeBSD,)h(Solaris,)f(HP-UX,)g(AIX,)g(IRIX)3314
+2629 y
+SDict begin H.S end
+ 3314 2629 a 3314 2629 a
+SDict begin 13 H.A end
+ 3314 2629 a 3314 2629
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:597) cvn H.B /DEST pdfmark
+end
+ 3314 2629 a Fy(mak)o(e)396 2737 y(install-boot)f FC(will)i(setup)f
+(your)f(system)i(for)e(starting)h(the)g(daemon)f(upon)g(system)h(boot)f
+(\(if)h(the)h(correct)396 2845 y(OS/distrib)n(ution)e(cannot)h(be)g
+(determined,)e(nothing)g(will)j(be)f(done\).)-2 3029
+y
+SDict begin H.S end
+ -2 3029 a -2 3029 a
+SDict begin 13 H.A end
+ -2 3029 a -2 3029 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:598) cvn H.B /DEST pdfmark
+end
+ -2 3029 a 396
+3119 a FC(F)o(or)g(an)o(y)f(other)h(system,)g(you)f(need)h(to)g
+(\002gure)g(out)f(by)h(yourself)f(ho)n(w)h(to)g(start)2691
+3119 y
+SDict begin H.S end
+ 2691 3119 a 2691 3119 a
+SDict begin 13 H.A end
+ 2691 3119 a 2691 3119
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:599) cvn H.B /DEST pdfmark
+end
+ 2691 3119 a FC(samhain)f(during)g(the)h(boot)396 3227
+y(sequence.)-2 3256 y
+SDict begin H.S end
+ -2 3256 a -2 3256 a
+SDict begin 13 H.A end
+ -2 3256 a -2
+3256 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DAEMONTOOL) cvn H.B /DEST pdfmark
+end
+ -2 3256 a 359 x Fu(3.2.)39 b(Using)f(daemontool)f(\(or)i
+(similar)g(utilities\))2854 3615 y
+SDict begin H.S end
+ 2854 3615 a 2854 3615
+a
+SDict begin 22.464 H.A end
+ 2854 3615 a 2854 3615 a
+SDict begin [ /View [/XYZ H.V] /Dest (5.12.1) cvn H.B /DEST pdfmark
+end
+ 2854 3615 a -2 3813 a
+SDict begin H.S end
+ -2 3813
+a -2 3813 a
+SDict begin 13 H.A end
+ -2 3813 a -2 3813 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:602) cvn H.B /DEST pdfmark
+end
+ -2 3813 a -2 3813 a
+SDict begin H.S end
+ -2
+3813 a -2 3813 a
+SDict begin 13 H.A end
+ -2 3813 a -2 3813 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:603) cvn H.B /DEST pdfmark
+end
+ -2 3813 a 396 3889
+a FC(samhain)20 b(does)g(not)g(auto-background)15 b(itself)21
+b(\(to)f(become)f(a)h(daemon\))e(unless)j(e)o(xplicitely)e(speci\002ed)
+h(in)g(the)396 3997 y(con\002g)g(\002le)g(or)g(on)g(the)g(command)f
+(line.)h(Ho)n(we)n(v)o(er)m(,)e(normally)g(it)j(runs)f(in)g
+(single-shot)f(mode)h(if)g(not)g(used)g(as)396 4105 y(daemon.)e(T)-7
+b(o)20 b(cause)1011 4105 y
+SDict begin H.S end
+ 1011 4105 a 1011 4105 a
+SDict begin 13 H.A end
+ 1011
+4105 a 1011 4105 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:604) cvn H.B /DEST pdfmark
+end
+ 1011 4105 a FC(samhain)f(to)h(enter)g(the)f(main)h
+(loop)f(while)h(running)e(in)i(the)f(fore)o(ground)d(\(as)21
+b(required)d(if)i(you)396 4212 y(w)o(ant)h(to)f(use)794
+4212 y
+SDict begin H.S end
+ 794 4212 a 794 4212 a
+SDict begin 13 H.A end
+ 794 4212 a 794 4212 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:605) cvn H.B /DEST pdfmark
+end
+ 794
+4212 a FC(daemontool\),)e(you)h(need)g(to)i(start)f(with)h(the)f
+(option)2351 4212 y
+SDict begin H.S end
+ 2351 4212 a 2351 4212 a
+SDict begin 13 H.A end
+ 2351 4212
+a 2351 4212 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:606) cvn H.B /DEST pdfmark
+end
+ 2351 4212 a Fx(-f)33 b FC(or)2524 4212
+y
+SDict begin H.S end
+ 2524 4212 a 2524 4212 a
+SDict begin 13 H.A end
+ 2524 4212 a 2524 4212 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:607) cvn H.B /DEST pdfmark
+end
+ 2524
+4212 a Fx(--for)m(e)o(ver)r FC(.)20 b(Note)g(that)3186
+4212 y
+SDict begin H.S end
+ 3186 4212 a 3186 4212 a
+SDict begin 13 H.A end
+ 3186 4212 a 3186 4212
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:608) cvn H.B /DEST pdfmark
+end
+ 3186 4212 a FC(yule,)f(the)i(serv)o(er)m(,)396 4320
+y(will)g(al)o(w)o(ays)g(loop.)-2 4349 y
+SDict begin H.S end
+ -2 4349 a -2
+4349 a
+SDict begin 13 H.A end
+ -2 4349 a -2 4349 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CONTROLLING-THE-DAEMON) cvn
+H.B /DEST pdfmark end
+ -2 4349 a 359 x Fu(3.3.)39
+b(Contr)m(olling)e(the)i(daemon)1886 4708 y
+SDict begin H.S end
+ 1886 4708
+a 1886 4708 a
+SDict begin 22.464 H.A end
+ 1886 4708 a 1886 4708 a
+SDict begin [ /View [/XYZ H.V] /Dest (5.13.1) cvn H.B /DEST pdfmark
+end
+ 1886 4708 a -2
+4906 a
+SDict begin H.S end
+ -2 4906 a -2 4906 a
+SDict begin 13 H.A end
+ -2 4906 a -2 4906 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:611) cvn H.B /DEST pdfmark
+end
+ -2 4906
+a 396 4982 a FC(As)21 b(part)f(of)g(their)g(boot)f(concept,)g(some)h
+(systems)h(ha)n(v)o(e)e(indi)n(vidual)g(start/stop)h(scripts)g(for)g
+(each)g(service)396 5090 y(\(daemon\).)e(As)j(a)g(minimum,)d(these)i
+(scripts)h(tak)o(e)f(either)g(')-5 b(start')20 b(or)g(')-5
+b(stop')20 b(as)h(ar)o(gument,)d(sometimes)i(also)g(e.g.)396
+5198 y(')l(reload')f(\(to)h(reload)f(the)h(con\002guration\),)d(')l
+(restart',)i(or)h(')-5 b(status')21 b(\(check)e(whether)g(the)h(daemon)
+f(is)i(running\).)396 5306 y(While)g(this)g(is)g(con)m(v)o(enient,)c
+(there)j(are)g(also)g(a)h(number)d(of)i(problems:)p Black
+3661 5805 a Fx(13)p Black eop end
+%%Page: 14 19
+TeXDict begin 14 18 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.14) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2689 104 a
+Fx(Chapter)20 b(3.)g(Gener)o(al)f(usa)o(g)o(e)h(notes)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:612) cvn H.B /DEST pdfmark
+end
+ -2
+226 a -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:613) cvn H.B /DEST pdfmark
+end
+ -2
+226 a -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:614) cvn H.B /DEST pdfmark
+end
+ -2
+226 a Black 396 309 a FB(\225)p Black 479 309 a
+SDict begin H.S end
+ 479 309
+a 479 309 a
+SDict begin 13 H.A end
+ 479 309 a 479 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:615) cvn H.B /DEST pdfmark
+end
+ 479 309 a FC(Some)g(systems)h(do)f(not)
+f(ha)n(v)o(e)h(such)g(start/stop)g(scripts.)-2 327 y
+SDict begin H.S end
+
+-2 327 a -2 327 a
+SDict begin 13 H.A end
+ -2 327 a -2 327 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:616) cvn H.B /DEST pdfmark
+end
+ -2 327 a Black 396
+458 a FB(\225)p Black 479 458 a
+SDict begin H.S end
+ 479 458 a 479 458 a
+SDict begin 13 H.A end
+ 479
+458 a 479 458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:617) cvn H.B /DEST pdfmark
+end
+ 479 458 a FC(There)g(is)h(no)f(standard)f(for)g(the)h
+(location)g(of)g(these)g(scripts.)-2 476 y
+SDict begin H.S end
+ -2 476 a -2
+476 a
+SDict begin 13 H.A end
+ -2 476 a -2 476 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:618) cvn H.B /DEST pdfmark
+end
+ -2 476 a Black 396 608 a FB(\225)p
+Black 479 608 a
+SDict begin H.S end
+ 479 608 a 479 608 a
+SDict begin 13 H.A end
+ 479 608 a 479 608
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:619) cvn H.B /DEST pdfmark
+end
+ 479 608 a FC(There)g(is)h(no)f(standard)f(for)g(the)h(ar)o(guments)e
+(such)i(a)h(script)f(may)g(tak)o(e,)g(neither)f(for)h(their)g
+(interpretation)e(\(e.g.:)479 716 y(on)i(Linux)f(distrib)n(ution)g
+(XYZ,)h(do)g(the)g(start/stop)g(scripts)h(tak)o(e)f(')-5
+b(status')21 b(as)g(ar)o(gument,)c(and)j(if,)g(is)h(the)g(status)479
+823 y(reported)e(by)g(printing)g(a)i(message)f(or)g(by)f(the)i(e)o(xit)
+f(status)h(?\))-2 1139 y
+SDict begin H.S end
+ -2 1139 a -2 1139 a
+SDict begin 13 H.A end
+ -2 1139
+a -2 1139 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:620) cvn H.B /DEST pdfmark
+end
+ -2 1139 a 396 1247 a FC(T)-7 b(o)21 b(pro)o(vide)d(a)i
+(portable)f(interf)o(ace)h(for)f(controlling)f(the)2061
+1247 y
+SDict begin H.S end
+ 2061 1247 a 2061 1247 a
+SDict begin 13 H.A end
+ 2061 1247 a 2061 1247
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:621) cvn H.B /DEST pdfmark
+end
+ 2061 1247 a FC(samhain)i(daemon,)e(the)i(e)o(x)o(ecutable)f(itself)i
+(can)e(serv)o(e)396 1355 y(for)h(this)h(purpose)d(\()966
+1355 y
+SDict begin H.S end
+ 966 1355 a 966 1355 a
+SDict begin 13 H.A end
+ 966 1355 a 966 1355 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:622) cvn H.B /DEST pdfmark
+end
+ 966
+1355 a Fx(only)i(if)g(in)m(vok)o(ed)f(by)h(the)h(superuser)r
+FC(\))e(The)h(supported)e(actions,)i(which)g(must)g(be)g(gi)n(v)o(en)f
+(as)396 1463 y
+SDict begin H.S end
+ 396 1463 a 396 1463 a
+SDict begin 13 H.A end
+ 396 1463 a 396 1463
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:623) cvn H.B /DEST pdfmark
+end
+ 396 1463 a Fx(\002r)o(st)i(ar)m(gument)g FC(on)f(the)g(command)e
+(line,)i(are:)-2 1646 y
+SDict begin H.S end
+ -2 1646 a -2 1646 a
+SDict begin 13 H.A end
+ -2 1646 a
+-2 1646 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:624) cvn H.B /DEST pdfmark
+end
+ -2 1646 a -2 1646 a
+SDict begin H.S end
+ -2 1646 a -2 1646 a
+SDict begin 13 H.A end
+ -2
+1646 a -2 1646 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:625) cvn H.B /DEST pdfmark
+end
+ -2 1646 a -2 1656 a
+SDict begin H.S end
+ -2 1656 a -2 1656
+a
+SDict begin 13 H.A end
+ -2 1656 a -2 1656 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:626) cvn H.B /DEST pdfmark
+end
+ -2 1656 a Black 396 1799 a FB(\225)p
+Black 479 1799 a
+SDict begin H.S end
+ 479 1799 a 479 1799 a
+SDict begin 13 H.A end
+ 479 1799 a 479
+1799 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:627) cvn H.B /DEST pdfmark
+end
+ 479 1799 a 479 1799 a
+SDict begin H.S end
+ 479 1799 a 479 1799 a
+SDict begin 13 H.A end
+ 479
+1799 a 479 1799 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:628) cvn H.B /DEST pdfmark
+end
+ 479 1799 a Fx(start)j FC(Start)831
+1799 y
+SDict begin H.S end
+ 831 1799 a 831 1799 a
+SDict begin 13 H.A end
+ 831 1799 a 831 1799 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:629) cvn H.B /DEST pdfmark
+end
+ 831
+1799 a FC(samhain.)d(Ar)o(guments)e(after)i(')-5 b(start')20
+b(are)g(passed)g(to)h(the)f(process.)f(Daemon)g(mode)h(will)h(be)479
+1907 y(enforced,)d(as)j(well)g(as)g(running)d(in)i('check')f(mode,)g
+(irrespecti)n(v)o(e)f(of)i(command)f(line)h(or)g(con\002g)f(\002le)i
+(settings.)-2 1925 y
+SDict begin H.S end
+ -2 1925 a -2 1925 a
+SDict begin 13 H.A end
+ -2 1925 a -2
+1925 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:630) cvn H.B /DEST pdfmark
+end
+ -2 1925 a Black 396 2056 a FB(\225)p Black 479
+2056 a
+SDict begin H.S end
+ 479 2056 a 479 2056 a
+SDict begin 13 H.A end
+ 479 2056 a 479 2056 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:631) cvn H.B /DEST pdfmark
+end
+ 479
+2056 a 479 2056 a
+SDict begin H.S end
+ 479 2056 a 479 2056 a
+SDict begin 13 H.A end
+ 479 2056 a 479
+2056 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:632) cvn H.B /DEST pdfmark
+end
+ 479 2056 a Fx(stop)f FC(Stop)g(the)h(daemon.)d(On)i(Linux)f(and)
+h(Solaris,)g(actually)g(all)g(running)f(instances)h(of)3074
+2056 y
+SDict begin H.S end
+ 3074 2056 a 3074 2056 a
+SDict begin 13 H.A end
+ 3074 2056 a 3074 2056
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:633) cvn H.B /DEST pdfmark
+end
+ 3074 2056 a FC(samhain)f(are)479 2164 y(stopped,)g(e)n(v)o(en)g(if)i
+(no)f(pid)f(\002le)i(is)g(a)n(v)n(ailable.)-2 2182 y
+SDict begin H.S end
+
+-2 2182 a -2 2182 a
+SDict begin 13 H.A end
+ -2 2182 a -2 2182 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:634) cvn H.B /DEST pdfmark
+end
+ -2 2182 a Black
+396 2314 a FB(\225)p Black 479 2314 a
+SDict begin H.S end
+ 479 2314 a 479
+2314 a
+SDict begin 13 H.A end
+ 479 2314 a 479 2314 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:635) cvn H.B /DEST pdfmark
+end
+ 479 2314 a 479 2314 a
+SDict begin H.S end
+ 479
+2314 a 479 2314 a
+SDict begin 13 H.A end
+ 479 2314 a 479 2314 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:636) cvn H.B /DEST pdfmark
+end
+ 479 2314 a Fx(r)m(estart)i
+FC(Stop)d(and)g(start.)-2 2332 y
+SDict begin H.S end
+ -2 2332 a -2 2332 a
+SDict begin 13 H.A end
+
+-2 2332 a -2 2332 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:637) cvn H.B /DEST pdfmark
+end
+ -2 2332 a Black 396 2463 a FB(\225)p
+Black 479 2463 a
+SDict begin H.S end
+ 479 2463 a 479 2463 a
+SDict begin 13 H.A end
+ 479 2463 a 479
+2463 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:638) cvn H.B /DEST pdfmark
+end
+ 479 2463 a 479 2463 a
+SDict begin H.S end
+ 479 2463 a 479 2463 a
+SDict begin 13 H.A end
+ 479
+2463 a 479 2463 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:639) cvn H.B /DEST pdfmark
+end
+ 479 2463 a Fx(r)m(eload)g(or)g(for)m(ce-r)m(eload)h
+FC(Reload)f(the)g(con\002guration)e(\002le.)-2 2481 y
+SDict begin H.S end
+
+-2 2481 a -2 2481 a
+SDict begin 13 H.A end
+ -2 2481 a -2 2481 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:640) cvn H.B /DEST pdfmark
+end
+ -2 2481 a Black
+396 2613 a FB(\225)p Black 479 2613 a
+SDict begin H.S end
+ 479 2613 a 479
+2613 a
+SDict begin 13 H.A end
+ 479 2613 a 479 2613 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:641) cvn H.B /DEST pdfmark
+end
+ 479 2613 a 479 2613 a
+SDict begin H.S end
+ 479
+2613 a 479 2613 a
+SDict begin 13 H.A end
+ 479 2613 a 479 2613 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:642) cvn H.B /DEST pdfmark
+end
+ 479 2613 a Fx(status)j
+FC(Check)f(whether)f(the)h(daemon)f(is)i(running.)-2
+2928 y
+SDict begin H.S end
+ -2 2928 a -2 2928 a
+SDict begin 13 H.A end
+ -2 2928 a -2 2928 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:643) cvn H.B /DEST pdfmark
+end
+ -2 2928
+a 396 3036 a FC(Success/f)o(ailure)f(is)h(reported)d(via)j(the)f(e)o
+(xit)g(status)h(as)g(follo)n(ws:)2271 3036 y
+SDict begin H.S end
+ 2271 3036
+a 2271 3036 a
+SDict begin 13 H.A end
+ 2271 3036 a 2271 3036 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:644) cvn H.B /DEST pdfmark
+end
+ 2271 3036 a Fx(0)g
+FC(Success.)f(\(On)g(Linux/Solaris,)3281 3036 y
+SDict begin H.S end
+ 3281
+3036 a 3281 3036 a
+SDict begin 13 H.A end
+ 3281 3036 a 3281 3036 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:645) cvn H.B /DEST pdfmark
+end
+ 3281 3036
+a Fx(stop)h FC(will)396 3144 y(al)o(w)o(ays)g(be)f(successful,)g(on)g
+(other)f(systems)i(only)e(if)h(the)h(pid)e(\002le)i(is)g(found.\))2661
+3144 y
+SDict begin H.S end
+ 2661 3144 a 2661 3144 a
+SDict begin 13 H.A end
+ 2661 3144 a 2661 3144
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:646) cvn H.B /DEST pdfmark
+end
+ 2661 3144 a Fx(1)g FC(Unspeci\002ed)e(error)-5 b(.)3339
+3144 y
+SDict begin H.S end
+ 3339 3144 a 3339 3144 a
+SDict begin 13 H.A end
+ 3339 3144 a 3339 3144
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:647) cvn H.B /DEST pdfmark
+end
+ 3339 3144 a Fx(4)20 b FC(User)h(had)396 3252 y(insuf)n(\002cient)f
+(pri)n(vile)o(ge.)1122 3252 y
+SDict begin H.S end
+ 1122 3252 a 1122 3252 a
+SDict begin 13 H.A end
+
+1122 3252 a 1122 3252 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:648) cvn H.B /DEST pdfmark
+end
+ 1122 3252 a Fx(5)g FC(Program)f(is)i(not)f
+(installed.)2017 3252 y
+SDict begin H.S end
+ 2017 3252 a 2017 3252 a
+SDict begin 13 H.A end
+ 2017
+3252 a 2017 3252 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:649) cvn H.B /DEST pdfmark
+end
+ 2017 3252 a Fx(7)j FC(Program)c(is)i(not)f(running.)
+-2 3436 y
+SDict begin H.S end
+ -2 3436 a -2 3436 a
+SDict begin 13 H.A end
+ -2 3436 a -2 3436 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:650) cvn H.B /DEST pdfmark
+end
+ -2
+3436 a 396 3526 a FC(If)g(the)595 3526 y
+SDict begin H.S end
+ 595 3526 a 595
+3526 a
+SDict begin 13 H.A end
+ 595 3526 a 595 3526 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:651) cvn H.B /DEST pdfmark
+end
+ 595 3526 a Fx(status)g FC(command)e(is)j
+(gi)n(v)o(en:)1458 3526 y
+SDict begin H.S end
+ 1458 3526 a 1458 3526 a
+SDict begin 13 H.A end
+ 1458
+3526 a 1458 3526 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:652) cvn H.B /DEST pdfmark
+end
+ 1458 3526 a Fx(0)g FC(Program)d(is)j(running.)2203
+3526 y
+SDict begin H.S end
+ 2203 3526 a 2203 3526 a
+SDict begin 13 H.A end
+ 2203 3526 a 2203 3526
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:653) cvn H.B /DEST pdfmark
+end
+ 2203 3526 a Fx(1)f FC(Program)f(is)i(dead)f(and)f(/v)n(ar/run)g(pid)h
+(\002le)h(e)o(xists.)396 3634 y
+SDict begin H.S end
+ 396 3634 a 396 3634 a
+SDict begin 13 H.A end
+
+396 3634 a 396 3634 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:654) cvn H.B /DEST pdfmark
+end
+ 396 3634 a Fx(3)g FC(Program)d(is)j(stopped.)1141
+3634 y
+SDict begin H.S end
+ 1141 3634 a 1141 3634 a
+SDict begin 13 H.A end
+ 1141 3634 a 1141 3634
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:655) cvn H.B /DEST pdfmark
+end
+ 1141 3634 a Fx(4)f FC(Program)f(status)i(is)g(unkno)n(wn.)-2
+3818 y
+SDict begin H.S end
+ -2 3818 a -2 3818 a
+SDict begin 13 H.A end
+ -2 3818 a -2 3818 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:656) cvn H.B /DEST pdfmark
+end
+ -2 3818
+a 396 3908 a FC(I.e.,)f(this)h(interf)o(ace)e(beha)n(v)o(es)g(as)i
+(mandated)e(by)g(the)i(LSB)g(Standard)d(for)i(init)h(scripts.)-2
+3936 y
+SDict begin H.S end
+ -2 3936 a -2 3936 a
+SDict begin 13 H.A end
+ -2 3936 a -2 3936 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SIGNALS) cvn H.B /DEST pdfmark
+end
+ -2 3936
+a 359 x Fu(3.4.)39 b(Signals)789 4295 y
+SDict begin H.S end
+ 789 4295 a 789
+4295 a
+SDict begin 22.464 H.A end
+ 789 4295 a 789 4295 a
+SDict begin [ /View [/XYZ H.V] /Dest (5.14.1) cvn H.B /DEST pdfmark
+end
+ 789 4295 a -2 4493 a
+SDict begin H.S end
+ -2
+4493 a -2 4493 a
+SDict begin 13 H.A end
+ -2 4493 a -2 4493 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:659) cvn H.B /DEST pdfmark
+end
+ -2 4493 a 396 4569
+a FC(On)20 b(startup,)g(all)h(signals)f(will)h(be)f(reset)h(to)f(their)
+g(def)o(ault.)f(Then)h(a)g(signal)g(handler)f(will)i(be)f(installed)g
+(for)g(all)396 4677 y(signals)h(that)f(\(i\))g(can)g(be)g(trapped)f(by)
+h(a)g(process)g(and)g(\(ii\))g(whose)g(def)o(ault)f(action)h(w)o(ould)f
+(be)i(to)f(stop,)g(abort,)f(or)396 4785 y(terminate)h(the)g(process,)f
+(to)i(allo)n(w)f(for)f(graceful)g(termination.)-2 4969
+y
+SDict begin H.S end
+ -2 4969 a -2 4969 a
+SDict begin 13 H.A end
+ -2 4969 a -2 4969 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:660) cvn H.B /DEST pdfmark
+end
+ -2 4969 a 396
+5059 a FC(F)o(or)h(SIGSEGV)-11 b(,)20 b(SIGILL,)g(SIGB)o(US,)h(and)e
+(SIGFPE,)i(a)f('f)o(ast')g(termination)f(will)i(occur)m(,)d(with)j
+(only)e(minimal)396 5167 y(cleanup)g(that)i(may)e(result)h(in)h(a)f
+(stale)h(pid)f(\002le)h(being)e(left.)p Black 3661 5805
+a Fx(14)p Black eop end
+%%Page: 15 20
+TeXDict begin 15 19 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.15) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2689 104 a
+Fx(Chapter)20 b(3.)g(Gener)o(al)f(usa)o(g)o(e)h(notes)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:661) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a FC(If)g(the)h(operating)d(system)i(supports)f(the)1605
+309 y
+SDict begin H.S end
+ 1605 309 a 1605 309 a
+SDict begin 13 H.A end
+ 1605 309 a 1605 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:662) cvn H.B /DEST pdfmark
+end
+ 1605
+309 a Fx(siginfo_t)h FC(parameter)f(for)h(the)g(signal)g(handling)e
+(routine)h(\(see)3451 309 y
+SDict begin H.S end
+ 3451 309 a 3451 309 a
+SDict begin 13 H.A end
+ 3451
+309 a 3451 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:663) cvn H.B /DEST pdfmark
+end
+ 3451 309 a Fy(man)396 417 y(sigaction)p
+FC(\),)g(the)h(origin)f(of)h(the)g(signal)h(will)g(be)f(check)o(ed.)-2
+601 y
+SDict begin H.S end
+ -2 601 a -2 601 a
+SDict begin 13 H.A end
+ -2 601 a -2 601 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:664) cvn H.B /DEST pdfmark
+end
+ -2 601 a 396
+691 a FC(The)g(follo)n(wing)f(signals)h(can)g(be)g(sent)h(to)f(the)g
+(process)g(to)g(control)f(it:)-2 875 y
+SDict begin H.S end
+ -2 875 a -2 875
+a
+SDict begin 13 H.A end
+ -2 875 a -2 875 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:665) cvn H.B /DEST pdfmark
+end
+ -2 875 a -2 875 a
+SDict begin H.S end
+ -2 875 a -2 875
+a
+SDict begin 13 H.A end
+ -2 875 a -2 875 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:666) cvn H.B /DEST pdfmark
+end
+ -2 875 a -2 885 a
+SDict begin H.S end
+ -2 885 a -2 885
+a
+SDict begin 13 H.A end
+ -2 885 a -2 885 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:667) cvn H.B /DEST pdfmark
+end
+ -2 885 a Black 396 1027 a FB(\225)p
+Black 479 1027 a
+SDict begin H.S end
+ 479 1027 a 479 1027 a
+SDict begin 13 H.A end
+ 479 1027 a 479
+1027 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:668) cvn H.B /DEST pdfmark
+end
+ 479 1027 a 479 1027 a
+SDict begin H.S end
+ 479 1027 a 479 1027 a
+SDict begin 13 H.A end
+ 479
+1027 a 479 1027 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:669) cvn H.B /DEST pdfmark
+end
+ 479 1027 a Fx(SIGUSR1)g FC(Switch)h(on/of)n(f)f
+(maximally)g(v)o(erbose)f(output)h(to)i(the)f(console.)-2
+1045 y
+SDict begin H.S end
+ -2 1045 a -2 1045 a
+SDict begin 13 H.A end
+ -2 1045 a -2 1045 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:670) cvn H.B /DEST pdfmark
+end
+ -2 1045
+a Black 396 1176 a FB(\225)p Black 479 1176 a
+SDict begin H.S end
+ 479 1176
+a 479 1176 a
+SDict begin 13 H.A end
+ 479 1176 a 479 1176 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:671) cvn H.B /DEST pdfmark
+end
+ 479 1176 a 479 1176
+a
+SDict begin H.S end
+ 479 1176 a 479 1176 a
+SDict begin 13 H.A end
+ 479 1176 a 479 1176 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:672) cvn H.B /DEST pdfmark
+end
+ 479 1176
+a Fx(SIGUSR2)f FC(Suspend/continue)e(the)j(process,)g(and)f(\(on)h
+(suspend\))f(send)h(a)g(message)g(to)h(the)f(serv)o(er)-5
+b(.)19 b(This)479 1284 y(message)h(has)h(the)f(same)g(priority)f(as)i
+(timestamps.)f(This)g(signal)g(allo)n(ws)h(to)f(run)2845
+1284 y
+SDict begin H.S end
+ 2845 1284 a 2845 1284 a
+SDict begin 13 H.A end
+ 2845 1284 a 2845 1284
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:673) cvn H.B /DEST pdfmark
+end
+ 2845 1284 a Fy(samhain)h(-t)f(init)h(-e)f(none)h FC(on)479
+1392 y(the)f(client)g(to)f(re)o(generate)f(the)i(database,)f(with)g(do)
+n(wnload)f(of)h(the)h(con\002guration)d(\002le)j(from)f(the)h(serv)o
+(er)m(,)e(while)479 1500 y(the)i(daemon)f(is)i(suspended)e(\(normally)f
+(you)h(w)o(ould)h(get)g(errors)f(because)h(of)g(concurrent)e(access)i
+(to)h(the)479 1608 y(serv)o(er)f(by)f(tw)o(o)i(processes)f(from)f(the)
+1593 1608 y
+SDict begin H.S end
+ 1593 1608 a 1593 1608 a
+SDict begin 13 H.A end
+ 1593 1608 a 1593
+1608 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:674) cvn H.B /DEST pdfmark
+end
+ 1593 1608 a Fx(same)h(host)q FC(\).)-2 1626 y
+SDict begin H.S end
+
+-2 1626 a -2 1626 a
+SDict begin 13 H.A end
+ -2 1626 a -2 1626 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:675) cvn H.B /DEST pdfmark
+end
+ -2 1626 a Black
+396 1757 a FB(\225)p Black 479 1757 a
+SDict begin H.S end
+ 479 1757 a 479
+1757 a
+SDict begin 13 H.A end
+ 479 1757 a 479 1757 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:676) cvn H.B /DEST pdfmark
+end
+ 479 1757 a 479 1757 a
+SDict begin H.S end
+ 479
+1757 a 479 1757 a
+SDict begin 13 H.A end
+ 479 1757 a 479 1757 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:677) cvn H.B /DEST pdfmark
+end
+ 479 1757 a Fx(SIGTERM)j
+FC(T)-6 b(erminate)19 b(the)i(process.)-2 1775 y
+SDict begin H.S end
+ -2 1775
+a -2 1775 a
+SDict begin 13 H.A end
+ -2 1775 a -2 1775 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:678) cvn H.B /DEST pdfmark
+end
+ -2 1775 a Black 396 1907
+a FB(\225)p Black 479 1907 a
+SDict begin H.S end
+ 479 1907 a 479 1907 a
+SDict begin 13 H.A end
+ 479
+1907 a 479 1907 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:679) cvn H.B /DEST pdfmark
+end
+ 479 1907 a 479 1907 a
+SDict begin H.S end
+ 479 1907 a 479
+1907 a
+SDict begin 13 H.A end
+ 479 1907 a 479 1907 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:680) cvn H.B /DEST pdfmark
+end
+ 479 1907 a Fx(SIGQ)o(UIT)26
+b FC(T)-6 b(erminate)20 b(the)g(serv)o(er)f(process)h(after)g
+(processing)f(all)h(currently)f(pending)f(requests)i(from)479
+2015 y(clients.)h(T)-6 b(erminate)19 b(the)h(client)g(process)g(after)g
+(\002nishing)f(the)h(current)f(task)i(\(from)e(the)h(terminal,)3358
+2015 y
+SDict begin H.S end
+ 3358 2015 a 3358 2015 a
+SDict begin 13 H.A end
+ 3358 2015 a 3358 2015
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:681) cvn H.B /DEST pdfmark
+end
+ 3358 2015 a Fx(SIGQ)o(UIT)479 2123 y FC(usually)g(is)816
+2123 y
+SDict begin H.S end
+ 816 2123 a 816 2123 a
+SDict begin 13 H.A end
+ 816 2123 a 816 2123 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:682) cvn H.B /DEST pdfmark
+end
+ 816
+2123 a 816 2123 a
+SDict begin H.S end
+ 816 2123 a 816 2123 a
+SDict begin 13 H.A end
+ 816 2123 a 816
+2123 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:683) cvn H.B /DEST pdfmark
+end
+ 816 2123 a Fy(Ctrl)p FC(-)992 2123 y
+SDict begin H.S end
+ 992 2123
+a 992 2123 a
+SDict begin 13 H.A end
+ 992 2123 a 992 2123 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:684) cvn H.B /DEST pdfmark
+end
+ 992 2123 a Fy(\\)p
+FC(\).)-2 2141 y
+SDict begin H.S end
+ -2 2141 a -2 2141 a
+SDict begin 13 H.A end
+ -2 2141 a -2 2141
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:685) cvn H.B /DEST pdfmark
+end
+ -2 2141 a Black 396 2272 a FB(\225)p Black 479 2272
+a
+SDict begin H.S end
+ 479 2272 a 479 2272 a
+SDict begin 13 H.A end
+ 479 2272 a 479 2272 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:686) cvn H.B /DEST pdfmark
+end
+ 479 2272
+a 479 2272 a
+SDict begin H.S end
+ 479 2272 a 479 2272 a
+SDict begin 13 H.A end
+ 479 2272 a 479 2272
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:687) cvn H.B /DEST pdfmark
+end
+ 479 2272 a Fx(SIGHUP)g FC(Re-read)f(the)h(con\002guration)e(\002le.)j
+(Note)f(that)g(it)h(is)g(not)f(possible)g(to)g(o)o(v)o(erride)e
+(command-line)479 2380 y(options)i(gi)n(v)o(en)e(at)j(startup.)-2
+2398 y
+SDict begin H.S end
+ -2 2398 a -2 2398 a
+SDict begin 13 H.A end
+ -2 2398 a -2 2398 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:688) cvn H.B /DEST pdfmark
+end
+ -2 2398
+a Black 396 2530 a FB(\225)p Black 479 2530 a
+SDict begin H.S end
+ 479 2530
+a 479 2530 a
+SDict begin 13 H.A end
+ 479 2530 a 479 2530 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:689) cvn H.B /DEST pdfmark
+end
+ 479 2530 a 479 2530
+a
+SDict begin H.S end
+ 479 2530 a 479 2530 a
+SDict begin 13 H.A end
+ 479 2530 a 479 2530 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:690) cvn H.B /DEST pdfmark
+end
+ 479 2530
+a Fx(SIGABRT)26 b FC(Unlock)19 b(the)h(log)g(\002le,)h(w)o(ait)g(three)
+e(seconds,)h(then)f(proceed.)g(At)h(the)h(ne)o(xt)e(access,)i(the)f
+(log)g(\002le)479 2637 y(will)h(be)f(lock)o(ed)g(again)f(and)g(a)i
+(fresh)f(audit)g(trail)g(--)g(with)g(a)h(fresh)f(signature)f(k)o(e)o(y)
+g(--)i(will)f(be)h(started.)e(This)479 2745 y(allo)n(ws)i(log)f
+(rotation)f(without)g(splitting)h(an)g(audit)g(trail.)g(See)h(Sect.~)p
+0 TeXcolorgray 2499 2745 a
+SDict begin H.S end
+ 2499 2745 a FC(Section)e(4.5.1)2936
+2745 y
+SDict begin 13 H.L end
+ 2936 2745 a 2936 2745 a
+SDict begin [ /Subtype /Link /Dest (0:LOGFILE) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2936 2745 a Black -2 w
+FC(.)-2 2763 y
+SDict begin H.S end
+ -2 2763 a -2 2763 a
+SDict begin 13 H.A end
+ -2 2763 a -2 2763
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:692) cvn H.B /DEST pdfmark
+end
+ -2 2763 a Black 396 2895 a FB(\225)p Black 479 2895
+a
+SDict begin H.S end
+ 479 2895 a 479 2895 a
+SDict begin 13 H.A end
+ 479 2895 a 479 2895 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:693) cvn H.B /DEST pdfmark
+end
+ 479 2895
+a 479 2895 a
+SDict begin H.S end
+ 479 2895 a 479 2895 a
+SDict begin 13 H.A end
+ 479 2895 a 479 2895
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:694) cvn H.B /DEST pdfmark
+end
+ 479 2895 a Fx(SIGTT)o(OU)k FC(Perform)c(a)i(\002le)g(check.)e(Only)h
+(client/standalone,)e(and)h(only)h(in)g(daemon)f(mode.)-2
+3054 y
+SDict begin H.S end
+ -2 3054 a -2 3054 a
+SDict begin 13 H.A end
+ -2 3054 a -2 3054 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:PID-FILE) cvn H.B /DEST pdfmark
+end
+ -2 3054
+a 378 x Fu(3.5.)39 b(PID)g(\002le)764 3432 y
+SDict begin H.S end
+ 764 3432
+a 764 3432 a
+SDict begin 22.464 H.A end
+ 764 3432 a 764 3432 a
+SDict begin [ /View [/XYZ H.V] /Dest (5.15.1) cvn H.B /DEST pdfmark
+end
+ 764 3432 a -2 3600
+a
+SDict begin H.S end
+ -2 3600 a -2 3600 a
+SDict begin 13 H.A end
+ -2 3600 a -2 3600 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:697) cvn H.B /DEST pdfmark
+end
+ -2 3600 a -2
+3600 a
+SDict begin H.S end
+ -2 3600 a -2 3600 a
+SDict begin 13 H.A end
+ -2 3600 a -2 3600 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:698) cvn H.B /DEST pdfmark
+end
+ -2 3600
+a 396 3706 a FC(samhain)20 b(generates)f(a)i(PID)f(\002le)h(if)f(it)h
+(is)g(run)f(as)h(a)f(daemon)f(process.)h(Y)-9 b(ou)19
+b(can)h(con\002gure)e(the)j(path)e(to)i(the)f(PID)396
+3814 y(\002le)h(at)g(compile)e(time,)h(either)g(e)o(xplicitely)f(using)
+h(the)1984 3814 y
+SDict begin H.S end
+ 1984 3814 a 1984 3814 a
+SDict begin 13 H.A end
+ 1984 3814 a
+1984 3814 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:699) cvn H.B /DEST pdfmark
+end
+ 1984 3814 a Fy(./con\002gur)o(e)f(--with-pid-\002le=FILE)i
+FC(option,)e(or)g(via)i(the)396 3922 y
+SDict begin H.S end
+ 396 3922 a 396
+3922 a
+SDict begin 13 H.A end
+ 396 3922 a 396 3922 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:700) cvn H.B /DEST pdfmark
+end
+ 396 3922 a Fy(./con\002gur)o(e)e(--pr)o
+(e\002x=PREFIX)h FC(option.)-2 3950 y
+SDict begin H.S end
+ -2 3950 a -2 3950
+a
+SDict begin 13 H.A end
+ -2 3950 a -2 3950 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:LOG-FILE-ROTATION) cvn H.B
+/DEST pdfmark end
+ -2 3950 a 359 x Fu(3.6.)39 b(Log)g(\002le)g(r)m
+(otation)1360 4309 y
+SDict begin H.S end
+ 1360 4309 a 1360 4309 a
+SDict begin 22.464 H.A end
+ 1360 4309
+a 1360 4309 a
+SDict begin [ /View [/XYZ H.V] /Dest (5.16.1) cvn H.B /DEST pdfmark
+end
+ 1360 4309 a -2 4507 a
+SDict begin H.S end
+ -2 4507 a -2 4507
+a
+SDict begin 13 H.A end
+ -2 4507 a -2 4507 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:703) cvn H.B /DEST pdfmark
+end
+ -2 4507 a -2 4507 a
+SDict begin H.S end
+ -2 4507 a -2
+4507 a
+SDict begin 13 H.A end
+ -2 4507 a -2 4507 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:704) cvn H.B /DEST pdfmark
+end
+ -2 4507 a 396 4583 a FC(samhain)20
+b(locks)g(the)g(log\002le)g(using)g(a)g(lock)g(\002le.)h(This)f(lock)g
+(\002le)g(has)h(the)f(same)g(path)g(as)h(the)f(log)g(\002le,)h(with)
+3537 4583 y
+SDict begin H.S end
+ 3537 4583 a 3537 4583 a
+SDict begin 13 H.A end
+ 3537 4583 a 3537
+4583 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:705) cvn H.B /DEST pdfmark
+end
+ 3537 4583 a Fx(.loc)n(k)396 4691 y FC(appended.)d(After)i
+(sending)f(SIGABR)-5 b(T)21 b(to)f(the)1809 4691 y
+SDict begin H.S end
+ 1809
+4691 a 1809 4691 a
+SDict begin 13 H.A end
+ 1809 4691 a 1809 4691 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:706) cvn H.B /DEST pdfmark
+end
+ 1809 4691
+a FC(samhain)g(daemon,)e(it)j(will)g(\002rst)g(\002nish)f(its)h
+(current)e(tast)i(\(this)396 4799 y(may)f(tak)o(e)g(some)g(time\),)g
+(then)g(unlock)e(the)j(log)f(\002le)g(\(i.e.)g(remo)o(v)o(e)e(the)2457
+4799 y
+SDict begin H.S end
+ 2457 4799 a 2457 4799 a
+SDict begin 13 H.A end
+ 2457 4799 a 2457 4799
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:707) cvn H.B /DEST pdfmark
+end
+ 2457 4799 a Fr(logfile.lock)g FC(\002le\),)j(w)o(ait)g(three)396
+4907 y(seconds,)d(then)g(proceed.)f(Thus,)h(to)h(rotate)f(the)h(log)f
+(\002le,)h(you)f(should)f(use)i(something)e(lik)o(e)i(the)g(follo)n
+(wing)e(script:)-2 5008 y
+SDict begin H.S end
+ -2 5008 a -2 5008 a
+SDict begin 11.7 H.A end
+ -2 5008
+a -2 5008 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:708) cvn H.B /DEST pdfmark
+end
+ -2 5008 a 396 5087 a Fr(#!)45 b(/bin/sh)396
+5281 y(if)g(test)f(-f)g(/usr/local/var/run/samhain.pid;)c(then)k(\\)845
+5378 y(PIN=`cat)f(/usr/local/var/run/samhain.pid`;)d(\\)p
+Black 3661 5805 a Fx(15)p Black eop end
+%%Page: 16 21
+TeXDict begin 16 20 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.16) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2689 104 a
+Fx(Chapter)20 b(3.)g(Gener)o(al)f(usa)o(g)o(e)h(notes)p
+Black 845 309 a Fr(/bin/kill)43 b(-ABRT)h($PIN;)g(\\)845
+406 y(sleep)g(1;)g(\\)845 503 y(AA=0;)g(\\)845 600 y(while)g(test)g
+("x$AA")g(!=)g("x120";)g(do)g(\\)889 697 y(let)h("AA)f(=)h($AA)f(+)h
+(1";)f(\\)889 794 y(if)h(test)f(-f)h
+(/usr/local/var/log/samhain_log.lock;)38 b(then)45 b(\\)979
+892 y(sleep)f(1;)h(\\)889 989 y(else)g(\\)979 1086 y(break;)f(\\)889
+1183 y(fi)h(\\)845 1280 y(done;)f(\\)441 1377 y(fi)755
+1474 y(mv)g(/usr/local/var/log/samhain_log)c(/usr/local/var/log/oldlog)
+-2 1652 y
+SDict begin H.S end
+ -2 1652 a -2 1652 a
+SDict begin 13 H.A end
+ -2 1652 a -2 1652 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:709) cvn H.B /DEST pdfmark
+end
+ -2
+1652 a 396 1748 a FC(If)20 b(you)g(use)g(the)g(')o(logrotate')f(tool,)g
+(you)h(could)f(use)h(the)g(follo)n(wing)f(\(untested\):)-2
+1849 y
+SDict begin H.S end
+ -2 1849 a -2 1849 a
+SDict begin 11.7 H.A end
+ -2 1849 a -2 1849 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:710) cvn H.B /DEST pdfmark
+end
+ -2 1849
+a 396 1928 a Fr(/usr/local/var/log/samhain_log)40 b({)576
+2026 y(size)k(100k)576 2123 y(nocreate)576 2220 y(compress)576
+2317 y(mail)g(root@localhost)576 2414 y(maillast)396
+2608 y(prerotate)755 2706 y(if)g(test)h(-f)f
+(/usr/local/var/run/samhain.pid;)c(then)k(\\)845 2803
+y(PIN=`cat)f(/usr/local/var/run/samhain.pid`;)d(\\)845
+2900 y(/bin/kill)j(-ABRT)h($PIN;)g(\\)845 2997 y(sleep)g(1;)g(\\)845
+3094 y(AA=0;)g(\\)845 3191 y(while)g(test)g("x$AA")g(!=)g("x120";)g(do)
+g(\\)889 3288 y(let)h("AA)f(=)h($AA)f(+)h(1";)f(\\)889
+3385 y(if)h(test)f(-f)h(/usr/local/var/log/samhain_log.lock;)38
+b(then)45 b(\\)979 3483 y(sleep)f(1;)h(\\)889 3580 y(else)g(\\)979
+3677 y(break;)f(\\)889 3774 y(fi)h(\\)845 3871 y(done;)f(\\)755
+3968 y(fi)576 4065 y(endscript)396 4163 y(})-2 4254 y
+SDict begin H.S end
+
+-2 4254 a -2 4254 a
+SDict begin 13 H.A end
+ -2 4254 a -2 4254 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:UPDATING-THE-FILE-SIGNATURE-DATABASE)
+cvn H.B /DEST pdfmark end
+ -2 4254 a 369
+x Fu(3.7.)39 b(Updating)e(the)i(\002le)h(signature)d(database)2750
+4623 y
+SDict begin H.S end
+ 2750 4623 a 2750 4623 a
+SDict begin 22.464 H.A end
+ 2750 4623 a 2750 4623
+a
+SDict begin [ /View [/XYZ H.V] /Dest (5.17.1) cvn H.B /DEST pdfmark
+end
+ 2750 4623 a -2 4821 a
+SDict begin H.S end
+ -2 4821 a -2 4821 a
+SDict begin 13 H.A end
+ -2 4821 a
+-2 4821 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:713) cvn H.B /DEST pdfmark
+end
+ -2 4821 a 396 4897 a FC(The)546 4897 y
+SDict begin H.S end
+ 546
+4897 a 546 4897 a
+SDict begin 13 H.A end
+ 546 4897 a 546 4897 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:714) cvn H.B /DEST pdfmark
+end
+ 546 4897 a FC(samhain)20
+b(daemon)e(only)i(reads)f(the)i(\002le)g(signature)e(database)g(on)h
+(startup)g(\(also)g(see)p 0 TeXcolorgray 3032 4897 a
+SDict begin H.S end
+
+3032 4897 a FC(Section)g(5.4.4)3470 4897 y
+SDict begin 13 H.L end
+ 3470 4897
+a 3470 4897 a
+SDict begin [ /Subtype /Link /Dest (0:DYNUP) cvn /H /I /Border [0 0
+0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3470 4897 a Black 18 w FC(on)396 5005 y(this\).)g(Y)-9
+b(ou)20 b(can)g(update)f(the)h(database)g(while)g(the)g(daemon)f(is)i
+(running,)d(as)j(long)e(as)i(you)e(don')o(t)g(interfere)g(with)396
+5113 y(its)i(logging)e(\(i.e.)h(you)f(should)g(run)1439
+5113 y
+SDict begin H.S end
+ 1439 5113 a 1439 5113 a
+SDict begin 13 H.A end
+ 1439 5113 a 1439 5113
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:716) cvn H.B /DEST pdfmark
+end
+ 1439 5113 a Fy(samhain)h(-t)g(update)h(-l)f(none)h
+FC(to)f(mak)o(e)g(sure)g(the)g(log)g(\002le)h(is)g(not)f(accessed\).)
+396 5220 y(Interacti)n(v)o(e)f(updates)g(are)h(supported)e(with)j(the)f
+(command)e(line)i(\003ag)2443 5220 y
+SDict begin H.S end
+ 2443 5220 a 2443
+5220 a
+SDict begin 13 H.A end
+ 2443 5220 a 2443 5220 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:717) cvn H.B /DEST pdfmark
+end
+ 2443 5220 a Fy(--interacti)o(v)o(e)p
+Black 3660 5805 a Fx(16)p Black eop end
+%%Page: 17 22
+TeXDict begin 17 21 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.17) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2689 104 a
+Fx(Chapter)20 b(3.)g(Gener)o(al)f(usa)o(g)o(e)h(notes)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:718) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a FC(If)g(you)g(are)g(using)940 309 y
+SDict begin H.S end
+ 940
+309 a 940 309 a
+SDict begin 13 H.A end
+ 940 309 a 940 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:719) cvn H.B /DEST pdfmark
+end
+ 940 309 a FC(samhain)g(in)g
+(client/serv)o(er)f(mode)1958 309 y
+SDict begin H.S end
+ 1958 309 a 1958 309
+a
+SDict begin 13 H.A end
+ 1958 309 a 1958 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:720) cvn H.B /DEST pdfmark
+end
+ 1958 309 a Fx(and)j FC(k)o(eep)e(the)g
+(baseline)g(database)f(on)h(the)g(serv)o(er)m(,)f(then)396
+417 y(there)h(are)g(tw)o(o)h(w)o(ays)f(to)g(update)g(the)g(database:)-2
+435 y
+SDict begin H.S end
+ -2 435 a -2 435 a
+SDict begin 13 H.A end
+ -2 435 a -2 435 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:721) cvn H.B /DEST pdfmark
+end
+ -2 435 a -2
+445 a
+SDict begin H.S end
+ -2 445 a -2 445 a
+SDict begin 13 H.A end
+ -2 445 a -2 445 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:722) cvn H.B /DEST pdfmark
+end
+ -2 445 a Black
+396 587 a FB(\225)p Black 479 587 a
+SDict begin H.S end
+ 479 587 a 479 587
+a
+SDict begin 13 H.A end
+ 479 587 a 479 587 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:723) cvn H.B /DEST pdfmark
+end
+ 479 587 a FC(The)g(preferred)e(method)h(is)i(to)f
+(use)h(the)f(web-based)f(\(PHP4\))2285 587 y
+SDict begin H.S end
+ 2285 587
+a 2285 587 a
+SDict begin 13 H.A end
+ 2285 587 a 2285 587 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:724) cvn H.B /DEST pdfmark
+end
+ 2285 587 a FC(beltane)g
+(\(http://www)-5 b(.la-samhna.de/beltane/\))479 695 y(frontend,)18
+b(which)i(allo)n(ws)g(to)h(re)n(vie)n(w)e(client)h(messages)h(and)e(to)
+i(perform)2643 695 y
+SDict begin H.S end
+ 2643 695 a 2643 695 a
+SDict begin 13 H.A end
+ 2643 695 a
+2643 695 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:725) cvn H.B /DEST pdfmark
+end
+ 2643 695 a Fx(server)n(-side)g FC(updates)e(of)h(baseline)
+479 803 y(databases.)-2 804 y
+SDict begin H.S end
+ -2 804 a -2 804 a
+SDict begin 13 H.A end
+ -2 804
+a -2 804 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:726) cvn H.B /DEST pdfmark
+end
+ -2 804 a Black 396 952 a FB(\225)p Black 479
+952 a
+SDict begin H.S end
+ 479 952 a 479 952 a
+SDict begin 13 H.A end
+ 479 952 a 479 952 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:727) cvn H.B /DEST pdfmark
+end
+ 479 952
+a FC(T)-6 b(emporarily)909 952 y
+SDict begin H.S end
+ 909 952 a 909 952 a
+SDict begin 13 H.A end
+
+909 952 a 909 952 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:728) cvn H.B /DEST pdfmark
+end
+ 909 952 a Fy(scp)21 b FC(the)g(baseline)e(database)
+h(to)g(the)g(client,)g(run)2332 952 y
+SDict begin H.S end
+ 2332 952 a 2332
+952 a
+SDict begin 13 H.A end
+ 2332 952 a 2332 952 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:729) cvn H.B /DEST pdfmark
+end
+ 2332 952 a Fy(samhain)h(-t)f(update)p
+FC(,)g(and)3155 952 y
+SDict begin H.S end
+ 3155 952 a 3155 952 a
+SDict begin 13 H.A end
+ 3155 952
+a 3155 952 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:730) cvn H.B /DEST pdfmark
+end
+ 3155 952 a Fy(scp)h FC(the)g(baseline)479
+1060 y(database)f(back)f(to)i(the)f(serv)o(er)-5 b(.)19
+b(If)i(you)e(w)o(ant)h(to)g(k)o(eep)g(the)g(client)h(daemon)d(running)g
+(during)h(the)h(update,)f(you)479 1168 y(need)h(to)g(a)n(v)n(oid)g
+(concurrent)e(access)j(to)f(the)g(log)g(\002le)h(\(use)f('-l)g(none')f
+(for)g(the)i(update)e(process\).)g(Also,)h(you)479 1276
+y(need)g(to)g(a)n(v)n(oid)g(concurrent)e(access)j(to)f(the)g(serv)o(er)
+f(\(use)i('-e)e(none')g(for)h(the)g(update)f(process\).)-2
+1460 y
+SDict begin H.S end
+ -2 1460 a -2 1460 a
+SDict begin 13 H.A end
+ -2 1460 a -2 1460 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:731) cvn H.B /DEST pdfmark
+end
+ -2 1460
+a 479 1550 a FC(If)h(you)701 1550 y
+SDict begin H.S end
+ 701 1550 a 701 1550
+a
+SDict begin 13 H.A end
+ 701 1550 a 701 1550 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:732) cvn H.B /DEST pdfmark
+end
+ 701 1550 a Fx(must)i FC(access)e(the)h(serv)o
+(er)e(concurrently)e(\(e.g.)j(to)g(do)n(wnload)e(the)i(con\002guration)
+e(\002le)j(for)e(the)h(update)479 1658 y(process\),)f(you)h(need)f(to)i
+(suspend)e(the)h(client)g(daemon)f(process)h(temporarily)e(using)h
+(SIGUSR2)i(\(note)e(that)479 1766 y(SIGST)o(OP/SIGCONT)h(will)h(not)f
+(do)g(what)g(you)f(w)o(ant,)h(because)g(the)g(daemon)e(must)j(inform)d
+(the)j(serv)o(er)e(that)479 1874 y(it)i(is)g(about)f(to)g(suspend\).)f
+(Use)h(SIGUSR2)h(again)e(to)h(w)o(ak)o(e)h(up)e(the)i(daemon)d(from)h
+(suspend)h(mode.)-2 2033 y
+SDict begin H.S end
+ -2 2033 a -2 2033 a
+SDict begin 13 H.A end
+ -2 2033
+a -2 2033 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:IMPROVING-THE-SIGNAL-TO-NOISE-RATIO)
+cvn H.B /DEST pdfmark end
+ -2 2033 a 378 x Fu(3.8.)39 b(Impr)m(o)m(ving)f(the)h
+(signal-to-noise)d(ratio)2632 2411 y
+SDict begin H.S end
+ 2632 2411 a 2632
+2411 a
+SDict begin 22.464 H.A end
+ 2632 2411 a 2632 2411 a
+SDict begin [ /View [/XYZ H.V] /Dest (5.18.1) cvn H.B /DEST pdfmark
+end
+ 2632 2411 a -2 2609 a
+SDict begin H.S end
+
+-2 2609 a -2 2609 a
+SDict begin 13 H.A end
+ -2 2609 a -2 2609 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:735) cvn H.B /DEST pdfmark
+end
+ -2 2609 a 396
+2685 a FC(T)-7 b(o)21 b(get)f(a)g(good)f(signal-to-noise)f(ratio)i
+(\(i.e.)g(fe)n(w)g(f)o(alse)h(alerts\),)f(you)f(need)h(to)g(kno)n(w)f
+(which)h(\002les)h(should)e(be)396 2793 y(check)o(ed,)g(and)h(which)f
+(not)h(\(looking)e(at)j(the)f(')o(last)h(modi\002ed')e(timestamp)g(may)
+h(be)g(helpful,)f(if)h(in)h(doubt\).)-2 2977 y
+SDict begin H.S end
+ -2 2977
+a -2 2977 a
+SDict begin 13 H.A end
+ -2 2977 a -2 2977 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:736) cvn H.B /DEST pdfmark
+end
+ -2 2977 a 396 3066 a
+FC(T)-7 b(o)21 b(see)f(ho)n(w)g(to)g(set)h(recursion)e(depths,)g
+(implement)g('check)g(all)i(b)n(ut)f(xxx')f(policies)h(etc.,)g(ha)n(v)o
+(e)g(a)g(look)g(at)p 0 TeXcolorgray 396 3174 a
+SDict begin H.S end
+ 396 3174
+a FC(Section)g(5.4.1)834 3174 y
+SDict begin 13 H.L end
+ 834 3174 a 834 3174 a
+SDict begin [ /Subtype /Link /Dest (0:POLICY) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+
+834 3174 a Black -2 w FC(.)-2 3341 y
+SDict begin H.S end
+ -2 3341 a -2 3341
+a
+SDict begin 13 H.A end
+ -2 3341 a -2 3341 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:738) cvn H.B /DEST pdfmark
+end
+ -2 3341 a 396 3448 a FC(As)509
+3448 y
+SDict begin H.S end
+ 509 3448 a 509 3448 a
+SDict begin 13 H.A end
+ 509 3448 a 509 3448 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:739) cvn H.B /DEST pdfmark
+end
+ 509
+3448 a FC(samhain)g(runs)f(a)i(a)g(daemon,)d(it)j(is)g(capable)e(to)i
+(')l(remember')c(all)k(\002le)g(system)f(changes,)f(thus)h(you)g(w)o
+(on')o(t)f(get)396 3556 y(bothered)g(twice)h(about)f(the)i(same)f
+(problem.)-2 3585 y
+SDict begin H.S end
+ -2 3585 a -2 3585 a
+SDict begin 13 H.A end
+ -2 3585 a -2
+3585 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:OPTIONS-CONFIGURATION-FILE)
+cvn H.B /DEST pdfmark end
+ -2 3585 a 359 x Fu(3.9.)39 b(Runtime)f(options:)f(command-line)g
+(&)i(con\002guration)-2 4130 y(\002le)206 4130 y
+SDict begin H.S end
+ 206
+4130 a 206 4130 a
+SDict begin 22.464 H.A end
+ 206 4130 a 206 4130 a
+SDict begin [ /View [/XYZ H.V] /Dest (5.19.1) cvn H.B /DEST pdfmark
+end
+ 206 4130 a -2
+4298 a
+SDict begin H.S end
+ -2 4298 a -2 4298 a
+SDict begin 13 H.A end
+ -2 4298 a -2 4298 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:742) cvn H.B /DEST pdfmark
+end
+ -2 4298
+a 396 4404 a FC(All)21 b(command)d(line)j(options)e(are)h(described)f
+(in)p 0 TeXcolorgray 1828 4404 a
+SDict begin H.S end
+ 1828 4404 a FC(Appendix)f(B)2231
+4404 y
+SDict begin 13 H.L end
+ 2231 4404 a 2231 4404 a
+SDict begin [ /Subtype /Link /Dest (0:COMMAND-LINE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2231 4404 a Black 1 w
+FC(>.)i(Note)g(that)h(depending)c(on)j(the)3240 4404
+y
+SDict begin H.S end
+ 3240 4404 a 3240 4404 a
+SDict begin 13 H.A end
+ 3240 4404 a 3240 4404 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:744) cvn H.B /DEST pdfmark
+end
+ 3240
+4404 a Fy(./con\002gur)o(e)396 4512 y FC(options)g(used)f(for)h
+(compiling,)e(not)i(all)h(options)e(may)h(be)g(a)n(v)n(ailable.)f(Y)-9
+b(ou)20 b(can)g(get)g(a)h(list)g(of)f(v)n(alid)g(options)f(with)396
+4620 y
+SDict begin H.S end
+ 396 4620 a 396 4620 a
+SDict begin 13 H.A end
+ 396 4620 a 396 4620 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:745) cvn H.B /DEST pdfmark
+end
+ 396
+4620 a Fy(samhain)i(--help)p FC(.)-2 4803 y
+SDict begin H.S end
+ -2 4803 a
+-2 4803 a
+SDict begin 13 H.A end
+ -2 4803 a -2 4803 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:746) cvn H.B /DEST pdfmark
+end
+ -2 4803 a 396 4894 a FC(All)g(settings)g
+(in)f(the)g(con\002guration)e(\002le,)i(are)g(described)f(in)p
+0 TeXcolorgray 2163 4894 a
+SDict begin H.S end
+ 2163 4894 a FC(Appendix)f(C)2566
+4894 y
+SDict begin 13 H.L end
+ 2566 4894 a 2566 4894 a
+SDict begin [ /Subtype /Link /Dest (0:THE-CONFIGURATION-FILE) cvn /H
+/I /Border [0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2566 4894 a Black FC(>.)j(Note)f(that)g
+(depending)e(on)h(the)396 5002 y
+SDict begin H.S end
+ 396 5002 a 396 5002
+a
+SDict begin 13 H.A end
+ 396 5002 a 396 5002 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:748) cvn H.B /DEST pdfmark
+end
+ 396 5002 a Fy(./con\002gur)o(e)g
+FC(options)h(used)g(for)f(compiling,)f(not)i(all)h(options)e(may)h(be)g
+(a)n(v)n(ailable.)g(If)g(you)f(are)h(using)396 5110 y(unsupported)d
+(options,)1113 5110 y
+SDict begin H.S end
+ 1113 5110 a 1113 5110 a
+SDict begin 13 H.A end
+ 1113 5110
+a 1113 5110 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:749) cvn H.B /DEST pdfmark
+end
+ 1113 5110 a FC(samhain)j(will)h(log)f(w)o(arning)f
+(messages)h(upon)f(startup,)g(including)g(the)h(line)g(number)f(of)396
+5218 y(the)h(of)n(fending)e(line)i(in)h(the)f(con\002guration)d
+(\002le.)-2 5246 y
+SDict begin H.S end
+ -2 5246 a -2 5246 a
+SDict begin 13 H.A end
+ -2 5246 a -2 5246
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SUPPORT) cvn H.B /DEST pdfmark
+end
+ -2 5246 a Black 3658 5805 a Fx(17)p Black eop end
+%%Page: 18 23
+TeXDict begin 18 22 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.18) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2689 104 a
+Fx(Chapter)20 b(3.)g(Gener)o(al)f(usa)o(g)o(e)h(notes)p
+Black -2 330 a Fu(3.10.)39 b(Suppor)s(t)e(/)j(Bugs)f(/)g(Pr)m(ob)o
+(lems)2159 330 y
+SDict begin H.S end
+ 2159 330 a 2159 330 a
+SDict begin 22.464 H.A end
+ 2159 330 a 2159
+330 a
+SDict begin [ /View [/XYZ H.V] /Dest (5.20.1) cvn H.B /DEST pdfmark
+end
+ 2159 330 a -2 528 a
+SDict begin H.S end
+ -2 528 a -2 528 a
+SDict begin 13 H.A end
+ -2 528 a
+-2 528 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:752) cvn H.B /DEST pdfmark
+end
+ -2 528 a 396 604 a FC(If)20 b(you)g(ha)n(v)o(e)f(problems)g
+(getting)1373 604 y
+SDict begin H.S end
+ 1373 604 a 1373 604 a
+SDict begin 13 H.A end
+ 1373 604 a
+1373 604 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:753) cvn H.B /DEST pdfmark
+end
+ 1373 604 a FC(samhain)h(to)g(run,)f(or)h(think)g(that)g(you)
+f(ha)n(v)o(e)h(encountered)d(a)k(b)n(ug,)e(then)h(please)396
+712 y(check)g(the)g(F)-6 b(A)h(Q)21 b(\002rst.)-2 893
+y
+SDict begin H.S end
+ -2 893 a -2 893 a
+SDict begin 13 H.A end
+ -2 893 a -2 893 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:754) cvn H.B /DEST pdfmark
+end
+ -2 893 a 396 986
+a FC(If)f(your)f(problem)g(is)i(not)f(anwered)f(there,)g(you)g(can)h
+(visit)h(the)2222 986 y
+SDict begin H.S end
+ 2222 986 a 2222 986 a
+SDict begin 13 H.A end
+ 2222 986
+a 2222 986 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:755) cvn H.B /DEST pdfmark
+end
+ 2222 986 a FC(user)f(forum)f
+(\(http://la-samhna.de/forum\))396 1094 y(\(which)h(is)724
+1094 y
+SDict begin H.S end
+ 724 1094 a 724 1094 a
+SDict begin 13 H.A end
+ 724 1094 a 724 1094 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:756) cvn H.B /DEST pdfmark
+end
+ 724
+1094 a Fx(sear)m(c)o(hable)p FC(,)e(by)i(the)g(w)o(ay\))g(and)g(ask)g
+(there)g(for)f(help)h(\(recommended)d(for)i(questions)h(of)g(probably)
+396 1202 y(general)f(interest\),)h(or)g(send)g(email)g(to)1528
+1202 y
+SDict begin H.S end
+ 1528 1202 a 1528 1202 a
+SDict begin 13 H.A end
+ 1528 1202 a 1528 1202
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:757) cvn H.B /DEST pdfmark
+end
+ 1528 1202 a FC(<)p Fr(support@la-samhna.de)p FC(>.)-2
+1386 y
+SDict begin H.S end
+ -2 1386 a -2 1386 a
+SDict begin 13 H.A end
+ -2 1386 a -2 1386 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:758) cvn H.B /DEST pdfmark
+end
+ -2 1386
+a 396 1476 a FC(Please)h(remember)d(that)j(a)f(useful)g(problem)e
+(report)h(should)h(at)g(least)h(include)e(the)i(follo)n(wing)d(three)i
+(items:)-2 1660 y
+SDict begin H.S end
+ -2 1660 a -2 1660 a
+SDict begin 13 H.A end
+ -2 1660 a -2 1660
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:759) cvn H.B /DEST pdfmark
+end
+ -2 1660 a -2 1660 a
+SDict begin H.S end
+ -2 1660 a -2 1660 a
+SDict begin 13 H.A end
+ -2 1660 a -2
+1660 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:760) cvn H.B /DEST pdfmark
+end
+ -2 1660 a -2 1670 a
+SDict begin H.S end
+ -2 1670 a -2 1670 a
+SDict begin 13 H.A end
+ -2 1670
+a -2 1670 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:761) cvn H.B /DEST pdfmark
+end
+ -2 1670 a Black 396 1812 a FB(\225)p Black
+479 1812 a
+SDict begin H.S end
+ 479 1812 a 479 1812 a
+SDict begin 13 H.A end
+ 479 1812 a 479 1812
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:762) cvn H.B /DEST pdfmark
+end
+ 479 1812 a FC(What)h(did)f(you)f(do)h(?)-2 1830 y
+SDict begin H.S end
+ -2
+1830 a -2 1830 a
+SDict begin 13 H.A end
+ -2 1830 a -2 1830 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:763) cvn H.B /DEST pdfmark
+end
+ -2 1830 a Black
+396 1962 a FB(\225)p Black 479 1962 a
+SDict begin H.S end
+ 479 1962 a 479
+1962 a
+SDict begin 13 H.A end
+ 479 1962 a 479 1962 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:764) cvn H.B /DEST pdfmark
+end
+ 479 1962 a FC(What)h(result)f(did)g(you)f
+(e)o(xpect)g(?)-2 1980 y
+SDict begin H.S end
+ -2 1980 a -2 1980 a
+SDict begin 13 H.A end
+ -2 1980
+a -2 1980 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:765) cvn H.B /DEST pdfmark
+end
+ -2 1980 a Black 396 2111 a FB(\225)p Black
+479 2111 a
+SDict begin H.S end
+ 479 2111 a 479 2111 a
+SDict begin 13 H.A end
+ 479 2111 a 479 2111
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:766) cvn H.B /DEST pdfmark
+end
+ 479 2111 a FC(What)i(result)f(did)g(you)f(obtain)h(instead)f(?)-2
+2427 y
+SDict begin H.S end
+ -2 2427 a -2 2427 a
+SDict begin 13 H.A end
+ -2 2427 a -2 2427 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:767) cvn H.B /DEST pdfmark
+end
+ -2 2427
+a -2 2427 a
+SDict begin H.S end
+ -2 2427 a -2 2427 a
+SDict begin 13 H.A end
+ -2 2427 a -2 2427 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:768) cvn H.B /DEST pdfmark
+end
+ -2
+2427 a 396 2535 a Fx(Please)h(be)g(sur)m(e)h(to)f(pr)l(o)o(vide)g(r)m
+(ele)o(vant)g(details,)g(suc)o(h)f(as:)-2 2718 y
+SDict begin H.S end
+ -2 2718
+a -2 2718 a
+SDict begin 13 H.A end
+ -2 2718 a -2 2718 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:769) cvn H.B /DEST pdfmark
+end
+ -2 2718 a -2 2718 a
+SDict begin H.S end
+ -2
+2718 a -2 2718 a
+SDict begin 13 H.A end
+ -2 2718 a -2 2718 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:770) cvn H.B /DEST pdfmark
+end
+ -2 2718 a -2 2728
+a
+SDict begin H.S end
+ -2 2728 a -2 2728 a
+SDict begin 13 H.A end
+ -2 2728 a -2 2728 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:771) cvn H.B /DEST pdfmark
+end
+ -2 2728 a Black
+396 2871 a FB(\225)p Black 479 2871 a
+SDict begin H.S end
+ 479 2871 a 479
+2871 a
+SDict begin 13 H.A end
+ 479 2871 a 479 2871 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:772) cvn H.B /DEST pdfmark
+end
+ 479 2871 a FC(your)g(operating)g(system,)h
+(its)h(release)f(v)o(ersion,)f(and)g(the)i(machine)e(\()2487
+2871 y
+SDict begin H.S end
+ 2487 2871 a 2487 2871 a
+SDict begin 13 H.A end
+ 2487 2871 a 2487 2871
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:773) cvn H.B /DEST pdfmark
+end
+ 2487 2871 a Fy(uname)h(-srm)p FC(\).)-2 2889 y
+SDict begin H.S end
+ -2 2889
+a -2 2889 a
+SDict begin 13 H.A end
+ -2 2889 a -2 2889 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:774) cvn H.B /DEST pdfmark
+end
+ -2 2889 a Black 396 3020
+a FB(\225)p Black 479 3020 a
+SDict begin H.S end
+ 479 3020 a 479 3020 a
+SDict begin 13 H.A end
+ 479
+3020 a 479 3020 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:775) cvn H.B /DEST pdfmark
+end
+ 479 3020 a FC(your)f(operating)g(system,)h(its)h
+(release)f(v)o(ersion,)f(and)g(the)i(machine)e(\()2487
+3020 y
+SDict begin H.S end
+ 2487 3020 a 2487 3020 a
+SDict begin 13 H.A end
+ 2487 3020 a 2487 3020
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:776) cvn H.B /DEST pdfmark
+end
+ 2487 3020 a Fy(uname)h(-srm)p FC(\).)-2 3038 y
+SDict begin H.S end
+ -2 3038
+a -2 3038 a
+SDict begin 13 H.A end
+ -2 3038 a -2 3038 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:777) cvn H.B /DEST pdfmark
+end
+ -2 3038 a Black 396 3170
+a FB(\225)p Black 479 3170 a
+SDict begin H.S end
+ 479 3170 a 479 3170 a
+SDict begin 13 H.A end
+ 479
+3170 a 479 3170 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:778) cvn H.B /DEST pdfmark
+end
+ 479 3170 a FC(the)g(v)o(ersion)f(of)955
+3170 y
+SDict begin H.S end
+ 955 3170 a 955 3170 a
+SDict begin 13 H.A end
+ 955 3170 a 955 3170 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:779) cvn H.B /DEST pdfmark
+end
+ 955
+3170 a FC(samhain)h(that)g(you)f(are)h(using,)g(and)g(the)g(options)f
+(that)h(you)g(ha)n(v)o(e)f(supplied)g(to)3268 3170 y
+SDict begin H.S end
+
+3268 3170 a 3268 3170 a
+SDict begin 13 H.A end
+ 3268 3170 a 3268 3170 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:780) cvn H.B /DEST pdfmark
+end
+ 3268
+3170 a Fy(con\002gur)o(e)p FC(.)-2 3188 y
+SDict begin H.S end
+ -2 3188 a -2
+3188 a
+SDict begin 13 H.A end
+ -2 3188 a -2 3188 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:781) cvn H.B /DEST pdfmark
+end
+ -2 3188 a Black 396 3319 a
+FB(\225)p Black 479 3319 a
+SDict begin H.S end
+ 479 3319 a 479 3319 a
+SDict begin 13 H.A end
+ 479
+3319 a 479 3319 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:782) cvn H.B /DEST pdfmark
+end
+ 479 3319 a FC(If)h(you)g(think)f(you)g(ha)n(v)o(e)h
+(encountered)d(a)k(b)n(ug,)e(it)i(is)g(usually)2264 3319
+y
+SDict begin H.S end
+ 2264 3319 a 2264 3319 a
+SDict begin 13 H.A end
+ 2264 3319 a 2264 3319 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:783) cvn H.B /DEST pdfmark
+end
+ 2264
+3319 a Fx(very)g(helpful)e FC(if)i(you)e(run)3027 3319
+y
+SDict begin H.S end
+ 3027 3319 a 3027 3319 a
+SDict begin 13 H.A end
+ 3027 3319 a 3027 3319 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:784) cvn H.B /DEST pdfmark
+end
+ 3027
+3319 a FC(samhain)3325 3319 y
+SDict begin H.S end
+ 3325 3319 a 3325 3319 a
+SDict begin 13 H.A end
+
+3325 3319 a 3325 3319 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:785) cvn H.B /DEST pdfmark
+end
+ 3325 3319 a Fx(in)h(the)479 3427
+y(for)m(e)m(gr)l(ound)h FC(\(i.e.)f(not)f(as)i(daemon\))e(with)h(the)g
+(command)e(line)j(switch)2565 3427 y
+SDict begin H.S end
+ 2565 3427 a 2565
+3427 a
+SDict begin 13 H.A end
+ 2565 3427 a 2565 3427 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:786) cvn H.B /DEST pdfmark
+end
+ 2565 3427 a Fy(-p)g(deb)n(ug)g
+FC(to)f(get)g(some)g(more)479 3535 y(information)e(about)h(the)i
+(problem.)-2 3719 y
+SDict begin H.S end
+ -2 3719 a -2 3719 a
+SDict begin 13 H.A end
+ -2 3719 a -2
+3719 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:787) cvn H.B /DEST pdfmark
+end
+ -2 3719 a 479 3809 a FC(It)g(w)o(ould)e(be)877
+3809 y
+SDict begin H.S end
+ 877 3809 a 877 3809 a
+SDict begin 13 H.A end
+ 877 3809 a 877 3809 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:788) cvn H.B /DEST pdfmark
+end
+ 877
+3809 a Fx(e)o(ven)h(mor)m(e)g(helpful)g FC(if)g(you)g(\002rst)g
+(re-compile)2236 3809 y
+SDict begin H.S end
+ 2236 3809 a 2236 3809 a
+SDict begin 13 H.A end
+ 2236
+3809 a 2236 3809 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:789) cvn H.B /DEST pdfmark
+end
+ 2236 3809 a FC(samhain)f(with)2702
+3809 y
+SDict begin H.S end
+ 2702 3809 a 2702 3809 a
+SDict begin 13 H.A end
+ 2702 3809 a 2702 3809
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:790) cvn H.B /DEST pdfmark
+end
+ 2702 3809 a Fy(con\002gur)o(e)g(--enable-deb)n(ug)p
+FC(,)g(and)479 3917 y(then)h(run)f(it)i(with)g(the)f(command)e(line)i
+(switch)1863 3917 y
+SDict begin H.S end
+ 1863 3917 a 1863 3917 a
+SDict begin 13 H.A end
+ 1863 3917
+a 1863 3917 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:791) cvn H.B /DEST pdfmark
+end
+ 1863 3917 a Fy(-p)g(deb)n(ug)h FC(\(again,)e(not)h(as)h
+(daemon,)d(b)n(ut)3088 3917 y
+SDict begin H.S end
+ 3088 3917 a 3088 3917 a
+SDict begin 13 H.A end
+
+3088 3917 a 3088 3917 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:792) cvn H.B /DEST pdfmark
+end
+ 3088 3917 a Fx(in)j(the)f(for)m(e)m(gr)l(ound)r
+FC(\).)-2 4101 y
+SDict begin H.S end
+ -2 4101 a -2 4101 a
+SDict begin 13 H.A end
+ -2 4101 a -2 4101
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:793) cvn H.B /DEST pdfmark
+end
+ -2 4101 a 479 4191 a FC(Please)h(compress)e(the)i(output)e(using)1602
+4191 y
+SDict begin H.S end
+ 1602 4191 a 1602 4191 a
+SDict begin 13 H.A end
+ 1602 4191 a 1602 4191
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:794) cvn H.B /DEST pdfmark
+end
+ 1602 4191 a Fy(gzip)p FC(,)h(and)g(send)g(it)h(as)g(attachment)e(to)
+2732 4191 y
+SDict begin H.S end
+ 2732 4191 a 2732 4191 a
+SDict begin 13 H.A end
+ 2732 4191 a 2732
+4191 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:795) cvn H.B /DEST pdfmark
+end
+ 2732 4191 a FC(<)p Fr(support@la-samhna.de)p FC(>.)p
+Black 3661 5805 a Fx(18)p Black eop end
+%%Page: 19 24
+TeXDict begin 19 23 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.19) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black -2 226
+a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:BASIC-CONFIGURATION) cvn H.B
+/DEST pdfmark end
+ -2 226 a 125 x
+Fz(Chapter)48 b(4.)f(Con\002guration)j(of)e(log)n(ging)h(facilities)
+3632 351 y
+SDict begin H.S end
+ 3632 351 a 3632 351 a
+SDict begin 26.957 H.A end
+ 3632 351 a 3632 351
+a
+SDict begin [ /View [/XYZ H.V] /Dest (6.0) cvn H.B /DEST pdfmark end
+ 3632 351 a -2 609 a
+SDict begin H.S end
+ -2 609 a -2 609 a
+SDict begin 13 H.A end
+ -2 609 a -2 609
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:798) cvn H.B /DEST pdfmark
+end
+ -2 609 a 396 679 a FC(The)20 b(con\002guration)e(\002le)i(for)1254
+679 y
+SDict begin H.S end
+ 1254 679 a 1254 679 a
+SDict begin 13 H.A end
+ 1254 679 a 1254 679 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:799) cvn H.B /DEST pdfmark
+end
+ 1254
+679 a FC(samhain)g(is)h(named)1870 679 y
+SDict begin H.S end
+ 1870 679 a 1870
+679 a
+SDict begin 13 H.A end
+ 1870 679 a 1870 679 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:800) cvn H.B /DEST pdfmark
+end
+ 1870 679 a Fr(samhainrc)e
+FC(by)h(def)o(ault.)f(Also)i(by)e(def)o(ault,)h(it)g(is)i(placed)d(in)
+396 787 y
+SDict begin H.S end
+ 396 787 a 396 787 a
+SDict begin 13 H.A end
+ 396 787 a 396 787 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:801) cvn H.B /DEST pdfmark
+end
+ 396
+787 a Fr(/etc)p FC(.)h(\(Name)g(and)f(location)h(is)h(con\002gurable)d
+(at)i(compile)f(time\).)h(The)g(distrib)n(ution)f(package)g(comes)h
+(with)g(a)396 895 y(commented)e(sample)i(con\002guration)e(\002le.)i
+(The)g(layout)g(of)g(the)g(con\002guration)d(\002le)k(is)g(described)e
+(in)h(more)396 1003 y(details)h(in)p 0 TeXcolorgray 719
+1003 a
+SDict begin H.S end
+ 719 1003 a FC(Section)f(C.1)1107 1003 y
+SDict begin 13 H.L end
+ 1107 1003
+a 1107 1003 a
+SDict begin [ /Subtype /Link /Dest (0:CONFIGFILE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1107 1003 a Black FC(.)-2 1004 y
+SDict begin H.S end
+ -2 1004
+a -2 1004 a
+SDict begin 13 H.A end
+ -2 1004 a -2 1004 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:LOGDEF) cvn H.B /DEST pdfmark
+end
+ -2 1004 a 376 x Fu(4.1.)39
+b(Se)n(verity)f(le)n(vels)g(and)h(c)m(lasses)g(of)g(log)g(messa)o(g)q
+(es)3286 1380 y
+SDict begin H.S end
+ 3286 1380 a 3286 1380 a
+SDict begin 22.464 H.A end
+ 3286 1380 a 3286
+1380 a
+SDict begin [ /View [/XYZ H.V] /Dest (6.21.1) cvn H.B /DEST pdfmark
+end
+ 3286 1380 a -2 1578 a
+SDict begin H.S end
+ -2 1578 a -2 1578 a
+SDict begin 13 H.A end
+ -2 1578
+a -2 1578 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:805) cvn H.B /DEST pdfmark
+end
+ -2 1578 a -2 1578 a
+SDict begin H.S end
+ -2 1578 a -2 1578 a
+SDict begin 13 H.A end
+ -2
+1578 a -2 1578 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:806) cvn H.B /DEST pdfmark
+end
+ -2 1578 a 396 1654 a Fx(Events)20 b
+FC(\(e.g.)g(unauthorized)d(modi\002cations)i(of)h(\002les)h(monitored)d
+(by)2449 1654 y
+SDict begin H.S end
+ 2449 1654 a 2449 1654 a
+SDict begin 13 H.A end
+ 2449 1654 a 2449
+1654 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:807) cvn H.B /DEST pdfmark
+end
+ 2449 1654 a FC(samhain\))h(will)i(generate)3226
+1654 y
+SDict begin H.S end
+ 3226 1654 a 3226 1654 a
+SDict begin 13 H.A end
+ 3226 1654 a 3226 1654
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:808) cvn H.B /DEST pdfmark
+end
+ 3226 1654 a Fx(messa)o(g)o(es)f FC(of)396 1762 y(some)592
+1762 y
+SDict begin H.S end
+ 592 1762 a 592 1762 a
+SDict begin 13 H.A end
+ 592 1762 a 592 1762 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:809) cvn H.B /DEST pdfmark
+end
+ 592
+1762 a Fx(se)o(verity)p FC(.)g(These)g(messages)g(will)h(be)f(logged)e
+(to)i(all)h(logging)d(f)o(acilities,)i(whose)2960 1762
+y
+SDict begin H.S end
+ 2960 1762 a 2960 1762 a
+SDict begin 13 H.A end
+ 2960 1762 a 2960 1762 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:810) cvn H.B /DEST pdfmark
+end
+ 2960
+1762 a Fx(thr)m(eshold)h FC(is)g(equal)e(to,)h(or)396
+1870 y(lo)n(wer)g(than,)f(the)i(se)n(v)o(erity)e(of)h(the)g(message.)-2
+1888 y
+SDict begin H.S end
+ -2 1888 a -2 1888 a
+SDict begin 13 H.A end
+ -2 1888 a -2 1888 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SEVERITYDEF) cvn H.B /DEST
+pdfmark end
+ -2 1888
+a 396 2198 a Fp(4.1.1.)36 b(Se)n(verity)e(le)n(vels)1553
+2198 y
+SDict begin H.S end
+ 1553 2198 a 1553 2198 a
+SDict begin 18.72 H.A end
+ 1553 2198 a 1553 2198
+a
+SDict begin [ /View [/XYZ H.V] /Dest (6.21.6.2) cvn H.B /DEST pdfmark
+end
+ 1553 2198 a -2 2389 a
+SDict begin H.S end
+ -2 2389 a -2 2389 a
+SDict begin 13 H.A end
+ -2 2389 a
+-2 2389 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:813) cvn H.B /DEST pdfmark
+end
+ -2 2389 a 396 2472 a FC(The)20 b(follo)n(wing)f(se)n(v)o
+(erity)g(le)n(v)o(els)h(are)g(de\002ned:)1810 2472 y
+SDict begin H.S end
+
+1810 2472 a 1810 2472 a
+SDict begin 13 H.A end
+ 1810 2472 a 1810 2472 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:814) cvn H.B /DEST pdfmark
+end
+ 1810
+2472 a -2 2597 a
+SDict begin H.S end
+ -2 2597 a -2 2597 a
+SDict begin 13 H.A end
+ -2 2597 a -2 2597
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:815) cvn H.B /DEST pdfmark
+end
+ -2 2597 a -2 2597 a
+SDict begin H.S end
+ -2 2597 a -2 2597 a
+SDict begin 13 H.A end
+ -2 2597 a -2
+2597 a
+SDict begin [ /View [/XYZ H.V] /Dest (table.6) cvn H.B /DEST pdfmark
+end
+ -2 2597 a 396 2600 3359 4 v 396 2600 V 396 2725
+4 125 v 424 2700 a FD(Le)o(vel)p 2074 2725 V 1467 w(Signi\002cance)p
+3751 2725 V 396 2728 3359 4 v 396 2728 V 396 2852 4 125
+v 424 2828 a FC(none)p 2074 2852 V 1515 w(Not)g(logged.)p
+3751 2852 V 396 2856 3359 4 v 396 2856 V 396 2980 4 125
+v 424 2955 a(deb)n(ug)p 2074 2980 V 1475 w(Deb)n(ugging-le)n(v)o(el)d
+(messages.)p 3751 2980 V 396 2984 3359 4 v 396 2984 V
+396 3108 4 125 v 424 3083 a(info)p 2074 3108 V 1543 w(Informational)g
+(message.)p 3751 3108 V 396 3111 3359 4 v 396 3111 V
+396 3236 4 125 v 424 3211 a(notice)p 2074 3236 V 1474
+w(Normal)i(conditions.)p 3751 3236 V 396 3239 3359 4
+v 396 3239 V 396 3364 4 125 v 424 3339 a(w)o(arn)p 2074
+3364 V 1512 w(W)-7 b(arning)19 b(conditions.)p 3751 3364
+V 396 3367 3359 4 v 396 3367 V 396 3492 4 125 v 424 3467
+a(mark)p 2074 3492 V 1506 w(T)m(imestamps.)p 3751 3492
+V 396 3495 3359 4 v 396 3495 V 396 3620 4 125 v 424 3595
+a(err)p 2074 3620 V 1585 w(Error)g(conditions.)p 3751
+3620 V 396 3623 3359 4 v 396 3623 V 396 3747 4 125 v
+424 3723 a(crit)p 2074 3747 V 1567 w(Critical)i(conditions.)p
+3751 3747 V 396 3751 3359 4 v 396 3751 V 396 3983 4 233
+v 424 3850 a(alert)p 2074 3983 V 1530 w(Program)e(startup/normal)f(e)o
+(xit,)h(or)h(f)o(atal)h(error)m(,)2102 3958 y(causing)e(abnormal)g
+(program)f(termination.)p 3751 3983 V 396 3987 3359 4
+v 396 3987 V 396 4111 4 125 v 424 4086 a(inet)p 2074
+4111 V 1553 w(Incoming)g(messages)i(from)f(clients)i(\(serv)o(er)e
+(only\).)p 3751 4111 V 396 4114 3359 4 v 396 4114 V -2
+4446 a
+SDict begin H.S end
+ -2 4446 a -2 4446 a
+SDict begin 13 H.A end
+ -2 4446 a -2 4446 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:851) cvn H.B /DEST pdfmark
+end
+ -2 4446
+a 396 4554 a FC(Most)i(e)n(v)o(ents)e(\(e.g.)h(timestamps,)f(internal)h
+(errors,)f(program)f(startup/e)o(xit\))h(ha)n(v)o(e)2812
+4554 y
+SDict begin H.S end
+ 2812 4554 a 2812 4554 a
+SDict begin 13 H.A end
+ 2812 4554 a 2812 4554
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:852) cvn H.B /DEST pdfmark
+end
+ 2812 4554 a Fx(\002xed)j FC(se)n(v)o(erities.)e(The)396
+4662 y(follo)n(wing)f(e)n(v)o(ents)g(ha)n(v)o(e)1142
+4662 y
+SDict begin H.S end
+ 1142 4662 a 1142 4662 a
+SDict begin 13 H.A end
+ 1142 4662 a 1142 4662
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:853) cvn H.B /DEST pdfmark
+end
+ 1142 4662 a Fx(con\002gur)o(able)e FC(se)n(v)o(erities:)-2
+4846 y
+SDict begin H.S end
+ -2 4846 a -2 4846 a
+SDict begin 13 H.A end
+ -2 4846 a -2 4846 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:854) cvn H.B /DEST pdfmark
+end
+ -2 4846
+a -2 4846 a
+SDict begin H.S end
+ -2 4846 a -2 4846 a
+SDict begin 13 H.A end
+ -2 4846 a -2 4846 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:855) cvn H.B /DEST pdfmark
+end
+ -2
+4846 a -2 4856 a
+SDict begin H.S end
+ -2 4856 a -2 4856 a
+SDict begin 13 H.A end
+ -2 4856 a -2 4856
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:856) cvn H.B /DEST pdfmark
+end
+ -2 4856 a Black 396 4999 a FB(\225)p Black 479 4999
+a
+SDict begin H.S end
+ 479 4999 a 479 4999 a
+SDict begin 13 H.A end
+ 479 4999 a 479 4999 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:857) cvn H.B /DEST pdfmark
+end
+ 479 4999
+a FC(\(serv)o(er)i(only\))g(f)o(ailure)h(to)g(resolv)o(e)g(a)g(client)g
+(address)g(\(section)2323 4999 y
+SDict begin H.S end
+ 2323 4999 a 2323 4999
+a
+SDict begin 13 H.A end
+ 2323 4999 a 2323 4999 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:858) cvn H.B /DEST pdfmark
+end
+ 2323 4999 a Fx([Misc])p FC(,)h(option)2823
+4999 y
+SDict begin H.S end
+ 2823 4999 a 2823 4999 a
+SDict begin 13 H.A end
+ 2823 4999 a 2823 4999
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:859) cvn H.B /DEST pdfmark
+end
+ 2823 4999 a Fx(Se)o(verityLookup)p FC(\))-2 5017 y
+SDict begin H.S end
+
+-2 5017 a -2 5017 a
+SDict begin 13 H.A end
+ -2 5017 a -2 5017 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:860) cvn H.B /DEST pdfmark
+end
+ -2 5017 a Black
+396 5148 a FB(\225)p Black 479 5148 a
+SDict begin H.S end
+ 479 5148 a 479
+5148 a
+SDict begin 13 H.A end
+ 479 5148 a 479 5148 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:861) cvn H.B /DEST pdfmark
+end
+ 479 5148 a FC(polic)o(y)e(violations)h
+(\(for)f(monitored)f(\002les\))-2 5166 y
+SDict begin H.S end
+ -2 5166 a -2
+5166 a
+SDict begin 13 H.A end
+ -2 5166 a -2 5166 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:862) cvn H.B /DEST pdfmark
+end
+ -2 5166 a Black 396 5297 a
+FB(\225)p Black 479 5297 a
+SDict begin H.S end
+ 479 5297 a 479 5297 a
+SDict begin 13 H.A end
+ 479
+5297 a 479 5297 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:863) cvn H.B /DEST pdfmark
+end
+ 479 5297 a FC(access)j(errors)e(for)h(\002les)-2
+5298 y
+SDict begin H.S end
+ -2 5298 a -2 5298 a
+SDict begin 13 H.A end
+ -2 5298 a -2 5298 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:864) cvn H.B /DEST pdfmark
+end
+ -2 5298
+a Black 3661 5805 a Fx(19)p Black eop end
+%%Page: 20 25
+TeXDict begin 20 24 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.20) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2239 104 a
+Fx(Chapter)20 b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d
+(facilities)p Black Black 396 309 a FB(\225)p Black 479
+309 a
+SDict begin H.S end
+ 479 309 a 479 309 a
+SDict begin 13 H.A end
+ 479 309 a 479 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:865) cvn H.B /DEST pdfmark
+end
+ 479 309
+a FC(access)j(errors)e(for)h(directories)-2 310 y
+SDict begin H.S end
+ -2
+310 a -2 310 a
+SDict begin 13 H.A end
+ -2 310 a -2 310 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:866) cvn H.B /DEST pdfmark
+end
+ -2 310 a Black 396 458
+a FB(\225)p Black 479 458 a
+SDict begin H.S end
+ 479 458 a 479 458 a
+SDict begin 13 H.A end
+ 479 458
+a 479 458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:867) cvn H.B /DEST pdfmark
+end
+ 479 458 a FC(obscure)f(\002le)i(names)f(\(with)g
+(non-printable)d(characters\))i(and/or)g(in)m(v)n(alid)g(UIDs/GIDs)h
+(\(no)g(such)g(user/group\))-2 476 y
+SDict begin H.S end
+ -2 476 a -2 476
+a
+SDict begin 13 H.A end
+ -2 476 a -2 476 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:868) cvn H.B /DEST pdfmark
+end
+ -2 476 a Black 396 608 a FB(\225)p
+Black 479 608 a
+SDict begin H.S end
+ 479 608 a 479 608 a
+SDict begin 13 H.A end
+ 479 608 a 479 608
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:869) cvn H.B /DEST pdfmark
+end
+ 479 608 a FC(login/logout)e(e)n(v)o(ents)i(\(if)1235
+608 y
+SDict begin H.S end
+ 1235 608 a 1235 608 a
+SDict begin 13 H.A end
+ 1235 608 a 1235 608 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:870) cvn H.B /DEST pdfmark
+end
+ 1235
+608 a FC(samhain)f(is)i(con\002gured)d(to)i(monitor)f(them\))-2
+923 y
+SDict begin H.S end
+ -2 923 a -2 923 a
+SDict begin 13 H.A end
+ -2 923 a -2 923 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:871) cvn H.B /DEST pdfmark
+end
+ -2 923 a 396
+1031 a FC(Se)n(v)o(erity)g(le)n(v)o(els)i(for)e(e)n(v)o(ents)h(\(see)p
+0 TeXcolorgray 1403 1031 a
+SDict begin H.S end
+ 1403 1031 a FC(Section)g(4.1.1)1841
+1031 y
+SDict begin 13 H.L end
+ 1841 1031 a 1841 1031 a
+SDict begin [ /Subtype /Link /Dest (0:SEVERITYDEF) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1841 1031 a Black -2 w
+FC(>\))g(are)g(set)h(in)g(the)2377 1031 y
+SDict begin H.S end
+ 2377 1031 a
+2377 1031 a
+SDict begin 13 H.A end
+ 2377 1031 a 2377 1031 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:873) cvn H.B /DEST pdfmark
+end
+ 2377 1031 a Fx(EventSe)o(verity)e
+FC(and)g(\(for)h(login/logout)396 1139 y(e)n(v)o(ents\))f(the)776
+1139 y
+SDict begin H.S end
+ 776 1139 a 776 1139 a
+SDict begin 13 H.A end
+ 776 1139 a 776 1139 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:874) cvn H.B /DEST pdfmark
+end
+ 776
+1139 a Fx(Utmp)h FC(sections)g(of)g(the)g(con\002guration)e(\002le.)-2
+1323 y
+SDict begin H.S end
+ -2 1323 a -2 1323 a
+SDict begin 13 H.A end
+ -2 1323 a -2 1323 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:875) cvn H.B /DEST pdfmark
+end
+ -2 1323
+a 396 1413 a FC(In)i(the)g(con\002guration)e(\002le,)j(these)f(can)g
+(be)g(set)h(as)g(follo)n(ws:)-2 1514 y
+SDict begin H.S end
+ -2 1514 a -2 1514
+a
+SDict begin 11.7 H.A end
+ -2 1514 a -2 1514 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:876) cvn H.B /DEST pdfmark
+end
+ -2 1514 a 486 1593 a Fr([EventSeverity])486
+1690 y(#)486 1787 y(#)45 b(these)f(are)g(policies)486
+1884 y(#)486 1982 y(SeverityReadOnly=crit)486 2079 y
+(SeverityLogFiles=crit)486 2176 y(SeverityGrowingLogs=warn)486
+2273 y(SeverityIgnoreNone=crit)486 2370 y(SeverityIgnoreAll=info)486
+2467 y(#)486 2564 y(#)h(these)f(are)g(access)g(errors)486
+2662 y(#)486 2759 y(SeverityFiles=err)486 2856 y(SeverityDirs=err)486
+2953 y(#)486 3050 y(#)h(these)f(are)g(obscure)g(file)g(names)486
+3147 y(#)h(and/or)e(invalid)h(UIDs/GIDs)f(\(no)i(such)f(user/group\))
+486 3244 y(#)486 3341 y(SeverityNames=info)486 3439 y(#)486
+3536 y(#)h(This)f(is)g(the)h(section)e(for)i(login/logout)d(monitoring)
+486 3633 y(#)486 3730 y([Utmp])486 3827 y(SeverityLogin=notice)486
+3924 y(SeverityLogout=notice)486 4021 y(#)j(multiple)e(logins)h(by)g
+(same)h(user)486 4119 y(SeverityLoginMulti=err)-2 4213
+y
+SDict begin H.S end
+ -2 4213 a -2 4213 a
+SDict begin 13 H.A end
+ -2 4213 a -2 4213 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CLASSES) cvn H.B /DEST pdfmark
+end
+ -2 4213 a 396
+4530 a Fp(4.1.2.)36 b(Classes)1178 4530 y
+SDict begin H.S end
+ 1178 4530 a
+1178 4530 a
+SDict begin 18.72 H.A end
+ 1178 4530 a 1178 4530 a
+SDict begin [ /View [/XYZ H.V] /Dest (6.21.7.2) cvn H.B /DEST pdfmark
+end
+ 1178 4530 a -2 4697
+a
+SDict begin H.S end
+ -2 4697 a -2 4697 a
+SDict begin 13 H.A end
+ -2 4697 a -2 4697 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:879) cvn H.B /DEST pdfmark
+end
+ -2 4697 a -2
+4697 a
+SDict begin H.S end
+ -2 4697 a -2 4697 a
+SDict begin 13 H.A end
+ -2 4697 a -2 4697 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:880) cvn H.B /DEST pdfmark
+end
+ -2 4697
+a 396 4804 a Fx(Events)20 b FC(of)g(related)g(type)g(are)g(grouped)e
+(into)1704 4804 y
+SDict begin H.S end
+ 1704 4804 a 1704 4804 a
+SDict begin 13 H.A end
+ 1704 4804 a
+1704 4804 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:881) cvn H.B /DEST pdfmark
+end
+ 1704 4804 a Fx(classes)p FC(.)i(F)o(or)g(each)g(logging)e
+(f)o(acility)-5 b(,)20 b(it)h(is)g(possible)f(to)g(restrict)396
+4912 y(logging)f(to)h(a)h(subset)f(of)g(these)g(classes)i(\(see)p
+0 TeXcolorgray 1729 4912 a
+SDict begin H.S end
+ 1729 4912 a FC(Section)e(4.3)2104
+4912 y
+SDict begin 13 H.L end
+ 2104 4912 a 2104 4912 a
+SDict begin [ /Subtype /Link /Dest (0:THRESHOLDS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2104 4912 a Black -1 w
+FC(>\).)g(The)f(a)n(v)n(ailable)h(classes)h(are:)-2 5096
+y
+SDict begin H.S end
+ -2 5096 a -2 5096 a
+SDict begin 13 H.A end
+ -2 5096 a -2 5096 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:883) cvn H.B /DEST pdfmark
+end
+ -2 5096 a -2
+5096 a
+SDict begin H.S end
+ -2 5096 a -2 5096 a
+SDict begin 13 H.A end
+ -2 5096 a -2 5096 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:884) cvn H.B /DEST pdfmark
+end
+ -2 5096
+a -2 5189 a
+SDict begin H.S end
+ -2 5189 a -2 5189 a
+SDict begin 13 H.A end
+ -2 5189 a -2 5189 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:885) cvn H.B /DEST pdfmark
+end
+ -2
+5189 a -2 5189 a
+SDict begin H.S end
+ -2 5189 a -2 5189 a
+SDict begin 13 H.A end
+ -2 5189 a -2 5189
+a
+SDict begin [ /View [/XYZ H.V] /Dest (table.7) cvn H.B /DEST pdfmark
+end
+ -2 5189 a 396 5192 3359 4 v 396 5192 V 396 5317 4 125
+v 424 5292 a FD(Class)p 2074 5317 V 1457 w(Signi\002cance)p
+3751 5317 V 396 5320 3359 4 v Black 3661 5805 a Fx(20)p
+Black eop end
+%%Page: 21 26
+TeXDict begin 21 25 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.21) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2239 104 a
+Fx(Chapter)20 b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d
+(facilities)p Black 396 229 3359 4 v 396 229 V 396 354
+4 125 v 424 329 a FD(Class)p 2074 354 V 1457 w(Signi\002cance)p
+3751 354 V 396 354 3359 4 v 396 586 4 233 v 424 453 a
+FC(EVENT)p 2074 586 V 1405 w(Ev)o(ents)h(to)i(be)f(reported)e(\(i.e.)i
+(polic)o(y)f(violations,)2102 561 y(login/logout\).)p
+3751 586 V 396 589 3359 4 v 396 589 V 396 714 4 125 v
+424 689 a(ST)-8 b(AR)j(T)p 2074 714 V 1428 w(Startup/stop)19
+b(messages.)p 3751 714 V 396 717 3359 4 v 396 717 V 396
+842 4 125 v 424 817 a(ST)-8 b(AMP)p 2074 842 V 1409 w(T)m(imestamp)19
+b(\(heartbeat\))g(messages.)p 3751 842 V 396 845 3359
+4 v 396 845 V 396 970 4 125 v 424 945 a(LOGKEY)p 2074
+970 V 1336 w(The)h(k)o(e)o(y)f(to)i(v)o(erify)d(the)j(signed)e(log)h
+(\002le.)p 3751 970 V 396 973 3359 4 v 396 973 V 396
+1097 4 125 v 424 1072 a(ERR)m(OR)p 2074 1097 V 1405 w(Error)f
+(messages.)p 3751 1097 V 396 1101 3359 4 v 396 1101 V
+396 1225 4 125 v 424 1200 a(O)m(THER)p 2074 1225 V 1404
+w(Ev)o(erything)e(else)k(\(e.g.)e(informational)f(messages\).)p
+3751 1225 V 396 1229 3359 4 v 396 1229 V 396 1353 4 125
+v 424 1328 a(A)-5 b(UD)p 2074 1353 V 1503 w(System)20
+b(calls)h(\(for)e(deb)n(ugging\).)p 3751 1353 V 396 1356
+3359 4 v 396 1356 V -2 1689 a
+SDict begin H.S end
+ -2 1689 a -2 1689 a
+SDict begin 13 H.A end
+ -2
+1689 a -2 1689 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:912) cvn H.B /DEST pdfmark
+end
+ -2 1689 a 396 1796 a FC(The)h(aforementioned)d
+(classes)k(represent)e(a)i(ne)n(w)-5 b(,)19 b(simpli\002ed)h
+(classi\002cation)g(scheme)g(since)h(v)o(ersion)d(1.8.2.)396
+1904 y(The)i(pre)n(vious)f(scheme)g(\(listed)i(belo)n(w\))e(will)i
+(still)g(w)o(ork,)f(and)f(both)h(can)g(be)g(mix)o(ed.)-2
+2088 y
+SDict begin H.S end
+ -2 2088 a -2 2088 a
+SDict begin 13 H.A end
+ -2 2088 a -2 2088 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:913) cvn H.B /DEST pdfmark
+end
+ -2 2088
+a -2 2088 a
+SDict begin H.S end
+ -2 2088 a -2 2088 a
+SDict begin 13 H.A end
+ -2 2088 a -2 2088 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:914) cvn H.B /DEST pdfmark
+end
+ -2
+2088 a -2 2182 a
+SDict begin H.S end
+ -2 2182 a -2 2182 a
+SDict begin 13 H.A end
+ -2 2182 a -2 2182
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:915) cvn H.B /DEST pdfmark
+end
+ -2 2182 a -2 2182 a
+SDict begin H.S end
+ -2 2182 a -2 2182 a
+SDict begin 13 H.A end
+ -2 2182 a -2
+2182 a
+SDict begin [ /View [/XYZ H.V] /Dest (table.8) cvn H.B /DEST pdfmark
+end
+ -2 2182 a 396 2185 3359 4 v 396 2185 V 396 2310
+4 125 v 424 2285 a FD(Class)p 2074 2310 V 1457 w(Signi\002cance)p
+3751 2310 V 396 2313 3359 4 v 396 2313 V 396 2438 4 125
+v 424 2413 a FC(A)-5 b(UD)p 2074 2438 V 1503 w(System)20
+b(calls.)p 3751 2438 V 396 2441 3359 4 v 396 2441 V 396
+2565 4 125 v 424 2540 a(R)m(UN)p 2074 2565 V 1506 w(Normal)f(run)h
+(messages)g(\(e.g.)f(startup,)h(e)o(xit,)g(...\))p 3751
+2565 V 396 2569 3359 4 v 396 2569 V 396 2693 4 125 v
+424 2668 a(ST)-8 b(AMP)p 2074 2693 V 1409 w(T)m(imestamps)20
+b(and)f(alik)o(e.)p 3751 2693 V 396 2697 3359 4 v 396
+2697 V 396 2821 4 125 v 424 2796 a(FIL)p 2074 2821 V
+1553 w(Messages)h(related)g(to)g(\002le)h(inte)o(grity)e(checking.)p
+3751 2821 V 396 2824 3359 4 v 396 2824 V 396 2949 4 125
+v 424 2924 a(TCP)p 2074 2949 V 1526 w(Messages)h(from)g(the)g
+(client/serv)o(er)f(subsystem.)p 3751 2949 V 396 2952
+3359 4 v 396 2952 V 396 3077 4 125 v 424 3052 a(P)-8
+b(ANIC)p 2074 3077 V 1437 w(F)o(atal)20 b(errors,)g(leading)f(to)h
+(program)e(termination.)p 3751 3077 V 396 3080 3359 4
+v 396 3080 V 396 3205 4 125 v 424 3180 a(ERR)p 2074 3205
+V 1517 w(Error)h(messages)h(\(general\).)p 3751 3205
+V 396 3208 3359 4 v 396 3208 V 396 3332 4 125 v 424 3308
+a(ENET)p 2074 3332 V 1465 w(Error)f(messages)h(\(netw)o(ork\).)p
+3751 3332 V 396 3336 3359 4 v 396 3336 V 396 3460 4 125
+v 424 3435 a(EINPUT)p 2074 3460 V 1382 w(Error)f(messages)h(\(input,)f
+(e.g.)h(con\002guration)d(\002le\).)p 3751 3460 V 396
+3464 3359 4 v 396 3464 V -2 3723 a
+SDict begin H.S end
+ -2 3723 a -2 3723
+a
+SDict begin 13 H.A end
+ -2 3723 a -2 3723 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CONFIGFACILITY) cvn H.B /DEST
+pdfmark end
+ -2 3723 a 377 x Fu(4.2.)39 b(Over)q(vie)n(w)f(of)
+h(log)o(ging)f(facilities)2262 4100 y
+SDict begin H.S end
+ 2262 4100 a 2262
+4100 a
+SDict begin 22.464 H.A end
+ 2262 4100 a 2262 4100 a
+SDict begin [ /View [/XYZ H.V] /Dest (6.22.1) cvn H.B /DEST pdfmark
+end
+ 2262 4100 a -2 4298 a
+SDict begin H.S end
+
+-2 4298 a -2 4298 a
+SDict begin 13 H.A end
+ -2 4298 a -2 4298 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:950) cvn H.B /DEST pdfmark
+end
+ -2 4298 a -2
+4298 a
+SDict begin H.S end
+ -2 4298 a -2 4298 a
+SDict begin 13 H.A end
+ -2 4298 a -2 4298 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:951) cvn H.B /DEST pdfmark
+end
+ -2 4298
+a 396 4374 a FC(samhain)20 b(supports)f(the)h(follo)n(wing)f(f)o
+(acilities)h(for)g(logging:)-2 4558 y
+SDict begin H.S end
+ -2 4558 a -2 4558
+a
+SDict begin 13 H.A end
+ -2 4558 a -2 4558 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:952) cvn H.B /DEST pdfmark
+end
+ -2 4558 a -2 4558 a
+SDict begin H.S end
+ -2 4558 a -2
+4558 a
+SDict begin 13 H.A end
+ -2 4558 a -2 4558 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:953) cvn H.B /DEST pdfmark
+end
+ -2 4558 a -2 4568 a
+SDict begin H.S end
+ -2 4568
+a -2 4568 a
+SDict begin 13 H.A end
+ -2 4568 a -2 4568 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:954) cvn H.B /DEST pdfmark
+end
+ -2 4568 a Black 396 4710
+a FB(\225)p Black 479 4710 a
+SDict begin H.S end
+ 479 4710 a 479 4710 a
+SDict begin 13 H.A end
+ 479
+4710 a 479 4710 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:955) cvn H.B /DEST pdfmark
+end
+ 479 4710 a 479 4710 a
+SDict begin H.S end
+ 479 4710 a 479
+4710 a
+SDict begin 13 H.A end
+ 479 4710 a 479 4710 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:956) cvn H.B /DEST pdfmark
+end
+ 479 4710 a Fx(e-mail)g FC(\227)816
+4710 y
+SDict begin H.S end
+ 816 4710 a 816 4710 a
+SDict begin 13 H.A end
+ 816 4710 a 816 4710 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:957) cvn H.B /DEST pdfmark
+end
+ 816
+4710 a FC(samhain)f(uses)i(b)n(uilt-in)f(SMTP)g(code,)g(rather)f(than)h
+(an)g(e)o(xternal)f(mailer)h(program.)d(E-mails)j(are)479
+4818 y(signed)g(to)g(pre)n(v)o(ent)f(for)o(ging.)-2 4836
+y
+SDict begin H.S end
+ -2 4836 a -2 4836 a
+SDict begin 13 H.A end
+ -2 4836 a -2 4836 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:958) cvn H.B /DEST pdfmark
+end
+ -2 4836 a Black
+396 4968 a FB(\225)p Black 479 4968 a
+SDict begin H.S end
+ 479 4968 a 479
+4968 a
+SDict begin 13 H.A end
+ 479 4968 a 479 4968 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:959) cvn H.B /DEST pdfmark
+end
+ 479 4968 a 479 4968 a
+SDict begin H.S end
+ 479
+4968 a 479 4968 a
+SDict begin 13 H.A end
+ 479 4968 a 479 4968 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:960) cvn H.B /DEST pdfmark
+end
+ 479 4968 a Fx(syslo)o(g)i
+FC(\227)g(The)e(system)i(logging)d(utility)-5 b(.)-2
+4986 y
+SDict begin H.S end
+ -2 4986 a -2 4986 a
+SDict begin 13 H.A end
+ -2 4986 a -2 4986 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:961) cvn H.B /DEST pdfmark
+end
+ -2 4986
+a Black 396 5117 a FB(\225)p Black 479 5117 a
+SDict begin H.S end
+ 479 5117
+a 479 5117 a
+SDict begin 13 H.A end
+ 479 5117 a 479 5117 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:962) cvn H.B /DEST pdfmark
+end
+ 479 5117 a 479 5117
+a
+SDict begin H.S end
+ 479 5117 a 479 5117 a
+SDict begin 13 H.A end
+ 479 5117 a 479 5117 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:963) cvn H.B /DEST pdfmark
+end
+ 479 5117
+a Fx(console)20 b FC(\227)g(If)g(running)f(as)h(daemon,)1607
+5117 y
+SDict begin H.S end
+ 1607 5117 a 1607 5117 a
+SDict begin 13 H.A end
+ 1607 5117 a 1607 5117
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:964) cvn H.B /DEST pdfmark
+end
+ 1607 5117 a Fr(/dev/console)f FC(is)i(used,)e(otherwise)h(stderr)-5
+b(.)3005 5117 y
+SDict begin H.S end
+ 3005 5117 a 3005 5117 a
+SDict begin 13 H.A end
+ 3005 5117 a 3005
+5117 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:965) cvn H.B /DEST pdfmark
+end
+ 3005 5117 a Fr(/dev/console)19 b FC(can)479 5225
+y(be)h(replaced)f(by)h(other)g(de)n(vices,)f(including)f(a)j(FIFO.)-2
+5243 y
+SDict begin H.S end
+ -2 5243 a -2 5243 a
+SDict begin 13 H.A end
+ -2 5243 a -2 5243 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:966) cvn H.B /DEST pdfmark
+end
+ -2 5243
+a Black 396 5375 a FB(\225)p Black 479 5375 a
+SDict begin H.S end
+ 479 5375
+a 479 5375 a
+SDict begin 13 H.A end
+ 479 5375 a 479 5375 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:967) cvn H.B /DEST pdfmark
+end
+ 479 5375 a 479 5375
+a
+SDict begin H.S end
+ 479 5375 a 479 5375 a
+SDict begin 13 H.A end
+ 479 5375 a 479 5375 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:968) cvn H.B /DEST pdfmark
+end
+ 479 5375
+a Fx(lo)o(g)f(\002le)h FC(\227)f(Entries)g(are)g(signed)g(to)g(pro)o
+(vide)e(tamper)n(-resistance.)-2 5393 y
+SDict begin H.S end
+ -2 5393 a -2
+5393 a
+SDict begin 13 H.A end
+ -2 5393 a -2 5393 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:969) cvn H.B /DEST pdfmark
+end
+ -2 5393 a Black 3661 5805
+a Fx(21)p Black eop end
+%%Page: 22 27
+TeXDict begin 22 26 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.22) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1015) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2239 104 a Fx(Chapter)20
+b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d(facilities)p
+Black Black 396 309 a FB(\225)p Black 479 309 a
+SDict begin H.S end
+ 479 309
+a 479 309 a
+SDict begin 13 H.A end
+ 479 309 a 479 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:970) cvn H.B /DEST pdfmark
+end
+ 479 309 a 479 309 a
+SDict begin H.S end
+ 479
+309 a 479 309 a
+SDict begin 13 H.A end
+ 479 309 a 479 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:971) cvn H.B /DEST pdfmark
+end
+ 479 309 a Fx(lo)o(g)h(server)j
+FC(\227)936 309 y
+SDict begin H.S end
+ 936 309 a 936 309 a
+SDict begin 13 H.A end
+ 936 309 a 936 309
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:972) cvn H.B /DEST pdfmark
+end
+ 936 309 a FC(samhain)c(uses)i(TCP/IP)f(with)h(strong)e
+(authentication)f(and)h(signed)h(and)f(encrypted)f(messages.)-2
+327 y
+SDict begin H.S end
+ -2 327 a -2 327 a
+SDict begin 13 H.A end
+ -2 327 a -2 327 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:973) cvn H.B /DEST pdfmark
+end
+ -2 327 a Black
+396 458 a FB(\225)p Black 479 458 a
+SDict begin H.S end
+ 479 458 a 479 458
+a
+SDict begin 13 H.A end
+ 479 458 a 479 458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:974) cvn H.B /DEST pdfmark
+end
+ 479 458 a 479 458 a
+SDict begin H.S end
+ 479 458 a 479
+458 a
+SDict begin 13 H.A end
+ 479 458 a 479 458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:975) cvn H.B /DEST pdfmark
+end
+ 479 458 a Fx(e)n(xternal)k
+FC(\227)874 458 y
+SDict begin H.S end
+ 874 458 a 874 458 a
+SDict begin 13 H.A end
+ 874 458 a 874 458
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:976) cvn H.B /DEST pdfmark
+end
+ 874 458 a FC(samhain)f(can)g(be)g(con\002gured)e(to)i(in)m(v)n(ok)o
+(e)f(e)o(xternal)g(programs)f(for)i(logging)e(and/or)h(taking)479
+566 y(some)h(action)g(upon)f(certain)g(conditions.)-2
+584 y
+SDict begin H.S end
+ -2 584 a -2 584 a
+SDict begin 13 H.A end
+ -2 584 a -2 584 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:977) cvn H.B /DEST pdfmark
+end
+ -2 584 a Black
+396 716 a FB(\225)p Black 479 716 a
+SDict begin H.S end
+ 479 716 a 479 716
+a
+SDict begin 13 H.A end
+ 479 716 a 479 716 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:978) cvn H.B /DEST pdfmark
+end
+ 479 716 a 479 716 a
+SDict begin H.S end
+ 479 716 a 479
+716 a
+SDict begin 13 H.A end
+ 479 716 a 479 716 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:979) cvn H.B /DEST pdfmark
+end
+ 479 716 a Fx(SQL)i(db)e FC(\227)i(Currently)
+1194 716 y
+SDict begin H.S end
+ 1194 716 a 1194 716 a
+SDict begin 13 H.A end
+ 1194 716 a 1194 716
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:980) cvn H.B /DEST pdfmark
+end
+ 1194 716 a FC(samhain)f(supports)f(MySQL,)g(PostgreSQL,)h(Oracle,)g
+(and)f(unixODBC.)-2 733 y
+SDict begin H.S end
+ -2 733 a -2 733 a
+SDict begin 13 H.A end
+ -2 733 a
+-2 733 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:981) cvn H.B /DEST pdfmark
+end
+ -2 733 a Black 396 865 a FB(\225)p Black 479
+865 a
+SDict begin H.S end
+ 479 865 a 479 865 a
+SDict begin 13 H.A end
+ 479 865 a 479 865 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:982) cvn H.B /DEST pdfmark
+end
+ 479 865
+a 479 865 a
+SDict begin H.S end
+ 479 865 a 479 865 a
+SDict begin 13 H.A end
+ 479 865 a 479 865 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:983) cvn H.B /DEST pdfmark
+end
+ 479
+865 a Fx(Pr)m(elude)h FC(\227)864 865 y
+SDict begin H.S end
+ 864 865 a 864
+865 a
+SDict begin 13 H.A end
+ 864 865 a 864 865 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:984) cvn H.B /DEST pdfmark
+end
+ 864 865 a FC(samhain)f(can)h(be)g(compiled)f
+(with)h(support)f(for)h(the)g(Prelude)f(IDS,)i(i.e.)f(it)h(can)f(be)g
+(used)g(as)h(a)479 973 y(Prelude)f(sensor)-5 b(.)-2 1288
+y
+SDict begin H.S end
+ -2 1288 a -2 1288 a
+SDict begin 13 H.A end
+ -2 1288 a -2 1288 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:985) cvn H.B /DEST pdfmark
+end
+ -2 1288 a 396
+1396 a FC(Each)20 b(of)g(these)g(logging)f(f)o(acilities)i(has)f(to)g
+(be)g(acti)n(v)n(ated)g(by)g(setting)g(an)g(appropriate)e(threshold)g
+(on)i(the)396 1504 y(messages)h(to)f(be)g(logged)f(by)h(this)g(f)o
+(acility)-5 b(.)-2 1522 y
+SDict begin H.S end
+ -2 1522 a -2 1522 a
+SDict begin 11.7 H.A end
+ -2 1522
+a -2 1522 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:986) cvn H.B /DEST pdfmark
+end
+ -2 1522 a -2 1647 a
+SDict begin H.S end
+ -2 1647 a -2 1647 a
+SDict begin 11.7 H.A end
+ -2
+1647 a -2 1647 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:988) cvn H.B /DEST pdfmark
+end
+ -2 1647 a 562 1726 a Fw(NO)m(TE:)21
+b Fv(In)f(addition,)d(some)j(of)g(these)g(f)n(acilities)e(require)g
+(proper)h(settings)g(in)h(the)g(con\002gur)o(ation)e(\002le)i(\(see)562
+1823 y(ne)n(xt)g(sections\).)-2 2055 y
+SDict begin H.S end
+ -2 2055 a -2 2055
+a
+SDict begin 13 H.A end
+ -2 2055 a -2 2055 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:THRESHOLDS) cvn H.B /DEST pdfmark
+end
+ -2 2055 a 378 x Fu(4.3.)39 b(Activ)m(ating)e(log)
+o(ging)h(facilities)g(and)h(\002ltering)f(messa)o(g)q(es)3735
+2433 y
+SDict begin H.S end
+ 3735 2433 a 3735 2433 a
+SDict begin 22.464 H.A end
+ 3735 2433 a 3735 2433
+a
+SDict begin [ /View [/XYZ H.V] /Dest (6.23.1) cvn H.B /DEST pdfmark
+end
+ 3735 2433 a -2 2631 a
+SDict begin H.S end
+ -2 2631 a -2 2631 a
+SDict begin 13 H.A end
+ -2 2631 a
+-2 2631 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:991) cvn H.B /DEST pdfmark
+end
+ -2 2631 a 396 2707 a FC(All)21 b(messages)f(ha)n(v)o(e)g(a)
+1090 2707 y
+SDict begin H.S end
+ 1090 2707 a 1090 2707 a
+SDict begin 13 H.A end
+ 1090 2707 a 1090
+2707 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:992) cvn H.B /DEST pdfmark
+end
+ 1090 2707 a Fx(se)o(verity)g FC(le)n(v)o(el)g(\(see)p
+0 TeXcolorgray 1701 2707 a
+SDict begin H.S end
+ 1701 2707 a FC(Section)f(4.1.1)2138
+2707 y
+SDict begin 13 H.L end
+ 2138 2707 a 2138 2707 a
+SDict begin [ /Subtype /Link /Dest (0:SEVERITYDEF) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2138 2707 a Black -2 w
+FC(>\))i(and)e(a)2430 2707 y
+SDict begin H.S end
+ 2430 2707 a 2430 2707 a
+SDict begin 13 H.A end
+
+2430 2707 a 2430 2707 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:994) cvn H.B /DEST pdfmark
+end
+ 2430 2707 a Fx(class)i FC(\(see)p
+0 TeXcolorgray 2771 2707 a
+SDict begin H.S end
+ 2771 2707 a FC(Section)f(4.1.2)3209
+2707 y
+SDict begin 13 H.L end
+ 3209 2707 a 3209 2707 a
+SDict begin [ /Subtype /Link /Dest (0:CLASSES) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3209 2707 a Black -2 w
+FC(>\),)g(with)396 2815 y(some)n(what)g(orthogonal)d(meaning:)-2
+2999 y
+SDict begin H.S end
+ -2 2999 a -2 2999 a
+SDict begin 13 H.A end
+ -2 2999 a -2 2999 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:996) cvn H.B /DEST pdfmark
+end
+ -2 2999
+a 396 3088 a FC(The)546 3088 y
+SDict begin H.S end
+ 546 3088 a 546 3088 a
+SDict begin 13 H.A end
+
+546 3088 a 546 3088 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:997) cvn H.B /DEST pdfmark
+end
+ 546 3088 a Fx(se)o(verity)k FC(ranks)e(messages)i
+(with)f(respect)g(to)g(their)g(importance.)e(Most)j(e)n(v)o(ents)e
+(\(e.g.)h(timestamps,)f(internal)396 3196 y(errors,)g(program)f
+(startup/e)o(xit\))h(ha)n(v)o(e)1529 3196 y
+SDict begin H.S end
+ 1529 3196
+a 1529 3196 a
+SDict begin 13 H.A end
+ 1529 3196 a 1529 3196 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:998) cvn H.B /DEST pdfmark
+end
+ 1529 3196 a Fx(\002xed)i
+FC(se)n(v)o(erities.)f(Ho)n(we)n(v)o(er)m(,)e(as)j(importance)e
+(sometimes)g(is)j(a)e(matter)g(of)396 3304 y(taste,)h(some)f(e)n(v)o
+(ents)g(ha)n(v)o(e)1190 3304 y
+SDict begin H.S end
+ 1190 3304 a 1190 3304
+a
+SDict begin 13 H.A end
+ 1190 3304 a 1190 3304 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:999) cvn H.B /DEST pdfmark
+end
+ 1190 3304 a Fx(con\002gur)o(able)d
+FC(se)n(v)o(erities)j(\(see)p 0 TeXcolorgray 2115 3304
+a
+SDict begin H.S end
+ 2115 3304 a FC(Section)g(4.1)2490 3304 y
+SDict begin 13 H.L end
+ 2490 3304
+a 2490 3304 a
+SDict begin [ /Subtype /Link /Dest (0:LOGDEF) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2490 3304 a Black -2 w FC(>\).)-2 3487
+y
+SDict begin H.S end
+ -2 3487 a -2 3487 a
+SDict begin 13 H.A end
+ -2 3487 a -2 3487 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1001) cvn H.B /DEST pdfmark
+end
+ -2 3487 a -2
+3487 a
+SDict begin H.S end
+ -2 3487 a -2 3487 a
+SDict begin 13 H.A end
+ -2 3487 a -2 3487 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1002) cvn H.B /DEST pdfmark
+end
+ -2 3487
+a 396 3578 a Fx(Classes)i FC(refer)d(to)h(the)h(purpose/cate)o(gory)16
+b(of)k(a)h(message.)e(As)i(such,)f(the)o(y)f(should)h(\(ideally\))f(be)
+h(useful)f(to)396 3686 y(e)o(xclude)g(messages)h(that)h(are)f(not)g
+(interesting)f(in)h(some)g(conte)o(xt)f(\(e.g.)g(startup/stop)h
+(messages)g(may)g(seem)396 3794 y(useless)h(noise)f(if)h(samhain)e(is)i
+(run)f(from)f(cron\).)-2 3975 y
+SDict begin H.S end
+ -2 3975 a -2 3975 a
+SDict begin 13 H.A end
+ -2
+3975 a -2 3975 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1003) cvn H.B /DEST pdfmark
+end
+ -2 3975 a 396 4068 a FC(Ob)o(viously)-5
+b(,)18 b(as)867 4068 y
+SDict begin H.S end
+ 867 4068 a 867 4068 a
+SDict begin 13 H.A end
+ 867 4068
+a 867 4068 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1004) cvn H.B /DEST pdfmark
+end
+ 867 4068 a Fx(se)o(verity)j FC(is)g(a)f(rank,)f(the)i
+(most)f(natural)f(w)o(ay)h(to)h(e)o(xclude)e(unw)o(anted)f(messages)j
+(is)g(to)f(set)h(a)396 4176 y
+SDict begin H.S end
+ 396 4176 a 396 4176 a
+SDict begin 13 H.A end
+ 396
+4176 a 396 4176 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1005) cvn H.B /DEST pdfmark
+end
+ 396 4176 a Fx(thr)m(eshold)r FC(.)f(On)g(the)g(other)
+f(hand,)g(as)i(the)f(message)1903 4176 y
+SDict begin H.S end
+ 1903 4176 a
+1903 4176 a
+SDict begin 13 H.A end
+ 1903 4176 a 1903 4176 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1006) cvn H.B /DEST pdfmark
+end
+ 1903 4176 a Fx(class)h
+FC(is)g(a)g(cate)o(gory)-5 b(,)18 b(the)i(most)g(natural)f(w)o(ay)i(to)
+f(e)o(xclude)396 4284 y(messages)h(is)g(to)892 4284 y
+SDict begin H.S end
+
+892 4284 a 892 4284 a
+SDict begin 13 H.A end
+ 892 4284 a 892 4284 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1007) cvn H.B /DEST pdfmark
+end
+ 892 4284
+a Fx(list)i FC(those)d(message)g(classes)h(that)f(you)g(w)o(ant.)-2
+4468 y
+SDict begin H.S end
+ -2 4468 a -2 4468 a
+SDict begin 13 H.A end
+ -2 4468 a -2 4468 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1008) cvn H.B /DEST pdfmark
+end
+ -2 4468
+a 396 4558 a FC(Messages)h(are)f(only)f(logged)g(to)h(a)h(log)f(f)o
+(acility)g(if)g(their)g(se)n(v)o(erity)g(is)h(at)f(least)h(as)g(high)f
+(as)h(the)f(threshold)f(of)g(that)396 4666 y(f)o(acility)-5
+b(,)20 b(and)f(their)h(class)h(is)h(one)d(of)h(those)g(w)o(anted)g
+(\(by)f(def)o(ault:)h(all\).)g(Thresholds)f(and)g(class)i(lists)h(can)e
+(be)396 4774 y(speci\002ed)g(indi)n(vidually)e(for)i(each)g(f)o
+(acility)-5 b(.)-2 4792 y
+SDict begin H.S end
+ -2 4792 a -2 4792 a
+SDict begin 11.7 H.A end
+ -2 4792
+a -2 4792 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1009) cvn H.B /DEST pdfmark
+end
+ -2 4792 a 745 4891 2668 17 v 745 5350 17
+459 v 1843 5045 a Fp(CA)-10 b(VEA)f(T)786 5213 y
+SDict begin H.S end
+ 786
+5213 a 786 5213 a
+SDict begin 11.7 H.A end
+ 786 5213 a 786 5213 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1011) cvn H.B /DEST pdfmark
+end
+ 786 5213 a 95
+x Fv(Most)21 b(log)f(f)n(acilities)e(are)1503 5308 y
+SDict begin H.S end
+
+1503 5308 a 1503 5308 a
+SDict begin 11.7 H.A end
+ 1503 5308 a 1503 5308 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1012) cvn H.B /DEST pdfmark
+end
+ 1503
+5308 a Fq(off)h(b)o(y)i(def)n(ault)7 b Fv(.)p 3396 5350
+17 459 v 745 5366 2668 17 v -2 5377 a
+SDict begin H.S end
+ -2 5377 a -2 5377
+a
+SDict begin 11.7 H.A end
+ -2 5377 a -2 5377 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1013) cvn H.B /DEST pdfmark
+end
+ -2 5377 a Black 3661 5805 a Fx(22)p
+Black eop end
+%%Page: 23 28
+TeXDict begin 23 27 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.23) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2239 104 a
+Fx(Chapter)20 b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d
+(facilities)p Black 562 309 a Fw(TIP:)i Fv(A)h(threshold)d(of)i
+Fq(none)h Fv(s)n(witches)f(off)f(the)h(respectiv)n(e)f(f)n(acility)-7
+b(.)39 447 y
+SDict begin H.S end
+ 39 447 a 39 447 a
+SDict begin 11.7 H.A end
+ 39 447 a 39 447 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1017) cvn H.B /DEST pdfmark
+end
+ 39 447
+a -2 613 a
+SDict begin H.S end
+ -2 613 a -2 613 a
+SDict begin 11.7 H.A end
+ -2 613 a -2 613 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1019) cvn H.B /DEST pdfmark
+end
+ -2 613
+a 562 711 a Fw(TIP)20 b(\(ser)q(ver)f(onl)o(y\):)g Fv(By)i(def)n(ault,)
+d(messages)i(receiv)n(ed)f(b)o(y)h(the)g(ser)r(v)n(er)h(are)e(treated)g
+(specially)-7 b(,)18 b(and)i(are)562 808 y(alw)o(a)n(ys)g(logged)e(to)i
+(the)g(log\002le)o(,)e(and)i(ne)n(v)n(er)f(to)h(mail)g(or)g(syslog.)h
+(If)f(y)o(ou)g(don't)e(lik)o(e)i(that,)f(use)h(the)g(option)562
+905 y
+SDict begin H.S end
+ 562 905 a 562 905 a
+SDict begin 11.7 H.A end
+ 562 905 a 562 905 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1020) cvn H.B /DEST pdfmark
+end
+ 562 905
+a Fq(UseClientSe)n(v)n(er)q(ity=y)o(es)f Fv(\(section)1617
+905 y
+SDict begin H.S end
+ 1617 905 a 1617 905 a
+SDict begin 11.7 H.A end
+ 1617 905 a 1617 905 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1021) cvn H.B /DEST pdfmark
+end
+ 1617
+905 a Fq([Misc])7 b Fv(\).)-2 1220 y
+SDict begin H.S end
+ -2 1220 a -2 1220
+a
+SDict begin 13 H.A end
+ -2 1220 a -2 1220 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1022) cvn H.B /DEST pdfmark
+end
+ -2 1220 a 396 1328 a FC(Thresholds)19
+b(and)h(class)h(lists)g(are)f(set)h(in)g(the)1706 1328
+y
+SDict begin H.S end
+ 1706 1328 a 1706 1328 a
+SDict begin 13 H.A end
+ 1706 1328 a 1706 1328 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1023) cvn H.B /DEST pdfmark
+end
+ 1706
+1328 a Fx(Lo)o(g)f FC(section)g(of)g(the)g(con\002guration)e(\002le.)i
+(F)o(or)g(each)g(threshold)396 1436 y(option)629 1436
+y
+SDict begin H.S end
+ 629 1436 a 629 1436 a
+SDict begin 13 H.A end
+ 629 1436 a 629 1436 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1024) cvn H.B /DEST pdfmark
+end
+ 629 1436
+a 629 1436 a
+SDict begin H.S end
+ 629 1436 a 629 1436 a
+SDict begin 13 H.A end
+ 629 1436 a 629 1436
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1025) cvn H.B /DEST pdfmark
+end
+ 629 1436 a Fl(Facility)7 b Fy(Se)o(v)o(erity)18 b FC(there)i(is)h
+(also)f(a)h(corresponding)c(option)2508 1436 y
+SDict begin H.S end
+ 2508 1436
+a 2508 1436 a
+SDict begin 13 H.A end
+ 2508 1436 a 2508 1436 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1026) cvn H.B /DEST pdfmark
+end
+ 2508 1436 a 2508
+1436 a
+SDict begin H.S end
+ 2508 1436 a 2508 1436 a
+SDict begin 13 H.A end
+ 2508 1436 a 2508 1436
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1027) cvn H.B /DEST pdfmark
+end
+ 2508 1436 a Fl(Facility)7 b Fy(Class)19 b FC(to)i(limit)f(that)h(f)o
+(acility)396 1544 y(to)g(messages)f(within)g(a)h(gi)n(v)o(en)d(set)j
+(of)f(class.)h(The)f(ar)o(gument)e(must)i(be)g(a)h(list)g(of)f(v)n
+(alid)g(message)g(classes,)396 1652 y(separated)g(by)f(space)h(or)g
+(comma.)-2 1836 y
+SDict begin H.S end
+ -2 1836 a -2 1836 a
+SDict begin 13 H.A end
+ -2 1836 a -2 1836
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1028) cvn H.B /DEST pdfmark
+end
+ -2 1836 a 396 1926 a FC(Actually)-5 b(,)19 b(the)841
+1926 y
+SDict begin H.S end
+ 841 1926 a 841 1926 a
+SDict begin 13 H.A end
+ 841 1926 a 841 1926 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1029) cvn H.B /DEST pdfmark
+end
+ 841
+1926 a 841 1926 a
+SDict begin H.S end
+ 841 1926 a 841 1926 a
+SDict begin 13 H.A end
+ 841 1926 a 841
+1926 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1030) cvn H.B /DEST pdfmark
+end
+ 841 1926 a Fl(Facility)7 b Fy(Se)o(v)o(erity)17
+b FC(can)j(tak)o(e)h(a)f(list)h(of)f(se)n(v)o(erities)g(with)h
+(optional)e(speci\002ers)h('*',)f('!',)h(or)g('=',)396
+2034 y(which)g(are)g(interpreted)e(as)j('all',)f('e)o(xcluding',)d(and)
+i('only',)f(respecti)n(v)o(ely)-5 b(.)18 b(Examples:)h(specifying)g
+('*')g(is)j(equal)396 2142 y(to)f(specify)e(')l(deb)n(ug';)f
+(specifying)h('!*')g(is)i(equal)f(to)g(specifying)f('none';)f
+('info,!crit')g(is)j(the)g(range)e(from)g('info')396
+2250 y(to)i('err')e(\(e)o(xcluding)e(crit)k(and)e(abo)o(v)o(e\);)g(and)
+g('info,!=err')f(is)j(info)e(and)h(abo)o(v)o(e,)e(b)n(ut)i(e)o
+(xcluding)e(\(only\))h('err'.)g(This)396 2358 y(is)i(the)g(same)f
+(scheme)g(as)h(used)f(by)f(the)i(Linux)e(syslogd)g(\(see)i(man)e(5)h
+(syslogd\).)-2 2542 y
+SDict begin H.S end
+ -2 2542 a -2 2542 a
+SDict begin 13 H.A end
+ -2 2542 a -2
+2542 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1031) cvn H.B /DEST pdfmark
+end
+ -2 2542 a -2 2542 a
+SDict begin H.S end
+ -2 2542 a -2 2542 a
+SDict begin 13 H.A end
+ -2 2542
+a -2 2542 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1032) cvn H.B /DEST pdfmark
+end
+ -2 2542 a 396 2632 a Fx(System)h(calls:)f
+FC(certain)f(system)i(calls)g(\(e)o(x)o(ecv)o(e,)d(utime,)h(unlink,)g
+(dup)g(\(+)i(dup2\),)d(chdir)m(,)h(open,)f(kill,)j(e)o(xit)f(\(+)396
+2740 y(_e)o(xit\),)f(fork,)g(setuid,)h(setgid,)g(pipe\))f(can)h(be)g
+(logged)f(\(only)g(to)h(console)g(and)f(syslog\).)h(Y)-9
+b(ou)19 b(can)h(determine)f(the)396 2848 y(set)i(of)f(system)h(calls)f
+(to)h(log)f(via)g(the)g(option)1713 2848 y
+SDict begin H.S end
+ 1713 2848
+a 1713 2848 a
+SDict begin 13 H.A end
+ 1713 2848 a 1713 2848 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1033) cvn H.B /DEST pdfmark
+end
+ 1713 2848 a Fy(LogCalls=)2079
+2848 y
+SDict begin H.S end
+ 2079 2848 a 2079 2848 a
+SDict begin 13 H.A end
+ 2079 2848 a 2079 2848
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1034) cvn H.B /DEST pdfmark
+end
+ 2079 2848 a Fl(call1,)44 b(call2,)f(...)p FC(.)20 b(By)h(def)o(ault,)
+e(this)i(is)g(of)n(f)396 2955 y(\(nothing)d(is)k(logged\).)c(The)i
+(priority)e(is)1565 2955 y
+SDict begin H.S end
+ 1565 2955 a 1565 2955 a
+SDict begin 13 H.A end
+ 1565
+2955 a 1565 2955 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1035) cvn H.B /DEST pdfmark
+end
+ 1565 2955 a Fx(notice)p FC(,)i(and)g(the)g(class)h
+(is)g(A)-5 b(UD.)-2 3139 y
+SDict begin H.S end
+ -2 3139 a -2 3139 a
+SDict begin 13 H.A end
+ -2 3139
+a -2 3139 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1036) cvn H.B /DEST pdfmark
+end
+ -2 3139 a -2 3139 a
+SDict begin H.S end
+ -2 3139 a -2 3139 a
+SDict begin 13 H.A end
+ -2
+3139 a -2 3139 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1037) cvn H.B /DEST pdfmark
+end
+ -2 3139 a 396 3229 a Fx(Example:)-2
+3329 y
+SDict begin H.S end
+ -2 3329 a -2 3329 a
+SDict begin 11.7 H.A end
+ -2 3329 a -2 3329 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1038) cvn H.B /DEST pdfmark
+end
+ -2 3329
+a 486 3410 a Fr([Log])486 3507 y(#)486 3604 y(#)45 b(Threshold)e(for)h
+(E-mails)g(\(none)g(=)h(switched)e(off\))486 3701 y(#)486
+3798 y(MailSeverity=none)486 3895 y(#)486 3992 y(#)i(Threshold)e(for)h
+(log)h(file)486 4090 y(#)486 4187 y(LogSeverity=err)486
+4284 y(LogClass=RUN)e(FIL)h(STAMP)486 4381 y(#)486 4478
+y(#)h(Threshold)e(for)h(console)486 4575 y(#)486 4672
+y(PrintSeverity=info)486 4769 y(#)486 4867 y(#)h(Threshold)e(for)h
+(syslog)g(\(none)g(=)h(switched)e(off\))486 4964 y(#)486
+5061 y(SyslogSeverity=none)486 5158 y(#)486 5255 y(#)i(Threshold)e(for)
+h(logging)g(to)g(Prelude)g(\(none)g(=)h(switched)e(off\))486
+5352 y(#)p Black 3661 5805 a Fx(23)p Black eop end
+%%Page: 24 29
+TeXDict begin 24 28 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.24) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2239 104 a
+Fx(Chapter)20 b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d
+(facilities)p Black 486 309 a Fr(PreludeSeverity=none)486
+406 y(#)486 503 y(#)45 b(Threshold)e(for)h(forwarding)f(to)i(the)f(log)
+h(server)486 600 y(#)486 697 y(ExportSeverity=crit)486
+794 y(#)486 892 y(#)g(Threshold)e(for)h(invoking)g(an)g(external)g
+(program)486 989 y(#)486 1086 y(ExternalSeverity=crit)486
+1183 y(#)486 1280 y(#)h(Threshold)e(for)h(logging)g(to)g(a)h(SQL)f
+(database)486 1377 y(#)486 1474 y(DatabaseSeverity=err)486
+1571 y(#)486 1669 y(#)h(System)e(calls)h(to)h(log)486
+1766 y(#)486 1863 y(LogCalls=open,)d(kill)-2 1958 y
+SDict begin H.S end
+ -2
+1958 a -2 1958 a
+SDict begin 13 H.A end
+ -2 1958 a -2 1958 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CONFIGURATION-EMAIL) cvn H.B
+/DEST pdfmark end
+ -2 1958 a 365 x
+Fu(4.4.)d(E-mail)709 2323 y
+SDict begin H.S end
+ 709 2323 a 709 2323 a
+SDict begin 22.464 H.A end
+ 709
+2323 a 709 2323 a
+SDict begin [ /View [/XYZ H.V] /Dest (6.24.1) cvn H.B /DEST pdfmark
+end
+ 709 2323 a -2 2491 a
+SDict begin H.S end
+ -2 2491 a -2 2491
+a
+SDict begin 13 H.A end
+ -2 2491 a -2 2491 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1041) cvn H.B /DEST pdfmark
+end
+ -2 2491 a 396 2597 a FC(Items)20
+b(that)h(can/must)e(be)h(con\002gured)e(are:)1708 2597
+y
+SDict begin H.S end
+ 1708 2597 a 1708 2597 a
+SDict begin 13 H.A end
+ 1708 2597 a 1708 2597 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1042) cvn H.B /DEST pdfmark
+end
+ 1708
+2597 a -2 2739 a
+SDict begin H.S end
+ -2 2739 a -2 2739 a
+SDict begin 13 H.A end
+ -2 2739 a -2 2739
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1044) cvn H.B /DEST pdfmark
+end
+ -2 2739 a 396 2829 a FC(Recipients)j(address)-2 2847
+y
+SDict begin H.S end
+ -2 2847 a -2 2847 a
+SDict begin 13 H.A end
+ -2 2847 a -2 2847 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1045) cvn H.B /DEST pdfmark
+end
+ -2 2847 a Black
+Black 562 2979 a
+SDict begin H.S end
+ 562 2979 a 562 2979 a
+SDict begin 13 H.A end
+ 562 2979 a 562
+2979 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1046) cvn H.B /DEST pdfmark
+end
+ 562 2979 a 562 2979 a
+SDict begin H.S end
+ 562 2979 a 562 2979 a
+SDict begin 13 H.A end
+ 562
+2979 a 562 2979 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1047) cvn H.B /DEST pdfmark
+end
+ 562 2979 a Fy(SetMailAddr)o(ess=)1175
+2979 y
+SDict begin H.S end
+ 1175 2979 a 1175 2979 a
+SDict begin 13 H.A end
+ 1175 2979 a 1175 2979
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1048) cvn H.B /DEST pdfmark
+end
+ 1175 2979 a Fl(username@hostname)-2 3146 y
+SDict begin H.S end
+ -2 3146
+a -2 3146 a
+SDict begin 13 H.A end
+ -2 3146 a -2 3146 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1049) cvn H.B /DEST pdfmark
+end
+ -2 3146 a 562 3253 a
+FC(Up)g(to)f(eight)g(addresses)g(are)g(possible,)f(each)h(one)g(at)h
+(most)f(63)g(characters)f(long,)2958 3253 y
+SDict begin H.S end
+ 2958 3253
+a 2958 3253 a
+SDict begin 13 H.A end
+ 2958 3253 a 2958 3253 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1050) cvn H.B /DEST pdfmark
+end
+ 2958 3253 a Fx(eac)o(h)g(on)h(a)g
+(seper)o(ate)g(line)562 3361 y(in)h(the)f(con\002gur)o(ation)d(\002le)p
+FC(.)-2 3378 y
+SDict begin H.S end
+ -2 3378 a -2 3378 a
+SDict begin 11.7 H.A end
+ -2 3378 a -2 3378
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1051) cvn H.B /DEST pdfmark
+end
+ -2 3378 a -2 3502 a
+SDict begin H.S end
+ -2 3502 a -2 3502 a
+SDict begin 11.7 H.A end
+ -2 3502 a -2
+3502 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1053) cvn H.B /DEST pdfmark
+end
+ -2 3502 a 728 3582 a Fw(TIP:)j Fv(it)g(is)h(recommended)d(to)j
+(use)f(n)o(umer)q(ical)f(IP)h(addresses)g(instead)e(of)i(host)g(names)g
+(\(to)g(a)o(v)n(oid)728 3680 y(DNS)h(lookups\).)-2 4103
+y
+SDict begin H.S end
+ -2 4103 a -2 4103 a
+SDict begin 13 H.A end
+ -2 4103 a -2 4103 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1055) cvn H.B /DEST pdfmark
+end
+ -2 4103 a 396
+4211 a FC(Relay)g(host)f(/)h(Mail)f(e)o(xchanger)-2 4229
+y
+SDict begin H.S end
+ -2 4229 a -2 4229 a
+SDict begin 13 H.A end
+ -2 4229 a -2 4229 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1056) cvn H.B /DEST pdfmark
+end
+ -2 4229 a Black
+Black 562 4360 a
+SDict begin H.S end
+ 562 4360 a 562 4360 a
+SDict begin 13 H.A end
+ 562 4360 a 562
+4360 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1057) cvn H.B /DEST pdfmark
+end
+ 562 4360 a 562 4360 a
+SDict begin H.S end
+ 562 4360 a 562 4360 a
+SDict begin 13 H.A end
+ 562
+4360 a 562 4360 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1058) cvn H.B /DEST pdfmark
+end
+ 562 4360 a Fy(SetMailRelay=)1090 4360
+y
+SDict begin H.S end
+ 1090 4360 a 1090 4360 a
+SDict begin 13 H.A end
+ 1090 4360 a 1090 4360 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1059) cvn H.B /DEST pdfmark
+end
+ 1090
+4360 a Fl(mail.some_domain.com)-2 4543 y
+SDict begin H.S end
+ -2 4543 a -2
+4543 a
+SDict begin 13 H.A end
+ -2 4543 a -2 4543 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1060) cvn H.B /DEST pdfmark
+end
+ -2 4543 a 562 4634 a FC(Y)-9
+b(ou)20 b(may)g(need)f(this)i(option)e(because)g(some)h(sites)i(don')o
+(t)c(allo)n(w)i(outbound)e(e-mail)i(connections)e(from)562
+4742 y(an)o(y)i(arbitrary)e(host.)i(If)g(the)g(recipient)g(is)h(of)n
+(fsite,)e(and)h(your)f(site)i(uses)g(a)f(mail)h(relay)e(host)i(to)f
+(route)562 4850 y(outbound)e(e-mails,)i(you)f(need)g(to)i(specify)e
+(the)i(relay)e(host.)p Black 3661 5805 a Fx(24)p Black
+eop end
+%%Page: 25 30
+TeXDict begin 25 29 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.25) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2239 104 a
+Fx(Chapter)20 b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d
+(facilities)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226
+a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1062) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309 a FC(Maximum)h(interv)n(al)-2
+310 y
+SDict begin H.S end
+ -2 310 a -2 310 a
+SDict begin 13 H.A end
+ -2 310 a -2 310 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1063) cvn H.B /DEST pdfmark
+end
+ -2 310 a Black
+Black 562 458 a
+SDict begin H.S end
+ 562 458 a 562 458 a
+SDict begin 13 H.A end
+ 562 458 a 562 458
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1064) cvn H.B /DEST pdfmark
+end
+ 562 458 a 562 458 a
+SDict begin H.S end
+ 562 458 a 562 458 a
+SDict begin 13 H.A end
+ 562 458 a 562
+458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1065) cvn H.B /DEST pdfmark
+end
+ 562 458 a Fy(SetMailT)o(ime=)1069 458 y
+SDict begin H.S end
+ 1069 458
+a 1069 458 a
+SDict begin 13 H.A end
+ 1069 458 a 1069 458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1066) cvn H.B /DEST pdfmark
+end
+ 1069 458 a Fl(86400)-2
+626 y
+SDict begin H.S end
+ -2 626 a -2 626 a
+SDict begin 13 H.A end
+ -2 626 a -2 626 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1067) cvn H.B /DEST pdfmark
+end
+ -2 626 a 562
+732 a FC(Y)-9 b(ou)20 b(may)g(w)o(ant)g(to)g(set)h(a)g(maximum)d
+(interv)n(al)i(between)f(an)o(y)g(tw)o(o)i(consecuti)n(v)o(e)d
+(e-mails,)i(to)h(be)f(sure)g(that)562 840 y
+SDict begin H.S end
+ 562 840 a
+562 840 a
+SDict begin 13 H.A end
+ 562 840 a 562 840 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1068) cvn H.B /DEST pdfmark
+end
+ 562 840 a FC(samhain)g(is)h(still)g('ali)
+n(v)o(e'.)-2 1041 y
+SDict begin H.S end
+ -2 1041 a -2 1041 a
+SDict begin 13 H.A end
+ -2 1041 a -2
+1041 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1070) cvn H.B /DEST pdfmark
+end
+ -2 1041 a 396 1149 a FC(Maximum)e(pending)-2 1167
+y
+SDict begin H.S end
+ -2 1167 a -2 1167 a
+SDict begin 13 H.A end
+ -2 1167 a -2 1167 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1071) cvn H.B /DEST pdfmark
+end
+ -2 1167 a Black
+Black 562 1299 a
+SDict begin H.S end
+ 562 1299 a 562 1299 a
+SDict begin 13 H.A end
+ 562 1299 a 562
+1299 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1072) cvn H.B /DEST pdfmark
+end
+ 562 1299 a 562 1299 a
+SDict begin H.S end
+ 562 1299 a 562 1299 a
+SDict begin 13 H.A end
+ 562
+1299 a 562 1299 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1073) cvn H.B /DEST pdfmark
+end
+ 562 1299 a Fy(SetMailNum=)1061 1299
+y
+SDict begin H.S end
+ 1061 1299 a 1061 1299 a
+SDict begin 13 H.A end
+ 1061 1299 a 1061 1299 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1074) cvn H.B /DEST pdfmark
+end
+ 1061
+1299 a Fl(10)-2 1466 y
+SDict begin H.S end
+ -2 1466 a -2 1466 a
+SDict begin 13 H.A end
+ -2 1466 a
+-2 1466 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1075) cvn H.B /DEST pdfmark
+end
+ -2 1466 a 562 1573 a FC(Messages)i(can)f(be)g(queued)e(to)j
+(send)f(se)n(v)o(eral)f(messages)i(in)f(one)g(e-mail.)f(Y)-9
+b(ou)20 b(may)g(w)o(ant)g(to)g(set)h(the)f(the)562 1681
+y(maximum)f(number)f(of)i(messages)g(to)h(queue.)e(\(Note:)g(messages)i
+(of)f(highest)f(priority)g(\(alert\))h(are)g(al)o(w)o(ays)562
+1789 y(sent)h(immediately)-5 b(.)18 b(At)j(most)f(128)f(messages)i(can)
+f(be)g(queued.)-2 1990 y
+SDict begin H.S end
+ -2 1990 a -2 1990 a
+SDict begin 13 H.A end
+ -2 1990
+a -2 1990 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1077) cvn H.B /DEST pdfmark
+end
+ -2 1990 a 396 2098 a FC(Multiple)g(recipients)-2
+2116 y
+SDict begin H.S end
+ -2 2116 a -2 2116 a
+SDict begin 13 H.A end
+ -2 2116 a -2 2116 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1078) cvn H.B /DEST pdfmark
+end
+ -2 2116
+a Black Black 562 2247 a
+SDict begin H.S end
+ 562 2247 a 562 2247 a
+SDict begin 13 H.A end
+ 562 2247
+a 562 2247 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1079) cvn H.B /DEST pdfmark
+end
+ 562 2247 a 562 2247 a
+SDict begin H.S end
+ 562 2247 a 562 2247
+a
+SDict begin 13 H.A end
+ 562 2247 a 562 2247 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1080) cvn H.B /DEST pdfmark
+end
+ 562 2247 a Fy(MailSingle=)992
+2247 y
+SDict begin H.S end
+ 992 2247 a 992 2247 a
+SDict begin 13 H.A end
+ 992 2247 a 992 2247 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1081) cvn H.B /DEST pdfmark
+end
+ 992
+2247 a Fl(yes/no)-2 2430 y
+SDict begin H.S end
+ -2 2430 a -2 2430 a
+SDict begin 13 H.A end
+ -2 2430
+a -2 2430 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1082) cvn H.B /DEST pdfmark
+end
+ -2 2430 a 562 2521 a FC(If)g(there)g(are)g(multiple)g
+(recipients,)f(whether)g(to)i(send)e(a)i(single)f(mail)h(with)f(the)g
+(recipient)f(list,)i(or)f(send)562 2629 y(multiple)g(mails.)g(If)g(all)
+h(recipients)f(are)g(on)g(same)g(domain,)e(a)j(single)f(mail)h(may)e
+(suf)n(\002ce,)h(otherwise)g(it)562 2737 y(depends)f(on)h(whether)f
+(the)h(mail)h(serv)o(er)e(supports)g(forw)o(arding)f(\(for)h(security)
+-5 b(,)19 b(most)h(don')o(t\).)-2 2938 y
+SDict begin H.S end
+ -2 2938 a -2
+2938 a
+SDict begin 13 H.A end
+ -2 2938 a -2 2938 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1084) cvn H.B /DEST pdfmark
+end
+ -2 2938 a 396 3046 a FC(Subject)g(line)-2
+3064 y
+SDict begin H.S end
+ -2 3064 a -2 3064 a
+SDict begin 13 H.A end
+ -2 3064 a -2 3064 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1085) cvn H.B /DEST pdfmark
+end
+ -2 3064
+a Black Black 562 3196 a
+SDict begin H.S end
+ 562 3196 a 562 3196 a
+SDict begin 13 H.A end
+ 562 3196
+a 562 3196 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1086) cvn H.B /DEST pdfmark
+end
+ 562 3196 a 562 3196 a
+SDict begin H.S end
+ 562 3196 a 562 3196
+a
+SDict begin 13 H.A end
+ 562 3196 a 562 3196 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1087) cvn H.B /DEST pdfmark
+end
+ 562 3196 a Fy(MailSubject=)1043
+3196 y
+SDict begin H.S end
+ 1043 3196 a 1043 3196 a
+SDict begin 13 H.A end
+ 1043 3196 a 1043 3196
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1088) cvn H.B /DEST pdfmark
+end
+ 1043 3196 a Fl(string)-2 3379 y
+SDict begin H.S end
+ -2 3379 a -2 3379 a
+SDict begin 13 H.A end
+
+-2 3379 a -2 3379 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1089) cvn H.B /DEST pdfmark
+end
+ -2 3379 a 562 3470 a FC(Here,)765
+3470 y
+SDict begin H.S end
+ 765 3470 a 765 3470 a
+SDict begin 13 H.A end
+ 765 3470 a 765 3470 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1090) cvn H.B /DEST pdfmark
+end
+ 765
+3470 a Fx(string)h FC(may)e(contain)h(the)g(placeholders)e(\045T)-6
+b(,)20 b(\045H,)h(\045S,)g(and/or)e(\045M)h(that)h(will)g(get)f
+(replaced)f(by)562 3578 y(the)i(time,)f(hostname,)e(message)i(se)n(v)o
+(erity)g(and)f(message)h(te)o(xt,)g(respecti)n(v)o(ely)-5
+b(.)18 b(The)i(def)o(ault)f(subject)h(line)h(is)562 3686
+y(equi)n(v)n(alent)e(to)h("\045T)h(\045H".)f(This)g(option)f(may)h(be)g
+(useful)g(if)g(you)g(w)o(ant)g(to)g(send)g(emails)h(to)f(an)562
+3794 y(email-to-sms)g(gate)n(w)o(ay)-5 b(.)-2 3995 y
+SDict begin H.S end
+
+-2 3995 a -2 3995 a
+SDict begin 13 H.A end
+ -2 3995 a -2 3995 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1092) cvn H.B /DEST pdfmark
+end
+ -2 3995 a 396
+4103 a FC(Sender)-2 4104 y
+SDict begin H.S end
+ -2 4104 a -2 4104 a
+SDict begin 13 H.A end
+ -2 4104
+a -2 4104 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1093) cvn H.B /DEST pdfmark
+end
+ -2 4104 a Black Black 562 4252 a
+SDict begin H.S end
+ 562 4252
+a 562 4252 a
+SDict begin 13 H.A end
+ 562 4252 a 562 4252 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1094) cvn H.B /DEST pdfmark
+end
+ 562 4252 a 562 4252
+a
+SDict begin H.S end
+ 562 4252 a 562 4252 a
+SDict begin 13 H.A end
+ 562 4252 a 562 4252 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1095) cvn H.B /DEST pdfmark
+end
+ 562 4252
+a Fy(SetMailSender=)1135 4252 y
+SDict begin H.S end
+ 1135 4252 a 1135 4252
+a
+SDict begin 13 H.A end
+ 1135 4252 a 1135 4252 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1096) cvn H.B /DEST pdfmark
+end
+ 1135 4252 a Fl(string)-2 4428
+y
+SDict begin H.S end
+ -2 4428 a -2 4428 a
+SDict begin 13 H.A end
+ -2 4428 a -2 4428 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1097) cvn H.B /DEST pdfmark
+end
+ -2 4428 a 562
+4526 a FC(Here,)765 4526 y
+SDict begin H.S end
+ 765 4526 a 765 4526 a
+SDict begin 13 H.A end
+ 765
+4526 a 765 4526 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1098) cvn H.B /DEST pdfmark
+end
+ 765 4526 a Fx(string)21 b FC(is)g(the)f(address)g
+(that)g(is)h(inserted)f(in)g(the)g(From:)g(\002eld.)g(If)g(a)h(name)e
+(without)h(domain)f(is)i(gi)n(v)o(en)562 4634 y(\(i.e.)f(without)g
+('@xyz.tld'\),)e(the)i(FQDN)h(of)f(the)g(local)g(host)g(will)h(be)f
+(added)f(automatically)-5 b(.)-2 4835 y
+SDict begin H.S end
+ -2 4835 a -2
+4835 a
+SDict begin 13 H.A end
+ -2 4835 a -2 4835 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1100) cvn H.B /DEST pdfmark
+end
+ -2 4835 a 396 4943 a FC(AND)21
+b(Filter)-2 4944 y
+SDict begin H.S end
+ -2 4944 a -2 4944 a
+SDict begin 13 H.A end
+ -2 4944 a -2 4944
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1101) cvn H.B /DEST pdfmark
+end
+ -2 4944 a Black Black 562 5093 a
+SDict begin H.S end
+ 562 5093 a 562 5093
+a
+SDict begin 13 H.A end
+ 562 5093 a 562 5093 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1102) cvn H.B /DEST pdfmark
+end
+ 562 5093 a 562 5093 a
+SDict begin H.S end
+ 562 5093
+a 562 5093 a
+SDict begin 13 H.A end
+ 562 5093 a 562 5093 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1103) cvn H.B /DEST pdfmark
+end
+ 562 5093 a Fy(SetMailFilterAnd=)1237
+5093 y
+SDict begin H.S end
+ 1237 5093 a 1237 5093 a
+SDict begin 13 H.A end
+ 1237 5093 a 1237 5093
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1104) cvn H.B /DEST pdfmark
+end
+ 1237 5093 a Fl(list)p Black 3661 5805 a Fx(25)p Black
+eop end
+%%Page: 26 31
+TeXDict begin 26 30 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.26) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2239 104 a
+Fx(Chapter)20 b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d
+(facilities)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226
+a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1105) cvn H.B /DEST pdfmark
+end
+ -2 226 a 562 309 a FC(If)i(used,)g(then)g(ALL)g(strings)g
+(in)1505 309 y
+SDict begin H.S end
+ 1505 309 a 1505 309 a
+SDict begin 13 H.A end
+ 1505 309 a 1505
+309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1106) cvn H.B /DEST pdfmark
+end
+ 1505 309 a Fx(list)j FC(must)d(occur)g(in)g(a)h(message,)e
+(otherwise)h(it)h(will)g(not)f(be)g(sent)g(by)g(email.)562
+417 y(As)h(whitespace)f(\(blank)f(or)h(tab\))g(is)h(a)f(v)n(alid)g
+(separator)f(in)h(a)h(list,)g(strings)f(with)h(whitespace)e(must)h(be)
+562 525 y(enclosed)g(in)g(single)g(or)g(double)f(quotes.)g(If)h(a)h
+(string)e(be)o(gins)h(with)g(a)h(double)d(quote,)h(enclose)h(it)h(in)f
+(single)562 632 y(quotes)g(\(and)f(vice)h(v)o(ersa\).)-2
+834 y
+SDict begin H.S end
+ -2 834 a -2 834 a
+SDict begin 13 H.A end
+ -2 834 a -2 834 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1108) cvn H.B /DEST pdfmark
+end
+ -2 834 a 396
+942 a FC(OR)h(Filter)-2 943 y
+SDict begin H.S end
+ -2 943 a -2 943 a
+SDict begin 13 H.A end
+ -2 943
+a -2 943 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1109) cvn H.B /DEST pdfmark
+end
+ -2 943 a Black Black 562 1091 a
+SDict begin H.S end
+ 562 1091 a
+562 1091 a
+SDict begin 13 H.A end
+ 562 1091 a 562 1091 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1110) cvn H.B /DEST pdfmark
+end
+ 562 1091 a 562 1091
+a
+SDict begin H.S end
+ 562 1091 a 562 1091 a
+SDict begin 13 H.A end
+ 562 1091 a 562 1091 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1111) cvn H.B /DEST pdfmark
+end
+ 562 1091
+a Fy(SetMailFilterOr=)1187 1091 y
+SDict begin H.S end
+ 1187 1091 a 1187 1091
+a
+SDict begin 13 H.A end
+ 1187 1091 a 1187 1091 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1112) cvn H.B /DEST pdfmark
+end
+ 1187 1091 a Fl(list)-2 1259
+y
+SDict begin H.S end
+ -2 1259 a -2 1259 a
+SDict begin 13 H.A end
+ -2 1259 a -2 1259 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1113) cvn H.B /DEST pdfmark
+end
+ -2 1259 a 562
+1365 a FC(If)f(used,)g(then)g(A)-9 b(T)20 b(LEAST)g(ONE)g(of)g(the)g
+(strings)h(in)2128 1365 y
+SDict begin H.S end
+ 2128 1365 a 2128 1365 a
+SDict begin 13 H.A end
+ 2128
+1365 a 2128 1365 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1114) cvn H.B /DEST pdfmark
+end
+ 2128 1365 a Fx(list)i FC(must)d(occur)f(in)i(a)f
+(message,)g(otherwise)f(it)i(will)562 1473 y(not)f(be)g(sent)h(by)f
+(email.)g(As)h(whitespace)e(\(blank)g(or)h(tab\))g(is)h(a)g(v)n(alid)e
+(separator)g(in)i(a)f(list,)h(strings)f(with)562 1581
+y(whitespace)g(must)g(be)g(enclosed)g(in)g(single)g(or)g(double)f
+(quotes.)g(If)h(a)h(string)e(be)o(gins)h(with)g(a)h(double)d(quote,)562
+1689 y(enclose)i(it)h(in)f(single)g(quotes)g(\(and)f(vice)h(v)o
+(ersa\).)-2 1890 y
+SDict begin H.S end
+ -2 1890 a -2 1890 a
+SDict begin 13 H.A end
+ -2 1890 a -2 1890
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1116) cvn H.B /DEST pdfmark
+end
+ -2 1890 a 396 1998 a FC(OR)h(Filter)-2 1999 y
+SDict begin H.S end
+ -2 1999
+a -2 1999 a
+SDict begin 13 H.A end
+ -2 1999 a -2 1999 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1117) cvn H.B /DEST pdfmark
+end
+ -2 1999 a Black Black
+562 2148 a
+SDict begin H.S end
+ 562 2148 a 562 2148 a
+SDict begin 13 H.A end
+ 562 2148 a 562 2148
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1118) cvn H.B /DEST pdfmark
+end
+ 562 2148 a 562 2148 a
+SDict begin H.S end
+ 562 2148 a 562 2148 a
+SDict begin 13 H.A end
+ 562 2148
+a 562 2148 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1119) cvn H.B /DEST pdfmark
+end
+ 562 2148 a Fy(SetMailFilterNot=)1215 2148
+y
+SDict begin H.S end
+ 1215 2148 a 1215 2148 a
+SDict begin 13 H.A end
+ 1215 2148 a 1215 2148 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1120) cvn H.B /DEST pdfmark
+end
+ 1215
+2148 a Fl(list)-2 2315 y
+SDict begin H.S end
+ -2 2315 a -2 2315 a
+SDict begin 13 H.A end
+ -2 2315
+a -2 2315 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1121) cvn H.B /DEST pdfmark
+end
+ -2 2315 a 562 2422 a FC(If)f(used,)g(then)g(NONE)g(of)g
+(the)g(strings)g(in)1787 2422 y
+SDict begin H.S end
+ 1787 2422 a 1787 2422
+a
+SDict begin 13 H.A end
+ 1787 2422 a 1787 2422 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1122) cvn H.B /DEST pdfmark
+end
+ 1787 2422 a Fx(list)i FC(can)e(occur)g(in)g
+(a)h(message,)e(otherwise)h(it)h(will)g(not)f(be)g(sent)g(by)562
+2530 y(email.)g(As)g(whitespace)f(\(blank)g(or)g(tab\))g(is)i(a)f(v)n
+(alid)f(separator)f(in)i(a)g(list,)h(strings)e(with)h(whitespace)f
+(must)h(be)562 2637 y(enclosed)g(in)g(single)g(or)g(double)f(quotes.)g
+(If)h(a)h(string)e(be)o(gins)h(with)g(a)h(double)d(quote,)h(enclose)h
+(it)h(in)f(single)562 2745 y(quotes)g(\(and)f(vice)h(v)o(ersa\).)-2
+3179 y
+SDict begin H.S end
+ -2 3179 a -2 3179 a
+SDict begin 13 H.A end
+ -2 3179 a -2 3179 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1123) cvn H.B /DEST pdfmark
+end
+ -2 3179
+a -2 3179 a
+SDict begin H.S end
+ -2 3179 a -2 3179 a
+SDict begin 13 H.A end
+ -2 3179 a -2 3179 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1124) cvn H.B /DEST pdfmark
+end
+ -2
+3179 a 396 3287 a Fx(Example:)-2 3387 y
+SDict begin H.S end
+ -2 3387 a -2
+3387 a
+SDict begin 11.7 H.A end
+ -2 3387 a -2 3387 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1125) cvn H.B /DEST pdfmark
+end
+ -2 3387 a 486 3467 a Fr([Misc])486
+3564 y(#)486 3662 y(#)45 b(E-mail)e(receipient)h(\(offsite)f(in)i(this)
+f(case\).)g(Up)g(to)h(eight)f(addresses,)486 3759 y(#)h(each)f(one)g
+(at)h(most)f(63)g(characters)f(long.)486 3856 y(#)486
+3953 y(SetMailAddress=username@host.some_domai)o(n.com)486
+4050 y(#)486 4147 y(#)i(Need)f(a)g(relay)g(host)h(for)f(outgoing)f
+(mail.)486 4244 y(#)486 4341 y(SetMailRelay=relay.mydomain.com)486
+4439 y(#)486 4536 y(#)i(Number)e(of)i(pending)f(mails.)486
+4633 y(#)486 4730 y(SetMailNum=10)486 4827 y(#)486 4924
+y(#)h(Maximum)e(time)h(between)g(e-mails.)486 5021 y(#)h(Want)f(a)g
+(message)g(every)g(day,)g(just)g(to)h(be)f(sure)h(that)f(the)486
+5119 y(#)h(program)e(still)h(runs.)486 5216 y(#)486 5313
+y(SetMailTime=86400)p Black 3660 5805 a Fx(26)p Black
+eop end
+%%Page: 27 32
+TeXDict begin 27 31 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.27) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1148) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2239 104 a Fx(Chapter)20
+b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d(facilities)p
+Black 486 309 a Fr(#)486 406 y(#)45 b(Do)f(not)g(send)h(messages)e
+(about)h(added)g(files,)g(and)g(startup)g(messages)486
+503 y(#)486 600 y(SetMailFilterNot)e(=)j('POLICY)e(ADDED',)h(START)486
+697 y(#)486 794 y(#)h(To)f(all)g(recipients)g(in)g(a)h(single)f(mail.)
+486 892 y(MailSingle=yes)-2 904 y
+SDict begin H.S end
+ -2 904 a -2 904 a
+SDict begin 13 H.A end
+ -2
+904 a -2 904 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:EMAILDETAILS) cvn H.B /DEST
+pdfmark end
+ -2 904 a 396 1220 a Fp(4.4.1.)36 b(E-mail)e(repor)r(ts)f
+(and)h(their)f(integrity)2577 1220 y
+SDict begin H.S end
+ 2577 1220 a 2577
+1220 a
+SDict begin 18.72 H.A end
+ 2577 1220 a 2577 1220 a
+SDict begin [ /View [/XYZ H.V] /Dest (6.24.8.2) cvn H.B /DEST pdfmark
+end
+ 2577 1220 a -2 1412 a
+SDict begin H.S end
+
+-2 1412 a -2 1412 a
+SDict begin 13 H.A end
+ -2 1412 a -2 1412 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1128) cvn H.B /DEST pdfmark
+end
+ -2 1412 a 396
+1494 a FC(The)20 b(subject)g(line)g(contains)g(timestamp)g(and)f(local)
+h(hostname,)f(which)h(are)g(repeated)f(in)h(the)g(message)g(body)-5
+b(.)396 1602 y
+SDict begin H.S end
+ 396 1602 a 396 1602 a
+SDict begin 13 H.A end
+ 396 1602 a 396 1602
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1129) cvn H.B /DEST pdfmark
+end
+ 396 1602 a FC(samhain)20 b(uses)g(its)i(o)n(wn)d(b)n(uilt-in)h(SMTP)g
+(code)g(rather)f(than)h(the)g(system)h(mailer)m(,)e(because)g(in)i
+(case)f(of)396 1709 y(temporary)e(connection)g(f)o(ailures,)i(the)g
+(system)h(mailer)e(\(e.g.)2208 1709 y
+SDict begin H.S end
+ 2208 1709 a 2208
+1709 a
+SDict begin 13 H.A end
+ 2208 1709 a 2208 1709 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1130) cvn H.B /DEST pdfmark
+end
+ 2208 1709 a FC(sendmail\))g(w)o(ould)g
+(queue)g(the)i(message)f(on)f(disk,)396 1817 y(where)h(it)h(may)e
+(become)g(visible)i(to)f(unauthorized)d(persons.)-2 2001
+y
+SDict begin H.S end
+ -2 2001 a -2 2001 a
+SDict begin 13 H.A end
+ -2 2001 a -2 2001 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1131) cvn H.B /DEST pdfmark
+end
+ -2 2001 a 396
+2091 a FC(During)i(temporary)f(connection)g(f)o(ailures,)i(messages)g
+(are)g(stored)g(in)g(memory)-5 b(.)18 b(The)i(maximum)f(number)f(of)396
+2199 y(stored)i(messages)g(is)h(128.)1196 2199 y
+SDict begin H.S end
+ 1196
+2199 a 1196 2199 a
+SDict begin 13 H.A end
+ 1196 2199 a 1196 2199 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1132) cvn H.B /DEST pdfmark
+end
+ 1196 2199
+a FC(samhain)f(will)h(re-try)e(to)h(mail)h(e)n(v)o(ery)e(hour)f(for)i
+(at)h(most)f(48)g(hours.)f(In)h(conformance)396 2307
+y(with)h(RFC)g(821,)908 2307 y
+SDict begin H.S end
+ 908 2307 a 908 2307 a
+SDict begin 13 H.A end
+
+908 2307 a 908 2307 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1133) cvn H.B /DEST pdfmark
+end
+ 908 2307 a FC(samhain)f(will)h(k)o(eep)e(the)i
+(responsibility)d(for)i(the)g(message)g(deli)n(v)o(ery)f(until)h(the)g
+(recipient')-5 b(s)396 2415 y(mail)21 b(serv)o(er)e(has)h(con\002rmed)f
+(receipt)g(of)h(the)h(e-mail)e(\(e)o(xcept)g(that,)h(as)h(noted)e(abo)o
+(v)o(e,)g(after)h(48)f(hours)h(it)h(will)396 2523 y(assume)f(a)h
+(permanent)d(connection)g(f)o(ailure,)i(i.e.)g(e-mailing)f(will)i(be)f
+(switched)g(of)n(f\).)-2 2707 y
+SDict begin H.S end
+ -2 2707 a -2 2707 a
+SDict begin 13 H.A end
+ -2
+2707 a -2 2707 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1134) cvn H.B /DEST pdfmark
+end
+ -2 2707 a 396 2797 a FC(The)g(body)f(of)h(the)g(mail)g
+(may)g(consist)h(of)e(se)n(v)o(eral)h(messages)g(that)h(were)f(pending)
+e(on)i(the)g(internal)f(queue)g(\(see)p 0 TeXcolorgray
+396 2905 a
+SDict begin H.S end
+ 396 2905 a FC(Section)h(4.2)771 2905 y
+SDict begin 13 H.L end
+ 771
+2905 a 771 2905 a
+SDict begin [ /Subtype /Link /Dest (0:CONFIGFACILITY) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 771 2905 a Black -1 w FC(>\),)g(follo)n(wed)f(by)g(a)
+i(signature)e(that)h(is)i(computed)c(from)h(the)h(message)g(and)g(a)g
+(k)o(e)o(y)-5 b(.)19 b(The)h(k)o(e)o(y)g(is)396 3013
+y(initialized)g(with)g(a)h(random)d(number)m(,)g(and)i(for)f(each)h
+(e-mail)g(iterated)g(by)g(a)2636 3013 y
+SDict begin H.S end
+ 2636 3013 a 2636
+3013 a
+SDict begin 13 H.A end
+ 2636 3013 a 2636 3013 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1136) cvn H.B /DEST pdfmark
+end
+ 2636 3013 a Fx(hash)g(c)o(hain)p
+FC(.)-2 3197 y
+SDict begin H.S end
+ -2 3197 a -2 3197 a
+SDict begin 13 H.A end
+ -2 3197 a -2 3197
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1137) cvn H.B /DEST pdfmark
+end
+ -2 3197 a 396 3287 a FC(The)g(initial)h(k)o(e)o(y)e(is)i(re)n(v)o
+(ealed)e(in)h(the)h(\002rst)f(email)h(sent)f(\(ob)o(viously)-5
+b(,)17 b(you)j(ha)n(v)o(e)f(to)h(belie)n(v)o(e)g(that)g(this)h(\002rst)
+g(e-mail)396 3395 y(is)g(authentic\).)e(This)h(initial)h(k)o(e)o(y)e
+(is)i(not)f(transmitted)g(in)g(clearte)o(xt,)f(b)n(ut)h(encrypted)e
+(with)j(a)f(one-time)f(pad)396 3503 y(\()p 0 TeXcolorgray
+424 3503 a
+SDict begin H.S end
+ 424 3503 a FC(Section)h(11.2)841 3503 y
+SDict begin 13 H.L end
+ 841
+3503 a 841 3503 a
+SDict begin [ /Subtype /Link /Dest (0:KEYPAD) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 841 3503 a Black -2 w FC(>\).)-2 3684
+y
+SDict begin H.S end
+ -2 3684 a -2 3684 a
+SDict begin 13 H.A end
+ -2 3684 a -2 3684 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1139) cvn H.B /DEST pdfmark
+end
+ -2 3684 a 396
+3777 a FC(The)g(signature)f(is)i(follo)n(wed)e(by)h(a)h(unique)d
+(identi\002cation)h(string.)h(This)g(is)h(used)f(to)h(identify)e
+(seperate)g(audit)396 3885 y(trails)i(\(here,)e(a)853
+3885 y
+SDict begin H.S end
+ 853 3885 a 853 3885 a
+SDict begin 13 H.A end
+ 853 3885 a 853 3885 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1140) cvn H.B /DEST pdfmark
+end
+ 853
+3885 a Fx(tr)o(ail)h FC(is)h(a)g(sequence)e(of)h(e-mails)g(from)f(the)i
+(same)f(run)f(of)2546 3885 y
+SDict begin H.S end
+ 2546 3885 a 2546 3885 a
+SDict begin 13 H.A end
+
+2546 3885 a 2546 3885 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1141) cvn H.B /DEST pdfmark
+end
+ 2546 3885 a FC(samhain\),)g(and)h(to)g
+(enumerate)396 3993 y(indi)n(vidual)f(e-mails)h(within)g(a)g(trail.)-2
+4159 y
+SDict begin H.S end
+ -2 4159 a -2 4159 a
+SDict begin 13 H.A end
+ -2 4159 a -2 4159 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1142) cvn H.B /DEST pdfmark
+end
+ -2 4159
+a 396 4267 a FC(The)g(mail)g(thus)h(looks)e(lik)o(e:)-2
+4350 y
+SDict begin H.S end
+ -2 4350 a -2 4350 a
+SDict begin 11.7 H.A end
+ -2 4350 a -2 4350 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1143) cvn H.B /DEST pdfmark
+end
+ -2 4350
+a 486 4447 a Fr(-----BEGIN)43 b(MESSAGE-----)486 4544
+y(first)h(message)486 4641 y(second)g(message)486 4738
+y(...)486 4835 y(-----BEGIN)f(SIGNATURE-----)486 4932
+y(signature)486 5029 y(ID)h(TRAIL_ID:hostname)486 5127
+y(-----END)f(MESSAGE-----)-2 5129 y
+SDict begin H.S end
+ -2 5129 a -2 5129
+a
+SDict begin 11.7 H.A end
+ -2 5129 a -2 5129 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1144) cvn H.B /DEST pdfmark
+end
+ -2 5129 a Black 3658 5805 a Fx(27)p
+Black eop end
+%%Page: 28 33
+TeXDict begin 28 32 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.28) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2239 104 a
+Fx(Chapter)20 b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d
+(facilities)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 11.7 H.A end
+ -2 226
+a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1146) cvn H.B /DEST pdfmark
+end
+ -2 226 a 562 309 a Fw(Integrity)h(veri\002cation:)1322
+309 y
+SDict begin H.S end
+ 1322 309 a 1322 309 a
+SDict begin 11.7 H.A end
+ 1322 309 a 1322 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1147) cvn H.B /DEST pdfmark
+end
+ 1322
+309 a Fq(T)-9 b(o)20 b(v)n(er)q(ify)h(the)e(integ)o(r)q(ity)27
+b Fv(of)20 b(an)f(e-mail)h(audit)e(tr)o(ail,)i(a)g(con)o(v)n(enience)e
+(function)g(is)562 406 y(pro)o(vided:)562 544 y Fw(samhain)h(-M)i
+Fm(/mailbox/file/path)-2 595 y
+SDict begin H.S end
+ -2 595 a -2 595 a
+SDict begin 11.7 H.A end
+ -2 595
+a -2 595 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1151) cvn H.B /DEST pdfmark
+end
+ -2 595 a 562 683 a Fv(The)f(mailbo)n(x)f(\002le)h(ma)n(y)h
+(contain)d(m)o(ultiple)h(and/or)f(o)o(v)n(er)q(lapping)g(audit)g(tr)o
+(ails)i(from)g(diff)n(erent)e(r)q(uns)i(of)562 780 y
+SDict begin H.S end
+
+562 780 a 562 780 a
+SDict begin 11.7 H.A end
+ 562 780 a 562 780 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1152) cvn H.B /DEST pdfmark
+end
+ 562 780 a Fv(samhain)f(and/or)g
+(diff)n(erent)f(clients)h(\(hosts\).)39 919 y
+SDict begin H.S end
+ 39 919
+a 39 919 a
+SDict begin 11.7 H.A end
+ 39 919 a 39 919 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1153) cvn H.B /DEST pdfmark
+end
+ 39 919 a 745 1019 2668 17
+v 745 1975 17 957 v 1803 1214 a Fp(CA)-10 b(VEA)f(TS)786
+1381 y
+SDict begin H.S end
+ 786 1381 a 786 1381 a
+SDict begin 11.7 H.A end
+ 786 1381 a 786 1381 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1155) cvn H.B /DEST pdfmark
+end
+ 786
+1381 a 96 x Fv(V)-6 b(er)q(i\002cation)19 b(will)g(f)n(ail,)f(if)i(the)
+f(compiled-in)e(k)o(e)o(y)j(of)g(the)f(v)n(er)q(ifying)g(e)n(x)n
+(ecutab)o(le)e(is)j(diff)n(erent)786 1574 y(from)h(the)e(one)h(that)f
+(gener)o(ated)f(the)h(message\(s\))h(\(see)p 0 TeXcolorgray
+2430 1574 a
+SDict begin H.S end
+ 2430 1574 a Fv(Section)f(11.2)2847 1574 y
+SDict begin 11.7 H.L end
+
+2847 1574 a 2847 1574 a
+SDict begin [ /Subtype /Link /Dest (0:KEYPAD) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2847 1574 a Black -1 w Fv(>\).)786
+1757 y
+SDict begin H.S end
+ 786 1757 a 786 1757 a
+SDict begin 11.7 H.A end
+ 786 1757 a 786 1757 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1157) cvn H.B /DEST pdfmark
+end
+ 786
+1757 a 80 x Fv(If)i(y)o(ou)f(use)g(a)g(pre-compiled)e(e)n(x)n(ecutab)o
+(le)f(from)j(some)g(binar)r(y)g(distr)q(ib)o(ution,)c(be)k(sure)g(to)
+786 1934 y(read)p 0 TeXcolorgray 957 1934 a
+SDict begin H.S end
+ 957 1934
+a Fv(Section)f(11.2)1374 1934 y
+SDict begin 11.7 H.L end
+ 1374 1934 a 1374 1934
+a
+SDict begin [ /Subtype /Link /Dest (0:KEYPAD) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1374 1934 a Black -2 w Fv(>)i(carefully)-7 b(.)p 3396
+1975 17 957 v 745 1992 2668 17 v -2 2168 a
+SDict begin H.S end
+ -2 2168 a
+-2 2168 a
+SDict begin 13 H.A end
+ -2 2168 a -2 2168 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:TRUSTEDEXAMPLE) cvn H.B /DEST
+pdfmark end
+ -2 2168 a 320 x Fu(4.5.)39
+b(Log)g(\002le)788 2488 y
+SDict begin H.S end
+ 788 2488 a 788 2488 a
+SDict begin 22.464 H.A end
+ 788 2488
+a 788 2488 a
+SDict begin [ /View [/XYZ H.V] /Dest (6.25.1) cvn H.B /DEST pdfmark
+end
+ 788 2488 a -2 2686 a
+SDict begin H.S end
+ -2 2686 a -2 2686 a
+SDict begin 13 H.A end
+
+-2 2686 a -2 2686 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1161) cvn H.B /DEST pdfmark
+end
+ -2 2686 a -2 2686 a
+SDict begin H.S end
+ -2 2686 a -2
+2686 a
+SDict begin 13 H.A end
+ -2 2686 a -2 2686 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1162) cvn H.B /DEST pdfmark
+end
+ -2 2686 a -2 2810 a
+SDict begin H.S end
+ -2 2810
+a -2 2810 a
+SDict begin 13 H.A end
+ -2 2810 a -2 2810 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1164) cvn H.B /DEST pdfmark
+end
+ -2 2810 a 396 2886 a
+FC(T)m(rusted)20 b(users)-2 2887 y
+SDict begin H.S end
+ -2 2887 a -2 2887
+a
+SDict begin 13 H.A end
+ -2 2887 a -2 2887 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1165) cvn H.B /DEST pdfmark
+end
+ -2 2887 a Black Black 562 3036
+a
+SDict begin H.S end
+ 562 3036 a 562 3036 a
+SDict begin 13 H.A end
+ 562 3036 a 562 3036 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1166) cvn H.B /DEST pdfmark
+end
+ 562 3036
+a 562 3036 a
+SDict begin H.S end
+ 562 3036 a 562 3036 a
+SDict begin 13 H.A end
+ 562 3036 a 562 3036
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1167) cvn H.B /DEST pdfmark
+end
+ 562 3036 a Fy(T)-6 b(rustedUser=)1050 3036 y
+SDict begin H.S end
+ 1050 3036
+a 1050 3036 a
+SDict begin 13 H.A end
+ 1050 3036 a 1050 3036 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1168) cvn H.B /DEST pdfmark
+end
+ 1050 3036 a Fl(username)-2
+3203 y
+SDict begin H.S end
+ -2 3203 a -2 3203 a
+SDict begin 13 H.A end
+ -2 3203 a -2 3203 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1169) cvn H.B /DEST pdfmark
+end
+ -2 3203
+a 562 3310 a FC(If)20 b(some)g(element)g(in)g(the)h(path)e(to)i(the)f
+(log)g(\002le)h(is)g(writeable)e(by)h(someone)f(else)i(than)3090
+3310 y
+SDict begin H.S end
+ 3090 3310 a 3090 3310 a
+SDict begin 13 H.A end
+ 3090 3310 a 3090 3310
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1170) cvn H.B /DEST pdfmark
+end
+ 3090 3310 a Fx(r)l(oot)g FC(or)f(the)3459 3310 y
+SDict begin H.S end
+ 3459
+3310 a 3459 3310 a
+SDict begin 13 H.A end
+ 3459 3310 a 3459 3310 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1171) cvn H.B /DEST pdfmark
+end
+ 3459 3310
+a Fx(ef)o(fective)562 3418 y(user)j FC(of)d(the)g(process,)g(you)f(ha)n
+(v)o(e)g(to)i(include)e(that)h(user)g(in)h(the)f(list)h(of)2625
+3418 y
+SDict begin H.S end
+ 2625 3418 a 2625 3418 a
+SDict begin 13 H.A end
+ 2625 3418 a 2625 3418
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1172) cvn H.B /DEST pdfmark
+end
+ 2625 3418 a Fx(trusted)f(user)o(s)i FC(\(unless)e(their)g(UIDs)562
+3526 y(are)g(already)g(compiled)e(in\).)-2 3727 y
+SDict begin H.S end
+ -2
+3727 a -2 3727 a
+SDict begin 13 H.A end
+ -2 3727 a -2 3727 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1174) cvn H.B /DEST pdfmark
+end
+ -2 3727 a 396 3835
+a FC(Separate)i(log)g(\002les)h(for)e(clients)-2 3853
+y
+SDict begin H.S end
+ -2 3853 a -2 3853 a
+SDict begin 13 H.A end
+ -2 3853 a -2 3853 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1175) cvn H.B /DEST pdfmark
+end
+ -2 3853 a Black
+Black 562 3984 a
+SDict begin H.S end
+ 562 3984 a 562 3984 a
+SDict begin 13 H.A end
+ 562 3984 a 562
+3984 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1176) cvn H.B /DEST pdfmark
+end
+ 562 3984 a 562 3984 a
+SDict begin H.S end
+ 562 3984 a 562 3984 a
+SDict begin 13 H.A end
+ 562
+3984 a 562 3984 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1177) cvn H.B /DEST pdfmark
+end
+ 562 3984 a Fy(UseSeparateLogs=)1224
+3984 y
+SDict begin H.S end
+ 1224 3984 a 1224 3984 a
+SDict begin 13 H.A end
+ 1224 3984 a 1224 3984
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1178) cvn H.B /DEST pdfmark
+end
+ 1224 3984 a Fl(yes/no)-2 4167 y
+SDict begin H.S end
+ -2 4167 a -2 4167 a
+SDict begin 13 H.A end
+
+-2 4167 a -2 4167 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1179) cvn H.B /DEST pdfmark
+end
+ -2 4167 a -2 4167 a
+SDict begin H.S end
+ -2 4167 a -2
+4167 a
+SDict begin 13 H.A end
+ -2 4167 a -2 4167 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1180) cvn H.B /DEST pdfmark
+end
+ -2 4167 a 562 4258 a Fx(Only)h(r)m(ele)o
+(vant)g(on)g(the)g(server)-9 b(.)21 b FC(Use)g(a)f(separate)g(log)g
+(\002le)h(for)e(\(reports)g(from\))g(each)h(client.)g(The)g(root)f
+(name)562 4366 y(of)h(these)h(log)e(\002les)j(will)f(be)f(the)g(same)g
+(as)h(the)f(main)g(log)g(\002le,)h(with)f(the)g(client)g(name)g
+(appended.)39 4634 y
+SDict begin H.S end
+ 39 4634 a 39 4634 a
+SDict begin 13 H.A end
+ 39 4634 a 39
+4634 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:LOGFILE) cvn H.B /DEST pdfmark
+end
+ 39 4634 a 396 4962 a Fp(4.5.1.)36 b(The)d(log)h(\002le)g(and)g
+(its)f(integrity)2282 4962 y
+SDict begin H.S end
+ 2282 4962 a 2282 4962 a
+SDict begin 18.72 H.A end
+
+2282 4962 a 2282 4962 a
+SDict begin [ /View [/XYZ H.V] /Dest (6.25.9.2) cvn H.B /DEST pdfmark
+end
+ 2282 4962 a -2 5155 a
+SDict begin H.S end
+ -2 5155
+a -2 5155 a
+SDict begin 13 H.A end
+ -2 5155 a -2 5155 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1183) cvn H.B /DEST pdfmark
+end
+ -2 5155 a 396 5236 a
+FC(The)20 b(log)g(\002le)h(is)g(named)1118 5236 y
+SDict begin H.S end
+ 1118
+5236 a 1118 5236 a
+SDict begin 13 H.A end
+ 1118 5236 a 1118 5236 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1184) cvn H.B /DEST pdfmark
+end
+ 1118 5236
+a Fr(samhain_log)e FC(by)h(def)o(ault,)f(and)h(placed)f(into)2535
+5236 y
+SDict begin H.S end
+ 2535 5236 a 2535 5236 a
+SDict begin 13 H.A end
+ 2535 5236 a 2535 5236
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1185) cvn H.B /DEST pdfmark
+end
+ 2535 5236 a Fr(/var/log)g FC(by)h(def)o(ault)g(\(name)f(and)396
+5344 y(location)h(can)g(be)g(con\002gured)d(at)k(compile)e(time\).)h
+(If)1957 5344 y
+SDict begin H.S end
+ 1957 5344 a 1957 5344 a
+SDict begin 13 H.A end
+ 1957 5344 a 1957
+5344 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1186) cvn H.B /DEST pdfmark
+end
+ 1957 5344 a FC(samhain)g(has)g(been)g(compiled)e(with)j(the)3184
+5344 y
+SDict begin H.S end
+ 3184 5344 a 3184 5344 a
+SDict begin 13 H.A end
+ 3184 5344 a 3184 5344
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1187) cvn H.B /DEST pdfmark
+end
+ 3184 5344 a Fy(./con\002gur)o(e)p Black 3661 5805 a
+Fx(28)p Black eop end
+%%Page: 29 34
+TeXDict begin 29 33 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.29) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2239 104 a
+Fx(Chapter)20 b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d
+(facilities)p Black 396 309 a Fy(--enable-xml-log)g FC(option,)h(it)i
+(will)g(be)f(written)g(in)g(XML)g(format.)-2 327 y
+SDict begin H.S end
+ -2
+327 a -2 327 a
+SDict begin 11.7 H.A end
+ -2 327 a -2 327 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1188) cvn H.B /DEST pdfmark
+end
+ -2 327 a -2 451 a
+SDict begin H.S end
+ -2
+451 a -2 451 a
+SDict begin 11.7 H.A end
+ -2 451 a -2 451 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1190) cvn H.B /DEST pdfmark
+end
+ -2 451 a 562 530 a Fw(NO)m(TE:)h
+Fv(If)f(y)o(ou)g(ha)o(v)n(e)f(compiled)g(f)n(or)g(stealth)g(\()p
+0 TeXcolorgray 1885 530 a
+SDict begin H.S end
+ 1885 530 a Fv(Chapter)g(9)2214
+530 y
+SDict begin 11.7 H.L end
+ 2214 530 a 2214 530 a
+SDict begin [ /Subtype /Link /Dest (0:STEALTHMODE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2214 530 a Black -1 w Fv(>\),)h(y)o(ou)g(w)
+o(on't)f(see)i(m)o(uch,)f(because)f(if)562 628 y(obfuscated,)f(then)i
+(both)f(a)h('nor)r(mal')e(and)i(an)f(XML)i(log\002le)e(look,)g(w)o(ell)
+h(...)g(obfuscated.)e(Use)3259 628 y
+SDict begin H.S end
+ 3259 628 a 3259
+628 a
+SDict begin 11.7 H.A end
+ 3259 628 a 3259 628 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1192) cvn H.B /DEST pdfmark
+end
+ 3259 628 a Fw(samhain)h(-jL)562
+725 y
+SDict begin H.S end
+ 562 725 a 562 725 a
+SDict begin 11.7 H.A end
+ 562 725 a 562 725 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1193) cvn H.B /DEST pdfmark
+end
+ 562 725
+a Fm(/path/to/logfile)27 b Fv(to)20 b(vie)o(w)g(the)f(log\002le)o(.)-2
+1040 y
+SDict begin H.S end
+ -2 1040 a -2 1040 a
+SDict begin 13 H.A end
+ -2 1040 a -2 1040 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1194) cvn H.B /DEST pdfmark
+end
+ -2 1040
+a 396 1148 a FC(The)h(log)g(\002le)h(is)g(created)e(if)i(it)g(does)f
+(not)g(e)o(xist,)g(and)f(lock)o(ed)h(by)f(creating)h(a)2603
+1148 y
+SDict begin H.S end
+ 2603 1148 a 2603 1148 a
+SDict begin 13 H.A end
+ 2603 1148 a 2603 1148
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1195) cvn H.B /DEST pdfmark
+end
+ 2603 1148 a Fx(loc)n(k)h(\002le)p FC(,)f(which)f(is)i(also)g(used)f
+(as)h(the)396 1256 y
+SDict begin H.S end
+ 396 1256 a 396 1256 a
+SDict begin 13 H.A end
+ 396 1256 a
+396 1256 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1196) cvn H.B /DEST pdfmark
+end
+ 396 1256 a Fx(PID)f(\002le)h FC(\(i.e.)e(it)i(holds)f(the)g
+(PID)h(of)f(the)g(process\).)f(By)i(def)o(ault,)e(the)h(lock/PID)g
+(\002le)g(is)i(named)3179 1256 y
+SDict begin H.S end
+ 3179 1256 a 3179 1256
+a
+SDict begin 13 H.A end
+ 3179 1256 a 3179 1256 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1197) cvn H.B /DEST pdfmark
+end
+ 3179 1256 a Fr(samhain.pid)396
+1364 y FC(and)e(placed)f(in)860 1364 y
+SDict begin H.S end
+ 860 1364 a 860
+1364 a
+SDict begin 13 H.A end
+ 860 1364 a 860 1364 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1198) cvn H.B /DEST pdfmark
+end
+ 860 1364 a Fr(/var/run)g
+FC(\(name)g(and)h(location)f(can)h(be)g(con\002gured)e(at)j(compile)e
+(time\).)h(Upon)f(normal)396 1472 y(program)f(termination,)h(the)h
+(lock)g(\002le)g(is)i(remo)o(v)o(ed.)17 b(Stale)k(lock)f(\002les)h(are)
+f(remo)o(v)o(ed)e(at)i(startup)g(if)h(there)e(is)i(no)396
+1580 y(process)f(with)g(that)h(PID.)-2 1764 y
+SDict begin H.S end
+ -2 1764
+a -2 1764 a
+SDict begin 13 H.A end
+ -2 1764 a -2 1764 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1199) cvn H.B /DEST pdfmark
+end
+ -2 1764 a 396 1854 a
+FC(On)f(the)h(log)f(serv)o(er)m(,)e(it)j(is)g(possible)f(to)h(use)f
+(separate)g(log)g(\002les)h(for)e(indi)n(vidual)g(clients.)h(This)g
+(can)g(be)g(enabled)396 1962 y(with)565 1962 y
+SDict begin H.S end
+ 565 1962
+a 565 1962 a
+SDict begin 13 H.A end
+ 565 1962 a 565 1962 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1200) cvn H.B /DEST pdfmark
+end
+ 565 1962 a Fy(UseSeparateLogs=)1227
+1962 y
+SDict begin H.S end
+ 1227 1962 a 1227 1962 a
+SDict begin 13 H.A end
+ 1227 1962 a 1227 1962
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1201) cvn H.B /DEST pdfmark
+end
+ 1227 1962 a Fl(yes/no)g FC(in)g(the)g(Misc)h(section)f(of)g(the)g
+(serv)o(er)f(con\002guration)f(\002le.)j(No)f(locking)f(will)396
+2070 y(be)h(performed)e(for)h(client)i(\002les)g(\(only)e(one)h
+(instance)f(of)h(the)g(serv)o(er)g(can)g(listen)g(on)g(the)g(TCP)h
+(port,)f(thus)g(there)396 2178 y(will)h(be)f(no)g(concurrent)e
+(access\).)-2 2358 y
+SDict begin H.S end
+ -2 2358 a -2 2358 a
+SDict begin 13 H.A end
+ -2 2358 a -2
+2358 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1202) cvn H.B /DEST pdfmark
+end
+ -2 2358 a 396 2451 a FC(The)i(directory)f(where)g(the)h(log)g
+(and)g(the)g(lock/PID)g(\002le)g(are)h(located)e(must)h(be)g(writeable)
+g(only)g(by)f(trusted)h(users)396 2559 y(\(see)p 0 TeXcolorgray
+551 2559 a
+SDict begin H.S end
+ 551 2559 a FC(Section)g(2.10.1)1031 2559 y
+SDict begin 13 H.L end
+
+1031 2559 a 1031 2559 a
+SDict begin [ /Subtype /Link /Dest (0:DEFTRUST) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1031 2559 a Black -3 w FC(>\).)g(This)g
+(requirement)e(refers)i(to)g(the)2152 2559 y
+SDict begin H.S end
+ 2152 2559
+a 2152 2559 a
+SDict begin 13 H.A end
+ 2152 2559 a 2152 2559 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1204) cvn H.B /DEST pdfmark
+end
+ 2152 2559 a Fx(complete)f
+FC(path,)h(i.e.)g(all)g(directories)g(therein.)f(By)396
+2667 y(def)o(ault,)g(only)836 2667 y
+SDict begin H.S end
+ 836 2667 a 836 2667
+a
+SDict begin 13 H.A end
+ 836 2667 a 836 2667 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1205) cvn H.B /DEST pdfmark
+end
+ 836 2667 a Fx(r)l(oot)j FC(and)d(the)1256
+2667 y
+SDict begin H.S end
+ 1256 2667 a 1256 2667 a
+SDict begin 13 H.A end
+ 1256 2667 a 1256 2667
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1206) cvn H.B /DEST pdfmark
+end
+ 1256 2667 a Fx(ef)o(fective)h(user)i FC(of)e(the)g(process)g(are)g
+(trusted.)-2 2851 y
+SDict begin H.S end
+ -2 2851 a -2 2851 a
+SDict begin 13 H.A end
+ -2 2851 a -2
+2851 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1207) cvn H.B /DEST pdfmark
+end
+ -2 2851 a 396 2941 a FC(Audit)g(trails)h(\(sequences)e(of)h
+(messages)g(from)f(indi)n(vidual)g(runs)g(of)2393 2941
+y
+SDict begin H.S end
+ 2393 2941 a 2393 2941 a
+SDict begin 13 H.A end
+ 2393 2941 a 2393 2941 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1208) cvn H.B /DEST pdfmark
+end
+ 2393
+2941 a FC(samhain\))g(in)i(the)f(log)g(\002le)h(start)f(with)h(a)396
+3049 y
+SDict begin H.S end
+ 396 3049 a 396 3049 a
+SDict begin 13 H.A end
+ 396 3049 a 396 3049 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1209) cvn H.B /DEST pdfmark
+end
+ 396
+3049 a Fx([SOF])g FC(mark)o(er)-5 b(.)19 b(Each)h(message)g(is)h(follo)
+n(wed)e(by)g(a)i(signature,)e(that)h(is)h(formed)e(by)h(hashing)f(the)h
+(message)g(with)396 3157 y(a)h(k)o(e)o(y)-5 b(.)-2 3341
+y
+SDict begin H.S end
+ -2 3341 a -2 3341 a
+SDict begin 13 H.A end
+ -2 3341 a -2 3341 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1210) cvn H.B /DEST pdfmark
+end
+ -2 3341 a 396
+3431 a FC(The)20 b(\002rst)h(k)o(e)o(y)f(is)h(generated)d(at)j(random,)
+d(and)i(sent)g(by)g(e-mail,)g(encrypted)e(with)i(a)h(one-time)e(pad)g
+(as)i(described)396 3539 y(in)g(the)f(pre)n(vious)e(section)i(on)g
+(e-mail.)g(Further)f(k)o(e)o(ys)h(are)g(generated)e(by)i(a)h(hash)f
+(chain)f(\(i.e.)h(the)g(k)o(e)o(y)g(is)h(hashed)396 3647
+y(to)g(generate)e(the)h(ne)o(xt)f(k)o(e)o(y\).)g(Thus,)h(only)f(by)h
+(kno)n(wing)e(the)i(initial)h(k)o(e)o(y)e(the)i(inte)o(grity)e(of)g
+(the)i(log)f(\002le)g(can)g(be)396 3755 y(assured.)-2
+3922 y
+SDict begin H.S end
+ -2 3922 a -2 3922 a
+SDict begin 13 H.A end
+ -2 3922 a -2 3922 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1211) cvn H.B /DEST pdfmark
+end
+ -2 3922
+a 396 4029 a FC(The)g(mail)g(with)h(the)f(k)o(e)o(y)g(looks)f(lik)o(e:)
+-2 4130 y
+SDict begin H.S end
+ -2 4130 a -2 4130 a
+SDict begin 11.7 H.A end
+ -2 4130 a -2 4130 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1212) cvn H.B /DEST pdfmark
+end
+ -2
+4130 a 486 4209 a Fr(-----BEGIN)43 b(MESSAGE-----)486
+4306 y(message)486 4403 y(-----BEGIN)g(LOGKEY-----)486
+4500 y(Key\(48)h(chars\)[timestamp])486 4598 y(-----BEGIN)f
+(SIGNATURE-----)486 4695 y(signature)486 4792 y(ID)h(TRAIL_ID:hostname)
+486 4889 y(-----END)f(MESSAGE-----)-2 4891 y
+SDict begin H.S end
+ -2 4891
+a -2 4891 a
+SDict begin 11.7 H.A end
+ -2 4891 a -2 4891 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1213) cvn H.B /DEST pdfmark
+end
+ -2 4891 a -2 5057 a
+SDict begin H.S end
+ -2
+5057 a -2 5057 a
+SDict begin 11.7 H.A end
+ -2 5057 a -2 5057 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1215) cvn H.B /DEST pdfmark
+end
+ -2 5057 a 562 5152
+a Fw(Integrity)19 b(veri\002cation:)1322 5152 y
+SDict begin H.S end
+ 1322
+5152 a 1322 5152 a
+SDict begin 11.7 H.A end
+ 1322 5152 a 1322 5152 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1216) cvn H.B /DEST pdfmark
+end
+ 1322 5152
+a Fq(T)-9 b(o)20 b(v)n(er)q(ify)h(the)e(log)h(\002le')l(s)g(integ)o(r)q
+(ity)8 b Fv(,)18 b(a)j(con)o(v)n(enience)c(function)i(is)i(pro)o
+(vided:)-2 5210 y
+SDict begin H.S end
+ -2 5210 a -2 5210 a
+SDict begin 11.7 H.A end
+ -2 5210 a -2 5210
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1217) cvn H.B /DEST pdfmark
+end
+ -2 5210 a -2 5210 a
+SDict begin H.S end
+ -2 5210 a -2 5210 a
+SDict begin 11.7 H.A end
+ -2 5210 a -2
+5210 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1218) cvn H.B /DEST pdfmark
+end
+ -2 5210 a 562 5291 a Fw(samhain)e(-L)978 5291
+y
+SDict begin H.S end
+ 978 5291 a 978 5291 a
+SDict begin 11.7 H.A end
+ 978 5291 a 978 5291 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1219) cvn H.B /DEST pdfmark
+end
+ 978 5291
+a Fm(/log/file/path)p Black 3661 5805 a Fx(29)p Black
+eop end
+%%Page: 30 35
+TeXDict begin 30 34 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.30) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2239 104 a
+Fx(Chapter)20 b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d
+(facilities)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 11.7 H.A end
+ -2 226
+a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1220) cvn H.B /DEST pdfmark
+end
+ -2 226 a 562 309 a Fv(When)g(encounter)q(ing)e(the)j(star)s
+(t)h(of)f(an)g(audit)f(tr)o(ail,)g(y)o(ou)h(will)g(then)f(be)h(ask)o
+(ed)g(f)n(or)g(the)g(k)o(e)o(y)g(\(as)h(sent)f(to)g(y)o(ou)g(b)o(y)562
+406 y(e-mail\).)g(Y)-10 b(ou)19 b(can)i(then:)e(\(i\))h(hit)1490
+406 y
+SDict begin H.S end
+ 1490 406 a 1490 406 a
+SDict begin 11.7 H.A end
+ 1490 406 a 1490 406 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1221) cvn H.B /DEST pdfmark
+end
+ 1490
+406 a Fw(return)g Fv(to)g(skip)h(signature)d(v)n(er)q(i\002cation,)h
+(\(ii\))g(enter)g(the)h(k)o(e)o(y)g(\(without)e(the)562
+503 y(appended)f(timestamp\),)i(or)i(\(iii\))e(enter)g(the)h(path)f(to)
+h(a)g(\002le)g(that)g(contains)f(the)h(k)o(e)o(y)g(\(e)o(.g.)f(the)g
+(mail)h(bo)n(x\).)-2 561 y
+SDict begin H.S end
+ -2 561 a -2 561 a
+SDict begin 11.7 H.A end
+ -2 561 a
+-2 561 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1222) cvn H.B /DEST pdfmark
+end
+ -2 561 a 562 642 a Fv(If)h(y)o(ou)e(use)i(option)d(\(iii\),)h
+(the)h(path)f(m)o(ust)i(be)f(an)f(absolute)g(path)g(\(star)s(ting)f
+(with)i(a)g('/',)g(not)f(longer)g(than)g(48)562 739 y(chars)o(.)h(F)n
+(or)g(each)g(audit)f(tr)o(ail,)g(the)g(\002le)i(m)o(ust)g(contain)d(a)j
+(tw)o(o-line)d(b)o(loc)o(k)h(with)h(the)2937 739 y
+SDict begin H.S end
+ 2937
+739 a 2937 739 a
+SDict begin 11.7 H.A end
+ 2937 739 a 2937 739 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1223) cvn H.B /DEST pdfmark
+end
+ 2937 739 a Fq(-----BEGIN)g
+(LOGKEY)-10 b(-----)562 836 y Fv(line)19 b(f)n(ollo)o(w)o(ed)f(b)o(y)i
+(the)g(line)f(\()1375 836 y
+SDict begin H.S end
+ 1375 836 a 1375 836 a
+SDict begin 11.7 H.A end
+ 1375
+836 a 1375 836 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1224) cvn H.B /DEST pdfmark
+end
+ 1375 836 a Fq(K)m(e)o(y\(48)g(chars\)[timestamp])7
+b Fv(\))18 b(from)i(the)g(mail.)f(Additional)e(lines)i(bef)n(ore/after)
+562 933 y(an)o(y)h(such)h(tw)o(o-line)d(b)o(loc)o(k)i(are)f(ignored)f
+(\(in)i(par)s(ticular)l(,)e(if)i(y)o(ou)g(collect)f(all)h(e-mails)g
+(from)3159 933 y
+SDict begin H.S end
+ 3159 933 a 3159 933 a
+SDict begin 11.7 H.A end
+ 3159 933 a 3159
+933 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1225) cvn H.B /DEST pdfmark
+end
+ 3159 933 a Fv(samhain)f(in)h(a)562 1030 y(mailbo)n(x)f(\002le)o
+(,)h(y)o(ou)g(can)g(simply)h(specify)f(the)f(path)h(to)g(that)f(mailbo)
+n(x)g(\002le\).)39 1169 y
+SDict begin H.S end
+ 39 1169 a 39 1169 a
+SDict begin 11.7 H.A end
+ 39 1169
+a 39 1169 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1226) cvn H.B /DEST pdfmark
+end
+ 39 1169 a 745 1268 2668 17 v 745 2225 17
+957 v 1803 1464 a Fp(CA)-10 b(VEA)f(TS)786 1631 y
+SDict begin H.S end
+ 786
+1631 a 786 1631 a
+SDict begin 11.7 H.A end
+ 786 1631 a 786 1631 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1228) cvn H.B /DEST pdfmark
+end
+ 786 1631 a 96
+x Fv(V)-6 b(er)q(i\002cation)19 b(will)g(f)n(ail,)f(if)i(the)f
+(compiled-in)e(k)o(e)o(y)j(of)g(the)f(v)n(er)q(ifying)g(e)n(x)n(ecutab)
+o(le)e(is)j(diff)n(erent)786 1824 y(from)h(the)e(one)h(that)f(gener)o
+(ated)f(the)h(message\(s\))h(\(see)p 0 TeXcolorgray 2430
+1824 a
+SDict begin H.S end
+ 2430 1824 a Fv(Section)f(11.2)2847 1824 y
+SDict begin 11.7 H.L end
+ 2847
+1824 a 2847 1824 a
+SDict begin [ /Subtype /Link /Dest (0:KEYPAD) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2847 1824 a Black -1 w Fv(>\).)786
+2007 y
+SDict begin H.S end
+ 786 2007 a 786 2007 a
+SDict begin 11.7 H.A end
+ 786 2007 a 786 2007 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1230) cvn H.B /DEST pdfmark
+end
+ 786
+2007 a 80 x Fv(If)i(y)o(ou)f(use)g(a)g(pre-compiled)e(e)n(x)n(ecutab)o
+(le)f(from)j(some)g(binar)r(y)g(distr)q(ib)o(ution,)c(be)k(sure)g(to)
+786 2184 y(read)p 0 TeXcolorgray 957 2184 a
+SDict begin H.S end
+ 957 2184
+a Fv(Section)f(11.2)1374 2184 y
+SDict begin 11.7 H.L end
+ 1374 2184 a 1374 2184
+a
+SDict begin [ /Subtype /Link /Dest (0:KEYPAD) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1374 2184 a Black -2 w Fv(>)i(carefully)-7 b(.)p 3396
+2225 17 957 v 745 2241 2668 17 v -2 2418 a
+SDict begin H.S end
+ -2 2418 a
+-2 2418 a
+SDict begin 13 H.A end
+ -2 2418 a -2 2418 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CONFIGURATION-LOGSERVER) cvn
+H.B /DEST pdfmark end
+ -2 2418 a 320 x Fu(4.6.)39
+b(Log)g(ser)q(ver)1013 2738 y
+SDict begin H.S end
+ 1013 2738 a 1013 2738 a
+SDict begin 22.464 H.A end
+
+1013 2738 a 1013 2738 a
+SDict begin [ /View [/XYZ H.V] /Dest (6.26.1) cvn H.B /DEST pdfmark
+end
+ 1013 2738 a -2 2936 a
+SDict begin H.S end
+ -2 2936
+a -2 2936 a
+SDict begin 13 H.A end
+ -2 2936 a -2 2936 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1234) cvn H.B /DEST pdfmark
+end
+ -2 2936 a -2 2936 a
+SDict begin H.S end
+ -2
+2936 a -2 2936 a
+SDict begin 13 H.A end
+ -2 2936 a -2 2936 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1235) cvn H.B /DEST pdfmark
+end
+ -2 2936 a -2 3060
+a
+SDict begin H.S end
+ -2 3060 a -2 3060 a
+SDict begin 13 H.A end
+ -2 3060 a -2 3060 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1237) cvn H.B /DEST pdfmark
+end
+ -2 3060 a 396
+3136 a FC(Serv)o(er)19 b(address)-2 3137 y
+SDict begin H.S end
+ -2 3137 a
+-2 3137 a
+SDict begin 13 H.A end
+ -2 3137 a -2 3137 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1238) cvn H.B /DEST pdfmark
+end
+ -2 3137 a Black Black 562
+3286 a
+SDict begin H.S end
+ 562 3286 a 562 3286 a
+SDict begin 13 H.A end
+ 562 3286 a 562 3286 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1239) cvn H.B /DEST pdfmark
+end
+ 562
+3286 a 562 3286 a
+SDict begin H.S end
+ 562 3286 a 562 3286 a
+SDict begin 13 H.A end
+ 562 3286 a 562
+3286 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1240) cvn H.B /DEST pdfmark
+end
+ 562 3286 a Fy(SetLogSer)o(v)o(er=)1093 3286 y
+SDict begin H.S end
+
+1093 3286 a 1093 3286 a
+SDict begin 13 H.A end
+ 1093 3286 a 1093 3286 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1241) cvn H.B /DEST pdfmark
+end
+ 1093
+3286 a Fl(my.server.address)-2 3469 y
+SDict begin H.S end
+ -2 3469 a -2 3469
+a
+SDict begin 13 H.A end
+ -2 3469 a -2 3469 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1242) cvn H.B /DEST pdfmark
+end
+ -2 3469 a 562 3560 a FC(Y)-9 b(ou)20
+b(ha)n(v)o(e)f(to)i(specify)e(the)i(serv)o(er)e(address,)g(unless)i(it)
+g(is)g(already)e(compiled)g(in.)h(It)g(is)h(possible)f(to)h(specify)562
+3668 y(a)g(second)e(serv)o(er)h(that)g(will)h(be)f(used)g(as)h(backup.)
+-2 3686 y
+SDict begin H.S end
+ -2 3686 a -2 3686 a
+SDict begin 11.7 H.A end
+ -2 3686 a -2 3686 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1243) cvn H.B /DEST pdfmark
+end
+ -2
+3686 a -2 3810 a
+SDict begin H.S end
+ -2 3810 a -2 3810 a
+SDict begin 11.7 H.A end
+ -2 3810 a -2 3810
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1245) cvn H.B /DEST pdfmark
+end
+ -2 3810 a 728 3889 a Fw(NO)m(TE:)g Fv(If)f(y)o(ou)g(w)o(ant)f(to)h
+(store)g(the)g(con\002gur)o(ation)d(\002le)k(on)f(the)f(ser)r(v)n(er)l
+(,)i(the)f(ser)r(v)n(er)g(address)g(m)o(ust)h(be)728
+3986 y(compiled)e(in.)39 4476 y
+SDict begin H.S end
+ 39 4476 a 39 4476 a
+SDict begin 13 H.A end
+ 39
+4476 a 39 4476 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:LOGSERVERDETAILS) cvn H.B /DEST
+pdfmark end
+ 39 4476 a 396 4804 a Fp(4.6.1.)36 b(Details)1119
+4804 y
+SDict begin H.S end
+ 1119 4804 a 1119 4804 a
+SDict begin 18.72 H.A end
+ 1119 4804 a 1119 4804
+a
+SDict begin [ /View [/XYZ H.V] /Dest (6.26.10.2) cvn H.B /DEST pdfmark
+end
+ 1119 4804 a -2 4972 a
+SDict begin H.S end
+ -2 4972 a -2 4972 a
+SDict begin 13 H.A end
+ -2 4972 a
+-2 4972 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1248) cvn H.B /DEST pdfmark
+end
+ -2 4972 a 396 5078 a FC(During)19 b(temporary)f(connection)g
+(f)o(ailures,)i(messages)g(are)g(stored)g(in)g(a)h(FIFO)g(queue)e(in)h
+(memory)-5 b(.)18 b(The)396 5186 y(maximum)h(number)f(of)i(stored)g
+(messages)g(is)h(128.)e(After)h(a)h(connection)d(f)o(ailure,)2814
+5186 y
+SDict begin H.S end
+ 2814 5186 a 2814 5186 a
+SDict begin 13 H.A end
+ 2814 5186 a 2814 5186
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1249) cvn H.B /DEST pdfmark
+end
+ 2814 5186 a FC(samhain)i(will)h(mak)o(e)e(the)i(ne)o(xt)396
+5294 y(attempt)f(only)f(after)h(a)h(deadtime)e(that)h(starts)h(with)g
+(1)f(sec)h(and)e(doubles)g(after)h(each)g(unsuccessful)f(attempt)h
+(\(max)396 5402 y(is)h(2048)e(sec\).)h(A)h(re-connection)c(attempt)j
+(is)h(actually)f(only)f(made)h(for)f(the)i(ne)o(xt)e(message)h(after)g
+(the)g(deadtime)p Black 3661 5805 a Fx(30)p Black eop
+end
+%%Page: 31 36
+TeXDict begin 31 35 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.31) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2239 104 a
+Fx(Chapter)20 b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d
+(facilities)p Black 396 309 a FC(--)i(you)g(should)f(send)h(timestamps)
+g(\(i.e.)g(set)h(the)f(threshold)f(to)2232 309 y
+SDict begin H.S end
+ 2232
+309 a 2232 309 a
+SDict begin 13 H.A end
+ 2232 309 a 2232 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1250) cvn H.B /DEST pdfmark
+end
+ 2232 309 a Fx(mark)q
+FC(\))h(to)h(ensure)e(re-connection)e(attempts)j(for)396
+417 y(f)o(ailed)g(connections.)-2 584 y
+SDict begin H.S end
+ -2 584 a -2 584
+a
+SDict begin 13 H.A end
+ -2 584 a -2 584 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1251) cvn H.B /DEST pdfmark
+end
+ -2 584 a 396 691 a FC(It)h(is)g(possible)f(to)g
+(specify)g(tw)o(o)g(log)g(serv)o(ers)g(in)g(the)g(client)g
+(con\002guration)e(\002le.)i(The)g(\002rst)h(one)f(will)h(be)f(used)g
+(by)396 799 y(def)o(ault)g(\(primary\),)d(and)j(the)g(second)g(one)f
+(as)i(f)o(allback)e(in)i(case)f(of)g(a)h(connection)d(f)o(ailure)i
+(with)g(the)g(primary)f(log)396 906 y(serv)o(er)-5 b(.)-2
+1001 y
+SDict begin H.S end
+ -2 1001 a -2 1001 a
+SDict begin 13 H.A end
+ -2 1001 a -2 1001 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CONFIGURATION-EXTERNAL) cvn
+H.B /DEST pdfmark end
+ -2 1001
+a 376 x Fu(4.7.)39 b(External)f(facilities)1459 1377
+y
+SDict begin H.S end
+ 1459 1377 a 1459 1377 a
+SDict begin 22.464 H.A end
+ 1459 1377 a 1459 1377 a
+SDict begin [ /View [/XYZ H.V] /Dest (6.27.1) cvn H.B /DEST pdfmark
+end
+ 1459
+1377 a -2 1545 a
+SDict begin H.S end
+ -2 1545 a -2 1545 a
+SDict begin 13 H.A end
+ -2 1545 a -2 1545
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1254) cvn H.B /DEST pdfmark
+end
+ -2 1545 a -2 1545 a
+SDict begin H.S end
+ -2 1545 a -2 1545 a
+SDict begin 13 H.A end
+ -2 1545 a -2
+1545 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1255) cvn H.B /DEST pdfmark
+end
+ -2 1545 a 396 1651 a FC(samhain)20 b(can)g(in)m(v)n(ok)o(e)f(e)o
+(xternal)g(scripts/programs)f(for)h(logging)g(\(i.e.)h(to)g(implement)f
+(support)g(for)g(pagers)h(etc.\).)396 1759 y(This)h(is)g(e)o(xplained)d
+(in)i(detail)h(in)p 0 TeXcolorgray 1359 1759 a
+SDict begin H.S end
+ 1359 1759
+a FC(Chapter)f(7)1685 1759 y
+SDict begin 13 H.L end
+ 1685 1759 a 1685 1759 a
+SDict begin [ /Subtype /Link /Dest (0:EXTERN) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+
+1685 1759 a Black -1 w FC(>.)-2 1787 y
+SDict begin H.S end
+ -2 1787 a -2 1787
+a
+SDict begin 13 H.A end
+ -2 1787 a -2 1787 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CONSOLEDETAILS) cvn H.B /DEST
+pdfmark end
+ -2 1787 a 359 x Fu(4.8.)39 b(Console)845
+2146 y
+SDict begin H.S end
+ 845 2146 a 845 2146 a
+SDict begin 22.464 H.A end
+ 845 2146 a 845 2146 a
+SDict begin [ /View [/XYZ H.V] /Dest (6.28.1) cvn H.B /DEST pdfmark
+end
+ 845
+2146 a -2 2314 a
+SDict begin H.S end
+ -2 2314 a -2 2314 a
+SDict begin 13 H.A end
+ -2 2314 a -2 2314
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1259) cvn H.B /DEST pdfmark
+end
+ -2 2314 a 396 2420 a FC(Up)20 b(to)h(tw)o(o)f(console)g(de)n(vices)f
+(are)h(supported,)e(both)i(of)g(which)f(may)h(also)h(be)f(named)f
+(pipes.)h(If)g(running)e(as)396 2528 y(daemon,)701 2528
+y
+SDict begin H.S end
+ 701 2528 a 701 2528 a
+SDict begin 13 H.A end
+ 701 2528 a 701 2528 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1260) cvn H.B /DEST pdfmark
+end
+ 701 2528
+a FC(samhain)h(will)i(use)1279 2528 y
+SDict begin H.S end
+ 1279 2528 a 1279
+2528 a
+SDict begin 13 H.A end
+ 1279 2528 a 1279 2528 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1261) cvn H.B /DEST pdfmark
+end
+ 1279 2528 a Fr(/dev/console)e
+FC(for)h(output,)e(otherwise)i(stdout.)f(On)i(Linux,)396
+2636 y
+SDict begin H.S end
+ 396 2636 a 396 2636 a
+SDict begin 13 H.A end
+ 396 2636 a 396 2636 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1262) cvn H.B /DEST pdfmark
+end
+ 396
+2636 a Fx(_P)-7 b(A)m(TH_CONSOLE)21 b FC(will)g(be)f(used)g(instead)g
+(of)1836 2636 y
+SDict begin H.S end
+ 1836 2636 a 1836 2636 a
+SDict begin 13 H.A end
+ 1836 2636 a 1836
+2636 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1263) cvn H.B /DEST pdfmark
+end
+ 1836 2636 a Fr(/dev/console)p FC(,)e(if)j(it)g(is)g(de\002ned)e
+(in)h(the)h(\002le)396 2744 y
+SDict begin H.S end
+ 396 2744 a 396 2744 a
+SDict begin 13 H.A end
+ 396
+2744 a 396 2744 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1264) cvn H.B /DEST pdfmark
+end
+ 396 2744 a Fr(/usr/include/paths.h)p
+FC(.)-2 2922 y
+SDict begin H.S end
+ -2 2922 a -2 2922 a
+SDict begin 13 H.A end
+ -2 2922 a -2 2922
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1265) cvn H.B /DEST pdfmark
+end
+ -2 2922 a 396 3018 a FC(Y)-9 b(ou)20 b(can)g(o)o(v)o(erride)e(this)i
+(at)h(compile)e(time,)i(or)e(in)i(the)1978 3018 y
+SDict begin H.S end
+ 1978
+3018 a 1978 3018 a
+SDict begin 13 H.A end
+ 1978 3018 a 1978 3018 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1266) cvn H.B /DEST pdfmark
+end
+ 1978 3018
+a Fy([Misc])g FC(section)f(of)g(the)g(con\002guration)d(\002le)k(with)f
+(the)396 3126 y
+SDict begin H.S end
+ 396 3126 a 396 3126 a
+SDict begin 13 H.A end
+ 396 3126 a 396
+3126 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1267) cvn H.B /DEST pdfmark
+end
+ 396 3126 a Fy(SetConsole=)836 3126 y
+SDict begin H.S end
+ 836 3126
+a 836 3126 a
+SDict begin 13 H.A end
+ 836 3126 a 836 3126 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1268) cvn H.B /DEST pdfmark
+end
+ 836 3126 a Fl(device)g
+FC(option.)e(Up)j(to)f(tw)o(o)g(console)g(de)n(vices)f(are)i
+(supported,)c(both)j(of)g(which)f(may)h(also)h(be)396
+3234 y(named)e(pipes)h(\(use)g(the)1116 3234 y
+SDict begin H.S end
+ 1116 3234
+a 1116 3234 a
+SDict begin 13 H.A end
+ 1116 3234 a 1116 3234 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1269) cvn H.B /DEST pdfmark
+end
+ 1116 3234 a Fy(SetConsole)f
+FC(option)g(twice)i(to)f(set)h(both)f(de)n(vices\).)-2
+3252 y
+SDict begin H.S end
+ -2 3252 a -2 3252 a
+SDict begin 11.7 H.A end
+ -2 3252 a -2 3252 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1270) cvn H.B /DEST pdfmark
+end
+ -2 3252
+a -2 3376 a
+SDict begin H.S end
+ -2 3376 a -2 3376 a
+SDict begin 11.7 H.A end
+ -2 3376 a -2 3376 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1272) cvn H.B /DEST pdfmark
+end
+ -2
+3376 a 562 3456 a Fw(Switc)o(hing)f(off:)h Fv(In)o(v)n(ar)q(iab)o(ly)-7
+b(,)17 b(some)j(users)h(set)1953 3456 y
+SDict begin H.S end
+ 1953 3456 a 1953
+3456 a
+SDict begin 11.7 H.A end
+ 1953 3456 a 1953 3456 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1273) cvn H.B /DEST pdfmark
+end
+ 1953 3456 a Fw(SetConsole=)2411
+3456 y
+SDict begin H.S end
+ 2411 3456 a 2411 3456 a
+SDict begin 11.7 H.A end
+ 2411 3456 a 2411 3456
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1274) cvn H.B /DEST pdfmark
+end
+ 2411 3456 a Fm(/dev/null)g Fv(to)f(s)n(witch)g(off)f(console)h
+(logging.)562 3553 y(This)g(is)h(highly)e(ineff)n(ectiv)n(e)o(,)f(as)i
+(the)g(de)n(vice)f(will)h(be)g(opened,)d(and)j(the)g(message)f(wr)q
+(itten)g(to)h(it,)g(f)n(or)g(e)n(v)n(er)r(y)562 3650
+y(log)g(message)o(.)f(The)h(correct)g(w)o(a)n(y)g(is)h(to)f(use)1874
+3650 y
+SDict begin H.S end
+ 1874 3650 a 1874 3650 a
+SDict begin 11.7 H.A end
+ 1874 3650 a 1874 3650
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1275) cvn H.B /DEST pdfmark
+end
+ 1874 3650 a Fw(PrintSe)o(verity=)2381 3650 y
+SDict begin H.S end
+ 2381 3650
+a 2381 3650 a
+SDict begin 11.7 H.A end
+ 2381 3650 a 2381 3650 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1276) cvn H.B /DEST pdfmark
+end
+ 2381 3650 a Fm(none)f
+Fv(in)h(the)2764 3650 y
+SDict begin H.S end
+ 2764 3650 a 2764 3650 a
+SDict begin 11.7 H.A end
+ 2764
+3650 a 2764 3650 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1277) cvn H.B /DEST pdfmark
+end
+ 2764 3650 a Fq([Log])25 b Fv(section)20
+b(of)g(the)562 3747 y(con\002gur)o(ation)e(\002le)i(\(or)g(the)g
+(command)g(line)f(s)n(witch)h('-p)g(none'\).)-2 3980
+y
+SDict begin H.S end
+ -2 3980 a -2 3980 a
+SDict begin 13 H.A end
+ -2 3980 a -2 3980 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:PRELUDEDETAILS) cvn H.B /DEST
+pdfmark end
+ -2 3980 a 377
+x Fu(4.9.)39 b(Prelude)805 4357 y
+SDict begin H.S end
+ 805 4357 a 805 4357
+a
+SDict begin 22.464 H.A end
+ 805 4357 a 805 4357 a
+SDict begin [ /View [/XYZ H.V] /Dest (6.29.1) cvn H.B /DEST pdfmark
+end
+ 805 4357 a -2 4359 a
+SDict begin H.S end
+ -2 4359
+a -2 4359 a
+SDict begin 11.7 H.A end
+ -2 4359 a -2 4359 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1280) cvn H.B /DEST pdfmark
+end
+ -2 4359 a -2 4483 a
+SDict begin H.S end
+ -2
+4483 a -2 4483 a
+SDict begin 11.7 H.A end
+ -2 4483 a -2 4483 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1282) cvn H.B /DEST pdfmark
+end
+ -2 4483 a 562 4578
+a Fw(REQ)o(UIREMENTS:)20 b Fv(This)g(f)n(acility)f(requires)g(that)g(y)
+o(ou)h(ha)o(v)n(e)f(compiled)g(with)h(the)2950 4578 y
+SDict begin H.S end
+
+2950 4578 a 2950 4578 a
+SDict begin 11.7 H.A end
+ 2950 4578 a 2950 4578 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1283) cvn H.B /DEST pdfmark
+end
+ 2950
+4578 a Fq(--with-prelude)e Fv(option)h(to)562 4675 y(include)g(suppor)s
+(t)g(f)n(or)g(prelude)o(.)f(Of)j(course)f(y)o(ou)f(need)g(the)h
+(libprelude)d(client)i(libr)o(ar)r(y)h(f)n(or)f(this)h(to)g(w)o(or)q
+(k.)-2 4991 y
+SDict begin H.S end
+ -2 4991 a -2 4991 a
+SDict begin 13 H.A end
+ -2 4991 a -2 4991 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1284) cvn H.B /DEST pdfmark
+end
+
+-2 4991 a 396 5099 a FC(F)o(or)g(Prelude)f(0.8,)h(timestamp)f(messages)
+i(will)g(automatically)d(be)j(con)m(v)o(erted)c(to)2802
+5099 y
+SDict begin H.S end
+ 2802 5099 a 2802 5099 a
+SDict begin 13 H.A end
+ 2802 5099 a 2802 5099
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1285) cvn H.B /DEST pdfmark
+end
+ 2802 5099 a FC(Prelude)j(heartbeat)f(messages.)p Black
+3661 5805 a Fx(31)p Black eop end
+%%Page: 32 37
+TeXDict begin 32 36 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.32) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2239 104 a
+Fx(Chapter)20 b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d
+(facilities)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226
+a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1286) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309 a FC(F)o(or)i(Prelude)f(0.9,)h(timestamp)f
+(messages)i(are)f(dropped,)d(and)j(the)g(b)n(uilt-in)g(heartbeat)f
+(mechanism)g(of)h(the)396 417 y(libprelude)f(library)g(is)i(used.)-2
+435 y
+SDict begin H.S end
+ -2 435 a -2 435 a
+SDict begin 11.7 H.A end
+ -2 435 a -2 435 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1287) cvn H.B /DEST pdfmark
+end
+ -2 435 a -2
+559 a
+SDict begin H.S end
+ -2 559 a -2 559 a
+SDict begin 11.7 H.A end
+ -2 559 a -2 559 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1289) cvn H.B /DEST pdfmark
+end
+ -2 559 a 562
+638 a Fw(Note:)f Fv(The)f(f)n(ollo)o(wing)f(con\002gur)o(ation)f
+(options)i(can)h(only)g(be)g(used)g(with)f(libprelude)e(0.9.)i(The)h
+(should)f(be)562 735 y(placed)g(the)h([Misc])h(section)e(of)h(the)g
+(con\002gur)o(ation)e(\002le)o(,)i(if)g(y)o(ou)f(use)i(them.)e(The)h
+('PreludeMapT)-9 b(o)m(...)i(')15 b(options)562 833 y(do)20
+b(not)g(aff)n(ect)f(in)h(an)o(y)g(w)o(a)n(y)g(whether)f(a)h(message)g
+(is)h(repor)s(ted)d(b)o(y)i(samhain)f(to)h(the)g(prelude)e(manager)g
+(\(f)n(or)562 930 y(this)i(there)e(is)i('PreludeSe)n(v)n(er)q(ity')c
+(in)j(the)g([Log])g(section\);)f(the)o(y)h(only)g(aff)n(ect)g(the)g
+('Impact)g(se)n(v)n(er)q(ity')g(sho)o(wn)g(on)562 1027
+y(the)h(prelude)e(side)o(.)-2 1342 y
+SDict begin H.S end
+ -2 1342 a -2 1342
+a
+SDict begin 13 H.A end
+ -2 1342 a -2 1342 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1290) cvn H.B /DEST pdfmark
+end
+ -2 1342 a -2 1342 a
+SDict begin H.S end
+ -2 1342 a -2
+1342 a
+SDict begin 13 H.A end
+ -2 1342 a -2 1342 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1291) cvn H.B /DEST pdfmark
+end
+ -2 1342 a -2 1508 a
+SDict begin H.S end
+ -2 1508
+a -2 1508 a
+SDict begin 13 H.A end
+ -2 1508 a -2 1508 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1293) cvn H.B /DEST pdfmark
+end
+ -2 1508 a 396 1616 a
+FC(PreludePro\002le)-2 1617 y
+SDict begin H.S end
+ -2 1617 a -2 1617 a
+SDict begin 13 H.A end
+ -2
+1617 a -2 1617 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1294) cvn H.B /DEST pdfmark
+end
+ -2 1617 a Black Black 562 1766 a
+SDict begin H.S end
+ 562
+1766 a 562 1766 a
+SDict begin 13 H.A end
+ 562 1766 a 562 1766 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1295) cvn H.B /DEST pdfmark
+end
+ 562 1766 a 562
+1766 a
+SDict begin H.S end
+ 562 1766 a 562 1766 a
+SDict begin 13 H.A end
+ 562 1766 a 562 1766 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1296) cvn H.B /DEST pdfmark
+end
+ 562
+1766 a Fy(Pr)o(eludePr)o(o\002le=)1120 1766 y
+SDict begin H.S end
+ 1120 1766
+a 1120 1766 a
+SDict begin 13 H.A end
+ 1120 1766 a 1120 1766 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1297) cvn H.B /DEST pdfmark
+end
+ 1120 1766 a Fl(profile_name)-2
+1942 y
+SDict begin H.S end
+ -2 1942 a -2 1942 a
+SDict begin 13 H.A end
+ -2 1942 a -2 1942 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1298) cvn H.B /DEST pdfmark
+end
+ -2 1942
+a 562 2040 a FC(Specify)i(the)g(pro\002le)f(to)i(use.)f(The)g(def)o
+(ault)f(is)i(')-5 b(samhain'.)-2 2241 y
+SDict begin H.S end
+ -2 2241 a -2
+2241 a
+SDict begin 13 H.A end
+ -2 2241 a -2 2241 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1300) cvn H.B /DEST pdfmark
+end
+ -2 2241 a 396 2349 a FC(PreludeMapT)e(oInfo)
+-2 2367 y
+SDict begin H.S end
+ -2 2367 a -2 2367 a
+SDict begin 13 H.A end
+ -2 2367 a -2 2367 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1301) cvn H.B /DEST pdfmark
+end
+ -2
+2367 a Black Black 562 2498 a
+SDict begin H.S end
+ 562 2498 a 562 2498 a
+SDict begin 13 H.A end
+ 562
+2498 a 562 2498 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1302) cvn H.B /DEST pdfmark
+end
+ 562 2498 a 562 2498 a
+SDict begin H.S end
+ 562 2498 a 562
+2498 a
+SDict begin 13 H.A end
+ 562 2498 a 562 2498 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1303) cvn H.B /DEST pdfmark
+end
+ 562 2498 a Fy(Pr)o(eludeMapT)f(oInf)n(o=)
+1286 2498 y
+SDict begin H.S end
+ 1286 2498 a 1286 2498 a
+SDict begin 13 H.A end
+ 1286 2498 a 1286
+2498 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1304) cvn H.B /DEST pdfmark
+end
+ 1286 2498 a Fl(list)44 b(of)g(samhain)g(severities)-2
+2681 y
+SDict begin H.S end
+ -2 2681 a -2 2681 a
+SDict begin 13 H.A end
+ -2 2681 a -2 2681 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1305) cvn H.B /DEST pdfmark
+end
+ -2 2681
+a 562 2772 a FC(The)20 b(se)n(v)o(erities)g(that)g(should)g(be)g
+(mapped)e(to)j(impact)e(se)n(v)o(erity)h('info')f(for)g(prelude.)g
+(\(def)o(ault:)g(none\).)-2 2974 y
+SDict begin H.S end
+ -2 2974 a -2 2974
+a
+SDict begin 13 H.A end
+ -2 2974 a -2 2974 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1307) cvn H.B /DEST pdfmark
+end
+ -2 2974 a 396 3082 a FC(PreludeMapT)-7
+b(oLo)n(w)-2 3100 y
+SDict begin H.S end
+ -2 3100 a -2 3100 a
+SDict begin 13 H.A end
+ -2 3100 a -2
+3100 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1308) cvn H.B /DEST pdfmark
+end
+ -2 3100 a Black Black 562 3231 a
+SDict begin H.S end
+ 562 3231 a 562
+3231 a
+SDict begin 13 H.A end
+ 562 3231 a 562 3231 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1309) cvn H.B /DEST pdfmark
+end
+ 562 3231 a 562 3231 a
+SDict begin H.S end
+ 562
+3231 a 562 3231 a
+SDict begin 13 H.A end
+ 562 3231 a 562 3231 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1310) cvn H.B /DEST pdfmark
+end
+ 562 3231 a Fy(Pr)o(eludeMapT)f
+(oInf)n(o=)1286 3231 y
+SDict begin H.S end
+ 1286 3231 a 1286 3231 a
+SDict begin 13 H.A end
+ 1286 3231
+a 1286 3231 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1311) cvn H.B /DEST pdfmark
+end
+ 1286 3231 a Fl(list)44 b(of)g(samhain)g(severities)-2
+3414 y
+SDict begin H.S end
+ -2 3414 a -2 3414 a
+SDict begin 13 H.A end
+ -2 3414 a -2 3414 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1312) cvn H.B /DEST pdfmark
+end
+ -2 3414
+a 562 3505 a FC(The)19 b(se)n(v)o(erities)g(that)h(should)e(be)h
+(mapped)f(to)h(impact)g(se)n(v)o(erity)f(')o(lo)n(w')h(for)g(prelude.)e
+(\(def)o(ault:)h(deb)n(ug,)g(info\).)-2 3706 y
+SDict begin H.S end
+ -2 3706
+a -2 3706 a
+SDict begin 13 H.A end
+ -2 3706 a -2 3706 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1314) cvn H.B /DEST pdfmark
+end
+ -2 3706 a 396 3814 a
+FC(PreludeMapT)-7 b(oMedium)-2 3832 y
+SDict begin H.S end
+ -2 3832 a -2 3832
+a
+SDict begin 13 H.A end
+ -2 3832 a -2 3832 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1315) cvn H.B /DEST pdfmark
+end
+ -2 3832 a Black Black 562 3964
+a
+SDict begin H.S end
+ 562 3964 a 562 3964 a
+SDict begin 13 H.A end
+ 562 3964 a 562 3964 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1316) cvn H.B /DEST pdfmark
+end
+ 562 3964
+a 562 3964 a
+SDict begin H.S end
+ 562 3964 a 562 3964 a
+SDict begin 13 H.A end
+ 562 3964 a 562 3964
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1317) cvn H.B /DEST pdfmark
+end
+ 562 3964 a Fy(Pr)o(eludeMapT)f(oMedium=)1439 3964 y
+SDict begin H.S end
+
+1439 3964 a 1439 3964 a
+SDict begin 13 H.A end
+ 1439 3964 a 1439 3964 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1318) cvn H.B /DEST pdfmark
+end
+ 1439
+3964 a Fl(list)45 b(of)g(samhain)e(severities)-2 4147
+y
+SDict begin H.S end
+ -2 4147 a -2 4147 a
+SDict begin 13 H.A end
+ -2 4147 a -2 4147 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1319) cvn H.B /DEST pdfmark
+end
+ -2 4147 a 562
+4238 a FC(The)20 b(se)n(v)o(erities)g(that)g(should)g(be)g(mapped)e(to)
+j(impact)e(se)n(v)o(erity)h('medium')e(for)h(prelude.)g(\(def)o(ault:)g
+(notice,)562 4346 y(w)o(arn,)h(err\).)-2 4547 y
+SDict begin H.S end
+ -2 4547
+a -2 4547 a
+SDict begin 13 H.A end
+ -2 4547 a -2 4547 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1321) cvn H.B /DEST pdfmark
+end
+ -2 4547 a 396 4655 a
+FC(PreludeMapT)-7 b(oHigh)-2 4673 y
+SDict begin H.S end
+ -2 4673 a -2 4673
+a
+SDict begin 13 H.A end
+ -2 4673 a -2 4673 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1322) cvn H.B /DEST pdfmark
+end
+ -2 4673 a Black Black 562 4804
+a
+SDict begin H.S end
+ 562 4804 a 562 4804 a
+SDict begin 13 H.A end
+ 562 4804 a 562 4804 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1323) cvn H.B /DEST pdfmark
+end
+ 562 4804
+a 562 4804 a
+SDict begin H.S end
+ 562 4804 a 562 4804 a
+SDict begin 13 H.A end
+ 562 4804 a 562 4804
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1324) cvn H.B /DEST pdfmark
+end
+ 562 4804 a Fy(Pr)o(eludeMapT)f(oHigh=)1316 4804 y
+SDict begin H.S end
+ 1316
+4804 a 1316 4804 a
+SDict begin 13 H.A end
+ 1316 4804 a 1316 4804 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1325) cvn H.B /DEST pdfmark
+end
+ 1316 4804
+a Fl(list)44 b(of)g(samhain)g(severities)-2 4987 y
+SDict begin H.S end
+ -2
+4987 a -2 4987 a
+SDict begin 13 H.A end
+ -2 4987 a -2 4987 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1326) cvn H.B /DEST pdfmark
+end
+ -2 4987 a 562 5078
+a FC(The)20 b(se)n(v)o(erities)g(that)g(should)g(be)g(mapped)e(to)j
+(impact)e(se)n(v)o(erity)h('high')e(for)i(prelude.)e(\(def)o(ault:)i
+(crit,)g(alert\).)39 5346 y
+SDict begin H.S end
+ 39 5346 a 39 5346 a
+SDict begin 13 H.A end
+ 39 5346
+a 39 5346 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:PRELUDE9) cvn H.B /DEST pdfmark
+end
+ 39 5346 a Black 3661 5805 a Fx(32)p Black
+eop end
+%%Page: 33 38
+TeXDict begin 33 37 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.33) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2239 104 a
+Fx(Chapter)20 b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d
+(facilities)p Black 396 313 a Fp(4.9.1.)36 b(Registering)e(to)g(a)f
+(Prelude)h(0.9)g(mana)o(g)q(er)2833 313 y
+SDict begin H.S end
+ 2833 313 a
+2833 313 a
+SDict begin 18.72 H.A end
+ 2833 313 a 2833 313 a
+SDict begin [ /View [/XYZ H.V] /Dest (6.29.11.2) cvn H.B /DEST pdfmark
+end
+ 2833 313 a -2 339 a
+SDict begin H.S end
+
+-2 339 a -2 339 a
+SDict begin 11.7 H.A end
+ -2 339 a -2 339 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1329) cvn H.B /DEST pdfmark
+end
+ -2 339 a -2 464 a
+SDict begin H.S end
+
+-2 464 a -2 464 a
+SDict begin 11.7 H.A end
+ -2 464 a -2 464 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1331) cvn H.B /DEST pdfmark
+end
+ -2 464 a 562 535
+a Fw(Sensor)19 b(name/pr)o(o\002le:)f Fv(F)n(or)h(libprelude)e(0.9,)j
+(the)f(def)n(ault)f(sensor)i(name/pro\002le)e(is)j(')l(samhain'.)d(Ho)o
+(w)o(e)n(v)n(er)l(,)562 632 y(v)n(ersion)i(2.0.6)f(of)1092
+632 y
+SDict begin H.S end
+ 1092 632 a 1092 632 a
+SDict begin 11.7 H.A end
+ 1092 632 a 1092 632 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1332) cvn H.B /DEST pdfmark
+end
+ 1092
+632 a Fv(samhain)g(still)h(had)f('Samhain')f(\(as)j(f)n(or)e
+(libprelude)e(0.8\).)i(F)n(or)h(v)n(ersions)g(of)3274
+632 y
+SDict begin H.S end
+ 3274 632 a 3274 632 a
+SDict begin 11.7 H.A end
+ 3274 632 a 3274 632 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1333) cvn H.B /DEST pdfmark
+end
+ 3274
+632 a Fv(samhain)f(later)562 729 y(than)g(2.0.6,)g(there)g(is)i(an)f
+(option)1530 729 y
+SDict begin H.S end
+ 1530 729 a 1530 729 a
+SDict begin 11.7 H.A end
+ 1530 729 a 1530
+729 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1334) cvn H.B /DEST pdfmark
+end
+ 1530 729 a Fw(PreludePr)o(o\002le=)2083 729 y
+SDict begin H.S end
+ 2083
+729 a 2083 729 a
+SDict begin 11.7 H.A end
+ 2083 729 a 2083 729 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1335) cvn H.B /DEST pdfmark
+end
+ 2083 729 a Fm(profile)f
+Fv(\(in)h(the)g([Misc])h(section\))e(to)h(set)h(a)562
+826 y(user-de\002ned)d(name/pro\002le)o(.)-2 1141 y
+SDict begin H.S end
+ -2
+1141 a -2 1141 a
+SDict begin 13 H.A end
+ -2 1141 a -2 1141 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1336) cvn H.B /DEST pdfmark
+end
+ -2 1141 a 396 1249
+a FC(In)i(order)f(to)h(re)o(gister)1036 1249 y
+SDict begin H.S end
+ 1036 1249
+a 1036 1249 a
+SDict begin 13 H.A end
+ 1036 1249 a 1036 1249 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1337) cvn H.B /DEST pdfmark
+end
+ 1036 1249 a FC(samhain)f(as)i(a)
+1481 1249 y
+SDict begin H.S end
+ 1481 1249 a 1481 1249 a
+SDict begin 13 H.A end
+ 1481 1249 a 1481
+1249 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1338) cvn H.B /DEST pdfmark
+end
+ 1481 1249 a FC(Prelude)e(sensor)m(,)h(you)f(need)g(to)i(run)e
+(on)h(the)g(sensor)g(host)g(and)g(on)g(the)396 1357 y(manager)f(host)h
+(the)984 1357 y
+SDict begin H.S end
+ 984 1357 a 984 1357 a
+SDict begin 13 H.A end
+ 984 1357 a 984
+1357 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1339) cvn H.B /DEST pdfmark
+end
+ 984 1357 a Fy(pr)o(elude-adduser)g FC(command.)-2
+1458 y
+SDict begin H.S end
+ -2 1458 a -2 1458 a
+SDict begin 11.7 H.A end
+ -2 1458 a -2 1458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1340) cvn H.B /DEST pdfmark
+end
+ -2 1458
+a -2 1458 a
+SDict begin H.S end
+ -2 1458 a -2 1458 a
+SDict begin 11.7 H.A end
+ -2 1458 a -2 1458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1341) cvn H.B /DEST pdfmark
+end
+ -2
+1458 a 396 1537 a Ft(sensor)43 b(#)759 1537 y
+SDict begin H.S end
+ 759 1537
+a 759 1537 a
+SDict begin 11.7 H.A end
+ 759 1537 a 759 1537 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1342) cvn H.B /DEST pdfmark
+end
+ 759 1537 a Fs(prelude-adduser)j
+(register)d(samhain)g("idmef:w)g(admin:r")g Fi(<)p Fs(manager)g(host)p
+Fi(>)396 1732 y Fr(-)i(Using)f(default)g(TLS)g(settings)f(from)i
+(/usr/local/etc/prelude/default/tls.c)o(onf:)486 1829
+y(-)g(Generated)e(key)h(size:)g(1024)g(bits.)486 1926
+y(-)h(Authority)e(certificate)g(lifetime:)g(unlimited.)486
+2023 y(-)i(Generated)e(certificate)g(lifetime:)g(unlimited.)396
+2217 y(-)i(Adding)f(analyzer)f(samhain.)486 2315 y(-)i(Creating)e
+(/usr/local/etc/prelude/profile/samhain..)o(.)486 2412
+y(-)i(Using)f(already)f(allocated)h(ident)g(for)g(samhain:)f
+(1312010545704259.)486 2509 y(-)i(Creating)e
+(/usr/local/var/spool/prelude/samhain...)396 2703 y(-)i(Registring)e
+(analyzer)h(samhain)f(to)i(localhost.)486 2897 y(You)f(now)h(need)f(to)
+g(start)g("prelude-adduser")e(on)j(the)f(server)g(host)g(where)486
+2994 y(you)g(need)g(to)h(register)e(to:)486 3189 y(use:)h
+("prelude-adduser)e(registration-server)g Fh(<)p Fr(analyzer)h(profile)
+p Fh(>)p Fr(")486 3286 y(example:)g("prelude-adduser)g
+(registration-server)e(prelude-manager")486 3480 y(This)j(is)h(used)f
+(in)g(order)g(to)h(register)e(the)i('sending')e(analyzer)g(to)i(the)f
+('receiving')486 3577 y(analyzer.)f Fh(<)p Fr(analyzer)g(profile)p
+Fh(>)h Fr(should)g(be)g(set)g(to)h(the)f(profile)g(name)g(of)h(the)486
+3674 y('receiving')e(analyzer,)g(the)i(one)f(where)g('sending')f
+(analyzer)h(will)g(register)f(to.)486 3869 y(Please)h(remember)f(that)h
+("prelude-adduser")e(should)i(be)h(used)f(to)g(register)486
+3966 y(every)g(server)g(used)g(by)g(this)h(analyzer.)486
+4160 y(Enter)f(the)g(one-shot)g(password)f(provided)h(by)g(the)h
+("prelude-adduser")d(program:)486 4354 y(-)j(Enter)f(registration)e
+(one)j(shot)f(password:)-2 4449 y
+SDict begin H.S end
+ -2 4449 a -2 4449 a
+SDict begin 11.7 H.A end
+
+-2 4449 a -2 4449 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1343) cvn H.B /DEST pdfmark
+end
+ -2 4449 a -2 4449 a
+SDict begin H.S end
+ -2 4449 a -2
+4449 a
+SDict begin 11.7 H.A end
+ -2 4449 a -2 4449 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1344) cvn H.B /DEST pdfmark
+end
+ -2 4449 a 396 4535 a Ft(manager)f(#)800
+4535 y
+SDict begin H.S end
+ 800 4535 a 800 4535 a
+SDict begin 11.7 H.A end
+ 800 4535 a 800 4535 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1345) cvn H.B /DEST pdfmark
+end
+ 800
+4535 a Fs(prelude-adduser)i(registration-serve)q(r)h(prelude-manager)
+396 4729 y Fr(-)f(Using)f(default)g(TLS)g(settings)f(from)i
+(/usr/local/etc/prelude/default/tls.c)o(onf:)486 4826
+y(-)g(Generated)e(key)h(size:)g(1024)g(bits.)486 4923
+y(-)h(Authority)e(certificate)g(lifetime:)g(unlimited.)486
+5020 y(-)i(Generated)e(certificate)g(lifetime:)g(unlimited.)396
+5215 y(-)i(Adding)f(analyzer)f(samhain.)486 5312 y(-)i(Creating)e
+(/usr/local/etc/prelude/profile/samhain..)o(.)p Black
+3661 5805 a Fx(33)p Black eop end
+%%Page: 34 39
+TeXDict begin 34 38 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.34) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1369) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2239 104 a Fx(Chapter)20
+b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d(facilities)p
+Black 486 309 a Fr(-)45 b(Using)f(already)f(allocated)h(ident)g(for)g
+(samhain:)f(1312010545704259.)486 406 y(-)i(Creating)e
+(/usr/local/var/spool/prelude/samhain...)396 600 y(-)i(Starting)e
+(registration)g(server.)486 697 y(-)i(generated)e(one-shot)g(password)h
+(is)g("fz64g2h2".)576 892 y(This)g(password)f(will)h(be)h(requested)e
+(by)i("prelude-adduser")d(in)i(order)g(to)h(connect.)576
+989 y(Please)e(remove)h(the)h(first)f(and)g(last)g(quote)g(from)g(this)
+g(password)g(before)g(using)g(it.)486 1183 y(-)h(Waiting)e(for)i(peers)
+f(install)f(request...)-2 1361 y
+SDict begin H.S end
+ -2 1361 a -2 1361 a
+SDict begin 13 H.A end
+
+-2 1361 a -2 1361 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1346) cvn H.B /DEST pdfmark
+end
+ -2 1361 a 396 1457 a FC(Y)-9 b(ou)20
+b(no)n(w)f(ha)n(v)o(e)h(to)g(type)g(in)g(the)1344 1457
+y
+SDict begin H.S end
+ 1344 1457 a 1344 1457 a
+SDict begin 13 H.A end
+ 1344 1457 a 1344 1457 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1347) cvn H.B /DEST pdfmark
+end
+ 1344
+1457 a Fx(one-shot)e(passwor)m(d)23 b FC(generated)18
+b(on)i("manager")e(at)j(the)f(passw)o(ord)g(prompt)e(on)396
+1565 y("sensor",)i(\(twice,)g(for)f(con\002rmation\).)f(Then)h(on)h
+("manager")e(you)h(will)i(be)f(ask)o(ed)g(to)h(appro)o(v)o(e)c(the)k
+(re)o(gistration.)396 1673 y(T)-7 b(ype)20 b('y',)f(and)h(you)f(are)h
+(\002nished.)-2 1857 y
+SDict begin H.S end
+ -2 1857 a -2 1857 a
+SDict begin 13 H.A end
+ -2 1857 a
+-2 1857 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1348) cvn H.B /DEST pdfmark
+end
+ -2 1857 a 396 1947 a FC(The)g(con\002guration)e(\002le)i(for)
+g(the)g(samhain)g(sensor)g(is)396 2055 y
+SDict begin H.S end
+ 396 2055 a 396
+2055 a
+SDict begin 13 H.A end
+ 396 2055 a 396 2055 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1349) cvn H.B /DEST pdfmark
+end
+ 396 2055 a Fr
+(/usr/local/etc/prelude/profile/samhain/co)o(nfig)-2
+2077 y
+SDict begin H.S end
+ -2 2077 a -2 2077 a
+SDict begin 13 H.A end
+ -2 2077 a -2 2077 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:PRELUDE8) cvn H.B /DEST pdfmark
+end
+ -2 2077
+a 396 2393 a Fp(4.9.2.)36 b(Registering)e(to)g(a)f(Prelude)h(0.8)g
+(mana)o(g)q(er)2833 2393 y
+SDict begin H.S end
+ 2833 2393 a 2833 2393 a
+SDict begin 18.72 H.A end
+ 2833
+2393 a 2833 2393 a
+SDict begin [ /View [/XYZ H.V] /Dest (6.29.12.2) cvn H.B /DEST pdfmark
+end
+ 2833 2393 a -2 2420 a
+SDict begin H.S end
+ -2 2420 a -2
+2420 a
+SDict begin 11.7 H.A end
+ -2 2420 a -2 2420 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1352) cvn H.B /DEST pdfmark
+end
+ -2 2420 a -2 2544 a
+SDict begin H.S end
+ -2 2544
+a -2 2544 a
+SDict begin 11.7 H.A end
+ -2 2544 a -2 2544 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1354) cvn H.B /DEST pdfmark
+end
+ -2 2544 a 562 2615 a
+Fw(Sensor)19 b(name/pr)o(o\002le:)f Fv(F)n(or)h(libprelude)e(0.8,)j
+(the)f(sensor)h(name/pro\002le)e(is)j('Samhain'.)-2 2930
+y
+SDict begin H.S end
+ -2 2930 a -2 2930 a
+SDict begin 13 H.A end
+ -2 2930 a -2 2930 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1355) cvn H.B /DEST pdfmark
+end
+ -2 2930 a 396
+3038 a FC(In)f(order)f(to)h(re)o(gister)1036 3038 y
+SDict begin H.S end
+ 1036
+3038 a 1036 3038 a
+SDict begin 13 H.A end
+ 1036 3038 a 1036 3038 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1356) cvn H.B /DEST pdfmark
+end
+ 1036 3038
+a FC(samhain)f(as)i(a)1481 3038 y
+SDict begin H.S end
+ 1481 3038 a 1481 3038
+a
+SDict begin 13 H.A end
+ 1481 3038 a 1481 3038 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1357) cvn H.B /DEST pdfmark
+end
+ 1481 3038 a FC(Prelude)e(sensor)m(,)h(you)f
+(need)g(to)i(run)e(on)h(the)g(Prelude)g(manager)e(the)396
+3146 y(command:)768 3146 y
+SDict begin H.S end
+ 768 3146 a 768 3146 a
+SDict begin 13 H.A end
+ 768
+3146 a 768 3146 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1358) cvn H.B /DEST pdfmark
+end
+ 768 3146 a Fy(manager)m(-adduser)p
+FC(,)g(and)i(on)g(the)g(client)g(the)g(command)2475 3146
+y
+SDict begin H.S end
+ 2475 3146 a 2475 3146 a
+SDict begin 13 H.A end
+ 2475 3146 a 2475 3146 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1359) cvn H.B /DEST pdfmark
+end
+ 2475
+3146 a Fy(sensor)m(-adduser)h(--sensor)o(name)396 3254
+y(Samhain)g(--uid)922 3254 y
+SDict begin H.S end
+ 922 3254 a 922 3254 a
+SDict begin 13 H.A end
+ 922
+3254 a 922 3254 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1360) cvn H.B /DEST pdfmark
+end
+ 922 3254 a Fl(0)g Fy(--manager)m(-addr)1573
+3254 y
+SDict begin H.S end
+ 1573 3254 a 1573 3254 a
+SDict begin 13 H.A end
+ 1573 3254 a 1573 3254
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1361) cvn H.B /DEST pdfmark
+end
+ 1573 3254 a Fl(x.x.x.x)5 b FC(.)-2 3437 y
+SDict begin H.S end
+ -2 3437 a
+-2 3437 a
+SDict begin 13 H.A end
+ -2 3437 a -2 3437 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1362) cvn H.B /DEST pdfmark
+end
+ -2 3437 a 396 3528 a FC(Both)20
+b(commands)f(are)h(interacti)n(v)o(e,)f(and)g(apparently)g(should)g(be)
+h(run)f(simultaneously)-5 b(,)18 b(where)396 3636 y
+SDict begin H.S end
+ 396
+3636 a 396 3636 a
+SDict begin 13 H.A end
+ 396 3636 a 396 3636 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1363) cvn H.B /DEST pdfmark
+end
+ 396 3636 a Fy(manager)m
+(-adduser)h FC(will)h(generate)f(a)h('one-shot)e(passw)o(ord')h(that)h
+(must)g(be)f(entered)g(in)3019 3636 y
+SDict begin H.S end
+ 3019 3636 a 3019
+3636 a
+SDict begin 13 H.A end
+ 3019 3636 a 3019 3636 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1364) cvn H.B /DEST pdfmark
+end
+ 3019 3636 a Fy(sensor)m(-adduser)p
+FC(.)h(This)396 3744 y(is)h(ho)n(w)f(it)h(looks)f(on)f(the)i(Prelude)e
+(manager:)-2 3845 y
+SDict begin H.S end
+ -2 3845 a -2 3845 a
+SDict begin 11.7 H.A end
+ -2 3845 a -2
+3845 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1365) cvn H.B /DEST pdfmark
+end
+ -2 3845 a -2 3845 a
+SDict begin H.S end
+ -2 3845 a -2 3845 a
+SDict begin 11.7 H.A end
+ -2 3845
+a -2 3845 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1366) cvn H.B /DEST pdfmark
+end
+ -2 3845 a 396 3924 a Ft(bash$)638 3924 y
+SDict begin H.S end
+
+638 3924 a 638 3924 a
+SDict begin 11.7 H.A end
+ 638 3924 a 638 3924 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1367) cvn H.B /DEST pdfmark
+end
+ 638 3924
+a Fs(manager-adduser)396 4215 y Fr(Generated)44 b(one-shot)f(password)h
+(is)g("0ltdgbgy".)396 4410 y(This)g(password)g(will)g(be)h(requested)e
+(by)h("sensor-adduser")f(in)h(order)g(to)h(connect.)396
+4507 y(Please)f(remove)g(the)g(first)g(and)h(last)f(quote)g(from)g
+(this)g(password)g(before)f(using)h(it.)396 4895 y(-)h(Waiting)f(for)g
+(install)g(request)f(from)h(Prelude)g(sensors...)396
+4993 y(-)h(Connection)e(from)h(127.0.0.1.)396 5090 y(sensor)g(choose)g
+(to)g(use)h(PLAINTEXT)e(communication)g(method.)396 5187
+y(successfully)g(created)h(user)g(calvin.)396 5381 y(Sensor)g
+(registered)f(correctly.)p Black 3661 5805 a Fx(34)p
+Black eop end
+%%Page: 35 40
+TeXDict begin 35 39 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.35) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2239 104 a
+Fx(Chapter)20 b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d
+(facilities)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226
+a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1368) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309 a FC(And)i(this)h(is)g(the)f(dialog)f(on)h
+(the)g(client:)396 489 y Ft(bash$)638 489 y
+SDict begin H.S end
+ 638 489 a
+638 489 a
+SDict begin 11.7 H.A end
+ 638 489 a 638 489 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1371) cvn H.B /DEST pdfmark
+end
+ 638 489 a Fs(sensor-adduser)46
+b(--sensorname)e(Samhain)f(--uid)f(0)f(--manager-addr)k(127.0.0.1)396
+780 y Fr(Now)g(please)e(start)h("manager-adduser")e(on)j(the)f(Manager)
+g(host)g(where)396 877 y(you)h(wish)f(to)g(add)h(the)f(new)g(user.)396
+1072 y(Please)g(remember)g(that)g(you)g(should)g(call)g
+("sensor-adduser")e(for)j(each)f(configured)396 1169
+y(Manager)g(entry.)396 1363 y(Press)g(enter)g(when)g(done.)396
+1654 y(Please)g(use)g(the)h(one-shot)e(password)h(provided)f(by)i(the)f
+("manager-adduser")e(program.)396 1849 y(Enter)i(registration)f(one)h
+(shot)h(password)e(:)396 1946 y(Please)h(confirm)g(one)g(shot)g
+(password)g(:)396 2043 y(connecting)f(to)i(Manager)f(host)g
+(\(127.0.0.1:5553\)...)d(Succeeded.)396 2237 y(Username)j(to)g(use)h
+(to)f(authenticate)f(:)i(calvin)396 2334 y(Please)f(enter)g(a)h
+(password)e(for)i(this)f(user)g(:)396 2432 y(Please)g(re-enter)g(the)g
+(password)f(\(comfirm\))h(:)396 2529 y(Register)g(user)g("calvin")f(?)i
+([y/n])f(:)h(y)396 2626 y(Plaintext)f(account)f(creation)h(succeed)f
+(with)i(Prelude)e(Manager.)396 2723 y(Allocated)h(ident)g(for)g
+(Samhain@somehost:)e(61534998304562071.)-2 2891 y
+SDict begin H.S end
+ -2
+2891 a -2 2891 a
+SDict begin 13 H.A end
+ -2 2891 a -2 2891 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1372) cvn H.B /DEST pdfmark
+end
+ -2 2891 a 396 2997
+a FC(The)20 b(libprelude)f(client)h(library)f(has)h(a)h
+(con\002guration)c(\002le)396 3105 y
+SDict begin H.S end
+ 396 3105 a 396 3105
+a
+SDict begin 13 H.A end
+ 396 3105 a 396 3105 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1373) cvn H.B /DEST pdfmark
+end
+ 396 3105 a Fr
+(/etc/prelude-sensors/sensors-default.conf)d FC(where)20
+b(you)f(can)h(con\002gure)e(e.g.)i(the)g(netw)o(ork)396
+3213 y(address)g(of)g(the)g(Prelude)g(manager)-5 b(.)-2
+3324 y
+SDict begin H.S end
+ -2 3324 a -2 3324 a
+SDict begin 13 H.A end
+ -2 3324 a -2 3324 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:NAGIOS) cvn H.B /DEST pdfmark
+end
+ -2 3324
+a 359 x Fu(4.10.)39 b(Using)f(samhain)g(with)h(na)o(gios)2207
+3683 y
+SDict begin H.S end
+ 2207 3683 a 2207 3683 a
+SDict begin 22.464 H.A end
+ 2207 3683 a 2207 3683
+a
+SDict begin [ /View [/XYZ H.V] /Dest (6.30.1) cvn H.B /DEST pdfmark
+end
+ 2207 3683 a -2 3881 a
+SDict begin H.S end
+ -2 3881 a -2 3881 a
+SDict begin 13 H.A end
+ -2 3881 a
+-2 3881 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1376) cvn H.B /DEST pdfmark
+end
+ -2 3881 a 396 3957 a FC(After)20 b(running)871
+3957 y
+SDict begin H.S end
+ 871 3957 a 871 3957 a
+SDict begin 13 H.A end
+ 871 3957 a 871 3957 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1377) cvn H.B /DEST pdfmark
+end
+ 871
+3957 a Fy(./con\002gur)o(e)p FC(,)f(you)g(will)i(\002nd)f(the)h(script)
+2060 3957 y
+SDict begin H.S end
+ 2060 3957 a 2060 3957 a
+SDict begin 13 H.A end
+ 2060 3957 a 2060
+3957 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1378) cvn H.B /DEST pdfmark
+end
+ 2060 3957 a Fr(check_samhain.pl)d FC(in)i(the)g(subdirectory)396
+4065 y
+SDict begin H.S end
+ 396 4065 a 396 4065 a
+SDict begin 13 H.A end
+ 396 4065 a 396 4065 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1379) cvn H.B /DEST pdfmark
+end
+ 396
+4065 a Fr(scripts/)g FC(of)g(the)g(samhain)f(distrib)n(ution.)g(The)h
+(follo)n(wing)e(recipe)i(to)g(use)h(this)f(script)h(has)f(been)g
+(kindly)396 4173 y(pro)o(vided)e(by)i(kiarna:)-2 4357
+y
+SDict begin H.S end
+ -2 4357 a -2 4357 a
+SDict begin 13 H.A end
+ -2 4357 a -2 4357 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1380) cvn H.B /DEST pdfmark
+end
+ -2 4357 a 396
+4447 a FC(Nagios)g(runs)g(as)h(user)f('nagios'.)e(Ho)n(we)n(v)o(er)m(,)
+h(in)h(order)f(to)h(check)g(the)g(\002lesystem,)g(you)f(typically)h(w)o
+(ant)g(to)g(run)396 4555 y
+SDict begin H.S end
+ 396 4555 a 396 4555 a
+SDict begin 13 H.A end
+ 396
+4555 a 396 4555 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1381) cvn H.B /DEST pdfmark
+end
+ 396 4555 a FC(samhain)g(as)h(')l(root'.)d(Y)-9
+b(ou)20 b(can)g(use)1432 4555 y
+SDict begin H.S end
+ 1432 4555 a 1432 4555
+a
+SDict begin 13 H.A end
+ 1432 4555 a 1432 4555 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1382) cvn H.B /DEST pdfmark
+end
+ 1432 4555 a FC(sudo)g(to)g(\002x)g(this)h
+(problem.)d(In)i(your)2525 4555 y
+SDict begin H.S end
+ 2525 4555 a 2525 4555
+a
+SDict begin 13 H.A end
+ 2525 4555 a 2525 4555 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1383) cvn H.B /DEST pdfmark
+end
+ 2525 4555 a Fr(/etc/sudoers)f
+FC(\002le,)i(add)e(the)h(line:)-2 4656 y
+SDict begin H.S end
+ -2 4656 a -2
+4656 a
+SDict begin 11.7 H.A end
+ -2 4656 a -2 4656 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1384) cvn H.B /DEST pdfmark
+end
+ -2 4656 a 396 4832 a Fr(nagios)44
+b(ALL)g(=)h(NOPASSWD:/path/to/check_samhain)-2 5010 y
+SDict begin H.S end
+
+-2 5010 a -2 5010 a
+SDict begin 13 H.A end
+ -2 5010 a -2 5010 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1385) cvn H.B /DEST pdfmark
+end
+ -2 5010 a 396
+5106 a FC(Ne)o(xt,)20 b(add)g(the)g(service)g(to)g(the)g(nagios)g
+(\002le)1689 5106 y
+SDict begin H.S end
+ 1689 5106 a 1689 5106 a
+SDict begin 13 H.A end
+ 1689 5106
+a 1689 5106 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1386) cvn H.B /DEST pdfmark
+end
+ 1689 5106 a Fr(checkcommands.cfg)p FC(:)-2
+5207 y
+SDict begin H.S end
+ -2 5207 a -2 5207 a
+SDict begin 11.7 H.A end
+ -2 5207 a -2 5207 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1387) cvn H.B /DEST pdfmark
+end
+ -2 5207
+a 396 5384 a Fr(#)45 b('check_samhain')d(command)i(definition)p
+Black 3661 5805 a Fx(35)p Black eop end
+%%Page: 36 41
+TeXDict begin 36 40 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.36) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2239 104 a
+Fx(Chapter)20 b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d
+(facilities)p Black 396 309 a Fr(define)44 b(command{)396
+406 y(command_name)f(check_samhain)396 503 y(command_line)g
+(/usr/bin/sudo)g(-u)h(root)g($USER1$/check_samhain)e(-t)i(100)396
+600 y(})-2 775 y
+SDict begin H.S end
+ -2 775 a -2 775 a
+SDict begin 13 H.A end
+ -2 775 a -2 775 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1388) cvn H.B /DEST pdfmark
+end
+
+-2 775 a 396 874 a FC(Checking)19 b(the)h(\002lesystem)h(may)f(tak)o(e)
+g(some)g(time,)g(so)h(you)e(may)h(w)o(ant)g(to)g(increase)g(the)g
+(nagios)g(plugin)f(timeout)396 982 y(by)h(changing)e(the)i(follo)n
+(wing)f(line)h(in)1520 982 y
+SDict begin H.S end
+ 1520 982 a 1520 982 a
+SDict begin 13 H.A end
+ 1520
+982 a 1520 982 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1389) cvn H.B /DEST pdfmark
+end
+ 1520 982 a Fr(nagios.cfg)f FC(from)g(60)h(to)g(100:)-2
+1083 y
+SDict begin H.S end
+ -2 1083 a -2 1083 a
+SDict begin 11.7 H.A end
+ -2 1083 a -2 1083 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1390) cvn H.B /DEST pdfmark
+end
+ -2 1083
+a 396 1259 a Fr(service_check_timeout=100)-2 1434 y
+SDict begin H.S end
+ -2
+1434 a -2 1434 a
+SDict begin 13 H.A end
+ -2 1434 a -2 1434 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1391) cvn H.B /DEST pdfmark
+end
+ -2 1434 a 396 1533
+a FC(Then)g(add)f(the)h(service)g(to)h(the)f(appropriate)e(section)i
+(in)g(the)g(nagios)2414 1533 y
+SDict begin H.S end
+ 2414 1533 a 2414 1533
+a
+SDict begin 13 H.A end
+ 2414 1533 a 2414 1533 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1392) cvn H.B /DEST pdfmark
+end
+ 2414 1533 a Fr(service.cfg)f
+FC(\002le.)-2 1562 y
+SDict begin H.S end
+ -2 1562 a -2 1562 a
+SDict begin 13 H.A end
+ -2 1562 a -2
+1562 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SYSLOGDETAILS) cvn H.B /DEST
+pdfmark end
+ -2 1562 a 359 x Fu(4.11.)39 b(Syslog)829 1921
+y
+SDict begin H.S end
+ 829 1921 a 829 1921 a
+SDict begin 22.464 H.A end
+ 829 1921 a 829 1921 a
+SDict begin [ /View [/XYZ H.V] /Dest (6.31.1) cvn H.B /DEST pdfmark
+end
+ 829 1921
+a -2 2119 a
+SDict begin H.S end
+ -2 2119 a -2 2119 a
+SDict begin 13 H.A end
+ -2 2119 a -2 2119 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1395) cvn H.B /DEST pdfmark
+end
+ -2
+2119 a -2 2119 a
+SDict begin H.S end
+ -2 2119 a -2 2119 a
+SDict begin 13 H.A end
+ -2 2119 a -2 2119
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1396) cvn H.B /DEST pdfmark
+end
+ -2 2119 a 396 2195 a FC(samhain)20 b(will)h(translate)f(its)h(o)n(wn)
+f(se)n(v)o(erities)g(into)1887 2195 y
+SDict begin H.S end
+ 1887 2195 a 1887
+2195 a
+SDict begin 13 H.A end
+ 1887 2195 a 1887 2195 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1397) cvn H.B /DEST pdfmark
+end
+ 1887 2195 a Fx(syslo)o(g)h(priorities)g
+FC(as)g(follo)n(ws:)-2 2212 y
+SDict begin H.S end
+ -2 2212 a -2 2212 a
+SDict begin 13 H.A end
+ -2
+2212 a -2 2212 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1398) cvn H.B /DEST pdfmark
+end
+ -2 2212 a -2 2305 a
+SDict begin H.S end
+ -2 2305 a -2 2305
+a
+SDict begin 13 H.A end
+ -2 2305 a -2 2305 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1399) cvn H.B /DEST pdfmark
+end
+ -2 2305 a -2 2305 a
+SDict begin H.S end
+ -2 2305 a -2
+2305 a
+SDict begin 13 H.A end
+ -2 2305 a -2 2305 a
+SDict begin [ /View [/XYZ H.V] /Dest (table.9) cvn H.B /DEST pdfmark
+end
+ -2 2305 a 396 2308 3359 4
+v 396 2308 V 396 2433 4 125 v 424 2408 a FD(Se)o(verity)p
+2074 2433 V 1357 w(Syslog)i(priority)p 3751 2433 V 396
+2436 3359 4 v 396 2436 V 396 2561 4 125 v 424 2536 a
+FC(deb)n(ug)p 2074 2561 V 1475 w(LOG_DEB)o(UG)p 3751
+2561 V 396 2564 3359 4 v 396 2564 V 396 2689 4 125 v
+424 2664 a(info)p 2074 2689 V 1543 w(LOG_INFO)p 3751
+2689 V 396 2692 3359 4 v 396 2692 V 396 2817 4 125 v
+424 2792 a(notice)p 2074 2817 V 1474 w(LOG_NO)m(TICE)p
+3751 2817 V 396 2820 3359 4 v 396 2820 V 396 2944 4 125
+v 424 2919 a(w)o(arn)p 2074 2944 V 1512 w(LOG_W)-10 b(ARNING)p
+3751 2944 V 396 2948 3359 4 v 396 2948 V 396 3072 4 125
+v 424 3047 a(mark)p 2074 3072 V 1506 w(LOG_ERR)p 3751
+3072 V 396 3076 3359 4 v 396 3076 V 396 3200 4 125 v
+424 3175 a(err)p 2074 3200 V 1585 w(LOG_ERR)p 3751 3200
+V 396 3203 3359 4 v 396 3203 V 396 3328 4 125 v 424 3303
+a(crit)p 2074 3328 V 1567 w(LOG_CRIT)p 3751 3328 V 396
+3331 3359 4 v 396 3331 V 396 3456 4 125 v 424 3431 a(alert)p
+2074 3456 V 1530 w(LOG_ALER)-5 b(T)p 3751 3456 V 396
+3459 3359 4 v 396 3459 V -2 3625 a
+SDict begin H.S end
+ -2 3625 a -2 3625
+a
+SDict begin 13 H.A end
+ -2 3625 a -2 3625 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1429) cvn H.B /DEST pdfmark
+end
+ -2 3625 a 396 3708 a FC(Messages)21
+b(lar)o(ger)e(than)g(960)h(chars)g(will)h(be)f(split)g(into)g(se)n(v)o
+(eral)g(messages.)g(By)h(def)o(ault,)3017 3708 y
+SDict begin H.S end
+ 3017
+3708 a 3017 3708 a
+SDict begin 13 H.A end
+ 3017 3708 a 3017 3708 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1430) cvn H.B /DEST pdfmark
+end
+ 3017 3708
+a FC(samhain)e(will)i(use)g(the)396 3816 y(identity)f(')-5
+b(samhain',)19 b(the)1162 3816 y
+SDict begin H.S end
+ 1162 3816 a 1162 3816
+a
+SDict begin 13 H.A end
+ 1162 3816 a 1162 3816 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1431) cvn H.B /DEST pdfmark
+end
+ 1162 3816 a Fx(syslo)o(g)h(facility)h
+FC(LOG_A)-5 b(UTHPRIV)-11 b(,)20 b(and)f(will)i(log)f(its)h(PID)g
+(\(process)e(identi\002cation)396 3924 y(number\))f(in)j(addition)e(to)
+h(the)g(message.)-2 4108 y
+SDict begin H.S end
+ -2 4108 a -2 4108 a
+SDict begin 13 H.A end
+ -2 4108
+a -2 4108 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1432) cvn H.B /DEST pdfmark
+end
+ -2 4108 a 396 4198 a FC(The)g(syslog)g(f)o(acility)g(can)g
+(be)g(modi\002ed)f(via)h(the)h(directi)n(v)o(e)2138 4198
+y
+SDict begin H.S end
+ 2138 4198 a 2138 4198 a
+SDict begin 13 H.A end
+ 2138 4198 a 2138 4198 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1433) cvn H.B /DEST pdfmark
+end
+ 2138
+4198 a Fy(SyslogF)n(acility=)2679 4198 y
+SDict begin H.S end
+ 2679 4198 a
+2679 4198 a
+SDict begin 13 H.A end
+ 2679 4198 a 2679 4198 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1434) cvn H.B /DEST pdfmark
+end
+ 2679 4198 a Fl(command>LOG_xxx)g
+FC(in)f(the)3582 4198 y
+SDict begin H.S end
+ 3582 4198 a 3582 4198 a
+SDict begin 13 H.A end
+ 3582
+4198 a 3582 4198 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1435) cvn H.B /DEST pdfmark
+end
+ 3582 4198 a Fx(Misc)396 4306 y FC(section)g(of)g
+(the)g(con\002guration)e(\002le.)-2 4334 y
+SDict begin H.S end
+ -2 4334 a
+-2 4334 a
+SDict begin 13 H.A end
+ -2 4334 a -2 4334 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SQLDETAILS) cvn H.B /DEST pdfmark
+end
+ -2 4334 a 359 x Fu(4.12.)39
+b(SQL)g(Database)1332 4693 y
+SDict begin H.S end
+ 1332 4693 a 1332 4693 a
+SDict begin 22.464 H.A end
+
+1332 4693 a 1332 4693 a
+SDict begin [ /View [/XYZ H.V] /Dest (6.32.1) cvn H.B /DEST pdfmark
+end
+ 1332 4693 a -2 4700 a
+SDict begin H.S end
+ -2 4700
+a -2 4700 a
+SDict begin 11.7 H.A end
+ -2 4700 a -2 4700 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1438) cvn H.B /DEST pdfmark
+end
+ -2 4700 a -2 4825 a
+SDict begin H.S end
+ -2
+4825 a -2 4825 a
+SDict begin 11.7 H.A end
+ -2 4825 a -2 4825 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1440) cvn H.B /DEST pdfmark
+end
+ -2 4825 a 562 4915
+a Fw(REQ)o(UIREMENTS:)20 b Fv(This)g(f)n(acility)f(requires)g(that)g(y)
+o(ou)h(ha)o(v)n(e)f(compiled)g(with)h(the)2950 4915 y
+SDict begin H.S end
+
+2950 4915 a 2950 4915 a
+SDict begin 11.7 H.A end
+ 2950 4915 a 2950 4915 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1441) cvn H.B /DEST pdfmark
+end
+ 2950
+4915 a Fq(--enab)o(le-xml-log)g Fv(option)562 5012 y(to)g(f)n(or)r(mat)
+g(log)f(messages)h(in)g(XML)h(\()1638 5012 y
+SDict begin H.S end
+ 1638 5012
+a 1638 5012 a
+SDict begin 11.7 H.A end
+ 1638 5012 a 1638 5012 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1442) cvn H.B /DEST pdfmark
+end
+ 1638 5012 a Fq(also)e(f)n(or)h
+(the)g(client)7 b Fv(,)18 b(e)n(v)n(en)i(if)g(y)o(ou)g(do)g(SQL)g
+(logging)e(on)h(the)h(ser)r(v)n(er\),)562 5109 y(and)g(of)g(course)g
+(with)f(the)1314 5109 y
+SDict begin H.S end
+ 1314 5109 a 1314 5109 a
+SDict begin 11.7 H.A end
+ 1314
+5109 a 1314 5109 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1443) cvn H.B /DEST pdfmark
+end
+ 1314 5109 a Fq(--with-database=XXX)25
+b Fv(option)18 b(\(where)h('XXX')h(ma)n(y)h(be)e(an)o(y)i(of:)e(m)o
+(ysql,)562 5207 y(postg)o(resql,)g(or)o(acle)o(,)g(or)h(odbc\).)-2
+5265 y
+SDict begin H.S end
+ -2 5265 a -2 5265 a
+SDict begin 11.7 H.A end
+ -2 5265 a -2 5265 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1444) cvn H.B /DEST pdfmark
+end
+ -2 5265
+a 562 5345 a Fv(If)h(y)o(ou)e(are)h(using)f(the)1217
+5345 y
+SDict begin H.S end
+ 1217 5345 a 1217 5345 a
+SDict begin 11.7 H.A end
+ 1217 5345 a 1217 5345
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1445) cvn H.B /DEST pdfmark
+end
+ 1217 5345 a Fq(MessageHeader)26 b Fv(directiv)n(e)19
+b(in)h(the)g(con\002gur)o(ation)e(\002le)i(f)n(or)g(a)g(user-de\002ned)
+p Black 3660 5805 a Fx(36)p Black eop end
+%%Page: 37 42
+TeXDict begin 37 41 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.37) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1464) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2239 104 a Fx(Chapter)20
+b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d(facilities)p
+Black 562 309 a Fv(message)i(header)l(,)f(mak)o(e)h(sure)g(that)f(the)h
+(log)f(messages)h(are)g(still)g(v)n(alid)f(XML,)i(and)e(that)g(all)h
+(the)f(def)n(ault)562 406 y(entities)g(are)h(still)f(present.)-2
+721 y
+SDict begin H.S end
+ -2 721 a -2 721 a
+SDict begin 13 H.A end
+ -2 721 a -2 721 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1446) cvn H.B /DEST pdfmark
+end
+ -2 721 a 396
+829 a FC(Currently)g(MySQL,)h(PostgreSQL,)f(and)h(Oracle)g(are)g
+(implemented)e(and)i(tested.)g(Support)f(for)g(unixODBC)h(is)396
+937 y(implemented,)e(b)n(ut)j(not)e(fully)h(tested.)g(If)g(the)g
+(header)f(\002le)i('mysql.h')e(\(')o(libpq-fe.h'\))d(is)21
+b(not)f(found)f(during)396 1045 y(compilation)g(\('mysql.h:)f(No)i
+(such)g(\002le)h(or)f(directory'\),)d(you)j(can)g(use)g(the)g(option)
+396 1153 y
+SDict begin H.S end
+ 396 1153 a 396 1153 a
+SDict begin 13 H.A end
+ 396 1153 a 396 1153
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1447) cvn H.B /DEST pdfmark
+end
+ 396 1153 a Fx(--with-c\003a)o(gs=-I/dir/wher)m(e/mysql.h/is)p
+FC(.)d(If)j(the)h(library)e(libmysqlclient.a)f(\(libpq.a\))h(is)i(not)e
+(found)396 1261 y(\('/usr/bin/ld:)g(cannot)g(\002nd)h
+(-lmysqlclient'\),)e(you)h(can)h(use)g(the)h(option)396
+1369 y
+SDict begin H.S end
+ 396 1369 a 396 1369 a
+SDict begin 13 H.A end
+ 396 1369 a 396 1369 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1448) cvn H.B /DEST pdfmark
+end
+ 396
+1369 a Fx(--with-libs=-L/dir/wher)m(e/libmysqlclient.a/is)p
+FC(.)-2 1386 y
+SDict begin H.S end
+ -2 1386 a -2 1386 a
+SDict begin 11.7 H.A end
+ -2 1386 a -2 1386
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1449) cvn H.B /DEST pdfmark
+end
+ -2 1386 a -2 1510 a
+SDict begin H.S end
+ -2 1510 a -2 1510 a
+SDict begin 11.7 H.A end
+ -2 1510 a -2
+1510 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1451) cvn H.B /DEST pdfmark
+end
+ -2 1510 a 562 1591 a Fw(NO)m(TE:)g Fv(P)l(ostg)o(reSQL)e(ma)n(y)
+h(f)n(ail)g(with)f(--enab)o(le-static.)e(This)i(is)i(a)f(postg)o(resql)
+f(b)o(ug.)-2 1906 y
+SDict begin H.S end
+ -2 1906 a -2 1906 a
+SDict begin 13 H.A end
+ -2 1906 a -2
+1906 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1452) cvn H.B /DEST pdfmark
+end
+ -2 1906 a 396 2014 a FC(By)i(def)o(ault,)e(the)h(database)g
+(serv)o(er)f(is)i(assumed)f(to)g(be)h(on)e(localhost,)h(the)g(db)g
+(name)f(is)i(')-5 b(samhain',)19 b(the)h(db)g(table)396
+2122 y(is)h(')o(log',)d(and)h(inserting)g(is)h(possible)g(for)e(an)o(y)
+h(user)h(without)e(passw)o(ord.)h(T)-7 b(o)2639 2122
+y
+SDict begin H.S end
+ 2639 2122 a 2639 2122 a
+SDict begin 13 H.A end
+ 2639 2122 a 2639 2122 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1453) cvn H.B /DEST pdfmark
+end
+ 2639
+2122 a Fx(cr)m(eate)19 b FC(the)h(database/table)e(with)i(the)396
+2230 y(required)f(columns,)g(the)h(distrib)n(ution)f(includes)g(the)h
+(scripts)h(')-5 b(samhain.mysql.init',)17 b(')-5 b
+(samhain.postgres.init',)396 2338 y(and)20 b(')-5 b
+(samhain.oracle.init'.)17 b(E.g.,)i(for)h(PostgreSQL)f(you)h(w)o(ould)f
+(setup)h(the)g(database)g(lik)o(e:)-2 2439 y
+SDict begin H.S end
+ -2 2439
+a -2 2439 a
+SDict begin 11.7 H.A end
+ -2 2439 a -2 2439 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1454) cvn H.B /DEST pdfmark
+end
+ -2 2439 a 665 2518 a
+Fr($)45 b(su)f(postgres)665 2615 y($)h(createdb)e(samhain)665
+2712 y($)i(createuser)e(samhain)665 2809 y($)i(psql)f(-d)h(samhain)e(<)
+i(samhain.postgres.init)665 2906 y($)g(exit)-2 3081 y
+SDict begin H.S end
+
+-2 3081 a -2 3081 a
+SDict begin 13 H.A end
+ -2 3081 a -2 3081 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1455) cvn H.B /DEST pdfmark
+end
+ -2 3081 a 396
+3180 a FC(.)12 b(.)g(.)34 b(and)19 b(for)h(MySQL:)-2
+3281 y
+SDict begin H.S end
+ -2 3281 a -2 3281 a
+SDict begin 11.7 H.A end
+ -2 3281 a -2 3281 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1456) cvn H.B /DEST pdfmark
+end
+ -2 3281
+a 665 3361 a Fr($)45 b(mysql)f(-p)g(-u)h(root)f(<)h(samhain.mysql.init)
+665 3458 y($)g(mysql)f(-p)g(-u)h(root)665 3555 y(...)g(edit)f(grant)g
+(tables)665 3652 y($)h(mysqladmin)e(-p)i(-u)f(root)g(reload)-2
+3664 y
+SDict begin H.S end
+ -2 3664 a -2 3664 a
+SDict begin 11.7 H.A end
+ -2 3664 a -2 3664 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1457) cvn H.B /DEST pdfmark
+end
+ -2 3664
+a -2 3830 a
+SDict begin H.S end
+ -2 3830 a -2 3830 a
+SDict begin 11.7 H.A end
+ -2 3830 a -2 3830 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1459) cvn H.B /DEST pdfmark
+end
+ -2
+3830 a 562 3915 a Fw(NO)m(TE:)21 b Fv(The)e(P)l(ostg)o(reSQL)g(init)h
+(scr)q(ipt)g(will)f(g)o(r)o(ant)h(INSER)n(T)g(per)r(mission)e(only)i
+(to)g(a)h(user)f(')l(samhain'.)e(Please)562 4012 y(tak)o(e)i(note)f
+(that)g(f)n(or)h(P)l(ostg)o(reSQL,)f(inser)s(ting)f(also)i(requires)f
+(SELECT)g(and)h(UPD)m(A)-9 b(TE)19 b(per)r(mission)g(f)n(or)h(the)562
+4109 y(sequence)f('log_log_inde)n(x_seq)o(')c(\(see)20
+b(bottom)f(of)h(init)f(scr)q(ipt\).)h(The)g(MySQL)h(init)e(scr)q(ipt)i
+(will)e(create)g(the)562 4207 y(database)o(,)f(b)o(ut)h(not)h(the)g
+(user)l(,)g(and)f(will)h(not)f(g)o(r)o(ant)h(an)o(y)g(per)r(missions)o
+(.)-2 4522 y
+SDict begin H.S end
+ -2 4522 a -2 4522 a
+SDict begin 13 H.A end
+ -2 4522 a -2 4522 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1460) cvn H.B /DEST pdfmark
+end
+
+-2 4522 a 396 4630 a FC(As)h(with)g(all)f(logging)f(f)o(acilities,)h
+(logging)f(to)h(the)g(SQL)h(database)f(must)g(be)g(enabled)f(in)h(the)h
+(con\002guration)c(\002le:)-2 4731 y
+SDict begin H.S end
+ -2 4731 a -2 4731
+a
+SDict begin 11.7 H.A end
+ -2 4731 a -2 4731 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1461) cvn H.B /DEST pdfmark
+end
+ -2 4731 a 486 4907 a Fr([Log])486
+5004 y(DatabaseSeverity=warn)p Black 3658 5805 a Fx(37)p
+Black eop end
+%%Page: 38 43
+TeXDict begin 38 42 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.38) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2239 104 a
+Fx(Chapter)20 b(4.)g(Con\002gur)o(ation)d(of)k(lo)o(g)o(ging)d
+(facilities)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226
+a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1462) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309 a FC(In)i(the)608 309 y
+SDict begin H.S end
+ 608
+309 a 608 309 a
+SDict begin 13 H.A end
+ 608 309 a 608 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1463) cvn H.B /DEST pdfmark
+end
+ 608 309 a Fx(Database)f
+FC(section)h(of)g(the)g(con\002guration)e(\002le,)j(you)e(can)h(modify)
+e(the)j(def)o(aults)e(via)i(the)f(follo)n(wing)396 417
+y(directi)n(v)o(es:)486 694 y Fr([Database])486 791 y(SetDBName=)p
+Fg(db_name)486 888 y Fr(SetDBTable=)981 888 y
+SDict begin H.S end
+ 981 888
+a 981 888 a
+SDict begin 11.7 H.A end
+ 981 888 a 981 888 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1466) cvn H.B /DEST pdfmark
+end
+ 981 888 a Fg(db_table)486
+985 y Fr(SetDBHost=)936 985 y
+SDict begin H.S end
+ 936 985 a 936 985 a
+SDict begin 11.7 H.A end
+ 936
+985 a 936 985 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1467) cvn H.B /DEST pdfmark
+end
+ 936 985 a Fg(db_host)486 1082 y Fr(SetDBUser=)936
+1082 y
+SDict begin H.S end
+ 936 1082 a 936 1082 a
+SDict begin 11.7 H.A end
+ 936 1082 a 936 1082 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1468) cvn H.B /DEST pdfmark
+end
+ 936
+1082 a Fg(db_user)486 1180 y Fr(SetDBPassword=)1116 1180
+y
+SDict begin H.S end
+ 1116 1180 a 1116 1180 a
+SDict begin 11.7 H.A end
+ 1116 1180 a 1116 1180 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1469) cvn H.B /DEST pdfmark
+end
+ 1116
+1180 a Fg(db_password)486 1277 y Fr(UsePersistent=)1116
+1277 y
+SDict begin H.S end
+ 1116 1277 a 1116 1277 a
+SDict begin 11.7 H.A end
+ 1116 1277 a 1116 1277
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1470) cvn H.B /DEST pdfmark
+end
+ 1116 1277 a Fg(yes/no)-2 1540 y
+SDict begin H.S end
+ -2 1540 a -2 1540 a
+SDict begin 13 H.A end
+
+-2 1540 a -2 1540 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1471) cvn H.B /DEST pdfmark
+end
+ -2 1540 a 396 1648 a FC(The)g(def)o(ault)g(is)h(to)
+f(use)g(a)h(persistent)f(connection)e(to)i(the)h(database.)e(Y)-9
+b(ou)20 b(can)g(change)e(this)j(with)396 1756 y
+SDict begin H.S end
+ 396 1756
+a 396 1756 a
+SDict begin 13 H.A end
+ 396 1756 a 396 1756 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1472) cvn H.B /DEST pdfmark
+end
+ 396 1756 a Fy(UseP)n(ersistent=no)-2
+1757 y
+SDict begin H.S end
+ -2 1757 a -2 1757 a
+SDict begin 11.7 H.A end
+ -2 1757 a -2 1757 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1473) cvn H.B /DEST pdfmark
+end
+ -2 1757
+a -2 1881 a
+SDict begin H.S end
+ -2 1881 a -2 1881 a
+SDict begin 11.7 H.A end
+ -2 1881 a -2 1881 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1475) cvn H.B /DEST pdfmark
+end
+ -2
+1881 a 562 1977 a Fw(NO)m(TE:)g Fv(F)n(or)e(P)l(ostg)o(reSQL,)g
+(db_host)g(m)o(ust)i(be)f(a)g(n)o(umer)q(ical)f(IP)h(address)o(.)-2
+2293 y
+SDict begin H.S end
+ -2 2293 a -2 2293 a
+SDict begin 13 H.A end
+ -2 2293 a -2 2293 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1476) cvn H.B /DEST pdfmark
+end
+ -2 2293
+a 396 2401 a FC(When)g(logging)f(client)h(messages,)1450
+2401 y
+SDict begin H.S end
+ 1450 2401 a 1450 2401 a
+SDict begin 13 H.A end
+ 1450 2401 a 1450 2401
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1477) cvn H.B /DEST pdfmark
+end
+ 1450 2401 a FC(yule)g(will)h(wrap)e(them)h(into)g(a)h(serv)o(er)e
+Ff(<)p FC(log)h(se)n(v=\224RCVT\224)g(tstamp=.)12 b(.)g(.)32
+b Ff(>)396 2509 y FC(.)12 b(.)g(.)34 b Ff(<)p FC(/log)p
+Ff(>)19 b FC(message.)h(The)f(parser)h(will)h(then)f(create)g(a)g
+(seperate)g(database)f(entry)h(for)f(this)i(serv)o(er)e(timestamp.)396
+2617 y(If)h(you)g(don')o(t)e(lik)o(e)j(this,)f(you)f(can)h(use)h(the)f
+(option)1886 2617 y
+SDict begin H.S end
+ 1886 2617 a 1886 2617 a
+SDict begin 13 H.A end
+ 1886 2617
+a 1886 2617 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1478) cvn H.B /DEST pdfmark
+end
+ 1886 2617 a Fy(SetDBSer)o(v)o(erTstamp=)2665
+2617 y
+SDict begin H.S end
+ 2665 2617 a 2665 2617 a
+SDict begin 13 H.A end
+ 2665 2617 a 2665 2617
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1479) cvn H.B /DEST pdfmark
+end
+ 2665 2617 a Fl(false)p FC(.)-2 2801 y
+SDict begin H.S end
+ -2 2801 a -2
+2801 a
+SDict begin 13 H.A end
+ -2 2801 a -2 2801 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1480) cvn H.B /DEST pdfmark
+end
+ -2 2801 a 396 2891 a FC(The)g(table)g
+(\002eld)h(')o(log_ref)5 b(')17 b(is)k(NULL)f(for)g(client)g(messages,)
+g(0)h(for)e(serv)o(er)g(messages,)i(and)e(equal)h(to)396
+2999 y(')o(log_inde)o(x')d(of)j(the)g(client)h(message)f(for)f(the)h
+(aforementioned)d(serv)o(er)j(timestamp)f(of)h(a)h(client)f(message.)-2
+3183 y
+SDict begin H.S end
+ -2 3183 a -2 3183 a
+SDict begin 13 H.A end
+ -2 3183 a -2 3183 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1481) cvn H.B /DEST pdfmark
+end
+ -2 3183
+a 396 3273 a FC(Log)f(records)f(can)h(be)h(tagged)e(via)i(a)f(special)h
+(\(inde)o(x)o(ed\))d(table)i(\002eld)g(')o(log_hash',)e(which)i(is)i
+(the)e(MD5)g(checksum)396 3381 y(of)h(\(the)g(concatenation)e(of\))h
+(an)o(y)h(\002elds)g(re)o(gistered)f(with)2091 3381 y
+SDict begin H.S end
+
+2091 3381 a 2091 3381 a
+SDict begin 13 H.A end
+ 2091 3381 a 2091 3381 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1482) cvn H.B /DEST pdfmark
+end
+ 2091
+3381 a Fy(AddT)-8 b(oDBHash=)2679 3381 y
+SDict begin H.S end
+ 2679 3381 a
+2679 3381 a
+SDict begin 13 H.A end
+ 2679 3381 a 2679 3381 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1483) cvn H.B /DEST pdfmark
+end
+ 2679 3381 a Fl(field)s
+FC(.)20 b(The)3098 3381 y
+SDict begin H.S end
+ 3098 3381 a 3098 3381 a
+SDict begin 13 H.A end
+ 3098
+3381 a 3098 3381 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1484) cvn H.B /DEST pdfmark
+end
+ 3098 3381 a FC(beltane)g(web-based)396
+3488 y(console)g(can)g(use)g(these)g(tags)h(to)f(\002lter)h(messages.)f
+(There)f(is)i(no)f(def)o(ault)g(set)h(of)f(\002elds)g(o)o(v)o(er)f
+(which)h(the)g(MD5)396 3596 y(hash)g(is)h(computed,)d(so)j(by)f(def)o
+(ault)f(the)h(tag)h(is)1784 3596 y
+SDict begin H.S end
+ 1784 3596 a 1784 3596
+a
+SDict begin 13 H.A end
+ 1784 3596 a 1784 3596 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1485) cvn H.B /DEST pdfmark
+end
+ 1784 3596 a Fx(equal)e FC(for)g(all)i(ro)n
+(ws.)-2 3614 y
+SDict begin H.S end
+ -2 3614 a -2 3614 a
+SDict begin 11.7 H.A end
+ -2 3614 a -2 3614
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1486) cvn H.B /DEST pdfmark
+end
+ -2 3614 a -2 3739 a
+SDict begin H.S end
+ -2 3739 a -2 3739 a
+SDict begin 11.7 H.A end
+ -2 3739 a -2
+3739 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1488) cvn H.B /DEST pdfmark
+end
+ -2 3739 a 562 3818 a Fw(TIP:)f Fv(F)n(or)g(secur)q(ity)-7
+b(,)19 b(y)o(ou)h(ma)n(y)h(w)o(ant)e(to)h(set)h(up)f(a)g(user/pass)n(w)
+o(ord)f(f)n(or)g(inser)s(tion)f(into)i(the)f(db)m(.)h(Ho)o(w)o(e)n(v)n
+(er)l(,)g(as)562 3915 y(the)g(pass)n(w)o(ord)f(is)i(in)f(clear)s(te)n
+(xt)f(in)h(the)f(con\002g)i(\002le)f(\(and)f(the)h(connection)e(to)i
+(the)g(db)f(ser)r(v)n(er)i(is)g(not)562 4012 y(encr)r(ypted\),)d(f)n
+(or)h(remote)g(logging)e(this)i(f)n(acility)g(is)h(less)g(secure)f
+(than)g(samhain')l(s)f(o)o(wn)h(client/ser)r(v)n(er)g(system)562
+4109 y(\(it)h(is)h(recommended)d(to)i(r)q(un)g(the)g(db)g(ser)r(v)n(er)
+g(on)g(the)g(log)f(host)h(and)g(ha)o(v)n(e)f(the)h(log)f(ser)r(v)n(er)l
+(,)i(i.e)o(.)3334 4109 y
+SDict begin H.S end
+ 3334 4109 a 3334 4109 a
+SDict begin 11.7 H.A end
+ 3334
+4109 a 3334 4109 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1489) cvn H.B /DEST pdfmark
+end
+ 3334 4109 a Fv(yule,)f(log)f(to)562
+4207 y(the)h(db\).)p Black 3661 5805 a Fx(38)p Black
+eop end
+%%Page: 39 44
+TeXDict begin 39 43 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.39) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black -2 226
+a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:FILE-MONITOR) cvn H.B /DEST
+pdfmark end
+ -2 226 a 125 x
+Fz(Chapter)48 b(5.)f(Con\002guration)j(\227)e(samhain,)f(the)h(\002le)
+-2 575 y(monitor)638 575 y
+SDict begin H.S end
+ 638 575 a 638 575 a
+SDict begin 26.957 H.A end
+ 638 575
+a 638 575 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.0) cvn H.B /DEST pdfmark end
+ 638 575 a -2 797 a
+SDict begin H.S end
+ -2 797 a -2 797 a
+SDict begin 13 H.A end
+ -2 797
+a -2 797 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1493) cvn H.B /DEST pdfmark
+end
+ -2 797 a 396 903 a FC(The)546 903 y
+SDict begin H.S end
+ 546 903
+a 546 903 a
+SDict begin 13 H.A end
+ 546 903 a 546 903 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1494) cvn H.B /DEST pdfmark
+end
+ 546 903 a FC(samhain)20
+b(\002le)g(monitor)f(checks)h(the)g(inte)o(grity)f(of)h(\002les)h(by)f
+(comparing)e(them)h(against)h(a)g(database)g(of)g(\002le)396
+1011 y(signatures,)f(and)h(notify)f(the)h(user)g(of)g(inconsistencies.)
+g(The)f(le)n(v)o(el)h(of)g(logging)f(is)i(con\002gurable,)c(and)j(se)n
+(v)o(eral)396 1119 y(logging)f(f)o(acilities)i(are)f(pro)o(vided.)-2
+1303 y
+SDict begin H.S end
+ -2 1303 a -2 1303 a
+SDict begin 13 H.A end
+ -2 1303 a -2 1303 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1495) cvn H.B /DEST pdfmark
+end
+ -2 1303
+a -2 1303 a
+SDict begin H.S end
+ -2 1303 a -2 1303 a
+SDict begin 13 H.A end
+ -2 1303 a -2 1303 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1496) cvn H.B /DEST pdfmark
+end
+ -2
+1303 a 396 1393 a FC(samhain)g(can)g(be)g(used)g(as)h(a)f(client)h
+(that)f(forw)o(ards)f(messages)h(to)g(the)h(serv)o(er)e(part)h(\()2857
+1393 y
+SDict begin H.S end
+ 2857 1393 a 2857 1393 a
+SDict begin 13 H.A end
+ 2857 1393 a 2857 1393
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1497) cvn H.B /DEST pdfmark
+end
+ 2857 1393 a FC(yule\))f(of)h(the)3260 1393 y
+SDict begin H.S end
+ 3260 1393
+a 3260 1393 a
+SDict begin 13 H.A end
+ 3260 1393 a 3260 1393 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1498) cvn H.B /DEST pdfmark
+end
+ 3260 1393 a FC(samhain)396
+1501 y(system,)g(or)g(as)h(a)g(standalone)e(program)f(\(for)h(single)h
+(hosts\).)-2 1685 y
+SDict begin H.S end
+ -2 1685 a -2 1685 a
+SDict begin 13 H.A end
+ -2 1685 a -2
+1685 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1499) cvn H.B /DEST pdfmark
+end
+ -2 1685 a -2 1685 a
+SDict begin H.S end
+ -2 1685 a -2 1685 a
+SDict begin 13 H.A end
+ -2 1685
+a -2 1685 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1500) cvn H.B /DEST pdfmark
+end
+ -2 1685 a 396 1775 a FC(samhain)g(can)g(be)g(run)f(as)i(a)g
+(background)16 b(process)k(\(i.e.)g(a)h(daemon\),)d(or)i(it)h(can)f(be)
+g(started)g(at)g(re)o(gular)f(interv)n(als)396 1882 y(by)500
+1882 y
+SDict begin H.S end
+ 500 1882 a 500 1882 a
+SDict begin 13 H.A end
+ 500 1882 a 500 1882 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1501) cvn H.B /DEST pdfmark
+end
+ 500
+1882 a FC(cron.)-2 1900 y
+SDict begin H.S end
+ -2 1900 a -2 1900 a
+SDict begin 11.7 H.A end
+ -2 1900
+a -2 1900 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1502) cvn H.B /DEST pdfmark
+end
+ -2 1900 a -2 2025 a
+SDict begin H.S end
+ -2 2025 a -2 2025 a
+SDict begin 11.7 H.A end
+ -2
+2025 a -2 2025 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1504) cvn H.B /DEST pdfmark
+end
+ -2 2025 a 562 2104 a Fw(TIP:)h Fv(It)h(is)f
+(recommended)f(to)h(r)q(un)1573 2104 y
+SDict begin H.S end
+ 1573 2104 a 1573
+2104 a
+SDict begin 11.7 H.A end
+ 1573 2104 a 1573 2104 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1505) cvn H.B /DEST pdfmark
+end
+ 1573 2104 a Fv(samhain)f(as)h(daemon,)f
+(because)2611 2104 y
+SDict begin H.S end
+ 2611 2104 a 2611 2104 a
+SDict begin 11.7 H.A end
+ 2611 2104
+a 2611 2104 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1506) cvn H.B /DEST pdfmark
+end
+ 2611 2104 a -2 2126 a
+SDict begin H.S end
+ -2 2126 a -2 2126
+a
+SDict begin 11.7 H.A end
+ -2 2126 a -2 2126 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1507) cvn H.B /DEST pdfmark
+end
+ -2 2126 a Black 562 2264 a Fe(\225)p
+Black 645 2264 a
+SDict begin H.S end
+ 645 2264 a 645 2264 a
+SDict begin 11.7 H.A end
+ 645 2264 a 645
+2264 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1508) cvn H.B /DEST pdfmark
+end
+ 645 2264 a 645 2264 a
+SDict begin H.S end
+ 645 2264 a 645 2264 a
+SDict begin 11.7 H.A end
+ 645
+2264 a 645 2264 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1509) cvn H.B /DEST pdfmark
+end
+ 645 2264 a Fv(samhain)g(can)i(remember)e(\002le)h
+(changes)o(,)f(thus)h(while)f(r)q(unning)f(as)j(a)f(a)g(daemon,)f(it)h
+(will)f(not)h(bother)f(y)o(ou)645 2361 y(with)h(repetitiv)n(e)e
+(messages)i(about)f(the)h(same)g(prob)o(lem,)e(and)-2
+2377 y
+SDict begin H.S end
+ -2 2377 a -2 2377 a
+SDict begin 11.7 H.A end
+ -2 2377 a -2 2377 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1510) cvn H.B /DEST pdfmark
+end
+ -2 2377
+a Black 562 2499 a Fe(\225)p Black 645 2499 a
+SDict begin H.S end
+ 645 2499
+a 645 2499 a
+SDict begin 11.7 H.A end
+ 645 2499 a 645 2499 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1511) cvn H.B /DEST pdfmark
+end
+ 645 2499 a Fv(using)844
+2499 y
+SDict begin H.S end
+ 844 2499 a 844 2499 a
+SDict begin 11.7 H.A end
+ 844 2499 a 844 2499 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1512) cvn H.B /DEST pdfmark
+end
+ 844
+2499 a Fv(cron)h(opens)g(up)g(a)h(secur)q(ity)g(hole)o(,)d(because)i
+(betw)o(een)f(consecutiv)n(e)h(in)o(v)n(ocations)e(the)i(e)n(x)n
+(ecutab)o(le)645 2596 y(could)h(get)f(modi\002ed)g(or)i(replaced)d(b)o
+(y)i(a)g(rogue)f(prog)o(r)o(am.)39 2885 y
+SDict begin H.S end
+ 39 2885 a 39
+2885 a
+SDict begin 13 H.A end
+ 39 2885 a 39 2885 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:BASCLT) cvn H.B /DEST pdfmark
+end
+ 39 2885 a -2 3262 a Fu(5.1.)39
+b(Usa)o(g)q(e)f(o)m(ver)q(vie)n(w)1359 3262 y
+SDict begin H.S end
+ 1359 3262
+a 1359 3262 a
+SDict begin 22.464 H.A end
+ 1359 3262 a 1359 3262 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.33.1) cvn H.B /DEST pdfmark
+end
+ 1359 3262 a -2
+3460 a
+SDict begin H.S end
+ -2 3460 a -2 3460 a
+SDict begin 13 H.A end
+ -2 3460 a -2 3460 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1515) cvn H.B /DEST pdfmark
+end
+ -2 3460
+a 396 3536 a FC(T)-7 b(o)21 b(use)634 3536 y
+SDict begin H.S end
+ 634 3536
+a 634 3536 a
+SDict begin 13 H.A end
+ 634 3536 a 634 3536 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1516) cvn H.B /DEST pdfmark
+end
+ 634 3536 a FC(samhain,)e(the)h
+(follo)n(wing)f(steps)i(must)f(be)g(follo)n(wed:)-2 3720
+y
+SDict begin H.S end
+ -2 3720 a -2 3720 a
+SDict begin 13 H.A end
+ -2 3720 a -2 3720 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1517) cvn H.B /DEST pdfmark
+end
+ -2 3720 a -2
+3720 a
+SDict begin H.S end
+ -2 3720 a -2 3720 a
+SDict begin 13 H.A end
+ -2 3720 a -2 3720 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1518) cvn H.B /DEST pdfmark
+end
+ -2 3720
+a -2 3730 a
+SDict begin H.S end
+ -2 3730 a -2 3730 a
+SDict begin 13 H.A end
+ -2 3730 a -2 3730 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1519) cvn H.B /DEST pdfmark
+end
+ -2
+3730 a Black 463 3872 a FC(1.)p Black 546 3872 a
+SDict begin H.S end
+ 546
+3872 a 546 3872 a
+SDict begin 13 H.A end
+ 546 3872 a 546 3872 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1520) cvn H.B /DEST pdfmark
+end
+ 546 3872 a FC(The)g
+(con\002guration)d(\002le)k(must)f(be)g(prepared)e(\()p
+0 TeXcolorgray 1906 3872 a
+SDict begin H.S end
+ 1906 3872 a FC(Section)i(5.4)2281
+3872 y
+SDict begin 13 H.L end
+ 2281 3872 a 2281 3872 a
+SDict begin [ /Subtype /Link /Dest (0:FILEDEF) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2281 3872 a Black -1 w
+FC(>,)p 0 TeXcolorgray 2368 3872 a
+SDict begin H.S end
+ 2368 3872 a FC(Section)g(4.1)2743
+3872 y
+SDict begin 13 H.L end
+ 2743 3872 a 2743 3872 a
+SDict begin [ /Subtype /Link /Dest (0:LOGDEF) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2743 3872 a Black -1 w
+FC(>,)g(and)p 0 TeXcolorgray 2971 3872 a
+SDict begin H.S end
+ 2971 3872 a
+FC(Section)f(5.11)3387 3872 y
+SDict begin 13 H.L end
+ 3387 3872 a 3387 3872 a
+SDict begin [ /Subtype /Link /Dest (0:MONDEF) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+
+3387 3872 a Black -1 w FC(>)h(for)546 3980 y(details\).)-2
+4161 y
+SDict begin H.S end
+ -2 4161 a -2 4161 a
+SDict begin 13 H.A end
+ -2 4161 a -2 4161 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1524) cvn H.B /DEST pdfmark
+end
+ -2 4161
+a -2 4161 a
+SDict begin H.S end
+ -2 4161 a -2 4161 a
+SDict begin 13 H.A end
+ -2 4161 a -2 4161 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1525) cvn H.B /DEST pdfmark
+end
+ -2
+4161 a -2 4161 a
+SDict begin H.S end
+ -2 4161 a -2 4161 a
+SDict begin 13 H.A end
+ -2 4161 a -2 4161
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1526) cvn H.B /DEST pdfmark
+end
+ -2 4161 a Black 546 4295 a FB(\225)p Black 629 4295
+a
+SDict begin H.S end
+ 629 4295 a 629 4295 a
+SDict begin 13 H.A end
+ 629 4295 a 629 4295 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1527) cvn H.B /DEST pdfmark
+end
+ 629 4295
+a FC(All)756 4295 y
+SDict begin H.S end
+ 756 4295 a 756 4295 a
+SDict begin 13 H.A end
+ 756 4295 a
+756 4295 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1528) cvn H.B /DEST pdfmark
+end
+ 756 4295 a Fx(\002les)g(and)f(dir)m(ectories)i
+FC(that)f(you)f(w)o(ant)i(to)f(monitor)f(must)h(be)g(listed.)g(W)m
+(ildcard)g(patterns)f(are)629 4403 y(supported.)-2 4421
+y
+SDict begin H.S end
+ -2 4421 a -2 4421 a
+SDict begin 13 H.A end
+ -2 4421 a -2 4421 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1529) cvn H.B /DEST pdfmark
+end
+ -2 4421 a Black
+546 4553 a FB(\225)p Black 629 4553 a
+SDict begin H.S end
+ 629 4553 a 629
+4553 a
+SDict begin 13 H.A end
+ 629 4553 a 629 4553 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1530) cvn H.B /DEST pdfmark
+end
+ 629 4553 a FC(The)779 4553
+y
+SDict begin H.S end
+ 779 4553 a 779 4553 a
+SDict begin 13 H.A end
+ 779 4553 a 779 4553 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1531) cvn H.B /DEST pdfmark
+end
+ 779 4553
+a Fx(policies)h FC(for)f(monitoring)f(them)i(\(i.e.)g(which)f
+(modi\002cations)g(are)h(allo)n(wed)g(and)f(which)h(not\))g(must)629
+4661 y(be)g(chosen.)-2 4662 y
+SDict begin H.S end
+ -2 4662 a -2 4662 a
+SDict begin 13 H.A end
+ -2
+4662 a -2 4662 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1532) cvn H.B /DEST pdfmark
+end
+ -2 4662 a Black 546 4810 a FB(\225)p
+Black 629 4810 a
+SDict begin H.S end
+ 629 4810 a 629 4810 a
+SDict begin 13 H.A end
+ 629 4810 a 629
+4810 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1533) cvn H.B /DEST pdfmark
+end
+ 629 4810 a FC(Optionally)-5 b(,)18 b(the)1142
+4810 y
+SDict begin H.S end
+ 1142 4810 a 1142 4810 a
+SDict begin 13 H.A end
+ 1142 4810 a 1142 4810
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1534) cvn H.B /DEST pdfmark
+end
+ 1142 4810 a Fx(se)o(verity)j FC(of)f(a)g(polic)o(y)g(violation)e(can)
+i(be)h(selected.)-2 4828 y
+SDict begin H.S end
+ -2 4828 a -2 4828 a
+SDict begin 13 H.A end
+ -2 4828
+a -2 4828 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1535) cvn H.B /DEST pdfmark
+end
+ -2 4828 a Black 546 4959 a FB(\225)p Black
+629 4959 a
+SDict begin H.S end
+ 629 4959 a 629 4959 a
+SDict begin 13 H.A end
+ 629 4959 a 629 4959
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1536) cvn H.B /DEST pdfmark
+end
+ 629 4959 a FC(The)779 4959 y
+SDict begin H.S end
+ 779 4959 a 779 4959 a
+SDict begin 13 H.A end
+
+779 4959 a 779 4959 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1537) cvn H.B /DEST pdfmark
+end
+ 779 4959 a Fx(lo)o(g)o(ging)d(facilities)j
+FC(must)f(be)h(chosen,)e(and)g(the)2174 4959 y
+SDict begin H.S end
+ 2174 4959
+a 2174 4959 a
+SDict begin 13 H.A end
+ 2174 4959 a 2174 4959 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1538) cvn H.B /DEST pdfmark
+end
+ 2174 4959 a Fx(thr)m(eshold)h(le)
+o(vel)g FC(of)g(logging)e(should)i(be)g(de\002ned)f(T)-7
+b(o)629 5067 y(acti)n(v)n(ate)20 b(a)g(logging)f(f)o(acility)-5
+b(,)19 b(its)i(threshold)e(le)n(v)o(el)h(must)g(be)g(dif)n(ferent)f
+(from)2882 5067 y
+SDict begin H.S end
+ 2882 5067 a 2882 5067 a
+SDict begin 13 H.A end
+ 2882 5067 a
+2882 5067 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1539) cvn H.B /DEST pdfmark
+end
+ 2882 5067 a Fx(none)p FC(.)-2 5085 y
+SDict begin H.S end
+ -2 5085
+a -2 5085 a
+SDict begin 13 H.A end
+ -2 5085 a -2 5085 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1540) cvn H.B /DEST pdfmark
+end
+ -2 5085 a Black 546 5217
+a FB(\225)p Black 629 5217 a
+SDict begin H.S end
+ 629 5217 a 629 5217 a
+SDict begin 13 H.A end
+ 629
+5217 a 629 5217 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1541) cvn H.B /DEST pdfmark
+end
+ 629 5217 a FC(Ev)o(entually)-5 b(,)17
+b(the)1146 5217 y
+SDict begin H.S end
+ 1146 5217 a 1146 5217 a
+SDict begin 13 H.A end
+ 1146 5217 a
+1146 5217 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1542) cvn H.B /DEST pdfmark
+end
+ 1146 5217 a Fx(addr)m(ess)i FC(of)h(the)h(e-mail)e
+(recepient)h(and/or)e(the)2547 5217 y
+SDict begin H.S end
+ 2547 5217 a 2547
+5217 a
+SDict begin 13 H.A end
+ 2547 5217 a 2547 5217 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1543) cvn H.B /DEST pdfmark
+end
+ 2547 5217 a Fx(IP)i(addr)m(ess)g
+FC(of)g(the)g(log)g(serv)o(er)f(must)h(be)629 5325 y(gi)n(v)o(en.)p
+Black 3661 5805 a Fx(39)p Black eop end
+%%Page: 40 45
+TeXDict begin 40 44 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.40) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 1956 104 a
+Fx(Chapter)20 b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h
+(\002le)g(monitor)p Black 438 427 a
+SDict begin H.S end
+ 438 427 a 438 427
+a
+SDict begin 13 H.A end
+ 438 427 a 438 427 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1544) cvn H.B /DEST pdfmark
+end
+ 438 427 a Black 463 576 a FC(2.)p
+Black 546 576 a
+SDict begin H.S end
+ 546 576 a 546 576 a
+SDict begin 13 H.A end
+ 546 576 a 546 576
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1545) cvn H.B /DEST pdfmark
+end
+ 546 576 a FC(The)g(database)f(must)h(be)h(initialized.)e(If)h(it)h
+(already)e(e)o(xists,)i(it)f(should)g(be)g(deleted)f(\()2991
+576 y
+SDict begin H.S end
+ 2991 576 a 2991 576 a
+SDict begin 13 H.A end
+ 2991 576 a 2991 576 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1546) cvn H.B /DEST pdfmark
+end
+ 2991
+576 a FC(samhain)g(will)i(not)546 684 y(o)o(v)o(erwrite,)d(b)n(ut)i
+(append\),)e(or)1427 684 y
+SDict begin H.S end
+ 1427 684 a 1427 684 a
+SDict begin 13 H.A end
+ 1427
+684 a 1427 684 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1547) cvn H.B /DEST pdfmark
+end
+ 1427 684 a Fx(update)h FC(instead)h(of)2020
+684 y
+SDict begin H.S end
+ 2020 684 a 2020 684 a
+SDict begin 13 H.A end
+ 2020 684 a 2020 684 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1548) cvn H.B /DEST pdfmark
+end
+ 2020
+684 a Fx(init)h FC(should)f(be)g(used:)-2 868 y
+SDict begin H.S end
+ -2 868
+a -2 868 a
+SDict begin 13 H.A end
+ -2 868 a -2 868 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1549) cvn H.B /DEST pdfmark
+end
+ -2 868 a -2 868 a
+SDict begin H.S end
+ -2 868
+a -2 868 a
+SDict begin 13 H.A end
+ -2 868 a -2 868 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1550) cvn H.B /DEST pdfmark
+end
+ -2 868 a 546 958 a Fy(samhain)g(-t)942
+958 y
+SDict begin H.S end
+ 942 958 a 942 958 a
+SDict begin 13 H.A end
+ 942 958 a 942 958 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1551) cvn H.B /DEST pdfmark
+end
+ 942 958
+a Fl(init|update)438 1077 y
+SDict begin H.S end
+ 438 1077 a 438 1077 a
+SDict begin 13 H.A end
+ 438
+1077 a 438 1077 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1552) cvn H.B /DEST pdfmark
+end
+ 438 1077 a Black 463 1226 a FC(3.)p
+Black 546 1226 a
+SDict begin H.S end
+ 546 1226 a 546 1226 a
+SDict begin 13 H.A end
+ 546 1226 a 546
+1226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1553) cvn H.B /DEST pdfmark
+end
+ 546 1226 a FC(Start)723 1226 y
+SDict begin H.S end
+ 723 1226 a 723
+1226 a
+SDict begin 13 H.A end
+ 723 1226 a 723 1226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1554) cvn H.B /DEST pdfmark
+end
+ 723 1226 a FC(samhain)g(in)1106
+1226 y
+SDict begin H.S end
+ 1106 1226 a 1106 1226 a
+SDict begin 13 H.A end
+ 1106 1226 a 1106 1226
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1555) cvn H.B /DEST pdfmark
+end
+ 1106 1226 a Fx(c)o(hec)n(k)h FC(mode.)e(Either)h(select)h(this)f
+(mode)g(in)g(the)g(con\002guration)e(\002le,)i(or)g(use)h(the)546
+1334 y(command)d(line)i(option:)-2 1518 y
+SDict begin H.S end
+ -2 1518 a -2
+1518 a
+SDict begin 13 H.A end
+ -2 1518 a -2 1518 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1556) cvn H.B /DEST pdfmark
+end
+ -2 1518 a -2 1518 a
+SDict begin H.S end
+ -2 1518
+a -2 1518 a
+SDict begin 13 H.A end
+ -2 1518 a -2 1518 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1557) cvn H.B /DEST pdfmark
+end
+ -2 1518 a 546 1608 a
+Fy(samhain)g(-t)942 1608 y
+SDict begin H.S end
+ 942 1608 a 942 1608 a
+SDict begin 13 H.A end
+ 942
+1608 a 942 1608 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1558) cvn H.B /DEST pdfmark
+end
+ 942 1608 a Fl(check)-2 1776 y
+SDict begin H.S end
+ -2 1776
+a -2 1776 a
+SDict begin 13 H.A end
+ -2 1776 a -2 1776 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1559) cvn H.B /DEST pdfmark
+end
+ -2 1776 a 546 1882 a
+FC(T)-7 b(o)20 b(run)783 1882 y
+SDict begin H.S end
+ 783 1882 a 783 1882 a
+SDict begin 13 H.A end
+
+783 1882 a 783 1882 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1560) cvn H.B /DEST pdfmark
+end
+ 783 1882 a FC(samhain)g(as)h(a)f(background)d
+(process,)j(use)g(the)g(command)e(line)j(option)-2 2066
+y
+SDict begin H.S end
+ -2 2066 a -2 2066 a
+SDict begin 13 H.A end
+ -2 2066 a -2 2066 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1561) cvn H.B /DEST pdfmark
+end
+ -2 2066 a -2
+2066 a
+SDict begin H.S end
+ -2 2066 a -2 2066 a
+SDict begin 13 H.A end
+ -2 2066 a -2 2066 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1562) cvn H.B /DEST pdfmark
+end
+ -2 2066
+a 546 2156 a Fy(samhain)f(-D)h(-t)1051 2156 y
+SDict begin H.S end
+ 1051 2156
+a 1051 2156 a
+SDict begin 13 H.A end
+ 1051 2156 a 1051 2156 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1563) cvn H.B /DEST pdfmark
+end
+ 1051 2156 a Fl(check)-2
+2434 y
+SDict begin H.S end
+ -2 2434 a -2 2434 a
+SDict begin 13 H.A end
+ -2 2434 a -2 2434 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:HASH-FUNCTION) cvn H.B /DEST
+pdfmark end
+ -2 2434
+a 377 x Fu(5.2.)39 b(A)-6 b(v)m(ailab)o(le)38 b(c)o(hec)m(ksum)f
+(functions)2322 2811 y
+SDict begin H.S end
+ 2322 2811 a 2322 2811 a
+SDict begin 22.464 H.A end
+ 2322 2811
+a 2322 2811 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.34.1) cvn H.B /DEST pdfmark
+end
+ 2322 2811 a -2 2979 a
+SDict begin H.S end
+ -2 2979 a -2 2979
+a
+SDict begin 13 H.A end
+ -2 2979 a -2 2979 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1566) cvn H.B /DEST pdfmark
+end
+ -2 2979 a 396 3085 a FC(A)21 b(cryptographic)c
+(hash)j(function)e(is)j(a)g(one-w)o(ay)e(function)2166
+3085 y
+SDict begin H.S end
+ 2166 3085 a 2166 3085 a
+SDict begin 13 H.A end
+ 2166 3085 a 2166 3085
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1567) cvn H.B /DEST pdfmark
+end
+ 2166 3085 a Fy(H\()2259 3085 y
+SDict begin H.S end
+ 2259 3085 a 2259 3085
+a
+SDict begin 13 H.A end
+ 2259 3085 a 2259 3085 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1568) cvn H.B /DEST pdfmark
+end
+ 2259 3085 a Fl(foo)r Fy(\))g
+FC(such)h(that)g(it)h(is)g(easy)g(to)f(compute)3465 3085
+y
+SDict begin H.S end
+ 3465 3085 a 3465 3085 a
+SDict begin 13 H.A end
+ 3465 3085 a 3465 3085 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1569) cvn H.B /DEST pdfmark
+end
+ 3465
+3085 a Fy(H\()3558 3085 y
+SDict begin H.S end
+ 3558 3085 a 3558 3085 a
+SDict begin 13 H.A end
+ 3558
+3085 a 3558 3085 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1570) cvn H.B /DEST pdfmark
+end
+ 3558 3085 a Fl(foo)r Fy(\))396 3193
+y FC(from)578 3193 y
+SDict begin H.S end
+ 578 3193 a 578 3193 a
+SDict begin 13 H.A end
+ 578 3193 a
+578 3193 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1571) cvn H.B /DEST pdfmark
+end
+ 578 3193 a Fk(foo)p FC(,)g(b)n(ut)h(infeasible)e(to)i
+(compute)1615 3193 y
+SDict begin H.S end
+ 1615 3193 a 1615 3193 a
+SDict begin 13 H.A end
+ 1615 3193
+a 1615 3193 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1572) cvn H.B /DEST pdfmark
+end
+ 1615 3193 a Fk(foo)f FC(from)1953 3193
+y
+SDict begin H.S end
+ 1953 3193 a 1953 3193 a
+SDict begin 13 H.A end
+ 1953 3193 a 1953 3193 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1573) cvn H.B /DEST pdfmark
+end
+ 1953
+3193 a Fy(H\()2046 3193 y
+SDict begin H.S end
+ 2046 3193 a 2046 3193 a
+SDict begin 13 H.A end
+ 2046
+3193 a 2046 3193 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1574) cvn H.B /DEST pdfmark
+end
+ 2046 3193 a Fl(foo)r Fy(\))p FC(,)e(or)i(to)g
+(\002nd)2575 3193 y
+SDict begin H.S end
+ 2575 3193 a 2575 3193 a
+SDict begin 13 H.A end
+ 2575 3193
+a 2575 3193 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1575) cvn H.B /DEST pdfmark
+end
+ 2575 3193 a Fk(bar)j FC(such)d(that)3051
+3193 y
+SDict begin H.S end
+ 3051 3193 a 3051 3193 a
+SDict begin 13 H.A end
+ 3051 3193 a 3051 3193
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1576) cvn H.B /DEST pdfmark
+end
+ 3051 3193 a Fy(H\()3144 3193 y
+SDict begin H.S end
+ 3144 3193 a 3144 3193
+a
+SDict begin 13 H.A end
+ 3144 3193 a 3144 3193 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1577) cvn H.B /DEST pdfmark
+end
+ 3144 3193 a Fl(bar)t Fy(\))g
+FC(=)3398 3193 y
+SDict begin H.S end
+ 3398 3193 a 3398 3193 a
+SDict begin 13 H.A end
+ 3398 3193 a
+3398 3193 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1578) cvn H.B /DEST pdfmark
+end
+ 3398 3193 a Fy(H\()3491 3193 y
+SDict begin H.S end
+ 3491 3193
+a 3491 3193 a
+SDict begin 13 H.A end
+ 3491 3193 a 3491 3193 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1579) cvn H.B /DEST pdfmark
+end
+ 3491 3193 a Fl(foo)r
+Fy(\))396 3301 y FC(\(which)g(w)o(ould)f(allo)n(w)h(to)h(replace)1424
+3301 y
+SDict begin H.S end
+ 1424 3301 a 1424 3301 a
+SDict begin 13 H.A end
+ 1424 3301 a 1424 3301
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1580) cvn H.B /DEST pdfmark
+end
+ 1424 3301 a Fk(foo)f FC(with)1748 3301 y
+SDict begin H.S end
+ 1748 3301
+a 1748 3301 a
+SDict begin 13 H.A end
+ 1748 3301 a 1748 3301 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1581) cvn H.B /DEST pdfmark
+end
+ 1748 3301 a Fk(bar)j
+FC(without)c(changing)f(the)i(hash)g(function\).)-2 3485
+y
+SDict begin H.S end
+ -2 3485 a -2 3485 a
+SDict begin 13 H.A end
+ -2 3485 a -2 3485 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1582) cvn H.B /DEST pdfmark
+end
+ -2 3485 a 396
+3575 a FC(One)g(common)f(usage)g(of)h(a)h(such)f(a)h(hash)e(function)g
+(is)i(the)f(computation)e(of)2649 3575 y
+SDict begin H.S end
+ 2649 3575 a
+2649 3575 a
+SDict begin 13 H.A end
+ 2649 3575 a 2649 3575 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1583) cvn H.B /DEST pdfmark
+end
+ 2649 3575 a Fx(c)o(hec)n(ksums)i
+FC(of)g(\002les,)h(such)f(that)g(an)o(y)396 3683 y(modi\002cation)f(of)
+h(a)g(\002le)h(can)f(be)g(noticed,)f(as)i(its)g(checksum)e(will)i
+(change.)-2 3867 y
+SDict begin H.S end
+ -2 3867 a -2 3867 a
+SDict begin 13 H.A end
+ -2 3867 a -2 3867
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1584) cvn H.B /DEST pdfmark
+end
+ -2 3867 a 396 3957 a FC(F)o(or)f(computing)e(checksums)h(of)h
+(\002les,)h(and)f(also)g(for)g(some)g(other)f(purposes,)2699
+3957 y
+SDict begin H.S end
+ 2699 3957 a 2699 3957 a
+SDict begin 13 H.A end
+ 2699 3957 a 2699 3957
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1585) cvn H.B /DEST pdfmark
+end
+ 2699 3957 a FC(samhain)g(uses)i(the)f(TIGER)g(hash)396
+4065 y(function)f(de)n(v)o(eloped)e(by)j(Ross)h(Anderson)e(and)h(Eli)g
+(Biham.)g(The)g(output)f(of)h(this)h(function)d(is)j(192)e(bits)i
+(long,)396 4173 y(and)f(the)g(function)f(can)h(be)g(implemented)e(ef)n
+(\002ciently)h(on)h(32-bit)f(and)h(64-bit)f(machines.)g(T)-6
+b(echnical)19 b(details)i(can)396 4281 y(be)f(found)f(at)791
+4281 y
+SDict begin H.S end
+ 791 4281 a 791 4281 a
+SDict begin 13 H.A end
+ 791 4281 a 791 4281 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1586) cvn H.B /DEST pdfmark
+end
+ 791
+4281 a FC(this)h(page)g(\(http://www)-5 b
+(.cs.technion.ac.il/~biham/Repo)o(rts/T)m(ige)o(r/\).)-2
+4465 y
+SDict begin H.S end
+ -2 4465 a -2 4465 a
+SDict begin 13 H.A end
+ -2 4465 a -2 4465 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1587) cvn H.B /DEST pdfmark
+end
+ -2 4465
+a 396 4555 a FC(As)21 b(of)f(v)o(ersion)f(1.2.10,)f(also)j(the)f(MD5)g
+(and)g(SHA-1)f(hash)h(functions)f(are)h(a)n(v)n(ailable.)g(\(Y)-9
+b(ou)19 b(need)h(to)g(set)h(the)396 4663 y(option)629
+4663 y
+SDict begin H.S end
+ 629 4663 a 629 4663 a
+SDict begin 13 H.A end
+ 629 4663 a 629 4663 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1588) cvn H.B /DEST pdfmark
+end
+ 629
+4663 a Fx(Dig)o(estAlgo=MD5)e FC(or)1339 4663 y
+SDict begin H.S end
+ 1339
+4663 a 1339 4663 a
+SDict begin 13 H.A end
+ 1339 4663 a 1339 4663 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1589) cvn H.B /DEST pdfmark
+end
+ 1339 4663
+a Fx(Dig)o(estAlgo=SHA1)g FC(in)h(the)g(con\002g)f(\002le)i(to)g
+(enable)e(this\).)h(Note)g(that)h(MD5)f(is)396 4771 y(some)n(what)g(f)o
+(aster)m(,)f(b)n(ut)i(because)e(of)h(security)g(concerns)e(it)j(is)g
+(not)f(recommended)d(an)o(ymore)h(for)i(ne)n(w)396 4878
+y(applications.)-2 4907 y
+SDict begin H.S end
+ -2 4907 a -2 4907 a
+SDict begin 13 H.A end
+ -2 4907
+a -2 4907 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:FILE-SIGNATURES) cvn H.B /DEST
+pdfmark end
+ -2 4907 a Black 3661 5805 a Fx(40)p Black
+eop end
+%%Page: 41 46
+TeXDict begin 41 45 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.41) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1636) cvn H.B /DEST pdfmark
+end
+ -2 35 a 1956 104 a Fx(Chapter)20
+b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h(\002le)g(monitor)p
+Black -2 330 a Fu(5.3.)39 b(File)g(signatures)1292 330
+y
+SDict begin H.S end
+ 1292 330 a 1292 330 a
+SDict begin 22.464 H.A end
+ 1292 330 a 1292 330 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.35.1) cvn H.B /DEST pdfmark
+end
+ 1292 330
+a -2 528 a
+SDict begin H.S end
+ -2 528 a -2 528 a
+SDict begin 13 H.A end
+ -2 528 a -2 528 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1592) cvn H.B /DEST pdfmark
+end
+ -2 528
+a -2 528 a
+SDict begin H.S end
+ -2 528 a -2 528 a
+SDict begin 13 H.A end
+ -2 528 a -2 528 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1593) cvn H.B /DEST pdfmark
+end
+ -2 528
+a 396 604 a FC(samhain)20 b(w)o(orks)g(by)f(generating)g(a)h(database)g
+(of)1846 604 y
+SDict begin H.S end
+ 1846 604 a 1846 604 a
+SDict begin 13 H.A end
+ 1846 604 a 1846
+604 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1594) cvn H.B /DEST pdfmark
+end
+ 1846 604 a Fx(\002le)g(signatur)m(es)p FC(,)f(and)h(later)g
+(comparing)e(\002le)j(against)e(that)396 712 y(database)h(to)g
+(recognize)f(\002le)i(modi\002cations)d(and/or)h(added/deleted)f
+(\002les.)-2 896 y
+SDict begin H.S end
+ -2 896 a -2 896 a
+SDict begin 13 H.A end
+ -2 896 a -2 896
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1595) cvn H.B /DEST pdfmark
+end
+ -2 896 a 396 986 a FC(File)j(signatures)f(include:)-2
+1170 y
+SDict begin H.S end
+ -2 1170 a -2 1170 a
+SDict begin 13 H.A end
+ -2 1170 a -2 1170 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1596) cvn H.B /DEST pdfmark
+end
+ -2 1170
+a -2 1170 a
+SDict begin H.S end
+ -2 1170 a -2 1170 a
+SDict begin 13 H.A end
+ -2 1170 a -2 1170 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1597) cvn H.B /DEST pdfmark
+end
+ -2
+1170 a -2 1180 a
+SDict begin H.S end
+ -2 1180 a -2 1180 a
+SDict begin 13 H.A end
+ -2 1180 a -2 1180
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1598) cvn H.B /DEST pdfmark
+end
+ -2 1180 a Black 396 1322 a FB(\225)p Black 479 1322
+a
+SDict begin H.S end
+ 479 1322 a 479 1322 a
+SDict begin 13 H.A end
+ 479 1322 a 479 1322 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1599) cvn H.B /DEST pdfmark
+end
+ 479 1322
+a FC(a)h(192-bit)e(cryptographic)d(checksum)j(computed)f(using)i(the)g
+(TIGER)g(hash)g(algorithm)f(\(alternati)n(v)o(ely)479
+1430 y(SHA-1)h(or)g(MD5)g(can)g(be)g(used\),)-2 1445
+y
+SDict begin H.S end
+ -2 1445 a -2 1445 a
+SDict begin 13 H.A end
+ -2 1445 a -2 1445 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1600) cvn H.B /DEST pdfmark
+end
+ -2 1445 a Black
+396 1580 a FB(\225)p Black 479 1580 a
+SDict begin H.S end
+ 479 1580 a 479
+1580 a
+SDict begin 13 H.A end
+ 479 1580 a 479 1580 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1601) cvn H.B /DEST pdfmark
+end
+ 479 1580 a FC(the)g(inode)g(of)g(the)g
+(\002le,)-2 1592 y
+SDict begin H.S end
+ -2 1592 a -2 1592 a
+SDict begin 13 H.A end
+ -2 1592 a -2 1592
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1602) cvn H.B /DEST pdfmark
+end
+ -2 1592 a Black 396 1729 a FB(\225)p Black 479 1729
+a
+SDict begin H.S end
+ 479 1729 a 479 1729 a
+SDict begin 13 H.A end
+ 479 1729 a 479 1729 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1603) cvn H.B /DEST pdfmark
+end
+ 479 1729
+a FC(the)g(type)g(of)g(the)g(\002le,)-2 1747 y
+SDict begin H.S end
+ -2 1747
+a -2 1747 a
+SDict begin 13 H.A end
+ -2 1747 a -2 1747 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1604) cvn H.B /DEST pdfmark
+end
+ -2 1747 a Black 396 1879
+a FB(\225)p Black 479 1879 a
+SDict begin H.S end
+ 479 1879 a 479 1879 a
+SDict begin 13 H.A end
+ 479
+1879 a 479 1879 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1605) cvn H.B /DEST pdfmark
+end
+ 479 1879 a FC(o)n(wner)f(and)h(group,)-2
+1897 y
+SDict begin H.S end
+ -2 1897 a -2 1897 a
+SDict begin 13 H.A end
+ -2 1897 a -2 1897 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1606) cvn H.B /DEST pdfmark
+end
+ -2 1897
+a Black 396 2028 a FB(\225)p Black 479 2028 a
+SDict begin H.S end
+ 479 2028
+a 479 2028 a
+SDict begin 13 H.A end
+ 479 2028 a 479 2028 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1607) cvn H.B /DEST pdfmark
+end
+ 479 2028 a FC(access)h(permissions,)
+-2 2046 y
+SDict begin H.S end
+ -2 2046 a -2 2046 a
+SDict begin 13 H.A end
+ -2 2046 a -2 2046 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1608) cvn H.B /DEST pdfmark
+end
+ -2
+2046 a Black 396 2178 a FB(\225)p Black 479 2178 a
+SDict begin H.S end
+ 479
+2178 a 479 2178 a
+SDict begin 13 H.A end
+ 479 2178 a 479 2178 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1609) cvn H.B /DEST pdfmark
+end
+ 479 2178 a FC(on)f(Linux)f
+(only:)h(\003ags)g(of)g(the)g(e)o(xt2)g(\002le)h(system)f(\(see)2078
+2178 y
+SDict begin H.S end
+ 2078 2178 a 2078 2178 a
+SDict begin 13 H.A end
+ 2078 2178 a 2078 2178
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1610) cvn H.B /DEST pdfmark
+end
+ 2078 2178 a Fy(man)h(chattr)p FC(\),)-2 2196 y
+SDict begin H.S end
+ -2 2196
+a -2 2196 a
+SDict begin 13 H.A end
+ -2 2196 a -2 2196 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1611) cvn H.B /DEST pdfmark
+end
+ -2 2196 a Black 396 2327
+a FB(\225)p Black 479 2327 a
+SDict begin H.S end
+ 479 2327 a 479 2327 a
+SDict begin 13 H.A end
+ 479
+2327 a 479 2327 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1612) cvn H.B /DEST pdfmark
+end
+ 479 2327 a FC(the)f(timestamps)g(of)g(the)h(\002le,)
+-2 2345 y
+SDict begin H.S end
+ -2 2345 a -2 2345 a
+SDict begin 13 H.A end
+ -2 2345 a -2 2345 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1613) cvn H.B /DEST pdfmark
+end
+ -2
+2345 a Black 396 2476 a FB(\225)p Black 479 2476 a
+SDict begin H.S end
+ 479
+2476 a 479 2476 a
+SDict begin 13 H.A end
+ 479 2476 a 479 2476 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1614) cvn H.B /DEST pdfmark
+end
+ 479 2476 a FC(the)f(\002le)h
+(size,)-2 2488 y
+SDict begin H.S end
+ -2 2488 a -2 2488 a
+SDict begin 13 H.A end
+ -2 2488 a -2 2488
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1615) cvn H.B /DEST pdfmark
+end
+ -2 2488 a Black 396 2626 a FB(\225)p Black 479 2626
+a
+SDict begin H.S end
+ 479 2626 a 479 2626 a
+SDict begin 13 H.A end
+ 479 2626 a 479 2626 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1616) cvn H.B /DEST pdfmark
+end
+ 479 2626
+a FC(the)f(number)f(of)h(hard)f(links,)-2 2638 y
+SDict begin H.S end
+ -2 2638
+a -2 2638 a
+SDict begin 13 H.A end
+ -2 2638 a -2 2638 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1617) cvn H.B /DEST pdfmark
+end
+ -2 2638 a Black 396 2775
+a FB(\225)p Black 479 2775 a
+SDict begin H.S end
+ 479 2775 a 479 2775 a
+SDict begin 13 H.A end
+ 479
+2775 a 479 2775 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1618) cvn H.B /DEST pdfmark
+end
+ 479 2775 a FC(minor)g(and)h(major)f(de)n(vice)h
+(number)e(\(de)n(vices)i(only\))-2 2793 y
+SDict begin H.S end
+ -2 2793 a -2
+2793 a
+SDict begin 13 H.A end
+ -2 2793 a -2 2793 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1619) cvn H.B /DEST pdfmark
+end
+ -2 2793 a Black 396 2925 a
+FB(\225)p Black 479 2925 a
+SDict begin H.S end
+ 479 2925 a 479 2925 a
+SDict begin 13 H.A end
+ 479
+2925 a 479 2925 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1620) cvn H.B /DEST pdfmark
+end
+ 479 2925 a FC(and)g(the)g(name)g(of)g(the)g(link)o
+(ed)f(\002le)i(\(if)f(the)g(\002le)h(is)g(a)g(symbolic)e(link\).)-2
+3240 y
+SDict begin H.S end
+ -2 3240 a -2 3240 a
+SDict begin 13 H.A end
+ -2 3240 a -2 3240 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1621) cvn H.B /DEST pdfmark
+end
+ -2 3240
+a 396 3348 a FC(Depending)f(on)i(the)g(polic)o(y)f(chosen)h(for)f(a)i
+(particular)e(\002le,)h(only)g(a)g(subset)h(of)f(these)g(may)g(be)g
+(check)o(ed)f(for)396 3456 y(modi\002cations)g(\(see)p
+0 TeXcolorgray 1023 3456 a
+SDict begin H.S end
+ 1023 3456 a FC(Section)h(5.4.1)1461
+3456 y
+SDict begin 13 H.L end
+ 1461 3456 a 1461 3456 a
+SDict begin [ /Subtype /Link /Dest (0:POLICY) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1461 3456 a Black -2 w
+FC(>\),)g(b)n(ut)h(usually)e(all)i(these)f(informations)e(are)i
+(collected.)-2 3484 y
+SDict begin H.S end
+ -2 3484 a -2 3484 a
+SDict begin 13 H.A end
+ -2 3484 a -2
+3484 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:FILEDEF) cvn H.B /DEST pdfmark
+end
+ -2 3484 a 360 x Fu(5.4.)39 b(De\002ning)f(whic)o(h)g
+(\002les/directories)e(to)j(monitor)3147 3844 y
+SDict begin H.S end
+ 3147
+3844 a 3147 3844 a
+SDict begin 22.464 H.A end
+ 3147 3844 a 3147 3844 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.36.1) cvn H.B /DEST pdfmark
+end
+ 3147 3844
+a -2 4042 a
+SDict begin H.S end
+ -2 4042 a -2 4042 a
+SDict begin 13 H.A end
+ -2 4042 a -2 4042 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1625) cvn H.B /DEST pdfmark
+end
+ -2
+4042 a 396 4118 a FC(This)21 b(section)f(e)o(xplains)f(ho)n(w)g(to)i
+(specify)e(in)i(the)f(con\002guration)d(\002le,)k(which)f(\002les)h(or)
+f(directories)f(should)g(be)396 4226 y(monitored,)f(and)i(which)f
+(monitoring)f(polic)o(y)h(should)g(be)i(used.)-2 4243
+y
+SDict begin H.S end
+ -2 4243 a -2 4243 a
+SDict begin 13 H.A end
+ -2 4243 a -2 4243 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:POLICY) cvn H.B /DEST pdfmark
+end
+ -2 4243 a 396
+4554 a Fp(5.4.1.)36 b(Monitoring)c(policies)1822 4554
+y
+SDict begin H.S end
+ 1822 4554 a 1822 4554 a
+SDict begin 18.72 H.A end
+ 1822 4554 a 1822 4554 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.36.13.2) cvn H.B /DEST pdfmark
+end
+ 1822
+4554 a -2 4746 a
+SDict begin H.S end
+ -2 4746 a -2 4746 a
+SDict begin 13 H.A end
+ -2 4746 a -2 4746
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1628) cvn H.B /DEST pdfmark
+end
+ -2 4746 a -2 4746 a
+SDict begin H.S end
+ -2 4746 a -2 4746 a
+SDict begin 13 H.A end
+ -2 4746 a -2
+4746 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1629) cvn H.B /DEST pdfmark
+end
+ -2 4746 a 396 4828 a FC(samhain)20 b(of)n(fers)f(se)n(v)o(eral)h
+(pre-de\002ned)d(monitoring)h(policies.)i(Each)g(of)g(these)g(policies)
+g(has)g(its)i(o)n(wn)d(section)h(in)396 4936 y(the)g(con\002guration)e
+(\002le.)j(Placing)e(a)i(\002le)g(in)f(one)g(of)g(these)g(sections)g
+(will)h(select)g(the)f(respecti)n(v)o(e)f(polic)o(y)g(for)h(that)396
+5043 y(\002le.)-2 5210 y
+SDict begin H.S end
+ -2 5210 a -2 5210 a
+SDict begin 13 H.A end
+ -2 5210
+a -2 5210 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1630) cvn H.B /DEST pdfmark
+end
+ -2 5210 a 396 5317 a FC(The)g(a)n(v)n(ailable)g(policies)g
+(\(section)f(headings\))g(are:)1935 5317 y
+SDict begin H.S end
+ 1935 5317
+a 1935 5317 a
+SDict begin 13 H.A end
+ 1935 5317 a 1935 5317 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1631) cvn H.B /DEST pdfmark
+end
+ 1935 5317 a Black
+3661 5805 a Fx(41)p Black eop end
+%%Page: 42 47
+TeXDict begin 42 46 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.42) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 1956 104 a
+Fx(Chapter)20 b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h
+(\002le)g(monitor)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+
+-2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1633) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309 a FC(ReadOnly)-2 327
+y
+SDict begin H.S end
+ -2 327 a -2 327 a
+SDict begin 13 H.A end
+ -2 327 a -2 327 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1634) cvn H.B /DEST pdfmark
+end
+ -2 327 a Black
+Black 562 458 a
+SDict begin H.S end
+ 562 458 a 562 458 a
+SDict begin 13 H.A end
+ 562 458 a 562 458
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1635) cvn H.B /DEST pdfmark
+end
+ 562 458 a FC(All)h(modi\002cations)e(e)o(xcept)g(access)i(times)g
+(will)g(be)f(reported)e(for)i(these)g(\002les.)562 732
+y(Check)o(ed:)g(o)n(wner)m(,)e(group,)h(permissions,)g(\002le)i(type,)e
+(de)n(vice)g(number)m(,)f(hardlinks,)h(links,)h(inode,)562
+840 y(checksum,)f(size,)h(mtime,)g(ctime.)-2 1041 y
+SDict begin H.S end
+ -2
+1041 a -2 1041 a
+SDict begin 13 H.A end
+ -2 1041 a -2 1041 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1638) cvn H.B /DEST pdfmark
+end
+ -2 1041 a 396 1149
+a FC(LogFiles)-2 1167 y
+SDict begin H.S end
+ -2 1167 a -2 1167 a
+SDict begin 13 H.A end
+ -2 1167 a
+-2 1167 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1639) cvn H.B /DEST pdfmark
+end
+ -2 1167 a Black Black 562 1299 a
+SDict begin H.S end
+ 562 1299 a
+562 1299 a
+SDict begin 13 H.A end
+ 562 1299 a 562 1299 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1640) cvn H.B /DEST pdfmark
+end
+ 562 1299 a FC(Modi\002cations)f(of)h
+(timestamps,)g(\002le)h(size,)f(and)g(signature)f(will)i(be)f(ignored.)
+-2 1483 y
+SDict begin H.S end
+ -2 1483 a -2 1483 a
+SDict begin 13 H.A end
+ -2 1483 a -2 1483 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1641) cvn H.B /DEST pdfmark
+end
+ -2
+1483 a 562 1573 a FC(Check)o(ed:)g(o)n(wner)m(,)e(group,)h
+(permissions,)g(\002le)i(type,)e(de)n(vice)g(number)m(,)f(hardlinks,)h
+(links,)h(inode.)-2 1774 y
+SDict begin H.S end
+ -2 1774 a -2 1774 a
+SDict begin 13 H.A end
+ -2 1774
+a -2 1774 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1643) cvn H.B /DEST pdfmark
+end
+ -2 1774 a 396 1882 a FC(Gro)n(wingLogFiles)-2
+1900 y
+SDict begin H.S end
+ -2 1900 a -2 1900 a
+SDict begin 13 H.A end
+ -2 1900 a -2 1900 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1644) cvn H.B /DEST pdfmark
+end
+ -2 1900
+a Black Black 562 2031 a
+SDict begin H.S end
+ 562 2031 a 562 2031 a
+SDict begin 13 H.A end
+ 562 2031
+a 562 2031 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1645) cvn H.B /DEST pdfmark
+end
+ 562 2031 a FC(Modi\002cations)f(of)h(timestamps,)g(and)g
+(signature)f(will)i(be)f(ignored.)e(Modi\002cation)h(of)h(the)g(\002le)
+h(size)f(will)562 2139 y(only)g(be)g(ignored)e(if)j(the)f(\002le)h
+(size)g(has)1706 2139 y
+SDict begin H.S end
+ 1706 2139 a 1706 2139 a
+SDict begin 13 H.A end
+ 1706
+2139 a 1706 2139 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1646) cvn H.B /DEST pdfmark
+end
+ 1706 2139 a Fx(incr)m(eased)r FC(.)-2
+2323 y
+SDict begin H.S end
+ -2 2323 a -2 2323 a
+SDict begin 13 H.A end
+ -2 2323 a -2 2323 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1647) cvn H.B /DEST pdfmark
+end
+ -2 2323
+a 562 2413 a FC(Check)o(ed:)f(o)n(wner)m(,)e(group,)h(permissions,)g
+(\002le)i(type,)e(de)n(vice)g(number)m(,)f(hardlinks,)h(links,)h
+(inode,)f(\(size\).)-2 2615 y
+SDict begin H.S end
+ -2 2615 a -2 2615 a
+SDict begin 13 H.A end
+ -2
+2615 a -2 2615 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1649) cvn H.B /DEST pdfmark
+end
+ -2 2615 a 396 2723 a FC(Attrib)n(utes)-2
+2724 y
+SDict begin H.S end
+ -2 2724 a -2 2724 a
+SDict begin 13 H.A end
+ -2 2724 a -2 2724 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1650) cvn H.B /DEST pdfmark
+end
+ -2 2724
+a Black Black 562 2872 a
+SDict begin H.S end
+ 562 2872 a 562 2872 a
+SDict begin 13 H.A end
+ 562 2872
+a 562 2872 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1651) cvn H.B /DEST pdfmark
+end
+ 562 2872 a FC(Only)h(modi\002cations)f(of)h(o)n(wnership,)
+e(access)j(permissions,)e(and)h(de)n(vice)f(number)f(will)j(be)g(check)
+o(ed.)-2 3056 y
+SDict begin H.S end
+ -2 3056 a -2 3056 a
+SDict begin 13 H.A end
+ -2 3056 a -2 3056
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1652) cvn H.B /DEST pdfmark
+end
+ -2 3056 a 562 3146 a FC(Check)o(ed:)f(o)n(wner)m(,)e(group,)h
+(permissions,)g(\002le)i(type,)e(de)n(vice)g(number)-5
+b(.)-2 3347 y
+SDict begin H.S end
+ -2 3347 a -2 3347 a
+SDict begin 13 H.A end
+ -2 3347 a -2 3347 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1654) cvn H.B /DEST pdfmark
+end
+
+-2 3347 a 396 3455 a FC(IgnoreAll)-2 3473 y
+SDict begin H.S end
+ -2 3473 a
+-2 3473 a
+SDict begin 13 H.A end
+ -2 3473 a -2 3473 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1655) cvn H.B /DEST pdfmark
+end
+ -2 3473 a Black Black 562
+3605 a
+SDict begin H.S end
+ 562 3605 a 562 3605 a
+SDict begin 13 H.A end
+ 562 3605 a 562 3605 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1656) cvn H.B /DEST pdfmark
+end
+ 562
+3605 a FC(No)21 b(modi\002cations)d(will)j(be)f(reported.)f(Ho)n(we)n
+(v)o(er)m(,)f(the)2184 3605 y
+SDict begin H.S end
+ 2184 3605 a 2184 3605 a
+SDict begin 13 H.A end
+
+2184 3605 a 2184 3605 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1657) cvn H.B /DEST pdfmark
+end
+ 2184 3605 a Fx(e)n(xistence)i
+FC(of)g(the)g(speci\002ed)g(\002le)h(or)f(directory)e(will)562
+3713 y(still)k(be)e(check)o(ed.)-2 3796 y
+SDict begin H.S end
+ -2 3796 a -2
+3796 a
+SDict begin 13 H.A end
+ -2 3796 a -2 3796 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1659) cvn H.B /DEST pdfmark
+end
+ -2 3796 a 396 3904 a FC(IgnoreNone)-2
+3922 y
+SDict begin H.S end
+ -2 3922 a -2 3922 a
+SDict begin 13 H.A end
+ -2 3922 a -2 3922 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1660) cvn H.B /DEST pdfmark
+end
+ -2 3922
+a Black Black 562 4053 a
+SDict begin H.S end
+ 562 4053 a 562 4053 a
+SDict begin 13 H.A end
+ 562 4053
+a 562 4053 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1661) cvn H.B /DEST pdfmark
+end
+ 562 4053 a FC(All)h(modi\002cations,)e(including)f(access)
+j(time,)f(b)n(ut)g(e)o(xcluding)e(ctime,)i(will)h(be)f(reported)f(-)h
+(checking)e(atime)562 4161 y
+SDict begin H.S end
+ 562 4161 a 562 4161 a
+SDict begin 13 H.A end
+ 562
+4161 a 562 4161 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1662) cvn H.B /DEST pdfmark
+end
+ 562 4161 a Fx(and)k FC(ctime)e(w)o(ould)g(require)e
+(to)j(play)e(with)i(the)f(system)g(clock.)-2 4345 y
+SDict begin H.S end
+ -2
+4345 a -2 4345 a
+SDict begin 13 H.A end
+ -2 4345 a -2 4345 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1663) cvn H.B /DEST pdfmark
+end
+ -2 4345 a 562 4435
+a FC(Check)o(ed:)g(o)n(wner)m(,)e(group,)h(permissions,)g(\002le)i
+(type,)e(de)n(vice)g(number)m(,)f(hardlinks,)h(links,)h(inode,)562
+4543 y(checksum,)f(size,)h(mtime,)g(atime.)-2 4744 y
+SDict begin H.S end
+
+-2 4744 a -2 4744 a
+SDict begin 13 H.A end
+ -2 4744 a -2 4744 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1665) cvn H.B /DEST pdfmark
+end
+ -2 4744 a 396
+4852 a FC(User0)-2 4853 y
+SDict begin H.S end
+ -2 4853 a -2 4853 a
+SDict begin 13 H.A end
+ -2 4853
+a -2 4853 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1666) cvn H.B /DEST pdfmark
+end
+ -2 4853 a Black Black 562 5002 a
+SDict begin H.S end
+ 562 5002
+a 562 5002 a
+SDict begin 13 H.A end
+ 562 5002 a 562 5002 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1667) cvn H.B /DEST pdfmark
+end
+ 562 5002 a FC(Initialized)g(to:)g
+(report)f(all)i(modi\002cations.)-2 5103 y
+SDict begin H.S end
+ -2 5103 a
+-2 5103 a
+SDict begin 13 H.A end
+ -2 5103 a -2 5103 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1669) cvn H.B /DEST pdfmark
+end
+ -2 5103 a 396 5192 a FC(User1)-2
+5193 y
+SDict begin H.S end
+ -2 5193 a -2 5193 a
+SDict begin 13 H.A end
+ -2 5193 a -2 5193 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1670) cvn H.B /DEST pdfmark
+end
+ -2 5193
+a Black Black 562 5342 a
+SDict begin H.S end
+ 562 5342 a 562 5342 a
+SDict begin 13 H.A end
+ 562 5342
+a 562 5342 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1671) cvn H.B /DEST pdfmark
+end
+ 562 5342 a FC(Initialized)f(to:)g(report)f(all)i
+(modi\002cations.)p Black 3661 5805 a Fx(42)p Black eop
+end
+%%Page: 43 48
+TeXDict begin 43 47 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.43) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 1956 104 a
+Fx(Chapter)20 b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h
+(\002le)g(monitor)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+
+-2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1673) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309 a FC(Prelink)-2 310
+y
+SDict begin H.S end
+ -2 310 a -2 310 a
+SDict begin 13 H.A end
+ -2 310 a -2 310 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1674) cvn H.B /DEST pdfmark
+end
+ -2 310 a Black
+Black 562 458 a
+SDict begin H.S end
+ 562 458 a 562 458 a
+SDict begin 13 H.A end
+ 562 458 a 562 458
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1675) cvn H.B /DEST pdfmark
+end
+ 562 458 a FC(Modi\002cations)f(of)h(timestamps,)g(size,)h(and)e
+(inode)g(will)i(be)g(ignored)d(Checksums)h(will)i(be)g(v)o(eri\002ed)e
+(by)562 566 y(calling)809 566 y
+SDict begin H.S end
+ 809 566 a 809 566 a
+SDict begin 13 H.A end
+ 809
+566 a 809 566 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1676) cvn H.B /DEST pdfmark
+end
+ 809 566 a Fy(/usr/sbin/pr)o(elink)j(--v)o(erify)p
+FC(.)c(This)j(polic)o(y)e(is)i(intended)e(for)g(v)o(eri\002cation)g(of)
+h(prelink)o(ed)562 674 y(e)o(x)o(ecutables/libraries)e(and/or)h
+(directories)g(containing)f(such)i(\002les.)h(F)o(or)f(details)h(and)e
+(further)562 782 y(con\002guration)f(options)h(see)p
+0 TeXcolorgray 1418 782 a
+SDict begin H.S end
+ 1418 782 a FC(Section)h(5.4.8)1856
+782 y
+SDict begin 13 H.L end
+ 1856 782 a 1856 782 a
+SDict begin [ /Subtype /Link /Dest (0:PRELINK) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1856 782 a Black -2 w FC(>.)-2
+966 y
+SDict begin H.S end
+ -2 966 a -2 966 a
+SDict begin 13 H.A end
+ -2 966 a -2 966 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1678) cvn H.B /DEST pdfmark
+end
+ -2 966 a 562
+1056 a FC(Check)o(ed:)g(o)n(wner)m(,)e(group,)h(permissions,)g(\002le)i
+(type,)e(de)n(vice)g(number)m(,)f(hardlinks,)h(links,)h(checksum.)39
+1313 y
+SDict begin H.S end
+ 39 1313 a 39 1313 a
+SDict begin 11.7 H.A end
+ 39 1313 a 39 1313 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1679) cvn H.B /DEST pdfmark
+end
+ 39 1313
+a -2 1437 a
+SDict begin H.S end
+ -2 1437 a -2 1437 a
+SDict begin 11.7 H.A end
+ -2 1437 a -2 1437 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1681) cvn H.B /DEST pdfmark
+end
+ -2
+1437 a 562 1535 a Fw(NO)m(TE:)h Fv(Each)f(policy)f(can)i(be)e
+(modi\002ed)h(in)f(the)h(con\002g)g(\002le)g(section)2561
+1535 y
+SDict begin H.S end
+ 2561 1535 a 2561 1535 a
+SDict begin 11.7 H.A end
+ 2561 1535 a 2561 1535
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1682) cvn H.B /DEST pdfmark
+end
+ 2561 1535 a Fq(Misc)25 b Fv(with)20 b(entr)q(ies)f(lik)o(e)562
+1632 y
+SDict begin H.S end
+ 562 1632 a 562 1632 a
+SDict begin 11.7 H.A end
+ 562 1632 a 562 1632 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1683) cvn H.B /DEST pdfmark
+end
+ 562
+1632 a Fw(RedefReadOnl)o(y=)1165 1632 y
+SDict begin H.S end
+ 1165 1632 a 1165
+1632 a
+SDict begin 11.7 H.A end
+ 1165 1632 a 1165 1632 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1684) cvn H.B /DEST pdfmark
+end
+ 1165 1632 a Fm(+XXX)24
+b Fv(or)1437 1632 y
+SDict begin H.S end
+ 1437 1632 a 1437 1632 a
+SDict begin 11.7 H.A end
+ 1437 1632
+a 1437 1632 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1685) cvn H.B /DEST pdfmark
+end
+ 1437 1632 a Fw(RedefReadOnl)o(y=)2040 1632
+y
+SDict begin H.S end
+ 2040 1632 a 2040 1632 a
+SDict begin 11.7 H.A end
+ 2040 1632 a 2040 1632 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1686) cvn H.B /DEST pdfmark
+end
+ 2040
+1632 a Fm(-XXX)g Fv(to)c(add)f(\(+XXX\))h(or)g(remo)o(v)n(e)g(\(-XXX\))
+g(a)g(test)g(XXX,)562 1729 y(where)g(XXX)g(can)g(be)g(an)o(y)g(of)g
+(CHK)h(\(chec)o(ksum\),)f(LNK)g(\(link\),)f(HLN)h(\(hardlink\),)e(INO)j
+(\(inode\),)d(USR)i(\(user\),)562 1826 y(GRP)h(\(g)o(roup\),)e(MTM)i
+(\(mtime\),)e(A)-9 b(TM)21 b(\(atime\),)e(CTM)h(\(ctime\),)g(SIZ)g
+(\(siz)o(e\),)g(RDEV)h(\(de)n(vice)e(n)o(umbers\))562
+1923 y(and/or)g(MOD)i(\(\002le)f(mode\).)-2 1980 y
+SDict begin H.S end
+ -2
+1980 a -2 1980 a
+SDict begin 11.7 H.A end
+ -2 1980 a -2 1980 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1687) cvn H.B /DEST pdfmark
+end
+ -2 1980 a -2 1980
+a
+SDict begin H.S end
+ -2 1980 a -2 1980 a
+SDict begin 11.7 H.A end
+ -2 1980 a -2 1980 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1688) cvn H.B /DEST pdfmark
+end
+ -2 1980 a 562
+2062 a Fq(This)g(m)o(ust)h(come)g(bef)n(ore)d(an)o(y)i(\002le)g
+(policies)f(are)h(used)g(in)g(the)f(con\002g)h(\002le)o(.)-2
+2294 y
+SDict begin H.S end
+ -2 2294 a -2 2294 a
+SDict begin 13 H.A end
+ -2 2294 a -2 2294 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:FILE-SPECIFICATION) cvn H.B
+/DEST pdfmark end
+ -2 2294
+a 396 2622 a Fp(5.4.2.)36 b(File/director)q(y)f(speci\002cation)2242
+2622 y
+SDict begin H.S end
+ 2242 2622 a 2242 2622 a
+SDict begin 18.72 H.A end
+ 2242 2622 a 2242 2622
+a
+SDict begin [ /View [/XYZ H.V] /Dest (7.36.14.2) cvn H.B /DEST pdfmark
+end
+ 2242 2622 a -2 2813 a
+SDict begin H.S end
+ -2 2813 a -2 2813 a
+SDict begin 13 H.A end
+ -2 2813 a
+-2 2813 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1691) cvn H.B /DEST pdfmark
+end
+ -2 2813 a 396 2896 a FC(Entries)20 b(for)g(\002les)h(ha)n(v)o
+(e)f(the)g(follo)n(wing)e(syntax:)-2 3080 y
+SDict begin H.S end
+ -2 3080 a
+-2 3080 a
+SDict begin 13 H.A end
+ -2 3080 a -2 3080 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1692) cvn H.B /DEST pdfmark
+end
+ -2 3080 a -2 3080 a
+SDict begin H.S end
+ -2
+3080 a -2 3080 a
+SDict begin 13 H.A end
+ -2 3080 a -2 3080 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1693) cvn H.B /DEST pdfmark
+end
+ -2 3080 a 396 3170
+a Fy(\002le=)549 3170 y
+SDict begin H.S end
+ 549 3170 a 549 3170 a
+SDict begin 13 H.A end
+ 549 3170
+a 549 3170 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1694) cvn H.B /DEST pdfmark
+end
+ 549 3170 a Fl(/full/path/to/the/file)-2
+3346 y
+SDict begin H.S end
+ -2 3346 a -2 3346 a
+SDict begin 13 H.A end
+ -2 3346 a -2 3346 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1695) cvn H.B /DEST pdfmark
+end
+ -2 3346
+a 396 3444 a FC(Entries)i(for)g(directories)f(ha)n(v)o(e)h(the)g(follo)
+n(wing)e(syntax:)-2 3628 y
+SDict begin H.S end
+ -2 3628 a -2 3628 a
+SDict begin 13 H.A end
+ -2 3628
+a -2 3628 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1696) cvn H.B /DEST pdfmark
+end
+ -2 3628 a -2 3628 a
+SDict begin H.S end
+ -2 3628 a -2 3628 a
+SDict begin 13 H.A end
+ -2
+3628 a -2 3628 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1697) cvn H.B /DEST pdfmark
+end
+ -2 3628 a 396 3718 a Fy(dir=)549 3718
+y
+SDict begin H.S end
+ 549 3718 a 549 3718 a
+SDict begin 13 H.A end
+ 549 3718 a 549 3718 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1698) cvn H.B /DEST pdfmark
+end
+ 549 3718
+a Fl([recursion)44 b(depth]/full/path/to/the/dir)-2 3894
+y
+SDict begin H.S end
+ -2 3894 a -2 3894 a
+SDict begin 13 H.A end
+ -2 3894 a -2 3894 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1699) cvn H.B /DEST pdfmark
+end
+ -2 3894 a 396
+3992 a FC(The)20 b(speci\002cation)g(of)f(a)i(\(numerical\))d
+(recursion)h(depth)g(is)i(optional)e(\(see)p 0 TeXcolorgray
+2600 3992 a
+SDict begin H.S end
+ 2600 3992 a FC(Section)h(5.4.5)3038 3992
+y
+SDict begin 13 H.L end
+ 3038 3992 a 3038 3992 a
+SDict begin [ /Subtype /Link /Dest (0:RECDEP) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3038 3992 a Black -2 w FC(>\).)g(\(Do)g(not)g
+(put)g(the)396 4100 y(recursion)f(depth)g(in)i(brack)o(ets)e(--)h(the)o
+(y)g(just)g(indicate)g(that)g(this)h(is)g(an)f(optional)f(ar)o(gument)f
+(...\).)-2 4284 y
+SDict begin H.S end
+ -2 4284 a -2 4284 a
+SDict begin 13 H.A end
+ -2 4284 a -2 4284
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1701) cvn H.B /DEST pdfmark
+end
+ -2 4284 a 396 4374 a FC(W)m(ildcard)i(patterns)f(\('*',)g('?',)h
+('[...]'\))e(as)j(in)f(shell)h(globbing)d(are)i(supported)e(for)i
+(paths.)g(The)f(leading)h('/')g(is)396 4482 y(mandatory)-5
+b(.)-2 4500 y
+SDict begin H.S end
+ -2 4500 a -2 4500 a
+SDict begin 11.7 H.A end
+ -2 4500 a -2 4500 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1702) cvn H.B /DEST pdfmark
+end
+
+-2 4500 a -2 4624 a
+SDict begin H.S end
+ -2 4624 a -2 4624 a
+SDict begin 11.7 H.A end
+ -2 4624 a -2
+4624 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1704) cvn H.B /DEST pdfmark
+end
+ -2 4624 a 562 4704 a Fw(Note)20 b(on)g(directories:)e
+Fv(A)i(director)r(y)g(is)h(\(a\))f(a)g(collection)e(of)i(\002les)o(,)h
+(with)e(\(b\))h(a)h(director)r(y)e(special)g(\002le)i(where)562
+4801 y(a)f(listing)f(of)h(all)f(\002les)h(in)g(the)f(director)q(ies)g
+(is)h(k)o(ept.)f(This)h(director)r(y)f(special)g(\002le)h(will)f(be)h
+(modi\002ed)f(in)h(case)g(of)g(a)562 4898 y(\002le)h(addition,)c(remo)o
+(v)n(al,)i(or)h(renaming.)e(Depending)f(on)j(the)g(chosen)f(policy)-7
+b(,)20 b(samhain)f(will)g(repor)s(t)g(on)h(such)562 4995
+y(modi\002cations)f(of)h(the)g(director)r(y)f(special)h(\002le)o(.)-2
+5052 y
+SDict begin H.S end
+ -2 5052 a -2 5052 a
+SDict begin 11.7 H.A end
+ -2 5052 a -2 5052 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1705) cvn H.B /DEST pdfmark
+end
+ -2 5052
+a 562 5134 a Fv(The)g(addition)d(and/or)i(deletion)e(of)j(\002les)h
+(from)f(a)h(director)r(y)e(modi\002es)h(the)g(director)r(y)f(special)g
+(\002le)562 5231 y(\(mtime/ctime\).)g(The)h(addition/deletio)o(n)15
+b(of)20 b(subdirector)q(ies)e(will)h(also)h(modify)g(the)f(n)o(umber)h
+(of)g(hardlinks)f(of)562 5328 y(the)h(director)r(y)f(special)h(\002le)o
+(.)g(A)g(modi\002cation)f(of)h(a)g(\002le)2137 5328 y
+SDict begin H.S end
+
+2137 5328 a 2137 5328 a
+SDict begin 11.7 H.A end
+ 2137 5328 a 2137 5328 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1706) cvn H.B /DEST pdfmark
+end
+ 2137
+5328 a Fq(ma)n(y)28 b Fv(modify)20 b(a)h(director)r(y)e(special)g
+(\002le)p Black 3661 5805 a Fx(43)p Black eop end
+%%Page: 44 49
+TeXDict begin 44 48 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.44) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 1956 104 a
+Fx(Chapter)20 b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h
+(\002le)g(monitor)p Black 562 309 a Fv(\(mtime/ctime\),)f(if)h(this)g
+(modi\002cation)f(is)i(done)d(b)o(y)j(\002rst)g(creating)d(of)i(a)h
+(tempor)o(ar)r(y)e(\002le)o(,)h(f)n(ollo)o(w)o(ed)e(b)o(y)562
+406 y(renaming)h(this)h(tempor)o(ar)r(y)f(\002le)h(to)g(the)g(or)q
+(iginal)e(one)o(.)39 555 y
+SDict begin H.S end
+ 39 555 a 39 555 a
+SDict begin 13 H.A end
+ 39 555 a
+39 555 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:POLRULES) cvn H.B /DEST pdfmark
+end
+ 39 555 a 396 851 a Fj(5.4.2.1.)28 b(Rules)1027
+851 y
+SDict begin H.S end
+ 1027 851 a 1027 851 a
+SDict begin 15.6 H.A end
+ 1027 851 a 1027 851 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.36.14.5.3) cvn H.B /DEST pdfmark
+end
+ 1027
+851 a -2 852 a
+SDict begin H.S end
+ -2 852 a -2 852 a
+SDict begin 13 H.A end
+ -2 852 a -2 852 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1709) cvn H.B /DEST pdfmark
+end
+ -2
+852 a -2 872 a
+SDict begin H.S end
+ -2 872 a -2 872 a
+SDict begin 13 H.A end
+ -2 872 a -2 872 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1710) cvn H.B /DEST pdfmark
+end
+ -2
+872 a Black 463 1040 a FC(1.)p Black 546 1040 a
+SDict begin H.S end
+ 546 1040
+a 546 1040 a
+SDict begin 13 H.A end
+ 546 1040 a 546 1040 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1711) cvn H.B /DEST pdfmark
+end
+ 546 1040 a FC(F)o(or)20
+b(the)g(\002le)h(check,)e(samhain)g(does)h(not)g(follo)n(w)f(symlinks.)
+h(If)g(the)g(ar)o(gument)e(for)h(a)i(\002le=...)f(directi)n(v)o(e)f(is)
+i(a)546 1148 y(symlink,)e(then)h(the)g(symlink)f(itself)i(is)g(check)o
+(ed,)e(not)g(the)i(location)e(it)i(points)f(to.)-2 1166
+y
+SDict begin H.S end
+ -2 1166 a -2 1166 a
+SDict begin 13 H.A end
+ -2 1166 a -2 1166 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1712) cvn H.B /DEST pdfmark
+end
+ -2 1166 a Black
+463 1297 a FC(2.)p Black 546 1297 a
+SDict begin H.S end
+ 546 1297 a 546 1297
+a
+SDict begin 13 H.A end
+ 546 1297 a 546 1297 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1713) cvn H.B /DEST pdfmark
+end
+ 546 1297 a FC(The)g(ar)o(gument)d(for)j(a)h
+(dir=...)e(directi)n(v)o(e)g(must)h(be)g(a)2073 1297
+y
+SDict begin H.S end
+ 2073 1297 a 2073 1297 a
+SDict begin 13 H.A end
+ 2073 1297 a 2073 1297 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1714) cvn H.B /DEST pdfmark
+end
+ 2073
+1297 a Fx(dir)m(ectory)p FC(.)f(Using)h(a)h(symlink)e(to)i(a)f
+(directory)f(as)546 1405 y(ar)o(gument)f(is)j(incorrect.)-2
+1423 y
+SDict begin H.S end
+ -2 1423 a -2 1423 a
+SDict begin 13 H.A end
+ -2 1423 a -2 1423 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1715) cvn H.B /DEST pdfmark
+end
+ -2 1423
+a Black 463 1555 a FC(3.)p Black 546 1555 a
+SDict begin H.S end
+ 546 1555
+a 546 1555 a
+SDict begin 13 H.A end
+ 546 1555 a 546 1555 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1716) cvn H.B /DEST pdfmark
+end
+ 546 1555 a FC(Precedence)d(is)k(gi)n
+(v)o(en)c(to)j(the)f(most)g(speci\002c)h(location)e(in)h(the)g
+(\002lesystem.)h(I.e.,)2929 1555 y
+SDict begin H.S end
+ 2929 1555 a 2929 1555
+a
+SDict begin 13 H.A end
+ 2929 1555 a 2929 1555 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1717) cvn H.B /DEST pdfmark
+end
+ 2929 1555 a -2 1573 a
+SDict begin H.S end
+ -2 1573
+a -2 1573 a
+SDict begin 13 H.A end
+ -2 1573 a -2 1573 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1718) cvn H.B /DEST pdfmark
+end
+ -2 1573 a Black 546 1704
+a FB(\225)p Black 629 1704 a
+SDict begin H.S end
+ 629 1704 a 629 1704 a
+SDict begin 13 H.A end
+ 629
+1704 a 629 1704 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1719) cvn H.B /DEST pdfmark
+end
+ 629 1704 a FC(a)f(polic)o(y)f(for)h(a)h(speci\002c)f
+(\002le)h(o)o(v)o(errides)d(the)i(polic)o(y)f(for)h(its)h(directory)-2
+1722 y
+SDict begin H.S end
+ -2 1722 a -2 1722 a
+SDict begin 13 H.A end
+ -2 1722 a -2 1722 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1720) cvn H.B /DEST pdfmark
+end
+ -2 1722
+a Black 546 1854 a FB(\225)p Black 629 1854 a
+SDict begin H.S end
+ 629 1854
+a 629 1854 a
+SDict begin 13 H.A end
+ 629 1854 a 629 1854 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1721) cvn H.B /DEST pdfmark
+end
+ 629 1854 a FC(a)f(polic)o(y)f(for)h
+(a)h(subdirectory)c(o)o(v)o(errides)i(the)h(polic)o(y)f(for)g(its)j
+(parent)d(directory)-2 1913 y
+SDict begin H.S end
+ -2 1913 a -2 1913 a
+SDict begin 13 H.A end
+ -2
+1913 a -2 1913 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1722) cvn H.B /DEST pdfmark
+end
+ -2 1913 a Black 463 2045 a FC(4.)p Black
+546 2045 a
+SDict begin H.S end
+ 546 2045 a 546 2045 a
+SDict begin 13 H.A end
+ 546 2045 a 546 2045
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1723) cvn H.B /DEST pdfmark
+end
+ 546 2045 a FC(Checking)g(a)h(directory)f(with)h(dir=...)f(will)i
+(check)f(both)f(the)2308 2045 y
+SDict begin H.S end
+ 2308 2045 a 2308 2045
+a
+SDict begin 13 H.A end
+ 2308 2045 a 2308 2045 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1724) cvn H.B /DEST pdfmark
+end
+ 2308 2045 a Fx(content)g(of)i(the)f(dir)m
+(ectory)g FC(as)h(well)f(as)h(the)546 2153 y
+SDict begin H.S end
+ 546 2153
+a 546 2153 a
+SDict begin 13 H.A end
+ 546 2153 a 546 2153 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1725) cvn H.B /DEST pdfmark
+end
+ 546 2153 a Fx(dir)m(ectory)f
+(special)g(\002le)g FC(itself)-2 2170 y
+SDict begin H.S end
+ -2 2170 a -2
+2170 a
+SDict begin 13 H.A end
+ -2 2170 a -2 2170 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1726) cvn H.B /DEST pdfmark
+end
+ -2 2170 a Black 463 2302 a
+FC(5.)p Black 546 2302 a
+SDict begin H.S end
+ 546 2302 a 546 2302 a
+SDict begin 13 H.A end
+ 546 2302
+a 546 2302 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1727) cvn H.B /DEST pdfmark
+end
+ 546 2302 a FC(Using)g(a)g(directory)f(as)i(ar)o(gument)d
+(for)h(both)h(a)g(\002le=...)g(and)g(a)g(dir=...)f(directi)n(v)o(e)g
+(will)i(ha)n(v)o(e)f(the)g(ef)n(fect)g(that)546 2410
+y(the)g(\002le=...)g(directi)n(v)o(e)f(will)i(o)o(v)o(erride)d(the)i
+(dir=...)f(directi)n(v)o(e)g(for)g(the)i(directory)d(special)i(\002le,)
+h(while)f(the)546 2518 y(dir=...)f(directi)n(v)o(e)g(remains)g(in)i(ef)
+n(fect)e(for)h(the)g(directory)f(content.)-2 2660 y
+SDict begin H.S end
+ -2
+2660 a -2 2660 a
+SDict begin 13 H.A end
+ -2 2660 a -2 2660 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SUPPRESS) cvn H.B /DEST pdfmark
+end
+ -2 2660 a 396 2971
+a Fp(5.4.3.)36 b(Suppress)e(messa)o(g)q(es)i(about)e(ne)n(w/deleted)h
+(\002les)3230 2971 y
+SDict begin H.S end
+ 3230 2971 a 3230 2971 a
+SDict begin 18.72 H.A end
+ 3230 2971
+a 3230 2971 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.36.15.2) cvn H.B /DEST pdfmark
+end
+ 3230 2971 a -2 3163 a
+SDict begin H.S end
+ -2 3163 a -2 3163
+a
+SDict begin 13 H.A end
+ -2 3163 a -2 3163 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1730) cvn H.B /DEST pdfmark
+end
+ -2 3163 a 396 3245 a FC(If)20 b(you)g(w)o(ant)g
+(to)g(suppress)g(messages)g(about)f(the)i(creation)e(of)h(certain)f
+(\002les)j(\(e.g.)d(rotated)g(log)h(\002les\),)h(you)e(can)396
+3352 y(use)i(the)f(options)915 3352 y
+SDict begin H.S end
+ 915 3352 a 915
+3352 a
+SDict begin 13 H.A end
+ 915 3352 a 915 3352 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1731) cvn H.B /DEST pdfmark
+end
+ 915 3352 a Fy(Ignor)o(eAdded=)1432
+3352 y
+SDict begin H.S end
+ 1432 3352 a 1432 3352 a
+SDict begin 13 H.A end
+ 1432 3352 a 1432 3352
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1732) cvn H.B /DEST pdfmark
+end
+ 1432 3352 a Fl(/fullpath/with_some_regex_inside)15
+b FC(and/or)396 3460 y
+SDict begin H.S end
+ 396 3460 a 396 3460 a
+SDict begin 13 H.A end
+ 396 3460
+a 396 3460 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1733) cvn H.B /DEST pdfmark
+end
+ 396 3460 a Fy(Ignor)o(eMissing=)954 3460
+y
+SDict begin H.S end
+ 954 3460 a 954 3460 a
+SDict begin 13 H.A end
+ 954 3460 a 954 3460 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1734) cvn H.B /DEST pdfmark
+end
+ 954 3460
+a Fl(/fullpath/with_some_regex_inside)h FC(\(to)k(be)g(placed)f(in)i
+(the)f([Misc])g(section)g(of)396 3568 y(the)g(con\002guration)e
+(\002les.)j(If)f(you)f(w)o(ant)i(to)f(add)g(more)f(re)o(gular)g(e)o
+(xpressions,)f(you)h(can)h(use)h(these)f(options)396
+3676 y(multiple)g(times.)-2 3694 y
+SDict begin H.S end
+ -2 3694 a -2 3694
+a
+SDict begin 11.7 H.A end
+ -2 3694 a -2 3694 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1735) cvn H.B /DEST pdfmark
+end
+ -2 3694 a -2 3819 a
+SDict begin H.S end
+ -2 3819 a -2
+3819 a
+SDict begin 11.7 H.A end
+ -2 3819 a -2 3819 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1737) cvn H.B /DEST pdfmark
+end
+ -2 3819 a 562 3898 a Fw(Note:)g
+Fv(The)f(argument)g(to)1343 3898 y
+SDict begin H.S end
+ 1343 3898 a 1343 3898
+a
+SDict begin 11.7 H.A end
+ 1343 3898 a 1343 3898 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1738) cvn H.B /DEST pdfmark
+end
+ 1343 3898 a Fw(IgnoreAd)o(ded)f
+Fv(and)1969 3898 y
+SDict begin H.S end
+ 1969 3898 a 1969 3898 a
+SDict begin 11.7 H.A end
+ 1969 3898
+a 1969 3898 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1739) cvn H.B /DEST pdfmark
+end
+ 1969 3898 a Fw(IgnoreMissing)f Fv(m)o(ust)k(be)f(a)h
+(regular)d(e)n(xpression)h(that)562 3995 y(matches)h(the)g(full)f
+(path.T)-9 b(o)19 b(test)h(y)o(our)f(rege)n(x)h(bef)n(ore)e(putting)g
+(in)i(samhain,)f(y)o(ou)h(do)g(something)e(lik)o(e)h(this:)-2
+4095 y
+SDict begin H.S end
+ -2 4095 a -2 4095 a
+SDict begin 10.53 H.A end
+ -2 4095 a -2 4095 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1740) cvn H.B /DEST pdfmark
+end
+ -2 4095
+a 562 4165 a Ft(#)41 b(This)h(regex)g(matches)h(all)e(files)h(added)g
+(by)f(logrotate)j(\(e.g:)e(messages.1)i(or)d(messages.2.gz,)k(etc.\))
+562 4253 y(cd)c(/var/log)562 4340 y(for)h(file)f(in)g(*;)h(do)f(echo)g
+($file|)i(egrep)f("\(cron|ksyms|maillog)q(|m)q(ess)q(age)q(s|r)q(pmp)q
+(kgs)q(|se)q(cu)q(re|)q(spo)q(ole)q(r|u)q(p2d)q(ate)q(|wm)q(tp)q(\)\\.)
+q([0-)q(9]\()q(\\.g)q(z\)?)q($")47 b(;)41 b(done)-2 4440
+y
+SDict begin H.S end
+ -2 4440 a -2 4440 a
+SDict begin 11.7 H.A end
+ -2 4440 a -2 4440 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1741) cvn H.B /DEST pdfmark
+end
+ -2 4440 a 562
+4520 a Fv(Once)21 b(it')l(s)f(w)o(or)q(k)h(this)f(w)o(a)n(y)-7
+b(,)19 b(y)o(ou)h(can)g(add)g(it)g(to)g(y)o(our)g(samhainrc)f(\002le)o
+(,)h(b)o(ut)f(don't)g(f)n(orget)f(to)i(add)g(the)g(full)f(path.)562
+4618 y(e)o(.g:)-2 4717 y
+SDict begin H.S end
+ -2 4717 a -2 4717 a
+SDict begin 10.53 H.A end
+ -2 4717
+a -2 4717 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1742) cvn H.B /DEST pdfmark
+end
+ -2 4717 a 562 4788 a Ft(IgnoreAdded)44 b(=)d
+(/var/log/\(cron|ksym)q(s|)q(mai)q(llo)q(g|m)q(ess)q(age)q(s|r)q(pmp)q
+(kg)q(s|s)q(ecu)q(re|)q(spo)q(ole)q(r|u)q(p2)q(dat)q(e|w)q(mtp)q(\)\\.)
+q([0-)q(9]\()q(\\.g)q(z\))q(?$)-2 4888 y
+SDict begin H.S end
+ -2 4888 a -2
+4888 a
+SDict begin 11.7 H.A end
+ -2 4888 a -2 4888 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1743) cvn H.B /DEST pdfmark
+end
+ -2 4888 a 562 4968 a Fv(This)20
+b(tip)g(has)g(been)f(pro)o(vided)f(b)o(y)i(jim)h(at)f(aegis)f(h)n
+(yphen)g(cor)r(p)h(dot)g(org.)39 5107 y
+SDict begin H.S end
+ 39 5107 a 39
+5107 a
+SDict begin 11.7 H.A end
+ 39 5107 a 39 5107 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1744) cvn H.B /DEST pdfmark
+end
+ 39 5107 a Black 3661 5805
+a Fx(44)p Black eop end
+%%Page: 45 50
+TeXDict begin 45 49 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.45) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 1956 104 a
+Fx(Chapter)20 b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h
+(\002le)g(monitor)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 11.7 H.A end
+
+-2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1746) cvn H.B /DEST pdfmark
+end
+ -2 226 a 562 309 a Fw(Alternative:)e
+Fv(If)i(a)h(director)r(y)e(is)i(added)d(to)j([Attr)q(ib)o(utes])c(as)k
+(a)f(\002le=/dir)l(,)f(then)g(only)h(the)f(director)r(y)h(special)f
+(\002le)562 406 y(is)i(monitored)d(f)n(or)i(per)r(missions/o)o
+(wnership)m(.)c(The)k(adv)n(antage)e(is)i(that)g(additions/remo)o(v)n
+(als)c(of)k(\002les)h(to)f(that)562 503 y(subdirector)r(y)f(can)h
+(happen)e(without)h(recourse)o(,)g(b)o(ut)g(the)h(integ)o(r)q(ity)f(of)
+h(that)f(director)r(y)h(is)g(def)n(ended.)562 600 y(Assuming)g(the)g
+(administr)o(ator)e(doesn't)g(w)o(ant)i(to)g(get)f(g)o(r)o(an)o(ular)g
+(le)n(v)n(el)g(of)h(detail.)-2 658 y
+SDict begin H.S end
+ -2 658 a -2 658
+a
+SDict begin 11.7 H.A end
+ -2 658 a -2 658 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1747) cvn H.B /DEST pdfmark
+end
+ -2 658 a 562 739 a Fv(Good)g(f)n(or)g(such)g
+(director)q(ies)f(as:)1537 739 y
+SDict begin H.S end
+ 1537 739 a 1537 739
+a
+SDict begin 11.7 H.A end
+ 1537 739 a 1537 739 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1748) cvn H.B /DEST pdfmark
+end
+ 1537 739 a Ft(/var/mail)1921
+739 y
+SDict begin H.S end
+ 1921 739 a 1921 739 a
+SDict begin 11.7 H.A end
+ 1921 739 a 1921 739 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1749) cvn H.B /DEST pdfmark
+end
+ 1921
+739 a Ft(/var/cron/tabs)2507 739 y
+SDict begin H.S end
+ 2507 739 a 2507 739
+a
+SDict begin 11.7 H.A end
+ 2507 739 a 2507 739 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1750) cvn H.B /DEST pdfmark
+end
+ 2507 739 a Ft(/var/tmp)2850 739
+y
+SDict begin H.S end
+ 2850 739 a 2850 739 a
+SDict begin 11.7 H.A end
+ 2850 739 a 2850 739 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1751) cvn H.B /DEST pdfmark
+end
+ 2850 739
+a Ft(/tmp)-2 791 y
+SDict begin H.S end
+ -2 791 a -2 791 a
+SDict begin 11.7 H.A end
+ -2 791 a -2 791
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1752) cvn H.B /DEST pdfmark
+end
+ -2 791 a 562 877 a Fv(This)h(tip)g(has)g(been)f(pro)o(vided)f(b)o(y)i
+(Br)q(ian)g(A.)g(Seklec)o(ki)-2 1110 y
+SDict begin H.S end
+ -2 1110 a -2 1110
+a
+SDict begin 13 H.A end
+ -2 1110 a -2 1110 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DYNUP) cvn H.B /DEST pdfmark
+end
+ -2 1110 a 396 1438 a Fp(5.4.4.)36
+b(Dynamic)f(database)h(update)396 1593 y(\(modi\002ed/disappeared/ne)n
+(w)i(\002les\))2247 1593 y
+SDict begin H.S end
+ 2247 1593 a 2247 1593 a
+SDict begin 18.72 H.A end
+ 2247
+1593 a 2247 1593 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.36.16.2) cvn H.B /DEST pdfmark
+end
+ 2247 1593 a -2 1784 a
+SDict begin H.S end
+ -2 1784 a -2
+1784 a
+SDict begin 13 H.A end
+ -2 1784 a -2 1784 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1755) cvn H.B /DEST pdfmark
+end
+ -2 1784 a -2 1784 a
+SDict begin H.S end
+ -2 1784
+a -2 1784 a
+SDict begin 13 H.A end
+ -2 1784 a -2 1784 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1756) cvn H.B /DEST pdfmark
+end
+ -2 1784 a 396 1867 a
+FC(samhain)20 b(reads)g(the)g(\002le)h(signature)e(database)g(at)i
+(startup)f(and)f(creates)i(an)f(in-memory)e(cop)o(y)-5
+b(.)18 b(This)j(in-memory)396 1975 y(cop)o(y)f(is)h(then)e(dynamically)
+g(updated)f(to)j(re\003ect)f(changes)f(in)h(the)h(\002le)f(system.)-2
+2159 y
+SDict begin H.S end
+ -2 2159 a -2 2159 a
+SDict begin 13 H.A end
+ -2 2159 a -2 2159 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1757) cvn H.B /DEST pdfmark
+end
+ -2 2159
+a 396 2249 a FC(I.e.)g(for)g(each)f(modi\002ed/disappeared/ne)n(w)d
+(\002le)21 b(you)e(will)i(recei)n(v)o(e)f(an)g(alarm,)f(then)h(the)g
+(in-memory)e(cop)o(y)h(of)396 2357 y(the)h(\002le)h(signature)e
+(database)h(is)h(updated,)e(and)g(you)g(will)i(only)f(recei)n(v)o(e)f
+(another)g(alarm)g(for)h(that)g(\002le)h(if)g(it)f(is)396
+2465 y(modi\002ed)f(again)g(\(or)h(disappears/appears)e(again\).)-2
+2649 y
+SDict begin H.S end
+ -2 2649 a -2 2649 a
+SDict begin 13 H.A end
+ -2 2649 a -2 2649 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1758) cvn H.B /DEST pdfmark
+end
+ -2 2649
+a 396 2739 a FC(Note)i(that)h(the)f(on-disk)f(\002le)i(signature)e
+(database)g(is)1950 2739 y
+SDict begin H.S end
+ 1950 2739 a 1950 2739 a
+SDict begin 13 H.A end
+ 1950
+2739 a 1950 2739 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1759) cvn H.B /DEST pdfmark
+end
+ 1950 2739 a Fx(not)j FC(updated)c(\(if)i(you)g(ha)n
+(v)o(e)f(signed)h(it,)h(the)f(daemon)e(could)396 2847
+y(not)i(do)g(that)g(an)o(yw)o(ay\).)e(Ho)n(we)n(v)o(er)m(,)h(as)h(long)
+g(as)h(the)f(machine)f(is)i(not)f(rebooted,)e(there)i(should)f(be)h(no)
+g(need)f(to)396 2955 y(update)g(the)i(on-disk)d(\002le)j(signature)e
+(database.)-2 3139 y
+SDict begin H.S end
+ -2 3139 a -2 3139 a
+SDict begin 13 H.A end
+ -2 3139 a -2
+3139 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1760) cvn H.B /DEST pdfmark
+end
+ -2 3139 a 396 3229 a FC(If)h(\002les)h(disappear)e(after)h
+(initialization,)f(you)h(will)h(get)f(an)g(error)f(message)h(with)g
+(the)h(se)n(v)o(erity)e(speci\002ed)h(for)f(\002le)396
+3337 y(access)i(errors)e(\()871 3337 y
+SDict begin H.S end
+ 871 3337 a 871
+3337 a
+SDict begin 13 H.A end
+ 871 3337 a 871 3337 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1761) cvn H.B /DEST pdfmark
+end
+ 871 3337 a Fx(e)n(xcept)j
+FC(if)e(the)g(\002le)h(is)g(placed)f(under)f(the)2070
+3337 y
+SDict begin H.S end
+ 2070 3337 a 2070 3337 a
+SDict begin 13 H.A end
+ 2070 3337 a 2070 3337
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1762) cvn H.B /DEST pdfmark
+end
+ 2070 3337 a Fx(Ignor)m(eAll)g FC(polic)o(y)-5 b(,)18
+b(in)j(which)e(case)i(a)f(message)g(of)396 3445 y
+SDict begin H.S end
+ 396
+3445 a 396 3445 a
+SDict begin 13 H.A end
+ 396 3445 a 396 3445 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1763) cvn H.B /DEST pdfmark
+end
+ 396 3445 a Fx(Se)o(verityIgnor)
+m(eAll)e FC(\227)j(see)p 0 TeXcolorgray 1229 3445 a
+SDict begin H.S end
+ 1229
+3445 a FC(Section)f(4.1.1)1667 3445 y
+SDict begin 13 H.L end
+ 1667 3445 a 1667
+3445 a
+SDict begin [ /Subtype /Link /Dest (0:SEVERITYDEF) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1667 3445 a Black -2 w FC(>)g(\227)h(is)g(generated\).)-2
+3629 y
+SDict begin H.S end
+ -2 3629 a -2 3629 a
+SDict begin 13 H.A end
+ -2 3629 a -2 3629 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1765) cvn H.B /DEST pdfmark
+end
+ -2 3629
+a 396 3719 a FC(If)f(ne)n(w)g(\002les)h(appear)e(in)i(a)f(monitored)e
+(directory)h(after)h(initialization,)f(you)g(will)i(get)f(an)h(error)e
+(message)h(with)396 3827 y(the)g(se)n(v)o(erity)g(speci\002ed)g(for)f
+(that)h(directory')-5 b(s)19 b(\002le)i(polic)o(y)e(\()2135
+3827 y
+SDict begin H.S end
+ 2135 3827 a 2135 3827 a
+SDict begin 13 H.A end
+ 2135 3827 a 2135 3827
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1766) cvn H.B /DEST pdfmark
+end
+ 2135 3827 a Fx(e)n(xcept)j FC(if)e(the)g(\002le)h(is)g(placed)f
+(under)e(the)3334 3827 y
+SDict begin H.S end
+ 3334 3827 a 3334 3827 a
+SDict begin 13 H.A end
+ 3334
+3827 a 3334 3827 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1767) cvn H.B /DEST pdfmark
+end
+ 3334 3827 a Fx(Ignor)m(eAll)396 3935
+y FC(polic)o(y)-5 b(,)19 b(in)h(which)g(case)g(a)h(message)f(of)1561
+3935 y
+SDict begin H.S end
+ 1561 3935 a 1561 3935 a
+SDict begin 13 H.A end
+ 1561 3935 a 1561 3935
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1768) cvn H.B /DEST pdfmark
+end
+ 1561 3935 a Fx(Se)o(verityIgnor)m(eAll)e FC(\227)j(see)p
+0 TeXcolorgray 2394 3935 a
+SDict begin H.S end
+ 2394 3935 a FC(Section)e(4.1.1)2831
+3935 y
+SDict begin 13 H.L end
+ 2831 3935 a 2831 3935 a
+SDict begin [ /Subtype /Link /Dest (0:SEVERITYDEF) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2831 3935 a Black -2 w
+FC(>)i(\227)g(is)g(generated\).)-2 4119 y
+SDict begin H.S end
+ -2 4119 a -2
+4119 a
+SDict begin 13 H.A end
+ -2 4119 a -2 4119 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1770) cvn H.B /DEST pdfmark
+end
+ -2 4119 a 396 4209 a FC(The)f(special)g
+(treatment)g(of)g(\002les)h(under)e(the)1713 4209 y
+SDict begin H.S end
+ 1713
+4209 a 1713 4209 a
+SDict begin 13 H.A end
+ 1713 4209 a 1713 4209 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1771) cvn H.B /DEST pdfmark
+end
+ 1713 4209
+a Fx(Ignor)m(eAll)g FC(polic)o(y)g(allo)n(ws)h(to)h(handle)e(cases)i
+(where)e(a)i(\002le)g(might)e(be)396 4317 y(deleted)h(and/or)f
+(recreated)g(by)g(the)i(system)f(more)f(or)h(less)i(frequently)-5
+b(.)-2 4345 y
+SDict begin H.S end
+ -2 4345 a -2 4345 a
+SDict begin 13 H.A end
+ -2 4345 a -2 4345 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:RECDEP) cvn H.B /DEST pdfmark
+end
+
+-2 4345 a 396 4655 a Fp(5.4.5.)36 b(Recur)n(sion)f(depth\(s\))1816
+4655 y
+SDict begin H.S end
+ 1816 4655 a 1816 4655 a
+SDict begin 18.72 H.A end
+ 1816 4655 a 1816 4655
+a
+SDict begin [ /View [/XYZ H.V] /Dest (7.36.17.2) cvn H.B /DEST pdfmark
+end
+ 1816 4655 a -2 4846 a
+SDict begin H.S end
+ -2 4846 a -2 4846 a
+SDict begin 13 H.A end
+ -2 4846 a
+-2 4846 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1774) cvn H.B /DEST pdfmark
+end
+ -2 4846 a 396 4929 a FC(Directories)19 b(can)g(be)h
+(monitored)d(up)i(to)g(a)h(maximum)e(recursion)g(depth)g(of)h(99)g
+(\(i.e.)g(99)g(le)n(v)o(els)h(of)f(subdirectories.)396
+5037 y(The)h(recursion)f(depth)g(actually)h(used)g(is)h(de\002ned)e(in)
+h(the)g(follo)n(wing)f(order)g(of)h(priority:)-2 5221
+y
+SDict begin H.S end
+ -2 5221 a -2 5221 a
+SDict begin 13 H.A end
+ -2 5221 a -2 5221 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1775) cvn H.B /DEST pdfmark
+end
+ -2 5221 a -2
+5221 a
+SDict begin H.S end
+ -2 5221 a -2 5221 a
+SDict begin 13 H.A end
+ -2 5221 a -2 5221 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1776) cvn H.B /DEST pdfmark
+end
+ -2 5221
+a -2 5231 a
+SDict begin H.S end
+ -2 5231 a -2 5231 a
+SDict begin 13 H.A end
+ -2 5231 a -2 5231 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1777) cvn H.B /DEST pdfmark
+end
+ -2
+5231 a Black 3661 5805 a Fx(45)p Black eop end
+%%Page: 46 51
+TeXDict begin 46 50 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.46) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 1956 104 a
+Fx(Chapter)20 b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h
+(\002le)g(monitor)p Black Black 463 309 a FC(1.)p Black
+546 309 a
+SDict begin H.S end
+ 546 309 a 546 309 a
+SDict begin 13 H.A end
+ 546 309 a 546 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1778) cvn H.B /DEST pdfmark
+end
+ 546
+309 a FC(The)g(recursion)e(depth)h(speci\002ed)h(for)g(that)g(indi)n
+(vidual)f(directory)f(\()p 0 TeXcolorgray 2513 309 a
+SDict begin H.S end
+
+2513 309 a FC(Section)i(5.4)2888 309 y
+SDict begin 13 H.L end
+ 2888 309 a 2888
+309 a
+SDict begin [ /Subtype /Link /Dest (0:FILEDEF) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2888 309 a Black -2 w FC(>\).)g(As)h(a)g(special)f(case,)h(for)
+546 417 y(directories)e(with)h(the)g(polic)o(y)1435 417
+y
+SDict begin H.S end
+ 1435 417 a 1435 417 a
+SDict begin 13 H.A end
+ 1435 417 a 1435 417 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1780) cvn H.B /DEST pdfmark
+end
+ 1435 417
+a Fx(Ignor)m(eAll)p FC(,)e(the)i(recursion)f(depth)g(should)h(be)g(set)
+h(to)2988 417 y
+SDict begin H.S end
+ 2988 417 a 2988 417 a
+SDict begin 13 H.A end
+ 2988 417 a 2988
+417 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1781) cvn H.B /DEST pdfmark
+end
+ 2988 417 a Fx(0)p FC(,)f(if)h(you)e(w)o(ant)h(to)546
+525 y(monitor)e(\(the)i(e)o(xistence)g(of\))f(the)h(\002les)i(within)e
+(that)g(directory)-5 b(,)18 b(b)n(ut)i(to)2631 525 y
+SDict begin H.S end
+
+2631 525 a 2631 525 a
+SDict begin 13 H.A end
+ 2631 525 a 2631 525 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1782) cvn H.B /DEST pdfmark
+end
+ 2631 525
+a Fx(-1)p FC(,)g(if)g(you)g(do)f(not)h(w)o(ant)3371 525
+y
+SDict begin H.S end
+ 3371 525 a 3371 525 a
+SDict begin 13 H.A end
+ 3371 525 a 3371 525 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1783) cvn H.B /DEST pdfmark
+end
+ 3371 525
+a FC(samhain)f(to)546 632 y(look)g(into)h(that)g(directory)-5
+b(.)-2 650 y
+SDict begin H.S end
+ -2 650 a -2 650 a
+SDict begin 13 H.A end
+ -2 650 a -2 650 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1784) cvn H.B /DEST pdfmark
+end
+ -2 650
+a Black 463 782 a FC(2.)p Black 546 782 a
+SDict begin H.S end
+ 546 782 a 546
+782 a
+SDict begin 13 H.A end
+ 546 782 a 546 782 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1785) cvn H.B /DEST pdfmark
+end
+ 546 782 a FC(The)20 b(global)f(def)o(ault)g
+(recursion)g(depth)g(speci\002ed)h(in)g(the)h(con\002guration)c
+(\002le.)k(This)f(is)h(done)e(in)i(the)546 890 y(con\002guration)c
+(\002le)k(section)1392 890 y
+SDict begin H.S end
+ 1392 890 a 1392 890 a
+SDict begin 13 H.A end
+ 1392
+890 a 1392 890 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1786) cvn H.B /DEST pdfmark
+end
+ 1392 890 a Fx(Misc)g FC(with)g(the)f(entry)2056
+890 y
+SDict begin H.S end
+ 2056 890 a 2056 890 a
+SDict begin 13 H.A end
+ 2056 890 a 2056 890 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1787) cvn H.B /DEST pdfmark
+end
+ 2056
+890 a Fy(SetRecursionLe)o(v)o(el=)2766 890 y
+SDict begin H.S end
+ 2766 890
+a 2766 890 a
+SDict begin 13 H.A end
+ 2766 890 a 2766 890 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1788) cvn H.B /DEST pdfmark
+end
+ 2766 890 a Fl(number)-2
+908 y
+SDict begin H.S end
+ -2 908 a -2 908 a
+SDict begin 13 H.A end
+ -2 908 a -2 908 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1789) cvn H.B /DEST pdfmark
+end
+ -2 908 a Black
+463 1039 a FC(3.)p Black 546 1039 a
+SDict begin H.S end
+ 546 1039 a 546 1039
+a
+SDict begin 13 H.A end
+ 546 1039 a 546 1039 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1790) cvn H.B /DEST pdfmark
+end
+ 546 1039 a FC(The)g(def)o(ault)f(recursion)g
+(depth,)g(which)g(is)i(zero.)-2 1199 y
+SDict begin H.S end
+ -2 1199 a -2 1199
+a
+SDict begin 13 H.A end
+ -2 1199 a -2 1199 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:HARDLINKCHECK) cvn H.B /DEST
+pdfmark end
+ -2 1199 a 396 1527 a Fp(5.4.6.)36
+b(Har)n(dlink)e(c)o(hec)n(k)1572 1527 y
+SDict begin H.S end
+ 1572 1527 a 1572
+1527 a
+SDict begin 18.72 H.A end
+ 1572 1527 a 1572 1527 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.36.18.2) cvn H.B /DEST pdfmark
+end
+ 1572 1527 a -2 1695 a
+SDict begin H.S end
+
+-2 1695 a -2 1695 a
+SDict begin 13 H.A end
+ -2 1695 a -2 1695 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1793) cvn H.B /DEST pdfmark
+end
+ -2 1695 a 396
+1801 a FC(As)21 b(of)f(v)o(ersion)f(1.8.4,)g(samhain)g(will)i(by)f(def)
+o(ault)f(compare)g(the)h(number)e(of)i(hardlinks)f(of)h(a)h(directory)d
+(to)i(the)396 1909 y(number)f(of)h(its)h(subdirectories)d(\(including)g
+(".")j(and)e(".."\).)h(Normally)-5 b(,)18 b(these)i(numbers)f(should)g
+(be)h(equal.)g(The)396 2017 y(idea)g(here)g(is)h(that)f(a)h(\(k)o
+(ernel\))e(rootkit)g(may)h(hide)f(a)i(directory)-5 b(,)18
+b(b)n(ut)i(f)o(ail)h(to)f("\002x")g(the)g(parent)f(directory)g
+(hardlink)396 2125 y(count)g(\(actually)-5 b(,)19 b(I)h(am)h(not)f(a)o
+(w)o(are)f(of)h(an)o(y)g(k)o(ernel)f(rootkit)g(that)i(w)o(ould)e(care)h
+(to)g(\002x)h(the)f(hardlink)e(count)i(of)g(the)396 2233
+y(parent)f(directory\).)f(This)j(is)g(an)f(e)o(xperimental)e(feature;)h
+(if)i(there)e(are)i(an)o(y)e(problems,)f(it)j(can)f(be)g(disabled)g
+(with)396 2341 y(the)g(option)751 2341 y
+SDict begin H.S end
+ 751 2341 a 751
+2341 a
+SDict begin 13 H.A end
+ 751 2341 a 751 2341 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1794) cvn H.B /DEST pdfmark
+end
+ 751 2341 a Fy(UseHardlinkCheck=)1481
+2341 y
+SDict begin H.S end
+ 1481 2341 a 1481 2341 a
+SDict begin 13 H.A end
+ 1481 2341 a 1481 2341
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1795) cvn H.B /DEST pdfmark
+end
+ 1481 2341 a Fl(no)i FC(in)f(the)f([Misc])g(section)g(of)g(the)g
+(con\002guration)e(\002le.)-2 2525 y
+SDict begin H.S end
+ -2 2525 a -2 2525
+a
+SDict begin 13 H.A end
+ -2 2525 a -2 2525 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1796) cvn H.B /DEST pdfmark
+end
+ -2 2525 a 396 2615 a FC(Errors)h(will)i(be)g
+(reported)d(at)j(the)f(same)g(se)n(v)o(erity)f(as)i(directory)e(access)
+i(errors)e(option)396 2723 y
+SDict begin H.S end
+ 396 2723 a 396 2723 a
+SDict begin 13 H.A end
+ 396
+2723 a 396 2723 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1797) cvn H.B /DEST pdfmark
+end
+ 396 2723 a Fy(Se)o(v)o(erityDirs=)885
+2723 y
+SDict begin H.S end
+ 885 2723 a 885 2723 a
+SDict begin 13 H.A end
+ 885 2723 a 885 2723 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1798) cvn H.B /DEST pdfmark
+end
+ 885
+2723 a Fl(severity)26 b FC(in)20 b(section)g([Ev)o(entSe)n(v)o
+(erity]\).)-2 2741 y
+SDict begin H.S end
+ -2 2741 a -2 2741 a
+SDict begin 11.7 H.A end
+ -2 2741 a -2
+2741 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1799) cvn H.B /DEST pdfmark
+end
+ -2 2741 a -2 2865 a
+SDict begin H.S end
+ -2 2865 a -2 2865 a
+SDict begin 11.7 H.A end
+ -2 2865
+a -2 2865 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1801) cvn H.B /DEST pdfmark
+end
+ -2 2865 a 562 2944 a Fw(MacOS)g(X:)f Fv(This)h(f)n(eature)d
+(is)j(not)f(suppor)s(ted)e(on)i(MacOS)h(X)g(\(because)f(the)g(resource)
+f(f)n(or)q(k)i(is)g(implemented)562 3042 y(as)h(an)f(in)o(visib)o(le)d
+(director)r(y)-7 b(,)19 b(it)h(modi\002es)g(the)g(parent)e(director)r
+(y)i(hardlink)e(count.\))39 3191 y
+SDict begin H.S end
+ 39 3191 a 39 3191
+a
+SDict begin 13 H.A end
+ 39 3191 a 39 3191 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:HLOFFSETS) cvn H.B /DEST pdfmark
+end
+ 39 3191 a 396 3487 a Fj(5.4.6.1.)28
+b(Specify)h(e)o(xceptions)g(f)n(or)f(the)g(har)n(dlink)f(c)o(hec)n(k)
+2712 3487 y
+SDict begin H.S end
+ 2712 3487 a 2712 3487 a
+SDict begin 15.6 H.A end
+ 2712 3487 a 2712
+3487 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.36.18.6.3) cvn H.B /DEST pdfmark
+end
+ 2712 3487 a -2 3673 a
+SDict begin H.S end
+ -2 3673 a -2 3673 a
+SDict begin 13 H.A end
+ -2 3673
+a -2 3673 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1804) cvn H.B /DEST pdfmark
+end
+ -2 3673 a 396 3761 a FC(Some)20 b(\002lesystems)h(do)f(not)
+g(al)o(w)o(ays)g(follo)n(w)g(the)g(rule)g(mentioned)e(abo)o(v)o(e)h
+(\(directory)f(hardlink)g(equals)i(number)396 3868 y(of)g
+(subdirectories\).)d(E.g.)i(the)h(root)f(directory)e(of)j(reiserfs)f
+(partitions)g(generally)f(seems)i(to)g(ha)n(v)o(e)f(tw)o(o)h
+(additional)396 3976 y(hardlinks.)f(T)-7 b(o)20 b(account)f(for)h(such)
+g(e)o(xceptions,)e(you)h(can)h(specify)g(e)o(xceptions)e(with)j(the)f
+(option)396 4084 y
+SDict begin H.S end
+ 396 4084 a 396 4084 a
+SDict begin 13 H.A end
+ 396 4084 a 396
+4084 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1805) cvn H.B /DEST pdfmark
+end
+ 396 4084 a Fy(HardlinkOffset=)989 4084 y
+SDict begin H.S end
+ 989 4084
+a 989 4084 a
+SDict begin 13 H.A end
+ 989 4084 a 989 4084 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1806) cvn H.B /DEST pdfmark
+end
+ 989 4084 a Fl(N)10
+b Fy(:)1072 4084 y
+SDict begin H.S end
+ 1072 4084 a 1072 4084 a
+SDict begin 13 H.A end
+ 1072 4084
+a 1072 4084 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1807) cvn H.B /DEST pdfmark
+end
+ 1072 4084 a Fl(/path)19 b FC(in)h(the)g([Misc])h(section)
+f(of)f(the)i(con\002guration)c(\002le.)k(Here,)f(N)g(is)h(the)g
+(numerical)396 4192 y(of)n(fset)f(\(actual)g(-)g(e)o(xpected)f
+(hardlinks\))f(for)1689 4192 y
+SDict begin H.S end
+ 1689 4192 a 1689 4192
+a
+SDict begin 13 H.A end
+ 1689 4192 a 1689 4192 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1808) cvn H.B /DEST pdfmark
+end
+ 1689 4192 a Fr(/path)p FC(.)h(F)o(or)h
+(multiple)g(e)o(xceptions,)e(use)i(this)h(options)e(multiple)396
+4300 y(times)i(\(note)e(that)i('/path)e(N:/path2')g(w)o(ould)g(itself)i
+(be)f(a)h(v)n(alid)f(path,)f(so)i(using)e(the)i(option)e(only)g(once)g
+(with)396 4408 y(multiple)h(e)o(xceptions)e(on)i(the)g(same)h(line)f(w)
+o(ould)g(be)g(ambiguous\).)-2 4426 y
+SDict begin H.S end
+ -2 4426 a -2 4426
+a
+SDict begin 11.7 H.A end
+ -2 4426 a -2 4426 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1809) cvn H.B /DEST pdfmark
+end
+ -2 4426 a -2 4551 a
+SDict begin H.S end
+ -2 4551 a -2
+4551 a
+SDict begin 11.7 H.A end
+ -2 4551 a -2 4551 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1811) cvn H.B /DEST pdfmark
+end
+ -2 4551 a 562 4630 a Fw(NO)m(TE:)g
+Fv(Please)e(note)g(that)1369 4630 y
+SDict begin H.S end
+ 1369 4630 a 1369
+4630 a
+SDict begin 11.7 H.A end
+ 1369 4630 a 1369 4630 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1812) cvn H.B /DEST pdfmark
+end
+ 1369 4630 a Fv(samhain)g(will)h(not)f
+(chec)o(k)i(f)n(or)f(an)f(e)n(xception)g(if)h(the)f(standard)g(r)q(ule)
+g(\(offset)h(=)g(0\))g(is)562 4727 y(tr)q(ue)h(f)n(or)g(a)g(director)r
+(y)-7 b(.)19 b(Thus)h(it)g(will)f(not)h(w)o(ar)r(n)f(if)h(a)h(director)
+r(y)e(that)h(once)f(w)o(as)i(e)n(xceptional)c(is)k(not)f(an)o(ymore)o
+(.)-2 5042 y
+SDict begin H.S end
+ -2 5042 a -2 5042 a
+SDict begin 13 H.A end
+ -2 5042 a -2 5042 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:OBSCURE) cvn H.B /DEST pdfmark
+end
+
+-2 5042 a Black 3660 5805 a Fx(46)p Black eop end
+%%Page: 47 52
+TeXDict begin 47 51 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.47) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1850) cvn H.B /DEST pdfmark
+end
+ -2 35 a 1956 104 a Fx(Chapter)20
+b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h(\002le)g(monitor)p
+Black 396 313 a Fp(5.4.7.)36 b(Chec)n(k)e(f)n(or)e(weir)n(d)i
+(\002lenames)2201 313 y
+SDict begin H.S end
+ 2201 313 a 2201 313 a
+SDict begin 18.72 H.A end
+ 2201 313
+a 2201 313 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.36.19.2) cvn H.B /DEST pdfmark
+end
+ 2201 313 a -2 480 a
+SDict begin H.S end
+ -2 480 a -2 480 a
+SDict begin 13 H.A end
+ -2
+480 a -2 480 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1815) cvn H.B /DEST pdfmark
+end
+ -2 480 a -2 480 a
+SDict begin H.S end
+ -2 480 a -2 480 a
+SDict begin 13 H.A end
+ -2
+480 a -2 480 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1816) cvn H.B /DEST pdfmark
+end
+ -2 480 a 396 587 a FC(Samhain)20 b(checks)f(for)h(weird)
+g(\002lenames)g(\(containing)d(control/nonprintable)f(characters,)j(ne)
+n(wlines)h(or)g(tabs\))396 695 y(and)g(w)o(arns)g(about)f(them)h(at)h
+(a)f(se)n(v)o(erity)g(le)n(v)o(el)g(that)g(is)h(set)g(with)2247
+695 y
+SDict begin H.S end
+ 2247 695 a 2247 695 a
+SDict begin 13 H.A end
+ 2247 695 a 2247 695 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1817) cvn H.B /DEST pdfmark
+end
+ 2247
+695 a Fy(Se)o(v)o(erityNames=)2824 695 y
+SDict begin H.S end
+ 2824 695 a 2824
+695 a
+SDict begin 13 H.A end
+ 2824 695 a 2824 695 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1818) cvn H.B /DEST pdfmark
+end
+ 2824 695 a Fl(severity)k
+FC(in)c(section)396 803 y([Ev)o(entSe)n(v)o(erity].)c(The)j(rationale)f
+(is:)i(most)f(of)g(the)h(time,)f(such)g(names)f(are)i(either)e(the)i
+(result)f(of)g(user)g(errors,)396 911 y(b)n(uggy)f(scripts,)h(or)g
+(questionable)f(acti)n(vity)-5 b(.)19 b(If)h(you)f(w)o(ant)h(to)h(add)e
+(characters)h(to)g(the)g(set)h(of)f('good')e(ones,)i(you)396
+1019 y(can)g(do)g(so)h(with)f(the)g(option:)1277 1019
+y
+SDict begin H.S end
+ 1277 1019 a 1277 1019 a
+SDict begin 13 H.A end
+ 1277 1019 a 1277 1019 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1819) cvn H.B /DEST pdfmark
+end
+ 1277
+1019 a Fy(AddOKChars=)1823 1019 y
+SDict begin H.S end
+ 1823 1019 a 1823 1019
+a
+SDict begin 13 H.A end
+ 1823 1019 a 1823 1019 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1820) cvn H.B /DEST pdfmark
+end
+ 1823 1019 a Fl(N1,)44 b(N2,)g(...)21
+b FC(in)f(the)g([Misc])g(section)g(of)g(the)g(con\002guration)396
+1127 y(\002le.)h(Nn)f(should)f(be)h(the)h(unsigned)d(byte)i(v)n(alue)f
+(of)h(the)g(character\(s\))f(in)h(he)o(x)g(\(leading)f('0x':)g(0xNN\),)
+g(octal)396 1234 y(\(leading)g(zero:)h(0NNN\),)f(or)h(decimal.)-2
+1252 y
+SDict begin H.S end
+ -2 1252 a -2 1252 a
+SDict begin 11.7 H.A end
+ -2 1252 a -2 1252 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1821) cvn H.B /DEST pdfmark
+end
+ -2 1252
+a -2 1377 a
+SDict begin H.S end
+ -2 1377 a -2 1377 a
+SDict begin 11.7 H.A end
+ -2 1377 a -2 1377 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1823) cvn H.B /DEST pdfmark
+end
+ -2
+1377 a 562 1456 a Fw(TIP:)g Fv(This)g(chec)o(k)h(will)e(not)h(be)g
+(perf)n(or)r(med)d(f)n(or)j(\002les)h(under)e(the)g(IgnoreAll)f(policy)
+-7 b(.)19 b(T)-9 b(o)20 b(completely)f(disab)o(le)562
+1553 y(this)h(chec)o(k,)h(use)1076 1553 y
+SDict begin H.S end
+ 1076 1553 a
+1076 1553 a
+SDict begin 11.7 H.A end
+ 1076 1553 a 1076 1553 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1824) cvn H.B /DEST pdfmark
+end
+ 1076 1553 a Fw(Ad)o(dOKChar)o
+(s=all)p Fv(.)-2 1786 y
+SDict begin H.S end
+ -2 1786 a -2 1786 a
+SDict begin 13 H.A end
+ -2 1786 a
+-2 1786 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:PRELINK) cvn H.B /DEST pdfmark
+end
+ -2 1786 a 396 2114 a Fp(5.4.8.)36 b(Suppor)r(t)c(f)n(or)h
+(prelink)1804 2114 y
+SDict begin H.S end
+ 1804 2114 a 1804 2114 a
+SDict begin 18.72 H.A end
+ 1804 2114
+a 1804 2114 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.36.20.2) cvn H.B /DEST pdfmark
+end
+ 1804 2114 a -2 2305 a
+SDict begin H.S end
+ -2 2305 a -2 2305
+a
+SDict begin 13 H.A end
+ -2 2305 a -2 2305 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1827) cvn H.B /DEST pdfmark
+end
+ -2 2305 a -2 2305 a
+SDict begin H.S end
+ -2 2305 a -2
+2305 a
+SDict begin 13 H.A end
+ -2 2305 a -2 2305 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1828) cvn H.B /DEST pdfmark
+end
+ -2 2305 a 396 2388 a FC(prelink)19
+b(is)i(a)g(tool)f(a)n(v)n(ailable)g(on)f(modern)g(Linux)g(systems)i
+(that)f(can)g(signi\002cantly)f(reduce)g(the)h(startup)g(time)g(of)396
+2496 y(applications.)f(It)h(does)g(this)h(by)f(performing)d(some)j(of)g
+(the)g(w)o(ork)g(of)g(the)g(dynamic)f(link)o(er)g(in)i(adv)n(ance.)d
+(As)j(this)396 2604 y(changes)e(both)h(e)o(x)o(ecutables)e(and)i
+(shared)f(libraries,)h(\002le)h(inte)o(grity)e(v)o(eri\002cation)f
+(will)j(f)o(ail)g(unless)3284 2604 y
+SDict begin H.S end
+ 3284 2604 a 3284
+2604 a
+SDict begin 13 H.A end
+ 3284 2604 a 3284 2604 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1829) cvn H.B /DEST pdfmark
+end
+ 3284 2604 a FC(prelink)e(is)396
+2712 y(supported,)f(in)j(particular)d(as)j(prelinking)d(has)j(to)f(be)g
+(redone)f(if)h(libraries)g(are)g(updated)f(\(so)h(initializing)g(the)
+396 2819 y(checksum)f(database)h(after)f(prelinking)g(may)g(not)h(be)g
+(good)f(enough\).)-2 3004 y
+SDict begin H.S end
+ -2 3004 a -2 3004 a
+SDict begin 13 H.A end
+ -2 3004
+a -2 3004 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1830) cvn H.B /DEST pdfmark
+end
+ -2 3004 a 396 3093 a FC(The)h(disadv)n(antage)e(is)j(that)g
+(prelinking)d(modi\002es)h(libraries)h(and)g(e)o(x)o(ecutables,)e(and)i
+(may)g(need)f(to)h(be)h(redone)396 3201 y(\(potentially)e(modifying)f
+(all)i(or)g(man)o(y)f(e)o(x)o(ecutables)g(again\))g(if)h(a)h(library)e
+(is)i(updated.)d(This)j(is)g(a)f(major)g(problem)396
+3309 y(for)g(\002le)h(inte)o(grity)e(check)o(ers.)-2
+3493 y
+SDict begin H.S end
+ -2 3493 a -2 3493 a
+SDict begin 13 H.A end
+ -2 3493 a -2 3493 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1831) cvn H.B /DEST pdfmark
+end
+ -2 3493
+a 396 3583 a FC(V)-9 b(ersion)20 b(2.0)f(of)885 3583
+y
+SDict begin H.S end
+ 885 3583 a 885 3583 a
+SDict begin 13 H.A end
+ 885 3583 a 885 3583 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1832) cvn H.B /DEST pdfmark
+end
+ 885 3583
+a FC(samhain)h(and)f(later)h(support)1761 3583 y
+SDict begin H.S end
+ 1761
+3583 a 1761 3583 a
+SDict begin 13 H.A end
+ 1761 3583 a 1761 3583 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1833) cvn H.B /DEST pdfmark
+end
+ 1761 3583
+a FC(prelink.)f(T)-7 b(o)20 b(use)h(this)g(support,)d(you)h(need)h(to)g
+(place)g(prelink)o(ed)396 3691 y(e)o(x)o(ecutables)f(and)g(libraries)h
+(\(or)g(directories)f(holding)f(them\))i(under)f(the)2545
+3691 y
+SDict begin H.S end
+ 2545 3691 a 2545 3691 a
+SDict begin 13 H.A end
+ 2545 3691 a 2545 3691
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1834) cvn H.B /DEST pdfmark
+end
+ 2545 3691 a Fx([Pr)m(elink])i FC(polic)o(y)e(rather)g(than)h(under)
+396 3799 y(the)g(\(e.g.\))714 3799 y
+SDict begin H.S end
+ 714 3799 a 714 3799
+a
+SDict begin 13 H.A end
+ 714 3799 a 714 3799 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1835) cvn H.B /DEST pdfmark
+end
+ 714 3799 a Fx([ReadOnly])g FC(polic)o(y)-5
+b(.)18 b(F)o(or)i(all)h(\002les)g(under)e(the)2104 3799
+y
+SDict begin H.S end
+ 2104 3799 a 2104 3799 a
+SDict begin 13 H.A end
+ 2104 3799 a 2104 3799 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1836) cvn H.B /DEST pdfmark
+end
+ 2104
+3799 a Fx([Pr)m(elink])i FC(polic)o(y)-5 b(,)18 b(inode,)h(size,)i(and)
+e(timestamps)h(will)396 3907 y(be)g(ignored)f(\(prelinking)e(changes)j
+(them\).)f(In)h(addition,)e(for)i(ELF)g(binaries)g(under)f(the)2988
+3907 y
+SDict begin H.S end
+ 2988 3907 a 2988 3907 a
+SDict begin 13 H.A end
+ 2988 3907 a 2988 3907
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1837) cvn H.B /DEST pdfmark
+end
+ 2988 3907 a Fx([Pr)m(elink])i FC(polic)o(y)-5 b(,)396
+4015 y
+SDict begin H.S end
+ 396 4015 a 396 4015 a
+SDict begin 13 H.A end
+ 396 4015 a 396 4015 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1838) cvn H.B /DEST pdfmark
+end
+ 396
+4015 a Fy(/usr/sbin/pr)o(elink)22 b(--v)o(erify)d FC(will)i(be)f(used)g
+(to)g(compute)f(checksums)g(\(i.e.)h(the)g(checksum)f(will)i(be)f
+(computed)396 4123 y(on)g(the)g(output)f(of)h(this)h(command\).)c(F)o
+(or)j(other)g(\002les,)h(checksums)e(are)h(computed)e(as)j(usual.)-2
+4141 y
+SDict begin H.S end
+ -2 4141 a -2 4141 a
+SDict begin 11.7 H.A end
+ -2 4141 a -2 4141 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1839) cvn H.B /DEST pdfmark
+end
+ -2 4141
+a -2 4265 a
+SDict begin H.S end
+ -2 4265 a -2 4265 a
+SDict begin 11.7 H.A end
+ -2 4265 a -2 4265 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1841) cvn H.B /DEST pdfmark
+end
+ -2
+4265 a 562 4345 a Fw(Speed:)e Fv(Ob)o(viously)-7 b(,)19
+b(in)o(v)n(oking)1484 4345 y
+SDict begin H.S end
+ 1484 4345 a 1484 4345 a
+SDict begin 11.7 H.A end
+
+1484 4345 a 1484 4345 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1842) cvn H.B /DEST pdfmark
+end
+ 1484 4345 a Fw(prelink)g Fv(results)h(in)g(a)g
+(signi\002cant)f(o)o(v)n(erhead,)f(and)i(slo)o(ws)g(do)o(wn)f(\002le)
+562 4442 y(integ)o(r)q(ity)g(chec)o(king)g(\(tests)i(indicate)d(a)i(f)n
+(actor)g(of)g(three)f(-)h(y)o(our)g(mileage)e(ma)n(y)j(v)n(ar)r(y\).)39
+4580 y
+SDict begin H.S end
+ 39 4580 a 39 4580 a
+SDict begin 11.7 H.A end
+ 39 4580 a 39 4580 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1843) cvn H.B /DEST pdfmark
+end
+ 39 4580
+a -2 4746 a
+SDict begin H.S end
+ -2 4746 a -2 4746 a
+SDict begin 11.7 H.A end
+ -2 4746 a -2 4746 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1845) cvn H.B /DEST pdfmark
+end
+ -2
+4746 a 562 4844 a Fw(V)l(eri\002cation)d(failures)h(\(z)q(er)o(o)g(c)o
+(hec)o(ksum\):)f Fv(It)i(seems)h(that)2354 4844 y
+SDict begin H.S end
+ 2354
+4844 a 2354 4844 a
+SDict begin 11.7 H.A end
+ 2354 4844 a 2354 4844 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1846) cvn H.B /DEST pdfmark
+end
+ 2354 4844
+a Fw(prelink)d(--verify)h Fv(f)n(ails)h(if)g(the)f(dependencies)562
+4941 y(of)h(a)h(prelink)o(ed)c(binar)r(y)j(ha)o(v)n(e)f(changed.)f
+(This)i(results)g(in)g(a)g(z)o(ero)g(chec)o(ksum,)g(and)g(can)g(be)g
+(\002x)n(ed)g(b)o(y)562 5038 y(re-prelinking)d(the)j(aff)n(ected)e
+(binar)r(y)-7 b(.)p Black 3658 5805 a Fx(47)p Black eop
+end
+%%Page: 48 53
+TeXDict begin 48 52 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.48) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 1956 104 a
+Fx(Chapter)20 b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h
+(\002le)g(monitor)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+
+-2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1847) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309 a FC(There)g(are)g(tw)o(o)g
+(con\002guration)e(options)h(in)h(the)1814 309 y
+SDict begin H.S end
+ 1814
+309 a 1814 309 a
+SDict begin 13 H.A end
+ 1814 309 a 1814 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1848) cvn H.B /DEST pdfmark
+end
+ 1814 309 a Fx([Misc])h
+FC(section)f(that)g(can)g(are)h(rele)n(v)n(ant)e(for)3121
+309 y
+SDict begin H.S end
+ 3121 309 a 3121 309 a
+SDict begin 13 H.A end
+ 3121 309 a 3121 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1849) cvn H.B /DEST pdfmark
+end
+ 3121
+309 a FC(prelink)g(support:)396 583 y Fy(SetPr)o(elinkP)o(ath=)p
+Fl(fullpath)g FC(sets)j(the)e(path)g(to)g(the)2000 583
+y
+SDict begin H.S end
+ 2000 583 a 2000 583 a
+SDict begin 13 H.A end
+ 2000 583 a 2000 583 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1853) cvn H.B /DEST pdfmark
+end
+ 2000 583
+a FC(prelink)f(e)o(x)o(ecutable.)f(The)i(def)o(ault)f(is)396
+691 y
+SDict begin H.S end
+ 396 691 a 396 691 a
+SDict begin 13 H.A end
+ 396 691 a 396 691 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1854) cvn H.B /DEST pdfmark
+end
+ 396 691
+a Fr(/usr/sbin/prelink)p FC(.)-2 868 y
+SDict begin H.S end
+ -2 868 a -2 868
+a
+SDict begin 13 H.A end
+ -2 868 a -2 868 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1855) cvn H.B /DEST pdfmark
+end
+ -2 868 a -2 868 a
+SDict begin H.S end
+ -2 868 a -2 868
+a
+SDict begin 13 H.A end
+ -2 868 a -2 868 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1856) cvn H.B /DEST pdfmark
+end
+ -2 868 a 396 965 a Fy(SetPr)o(elinkChecksum=)1189
+965 y
+SDict begin H.S end
+ 1189 965 a 1189 965 a
+SDict begin 13 H.A end
+ 1189 965 a 1189 965 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1857) cvn H.B /DEST pdfmark
+end
+ 1189
+965 a Fl(checksum)k FC(sets)f(the)e(TIGER192)e(checksum)h(for)h(the)
+2822 965 y
+SDict begin H.S end
+ 2822 965 a 2822 965 a
+SDict begin 13 H.A end
+ 2822 965 a 2822 965
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1858) cvn H.B /DEST pdfmark
+end
+ 2822 965 a FC(prelink)f(e)o(x)o(ecutable.)f(Y)-9 b(ou)20
+b(can)396 1073 y(compute)f(this)i(with)1012 1073 y
+SDict begin H.S end
+ 1012
+1073 a 1012 1073 a
+SDict begin 13 H.A end
+ 1012 1073 a 1012 1073 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1859) cvn H.B /DEST pdfmark
+end
+ 1012 1073
+a Fy(samhain)g(-H)f(/usr/sbin/pr)o(elink)i FC(\(remo)o(v)o(e)17
+b(whitespace)j(from)f(the)h(computed)396 1180 y(checksum\).)e(If)i(the)
+h(checksum)d(is)k(set,)1558 1180 y
+SDict begin H.S end
+ 1558 1180 a 1558 1180
+a
+SDict begin 13 H.A end
+ 1558 1180 a 1558 1180 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1860) cvn H.B /DEST pdfmark
+end
+ 1558 1180 a FC(samhain)e(will)h(v)o(erify)d
+(the)2346 1180 y
+SDict begin H.S end
+ 2346 1180 a 2346 1180 a
+SDict begin 13 H.A end
+ 2346 1180 a
+2346 1180 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1861) cvn H.B /DEST pdfmark
+end
+ 2346 1180 a FC(prelink)h(e)o(x)o(ecutable)f(immediately)h
+(before)396 1288 y(using)h(it,)h(otherwise)1028 1288
+y
+SDict begin H.S end
+ 1028 1288 a 1028 1288 a
+SDict begin 13 H.A end
+ 1028 1288 a 1028 1288 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1862) cvn H.B /DEST pdfmark
+end
+ 1028
+1288 a FC(prelink)e(will)i(be)f(used)g(without)g(this)g(special)h
+(precaution.)-2 1317 y
+SDict begin H.S end
+ -2 1317 a -2 1317 a
+SDict begin 13 H.A end
+ -2 1317 a
+-2 1317 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CHANGE-CODES) cvn H.B /DEST
+pdfmark end
+ -2 1317 a 396 1627 a Fp(5.4.9.)36 b(Codes)e(in)g(messa)o(g)q
+(es)i(about)e(repor)r(ted)f(\002les)2995 1627 y
+SDict begin H.S end
+ 2995
+1627 a 2995 1627 a
+SDict begin 18.72 H.A end
+ 2995 1627 a 2995 1627 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.36.21.2) cvn H.B /DEST pdfmark
+end
+ 2995 1627
+a -2 1819 a
+SDict begin H.S end
+ -2 1819 a -2 1819 a
+SDict begin 13 H.A end
+ -2 1819 a -2 1819 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1865) cvn H.B /DEST pdfmark
+end
+ -2
+1819 a 396 1901 a FC(As)21 b(of)f(v)o(ersion)f(1.8.2,)g(reports)g
+(about)g(modi\002ed)g(\002les)i(include)e(a)i(short)f(code)f(in)i(the)f
+(message)g(\002eld)g(to)h(describe)396 2009 y(which)f(properties)f(ha)n
+(v)o(e)g(been)h(modi\002ed.)f(The)g(codes)h(are:)g('C')h(for)e
+('checksum',)f('L)-8 b(')20 b(for)g(\(soft\))f(')o(link',)h('D')g(for)
+396 2117 y(')l(de)n(vice)f(number',)f('I')i(for)f('inode',)f('H')i(for)
+g(\(number)e(of\))i('hardlinks',)d('M')j(for)g('mode',)e('U')i(for)g
+('user')396 2225 y(\(o)n(wner\),)e('G')i(for)g('group')e(\(o)n(wner\),)
+g('T')i(for)f(')o(time')g(\(an)o(y\),)g(and)h(\002nally)f('S')i(for)e
+(')-5 b(size'.)-2 2409 y
+SDict begin H.S end
+ -2 2409 a -2 2409 a
+SDict begin 13 H.A end
+ -2 2409
+a -2 2409 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1866) cvn H.B /DEST pdfmark
+end
+ -2 2409 a 396 2499 a FC(As)21 b(an)f(e)o(xample,)f
+('C--I----TS')f(w)o(ould)h(indicate)h(that)g(a)h(\002le)g(has)f(been)g
+(replaced)e(by)i(one)g(with)g(dif)n(ferent)396 2606 y(checksum,)f
+(inode,)g(timestamp,)g(and)h(size,)g(b)n(ut)h(\(e.g.\))e(same)h(mode)f
+(\(type)h(and)f(access)i(permissions\))e(and)h(same)396
+2714 y(o)n(wnership.)-2 2826 y
+SDict begin H.S end
+ -2 2826 a -2 2826 a
+SDict begin 13 H.A end
+ -2
+2826 a -2 2826 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:ALL-EXCEPT) cvn H.B /DEST pdfmark
+end
+ -2 2826 a 359 x Fu(5.5.)39 b(Exc)m(luding)f(\002les)g
+(and/or)h(subdirectories)d(\(All)j(e)n(xcept)-2 3371
+y(.)24 b(.)g(.)g(\))238 3371 y
+SDict begin H.S end
+ 238 3371 a 238 3371 a
+SDict begin 22.464 H.A end
+
+238 3371 a 238 3371 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.37.1) cvn H.B /DEST pdfmark
+end
+ 238 3371 a -2 3567 a
+SDict begin H.S end
+ -2 3567 a
+-2 3567 a
+SDict begin 13 H.A end
+ -2 3567 a -2 3567 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1869) cvn H.B /DEST pdfmark
+end
+ -2 3567 a 396 3645 a FC(T)-7
+b(o)21 b(e)o(xclude)d(indi)n(vidual)h(\002les)i(from)e(a)i(directory)-5
+b(,)17 b(place)j(them)g(under)f(the)h(polic)o(y)2812
+3645 y
+SDict begin H.S end
+ 2812 3645 a 2812 3645 a
+SDict begin 13 H.A end
+ 2812 3645 a 2812 3645
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1870) cvn H.B /DEST pdfmark
+end
+ 2812 3645 a Fx(Ignor)m(eAll)p FC(.)f(Note)h(that)g(the)396
+3753 y
+SDict begin H.S end
+ 396 3753 a 396 3753 a
+SDict begin 13 H.A end
+ 396 3753 a 396 3753 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1871) cvn H.B /DEST pdfmark
+end
+ 396
+3753 a Fx(e)n(xistence)h FC(of)f(such)f(\002les)j(will)f(still)g(be)f
+(check)o(ed)f(\(see)h(ne)o(xt)g(section\).)-2 3934 y
+SDict begin H.S end
+
+-2 3934 a -2 3934 a
+SDict begin 13 H.A end
+ -2 3934 a -2 3934 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1872) cvn H.B /DEST pdfmark
+end
+ -2 3934 a 396
+4027 a FC(T)-7 b(o)21 b(e)o(xclude)d(subdirectories)h(from)g(a)i
+(directory)-5 b(,)17 b(place)j(them)g(under)f(the)h(polic)o(y)2784
+4027 y
+SDict begin H.S end
+ 2784 4027 a 2784 4027 a
+SDict begin 13 H.A end
+ 2784 4027 a 2784 4027
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1873) cvn H.B /DEST pdfmark
+end
+ 2784 4027 a Fx(Ignor)m(eAll)f FC(with)i(an)f(indi)n(vidual)396
+4135 y(recursion)f(depth)g(of)1021 4135 y
+SDict begin H.S end
+ 1021 4135 a
+1021 4135 a
+SDict begin 13 H.A end
+ 1021 4135 a 1021 4135 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1874) cvn H.B /DEST pdfmark
+end
+ 1021 4135 a Fx(-1)h
+FC(\(see)p 0 TeXcolorgray 1265 4135 a
+SDict begin H.S end
+ 1265 4135 a FC(Section)g(5.4.5)
+1703 4135 y
+SDict begin 13 H.L end
+ 1703 4135 a 1703 4135 a
+SDict begin [ /Subtype /Link /Dest (0:RECDEP) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1703 4135 a Black
+-2 w FC(>\).)-2 4153 y
+SDict begin H.S end
+ -2 4153 a -2 4153 a
+SDict begin 11.7 H.A end
+ -2 4153 a
+-2 4153 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1876) cvn H.B /DEST pdfmark
+end
+ -2 4153 a -2 4278 a
+SDict begin H.S end
+ -2 4278 a -2 4278 a
+SDict begin 11.7 H.A end
+ -2
+4278 a -2 4278 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1878) cvn H.B /DEST pdfmark
+end
+ -2 4278 a 562 4357 a Fw(NO)m(TE:)h Fv(Changes)d(in)i
+(a)h(director)r(y)e(ma)n(y)i(also)f(modify)f(the)h(director)r(y)f
+(inode)g(itself)g(\(i.e)o(.)h(the)f(special)h(\002le)g(that)562
+4454 y(holds)g(the)f(director)r(y)h(inf)n(or)r(mation\).)c(If)21
+b(y)o(ou)e(w)o(ant)h(to)g(chec)o(k)g(all)g(b)o(ut)f(a)h(f)n(e)o(w)g
+(\002les)g(in)g(a)g(director)r(y)g(\(sa)n(y)-7 b(,)3500
+4454 y
+SDict begin H.S end
+ 3500 4454 a 3500 4454 a
+SDict begin 11.7 H.A end
+ 3500 4454 a 3500 4454
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1879) cvn H.B /DEST pdfmark
+end
+ 3500 4454 a Ft(/etc)p Fv(\),)562 4551 y(and)20 b(y)o(ou)f(e)n(xpect)h
+(some)h(of)f(the)f(e)n(xcluded)g(\002les)h(to)h(get)e(modi\002ed,)g(y)o
+(ou)h(should)f(use)h(a)g(setup)g(lik)o(e:)-2 4609 y
+SDict begin H.S end
+ -2
+4609 a -2 4609 a
+SDict begin 11.7 H.A end
+ -2 4609 a -2 4609 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1880) cvn H.B /DEST pdfmark
+end
+ -2 4609 a -2 4692
+a
+SDict begin H.S end
+ -2 4692 a -2 4692 a
+SDict begin 10.53 H.A end
+ -2 4692 a -2 4692 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1881) cvn H.B /DEST pdfmark
+end
+ -2 4692 a 643
+4763 a Ft([ReadOnly])643 4851 y(#)643 4938 y(dir=/etc)643
+5025 y(#)643 5113 y([Attributes])643 5200 y(#)643 5288
+y(#)41 b(less)g(restrictive)k(policy)d(for)f(the)h(directory)h(file)f
+(itself)643 5375 y(#)p Black 3661 5805 a Fx(48)p Black
+eop end
+%%Page: 49 54
+TeXDict begin 49 53 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.49) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 1956 104 a
+Fx(Chapter)20 b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h
+(\002le)g(monitor)p Black 643 309 a Ft(file=/etc)643
+396 y(#)643 484 y([IgnoreAll])643 571 y(#)643 658 y(#)41
+b(exclude)h(these)h(file)e(and)h(directories)643 746
+y(#)643 833 y(file=/etc/resolv.co)q(nf.)q(sav)q(e)643
+921 y(dir=-1/etc/calendar)643 1008 y(#)-2 1421 y
+SDict begin H.S end
+ -2 1421
+a -2 1421 a
+SDict begin 13 H.A end
+ -2 1421 a -2 1421 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:TIMING-FILE-CHECKS) cvn H.B
+/DEST pdfmark end
+ -2 1421 a 377 x Fu(5.6.)d(Timing)f
+(\002le)h(c)o(hec)m(ks)1518 1798 y
+SDict begin H.S end
+ 1518 1798 a 1518 1798
+a
+SDict begin 22.464 H.A end
+ 1518 1798 a 1518 1798 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.38.1) cvn H.B /DEST pdfmark
+end
+ 1518 1798 a -2 1996 a
+SDict begin H.S end
+ -2 1996
+a -2 1996 a
+SDict begin 13 H.A end
+ -2 1996 a -2 1996 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1884) cvn H.B /DEST pdfmark
+end
+ -2 1996 a 396 2072 a
+FC(In)20 b(the)608 2072 y
+SDict begin H.S end
+ 608 2072 a 608 2072 a
+SDict begin 13 H.A end
+ 608 2072
+a 608 2072 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1885) cvn H.B /DEST pdfmark
+end
+ 608 2072 a Fx(Misc)i FC(section)d(of)h(the)h
+(con\002guration)c(\002le,)k(you)e(can)h(set)h(the)f(interv)n(al)g
+(\(in)f(seconds\))h(between)f(succesi)n(v)o(e)396 2180
+y(\002le)i(checks:)-2 2347 y
+SDict begin H.S end
+ -2 2347 a -2 2347 a
+SDict begin 13 H.A end
+ -2 2347
+a -2 2347 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1886) cvn H.B /DEST pdfmark
+end
+ -2 2347 a -2 2347 a
+SDict begin H.S end
+ -2 2347 a -2 2347 a
+SDict begin 13 H.A end
+ -2
+2347 a -2 2347 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1887) cvn H.B /DEST pdfmark
+end
+ -2 2347 a 396 2454 a Fy(SetFilecheckT)o(ime=)1074
+2454 y
+SDict begin H.S end
+ 1074 2454 a 1074 2454 a
+SDict begin 13 H.A end
+ 1074 2454 a 1074 2454
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1888) cvn H.B /DEST pdfmark
+end
+ 1074 2454 a Fl(value)-2 2621 y
+SDict begin H.S end
+ -2 2621 a -2 2621 a
+SDict begin 13 H.A end
+
+-2 2621 a -2 2621 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1889) cvn H.B /DEST pdfmark
+end
+ -2 2621 a 396 2728 a FC(Alternati)n(v)o(ely)-5
+b(,)18 b(you)h(can)h(specify)g(a)h(crontab-lik)o(e)d(schedule)h(with:)
+-2 2912 y
+SDict begin H.S end
+ -2 2912 a -2 2912 a
+SDict begin 13 H.A end
+ -2 2912 a -2 2912 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1890) cvn H.B /DEST pdfmark
+end
+ -2
+2912 a -2 2912 a
+SDict begin H.S end
+ -2 2912 a -2 2912 a
+SDict begin 13 H.A end
+ -2 2912 a -2 2912
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1891) cvn H.B /DEST pdfmark
+end
+ -2 2912 a 396 3002 a Fy(FileCheckScheduleOne=)1269
+3002 y
+SDict begin H.S end
+ 1269 3002 a 1269 3002 a
+SDict begin 13 H.A end
+ 1269 3002 a 1269 3002
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1892) cvn H.B /DEST pdfmark
+end
+ 1269 3002 a Fl(schedule)-2 3169 y
+SDict begin H.S end
+ -2 3169 a -2 3169
+a
+SDict begin 13 H.A end
+ -2 3169 a -2 3169 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1893) cvn H.B /DEST pdfmark
+end
+ -2 3169 a 396 3276 a FC(The)h(schedule)f(follo)n
+(ws)h(the)g(same)h(rules)f(as)h(crontab\(5\))c(entries,)j(with)g(tw)o
+(o)h(noteable)e(e)o(xceptions:)g(\(a\))3466 3276 y
+SDict begin H.S end
+ 3466
+3276 a 3466 3276 a
+SDict begin 13 H.A end
+ 3466 3276 a 3466 3276 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1894) cvn H.B /DEST pdfmark
+end
+ 3466 3276
+a Fx(lists)i FC(are)396 3384 y(not)e(allo)n(wed,)f(and)h(\(b\))1079
+3384 y
+SDict begin H.S end
+ 1079 3384 a 1079 3384 a
+SDict begin 13 H.A end
+ 1079 3384 a 1079 3384
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1895) cvn H.B /DEST pdfmark
+end
+ 1079 3384 a Fx(r)o(ang)o(es)g FC(of)f(names)h(\(lik)o(e)g(Mon-Fri\))f
+(are)h(allo)n(wed.)f(See)2704 3384 y
+SDict begin H.S end
+ 2704 3384 a 2704
+3384 a
+SDict begin 13 H.A end
+ 2704 3384 a 2704 3384 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1896) cvn H.B /DEST pdfmark
+end
+ 2704 3384 a Fy(man)i(5)f(cr)o(ontab)f
+FC(for)g(details.)i(Y)-9 b(ou)396 3491 y(can)19 b(specify)g(a)h(list)h
+(of)e(schedules,)f(with)i(separate)f(FileCheckScheduleOne=.)12
+b(.)g(.)29 b(directi)n(v)o(es)19 b(on)g(separate)g(lines.)-2
+3509 y
+SDict begin H.S end
+ -2 3509 a -2 3509 a
+SDict begin 11.7 H.A end
+ -2 3509 a -2 3509 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1897) cvn H.B /DEST pdfmark
+end
+ -2 3509
+a -2 3634 a
+SDict begin H.S end
+ -2 3634 a -2 3634 a
+SDict begin 11.7 H.A end
+ -2 3634 a -2 3634 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1899) cvn H.B /DEST pdfmark
+end
+ -2
+3634 a 562 3713 a Fw(NO)m(TE:)i Fv(If)f(y)o(ou)g(need)f(a)h(list)g(in)g
+(y)o(our)f(schedule)o(,)g(y)o(ou)h(can)g(either)e(use)j(steps)f(\(lik)o
+(e)f(*/2)h(f)n(or)g('e)n(v)n(er)r(y)g(tw)o(o)562 3810
+y(min)o(utes/hours/...\),)d(or)k(y)o(ou)e(can)h(specify)h(a)f(list)g
+(of)g(schedules)o(,)f(with)h(separ)o(ate)562 3907 y(FileChec)o
+(kScheduleOne=.)12 b(.)g(.)28 b(directiv)n(es)19 b(on)h(separ)o(ate)f
+(lines)o(.)39 4057 y
+SDict begin H.S end
+ 39 4057 a 39 4057 a
+SDict begin 13 H.A end
+ 39 4057 a 39
+4057 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SECOND-SCHEDULE) cvn H.B /DEST
+pdfmark end
+ 39 4057 a 396 4385 a Fp(5.6.1.)36 b(Using)e(a)g(second)g(sc)o
+(hedule)2160 4385 y
+SDict begin H.S end
+ 2160 4385 a 2160 4385 a
+SDict begin 18.72 H.A end
+ 2160 4385
+a 2160 4385 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.38.22.2) cvn H.B /DEST pdfmark
+end
+ 2160 4385 a -2 4578 a
+SDict begin H.S end
+ -2 4578 a -2 4578
+a
+SDict begin 13 H.A end
+ -2 4578 a -2 4578 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1902) cvn H.B /DEST pdfmark
+end
+ -2 4578 a 396 4659 a FC(If)20 b(you)g(w)o(ant)g
+(to)g(check)g(some)g(\002les)h(rather)e(often,)g(while)h(doing)f(a)i
+(more)e(e)o(xtensi)n(v)o(e)g(check)g(only)h(sometimes,)396
+4767 y(this)h(is)g(supported)d(as)j(follo)n(ws:)-2 4951
+y
+SDict begin H.S end
+ -2 4951 a -2 4951 a
+SDict begin 13 H.A end
+ -2 4951 a -2 4951 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1903) cvn H.B /DEST pdfmark
+end
+ -2 4951 a -2
+4951 a
+SDict begin H.S end
+ -2 4951 a -2 4951 a
+SDict begin 13 H.A end
+ -2 4951 a -2 4951 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1904) cvn H.B /DEST pdfmark
+end
+ -2 4951
+a -2 4961 a
+SDict begin H.S end
+ -2 4961 a -2 4961 a
+SDict begin 13 H.A end
+ -2 4961 a -2 4961 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1905) cvn H.B /DEST pdfmark
+end
+ -2
+4961 a Black 396 5103 a FB(\225)p Black 479 5103 a
+SDict begin H.S end
+ 479
+5103 a 479 5103 a
+SDict begin 13 H.A end
+ 479 5103 a 479 5103 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1906) cvn H.B /DEST pdfmark
+end
+ 479 5103 a FC(Enclose)f(all)h
+(directories)e(for)g(the)i(more)e(e)o(xtensi)n(v)o(e)g(check)g(in)h(a)h
+(\045SCHEDULE_TW)o(O)f(...)479 5211 y(!\045SCHEDULE_TW)o(O)g(block)f
+(lik)o(e:)-2 5262 y
+SDict begin H.S end
+ -2 5262 a -2 5262 a
+SDict begin 11.7 H.A end
+ -2 5262 a -2
+5262 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1907) cvn H.B /DEST pdfmark
+end
+ -2 5262 a 569 5350 a Fr(\045SCHEDULE_TWO)p Black
+3661 5805 a Fx(49)p Black eop end
+%%Page: 50 55
+TeXDict begin 50 54 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.50) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 1956 104 a
+Fx(Chapter)20 b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h
+(\002le)g(monitor)p Black 569 309 a Fr(dir=/check/only/once/per/day)569
+406 y(!\045SCHEDULE_TWO)-2 503 y
+SDict begin H.S end
+ -2 503 a -2 503 a
+SDict begin 13 H.A end
+ -2
+503 a -2 503 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1908) cvn H.B /DEST pdfmark
+end
+ -2 503 a Black 396 652 a FB(\225)p Black
+479 652 a
+SDict begin H.S end
+ 479 652 a 479 652 a
+SDict begin 13 H.A end
+ 479 652 a 479 652 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1909) cvn H.B /DEST pdfmark
+end
+ 479
+652 a FC(De\002ne)g(an)h(optional)d(second)i(schedule)f(as)i(follo)n
+(ws)f(\(similar)g(to)g(FileCheckSchedule,)e(you)h(can)h(specify)g(a)479
+760 y(list)i(of)d(schedules\):)-2 941 y
+SDict begin H.S end
+ -2 941 a -2 941
+a
+SDict begin 13 H.A end
+ -2 941 a -2 941 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1910) cvn H.B /DEST pdfmark
+end
+ -2 941 a -2 941 a
+SDict begin H.S end
+ -2 941 a -2 941
+a
+SDict begin 13 H.A end
+ -2 941 a -2 941 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1911) cvn H.B /DEST pdfmark
+end
+ -2 941 a 479 1034 a Fy(FileCheckScheduleT)-6
+b(w)o(o=)1354 1034 y
+SDict begin H.S end
+ 1354 1034 a 1354 1034 a
+SDict begin 13 H.A end
+ 1354 1034
+a 1354 1034 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1912) cvn H.B /DEST pdfmark
+end
+ 1354 1034 a Fl(schedule2)-2 1468 y
+SDict begin H.S end
+ -2 1468
+a -2 1468 a
+SDict begin 13 H.A end
+ -2 1468 a -2 1468 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1913) cvn H.B /DEST pdfmark
+end
+ -2 1468 a -2 1468 a
+SDict begin H.S end
+ -2
+1468 a -2 1468 a
+SDict begin 13 H.A end
+ -2 1468 a -2 1468 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1914) cvn H.B /DEST pdfmark
+end
+ -2 1468 a 396 1576
+a Fx(Rules:)-2 1743 y
+SDict begin H.S end
+ -2 1743 a -2 1743 a
+SDict begin 13 H.A end
+ -2 1743 a -2
+1743 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1915) cvn H.B /DEST pdfmark
+end
+ -2 1743 a -2 1743 a
+SDict begin H.S end
+ -2 1743 a -2 1743 a
+SDict begin 13 H.A end
+ -2 1743
+a -2 1743 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1916) cvn H.B /DEST pdfmark
+end
+ -2 1743 a -2 1753 a
+SDict begin H.S end
+ -2 1753 a -2 1753 a
+SDict begin 13 H.A end
+ -2
+1753 a -2 1753 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1917) cvn H.B /DEST pdfmark
+end
+ -2 1753 a Black 463 1912 a FC(1.)p Black
+546 1912 a
+SDict begin H.S end
+ 546 1912 a 546 1912 a
+SDict begin 13 H.A end
+ 546 1912 a 546 1912
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1918) cvn H.B /DEST pdfmark
+end
+ 546 1912 a FC(All)21 b(\002les)g(and)e(directories)h(will)g(al)o(w)o
+(ays)h(be)f(check)o(ed)f(at)i(FileCheckScheduleT)-7 b(w)o(o.)-2
+1930 y
+SDict begin H.S end
+ -2 1930 a -2 1930 a
+SDict begin 13 H.A end
+ -2 1930 a -2 1930 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1919) cvn H.B /DEST pdfmark
+end
+ -2 1930
+a Black 463 2062 a FC(2.)p Black 546 2062 a
+SDict begin H.S end
+ 546 2062
+a 546 2062 a
+SDict begin 13 H.A end
+ 546 2062 a 546 2062 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1920) cvn H.B /DEST pdfmark
+end
+ 546 2062 a FC(All)21
+b(single)f(\002les)h(\(\002le=.)12 b(.)g(.)g(\))20 b(will)h(al)o(w)o
+(ays)g(be)f(check)o(ed)f(at)i(both)e(FileCheckScheduleOne)f(and)546
+2170 y(FileCheckScheduleT)-7 b(w)o(o)18 b(\(rationale:)h(this)i(is)g
+(required)d(to)i(check)g(for)f(missing/added)g(\002les)i(in)546
+2278 y(directories\).)-2 2293 y
+SDict begin H.S end
+ -2 2293 a -2 2293 a
+SDict begin 13 H.A end
+ -2
+2293 a -2 2293 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1921) cvn H.B /DEST pdfmark
+end
+ -2 2293 a Black 463 2427 a FC(3.)p Black
+546 2427 a
+SDict begin H.S end
+ 546 2427 a 546 2427 a
+SDict begin 13 H.A end
+ 546 2427 a 546 2427
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1922) cvn H.B /DEST pdfmark
+end
+ 546 2427 a FC(All)g(directories)e(outside)g(the)i(\045SCHEDULE_TW)o
+(O)f(block)f(will)i(be)f(check)o(ed)f(at)i(both)546 2535
+y(FileCheckScheduleOne)c(and)j(FileCheckScheduleT)-7
+b(w)o(o.)-2 2536 y
+SDict begin H.S end
+ -2 2536 a -2 2536 a
+SDict begin 13 H.A end
+ -2 2536 a -2 2536
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1923) cvn H.B /DEST pdfmark
+end
+ -2 2536 a Black 463 2684 a FC(4.)p Black 546 2684 a
+SDict begin H.S end
+
+546 2684 a 546 2684 a
+SDict begin 13 H.A end
+ 546 2684 a 546 2684 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1924) cvn H.B /DEST pdfmark
+end
+ 546 2684
+a FC(All)21 b(directories)e(inside)h(the)g(\045SCHEDULE_TW)o(O)g(block)
+f(will)i(be)g(check)o(ed)d(at)546 2792 y(FileCheckScheduleT)-7
+b(w)o(o)18 b(only)-5 b(.)-2 3035 y
+SDict begin H.S end
+ -2 3035 a -2 3035
+a
+SDict begin 13 H.A end
+ -2 3035 a -2 3035 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:INITIALIZING-UPDATING-CHECKING)
+cvn H.B /DEST pdfmark end
+ -2 3035 a 377 x Fu(5.7.)39 b(Initializing,)e
+(updating,)h(or)h(c)o(hec)m(king)2547 3412 y
+SDict begin H.S end
+ 2547 3412
+a 2547 3412 a
+SDict begin 22.464 H.A end
+ 2547 3412 a 2547 3412 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.39.1) cvn H.B /DEST pdfmark
+end
+ 2547 3412 a -2
+3610 a
+SDict begin H.S end
+ -2 3610 a -2 3610 a
+SDict begin 13 H.A end
+ -2 3610 a -2 3610 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1927) cvn H.B /DEST pdfmark
+end
+ -2 3610
+a 396 3686 a FC(In)20 b(the)608 3686 y
+SDict begin H.S end
+ 608 3686 a 608
+3686 a
+SDict begin 13 H.A end
+ 608 3686 a 608 3686 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1928) cvn H.B /DEST pdfmark
+end
+ 608 3686 a Fx(Misc)i FC(section)d(of)h
+(the)h(con\002guration)c(\002le,)k(you)e(can)h(choose)f(between)h
+(initializing)f(the)h(database,)396 3794 y(updating)f(it,)h(or)g
+(checking)f(the)h(\002les)h(against)f(the)g(e)o(xisting)f(database:)-2
+3978 y
+SDict begin H.S end
+ -2 3978 a -2 3978 a
+SDict begin 13 H.A end
+ -2 3978 a -2 3978 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1929) cvn H.B /DEST pdfmark
+end
+ -2 3978
+a -2 3978 a
+SDict begin H.S end
+ -2 3978 a -2 3978 a
+SDict begin 13 H.A end
+ -2 3978 a -2 3978 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1930) cvn H.B /DEST pdfmark
+end
+ -2
+3978 a 396 4068 a Fy(ChecksumT)-8 b(est=)960 4068 y
+SDict begin H.S end
+ 960
+4068 a 960 4068 a
+SDict begin 13 H.A end
+ 960 4068 a 960 4068 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1931) cvn H.B /DEST pdfmark
+end
+ 960 4068 a Fl
+(init|update|check|none)-2 4253 y
+SDict begin H.S end
+ -2 4253 a -2 4253 a
+SDict begin 13 H.A end
+
+-2 4253 a -2 4253 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1932) cvn H.B /DEST pdfmark
+end
+ -2 4253 a 396 4342 a FC(If)20 b(you)g(use)g(the)g
+(mode)1076 4342 y
+SDict begin H.S end
+ 1076 4342 a 1076 4342 a
+SDict begin 13 H.A end
+ 1076 4342 a
+1076 4342 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1933) cvn H.B /DEST pdfmark
+end
+ 1076 4342 a Fx(none)p FC(,)f(you)h(should)f(specify)g(on)h
+(the)g(command)f(line)h(one)f(of)2877 4342 y
+SDict begin H.S end
+ 2877 4342
+a 2877 4342 a
+SDict begin 13 H.A end
+ 2877 4342 a 2877 4342 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1934) cvn H.B /DEST pdfmark
+end
+ 2877 4342 a Fx(init)q
+FC(,)3031 4342 y
+SDict begin H.S end
+ 3031 4342 a 3031 4342 a
+SDict begin 13 H.A end
+ 3031 4342 a
+3031 4342 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1935) cvn H.B /DEST pdfmark
+end
+ 3031 4342 a Fx(update)p FC(,)g(or)3389 4342
+y
+SDict begin H.S end
+ 3389 4342 a 3389 4342 a
+SDict begin 13 H.A end
+ 3389 4342 a 3389 4342 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1936) cvn H.B /DEST pdfmark
+end
+ 3389
+4342 a Fx(c)o(hec)n(k)q FC(,)396 4450 y(lik)o(e:)564
+4450 y
+SDict begin H.S end
+ 564 4450 a 564 4450 a
+SDict begin 13 H.A end
+ 564 4450 a 564 4450 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1937) cvn H.B /DEST pdfmark
+end
+ 564
+4450 a Fy(samhain)h(-t)960 4450 y
+SDict begin H.S end
+ 960 4450 a 960 4450
+a
+SDict begin 13 H.A end
+ 960 4450 a 960 4450 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1938) cvn H.B /DEST pdfmark
+end
+ 960 4450 a Fl(check)-2 4618 y
+SDict begin H.S end
+
+-2 4618 a -2 4618 a
+SDict begin 13 H.A end
+ -2 4618 a -2 4618 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1939) cvn H.B /DEST pdfmark
+end
+ -2 4618 a 396
+4724 a FC(As)h(of)f(v)o(ersion)f(1.8.1,)g(there)g(is)i(a)g(ne)n(w)f
+(command)e(line)j(\003ag)2187 4724 y
+SDict begin H.S end
+ 2187 4724 a 2187
+4724 a
+SDict begin 13 H.A end
+ 2187 4724 a 2187 4724 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1940) cvn H.B /DEST pdfmark
+end
+ 2187 4724 a Fx(--inter)o(active)e
+FC(to)h(enable)g(interacti)n(v)o(e)e(updates.)i(If)396
+4832 y(you)g(use)g(this)h(\003ag)f(together)f(with)1420
+4832 y
+SDict begin H.S end
+ 1420 4832 a 1420 4832 a
+SDict begin 13 H.A end
+ 1420 4832 a 1420 4832
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1941) cvn H.B /DEST pdfmark
+end
+ 1420 4832 a Fx(-t)i(update)p FC(,)d(you)h(will)i(be)f(ask)o(ed)g(if)h
+(the)f(database)g(entry)f(should)g(be)h(updated,)396
+4940 y(whene)n(v)o(er)736 4940 y
+SDict begin H.S end
+ 736 4940 a 736 4940
+a
+SDict begin 13 H.A end
+ 736 4940 a 736 4940 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1942) cvn H.B /DEST pdfmark
+end
+ 736 4940 a FC(samhain)g(encounters)e(a)j
+(modi\002ed)e(\002le.)-2 4951 y
+SDict begin H.S end
+ -2 4951 a -2 4951 a
+SDict begin 13 H.A end
+ -2
+4951 a -2 4951 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DATABASEFILE) cvn H.B /DEST
+pdfmark end
+ -2 4951 a Black 3661 5805 a Fx(50)p
+Black eop end
+%%Page: 51 56
+TeXDict begin 51 55 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.51) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1977) cvn H.B /DEST pdfmark
+end
+ -2 35 a 1956 104 a Fx(Chapter)20
+b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h(\002le)g(monitor)p
+Black -2 330 a Fu(5.8.)39 b(The)g(\002le)g(signature)f(database)2129
+330 y
+SDict begin H.S end
+ 2129 330 a 2129 330 a
+SDict begin 22.464 H.A end
+ 2129 330 a 2129 330 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.40.1) cvn H.B /DEST pdfmark
+end
+ 2129
+330 a -2 528 a
+SDict begin H.S end
+ -2 528 a -2 528 a
+SDict begin 13 H.A end
+ -2 528 a -2 528 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1945) cvn H.B /DEST pdfmark
+end
+ -2
+528 a 396 604 a FC(The)20 b(database)g(\002le)h(is)g(named)1298
+604 y
+SDict begin H.S end
+ 1298 604 a 1298 604 a
+SDict begin 13 H.A end
+ 1298 604 a 1298 604 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1946) cvn H.B /DEST pdfmark
+end
+ 1298
+604 a Fr(samhain_file)e FC(by)g(def)o(ault,)h(and)f(placed)h(into)396
+712 y
+SDict begin H.S end
+ 396 712 a 396 712 a
+SDict begin 13 H.A end
+ 396 712 a 396 712 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1947) cvn H.B /DEST pdfmark
+end
+ 396 712
+a Fr(/usr/local/var/lib/samhain)d FC(by)i(def)o(ault)h(\(name)f(and)h
+(location)f(can)h(be)g(con\002gured)e(at)j(compile)396
+820 y(time\).)-2 1001 y
+SDict begin H.S end
+ -2 1001 a -2 1001 a
+SDict begin 13 H.A end
+ -2 1001 a
+-2 1001 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1948) cvn H.B /DEST pdfmark
+end
+ -2 1001 a 396 1094 a FC(The)f(database)g(is)h(a)f(binary)f
+(\002le.)i(F)o(or)f(security)f(reasons,)h(it)h(is)g(recommended)c(to)j
+(store)g(a)h(backup)e(cop)o(y)g(of)h(the)396 1202 y(database)g(on)g
+(read-only)e(media,)h(otherwise)g(you)h(will)h(not)f(be)g(able)g(to)g
+(recognize)f(\002le)h(modi\002cations)f(after)h(its)396
+1310 y(deletion)g(\(by)f(accident)g(or)h(by)g(some)g(malicious)g
+(person\).)-2 1494 y
+SDict begin H.S end
+ -2 1494 a -2 1494 a
+SDict begin 13 H.A end
+ -2 1494 a -2
+1494 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1949) cvn H.B /DEST pdfmark
+end
+ -2 1494 a -2 1494 a
+SDict begin H.S end
+ -2 1494 a -2 1494 a
+SDict begin 13 H.A end
+ -2 1494
+a -2 1494 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1950) cvn H.B /DEST pdfmark
+end
+ -2 1494 a 396 1584 a FC(samhain)g(will)h(compute)d(the)j
+(checksum)d(of)i(the)g(database)g(at)h(startup)e(and)h(v)o(erify)f(it)i
+(at)f(each)g(access.)3404 1584 y
+SDict begin H.S end
+ 3404 1584 a 3404 1584
+a
+SDict begin 13 H.A end
+ 3404 1584 a 3404 1584 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1951) cvn H.B /DEST pdfmark
+end
+ 3404 1584 a FC(samhain)396
+1692 y(will)h(\002rst)g(open\(\))e(the)h(database,)f(compute)g(the)h
+(checksum,)f(re)n(wind)g(the)h(\002le,)h(and)e(then)h(read)g(it.)g
+(Thus)g(it)h(is)g(not)396 1800 y(possible)f(to)h(modify)d(the)i(\002le)
+h(between)f(checksumming)d(and)j(reading.)-2 1828 y
+SDict begin H.S end
+ -2
+1828 a -2 1828 a
+SDict begin 13 H.A end
+ -2 1828 a -2 1828 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SUIDCHK) cvn H.B /DEST pdfmark
+end
+ -2 1828 a 359 x
+Fu(5.9.)39 b(Chec)m(king)f(the)h(\002le)g(system)f(f)m(or)h(SUID/SGID)f
+(binaries)3550 2187 y
+SDict begin H.S end
+ 3550 2187 a 3550 2187 a
+SDict begin 22.464 H.A end
+ 3550 2187
+a 3550 2187 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.41.1) cvn H.B /DEST pdfmark
+end
+ 3550 2187 a -2 2385 a
+SDict begin H.S end
+ -2 2385 a -2 2385
+a
+SDict begin 13 H.A end
+ -2 2385 a -2 2385 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1954) cvn H.B /DEST pdfmark
+end
+ -2 2385 a 396 2461 a FC(T)-7 b(o)21
+b(compile)e(with)h(support)f(for)h(this)g(option,)f(use)h(the)h
+(con\002gure)d(option)-2 2645 y
+SDict begin H.S end
+ -2 2645 a -2 2645 a
+SDict begin 13 H.A end
+ -2
+2645 a -2 2645 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1955) cvn H.B /DEST pdfmark
+end
+ -2 2645 a -2 2645 a
+SDict begin H.S end
+ -2 2645 a -2 2645
+a
+SDict begin 13 H.A end
+ -2 2645 a -2 2645 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1956) cvn H.B /DEST pdfmark
+end
+ -2 2645 a 396 2735 a Fy(./con\002gur)o(e)h
+(--with-suidcheck)-2 2918 y
+SDict begin H.S end
+ -2 2918 a -2 2918 a
+SDict begin 13 H.A end
+ -2 2918
+a -2 2918 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1957) cvn H.B /DEST pdfmark
+end
+ -2 2918 a 396 3009 a FC(If)h(enabled,)f(this)i(will)g
+(cause)f(the)g(samhain)f(daemon)g(to)h(check)g(the)g(whole)g(\002le)h
+(system)f(hierarchy)e(for)396 3117 y(SUID/SGID)i(\002les)i(at)e(user)n
+(-de\002ned)f(interv)n(als,)g(and)h(to)g(report)f(on)h(an)o(y)f(that)i
+(are)f(not)g(included)e(in)j(the)f(\002le)396 3225 y(database.)g(Upon)f
+(database)g(initialization,)h(all)g(SUID/SGID)h(\002les)g(will)g
+(automatically)d(be)j(included)d(in)j(the)396 3333 y(database.)f
+(Excluded)e(are)i(nfs,)g(proc,)f(msdos,)h(vf)o(at,)g(and)f(iso9660)g
+(\(CD-R)m(OM\))h(\002le)h(systems,)f(as)h(well)g(as)g(\002le)396
+3441 y(systems)g(mounted)d(with)j(the)f('nosuid')e(options)i(\(the)f
+(latter)i(is)g(not)f(supported)e(on)i(all)h(OSes,)f(b)n(ut)g(at)h
+(least)g(on)396 3549 y(Linux\).)-2 3730 y
+SDict begin H.S end
+ -2 3730 a -2
+3730 a
+SDict begin 13 H.A end
+ -2 3730 a -2 3730 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1958) cvn H.B /DEST pdfmark
+end
+ -2 3730 a 396 3823 a FC(On)f(Linux,)f
+(\002les)i(that)g(are)f(mark)o(ed)f(as)i(candidates)e(for)g(mandatory)f
+(locking)h(\(group-id)e(bit)k(set,)g(group-e)o(x)o(ecute)396
+3931 y(bit)g(cleared\))e(will)i(be)f(ignored.)-2 4115
+y
+SDict begin H.S end
+ -2 4115 a -2 4115 a
+SDict begin 13 H.A end
+ -2 4115 a -2 4115 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1959) cvn H.B /DEST pdfmark
+end
+ -2 4115 a 396
+4205 a FC(Y)-9 b(ou)20 b(can)g(manually)f(e)o(xclude)f(one)i(directory)
+e(\(see)j(belo)n(w\);)e(this)i(should)e(be)h(used)g(only)f(for)h
+(obscure)f(problems)396 4313 y(\(e.g.:)h(/net/localhost)f(on)h(Solaris)
+g(-)g(the)h(automounter)c(will)k(mirror)e(the)h(root)f(directory)g
+(twice,)h(as)396 4421 y('/net/localhost')f(and)g
+('/net/localhost/net/localhost',)e(and)j(an)o(y)f(nfs)h(\002le)h
+(system)f(in)h('/')f(will)h(be)f(labelled)g(as)g(ufs)396
+4529 y(system)h(in)f('/net/localhost/net/localhost')d(.)12
+b(.)g(.)g(\).)-2 4547 y
+SDict begin H.S end
+ -2 4547 a -2 4547 a
+SDict begin 11.7 H.A end
+ -2 4547 a
+-2 4547 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1960) cvn H.B /DEST pdfmark
+end
+ -2 4547 a -2 4671 a
+SDict begin H.S end
+ -2 4671 a -2 4671 a
+SDict begin 11.7 H.A end
+ -2
+4671 a -2 4671 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1962) cvn H.B /DEST pdfmark
+end
+ -2 4671 a 562 4750 a Fw(NO)m(TE:)20
+b Fv(The)g(SUID)g(chec)o(k)g(is)h(v)n(er)r(y)g(I/O)f(e)n(xpensiv)n(e)o
+(.)f(Using)h('nice')f(ma)n(y)h(not)g(help)m(,)f(if)h(the)f(CPU)i(is)f
+(w)o(aiting)e(f)n(or)562 4847 y(I/O)j(all)e(the)h(time)g(an)o(yw)o(a)n
+(y)-7 b(.)19 b(T)-9 b(o)20 b(limit)f(the)h(load,)f(the)g(f)n(ollo)o
+(wing)e(options)i(are)h(pro)o(vided:)-2 4905 y
+SDict begin H.S end
+ -2 4905
+a -2 4905 a
+SDict begin 11.7 H.A end
+ -2 4905 a -2 4905 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1963) cvn H.B /DEST pdfmark
+end
+ -2 4905 a 562 4986 a
+Fv(Y)-10 b(ou)20 b(can)847 4986 y
+SDict begin H.S end
+ 847 4986 a 847 4986
+a
+SDict begin 11.7 H.A end
+ 847 4986 a 847 4986 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1964) cvn H.B /DEST pdfmark
+end
+ 847 4986 a Fq(schedule)g Fv(e)n(x)n(ecution)e
+(at)i(\002x)n(ed)h(times)f(with)2117 4986 y
+SDict begin H.S end
+ 2117 4986
+a 2117 4986 a
+SDict begin 11.7 H.A end
+ 2117 4986 a 2117 4986 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1965) cvn H.B /DEST pdfmark
+end
+ 2117 4986 a Fw(SuidChec)o(kSc)o
+(hedule=)2882 4986 y
+SDict begin H.S end
+ 2882 4986 a 2882 4986 a
+SDict begin 11.7 H.A end
+ 2882 4986
+a 2882 4986 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1966) cvn H.B /DEST pdfmark
+end
+ 2882 4986 a Fm(schedule)p Fv(.)-2 5029
+y
+SDict begin H.S end
+ -2 5029 a -2 5029 a
+SDict begin 11.7 H.A end
+ -2 5029 a -2 5029 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1967) cvn H.B /DEST pdfmark
+end
+ -2 5029 a 562
+5125 a Fv(Y)-10 b(ou)20 b(can)847 5125 y
+SDict begin H.S end
+ 847 5125 a 847
+5125 a
+SDict begin 11.7 H.A end
+ 847 5125 a 847 5125 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1968) cvn H.B /DEST pdfmark
+end
+ 847 5125 a Fq(limit)f(I/O)24
+b Fv(with)c(the)1403 5125 y
+SDict begin H.S end
+ 1403 5125 a 1403 5125 a
+SDict begin 11.7 H.A end
+ 1403
+5125 a 1403 5125 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1969) cvn H.B /DEST pdfmark
+end
+ 1403 5125 a Fw(SuidChec)o(kFps=)1969
+5125 y
+SDict begin H.S end
+ 1969 5125 a 1969 5125 a
+SDict begin 11.7 H.A end
+ 1969 5125 a 1969 5125
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1970) cvn H.B /DEST pdfmark
+end
+ 1969 5125 a Fm(fps)d Fv(option)h(\(fps:)i(\002les)h(per)f(second\).)p
+Black 3661 5805 a Fx(51)p Black eop end
+%%Page: 52 57
+TeXDict begin 52 56 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.52) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 1956 104 a
+Fx(Chapter)20 b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h
+(\002le)g(monitor)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 11.7 H.A end
+
+-2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1971) cvn H.B /DEST pdfmark
+end
+ -2 226 a 562 309 a Fv(As)h(an)f(alter)r(nativ)n(e)e
+(to)i(the)1347 309 y
+SDict begin H.S end
+ 1347 309 a 1347 309 a
+SDict begin 11.7 H.A end
+ 1347 309 a
+1347 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1972) cvn H.B /DEST pdfmark
+end
+ 1347 309 a Fw(SuidChec)o(kFps)d Fv(option,)h(y)o(ou)h(can)i
+(use)2553 309 y
+SDict begin H.S end
+ 2553 309 a 2553 309 a
+SDict begin 11.7 H.A end
+ 2553 309 a 2553
+309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1973) cvn H.B /DEST pdfmark
+end
+ 2553 309 a Fw(SuidChec)o(kYield=)3165 309 y
+SDict begin H.S end
+ 3165
+309 a 3165 309 a
+SDict begin 11.7 H.A end
+ 3165 309 a 3165 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1974) cvn H.B /DEST pdfmark
+end
+ 3165 309 a Fm(yes)p
+Fv(.)c(This)j(will)562 406 y(cause)g(the)f(SuidChec)o(k)e(module)h(to)i
+(yield)f(its)g(time)h(slice)f(after)g(each)g(\002le)o(.)g(If)2780
+406 y
+SDict begin H.S end
+ 2780 406 a 2780 406 a
+SDict begin 11.7 H.A end
+ 2780 406 a 2780 406 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1975) cvn H.B /DEST pdfmark
+end
+ 2780
+406 a Fw(SuidChec)o(kYield)d Fv(is)k(used,)e(the)562
+503 y
+SDict begin H.S end
+ 562 503 a 562 503 a
+SDict begin 11.7 H.A end
+ 562 503 a 562 503 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1976) cvn H.B /DEST pdfmark
+end
+ 562 503
+a Fw(SuidChec)o(kFps)f Fv(option)h(will)h(not)h(tak)o(e)f(eff)n(ect.)
+562 642 y(The)h(schedule)f(should)g(ha)o(v)n(e)g(the)h(same)g(syntax)h
+(as)f(a)h(crontab)e(entr)r(y)h(\(see)g(crontab\(5\))e(and)i(e)n(xample)
+562 739 y(belo)o(w\),)f(with)g(the)h(f)n(ollo)o(wing)d(e)n(xceptions:)i
+(\(a\))h(lists)g(are)g(not)f(allo)o(w)o(ed,)f(and)i(\(b\))g(r)o(anges)f
+(of)h(names)g(are)562 836 y(allo)o(w)o(ed.)e(If)j(a)f(schedule)f(is)h
+(giv)n(en,)g(the)f Fw(SuidChec)o(kInter)q(v)o(al)c Fv(option)j(will)i
+(not)f(tak)o(e)h(eff)n(ect.)f(Y)-10 b(ou)19 b(can)562
+933 y(specify)i(a)f(list)g(of)g(schedules)f(with)h(successiv)n(e)h
+(SuidChec)o(kSchedule=...)15 b(directiv)n(es)o(.)39 1082
+y
+SDict begin H.S end
+ 39 1082 a 39 1082 a
+SDict begin 13 H.A end
+ 39 1082 a 39 1082 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SUIDCHK-QUARANTINE) cvn H.B
+/DEST pdfmark end
+ 39 1082 a 396
+1411 a Fp(5.9.1.)36 b(Quarantine)e(SUID/SGID)g(\002les)2275
+1411 y
+SDict begin H.S end
+ 2275 1411 a 2275 1411 a
+SDict begin 18.72 H.A end
+ 2275 1411 a 2275 1411
+a
+SDict begin [ /View [/XYZ H.V] /Dest (7.41.23.2) cvn H.B /DEST pdfmark
+end
+ 2275 1411 a -2 1583 a
+SDict begin H.S end
+ -2 1583 a -2 1583 a
+SDict begin 13 H.A end
+ -2 1583 a
+-2 1583 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1981) cvn H.B /DEST pdfmark
+end
+ -2 1583 a 396 1685 a FC(As)21 b(of)f(v)o(ersion)f(1.8.4,)g
+(it)i(is)g(possible)f(to)1592 1685 y
+SDict begin H.S end
+ 1592 1685 a 1592
+1685 a
+SDict begin 13 H.A end
+ 1592 1685 a 1592 1685 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1982) cvn H.B /DEST pdfmark
+end
+ 1592 1685 a Fx(quar)o(antine)e
+FC(ne)n(w)i(SUID/SGID)g(\002les)h(detected)f(by)3124
+1685 y
+SDict begin H.S end
+ 3124 1685 a 3124 1685 a
+SDict begin 13 H.A end
+ 3124 1685 a 3124 1685
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1983) cvn H.B /DEST pdfmark
+end
+ 3124 1685 a FC(samhain.)g(T)-7 b(o)20 b(use)396 1792
+y(this)h(option,)e(you)g(must)h(\002rst)h(enable)f(it)h(with)1741
+1792 y
+SDict begin H.S end
+ 1741 1792 a 1741 1792 a
+SDict begin 13 H.A end
+ 1741 1792 a 1741 1792
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1984) cvn H.B /DEST pdfmark
+end
+ 1741 1792 a Fy(SuidCheckQuarantineFiles=)2753 1792
+y
+SDict begin H.S end
+ 2753 1792 a 2753 1792 a
+SDict begin 13 H.A end
+ 2753 1792 a 2753 1792 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1985) cvn H.B /DEST pdfmark
+end
+ 2753
+1792 a Fl(yes)q FC(.)e(This)h(tells)h(the)g(SuidCheck)396
+1900 y(module)e(to)h(quarantine)f(an)o(y)g(SUID/SGID)h(\002les)h(found)
+e(after)h(the)g(initialization)f(of)h(the)h(database)e(using)h(the)396
+2008 y(method)f(selected)h(in)1040 2008 y
+SDict begin H.S end
+ 1040 2008 a
+1040 2008 a
+SDict begin 13 H.A end
+ 1040 2008 a 1040 2008 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1986) cvn H.B /DEST pdfmark
+end
+ 1040 2008 a Fy
+(SuidCheckQuarantineMethod)f FC(\(see)i(ne)o(xt)e(paragraph\).)e(If)j
+(this)h(is)g(used,)f(the)g(\002le)h(will)396 2116 y(be)f(logged)f(each)
+h(time)g(it)h(is)g(found)e(and)g(not)h(added)f(to)i(the)f(memory)e
+(resident)i(database.)-2 2300 y
+SDict begin H.S end
+ -2 2300 a -2 2300 a
+SDict begin 13 H.A end
+ -2
+2300 a -2 2300 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1987) cvn H.B /DEST pdfmark
+end
+ -2 2300 a 396 2390 a FC(Y)-9 b(ou)20
+b(must)g(also)h(choose)e(a)i(method)d(to)j(be)f(used)g(to)g(quarantine)
+e(a)j(SUID/SGID)f(\002le:)396 2498 y
+SDict begin H.S end
+ 396 2498 a 396 2498
+a
+SDict begin 13 H.A end
+ 396 2498 a 396 2498 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1988) cvn H.B /DEST pdfmark
+end
+ 396 2498 a Fy(SuidCheckQuarantineMethod=)1519
+2498 y
+SDict begin H.S end
+ 1519 2498 a 1519 2498 a
+SDict begin 13 H.A end
+ 1519 2498 a 1519 2498
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1989) cvn H.B /DEST pdfmark
+end
+ 1519 2498 a Fl(0/1/2)p FC(.)f(Currently)-5 b(,)18 b(there)i(are)g(3)g
+(methods)g(implemented:)e(0)i(-)h(Delete)f(the)396 2606
+y(\002le)h(from)e(the)h(system.)h(1)f(-)g(Remo)o(v)o(e)f(the)h
+(SUID/SGID)h(permissions)e(from)g(the)h(\002le.)h(2)f(-)h(Mo)o(v)o(e)e
+(the)396 2714 y(SUID/SGID)h(\002le)h(to)g(a)f(quarantine)e(directory)-5
+b(.)18 b(The)i(quarantine)e(directory)h(is)396 2822 y
+SDict begin H.S end
+
+396 2822 a 396 2822 a
+SDict begin 13 H.A end
+ 396 2822 a 396 2822 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1990) cvn H.B /DEST pdfmark
+end
+ 396 2822
+a Fr(DEFAULT_DATAROOT/.quarantine)p FC(.)d(Each)k(\002le)h(mo)o(v)o(ed)
+d(there)i(has)g(an)g(additional)f(\002le)i(created)e(that)396
+2930 y(contains)h(information)e(about)h(the)h(SUID/SGID)g(\002le.)h(F)o
+(or)f(e)o(xample,)e(if)j(a)f(\002le)2725 2930 y
+SDict begin H.S end
+ 2725
+2930 a 2725 2930 a
+SDict begin 13 H.A end
+ 2725 2930 a 2725 2930 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1991) cvn H.B /DEST pdfmark
+end
+ 2725 2930
+a Fr(/foo)g FC(is)h(an)f(unauthorized)396 3038 y(SUID/SGID)g(\002le,)h
+(then)f(it)h(will)g(be)f(remo)o(v)o(ed)e(and)h(mo)o(v)o(ed)f(to)2234
+3038 y
+SDict begin H.S end
+ 2234 3038 a 2234 3038 a
+SDict begin 13 H.A end
+ 2234 3038 a 2234 3038
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1992) cvn H.B /DEST pdfmark
+end
+ 2234 3038 a Fr(/var/lib/samhain/.quarantine)e FC(and)396
+3146 y(another)j(\002le,)814 3146 y
+SDict begin H.S end
+ 814 3146 a 814 3146
+a
+SDict begin 13 H.A end
+ 814 3146 a 814 3146 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1993) cvn H.B /DEST pdfmark
+end
+ 814 3146 a Fr(foo.info)p FC(,)g(will)i(be)f
+(created)f(in)1809 3146 y
+SDict begin H.S end
+ 1809 3146 a 1809 3146 a
+SDict begin 13 H.A end
+ 1809
+3146 a 1809 3146 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1994) cvn H.B /DEST pdfmark
+end
+ 1809 3146 a Fr(/var/lib/samhain/.quarantine)d
+FC(with)k(information)396 3254 y(about)601 3254 y
+SDict begin H.S end
+ 601
+3254 a 601 3254 a
+SDict begin 13 H.A end
+ 601 3254 a 601 3254 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1995) cvn H.B /DEST pdfmark
+end
+ 601 3254 a Fr(/foo)p
+FC(.)-2 3260 y
+SDict begin H.S end
+ -2 3260 a -2 3260 a
+SDict begin 11.7 H.A end
+ -2 3260 a -2 3260
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1996) cvn H.B /DEST pdfmark
+end
+ -2 3260 a 745 3359 2668 17 v 745 4566 17 1208 v 1843
+3513 a Fp(CA)-10 b(VEA)f(T)786 3680 y
+SDict begin H.S end
+ 786 3680 a 786
+3680 a
+SDict begin 11.7 H.A end
+ 786 3680 a 786 3680 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1998) cvn H.B /DEST pdfmark
+end
+ 786 3680 a 96 x Fv(Methods)20
+b(0)g(and)g(2)g(will)f(b)o(y)h(def)n(ault)e(not)i(remo)o(v)n(e)g(the)f
+(or)q(iginal)f(\002le)o(,)i(b)o(ut)f(r)o(ather)g(tr)q(uncate)786
+3873 y(to)i(z)o(ero)f(siz)o(e)g(and)f(remo)o(v)n(e)h(suid/sgid)f
+(proper)s(ties)o(.)f(If)i(y)o(ou)g(really)f(w)o(ant)g(to)h(remo)o(v)n
+(e)g(the)786 3970 y(or)q(iginal)e(\002le)i(r)o(ather)g(than)f(tr)q
+(uncate)o(,)f(y)o(ou)i(need)f(to)h(set)h(the)e(option)786
+4067 y
+SDict begin H.S end
+ 786 4067 a 786 4067 a
+SDict begin 11.7 H.A end
+ 786 4067 a 786 4067 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:1999) cvn H.B /DEST pdfmark
+end
+ 786
+4067 a Fw(SuidChec)o(kQuarantineDele)o(te=)1839 4067
+y
+SDict begin H.S end
+ 1839 4067 a 1839 4067 a
+SDict begin 11.7 H.A end
+ 1839 4067 a 1839 4067 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2000) cvn H.B /DEST pdfmark
+end
+ 1839
+4067 a Fm(yes)786 4243 y
+SDict begin H.S end
+ 786 4243 a 786 4243 a
+SDict begin 11.7 H.A end
+ 786 4243
+a 786 4243 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2001) cvn H.B /DEST pdfmark
+end
+ 786 4243 a 88 x Fv(Remo)o(ving)g(a)i(\002le)f(in)g(an)g
+(arbitr)o(ar)r(y)f(director)r(y)h(is)g(considered)e(to)j(be)2757
+4331 y
+SDict begin H.S end
+ 2757 4331 a 2757 4331 a
+SDict begin 11.7 H.A end
+ 2757 4331 a 2757 4331
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2002) cvn H.B /DEST pdfmark
+end
+ 2757 4331 a Fq(dangerous)r Fv(,)786 4428 y(because)f(the)f(object)g
+(that)h(is)h(unlink)o(ed)c(ma)n(y)k(not)e(be)h(the)g(same)g(object)f
+(an)o(ymore)h(that)786 4525 y(has)h(been)e(deter)r(mined)e(to)j(be)g(a)
+g(suid/sgid)f(\002le)h(bef)n(ore)o(.)e(Y)-10 b(ou)19
+b(ha)o(v)n(e)h(been)f(w)o(ar)r(ned.)p 3396 4566 17 1208
+v 745 4583 2668 17 v -2 4676 a
+SDict begin H.S end
+ -2 4676 a -2 4676 a
+SDict begin 13 H.A end
+ -2
+4676 a -2 4676 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SUIDCHK-CONFIG) cvn H.B /DEST
+pdfmark end
+ -2 4676 a 396 4946 a Fp(5.9.2.)36 b(Con\002guration)
+1512 4946 y
+SDict begin H.S end
+ 1512 4946 a 1512 4946 a
+SDict begin 18.72 H.A end
+ 1512 4946 a 1512
+4946 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.41.24.2) cvn H.B /DEST pdfmark
+end
+ 1512 4946 a -2 5139 a
+SDict begin H.S end
+ -2 5139 a -2 5139 a
+SDict begin 13 H.A end
+ -2 5139
+a -2 5139 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2005) cvn H.B /DEST pdfmark
+end
+ -2 5139 a 396 5220 a FC(This)21 b(f)o(acility)f(is)h
+(con\002gured)d(in)i(the)1479 5220 y
+SDict begin H.S end
+ 1479 5220 a 1479
+5220 a
+SDict begin 13 H.A end
+ 1479 5220 a 1479 5220 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2006) cvn H.B /DEST pdfmark
+end
+ 1479 5220 a Fx(SuidChec)n(k)h
+FC(section)f(of)g(the)g(con\002guration)d(\002le.)-2
+5404 y
+SDict begin H.S end
+ -2 5404 a -2 5404 a
+SDict begin 13 H.A end
+ -2 5404 a -2 5404 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2007) cvn H.B /DEST pdfmark
+end
+ -2 5404
+a Black 3661 5805 a Fx(52)p Black eop end
+%%Page: 53 58
+TeXDict begin 53 57 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.53) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2020) cvn H.B /DEST pdfmark
+end
+ -2 35 a 1956 104 a Fx(Chapter)20
+b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h(\002le)g(monitor)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 11.7 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2008) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 486 309 a Fr([SuidCheck])486 406 y(#)45 b(activate)e(\(0)i(for)f
+(switching)f(off\))486 503 y(SuidCheckActive=1)486 600
+y(#)i(interval)e(between)h(checks)g(\(in)g(seconds,)f(default)h(7200\))
+486 697 y(#)h(SuidCheckInterval=86400)486 794 y(#)g(scheduled)e(check)h
+(at)g(01:30)g(each)h(night)486 892 y(SuidCheckSchedule=30)c(1)k(*)g(*)f
+(*)486 989 y(#)h(this)f(is)g(the)h(severity)e(\(see)p
+0 TeXcolorgray 1741 989 a
+SDict begin H.S end
+ 1741 989 a Fr(Section)h(4.1.1)2325
+989 y
+SDict begin 11.7 H.L end
+ 2325 989 a 2325 989 a
+SDict begin [ /Subtype /Link /Dest (0:SEVERITYDEF) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2325 989 a Black -1 w Fr(>\))486
+1086 y(SeveritySuidCheck=crit)486 1183 y(#)h(you)f(may)g(manually)g
+(exclude)f(one)i(directory)486 1280 y(SuidCheckExclude=/net/localhost)
+486 1377 y(#)486 1474 y(#)g(limit)f(on)g(files)g(per)g(seconds)486
+1571 y(SuidCheckFps=250)486 1669 y(#)h(alternatively)d(yield)i(time)g
+(slice)g(after)g(each)h(file)486 1766 y(#)g(SuidCheckYield=yes)486
+1863 y(#)486 1960 y(#)g(Quarantine)e(detected)g(SUID/SGID)h(files)486
+2057 y(#)h(SuidCheckQuarantineFiles=no)486 2154 y(#)486
+2251 y(#)g(Quarantine)e(Method)486 2349 y(#)i(0)f(-)h(Delete)f(the)g
+(file)g(from)g(the)h(system.)486 2446 y(#)g(1)f(-)h(Remove)f(the)g
+(SUID/SGID)f(permissions)g(from)i(the)f(file.)486 2543
+y(#)h(2)f(-)h(Move)f(the)g(SUID/SGID)g(file)g(to)g(a)h(quarantine)e
+(directory.)486 2640 y(#)224 b(The)44 b(quarantine)f(directory)h(is)g
+(DEFAULT_DATAROOT/.quarantine.)486 2737 y(#)h
+(SuidCheckQuarantineMethod)40 b(=)45 b(1)486 2834 y(#)486
+2931 y(#)g(Really)e(delete)h(if)h(using)f(methods)f(0)i(or)g(2)486
+3028 y(#)g(SuidCheckQuarantineDelete)40 b(=)45 b(no)-2
+3410 y
+SDict begin H.S end
+ -2 3410 a -2 3410 a
+SDict begin 13 H.A end
+ -2 3410 a -2 3410 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:KERNELDEF) cvn H.B /DEST pdfmark
+end
+ -2 3410
+a 377 x Fu(5.10.)39 b(Detecting)e(K)n(ernel)h(r)m(ootkits)2059
+3787 y
+SDict begin H.S end
+ 2059 3787 a 2059 3787 a
+SDict begin 22.464 H.A end
+ 2059 3787 a 2059 3787
+a
+SDict begin [ /View [/XYZ H.V] /Dest (7.42.1) cvn H.B /DEST pdfmark
+end
+ 2059 3787 a -2 3985 a
+SDict begin H.S end
+ -2 3985 a -2 3985 a
+SDict begin 13 H.A end
+ -2 3985 a
+-2 3985 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2012) cvn H.B /DEST pdfmark
+end
+ -2 3985 a 396 4061 a FC(This)21 b(option)e(is)i(currently)d
+(supported)g(only)i(for)f(Linux,)g(k)o(ernel)h(v)o(ersions)f(2.2.x,)f
+(2.4.x,)h(and)h(2.6.x)e(on)i(ix86)396 4169 y(machines,)f(and)h(for)g
+(FreeBSD)g(\(tested)g(on)g(FreeBSD)h(4.6.2\).)-2 4184
+y
+SDict begin H.S end
+ -2 4184 a -2 4184 a
+SDict begin 11.7 H.A end
+ -2 4184 a -2 4184 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2013) cvn H.B /DEST pdfmark
+end
+ -2 4184 a 745
+4283 2668 17 v 745 4921 17 638 v 1842 4437 a Fp(W)-5
+b(arning)786 4630 y
+SDict begin H.S end
+ 786 4630 a 786 4630 a
+SDict begin 11.7 H.A end
+ 786 4630 a
+786 4630 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2015) cvn H.B /DEST pdfmark
+end
+ 786 4630 a 70 x Fv(It)21 b(is)g(incorrect)e(to)h(assume)g
+(that)g(disab)o(ling)d(suppor)s(t)i(f)n(or)g(loadab)o(le)e(k)o(er)r
+(nel)i(modules)786 4797 y(protects)h(against)f(r)q(untime)g(k)o(er)r
+(nel)f(modi\002cations)o(.)h(It)h(is)h(possib)o(le)d(to)i(modify)g(the)
+786 4895 y(k)o(er)r(nel)f(via)h(/de)n(v/kmem)g(as)h(w)o(ell.)p
+3396 4921 17 638 v 745 4938 2668 17 v -2 5114 a
+SDict begin H.S end
+ -2 5114
+a -2 5114 a
+SDict begin 13 H.A end
+ -2 5114 a -2 5114 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2016) cvn H.B /DEST pdfmark
+end
+ -2 5114 a 396 5179 a
+FC(T)-7 b(o)21 b(use)f(this)h(f)o(acility)-5 b(,)19 b(you)h(need)f(to)h
+(compile)g(with)g(the)g(option:)p Black 3661 5805 a Fx(53)p
+Black eop end
+%%Page: 54 59
+TeXDict begin 54 58 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.54) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 1956 104 a
+Fx(Chapter)20 b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h
+(\002le)g(monitor)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+
+-2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2017) cvn H.B /DEST pdfmark
+end
+ -2 226 a -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+
+-2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2018) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309 a Fy(./con\002gur)o(e)f
+(--with-kcheck=)1328 309 y
+SDict begin H.S end
+ 1328 309 a 1328 309 a
+SDict begin 13 H.A end
+ 1328
+309 a 1328 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2019) cvn H.B /DEST pdfmark
+end
+ 1328 309 a Fl(/path/to/System.map)g
+FC(\(Linux\),)f(or)396 583 y Fy(./con\002gur)o(e)h(--with-kcheck)h
+FC(\(FreeBSD\).)-2 766 y
+SDict begin H.S end
+ -2 766 a -2 766 a
+SDict begin 13 H.A end
+ -2 766 a -2
+766 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2022) cvn H.B /DEST pdfmark
+end
+ -2 766 a 396 857 a FC(On)g(Linux,)758 857 y
+SDict begin H.S end
+ 758
+857 a 758 857 a
+SDict begin 13 H.A end
+ 758 857 a 758 857 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2023) cvn H.B /DEST pdfmark
+end
+ 758 857 a Fr(System.map)f
+FC(is)j(a)e(\002le)h(\(sometimes)f(with)g(the)g(k)o(ernel)g(v)o(ersion)
+e(appended)g(to)j(its)g(name\))e(that)h(is)396 965 y(generated)f(when)g
+(the)i(k)o(ernel)e(is)i(compiled,)e(and)g(is)i(usually)f(installed)g
+(in)g(the)h(same)f(directory)e(as)j(your)e(k)o(ernel)396
+1073 y(\(e.g.)565 1073 y
+SDict begin H.S end
+ 565 1073 a 565 1073 a
+SDict begin 13 H.A end
+ 565 1073
+a 565 1073 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2024) cvn H.B /DEST pdfmark
+end
+ 565 1073 a Fr(/boot)p FC(\),)g(or)h(in)g(the)g(root)g
+(directory)-5 b(.)18 b(T)-7 b(o)20 b(\002nd)g(it,)h(you)e(can)h(use:)
+2425 1073 y
+SDict begin H.S end
+ 2425 1073 a 2425 1073 a
+SDict begin 13 H.A end
+ 2425 1073 a 2425
+1073 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2025) cvn H.B /DEST pdfmark
+end
+ 2425 1073 a Fy(locate)g(System.map)-2 1090 y
+SDict begin H.S end
+ -2
+1090 a -2 1090 a
+SDict begin 11.7 H.A end
+ -2 1090 a -2 1090 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2026) cvn H.B /DEST pdfmark
+end
+ -2 1090 a -2 1215
+a
+SDict begin H.S end
+ -2 1215 a -2 1215 a
+SDict begin 11.7 H.A end
+ -2 1215 a -2 1215 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2028) cvn H.B /DEST pdfmark
+end
+ -2 1215 a 562
+1294 a Fw(Updating)f(the)h(kernel:)e Fv(On)j(Lin)o(ux,)e(after)h
+(installing)d(a)j(ne)o(w)g(k)o(er)r(nel,)e(y)o(ou)i(need)f(to)h
+(con\002gure)f(\002v)n(e)i(\(5\))562 1391 y(addresses)f(\(see)g
+(con\002gur)o(ation)e(e)n(xample)h(belo)o(w\),)f(otherwise)h(the)g(k)o
+(er)r(nel)g(chec)o(k)h(will)g(not)f(w)o(or)q(k)i(an)o(ymore)562
+1488 y(\(samhain)e(needs)h(to)g(kno)o(w)g(the)f(ne)o(w)h(position)e(of)
+i(some)h(objects)e(within)g(the)g(k)o(er)r(nel\).)g(As)i(e)n(xplained)
+562 1586 y(belo)o(w)l(,)d(y)o(ou)i(can)g(easily)g(obtain)e(the)i
+(required)e(v)n(alues)i(b)o(y)g(g)o(repping)e(them)i(from)g(the)3055
+1586 y
+SDict begin H.S end
+ 3055 1586 a 3055 1586 a
+SDict begin 11.7 H.A end
+ 3055 1586 a 3055 1586
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2029) cvn H.B /DEST pdfmark
+end
+ 3055 1586 a Ft(System.map)25 b Fv(of)20 b(y)o(our)562
+1683 y(ne)o(w)g(k)o(er)r(nel,)e(which)i(should)f(nor)r(mally)g(be)g
+(installed)f(into)h(the)2386 1683 y
+SDict begin H.S end
+ 2386 1683 a 2386
+1683 a
+SDict begin 11.7 H.A end
+ 2386 1683 a 2386 1683 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2030) cvn H.B /DEST pdfmark
+end
+ 2386 1683 a Ft(/boot)k
+Fv(director)r(y)-7 b(,)18 b(together)g(with)i(the)g(k)o(er)r(nel.)39
+1821 y
+SDict begin H.S end
+ 39 1821 a 39 1821 a
+SDict begin 11.7 H.A end
+ 39 1821 a 39 1821 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2031) cvn H.B /DEST pdfmark
+end
+ 39 1821
+a -2 1987 a
+SDict begin H.S end
+ -2 1987 a -2 1987 a
+SDict begin 11.7 H.A end
+ -2 1987 a -2 1987 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2033) cvn H.B /DEST pdfmark
+end
+ -2
+1987 a 562 2085 a Fw(Cr)o(oss-compiling)d(f)o(or)j(a)g(diff)o(erent)f
+(kernel:)g Fv(Y)-10 b(ou)19 b(need)g(at)h(least)g(to)g(perf)n(or)r(m)f
+(the)g(con\002gur)o(ation)f(as)562 2182 y(descr)q(ibed)h(in)p
+0 TeXcolorgray 987 2182 a
+SDict begin H.S end
+ 987 2182 a Fv(Section)g(5.10.1)1467
+2182 y
+SDict begin 11.7 H.L end
+ 1467 2182 a 1467 2182 a
+SDict begin [ /Subtype /Link /Dest (0:KERNELDEF-CONFIG) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1467 2182 a Black -2 w
+Fv(>.)h(Also)m(,)g(if)g(y)o(ou)g(compile)f(f)n(or)h(a)g(2.4)f(k)o(er)r
+(nel)g(on)h(a)g(2.6)g(system,)h(y)o(ou)f(should)562 2279
+y(supply)g(the)924 2279 y
+SDict begin H.S end
+ 924 2279 a 924 2279 a
+SDict begin 11.7 H.A end
+ 924 2279
+a 924 2279 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2035) cvn H.B /DEST pdfmark
+end
+ 924 2279 a Ft(System.map)k Fv(f)n(or)c(the)f(target)g(k)o
+(er)r(nel)g(when)g(r)q(unning)2485 2279 y
+SDict begin H.S end
+ 2485 2279 a
+2485 2279 a
+SDict begin 11.7 H.A end
+ 2485 2279 a 2485 2279 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2036) cvn H.B /DEST pdfmark
+end
+ 2485 2279 a Fw(./con\002gure)p
+Fv(,)f(and)h(y)o(ou)h(should)f(edit)g(the)562 2376 y(\002le)679
+2376 y
+SDict begin H.S end
+ 679 2376 a 679 2376 a
+SDict begin 11.7 H.A end
+ 679 2376 a 679 2376 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2037) cvn H.B /DEST pdfmark
+end
+ 679
+2376 a Ft(config.h)k Fv(after)c(r)q(unning)f(the)1588
+2376 y
+SDict begin H.S end
+ 1588 2376 a 1588 2376 a
+SDict begin 11.7 H.A end
+ 1588 2376 a 1588 2376
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2038) cvn H.B /DEST pdfmark
+end
+ 1588 2376 a Fw(./con\002gure)g Fv(scr)q(ipt,)i(b)o(ut)f(bef)n(ore)g
+(e)n(x)n(ecuting)2902 2376 y
+SDict begin H.S end
+ 2902 2376 a 2902 2376 a
+SDict begin 11.7 H.A end
+
+2902 2376 a 2902 2376 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2039) cvn H.B /DEST pdfmark
+end
+ 2902 2376 a Fw(make)g Fv(in)h(the)g(f)n(ollo)o
+(wing)562 2473 y(w)o(a)n(y:)g(search)g(f)n(or)f(SH_KERNEL_VERSION,)f
+(and)h(set)h(it)g(to)g(the)f(k)o(er)r(nel)f(v)n(ersion)i(\()2986
+2473 y
+SDict begin H.S end
+ 2986 2473 a 2986 2473 a
+SDict begin 11.7 H.A end
+ 2986 2473 a 2986 2473
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2040) cvn H.B /DEST pdfmark
+end
+ 2986 2473 a Fw(uname)f(-r)p Fv(\))h(of)g(the)f(target)562
+2570 y(k)o(er)r(nel.)39 2709 y
+SDict begin H.S end
+ 39 2709 a 39 2709 a
+SDict begin 11.7 H.A end
+ 39
+2709 a 39 2709 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2041) cvn H.B /DEST pdfmark
+end
+ 39 2709 a -2 2875 a
+SDict begin H.S end
+ -2 2875 a -2 2875
+a
+SDict begin 11.7 H.A end
+ -2 2875 a -2 2875 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2043) cvn H.B /DEST pdfmark
+end
+ -2 2875 a 562 2972 a Fw(Using)h(the)f(hiding)g
+(kernel)g(module:)h Fv(If)g(y)o(ou)g(also)g(use)g(the)f(option)2571
+2972 y
+SDict begin H.S end
+ 2571 2972 a 2571 2972 a
+SDict begin 11.7 H.A end
+ 2571 2972 a 2571 2972
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2044) cvn H.B /DEST pdfmark
+end
+ 2571 2972 a Fw(./con\002gure)e(--enab)o(le-khide)g
+Fv(to)j(use)562 3069 y(a)h(k)o(er)r(nel)d(module)h(to)h(hide)f(the)h
+(presence)f(of)1896 3069 y
+SDict begin H.S end
+ 1896 3069 a 1896 3069 a
+SDict begin 11.7 H.A end
+ 1896
+3069 a 1896 3069 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2045) cvn H.B /DEST pdfmark
+end
+ 1896 3069 a Fv(samhain,)g(the)g(\002rst)j(detected)c
+(modi\002cation)g(of)i(the)562 3166 y(sys_getdents)f(syscall)i(\(to)f
+(list)g(director)q(ies\))f(will)g(only)h(cause)g(a)g(w)o(ar)r(ning)f
+(\(r)o(ather)g(than)g(an)h(error\),)f(as)h(it)h(is)562
+3263 y(presumed)e(to)h(be)g(caused)g(b)o(y)g(the)g(samhain_hide)d
+(LKM\).)-2 3321 y
+SDict begin H.S end
+ -2 3321 a -2 3321 a
+SDict begin 11.7 H.A end
+ -2 3321 a -2 3321
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2046) cvn H.B /DEST pdfmark
+end
+ -2 3321 a 562 3402 a Fv(Y)-10 b(ou)20 b(should)946
+3402 y
+SDict begin H.S end
+ 946 3402 a 946 3402 a
+SDict begin 11.7 H.A end
+ 946 3402 a 946 3402 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2047) cvn H.B /DEST pdfmark
+end
+ 946
+3402 a Fq(NO)m(T)31 b Fv(initializ)o(e)18 b(the)h(database)f(with)i
+(the)g(samhain_hide)d(LKM)j(loaded)e(\(doing)h(so)h(might)562
+3499 y(result)g(in)g(the)f(non-detection)e(of)j(a)g(real)g(rootkit)f
+(if)h(it)g(also)g(only)g(modi\002es)g(the)f(sys_getdents)g(syscall\).)
+39 3649 y
+SDict begin H.S end
+ 39 3649 a 39 3649 a
+SDict begin 13 H.A end
+ 39 3649 a 39 3649 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:KERNELDEF-CONFIG) cvn H.B /DEST
+pdfmark end
+ 39
+3649 a 396 3977 a Fp(5.10.1.)36 b(Con\002guration)1578
+3977 y
+SDict begin H.S end
+ 1578 3977 a 1578 3977 a
+SDict begin 18.72 H.A end
+ 1578 3977 a 1578 3977
+a
+SDict begin [ /View [/XYZ H.V] /Dest (7.42.25.2) cvn H.B /DEST pdfmark
+end
+ 1578 3977 a -2 4169 a
+SDict begin H.S end
+ -2 4169 a -2 4169 a
+SDict begin 13 H.A end
+ -2 4169 a
+-2 4169 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2050) cvn H.B /DEST pdfmark
+end
+ -2 4169 a 396 4251 a FC(This)21 b(f)o(acility)f(is)h
+(con\002gured)d(in)i(the)1479 4251 y
+SDict begin H.S end
+ 1479 4251 a 1479
+4251 a
+SDict begin 13 H.A end
+ 1479 4251 a 1479 4251 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2051) cvn H.B /DEST pdfmark
+end
+ 1479 4251 a Fx(K)m(ernel)h
+FC(section)f(of)g(the)g(con\002guration)e(\002le.)-2
+4352 y
+SDict begin H.S end
+ -2 4352 a -2 4352 a
+SDict begin 11.7 H.A end
+ -2 4352 a -2 4352 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2052) cvn H.B /DEST pdfmark
+end
+ -2 4352
+a 486 4431 a Fr([Kernel])486 4528 y(#)45 b(activate)e(\(0)i(for)f
+(switching)f(off\))486 4625 y(KernelCheckActive=1)486
+4722 y(#)i(interval)e(between)h(checks)g(\(in)g(seconds,)f(default)h
+(300\))486 4819 y(KernelCheckInterval=20)486 4917 y(#)h(also)f(check)g
+(the)g(interrupt)f(descriptor)h(table)g(\(default)f(TRUE\))486
+5014 y(KernelCheckIDT=TRUE)486 5111 y(#)i(this)f(is)g(the)h(severity)e
+(\(see)h(section)p 0 TeXcolorgray 2100 5111 a
+SDict begin H.S end
+ 2100 5111
+a Fr(Section)g(4.1.1)2684 5111 y
+SDict begin 11.7 H.L end
+ 2684 5111 a 2684 5111
+a
+SDict begin [ /Subtype /Link /Dest (0:SEVERITYDEF) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2684 5111 a Black -1 w Fr(\))486 5208 y(SeverityKernel=crit)486
+5305 y(#)486 5402 y(#)h(Only)f(needed)g(for)g(Linux,)g(after)g
+(installing)f(a)i(new)f(kernel.)g(You)g(need)g(the)g(address)p
+Black 3661 5805 a Fx(54)p Black eop end
+%%Page: 55 60
+TeXDict begin 55 59 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.55) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2068) cvn H.B /DEST pdfmark
+end
+ -2 35 a 1956 104 a Fx(Chapter)20
+b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h(\002le)g(monitor)p
+Black 486 309 a Fr(#)45 b(\(first)e(item)i(in)f(the)g(grepped)g
+(line\),)g(prefixed)f(with)i('0x')f(to)g(indicate)486
+406 y(#)h(hexadecimal)e(format.)486 503 y(#)486 600 y(#)i(this)f(is)g
+(the)h(address)e(of)i(system_call)e(\(grep)h(system_call)f
+(System.map\))486 697 y(KernelSystemCall)f(=)j(0xc0106cf8)486
+794 y(#)486 892 y(#)g(this)f(is)g(the)h(address)e(of)i(sys_call_table)d
+(\(grep)i(')h(sys_call_table')d(System.map\))486 989
+y(KernelSyscallTable)g(=)i(0xc01efb98)486 1086 y(#)486
+1183 y(#)h(this)f(is)g(the)h(address)e(of)i(proc_root)e(\(grep)h(')h
+(proc_root$')e(System.map\))486 1280 y(KernelProcRoot)f(=)j(0xc01efb98)
+486 1377 y(#)486 1474 y(#)g(this)f(is)g(the)h(address)e(of)i
+(proc_root_inode_operations)486 1571 y(#)g(\(grep)f
+(proc_root_inode_operations)c(System.map\))486 1669 y
+(KernelProcRootIops)i(=)i(0xc01efb98)486 1766 y(#)486
+1863 y(#)h(this)f(is)g(the)h(address)e(of)i(proc_root_lookup)486
+1960 y(#)g(\(grep)f(proc_root_lookup)e(System.map\))486
+2057 y(KernelProcRootLookup)f(=)k(0xc01efb98)-2 2452
+y
+SDict begin H.S end
+ -2 2452 a -2 2452 a
+SDict begin 13 H.A end
+ -2 2452 a -2 2452 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:KERNELDEF-WHAT) cvn H.B /DEST
+pdfmark end
+ -2 2452 a 396
+2781 a Fp(5.10.2.)36 b(What)d(is)h(a)g(kernel)h(r)n(ootkit)d(?)2214
+2781 y
+SDict begin H.S end
+ 2214 2781 a 2214 2781 a
+SDict begin 18.72 H.A end
+ 2214 2781 a 2214 2781
+a
+SDict begin [ /View [/XYZ H.V] /Dest (7.42.26.2) cvn H.B /DEST pdfmark
+end
+ 2214 2781 a -2 2948 a
+SDict begin H.S end
+ -2 2948 a -2 2948 a
+SDict begin 13 H.A end
+ -2 2948 a
+-2 2948 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2056) cvn H.B /DEST pdfmark
+end
+ -2 2948 a 396 3055 a FC(A)477 3055 y
+SDict begin H.S end
+ 477 3055
+a 477 3055 a
+SDict begin 13 H.A end
+ 477 3055 a 477 3055 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2057) cvn H.B /DEST pdfmark
+end
+ 477 3055 a Fx(r)l(ootkit)22
+b FC(is)f(a)g(set)g(of)f(programs)e(installed)i(to)g("k)o(eep)g(a)g
+(backdoor)e(open")h(after)h(an)g(intruder)f(has)h(obtained)f(root)396
+3163 y(access)i(to)f(a)h(system.)f(Usually)g(such)g(rootkits)g(are)g(v)
+o(ery)f(easy)h(to)g(install,)h(and)f(pro)o(vide)e(f)o(acilities)j(to)f
+(hide)g(the)396 3271 y(intrusion)f(\(e.g.)h(erase)g(all)h(traces)f
+(from)f(audit)h(logs,)g(install)h(a)f(modi\002ed)f('ps')h(that)g(will)h
+(not)f(list)h(certain)396 3379 y(programs,)d(etc.\).)-2
+3563 y
+SDict begin H.S end
+ -2 3563 a -2 3563 a
+SDict begin 13 H.A end
+ -2 3563 a -2 3563 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2058) cvn H.B /DEST pdfmark
+end
+ -2 3563
+a 396 3653 a FC(While)j("normal")e(rootkits)g(can)h(be)g(detected)g
+(with)g(checksums)f(on)h(programs,)e(lik)o(e)2907 3653
+y
+SDict begin H.S end
+ 2907 3653 a 2907 3653 a
+SDict begin 13 H.A end
+ 2907 3653 a 2907 3653 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2059) cvn H.B /DEST pdfmark
+end
+ 2907
+3653 a FC(samhain)i(does)g(\(the)396 3761 y(modi\002ed)f('ps')h(w)o
+(ould)g(ha)n(v)o(e)f(a)i(dif)n(ferent)d(checksum)h(than)h(the)g
+(original)f(one\),)g(this)i(method)e(can)h(be)g(sub)o(v)o(erted)396
+3868 y(by)g(rootkits)g(that)g(modify)e(the)j(k)o(ernel)e(at)i(runtime,)
+d(either)i(with)h(a)2346 3868 y
+SDict begin H.S end
+ 2346 3868 a 2346 3868
+a
+SDict begin 13 H.A end
+ 2346 3868 a 2346 3868 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2060) cvn H.B /DEST pdfmark
+end
+ 2346 3868 a Fx(loadable)e(k)o(ernel)h(module)
+f FC(\(LKM\),)g(i.e.)i(a)396 3976 y(module)d(that)i(is)h(loaded)d(into)
+h(the)h(k)o(ernel)f(at)h(runtime,)e(or)h(by)h(writing)f(to)2541
+3976 y
+SDict begin H.S end
+ 2541 3976 a 2541 3976 a
+SDict begin 13 H.A end
+ 2541 3976 a 2541 3976
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2061) cvn H.B /DEST pdfmark
+end
+ 2541 3976 a Fr(/dev/kmem)g FC(\(this)h(allo)n(ws)f(to)h('patch')e(a)
+396 4084 y(k)o(ernel)i(on-the-\003y)e(e)n(v)o(en)h(if)i(the)f(k)o
+(ernel)f(has)1699 4084 y
+SDict begin H.S end
+ 1699 4084 a 1699 4084 a
+SDict begin 13 H.A end
+ 1699
+4084 a 1699 4084 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2062) cvn H.B /DEST pdfmark
+end
+ 1699 4084 a Fx(no)g FC(LKM)i(support\).)-2
+4268 y
+SDict begin H.S end
+ -2 4268 a -2 4268 a
+SDict begin 13 H.A end
+ -2 4268 a -2 4268 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2063) cvn H.B /DEST pdfmark
+end
+ -2 4268
+a 396 4358 a FC(K)n(ernel)f(rootkits)f(can)h(modify)f(the)h(action)g
+(of)g(k)o(ernel)1975 4358 y
+SDict begin H.S end
+ 1975 4358 a 1975 4358 a
+SDict begin 13 H.A end
+ 1975
+4358 a 1975 4358 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2064) cvn H.B /DEST pdfmark
+end
+ 1975 4358 a Fx(syscalls)p FC(.)h(From)f(a)g(users)h
+(vie)n(wpoint,)d(these)i(syscalls)h(are)396 4466 y(the)f(lo)n(west)h
+(le)n(v)o(el)f(of)g(system)g(functions,)f(and)g(pro)o(vide)f(access)j
+(to)f(\002lesystems,)h(netw)o(ork)e(connections,)f(and)396
+4574 y(other)i(goodies.)e(By)j(modifying)d(k)o(ernel)h(syscalls,)i(k)o
+(ernel)e(rootkits)h(can)g(hide)g(\002les,)g(directories,)f(processes,)h
+(or)396 4682 y(netw)o(ork)f(connections)g(without)g(modifying)f(an)o(y)
+h(system)i(binaries.)e(Ob)o(viously)-5 b(,)18 b(checksums)h(are)h
+(useless)h(in)396 4790 y(this)g(situation.)-2 4801 y
+SDict begin H.S end
+
+-2 4801 a -2 4801 a
+SDict begin 13 H.A end
+ -2 4801 a -2 4801 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:KERNELDEF-HOW) cvn H.B /DEST
+pdfmark end
+ -2 4801 a Black
+3661 5805 a Fx(55)p Black eop end
+%%Page: 56 61
+TeXDict begin 56 60 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.56) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 1956 104 a
+Fx(Chapter)20 b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h
+(\002le)g(monitor)p Black 396 313 a Fp(5.10.3.)36 b(Implemented)g
+(integrity)e(c)o(hec)n(ks)2471 313 y
+SDict begin H.S end
+ 2471 313 a 2471
+313 a
+SDict begin 18.72 H.A end
+ 2471 313 a 2471 313 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.42.27.2) cvn H.B /DEST pdfmark
+end
+ 2471 313 a -2 506 a
+SDict begin H.S end
+ -2 506
+a -2 506 a
+SDict begin 13 H.A end
+ -2 506 a -2 506 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2067) cvn H.B /DEST pdfmark
+end
+ -2 506 a 396 587 a FC(When)20
+b(a)h(system)f(call)h(\(e.g.)e(open\(\))g(to)h(open)f(a)i(\002le\))f
+(is)h(made)f(by)g(an)g(application,)e(the)j(\003o)n(w)f(of)g(control)f
+(looks)396 695 y(lik)o(e)i(this:)p Black 463 1031 a(1.)p
+Black 20 w(An)f(interrupt)f(is)i(triggered,)d(and)i(e)o(x)o(ecution)e
+(continues)h(at)h(the)h(interrupt)d(handler)h(de\002ned)g(for)h(that)
+546 1139 y(interrupt.)e(On)i(Linux,)f(interrupt)g(80)h(is)h(used.)546
+1413 y(A)f(rootkit)g(could)f(replace)g(the)h(k)o(ernels)g(interrupt)f
+(handler)g(by)g(an)h(o)n(wn)g(function.)-2 1597 y
+SDict begin H.S end
+ -2
+1597 a -2 1597 a
+SDict begin 13 H.A end
+ -2 1597 a -2 1597 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2073) cvn H.B /DEST pdfmark
+end
+ -2 1597 a -2 1597
+a
+SDict begin H.S end
+ -2 1597 a -2 1597 a
+SDict begin 13 H.A end
+ -2 1597 a -2 1597 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2074) cvn H.B /DEST pdfmark
+end
+ -2 1597 a 546
+1687 a FC(Samhain)f(checks)h(the)g(Interrupt)e(Descriptor)h(T)-7
+b(able)20 b(for)g(modi\002cations.)438 1805 y
+SDict begin H.S end
+ 438 1805
+a 438 1805 a
+SDict begin 13 H.A end
+ 438 1805 a 438 1805 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2075) cvn H.B /DEST pdfmark
+end
+ 438 1805 a Black 463
+1955 a FC(2.)p Black 546 1955 a
+SDict begin H.S end
+ 546 1955 a 546 1955 a
+SDict begin 13 H.A end
+
+546 1955 a 546 1955 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2076) cvn H.B /DEST pdfmark
+end
+ 546 1955 a FC(The)g(interrupt)e(handler)h
+(\(named)g(system_call\(\))g(on)h(Linux\))e(looks)i(up)g(the)g(address)
+g(of)g(the)g(requested)546 2063 y(syscall)g(in)h(the)f(syscall)h
+(table,)f(and)f(e)o(x)o(ecutes)g(a)i(jump)e(to)i(the)f(respecti)n(v)o
+(e)f(address.)-2 2247 y
+SDict begin H.S end
+ -2 2247 a -2 2247 a
+SDict begin 13 H.A end
+ -2 2247 a
+-2 2247 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2077) cvn H.B /DEST pdfmark
+end
+ -2 2247 a 546 2337 a FC(A)h(rootkit)g(may)f(\(a\))h(modify)f
+(the)h(interrupt)f(handler)f(to)j(use)f(a)h(\(rootkit-supplied\))16
+b(dif)n(ferent)j(syscall)i(table,)546 2444 y(or)f(\(b\))f(modify)g(the)
+h(entries)g(in)g(the)h(syscall)f(table)h(to)f(point)f(to)i(the)f
+(rootkits)f(replacement)g(functions.)-2 2628 y
+SDict begin H.S end
+ -2 2628
+a -2 2628 a
+SDict begin 13 H.A end
+ -2 2628 a -2 2628 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2078) cvn H.B /DEST pdfmark
+end
+ -2 2628 a -2 2628 a
+SDict begin H.S end
+ -2
+2628 a -2 2628 a
+SDict begin 13 H.A end
+ -2 2628 a -2 2628 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2079) cvn H.B /DEST pdfmark
+end
+ -2 2628 a 546 2718
+a FC(Samhain)g(checks)h(\(a\))g(the)g(interrupt)e(handler)m(,)h(and)g
+(\(b\))h(the)g(syscall)h(table)f(for)g(modi\002cations.)438
+2837 y
+SDict begin H.S end
+ 438 2837 a 438 2837 a
+SDict begin 13 H.A end
+ 438 2837 a 438 2837 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2080) cvn H.B /DEST pdfmark
+end
+ 438
+2837 a Black 463 2986 a FC(3.)p Black 546 2986 a
+SDict begin H.S end
+ 546
+2986 a 546 2986 a
+SDict begin 13 H.A end
+ 546 2986 a 546 2986 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2081) cvn H.B /DEST pdfmark
+end
+ 546 2986 a FC(The)g(syscall)g
+(function)f(is)i(e)o(x)o(ecuted,)d(and)i(control)f(returns)g(to)h(the)g
+(application.)-2 3170 y
+SDict begin H.S end
+ -2 3170 a -2 3170 a
+SDict begin 13 H.A end
+ -2 3170 a
+-2 3170 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2082) cvn H.B /DEST pdfmark
+end
+ -2 3170 a 546 3260 a FC(A)g(rootkit)g(may)f(o)o(v)o(erwrite)g
+(the)h(syscall)h(function)d(to)i(place)g(a)h(jump)e(to)i(its)g(o)n(wn)f
+(replacement)e(function)h(at)546 3368 y(the)h(start)h(of)f(the)g
+(syscall)g(function.)-2 3552 y
+SDict begin H.S end
+ -2 3552 a -2 3552 a
+SDict begin 13 H.A end
+ -2
+3552 a -2 3552 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2083) cvn H.B /DEST pdfmark
+end
+ -2 3552 a -2 3552 a
+SDict begin H.S end
+ -2 3552 a -2 3552
+a
+SDict begin 13 H.A end
+ -2 3552 a -2 3552 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2084) cvn H.B /DEST pdfmark
+end
+ -2 3552 a 546 3642 a FC(Samhain)f(checks)h(the)g
+(\002rst)h(fe)n(w)f(bytes)g(of)g(each)g(syscall)g(function)f(for)g
+(modi\002cations.)-2 4076 y
+SDict begin H.S end
+ -2 4076 a -2 4076 a
+SDict begin 13 H.A end
+ -2 4076
+a -2 4076 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2085) cvn H.B /DEST pdfmark
+end
+ -2 4076 a 396 4184 a FC(In)h(addition)f(to)h(these)h
+(checks,)1323 4184 y
+SDict begin H.S end
+ 1323 4184 a 1323 4184 a
+SDict begin 13 H.A end
+ 1323 4184
+a 1323 4184 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2086) cvn H.B /DEST pdfmark
+end
+ 1323 4184 a FC(Samhain)f(will)g(check)g(the)2121
+4184 y
+SDict begin H.S end
+ 2121 4184 a 2121 4184 a
+SDict begin 13 H.A end
+ 2121 4184 a 2121 4184
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2087) cvn H.B /DEST pdfmark
+end
+ 2121 4184 a Fr(/proc)g FC(inode)f(to)i(detect)f(the)2998
+4184 y
+SDict begin H.S end
+ 2998 4184 a 2998 4184 a
+SDict begin 13 H.A end
+ 2998 4184 a 2998 4184
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2088) cvn H.B /DEST pdfmark
+end
+ 2998 4184 a FC(adore-ng)e(rootkit,)396 4292 y(which)i(does)g(not)g
+(modify)e(an)o(y)i(syscall)g(e)o(x)o(ecution,)e(b)n(ut)i(rather)g(the)g
+(VFS)h(\(V)-5 b(irtual)20 b(File)h(System\))e(layer)h(of)g(the)396
+4400 y(k)o(ernel.)-2 4567 y
+SDict begin H.S end
+ -2 4567 a -2 4567 a
+SDict begin 13 H.A end
+ -2 4567
+a -2 4567 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2089) cvn H.B /DEST pdfmark
+end
+ -2 4567 a 396 4674 a FC(On)g(FreeBSD,)h(currently)d(only)i
+(the)g(syscall)h(table)f(\(2b\))f(and)h(the)g(system)g(call)h(\(3\))e
+(are)i(check)o(ed.)-2 4702 y
+SDict begin H.S end
+ -2 4702 a -2 4702 a
+SDict begin 13 H.A end
+ -2 4702
+a -2 4702 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:KERNELDEF-ERRORS) cvn H.B /DEST
+pdfmark end
+ -2 4702 a 396 5012 a Fp(5.10.4.)36 b(Err)n(or)31
+b(messa)o(g)q(es)1693 5012 y
+SDict begin H.S end
+ 1693 5012 a 1693 5012 a
+SDict begin 18.72 H.A end
+
+1693 5012 a 1693 5012 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.42.28.2) cvn H.B /DEST pdfmark
+end
+ 1693 5012 a -2 5205 a
+SDict begin H.S end
+ -2 5205
+a -2 5205 a
+SDict begin 13 H.A end
+ -2 5205 a -2 5205 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2092) cvn H.B /DEST pdfmark
+end
+ -2 5205 a 396 5286 a
+FC(Error)19 b(messages)i(start)f(with)h('POLICY)f(KERNEL)-8
+b('.)20 b(There)f(are)h(four)f(types)h(of)g(them:)g(\(a\))g('IDT')f
+(signi\002es)396 5394 y(modi\002ed)g(interrupts:)g(old)h(and)g(ne)n(w)g
+(address,)f(se)o(gment,)g(pri)n(vile)o(ge)g(le)n(v)o(el,)g(and)h(type)g
+(are)g(listed,)g(\(b\))p Black 3660 5805 a Fx(56)p Black
+eop end
+%%Page: 57 62
+TeXDict begin 57 61 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.57) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:MOUNTCHECK) cvn H.B /DEST pdfmark
+end
+ -2 35 a 1956 104 a Fx(Chapter)20
+b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h(\002le)g(monitor)p
+Black 396 309 a FC(SYSCALL:)h(modi\002ed)e(syscall)i(table/syscall)f
+(code)g(interrupt)e(handler)m(,)g(and)i(\(c\))g(SYS_GA)-9
+b(TE:)20 b(modi\002ed)396 417 y(interrupt)f(handler)g(for)g(syscalls.)i
+(\(d\))f(PR)m(OC:)h(modi\002ed)2081 417 y
+SDict begin H.S end
+ 2081 417 a
+2081 417 a
+SDict begin 13 H.A end
+ 2081 417 a 2081 417 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2093) cvn H.B /DEST pdfmark
+end
+ 2081 417 a Fr(/proc)f
+FC(system)-2 601 y
+SDict begin H.S end
+ -2 601 a -2 601 a
+SDict begin 13 H.A end
+ -2 601 a -2 601
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2094) cvn H.B /DEST pdfmark
+end
+ -2 601 a 396 691 a FC(If)g(an)g(empty)g(slot)g(in)h(the)f(interrupt)f
+(descriptor)f(table)j(\(old)e(address)h(zero\))f(has)i(been)e
+(modi\002ed,)g(this)h(indicates)396 799 y(that)h(a)f(ne)n(w)g
+(interrupt)f(has)h(been)g(installed.)g(This)g(cannot)f(modify)g(the)h
+(beha)n(viour)e(of)i(user)g(applications)f(\(which)396
+906 y(w)o(ould)h(not)g(use)g(that)g(interrupt\),)e(b)n(ut)j(could)e(be)
+h(used)g(by)g(a)g(dedicated)f(\(rootkit-supplied\))e(application)h(to)
+396 1014 y(perform)g(some)i(action)g(\(e.g.)f(ele)n(v)n(ate)h(pri)n
+(vile)o(ges\).)-2 1198 y
+SDict begin H.S end
+ -2 1198 a -2 1198 a
+SDict begin 13 H.A end
+ -2 1198
+a -2 1198 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2095) cvn H.B /DEST pdfmark
+end
+ -2 1198 a 396 1288 a FC(Lik)o(e)n(wise,)g(if)h(an)f(empty)f
+(slot)i(in)f(the)g(syscall)h(table)f(\(syscall)h(name)e
+(sys_ni_syscall/_nosys\))f(has)i(been)396 1396 y(modi\002ed,)f(this)i
+(cannot)e(modify)f(the)j(beha)n(viour)d(of)i(user)g(applications,)e(b)n
+(ut)j(again)e(could)g(be)h(used)g(by)g(a)396 1504 y(dedicated)f
+(\(rootkit-supplied\))e(application)h(to)j(perform)d(some)i(action.)-2
+1522 y
+SDict begin H.S end
+ -2 1522 a -2 1522 a
+SDict begin 11.7 H.A end
+ -2 1522 a -2 1522 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2096) cvn H.B /DEST pdfmark
+end
+ -2 1522
+a -2 1647 a
+SDict begin H.S end
+ -2 1647 a -2 1647 a
+SDict begin 11.7 H.A end
+ -2 1647 a -2 1647 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2098) cvn H.B /DEST pdfmark
+end
+ -2
+1647 a 562 1726 a Fw(NO)m(TE:)h Fv(As)g(of)f(v)n(ersion)f(1.8.4,)g(k)o
+(er)r(nel)g(inf)n(o)g(is)h(stored)g(in)g(the)f(baseline)f(database)g(b)
+o(y)j(\(mis-\)using)e(\002elds)562 1823 y(that)h(nor)r(mally)f(descr)q
+(ibe)g(some)h(proper)s(ties)e(of)i(\002les)o(.)h(Y)-10
+b(ou)19 b(ma)n(y)i(theref)n(ore)c(\002nd)j(that)g(error)f(messages)i
+(ha)o(v)n(e)562 1920 y(inf)n(o)e(appended)e(that)j(looks)g(lik)o(e)f
+(proper)s(ties)f(y)o(ou)i(w)o(ould)f(nor)r(mally)g(e)n(xpect)h(f)n(or)g
+(a)g(\002le)g(\(e)o(.g.)f(mtime)o(,)h(ctime)o(,)562 2017
+y(link_path)e(...\).)i(This)g(is)g(required)e(f)n(or)i(ser)r(v)n
+(er-side)g(database)e(update)g(\(if)i(y)o(ou)g(use)g(samhain)f(as)562
+2114 y(client/ser)r(v)n(er)g(system\).)-2 2430 y
+SDict begin H.S end
+ -2 2430
+a -2 2430 a
+SDict begin 13 H.A end
+ -2 2430 a -2 2430 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:MONDEF) cvn H.B /DEST pdfmark
+end
+ -2 2430 a 377 x Fu(5.11.)39
+b(Monitoring)e(login/logout)f(e)n(vents)2452 2807 y
+SDict begin H.S end
+ 2452
+2807 a 2452 2807 a
+SDict begin 22.464 H.A end
+ 2452 2807 a 2452 2807 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.43.1) cvn H.B /DEST pdfmark
+end
+ 2452 2807
+a -2 3005 a
+SDict begin H.S end
+ -2 3005 a -2 3005 a
+SDict begin 13 H.A end
+ -2 3005 a -2 3005 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2101) cvn H.B /DEST pdfmark
+end
+ -2
+3005 a -2 3005 a
+SDict begin H.S end
+ -2 3005 a -2 3005 a
+SDict begin 13 H.A end
+ -2 3005 a -2 3005
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2102) cvn H.B /DEST pdfmark
+end
+ -2 3005 a 396 3081 a FC(samhain)20 b(can)g(be)g(compiled)f(to)h
+(monitor)f(login/logout)e(e)n(v)o(ents)j(of)g(system)g(users.)g(F)o(or)
+g(initialization,)f(the)396 3189 y(system)648 3189 y
+SDict begin H.S end
+
+648 3189 a 648 3189 a
+SDict begin 13 H.A end
+ 648 3189 a 648 3189 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2103) cvn H.B /DEST pdfmark
+end
+ 648 3189
+a Fr(utmp)h FC(\002le)h(is)g(searched)e(for)g(users)i(currently)d
+(logged)h(in.)h(T)-7 b(o)20 b(recognize)f(changes)g(\(i.e.)h(logouts)f
+(or)396 3297 y(logins\),)g(the)i(system)1042 3297 y
+SDict begin H.S end
+ 1042
+3297 a 1042 3297 a
+SDict begin 13 H.A end
+ 1042 3297 a 1042 3297 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2104) cvn H.B /DEST pdfmark
+end
+ 1042 3297
+a Fr(wtmp)f FC(\002le)h(is)g(then)f(used.)f(This)i(f)o(acility)f(is)h
+(con\002gured)d(in)i(the)2885 3297 y
+SDict begin H.S end
+ 2885 3297 a 2885
+3297 a
+SDict begin 13 H.A end
+ 2885 3297 a 2885 3297 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2105) cvn H.B /DEST pdfmark
+end
+ 2885 3297 a Fx(Utmp)h
+FC(section)f(of)g(the)396 3405 y(con\002guration)e(\002le:)-2
+3506 y
+SDict begin H.S end
+ -2 3506 a -2 3506 a
+SDict begin 11.7 H.A end
+ -2 3506 a -2 3506 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2106) cvn H.B /DEST pdfmark
+end
+ -2 3506
+a 486 3585 a Fr([Utmp])486 3682 y(#)486 3779 y(#)45 b(activate)e(\(0)i
+(for)f(switching)f(off\))486 3876 y(#)486 3973 y(LoginCheckActive=1)486
+4071 y(#)486 4168 y(#)i(interval)e(between)h(checks)g(\(in)g(seconds\))
+486 4265 y(#)486 4362 y(LoginCheckInterval=600)486 4459
+y(#)486 4556 y(#)h(these)f(are)g(the)g(severities)f(\(see)i(section)p
+0 TeXcolorgray 2279 4556 a
+SDict begin H.S end
+ 2279 4556 a Fr(Section)f(4.1.1)2863
+4556 y
+SDict begin 11.7 H.L end
+ 2863 4556 a 2863 4556 a
+SDict begin [ /Subtype /Link /Dest (0:SEVERITYDEF) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2863 4556 a Black -1 w
+Fr(\))486 4653 y(#)486 4751 y(SeverityLogin=info)486
+4848 y(SeverityLogout=info)486 4945 y(#)486 5042 y(#)h(multiple)e
+(logins)h(by)g(same)h(user)486 5139 y(#)486 5236 y
+(SeverityLoginMulti=crit)p Black 3658 5805 a Fx(57)p
+Black eop end
+%%Page: 58 63
+TeXDict begin 58 62 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.58) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 1956 104 a
+Fx(Chapter)20 b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h
+(\002le)g(monitor)p Black -2 319 a
+SDict begin H.S end
+ -2 319 a -2 319 a
+SDict begin 13 H.A end
+
+-2 319 a -2 319 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:MOUNTCHECK) cvn H.B /DEST pdfmark
+end
+ -2 319 a 377 x Fu(5.12.)39 b(Chec)m(king)e(mounted)h
+(\002lesystem)g(policies)2963 696 y
+SDict begin H.S end
+ 2963 696 a 2963 696
+a
+SDict begin 22.464 H.A end
+ 2963 696 a 2963 696 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.44.1) cvn H.B /DEST pdfmark
+end
+ 2963 696 a -2 894 a
+SDict begin H.S end
+ -2 894 a
+-2 894 a
+SDict begin 13 H.A end
+ -2 894 a -2 894 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2110) cvn H.B /DEST pdfmark
+end
+ -2 894 a -2 894 a
+SDict begin H.S end
+ -2 894 a
+-2 894 a
+SDict begin 13 H.A end
+ -2 894 a -2 894 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2111) cvn H.B /DEST pdfmark
+end
+ -2 894 a 396 970 a FC(samhain)20
+b(can)g(be)g(compiled)f(to)h(check)f(if)i(certain)e(\002lesystems)i
+(are)f(mounted,)e(and)i(if)h(the)o(y)e(are)h(mounted)e(with)396
+1078 y(the)i(appropriate)e(options.)h(This)i(module)d(currently)h
+(supports)g(Linux,)g(Solaris,)h(HP-UX)g(\(mount)f(options)g(as)i(in)396
+1186 y(/etc/mnttab\),)e(and)h(FreeBSD.)g(The)g(con\002guration)e(of)h
+(the)i(module)d(is)k(done)d(in)h(the)2891 1186 y
+SDict begin H.S end
+ 2891
+1186 a 2891 1186 a
+SDict begin 13 H.A end
+ 2891 1186 a 2891 1186 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2112) cvn H.B /DEST pdfmark
+end
+ 2891 1186
+a Fx(Mounts)g FC(section)g(of)g(the)396 1294 y(con\002guration)e
+(\002le:)-2 1395 y
+SDict begin H.S end
+ -2 1395 a -2 1395 a
+SDict begin 11.7 H.A end
+ -2 1395 a -2 1395
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2113) cvn H.B /DEST pdfmark
+end
+ -2 1395 a 486 1474 a Fr([Mounts])486 1571 y(#)486 1668
+y(#)45 b(Activate)e(\(0)i(is)f(off\).)486 1766 y(#)486
+1863 y(MountCheckActive=1)486 1960 y(#)486 2057 y(#)h(Interval)e
+(between)h(checks.)486 2154 y(#)486 2251 y(MountCheckInterval=7200)486
+2348 y(#)486 2445 y(#)h(Logging)e(severities.)g(We)i(have)f(two)g
+(checks:)g(to)g(see)h(if)f(a)h(mount)f(is)g(there,)g(and)g(to)486
+2543 y(#)h(see)f(if)g(it)h(is)f(mounted)g(with)g(the)h(correct)e
+(options.)486 2640 y(#)486 2737 y(SeverityMountMissing=warn)486
+2834 y(SeverityOptionMissing=warn)486 2931 y(#)486 3028
+y(#)i(Mounts)e(to)i(check)f(for,)g(followed)g(by)g(lists)g(of)h
+(options)e(to)i(check)f(on)g(them.)486 3125 y(#)486 3223
+y(checkmount=/)486 3320 y(checkmount=/var)486 3417 y(checkmount=/usr)
+486 3514 y(checkmount=/tmp)e(noexec,nosuid,nodev)486
+3611 y(checkmount=/home)g(noexec,nosuid,nodev)-2 4065
+y
+SDict begin H.S end
+ -2 4065 a -2 4065 a
+SDict begin 13 H.A end
+ -2 4065 a -2 4065 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2114) cvn H.B /DEST pdfmark
+end
+ -2 4065 a 396
+4173 a FC(This)21 b(module)d(by)i(the)g(eircom.net)f(Computer)g
+(Incident)g(Response)h(T)-6 b(eam.)-2 4202 y
+SDict begin H.S end
+ -2 4202
+a -2 4202 a
+SDict begin 13 H.A end
+ -2 4202 a -2 4202 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:USERCHECK) cvn H.B /DEST pdfmark
+end
+ -2 4202 a 359 x Fu(5.13.)39
+b(Chec)m(king)e(sensitive)h(\002les)h(o)n(wned)f(b)m(y)i(user)n(s)3099
+4561 y
+SDict begin H.S end
+ 3099 4561 a 3099 4561 a
+SDict begin 22.464 H.A end
+ 3099 4561 a 3099 4561
+a
+SDict begin [ /View [/XYZ H.V] /Dest (7.45.1) cvn H.B /DEST pdfmark
+end
+ 3099 4561 a -2 4759 a
+SDict begin H.S end
+ -2 4759 a -2 4759 a
+SDict begin 13 H.A end
+ -2 4759 a
+-2 4759 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2117) cvn H.B /DEST pdfmark
+end
+ -2 4759 a -2 4759 a
+SDict begin H.S end
+ -2 4759 a -2 4759 a
+SDict begin 13 H.A end
+ -2
+4759 a -2 4759 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2118) cvn H.B /DEST pdfmark
+end
+ -2 4759 a 396 4835 a FC(samhain)20 b(can)g(be)g
+(compiled)f(to)h(support)f(checking)f(of)i(\002les)h(that)g(are)f
+(speci\002ed)g(as)h(being)e(relati)n(v)o(e)g(to)i(the)f(a)396
+4943 y(user')-5 b(s)21 b(home)e(directory)-5 b(.)18 b(It)i(is)h
+(intended)e(to)h(detect)g(interference)f(with)h(\002les)h(that)f
+(in\003uence)f(process)h(beha)n(viour)396 5050 y(such)g(as)658
+5050 y
+SDict begin H.S end
+ 658 5050 a 658 5050 a
+SDict begin 13 H.A end
+ 658 5050 a 658 5050 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2119) cvn H.B /DEST pdfmark
+end
+ 658
+5050 a Fr(.profile)f FC(It)h(simply)f(adds)h(the)g(appropriate)d
+(\002le)j(entries)g(to)g(the)f(main)h(samhain)f(list,)h(at)g(the)g
+(speci\002ed)396 5158 y(alerting)g(le)n(v)o(el.)-2 5259
+y
+SDict begin H.S end
+ -2 5259 a -2 5259 a
+SDict begin 11.7 H.A end
+ -2 5259 a -2 5259 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2120) cvn H.B /DEST pdfmark
+end
+ -2 5259 a 486
+5339 a Fr([UserFiles])p Black 3661 5805 a Fx(58)p Black
+eop end
+%%Page: 59 64
+TeXDict begin 59 63 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.59) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 1956 104 a
+Fx(Chapter)20 b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h
+(\002le)g(monitor)p Black 486 309 a Fr(#)486 406 y(#)45
+b(Activate)e(\(0)i(is)f(off\).)486 503 y(#)486 600 y(UserfilesActive=1)
+486 794 y(#)486 892 y(#)h(Files)f(to)g(check)g(for)g(under)g(each)h
+($HOME)486 989 y(#)g(A)f(specific)g(level)g(can)g(be)h(specified.)486
+1086 y(#)g(The)f(allowed)g(values)f(are:)486 1183 y(#)i(allignore)486
+1280 y(#)g(attributes)486 1377 y(#)g(logfiles)486 1474
+y(#)g(loggrow)486 1571 y(#)g(noignore)486 1669 y(#)g(readonly)486
+1766 y(#)g(user0)486 1863 y(#)g(user1)486 1960 y(#)486
+2057 y(#)g(The)f(default)g(is)g(noignore)486 2154 y(#)486
+2251 y(UserfilesName=.login)d(noignore)486 2349 y
+(UserfilesName=.profile)g(readonly)486 2446 y
+(UserfilesName=.ssh/authorized_keys)486 2543 y(#)486
+2640 y(#)k(A)f(list)g(of)h(UIDs)f(where)g(we)h(want)f(to)g(check.)486
+2737 y(#)h(The)f(default)g(is)g(all.)486 2834 y(#)h(IF)f(THERE)g(IS)h
+(AN)f(OPEN)g(RANGE,)g(IT)h(MUST)f(BE)g(LAST)486 2931
+y(#)486 3028 y(UserfilesCheckUids=0,100-500,1000-)-2
+3483 y
+SDict begin H.S end
+ -2 3483 a -2 3483 a
+SDict begin 13 H.A end
+ -2 3483 a -2 3483 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2121) cvn H.B /DEST pdfmark
+end
+ -2 3483
+a 396 3591 a FC(This)21 b(module)d(by)i(the)g(eircom.net)f(Computer)g
+(Incident)g(Response)h(T)-6 b(eam.)-2 3619 y
+SDict begin H.S end
+ -2 3619
+a -2 3619 a
+SDict begin 13 H.A end
+ -2 3619 a -2 3619 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:MODULES) cvn H.B /DEST pdfmark
+end
+ -2 3619 a 359 x Fu(5.14.)39
+b(Modules)941 3978 y
+SDict begin H.S end
+ 941 3978 a 941 3978 a
+SDict begin 22.464 H.A end
+ 941 3978 a
+941 3978 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.46.1) cvn H.B /DEST pdfmark
+end
+ 941 3978 a -2 4146 a
+SDict begin H.S end
+ -2 4146 a -2 4146 a
+SDict begin 13 H.A end
+ -2
+4146 a -2 4146 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2124) cvn H.B /DEST pdfmark
+end
+ -2 4146 a -2 4146 a
+SDict begin H.S end
+ -2 4146 a -2 4146
+a
+SDict begin 13 H.A end
+ -2 4146 a -2 4146 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2125) cvn H.B /DEST pdfmark
+end
+ -2 4146 a 396 4252 a FC(samhain)20
+b(has)g(a)h(programming)16 b(interf)o(ace)k(that)g(allo)n(ws)h(to)f
+(add)g(modules)f(written)h(in)g(C.)h(Basically)-5 b(,)20
+b(for)g(each)396 4360 y(module)f(a)i(structure)e(of)h(type)1289
+4360 y
+SDict begin H.S end
+ 1289 4360 a 1289 4360 a
+SDict begin 13 H.A end
+ 1289 4360 a 1289 4360
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2126) cvn H.B /DEST pdfmark
+end
+ 1289 4360 a Fx(struct)g(mod_type)p FC(,)f(as)i(de\002ned)e(in)2303
+4360 y
+SDict begin H.S end
+ 2303 4360 a 2303 4360 a
+SDict begin 13 H.A end
+ 2303 4360 a 2303 4360
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2127) cvn H.B /DEST pdfmark
+end
+ 2303 4360 a Fr(sh_modules.h)p FC(,)g(must)h(be)g(added)f(to)h(the)h
+(list)396 4468 y(in)482 4468 y
+SDict begin H.S end
+ 482 4468 a 482 4468 a
+SDict begin 13 H.A end
+
+482 4468 a 482 4468 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2128) cvn H.B /DEST pdfmark
+end
+ 482 4468 a Fr(sh_modules.c)p FC(.)-2
+4643 y
+SDict begin H.S end
+ -2 4643 a -2 4643 a
+SDict begin 13 H.A end
+ -2 4643 a -2 4643 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2129) cvn H.B /DEST pdfmark
+end
+ -2 4643
+a 396 4742 a FC(This)g(structure)e(contains)g(pointers)h(to)g
+(initialization,)f(timing,)h(checking,)e(and)h(cleanup)g(functions,)g
+(as)i(well)g(as)396 4850 y(information)d(for)i(parsing)f(the)h
+(con\002guration)d(\002le.)-2 5034 y
+SDict begin H.S end
+ -2 5034 a -2 5034
+a
+SDict begin 13 H.A end
+ -2 5034 a -2 5034 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2130) cvn H.B /DEST pdfmark
+end
+ -2 5034 a 396 5124 a FC(F)o(or)j(details,)f(in)h
+(the)g(source)f(code)g(distrib)n(ution)g(check)g(the)g(\002les)2305
+5124 y
+SDict begin H.S end
+ 2305 5124 a 2305 5124 a
+SDict begin 13 H.A end
+ 2305 5124 a 2305 5124
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2131) cvn H.B /DEST pdfmark
+end
+ 2305 5124 a Fr(sh_modules.h,)43 b(sh_modules.c)p FC(,)18
+b(as)i(well)396 5232 y(as)h(e.g.)626 5232 y
+SDict begin H.S end
+ 626 5232
+a 626 5232 a
+SDict begin 13 H.A end
+ 626 5232 a 626 5232 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2132) cvn H.B /DEST pdfmark
+end
+ 626 5232 a Fr(utmp.c,)44
+b(utmp.h)p FC(,)19 b(which)g(implement)f(a)i(module)f(to)h(monitor)e
+(login/logout)f(e)n(v)o(ents.)i(There)g(is)h(also)g(a)396
+5340 y(HO)m(WT)o(O)h(written)e(by)h(eircom.net)f(Computer)g(Incident)f
+(Response)i(T)-6 b(eam.)-2 5368 y
+SDict begin H.S end
+ -2 5368 a -2 5368 a
+SDict begin 13 H.A end
+
+-2 5368 a -2 5368 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:PERFORMANCE-TUNING) cvn H.B
+/DEST pdfmark end
+ -2 5368 a Black 3661 5805 a Fx(59)p
+Black eop end
+%%Page: 60 65
+TeXDict begin 60 64 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.60) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 1956 104 a
+Fx(Chapter)20 b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h
+(\002le)g(monitor)p Black -2 330 a Fu(5.15.)39 b(P)l(erf)m(ormance)d
+(tuning)1706 330 y
+SDict begin H.S end
+ 1706 330 a 1706 330 a
+SDict begin 22.464 H.A end
+ 1706 330 a 1706
+330 a
+SDict begin [ /View [/XYZ H.V] /Dest (7.47.1) cvn H.B /DEST pdfmark
+end
+ 1706 330 a -2 528 a
+SDict begin H.S end
+ -2 528 a -2 528 a
+SDict begin 13 H.A end
+ -2 528 a
+-2 528 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2135) cvn H.B /DEST pdfmark
+end
+ -2 528 a 396 604 a FC(Almost)21 b(all)f(time)h(is)g(spent)f
+(in)g(the)g(checksum)f(algorithm.)f(T)-7 b(o)21 b(impro)o(v)o(e)d
+(performance,)f(you)i(can)h(use)h(MD5)396 712 y(instead)f(of)g(TIGER,)g
+(which)g(will)h(gi)n(v)o(e)e(some)h(20)g(per)g(cent)g(impro)o(v)o
+(ement)d(\(on)i(Linux/i686\).)e(T)-7 b(o)21 b(switch)f(to)396
+820 y(MD5,)g(use)g(the)867 820 y
+SDict begin H.S end
+ 867 820 a 867 820 a
+SDict begin 13 H.A end
+
+867 820 a 867 820 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2136) cvn H.B /DEST pdfmark
+end
+ 867 820 a Fy(DigestAlgo)f FC(option)g(in)h(the)g
+(con\002guration)e(\002le:)-2 921 y
+SDict begin H.S end
+ -2 921 a -2 921 a
+SDict begin 11.7 H.A end
+
+-2 921 a -2 921 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2137) cvn H.B /DEST pdfmark
+end
+ -2 921 a 486 1000 a Fr([Misc])486 1097
+y(#)45 b(use)f(MD5)486 1195 y(DigestAlgo=MD5)-2 1649
+y
+SDict begin H.S end
+ -2 1649 a -2 1649 a
+SDict begin 13 H.A end
+ -2 1649 a -2 1649 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2138) cvn H.B /DEST pdfmark
+end
+ -2 1649 a 396
+1757 a FC(Other)20 b(things)g(you)f(can)h(do)g(are:)-2
+1941 y
+SDict begin H.S end
+ -2 1941 a -2 1941 a
+SDict begin 13 H.A end
+ -2 1941 a -2 1941 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2139) cvn H.B /DEST pdfmark
+end
+ -2 1941
+a -2 1941 a
+SDict begin H.S end
+ -2 1941 a -2 1941 a
+SDict begin 13 H.A end
+ -2 1941 a -2 1941 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2140) cvn H.B /DEST pdfmark
+end
+ -2
+1941 a -2 1951 a
+SDict begin H.S end
+ -2 1951 a -2 1951 a
+SDict begin 13 H.A end
+ -2 1951 a -2 1951
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2141) cvn H.B /DEST pdfmark
+end
+ -2 1951 a Black 396 2093 a FB(\225)p Black 479 2093
+a
+SDict begin H.S end
+ 479 2093 a 479 2093 a
+SDict begin 13 H.A end
+ 479 2093 a 479 2093 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2142) cvn H.B /DEST pdfmark
+end
+ 479 2093
+a FC(Build)h(a)f(static)h(binary)e(\(use)h(the)1452 2093
+y
+SDict begin H.S end
+ 1452 2093 a 1452 2093 a
+SDict begin 13 H.A end
+ 1452 2093 a 1452 2093 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2143) cvn H.B /DEST pdfmark
+end
+ 1452
+2093 a Fy(--enable-static)f FC(switch)h(for)g(con\002gure\).)e(Static)i
+(binaries)g(are)g(f)o(aster)m(,)g(and)479 2201 y(also)h(more)e(secure,)
+h(because)f(the)o(y)h(cannot)f(be)h(sub)o(v)o(erted)e(via)i(libc.)-2
+2219 y
+SDict begin H.S end
+ -2 2219 a -2 2219 a
+SDict begin 11.7 H.A end
+ -2 2219 a -2 2219 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2144) cvn H.B /DEST pdfmark
+end
+ -2 2219
+a -2 2343 a
+SDict begin H.S end
+ -2 2343 a -2 2343 a
+SDict begin 11.7 H.A end
+ -2 2343 a -2 2343 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2146) cvn H.B /DEST pdfmark
+end
+ -2
+2343 a 645 2422 a Fw(NO)m(TE:)h Fv(Unf)n(or)s(tunately)16
+b(this)k(is)h(not)f(possib)o(le)e(on)i(Solar)q(is)o(.)f(This)h(is)h
+(not)e(a)h(b)o(ug)f(in)3011 2422 y
+SDict begin H.S end
+ 3011 2422 a 3011 2422
+a
+SDict begin 11.7 H.A end
+ 3011 2422 a 3011 2422 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2147) cvn H.B /DEST pdfmark
+end
+ 3011 2422 a Fv(samhain,)g(b)o(ut)g(is)645
+2520 y(because)h(some)g(functions)f(in)h(Solar)q(is)f(are)h(only)f
+(supplied)g(b)o(y)h(dynamic)g(libr)o(ar)q(ies)o(.)438
+2860 y
+SDict begin H.S end
+ 438 2860 a 438 2860 a
+SDict begin 13 H.A end
+ 438 2860 a 438 2860 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2148) cvn H.B /DEST pdfmark
+end
+ 438
+2860 a Black 396 3009 a FB(\225)p Black 479 3009 a
+SDict begin H.S end
+ 479
+3009 a 479 3009 a
+SDict begin 13 H.A end
+ 479 3009 a 479 3009 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2149) cvn H.B /DEST pdfmark
+end
+ 479 3009 a FC(Change)g(the)g
+(compiler)f(switches)h(to)h(optimize)e(more)g(aggressi)n(v)o(ely)-5
+b(.)-2 3027 y
+SDict begin H.S end
+ -2 3027 a -2 3027 a
+SDict begin 13 H.A end
+ -2 3027 a -2 3027 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2150) cvn H.B /DEST pdfmark
+end
+
+-2 3027 a Black 396 3159 a FB(\225)p Black 479 3159 a
+SDict begin H.S end
+
+479 3159 a 479 3159 a
+SDict begin 13 H.A end
+ 479 3159 a 479 3159 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2151) cvn H.B /DEST pdfmark
+end
+ 479 3159
+a FC(If)20 b(on)g(a)h(commercial)d(UNIX,)i(check)g(whether)f(the)h
+(nati)n(v)o(e)f(compiler)g(produces)g(f)o(aster)h(code)g(\(you)f(need)g
+(an)479 3267 y(ANSI)i(C)g(compiler\).)d(The)1284 3267
+y
+SDict begin H.S end
+ 1284 3267 a 1284 3267 a
+SDict begin 13 H.A end
+ 1284 3267 a 1284 3267 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2152) cvn H.B /DEST pdfmark
+end
+ 1284
+3267 a Fy(./con\002gur)o(e)h FC(script)h(honours)f(CC)i(\(compiler\))d
+(and)i(CFLA)m(GS)h(en)m(vironment)479 3375 y(v)n(ariables.)-2
+3690 y
+SDict begin H.S end
+ -2 3690 a -2 3690 a
+SDict begin 13 H.A end
+ -2 3690 a -2 3690 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2153) cvn H.B /DEST pdfmark
+end
+ -2 3690
+a 396 3798 a FC(On)f(the)h(other)e(side,)h(if)h(you)e(w)o(ant)h(to)h
+(reduce)e(the)h(load)g(caused)f(by)h(\002le)h(checking,)d(you)h(can)h
+(change)f(the)396 3906 y(scheduling)g(priority)g(\(see)1201
+3906 y
+SDict begin H.S end
+ 1201 3906 a 1201 3906 a
+SDict begin 13 H.A end
+ 1201 3906 a 1201 3906
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2154) cvn H.B /DEST pdfmark
+end
+ 1201 3906 a Fy(man)i(nice)p FC(\),)f(and/or)f(limit)h(the)g(I/O:)-2
+4007 y
+SDict begin H.S end
+ -2 4007 a -2 4007 a
+SDict begin 11.7 H.A end
+ -2 4007 a -2 4007 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2155) cvn H.B /DEST pdfmark
+end
+ -2 4007
+a 486 4086 a Fr([Misc])486 4183 y(#)45 b(low)f(priority)f(\(positive)h
+(argument)f(means)h(lower)g(priority\))486 4281 y(SetNiceLevel=19)486
+4378 y(#)h(kilobytes)e(per)h(second)486 4475 y(SetIOLimit=1000)-2
+4929 y
+SDict begin H.S end
+ -2 4929 a -2 4929 a
+SDict begin 13 H.A end
+ -2 4929 a -2 4929 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2156) cvn H.B /DEST pdfmark
+end
+ -2 4929
+a 396 5037 a FC(Similarly)-5 b(,)19 b(for)h(the)g(SUID)h(check,)e(you)g
+(can)h(limit)h(the)f(\002les)h(per)f(seconds:)-2 5138
+y
+SDict begin H.S end
+ -2 5138 a -2 5138 a
+SDict begin 11.7 H.A end
+ -2 5138 a -2 5138 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2157) cvn H.B /DEST pdfmark
+end
+ -2 5138 a 486
+5217 a Fr([SuidCheck])486 5314 y(#)45 b(limit)f(on)g(files)g(per)g
+(seconds)p Black 3661 5805 a Fx(60)p Black eop end
+%%Page: 61 66
+TeXDict begin 61 65 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.61) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 1956 104 a
+Fx(Chapter)20 b(5.)g(Con\002gur)o(ation)e(\227)i(samhain,)f(the)h
+(\002le)g(monitor)p Black 486 309 a Fr(SuidCheckFps=250)p
+Black 3661 5805 a Fx(61)p Black eop end
+%%Page: 62 67
+TeXDict begin 62 66 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.62) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black -2 226
+a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:YULE) cvn H.B /DEST pdfmark
+end
+ -2 226 a 125 x
+Fz(Chapter)48 b(6.)f(yule,)h(the)g(log)g(ser)r(ver)2460
+351 y
+SDict begin H.S end
+ 2460 351 a 2460 351 a
+SDict begin 26.957 H.A end
+ 2460 351 a 2460 351 a
+SDict begin [ /View [/XYZ H.V] /Dest (8.0) cvn H.B /DEST pdfmark end
+ 2460
+351 a -2 609 a
+SDict begin H.S end
+ -2 609 a -2 609 a
+SDict begin 13 H.A end
+ -2 609 a -2 609 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2161) cvn H.B /DEST pdfmark
+end
+ -2
+609 a -2 609 a
+SDict begin H.S end
+ -2 609 a -2 609 a
+SDict begin 13 H.A end
+ -2 609 a -2 609 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2162) cvn H.B /DEST pdfmark
+end
+ -2
+609 a 396 679 a FC(yule)20 b(is)h(the)f(log)g(serv)o(er)g(within)f(the)
+1463 679 y
+SDict begin H.S end
+ 1463 679 a 1463 679 a
+SDict begin 13 H.A end
+ 1463 679 a 1463 679
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2163) cvn H.B /DEST pdfmark
+end
+ 1463 679 a FC(samhain)g(\002le)i(inte)o(grity)e(monitoring)f(system.)
+2850 679 y
+SDict begin H.S end
+ 2850 679 a 2850 679 a
+SDict begin 13 H.A end
+ 2850 679 a 2850 679
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2164) cvn H.B /DEST pdfmark
+end
+ 2850 679 a FC(yule)i(is)h(part)e(of)h(the)396 787 y(distrib)n(ution)f
+(package.)g(It)h(is)h(only)f(required)e(if)j(you)e(intend)g(to)i(use)f
+(the)g(client/serv)o(er)f(capability)g(of)h(the)396 895
+y
+SDict begin H.S end
+ 396 895 a 396 895 a
+SDict begin 13 H.A end
+ 396 895 a 396 895 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2165) cvn H.B /DEST pdfmark
+end
+ 396 895 a FC(samhain)g
+(system)g(for)g(centralized)f(logging)f(to)1807 895 y
+SDict begin H.S end
+
+1807 895 a 1807 895 a
+SDict begin 13 H.A end
+ 1807 895 a 1807 895 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2166) cvn H.B /DEST pdfmark
+end
+ 1807 895
+a FC(yule.)-2 913 y
+SDict begin H.S end
+ -2 913 a -2 913 a
+SDict begin 11.7 H.A end
+ -2 913 a -2 913
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2167) cvn H.B /DEST pdfmark
+end
+ -2 913 a 745 1012 2668 17 v 745 2120 17 1108 v 1802
+1164 a Fp(Impor)r(tant)786 1354 y
+SDict begin H.S end
+ 786 1354 a 786 1354
+a
+SDict begin 11.7 H.A end
+ 786 1354 a 786 1354 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2169) cvn H.B /DEST pdfmark
+end
+ 786 1354 a 73 x Fv(Client)h(and)h(ser)r(v)n(er)
+g(are)1501 1427 y
+SDict begin H.S end
+ 1501 1427 a 1501 1427 a
+SDict begin 11.7 H.A end
+ 1501 1427 a
+1501 1427 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2170) cvn H.B /DEST pdfmark
+end
+ 1501 1427 a Fq(distict)27 b Fv(applications)o(,)16
+b(and)k(m)o(ust)h(be)f(b)o(uilt)e(seper)o(ately)-7 b(.)18
+b(By)786 1524 y(def)n(ault,)g(installation)f(names)j(and)f(paths)h(\(e)
+o(.g.)f(the)h(con\002gur)o(ation)d(\002le\))j(are)g(diff)n(erent.)786
+1621 y(Do)h(not)e(b)o(lame)g(us)i(if)f(y)o(ou)g(ab)o(use)e
+('./con\002gure')g(options)h(to)h(cause)g(name)g(clashes)o(,)f(if)786
+1718 y(y)o(ou)h(install)f(both)g(on)h(the)g(same)g(host.)786
+1900 y
+SDict begin H.S end
+ 786 1900 a 786 1900 a
+SDict begin 11.7 H.A end
+ 786 1900 a 786 1900 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2171) cvn H.B /DEST pdfmark
+end
+ 786
+1900 a 81 x Fv(T)-9 b(o)20 b(compile)1164 1981 y
+SDict begin H.S end
+ 1164
+1981 a 1164 1981 a
+SDict begin 11.7 H.A end
+ 1164 1981 a 1164 1981 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2172) cvn H.B /DEST pdfmark
+end
+ 1164 1981
+a Fv(yule,)f(y)o(ou)h(m)o(ust)h(use)1805 1981 y
+SDict begin H.S end
+ 1805
+1981 a 1805 1981 a
+SDict begin 11.7 H.A end
+ 1805 1981 a 1805 1981 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2173) cvn H.B /DEST pdfmark
+end
+ 1805 1981
+a Fw(./con\002gure)d(--enab)o(le-netw)o(ork=ser)q(ve)o(r)p
+Fv(.)d(T)-9 b(o)786 2078 y(compile)20 b(a)1127 2078 y
+SDict begin H.S end
+
+1127 2078 a 1127 2078 a
+SDict begin 11.7 H.A end
+ 1127 2078 a 1127 2078 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2174) cvn H.B /DEST pdfmark
+end
+ 1127
+2078 a Fv(samhain)f(client,)g(y)o(ou)h(m)o(ust)h(use)2109
+2078 y
+SDict begin H.S end
+ 2109 2078 a 2109 2078 a
+SDict begin 11.7 H.A end
+ 2109 2078 a 2109 2078
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2175) cvn H.B /DEST pdfmark
+end
+ 2109 2078 a Fw(./con\002gure)d(--enab)o(le-netw)o(ork=c)o(li)o(ent)p
+Fv(.)p 3396 2120 17 1108 v 745 2137 2668 17 v -2 2147
+a
+SDict begin H.S end
+ -2 2147 a -2 2147 a
+SDict begin 13 H.A end
+ -2 2147 a -2 2147 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:GENERAL) cvn H.B /DEST pdfmark
+end
+ -2 2147 a 319
+x Fu(6.1.)39 b(General)813 2466 y
+SDict begin H.S end
+ 813 2466 a 813 2466
+a
+SDict begin 22.464 H.A end
+ 813 2466 a 813 2466 a
+SDict begin [ /View [/XYZ H.V] /Dest (8.48.1) cvn H.B /DEST pdfmark
+end
+ 813 2466 a -2 2634 a
+SDict begin H.S end
+ -2 2634
+a -2 2634 a
+SDict begin 13 H.A end
+ -2 2634 a -2 2634 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2178) cvn H.B /DEST pdfmark
+end
+ -2 2634 a -2 2634 a
+SDict begin H.S end
+ -2
+2634 a -2 2634 a
+SDict begin 13 H.A end
+ -2 2634 a -2 2634 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2179) cvn H.B /DEST pdfmark
+end
+ -2 2634 a 396 2740
+a FC(yule)20 b(is)h(a)g(non-forking)16 b(serv)o(er)-5
+b(.)20 b(Instead)f(of)h(forking)e(a)j(ne)n(w)f(process)g(for)f(each)h
+(incoming)e(logging)h(request,)g(it)396 2848 y(multiple)o(x)o(es)g
+(connections)f(internally)-5 b(.)19 b(Apart)g(from)1966
+2848 y
+SDict begin H.S end
+ 1966 2848 a 1966 2848 a
+SDict begin 13 H.A end
+ 1966 2848 a 1966 2848
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2180) cvn H.B /DEST pdfmark
+end
+ 1966 2848 a FC(samhain)g(client)h(reports)g(\(see)g(belo)n(w\),)3144
+2848 y
+SDict begin H.S end
+ 3144 2848 a 3144 2848 a
+SDict begin 13 H.A end
+ 3144 2848 a 3144 2848
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2181) cvn H.B /DEST pdfmark
+end
+ 3144 2848 a FC(yule)g(\(v)o(ersion)396 2956 y(1.2.8+\))f(can)h(also)g
+(collect)g(syslog)g(reports)f(by)h(listening)g(on)g(port)f(514/udp,)f
+(if)i(compiled)f(with)h(this)h(option)396 3064 y(enabled)e(\(see)i
+(also)984 3064 y
+SDict begin H.S end
+ 984 3064 a 984 3064 a
+SDict begin 13 H.A end
+ 984 3064 a 984
+3064 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2182) cvn H.B /DEST pdfmark
+end
+ 984 3064 a Fy(man)g(syslogd)p FC(.)-2 3247 y
+SDict begin H.S end
+ -2
+3247 a -2 3247 a
+SDict begin 13 H.A end
+ -2 3247 a -2 3247 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2183) cvn H.B /DEST pdfmark
+end
+ -2 3247 a 396 3338
+a FC(Each)f(potential)f(client)i(must)f(be)1381 3338
+y
+SDict begin H.S end
+ 1381 3338 a 1381 3338 a
+SDict begin 13 H.A end
+ 1381 3338 a 1381 3338 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2184) cvn H.B /DEST pdfmark
+end
+ 1381
+3338 a Fx(r)m(e)m(gister)m(ed)i FC(with)1899 3338 y
+SDict begin H.S end
+ 1899
+3338 a 1899 3338 a
+SDict begin 13 H.A end
+ 1899 3338 a 1899 3338 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2185) cvn H.B /DEST pdfmark
+end
+ 1899 3338
+a FC(yule)e(to)h(mak)o(e)e(a)i(connection)d(\(see)p 0
+TeXcolorgray 2945 3338 a
+SDict begin H.S end
+ 2945 3338 a FC(Section)i(5.1)3320
+3338 y
+SDict begin 13 H.L end
+ 3320 3338 a 3320 3338 a
+SDict begin [ /Subtype /Link /Dest (0:BASCLT) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3320 3338 a Black -1 w
+FC(>)h(and)e(the)396 3446 y(e)o(xample)g(belo)n(w\).)g(The)h(client)g
+(tells)h(its)g(host)g(name)e(to)i(the)f(serv)o(er)m(,)f(and)g(the)h
+(serv)o(er)g(v)o(eri\002es)g(it)h(against)e(the)h(peer)396
+3554 y(of)g(the)g(connecting)e(sock)o(et.)i(On)g(the)h(\002rst)g
+(connection)d(made)h(by)h(a)h(client,)f(an)g(authentication)e(protocol)
+g(is)396 3661 y(performed.)g(This)i(protocol)e(pro)o(vides)1555
+3661 y
+SDict begin H.S end
+ 1555 3661 a 1555 3661 a
+SDict begin 13 H.A end
+ 1555 3661 a 1555 3661
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2187) cvn H.B /DEST pdfmark
+end
+ 1555 3661 a Fx(mutual)h(authentication)f FC(of)i(client)g(and)f(serv)
+o(er)m(,)g(as)i(well)g(as)g(a)f(fresh)396 3769 y
+SDict begin H.S end
+ 396
+3769 a 396 3769 a
+SDict begin 13 H.A end
+ 396 3769 a 396 3769 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2188) cvn H.B /DEST pdfmark
+end
+ 396 3769 a Fx(session)h(k)o(e)n
+(y)f FC(.)-2 3952 y
+SDict begin H.S end
+ -2 3952 a -2 3952 a
+SDict begin 13 H.A end
+ -2 3952 a -2
+3952 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2189) cvn H.B /DEST pdfmark
+end
+ -2 3952 a 396 4043 a FC(By)f(def)o(ault,)f(all)h(messages)g(are)
+g(encrypted)d(using)i(Rijndael)h(\(selected)f(as)i(the)e(Adv)n(anced)f
+(Encryption)f(Standard)396 4151 y(\(AES\))k(algorithm\).)e(The)i
+(192-bit)f(k)o(e)o(y)g(v)o(ersion)g(of)h(the)g(algorithm)f(is)i(used.)f
+(There)f(is)i(a)g(compile-time)d(option)396 4259 y(to)j(switch)f(of)n
+(f)g(encryption,)d(if)k(your)e(local)h(la)o(wmak)o(ers)f(don')o(t)g
+(allo)n(w)h(to)g(use)h(it)f(\(see)h(Appendix\).)-2 4443
+y
+SDict begin H.S end
+ -2 4443 a -2 4443 a
+SDict begin 13 H.A end
+ -2 4443 a -2 4443 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2190) cvn H.B /DEST pdfmark
+end
+ -2 4443 a -2
+4443 a
+SDict begin H.S end
+ -2 4443 a -2 4443 a
+SDict begin 13 H.A end
+ -2 4443 a -2 4443 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2191) cvn H.B /DEST pdfmark
+end
+ -2 4443
+a 396 4533 a FC(yule)f(k)o(eeps)g(track)g(of)g(all)g(clients)h(and)f
+(their)f(session)i(k)o(e)o(ys.)f(As)h(connections)d(are)i(dropped)e
+(after)i(successful)396 4641 y(completion)f(of)h(message)g(deli)n(v)o
+(ery)-5 b(,)17 b(there)j(is)h(no)f(limit)h(on)e(the)i(total)f(number)e
+(of)i(clients.)h(There)e(is,)i(ho)n(we)n(v)o(er)m(,)d(a)396
+4749 y(limit)j(on)f(the)g(maximum)e(number)h(of)1522
+4749 y
+SDict begin H.S end
+ 1522 4749 a 1522 4749 a
+SDict begin 13 H.A end
+ 1522 4749 a 1522 4749
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2192) cvn H.B /DEST pdfmark
+end
+ 1522 4749 a Fx(simultaneous)g FC(connections.)f(This)i(limit)h
+(depends)e(on)g(the)i(operating)396 4857 y(system,)f(b)n(ut)h(may)e(be)
+h(of)g(order)f(1000.)-2 5041 y
+SDict begin H.S end
+ -2 5041 a -2 5041 a
+SDict begin 13 H.A end
+ -2
+5041 a -2 5041 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2193) cvn H.B /DEST pdfmark
+end
+ -2 5041 a 396 5131 a FC(Session)i(k)o(e)o(y)e(e)o
+(xpire)g(after)h(tw)o(o)h(hours.)e(If)h(its)h(session)f(k)o(e)o(y)g(is)
+h(e)o(xpired,)d(the)j(client)f(is)h(forced)e(to)h(repeat)g(the)396
+5239 y(authentication)e(protocol)h(to)h(set)h(up)f(a)h(fresh)e(session)
+i(k)o(e)o(y)-5 b(.)p Black -2 5805 a
+SDict begin H.S end
+ -2 5805 a -2 5805
+a
+SDict begin 13 H.A end
+ -2 5805 a -2 5805 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2196) cvn H.B /DEST pdfmark
+end
+ -2 5805 a 3661 5874 a Fx(62)p Black
+eop end
+%%Page: 63 68
+TeXDict begin 63 67 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.63) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2731 104 a
+Fx(Chapter)20 b(6.)g(yule,)g(the)g(lo)o(g)g(server)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2194) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a FC(Incoming)e(messages)j(are)f(signed)f(by)h(the)g
+(client.)g(On)g(receipt,)2271 309 y
+SDict begin H.S end
+ 2271 309 a 2271 309
+a
+SDict begin 13 H.A end
+ 2271 309 a 2271 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2195) cvn H.B /DEST pdfmark
+end
+ 2271 309 a FC(yule)g(will:)p
+Black 463 645 a(1.)p Black 20 w(check)f(the)h(signature,)-2
+663 y
+SDict begin H.S end
+ -2 663 a -2 663 a
+SDict begin 13 H.A end
+ -2 663 a -2 663 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2200) cvn H.B /DEST pdfmark
+end
+ -2 663 a Black
+463 794 a FC(2.)p Black 546 794 a
+SDict begin H.S end
+ 546 794 a 546 794 a
+SDict begin 13 H.A end
+
+546 794 a 546 794 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2201) cvn H.B /DEST pdfmark
+end
+ 546 794 a FC(accept)f(the)i(message)f(if)g(the)g
+(signature)g(can)g(be)g(v)o(eri\002ed,)f(otherwise)g(discard)h(it)h
+(and)e(issue)i(an)f(error)546 902 y(message,)-2 920 y
+SDict begin H.S end
+
+-2 920 a -2 920 a
+SDict begin 13 H.A end
+ -2 920 a -2 920 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2202) cvn H.B /DEST pdfmark
+end
+ -2 920 a Black 463
+1052 a FC(3.)p Black 546 1052 a
+SDict begin H.S end
+ 546 1052 a 546 1052 a
+SDict begin 13 H.A end
+
+546 1052 a 546 1052 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2203) cvn H.B /DEST pdfmark
+end
+ 546 1052 a FC(discard)f(the)h(clients)h
+(signature,)-2 1070 y
+SDict begin H.S end
+ -2 1070 a -2 1070 a
+SDict begin 13 H.A end
+ -2 1070 a -2
+1070 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2204) cvn H.B /DEST pdfmark
+end
+ -2 1070 a Black 463 1201 a FC(4.)p Black 546 1201
+a
+SDict begin H.S end
+ 546 1201 a 546 1201 a
+SDict begin 13 H.A end
+ 546 1201 a 546 1201 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2205) cvn H.B /DEST pdfmark
+end
+ 546 1201
+a FC(log)f(the)g(message,)g(and)f(the)h(client')-5 b(s)21
+b(hostname,)e(to)h(the)g(console)g(and)f(the)i(log)e(\002le,)i(and)-2
+1219 y
+SDict begin H.S end
+ -2 1219 a -2 1219 a
+SDict begin 13 H.A end
+ -2 1219 a -2 1219 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2206) cvn H.B /DEST pdfmark
+end
+ -2 1219
+a Black 463 1351 a FC(5.)p Black 546 1351 a
+SDict begin H.S end
+ 546 1351
+a 546 1351 a
+SDict begin 13 H.A end
+ 546 1351 a 546 1351 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2207) cvn H.B /DEST pdfmark
+end
+ 546 1351 a FC(add)e(its)j(o)n(wn)d
+(signature)g(to)i(the)f(log)g(\002le)h(entry)-5 b(.)-2
+1510 y
+SDict begin H.S end
+ -2 1510 a -2 1510 a
+SDict begin 13 H.A end
+ -2 1510 a -2 1510 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DROPROOT) cvn H.B /DEST pdfmark
+end
+ -2 1510
+a 378 x Fu(6.2.)39 b(Impor)s(tant)e(installation)g(notes)2162
+1888 y
+SDict begin H.S end
+ 2162 1888 a 2162 1888 a
+SDict begin 22.464 H.A end
+ 2162 1888 a 2162 1888
+a
+SDict begin [ /View [/XYZ H.V] /Dest (8.49.1) cvn H.B /DEST pdfmark
+end
+ 2162 1888 a -2 2083 a
+SDict begin H.S end
+ -2 2083 a -2 2083 a
+SDict begin 13 H.A end
+ -2 2083 a
+-2 2083 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2210) cvn H.B /DEST pdfmark
+end
+ -2 2083 a 396 2162 a FC(As)21 b(of)f(v)o(ersion)f(1.7.0,)1071
+2162 y
+SDict begin H.S end
+ 1071 2162 a 1071 2162 a
+SDict begin 13 H.A end
+ 1071 2162 a 1071 2162
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2211) cvn H.B /DEST pdfmark
+end
+ 1071 2162 a FC(yule)g(will)1384 2162 y
+SDict begin H.S end
+ 1384 2162 a
+1384 2162 a
+SDict begin 13 H.A end
+ 1384 2162 a 1384 2162 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2212) cvn H.B /DEST pdfmark
+end
+ 1384 2162 a Fx(always)i
+FC(drop)e(root)g(pri)n(vile)o(ges)g(after)h(startup)g(and)f
+(initialization.)g(Y)-9 b(ou)20 b(can)g(use)396 2269
+y(a)h(pri)n(vile)o(ged)d(port)h(\(port)h(number)e(belo)n(w)i(1024\),)e
+(because)h(setting)h(up)g(the)g(listening)g(sock)o(et)g(will)h(occur)e
+(as)396 2377 y(long)h(as)655 2377 y
+SDict begin H.S end
+ 655 2377 a 655 2377
+a
+SDict begin 13 H.A end
+ 655 2377 a 655 2377 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2213) cvn H.B /DEST pdfmark
+end
+ 655 2377 a FC(yule)f(still)j(has)e(root)g(pri)n
+(vile)o(ges.)-2 2561 y
+SDict begin H.S end
+ -2 2561 a -2 2561 a
+SDict begin 13 H.A end
+ -2 2561 a
+-2 2561 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2214) cvn H.B /DEST pdfmark
+end
+ -2 2561 a 396 2651 a FC(There)g(are)g(some)g(special)g
+(considerations)e(that)j(need)e(to)i(be)f(tak)o(en)f(into)h(account)f
+(when)h(setting)g(up)g(an)396 2759 y(installation)g(of)876
+2759 y
+SDict begin H.S end
+ 876 2759 a 876 2759 a
+SDict begin 13 H.A end
+ 876 2759 a 876 2759 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2215) cvn H.B /DEST pdfmark
+end
+ 876
+2759 a FC(yule.)f(In)h(particular:)-2 2777 y
+SDict begin H.S end
+ -2 2777
+a -2 2777 a
+SDict begin 13 H.A end
+ -2 2777 a -2 2777 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2216) cvn H.B /DEST pdfmark
+end
+ -2 2777 a -2 2902 a
+SDict begin H.S end
+ -2
+2902 a -2 2902 a
+SDict begin 13 H.A end
+ -2 2902 a -2 2902 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2218) cvn H.B /DEST pdfmark
+end
+ -2 2902 a 396 2992
+a FC(The)g(unpri)n(vile)o(ged)d(user)-2 3010 y
+SDict begin H.S end
+ -2 3010
+a -2 3010 a
+SDict begin 13 H.A end
+ -2 3010 a -2 3010 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2219) cvn H.B /DEST pdfmark
+end
+ -2 3010 a Black Black
+562 3141 a
+SDict begin H.S end
+ 562 3141 a 562 3141 a
+SDict begin 13 H.A end
+ 562 3141 a 562 3141
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2220) cvn H.B /DEST pdfmark
+end
+ 562 3141 a FC(By)k(def)o(ault,)951 3141 y
+SDict begin H.S end
+ 951 3141
+a 951 3141 a
+SDict begin 13 H.A end
+ 951 3141 a 951 3141 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2221) cvn H.B /DEST pdfmark
+end
+ 951 3141 a Fy(con\002gur)o(e)f
+FC(will)g(check)g(\(in)g(this)h(order\))d(for)i(the)g(e)o(xistance)f
+(of)h(a)h(user)3019 3141 y
+SDict begin H.S end
+ 3019 3141 a 3019 3141 a
+SDict begin 13 H.A end
+ 3019
+3141 a 3019 3141 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2222) cvn H.B /DEST pdfmark
+end
+ 3019 3141 a Fx(yule)p FC(,)3199 3141
+y
+SDict begin H.S end
+ 3199 3141 a 3199 3141 a
+SDict begin 13 H.A end
+ 3199 3141 a 3199 3141 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2223) cvn H.B /DEST pdfmark
+end
+ 3199
+3141 a Fx(daemon)p FC(,)d(or)562 3249 y
+SDict begin H.S end
+ 562 3249 a 562
+3249 a
+SDict begin 13 H.A end
+ 562 3249 a 562 3249 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2224) cvn H.B /DEST pdfmark
+end
+ 562 3249 a Fx(nobody)p FC(,)g(and)i(use)g
+(the)h(\002rst)f(match.)-2 3432 y
+SDict begin H.S end
+ -2 3432 a -2 3432 a
+SDict begin 13 H.A end
+
+-2 3432 a -2 3432 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2225) cvn H.B /DEST pdfmark
+end
+ -2 3432 a 562 3523 a FC(Y)-9 b(ou)19
+b(can)h(o)o(v)o(erride)d(this)j(with)g(the)g(option)1808
+3523 y
+SDict begin H.S end
+ 1808 3523 a 1808 3523 a
+SDict begin 13 H.A end
+ 1808 3523 a 1808 3523
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2226) cvn H.B /DEST pdfmark
+end
+ 1808 3523 a Fy(con\002gur)o(e)f(--enable-user=)2673
+3523 y
+SDict begin H.S end
+ 2673 3523 a 2673 3523 a
+SDict begin 13 H.A end
+ 2673 3523 a 2673 3523
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2227) cvn H.B /DEST pdfmark
+end
+ 2673 3523 a Fl(user)t FC(.)f(The)i(user)f(does)g(not)h(need)f(to)562
+3631 y(e)o(xist)i(already;)e(the)h(install)h(script)f(kno)n(ws)f(ho)n
+(w)h(to)g(create)g(a)h(ne)n(w)f(user)g(\(on)f(Linux,)g(FreeBSD,)i
+(NetBSD,)562 3739 y(Solaris,)f(HP-UX,)h(OSF1\).)-2 3920
+y
+SDict begin H.S end
+ -2 3920 a -2 3920 a
+SDict begin 13 H.A end
+ -2 3920 a -2 3920 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2228) cvn H.B /DEST pdfmark
+end
+ -2 3920 a 562
+4013 a FC(After)f(successful)g(installation,)g(you)f(will)i(be)f(ask)o
+(ed)g(to)g(run)2351 4013 y
+SDict begin H.S end
+ 2351 4013 a 2351 4013 a
+SDict begin 13 H.A end
+ 2351
+4013 a 2351 4013 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2229) cvn H.B /DEST pdfmark
+end
+ 2351 4013 a Fy(mak)o(e)g(install-user)h
+FC(in)f(order)f(to:)i(\(i\))f(create)562 4121 y(the)h(user)f(that)g
+(you)f(speci\002ed)h(to)1535 4121 y
+SDict begin H.S end
+ 1535 4121 a 1535
+4121 a
+SDict begin 13 H.A end
+ 1535 4121 a 1535 4121 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2230) cvn H.B /DEST pdfmark
+end
+ 1535 4121 a Fy(con\002gur)o(e)g
+FC(if)g(it)h(does)f(not)g(e)o(xist)g(already)f(\()2794
+4121 y
+SDict begin H.S end
+ 2794 4121 a 2794 4121 a
+SDict begin 13 H.A end
+ 2794 4121 a 2794 4121
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2231) cvn H.B /DEST pdfmark
+end
+ 2794 4121 a Fy(mak)o(e)i(install-user)f FC(will)562
+4229 y(check)g(for)f(this\),)h(and)g(\(ii\))g(cho)n(wn/chmod)d(some)j
+(directories.)-2 4410 y
+SDict begin H.S end
+ -2 4410 a -2 4410 a
+SDict begin 13 H.A end
+ -2 4410 a
+-2 4410 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2232) cvn H.B /DEST pdfmark
+end
+ -2 4410 a 562 4503 a FC(After)g(running)1037
+4503 y
+SDict begin H.S end
+ 1037 4503 a 1037 4503 a
+SDict begin 13 H.A end
+ 1037 4503 a 1037 4503
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2233) cvn H.B /DEST pdfmark
+end
+ 1037 4503 a Fy(mak)o(e)h(install)f FC(and)1629 4503
+y
+SDict begin H.S end
+ 1629 4503 a 1629 4503 a
+SDict begin 13 H.A end
+ 1629 4503 a 1629 4503 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2234) cvn H.B /DEST pdfmark
+end
+ 1629
+4503 a Fy(mak)o(e)h(install-user)p FC(,)f(you)f(should)g(ha)n(v)o(e)h
+(a)h(sane)f(setup.)-2 4704 y
+SDict begin H.S end
+ -2 4704 a -2 4704 a
+SDict begin 13 H.A end
+ -2 4704
+a -2 4704 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2236) cvn H.B /DEST pdfmark
+end
+ -2 4704 a 396 4812 a FC(Log\002le)g(directory)-2
+4830 y
+SDict begin H.S end
+ -2 4830 a -2 4830 a
+SDict begin 13 H.A end
+ -2 4830 a -2 4830 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2237) cvn H.B /DEST pdfmark
+end
+ -2 4830
+a Black Black 562 4961 a
+SDict begin H.S end
+ 562 4961 a 562 4961 a
+SDict begin 13 H.A end
+ 562 4961
+a 562 4961 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2238) cvn H.B /DEST pdfmark
+end
+ 562 4961 a FC(The)g(system)h(log\002le)f(directory)e
+(usually)i(requires)f(root)g(pri)n(vile)o(ges)g(to)h(write)h(there)f
+(\(otherwise)f(log)h(\002les)562 5069 y(may)g(easily)g(get)h(corrupted)
+d(...\).)h(T)-7 b(o)20 b(enable)1877 5069 y
+SDict begin H.S end
+ 1877 5069
+a 1877 5069 a
+SDict begin 13 H.A end
+ 1877 5069 a 1877 5069 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2239) cvn H.B /DEST pdfmark
+end
+ 1877 5069 a FC(yule)g(to)g(write)
+g(the)g(log)g(\002le)h(and)f(the)g(HTML)g(status)h(\002le,)f(a)562
+5177 y(\(sub-\)directory)c(should)i(be)i(used)e(that)i(is)g(o)n(wned)e
+(by)2153 5177 y
+SDict begin H.S end
+ 2153 5177 a 2153 5177 a
+SDict begin 13 H.A end
+ 2153 5177 a 2153
+5177 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2240) cvn H.B /DEST pdfmark
+end
+ 2153 5177 a FC(yule.)g(The)2485 5177 y
+SDict begin H.S end
+ 2485 5177
+a 2485 5177 a
+SDict begin 13 H.A end
+ 2485 5177 a 2485 5177 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2241) cvn H.B /DEST pdfmark
+end
+ 2485 5177 a Fy(con\002gur)o(e)h
+FC(script)g(and)g(the)g(Mak)o(e\002le)g(will)562 5285
+y(do)h(that)g(automatically)f(with)h(the)h(def)o(ault)e(layout)g
+(\(i.e.)h(a)h(directory)2581 5285 y
+SDict begin H.S end
+ 2581 5285 a 2581
+5285 a
+SDict begin 13 H.A end
+ 2581 5285 a 2581 5285 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2242) cvn H.B /DEST pdfmark
+end
+ 2581 5285 a Fr(/var/log/yule)e
+FC(will)i(be)f(created\).)p Black 3661 5805 a Fx(63)p
+Black eop end
+%%Page: 64 69
+TeXDict begin 64 68 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.64) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2731 104 a
+Fx(Chapter)20 b(6.)g(yule,)g(the)g(lo)o(g)g(server)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2244) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a FC(Data)h(\002les)-2 310 y
+SDict begin H.S end
+ -2 310 a -2
+310 a
+SDict begin 13 H.A end
+ -2 310 a -2 310 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2245) cvn H.B /DEST pdfmark
+end
+ -2 310 a Black Black 562 458
+a
+SDict begin H.S end
+ 562 458 a 562 458 a
+SDict begin 13 H.A end
+ 562 458 a 562 458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2246) cvn H.B /DEST pdfmark
+end
+ 562 458 a FC(The)f(data)g
+(\002le)h(directory)e(is)i(no)n(w)e(o)n(wned)g(by)h(root)g(and)f(w)o
+(orld)h(readable)f(by)h(def)o(ault.)f(If)h(you)f(cho)n(wn)g(it)i(to)f
+(a)562 566 y(suitable)841 566 y
+SDict begin H.S end
+ 841 566 a 841 566 a
+SDict begin 13 H.A end
+ 841
+566 a 841 566 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2247) cvn H.B /DEST pdfmark
+end
+ 841 566 a Fx(gr)l(oup)g FC(for)f(the)h(unpri)n(vile)o
+(ged)1734 566 y
+SDict begin H.S end
+ 1734 566 a 1734 566 a
+SDict begin 13 H.A end
+ 1734 566 a 1734
+566 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2248) cvn H.B /DEST pdfmark
+end
+ 1734 566 a FC(yule)f(user)m(,)h(you)f(can)h(mak)o(e)g(it)h(group)
+d(readable)h(only)-5 b(.)3322 566 y
+SDict begin H.S end
+ 3322 566 a 3322 566
+a
+SDict begin 13 H.A end
+ 3322 566 a 3322 566 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2249) cvn H.B /DEST pdfmark
+end
+ 3322 566 a Fx(Note)20 b(that)g(it)562
+674 y(is)h(not)f(r)m(equir)m(ed,)g(and)f(weak)o(ens)h(the)g(security)-5
+b(,)21 b(if)g(the)f(data)g(\002le)g(dir)m(ectory)g(is)h(writeable)f
+(for)h(the)f(server)-9 b(.)-2 774 y
+SDict begin H.S end
+ -2 774 a -2 774 a
+SDict begin 13 H.A end
+
+-2 774 a -2 774 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2251) cvn H.B /DEST pdfmark
+end
+ -2 774 a 396 865 a FC(GnuPG)20 b(signed)g
+(con\002guration)d(\002le)-2 883 y
+SDict begin H.S end
+ -2 883 a -2 883 a
+SDict begin 13 H.A end
+
+-2 883 a -2 883 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2252) cvn H.B /DEST pdfmark
+end
+ -2 883 a Black Black 562 1014 a
+SDict begin H.S end
+ 562
+1014 a 562 1014 a
+SDict begin 13 H.A end
+ 562 1014 a 562 1014 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2253) cvn H.B /DEST pdfmark
+end
+ 562 1014 a FC(The)j(unpri)n
+(vile)o(ged)d(yule)j(user)g(must)g(ha)n(v)o(e)g(a)1886
+1014 y
+SDict begin H.S end
+ 1886 1014 a 1886 1014 a
+SDict begin 13 H.A end
+ 1886 1014 a 1886 1014
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2254) cvn H.B /DEST pdfmark
+end
+ 1886 1014 a Fr(.gnupg)g FC(subdirectory)e(in)i(its)i(home)d
+(directory)-5 b(,)18 b(holding)g(the)562 1122 y(public)i(k)o(e)o(yring)
+e(with)i(the)h(k)o(e)o(y)e(to)h(v)o(erify)f(the)h(signature.)-2
+1223 y
+SDict begin H.S end
+ -2 1223 a -2 1223 a
+SDict begin 13 H.A end
+ -2 1223 a -2 1223 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2256) cvn H.B /DEST pdfmark
+end
+ -2 1223
+a 396 1313 a FC(PID)h(\002le)-2 1314 y
+SDict begin H.S end
+ -2 1314 a -2 1314
+a
+SDict begin 13 H.A end
+ -2 1314 a -2 1314 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2257) cvn H.B /DEST pdfmark
+end
+ -2 1314 a Black Black 562 1463
+a
+SDict begin H.S end
+ 562 1463 a 562 1463 a
+SDict begin 13 H.A end
+ 562 1463 a 562 1463 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2258) cvn H.B /DEST pdfmark
+end
+ 562 1463
+a FC(The)f(PID)h(\002le)g(is)g(written)f(with)g(before)f(dropping)e
+(root)j(pri)n(vile)o(ges.)e(Therefore)2915 1463 y
+SDict begin H.S end
+ 2915
+1463 a 2915 1463 a
+SDict begin 13 H.A end
+ 2915 1463 a 2915 1463 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2259) cvn H.B /DEST pdfmark
+end
+ 2915 1463
+a FC(yule)i(will)h(not)f(be)g(able)g(to)562 1571 y(o)o(v)o(erwrite)f
+(it)i(later)f(\(which)f(is)i(a)g(GoodThing\),)c(or)j(remo)o(v)o(e)e(it)
+j(upon)e(e)o(xit)h(\(it)g(will)h(usually)f(be)g(able)g(to)562
+1679 y(recognize)f(and)g(handle)g(a)i(stale)g(PID)g(\002le)f(on)g
+(startup\).)f(Still,)i(it)g(may)f(be)g(a)h(good)d(idea)j(to)f(remo)o(v)
+o(e)e(it)j(after)562 1786 y(stopping)869 1786 y
+SDict begin H.S end
+ 869 1786
+a 869 1786 a
+SDict begin 13 H.A end
+ 869 1786 a 869 1786 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2260) cvn H.B /DEST pdfmark
+end
+ 869 1786 a FC(yule.)f(The)f(pro)o
+(vided)f(start/stop)i(scripts)h(for)e(v)n(arious)g(architectures)g
+(will)i(handle)e(this.)-2 1846 y
+SDict begin H.S end
+ -2 1846 a -2 1846 a
+SDict begin 13 H.A end
+
+-2 1846 a -2 1846 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CLIENTS) cvn H.B /DEST pdfmark
+end
+ -2 1846 a 359 x Fu(6.3.)39 b(Registering)e(a)j(c)m
+(lient)1599 2205 y
+SDict begin H.S end
+ 1599 2205 a 1599 2205 a
+SDict begin 22.464 H.A end
+ 1599 2205
+a 1599 2205 a
+SDict begin [ /View [/XYZ H.V] /Dest (8.50.1) cvn H.B /DEST pdfmark
+end
+ 1599 2205 a -2 2403 a
+SDict begin H.S end
+ -2 2403 a -2 2403
+a
+SDict begin 13 H.A end
+ -2 2403 a -2 2403 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2263) cvn H.B /DEST pdfmark
+end
+ -2 2403 a 396 2479 a FC(Clients)21
+b(must)g(be)f(re)o(gistered)f(with)1449 2479 y
+SDict begin H.S end
+ 1449 2479
+a 1449 2479 a
+SDict begin 13 H.A end
+ 1449 2479 a 1449 2479 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2264) cvn H.B /DEST pdfmark
+end
+ 1449 2479 a FC(yule)h(to)g(mak)o
+(e)g(a)g(connection.)2361 2479 y
+SDict begin H.S end
+ 2361 2479 a 2361 2479
+a
+SDict begin 13 H.A end
+ 2361 2479 a 2361 2479 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2265) cvn H.B /DEST pdfmark
+end
+ 2361 2479 a Fx(Connection)f(attempts)h(by)g
+(unknown)e(clients)396 2587 y(will)k(be)e(r)m(ejected.)g
+FC(The)f(respecti)n(v)o(e)g(section)h(in)h(the)f(serv)o(er)f
+(con\002guration)f(\002le)j(looks)e(lik)o(e:)-2 2688
+y
+SDict begin H.S end
+ -2 2688 a -2 2688 a
+SDict begin 11.7 H.A end
+ -2 2688 a -2 2688 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2266) cvn H.B /DEST pdfmark
+end
+ -2 2688 a 486
+2767 a Fr([Clients])486 2864 y(#)486 2961 y(#)45 b(A)f(client)486
+3059 y(#)486 3156 y(Client=HOSTNAME_CLIENT1@salt1@verifier1)486
+3253 y(#)486 3350 y(#)h(another)e(one)486 3447 y(#)486
+3544 y(Client=HOSTNAME_CLIENT2@salt2@verifier2)486 3641
+y(#)-2 3809 y
+SDict begin H.S end
+ -2 3809 a -2 3809 a
+SDict begin 13 H.A end
+ -2 3809 a -2 3809 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2267) cvn H.B /DEST pdfmark
+end
+
+-2 3809 a 396 3915 a FC(These)20 b(entries)g(ha)n(v)o(e)g(to)g(be)g
+(computed)f(in)h(the)g(follo)n(wing)f(w)o(ay:)-2 4099
+y
+SDict begin H.S end
+ -2 4099 a -2 4099 a
+SDict begin 13 H.A end
+ -2 4099 a -2 4099 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2268) cvn H.B /DEST pdfmark
+end
+ -2 4099 a -2
+4099 a
+SDict begin H.S end
+ -2 4099 a -2 4099 a
+SDict begin 13 H.A end
+ -2 4099 a -2 4099 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2269) cvn H.B /DEST pdfmark
+end
+ -2 4099
+a -2 4109 a
+SDict begin H.S end
+ -2 4109 a -2 4109 a
+SDict begin 13 H.A end
+ -2 4109 a -2 4109 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2270) cvn H.B /DEST pdfmark
+end
+ -2
+4109 a Black 463 4252 a FC(1.)p Black 546 4252 a
+SDict begin H.S end
+ 546
+4252 a 546 4252 a
+SDict begin 13 H.A end
+ 546 4252 a 546 4252 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2271) cvn H.B /DEST pdfmark
+end
+ 546 4252 a FC(Choose)h(a)873
+4252 y
+SDict begin H.S end
+ 873 4252 a 873 4252 a
+SDict begin 13 H.A end
+ 873 4252 a 873 4252 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2272) cvn H.B /DEST pdfmark
+end
+ 873
+4252 a Fx(passwor)m(d)i FC(\(16)e(chars)g(he)o(xadecimal,)e(i.e.)i
+(only)f(0)h(--)g(9,)g(a)h(--)f(f,)g(A)h(--)f(F)h(allo)n(wed.)e(T)-7
+b(o)21 b(generate)e(a)546 4360 y(random)f(passw)o(ord,)h(you)h(may)f
+(use:)-2 4419 y
+SDict begin H.S end
+ -2 4419 a -2 4419 a
+SDict begin 11.7 H.A end
+ -2 4419 a -2 4419
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2273) cvn H.B /DEST pdfmark
+end
+ -2 4419 a 904 4498 a
+SDict begin H.S end
+ 904 4498 a 904 4498 a
+SDict begin 11.7 H.A end
+ 904 4498
+a 904 4498 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2274) cvn H.B /DEST pdfmark
+end
+ 904 4498 a Ft(sh$)1066 4498 y
+SDict begin H.S end
+ 1066 4498
+a 1066 4498 a
+SDict begin 11.7 H.A end
+ 1066 4498 a 1066 4498 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2275) cvn H.B /DEST pdfmark
+end
+ 1066 4498 a Fs(yule)41
+b(--gen-password)-2 4595 y
+SDict begin H.S end
+ -2 4595 a -2 4595 a
+SDict begin 13 H.A end
+ -2 4595
+a -2 4595 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2276) cvn H.B /DEST pdfmark
+end
+ -2 4595 a Black 463 4745 a FC(2.)p Black
+546 4745 a
+SDict begin H.S end
+ 546 4745 a 546 4745 a
+SDict begin 13 H.A end
+ 546 4745 a 546 4745
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2277) cvn H.B /DEST pdfmark
+end
+ 546 4745 a FC(Use)21 b(the)f(program)1120 4745 y
+SDict begin H.S end
+ 1120
+4745 a 1120 4745 a
+SDict begin 13 H.A end
+ 1120 4745 a 1120 4745 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2278) cvn H.B /DEST pdfmark
+end
+ 1120 4745
+a Fy(samhain_setpwd)g FC(to)g(reset)h(the)f(passw)o(ord)g(in)g(the)g
+(compiled)2987 4745 y
+SDict begin H.S end
+ 2987 4745 a 2987 4745 a
+SDict begin 13 H.A end
+ 2987 4745
+a 2987 4745 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2279) cvn H.B /DEST pdfmark
+end
+ 2987 4745 a Fx(client)i FC(binary)c(\(that)i(is,)546
+4853 y
+SDict begin H.S end
+ 546 4853 a 546 4853 a
+SDict begin 13 H.A end
+ 546 4853 a 546 4853 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2280) cvn H.B /DEST pdfmark
+end
+ 546
+4853 a FC(samhain,)f(not)991 4853 y
+SDict begin H.S end
+ 991 4853 a 991 4853
+a
+SDict begin 13 H.A end
+ 991 4853 a 991 4853 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2281) cvn H.B /DEST pdfmark
+end
+ 991 4853 a FC(yule\))g(to)h(the)h(one)e(you)h
+(ha)n(v)o(e)f(chosen.)2122 4853 y
+SDict begin H.S end
+ 2122 4853 a 2122 4853
+a
+SDict begin 13 H.A end
+ 2122 4853 a 2122 4853 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2282) cvn H.B /DEST pdfmark
+end
+ 2122 4853 a Fy(samhain_setpwd)h
+FC(tak)o(es)h(three)f(ar)o(guments:)e(\(1\))h(the)546
+4961 y(binary)g(name,)g(\(2\))g(an)i(e)o(xtension)d(to)j(append)d(to)j
+(the)f(ne)n(w)g(binary)-5 b(,)18 b(and)i(\(3\))f(the)h(passw)o(ord.)g
+(It)g(will)h(read)f(the)546 5069 y(e)o(x)o(ecutable)e(binary)h(\(ar)o
+(gument)e(1\),)j(insert)g(the)g(passw)o(ord)g(\(ar)o(gument)d(3\),)j
+(and)g(write)g(a)h(modi\002ed)e(binary)546 5176 y(with)h(the)g
+(speci\002ed)g(e)o(xtension)f(\(ar)o(gument)e(2\).)j(Run)2120
+5176 y
+SDict begin H.S end
+ 2120 5176 a 2120 5176 a
+SDict begin 13 H.A end
+ 2120 5176 a 2120 5176
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2283) cvn H.B /DEST pdfmark
+end
+ 2120 5176 a Fy(samhain_setpwd)g FC(without)g(ar)o(guments)e(for)i
+(usage)546 5284 y(information.)d(Example:)p Black 3661
+5805 a Fx(64)p Black eop end
+%%Page: 65 70
+TeXDict begin 65 69 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.65) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2731 104 a
+Fx(Chapter)20 b(6.)g(yule,)g(the)g(lo)o(g)g(server)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 11.7 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2284) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 904 309 a
+SDict begin H.S end
+ 904 309 a 904 309 a
+SDict begin 11.7 H.A end
+ 904 309 a 904 309
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2285) cvn H.B /DEST pdfmark
+end
+ 904 309 a Ft(sh$)1066 309 y
+SDict begin H.S end
+ 1066 309 a 1066 309 a
+SDict begin 11.7 H.A end
+ 1066
+309 a 1066 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2286) cvn H.B /DEST pdfmark
+end
+ 1066 309 a Fs(samhain_setpwd)45 b(samhain)e(EXT)e
+(0123456789ABCDEF)-2 406 y
+SDict begin H.S end
+ -2 406 a -2 406 a
+SDict begin 13 H.A end
+ -2 406 a
+-2 406 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2287) cvn H.B /DEST pdfmark
+end
+ -2 406 a Black 463 555 a FC(3.)p Black 546 555
+a
+SDict begin H.S end
+ 546 555 a 546 555 a
+SDict begin 13 H.A end
+ 546 555 a 546 555 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2288) cvn H.B /DEST pdfmark
+end
+ 546 555 a FC(Use)21
+b(the)f(serv)o(er')-5 b(s)19 b(con)m(v)o(enience)f(function)g('-P')i
+(to)g(create)g(a)h(re)o(gistration)d(entry)-5 b(.)19
+b(Example:)-2 615 y
+SDict begin H.S end
+ -2 615 a -2 615 a
+SDict begin 11.7 H.A end
+ -2 615 a -2 615
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2289) cvn H.B /DEST pdfmark
+end
+ -2 615 a 904 694 a
+SDict begin H.S end
+ 904 694 a 904 694 a
+SDict begin 11.7 H.A end
+ 904 694 a 904
+694 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2290) cvn H.B /DEST pdfmark
+end
+ 904 694 a Ft(sh$)1066 694 y
+SDict begin H.S end
+ 1066 694 a 1066 694
+a
+SDict begin 11.7 H.A end
+ 1066 694 a 1066 694 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2291) cvn H.B /DEST pdfmark
+end
+ 1066 694 a Fs(yule)41 b(-P)h(0123456789ABCDEF)
+-2 791 y
+SDict begin H.S end
+ -2 791 a -2 791 a
+SDict begin 13 H.A end
+ -2 791 a -2 791 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2292) cvn H.B /DEST pdfmark
+end
+ -2 791 a
+Black 463 940 a FC(4.)p Black 546 940 a
+SDict begin H.S end
+ 546 940 a 546
+940 a
+SDict begin 13 H.A end
+ 546 940 a 546 940 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2293) cvn H.B /DEST pdfmark
+end
+ 546 940 a FC(The)20 b(output)f(will)h(look)g
+(lik)o(e:)-2 1125 y
+SDict begin H.S end
+ -2 1125 a -2 1125 a
+SDict begin 13 H.A end
+ -2 1125 a -2
+1125 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2294) cvn H.B /DEST pdfmark
+end
+ -2 1125 a -2 1125 a
+SDict begin H.S end
+ -2 1125 a -2 1125 a
+SDict begin 13 H.A end
+ -2 1125
+a -2 1125 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2295) cvn H.B /DEST pdfmark
+end
+ -2 1125 a 546 1214 a Fx(Client=HOSTN)n(AME@salt@veri\002er)
+-2 1397 y
+SDict begin H.S end
+ -2 1397 a -2 1397 a
+SDict begin 13 H.A end
+ -2 1397 a -2 1397 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2296) cvn H.B /DEST pdfmark
+end
+ -2
+1397 a 546 1488 a FC(Y)-9 b(ou)19 b(no)n(w)h(ha)n(v)o(e)g(to)g(replace)
+1382 1488 y
+SDict begin H.S end
+ 1382 1488 a 1382 1488 a
+SDict begin 13 H.A end
+ 1382 1488 a 1382
+1488 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2297) cvn H.B /DEST pdfmark
+end
+ 1382 1488 a Fx(HOSTN)n(AME)i FC(with)f(the)f(fully)f
+(quali\002ed)h(domain)f(name)g(of)h(the)g(host)g(on)546
+1596 y(which)f(the)i(client)f(should)f(run)g(\()1498
+1596 y
+SDict begin H.S end
+ 1498 1596 a 1498 1596 a
+SDict begin 13 H.A end
+ 1498 1596 a 1498 1596
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2298) cvn H.B /DEST pdfmark
+end
+ 1498 1596 a Fx(e)n(xception)p FC(:)g(if)i(the)f(serv)o(er)f(cannot)g
+(determine)g(the)h(fully)g(quali\002ed)546 1704 y(hostname,)e(you)i
+(may)f(need)h(to)g(use)h(the)f(numerical)f(address)g(instead.)h(Y)-9
+b(ou)20 b(will)h(see)f(the)h(problem)d(in)i(a)546 1812
+y('Connection)e(refused')h(message)h(from)f(the)h(serv)o(er\).)438
+1931 y
+SDict begin H.S end
+ 438 1931 a 438 1931 a
+SDict begin 13 H.A end
+ 438 1931 a 438 1931 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2299) cvn H.B /DEST pdfmark
+end
+ 438
+1931 a Black 463 2080 a FC(5.)p Black 546 2080 a
+SDict begin H.S end
+ 546
+2080 a 546 2080 a
+SDict begin 13 H.A end
+ 546 2080 a 546 2080 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2300) cvn H.B /DEST pdfmark
+end
+ 546 2080 a FC(Put)g(the)f(re)o
+(gistration)f(entry)h(into)g(the)h(serv)o(ers')-5 b(s)19
+b(con\002guration)e(\002le,)j(under)e(the)h(section)h(heading)3444
+2080 y
+SDict begin H.S end
+ 3444 2080 a 3444 2080 a
+SDict begin 13 H.A end
+ 3444 2080 a 3444 2080
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2301) cvn H.B /DEST pdfmark
+end
+ 3444 2080 a Fx([Clients])546 2188 y FC(\(see)p 0 TeXcolorgray
+700 2188 a
+SDict begin H.S end
+ 700 2188 a FC(Section)g(6.3)1075 2188 y
+SDict begin 13 H.L end
+ 1075
+2188 a 1075 2188 a
+SDict begin [ /Subtype /Link /Dest (0:CLIENTS) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1075 2188 a Black -1 w FC(>\).)g(Y)-9
+b(ou)19 b(need)h(to)g(send)g(SIGHUP)h(to)f(the)g(serv)o(er)f(for)h(the)
+g(ne)n(w)g(entry)g(to)g(tak)o(e)g(ef)n(fect.)-2 2206
+y
+SDict begin H.S end
+ -2 2206 a -2 2206 a
+SDict begin 13 H.A end
+ -2 2206 a -2 2206 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2303) cvn H.B /DEST pdfmark
+end
+ -2 2206 a Black
+463 2337 a FC(6.)p Black 546 2337 a
+SDict begin H.S end
+ 546 2337 a 546 2337
+a
+SDict begin 13 H.A end
+ 546 2337 a 546 2337 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2304) cvn H.B /DEST pdfmark
+end
+ 546 2337 a FC(Repeat)g(steps)g(\(1\))f(--)h
+(\(5\))f(for)g(an)o(y)g(number)f(of)h(clients)h(you)f(need)g
+(\(actually)-5 b(,)18 b(you)h(need)g(a)h(re)o(gistration)f(entry)546
+2445 y(for)g(each)g(client')-5 b(s)20 b(host,)g(b)n(ut)f(you)g(don')o
+(t)f(neccesarily)h(need)g(dif)n(ferent)f(passw)o(ords)h(for)h(each)f
+(client.)g(I.e.)h(you)546 2553 y(may)f(skip)i(steps)f(\(1\))g(--)g
+(\(3\)\).)-2 2869 y
+SDict begin H.S end
+ -2 2869 a -2 2869 a
+SDict begin 13 H.A end
+ -2 2869 a -2
+2869 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2305) cvn H.B /DEST pdfmark
+end
+ -2 2869 a 396 2977 a FC(If)g(you)e(ha)n(v)o(e)h(a)h(def)o(ault)f
+(directory)f(layout,)h(a)1723 2977 y
+SDict begin H.S end
+ 1723 2977 a 1723
+2977 a
+SDict begin 13 H.A end
+ 1723 2977 a 1723 2977 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2306) cvn H.B /DEST pdfmark
+end
+ 1723 2977 a Fx([Clients])i
+FC(section)e(right)g(at)h(the)g(end)f(of)g(the)h(serv)o(er)f(con\002g)f
+(\002le,)i(and)396 3085 y(your)f(client)h(is)i(client.mydomain.com,)15
+b(then)20 b(you)f(could)g(e.g.)h(do:)-2 3269 y
+SDict begin H.S end
+ -2 3269
+a -2 3269 a
+SDict begin 13 H.A end
+ -2 3269 a -2 3269 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2307) cvn H.B /DEST pdfmark
+end
+ -2 3269 a -2 3352 a
+SDict begin H.S end
+ -2
+3352 a -2 3352 a
+SDict begin 11.7 H.A end
+ -2 3352 a -2 3352 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2308) cvn H.B /DEST pdfmark
+end
+ -2 3352 a -2 3352
+a
+SDict begin H.S end
+ -2 3352 a -2 3352 a
+SDict begin 11.7 H.A end
+ -2 3352 a -2 3352 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2309) cvn H.B /DEST pdfmark
+end
+ -2 3352 a 396
+3431 a Ft(bash$)643 3431 y
+SDict begin H.S end
+ 643 3431 a 643 3431 a
+SDict begin 11.7 H.A end
+ 643
+3431 a 643 3431 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2310) cvn H.B /DEST pdfmark
+end
+ 643 3431 a Fs(PASSWD=`yule)44 b(--gen-password`)-2
+3440 y
+SDict begin H.S end
+ -2 3440 a -2 3440 a
+SDict begin 11.7 H.A end
+ -2 3440 a -2 3440 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2311) cvn H.B /DEST pdfmark
+end
+ -2 3440
+a 396 3528 a Ft(bash$)643 3528 y
+SDict begin H.S end
+ 643 3528 a 643 3528
+a
+SDict begin 11.7 H.A end
+ 643 3528 a 643 3528 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2312) cvn H.B /DEST pdfmark
+end
+ 643 3528 a Fs(samhain_setpwd)h(samhain)e(new)e
+($PASSWD)-2 3537 y
+SDict begin H.S end
+ -2 3537 a -2 3537 a
+SDict begin 11.7 H.A end
+ -2 3537 a -2 3537
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2313) cvn H.B /DEST pdfmark
+end
+ -2 3537 a 396 3625 a Ft(bash$)643 3625 y
+SDict begin H.S end
+ 643 3625 a
+643 3625 a
+SDict begin 11.7 H.A end
+ 643 3625 a 643 3625 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2314) cvn H.B /DEST pdfmark
+end
+ 643 3625 a Fs(scp)g(samhain.new)85
+b(root@client.mydomain)q(.co)q(m:/)q(us)q(r/l)q(oca)q(l/s)q(bin)q(/sa)q
+(mha)q(in)-2 3634 y
+SDict begin H.S end
+ -2 3634 a -2 3634 a
+SDict begin 11.7 H.A end
+ -2 3634 a -2
+3634 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2315) cvn H.B /DEST pdfmark
+end
+ -2 3634 a 396 3722 a Ft(bash$)643 3722 y
+SDict begin H.S end
+ 643 3722
+a 643 3722 a
+SDict begin 11.7 H.A end
+ 643 3722 a 643 3722 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2316) cvn H.B /DEST pdfmark
+end
+ 643 3722 a Fs(ENTRY=`yule)44
+b(-P)d($PASSWD)i(|)e(sed)g(s\045HOSTNAME\045client.m)q(ydo)q(mai)q(n.c)
+q(om\045)q(`)-2 3739 y
+SDict begin H.S end
+ -2 3739 a -2 3739 a
+SDict begin 11.7 H.A end
+ -2 3739 a
+-2 3739 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2317) cvn H.B /DEST pdfmark
+end
+ -2 3739 a 396 3819 a Ft(bash$)643 3819 y
+SDict begin H.S end
+ 643
+3819 a 643 3819 a
+SDict begin 11.7 H.A end
+ 643 3819 a 643 3819 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2318) cvn H.B /DEST pdfmark
+end
+ 643 3819 a Fs(echo)h($ENTRY)g
+(>>)f(/etc/yulerc)-2 3828 y
+SDict begin H.S end
+ -2 3828 a -2 3828 a
+SDict begin 11.7 H.A end
+ -2 3828
+a -2 3828 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2319) cvn H.B /DEST pdfmark
+end
+ -2 3828 a 396 3916 a Ft(bash$)643 3916 y
+SDict begin H.S end
+
+643 3916 a 643 3916 a
+SDict begin 11.7 H.A end
+ 643 3916 a 643 3916 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2320) cvn H.B /DEST pdfmark
+end
+ 643 3916
+a Fs(kill)h(-HUP)f(`cat)h(/var/run/yule.pid`)-2 4117
+y
+SDict begin H.S end
+ -2 4117 a -2 4117 a
+SDict begin 13 H.A end
+ -2 4117 a -2 4117 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:ENABLING-LOGGING-TO-THE-SERVER)
+cvn H.B /DEST pdfmark end
+ -2 4117 a 378
+x Fu(6.4.)d(Enab)o(ling)e(log)o(ging)h(to)h(the)g(ser)q(ver)2341
+4495 y
+SDict begin H.S end
+ 2341 4495 a 2341 4495 a
+SDict begin 22.464 H.A end
+ 2341 4495 a 2341 4495
+a
+SDict begin [ /View [/XYZ H.V] /Dest (8.51.1) cvn H.B /DEST pdfmark
+end
+ 2341 4495 a -2 4693 a
+SDict begin H.S end
+ -2 4693 a -2 4693 a
+SDict begin 13 H.A end
+ -2 4693 a
+-2 4693 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2323) cvn H.B /DEST pdfmark
+end
+ -2 4693 a 396 4769 a FC(If)20 b(the)g(client)f(is)i(properly)
+d(re)o(gistered)g(with)i(the)g(serv)o(er)m(,)e(all)j(you)e(need)g(to)h
+(do)f(is)i(to)f(set)g(an)g(appropriate)d(threshold)396
+4877 y(for)j(remote)f(logging)g(in)h(the)g(client')-5
+b(s)21 b(con\002guration)c(\002le,)k(and)f(gi)n(v)o(e)f(the)h(IP)h
+(address)e(of)h(the)h(serv)o(er)e(\(if)h(not)396 4985
+y(already)f(compiled)g(in\).)h(Of)g(course,)f(the)i(client)f(must)g(be)
+g(compiled)f(with)h(the)2721 4985 y
+SDict begin H.S end
+ 2721 4985 a 2721
+4985 a
+SDict begin 13 H.A end
+ 2721 4985 a 2721 4985 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2324) cvn H.B /DEST pdfmark
+end
+ 2721 4985 a Fy(--enable-netw)o
+(ork=client)396 5093 y FC(switch.)-2 5259 y
+SDict begin H.S end
+ -2 5259 a
+-2 5259 a
+SDict begin 13 H.A end
+ -2 5259 a -2 5259 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2325) cvn H.B /DEST pdfmark
+end
+ -2 5259 a 396 5367 a FC(Example)f(for)h
+(client)g(con\002guration:)p Black 3661 5805 a Fx(65)p
+Black eop end
+%%Page: 66 71
+TeXDict begin 66 70 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.66) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2731 104 a
+Fx(Chapter)20 b(6.)g(yule,)g(the)g(lo)o(g)g(server)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 11.7 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2326) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 486 309 a Fr([Log])486 406 y(#)486 503 y(#)45 b(Threshold)e(for)h
+(forwarding)f(to)i(the)f(log)h(server)486 600 y(#)486
+697 y(ExportSeverity=crit)486 892 y([Misc])486 1086 y(SetLogServer=IP)d
+(address)-2 1264 y
+SDict begin H.S end
+ -2 1264 a -2 1264 a
+SDict begin 13 H.A end
+ -2 1264 a -2 1264
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2327) cvn H.B /DEST pdfmark
+end
+ -2 1264 a 396 1360 a FC(Example)19 b(for)h(serv)o(er)f
+(con\002guration:)-2 1461 y
+SDict begin H.S end
+ -2 1461 a -2 1461 a
+SDict begin 11.7 H.A end
+ -2 1461
+a -2 1461 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2328) cvn H.B /DEST pdfmark
+end
+ -2 1461 a 486 1540 a Fr([Clients])486 1637
+y(#)486 1734 y(#)45 b(Register)e(a)i(client)f(to)g(allow)g(it)h(to)f
+(connect)486 1831 y(#)486 1928 y
+(Client=client.mydomain.com@salt@verifie)o(r)-2 2023
+y
+SDict begin H.S end
+ -2 2023 a -2 2023 a
+SDict begin 13 H.A end
+ -2 2023 a -2 2023 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DATABASE-CONFIGURATION-FILE-DOWNLOAD)
+cvn H.B /DEST pdfmark end
+ -2 2023 a 366
+x Fu(6.5.)39 b(Enab)o(ling)e(baseline)h(database)g(/)i(con\002guration)
+c(\002le)-2 2575 y(do)n(wnload)h(fr)m(om)i(the)g(ser)q(ver)1749
+2575 y
+SDict begin H.S end
+ 1749 2575 a 1749 2575 a
+SDict begin 22.464 H.A end
+ 1749 2575 a 1749 2575
+a
+SDict begin [ /View [/XYZ H.V] /Dest (8.52.1) cvn H.B /DEST pdfmark
+end
+ 1749 2575 a -2 2743 a
+SDict begin H.S end
+ -2 2743 a -2 2743 a
+SDict begin 13 H.A end
+ -2 2743 a
+-2 2743 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2331) cvn H.B /DEST pdfmark
+end
+ -2 2743 a 396 2849 a FC(A)21 b(signi\002cant)f(adv)n(antage)e
+(of)1289 2849 y
+SDict begin H.S end
+ 1289 2849 a 1289 2849 a
+SDict begin 13 H.A end
+ 1289 2849 a 1289
+2849 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2332) cvn H.B /DEST pdfmark
+end
+ 1289 2849 a FC(samhain)h(is)i(the)g(option)e(to)h(store)g
+(baseline)g(databases)g(and)f(con\002guration)f(\002les)396
+2957 y(on)i(the)g(central)g(log)g(serv)o(er)f(\()1246
+2957 y
+SDict begin H.S end
+ 1246 2957 a 1246 2957 a
+SDict begin 13 H.A end
+ 1246 2957 a 1246 2957
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2333) cvn H.B /DEST pdfmark
+end
+ 1246 2957 a FC(yule\),)g(from)g(where)h(the)o(y)f(can)h(be)g(do)n
+(wnloaded)e(by)h(clients)i(upons)e(startup.)h(In)396
+3065 y(order)f(to)i(use)f(this)h(option,)d(clients)j(must)f(be)g
+(con\002gured)e(to)i(retrie)n(v)o(e)f(these)i(\002les)g(from)e(the)h
+(serv)o(er)g(rather)f(than)396 3173 y(from)g(the)i(local)f
+(\002lesystem.)-2 3191 y
+SDict begin H.S end
+ -2 3191 a -2 3191 a
+SDict begin 11.7 H.A end
+ -2 3191
+a -2 3191 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2334) cvn H.B /DEST pdfmark
+end
+ -2 3191 a -2 3315 a
+SDict begin H.S end
+ -2 3315 a -2 3315 a
+SDict begin 11.7 H.A end
+ -2
+3315 a -2 3315 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2336) cvn H.B /DEST pdfmark
+end
+ -2 3315 a 562 3395 a Fw(TIP:)g Fv(Ob)o(viously)-7
+b(,)19 b(retr)q(ie)n(ving)f(the)h(con\002gur)o(ation)f(\002le)i(from)g
+(the)g(log)f(ser)r(v)n(er)i(requires)d(that)i(the)f(IP)i(address)e(of)
+562 3492 y(the)h(log)f(ser)r(v)n(er)i(is)1111 3492 y
+SDict begin H.S end
+
+1111 3492 a 1111 3492 a
+SDict begin 11.7 H.A end
+ 1111 3492 a 1111 3492 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2337) cvn H.B /DEST pdfmark
+end
+ 1111
+3492 a Fq(compiled)e(in)q Fv(,)g(using)h(the)f(option)2080
+3492 y
+SDict begin H.S end
+ 2080 3492 a 2080 3492 a
+SDict begin 11.7 H.A end
+ 2080 3492 a 2080 3492
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2338) cvn H.B /DEST pdfmark
+end
+ 2080 3492 a Fw(./con\002gure)e(--with-logser)q(ver=HOST)p
+Fv(.)-2 3807 y
+SDict begin H.S end
+ -2 3807 a -2 3807 a
+SDict begin 13 H.A end
+ -2 3807 a -2 3807
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2339) cvn H.B /DEST pdfmark
+end
+ -2 3807 a 396 3915 a FC(Do)n(wnloaded)h(\002les)j(are)f(written)g(to)
+h(a)f(temporary)e(\002le)j(that)f(is)i(created)d(in)h(the)h(home)e
+(directory)f(of)i(the)g(ef)n(fecti)n(v)o(e)396 4023 y(user)g(\(usually)
+844 4023 y
+SDict begin H.S end
+ 844 4023 a 844 4023 a
+SDict begin 13 H.A end
+ 844 4023 a 844 4023
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2340) cvn H.B /DEST pdfmark
+end
+ 844 4023 a Fx(r)l(oot)q FC(.)g(The)g(\002lename)g(is)h(chosen)e(at)i
+(random,)d(the)i(\002le)h(is)g(opened)e(for)g(writing)h(after)g
+(checking)396 4131 y(that)h(it)f(does)g(not)g(e)o(xist)h(already)-5
+b(,)18 b(and)i(immediately)f(thereafter)f(unlink)o(ed.)h(Thus)g(the)i
+(name)e(of)h(the)g(\002le)h(will)g(be)396 4239 y(deleted)f(from)f(the)h
+(\002lesystem,)g(b)n(ut)h(the)f(\002le)h(itself)f(will)h(remain)f(in)g
+(e)o(xistence)f(until)h(the)h(\002le)g(descriptor)396
+4347 y(referring)d(it)j(is)g(closed)f(\(see)1238 4347
+y
+SDict begin H.S end
+ 1238 4347 a 1238 4347 a
+SDict begin 13 H.A end
+ 1238 4347 a 1238 4347 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2341) cvn H.B /DEST pdfmark
+end
+ 1238
+4347 a Fy(man)g(unlink)p FC(\),)h(or)f(the)g(process)g(e)o(xits)g(\(on)
+g(e)o(xit,)g(all)g(open)g(\002le)g(descriptors)396 4455
+y(belonging)e(to)i(the)h(process)e(are)i(closed\).)-2
+4473 y
+SDict begin H.S end
+ -2 4473 a -2 4473 a
+SDict begin 13 H.A end
+ -2 4473 a -2 4473 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CONFIGURATION-FILE-DOWNLOAD)
+cvn H.B /DEST pdfmark end
+ -2 4473
+a 396 4783 a Fp(6.5.1.)36 b(Con\002guration)d(\002le)1717
+4783 y
+SDict begin H.S end
+ 1717 4783 a 1717 4783 a
+SDict begin 18.72 H.A end
+ 1717 4783 a 1717 4783
+a
+SDict begin [ /View [/XYZ H.V] /Dest (8.52.29.2) cvn H.B /DEST pdfmark
+end
+ 1717 4783 a -2 4975 a
+SDict begin H.S end
+ -2 4975 a -2 4975 a
+SDict begin 13 H.A end
+ -2 4975 a
+-2 4975 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2344) cvn H.B /DEST pdfmark
+end
+ -2 4975 a 396 5057 a FC(If)20 b(the)h(compiled-in)d(path)h
+(to)i(the)f(con\002guration)d(\002le)k(be)o(gins)e(with)i(the)f
+(special)g(v)n(alue)396 5165 y(\223REQ_FR)m(OM_SER)-7
+b(VER\224,)20 b(the)1426 5165 y
+SDict begin H.S end
+ 1426 5165 a 1426 5165
+a
+SDict begin 13 H.A end
+ 1426 5165 a 1426 5165 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2345) cvn H.B /DEST pdfmark
+end
+ 1426 5165 a Fx(client)i FC(will)f(request)f
+(to)g(do)n(wnload)e(the)i(con\002guration)e(\002le)j(from)3370
+5165 y
+SDict begin H.S end
+ 3370 5165 a 3370 5165 a
+SDict begin 13 H.A end
+ 3370 5165 a 3370 5165
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2346) cvn H.B /DEST pdfmark
+end
+ 3370 5165 a FC(yule)e(\(i.e.)396 5273 y(from)g(the)i(serv)o(er\).)p
+Black 3660 5805 a Fx(66)p Black eop end
+%%Page: 67 72
+TeXDict begin 67 71 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.67) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2731 104 a
+Fx(Chapter)20 b(6.)g(yule,)g(the)g(lo)o(g)g(server)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2347) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a FC(If)g(\223REQ_FR)m(OM_SER)-7 b(VER\224)20
+b(is)i(follo)n(wed)c(by)i(a)h(path,)e(the)2218 309 y
+SDict begin H.S end
+
+2218 309 a 2218 309 a
+SDict begin 13 H.A end
+ 2218 309 a 2218 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2348) cvn H.B /DEST pdfmark
+end
+ 2218 309
+a Fx(client)i FC(will)g(use)g(the)f(path)g(follo)n(wing)396
+417 y(\223REQ_FR)m(OM_SER)-7 b(VER\224)20 b(as)h(a)g(f)o(allback)e(if)i
+(\()1818 417 y
+SDict begin H.S end
+ 1818 417 a 1818 417 a
+SDict begin 13 H.A end
+ 1818 417 a 1818
+417 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2349) cvn H.B /DEST pdfmark
+end
+ 1818 417 a Fx(and)e(only)g(if)12 b FC(\))21 b(it)g(is)g
+(initializing)f(the)g(database.)f(This)i(is)g(a)396 525
+y(con)m(v)o(enience)c(feature)h(to)i(allo)n(w)f(initializing)g(the)g
+(database\(s\))f(before)g(the)i(client)f(is)i(re)o(gistered)d(with)h
+(the)h(serv)o(er)-5 b(.)-2 709 y
+SDict begin H.S end
+ -2 709 a -2 709 a
+SDict begin 13 H.A end
+ -2
+709 a -2 709 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2350) cvn H.B /DEST pdfmark
+end
+ -2 709 a 396 799 a FC(Example:)735 799
+y
+SDict begin H.S end
+ 735 799 a 735 799 a
+SDict begin 13 H.A end
+ 735 799 a 735 799 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2351) cvn H.B /DEST pdfmark
+end
+ 735 799 a Fy(./con\002gur)o
+(e)19 b(--with-con\002g-\002le=REQ_FR)n(OM_SER)-5 b(VER/etc/conf)o
+(.samhain)17 b FC(In)i(this)i(case,)396 906 y(the)f(client)h(will)g
+(request)e(to)h(do)n(wnload)f(the)h(con\002guration)d(\002le)k(from)e
+(the)i(serv)o(er)-5 b(.)19 b(If)h(the)g(connection)e(to)j(the)396
+1014 y(serv)o(er)f(f)o(ails,)g(it)h(will)g(e)o(xit)f(on)g(error)f(if)h
+(run)g(in)g('check')f(mode,)g(b)n(ut)h(f)o(allback)f(to)2731
+1014 y
+SDict begin H.S end
+ 2731 1014 a 2731 1014 a
+SDict begin 13 H.A end
+ 2731 1014 a 2731 1014
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2352) cvn H.B /DEST pdfmark
+end
+ 2731 1014 a Fr(/etc/conf.samhain)f FC(as)j(its)396
+1122 y(con\002guration)d(\002le,)i(if)h(run)e(in)i('init')e(mode.)-2
+1140 y
+SDict begin H.S end
+ -2 1140 a -2 1140 a
+SDict begin 11.7 H.A end
+ -2 1140 a -2 1140 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2353) cvn H.B /DEST pdfmark
+end
+ -2 1140
+a -2 1265 a
+SDict begin H.S end
+ -2 1265 a -2 1265 a
+SDict begin 11.7 H.A end
+ -2 1265 a -2 1265 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2355) cvn H.B /DEST pdfmark
+end
+ -2
+1265 a 562 1344 a Fw(NO)m(TE:)g Fv(F)n(or)f(ob)o(vious)f(secur)q(ity)i
+(reasons)o(,)e(the)h(client)g(cannot)f(specify)i(the)f(path)f(to)i(the)
+f(con\002gur)o(ation)e(\002le)i(on)562 1441 y(the)i(ser)r(v)n(er)h
+(side)o(.)e(The)h(ser)r(v)n(er)g(will)g(lookup)f(the)g(con\002gur)o
+(ation)f(\002le)i(using)g(only)g(the)f(hostname)g(of)h(the)g(client)562
+1538 y(and)g(the)f(compiled-in)f(path)h(f)n(or)h(the)g('localstatedir')
+c(\(see)k(belo)o(w\).)f(The)g(def)n(ault)f(f)n(or)i('localstatedir')c
+(is)3536 1538 y
+SDict begin H.S end
+ 3536 1538 a 3536 1538 a
+SDict begin 11.7 H.A end
+ 3536 1538 a 3536
+1538 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2356) cvn H.B /DEST pdfmark
+end
+ 3536 1538 a Ft(/var)p Fv(.)-2 1854 y
+SDict begin H.S end
+ -2 1854 a
+-2 1854 a
+SDict begin 13 H.A end
+ -2 1854 a -2 1854 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2357) cvn H.B /DEST pdfmark
+end
+ -2 1854 a 396 1962 a FC(The)k(serv)o(er)f
+(will)i(search)f(for)g(the)g(con\002guration)d(\002le)k(to)g(send)f(in)
+g(the)g(follo)n(wing)f(order)g(of)h(priority)e(\(paths)i(are)396
+2070 y(e)o(xplained)f(in)p 0 TeXcolorgray 824 2070 a
+SDict begin H.S end
+
+824 2070 a FC(Section)h(A.5)1217 2070 y
+SDict begin 13 H.L end
+ 1217 2070 a 1217
+2070 a
+SDict begin [ /Subtype /Link /Dest (0:PATHS) cvn /H /I /Border [0 0
+0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1217 2070 a Black -1 w FC(>\).)1332 2070 y
+SDict begin H.S end
+ 1332
+2070 a 1332 2070 a
+SDict begin 13 H.A end
+ 1332 2070 a 1332 2070 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2359) cvn H.B /DEST pdfmark
+end
+ 1332 2070
+a Fx(CLIENTN)n(AME)j FC(is)e(the)f(hostname)f(of)h(the)g(client')-5
+b(s)21 b(host,)f(as)h(listed)f(in)h(the)396 2178 y(serv)o(er')-5
+b(s)20 b(con\002g)f(\002le)i(in)f(the)1237 2178 y
+SDict begin H.S end
+ 1237
+2178 a 1237 2178 a
+SDict begin 13 H.A end
+ 1237 2178 a 1237 2178 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2360) cvn H.B /DEST pdfmark
+end
+ 1237 2178
+a Fy(Clients)h FC(section:)-2 2362 y
+SDict begin H.S end
+ -2 2362 a -2 2362
+a
+SDict begin 13 H.A end
+ -2 2362 a -2 2362 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2361) cvn H.B /DEST pdfmark
+end
+ -2 2362 a -2 2362 a
+SDict begin H.S end
+ -2 2362 a -2
+2362 a
+SDict begin 13 H.A end
+ -2 2362 a -2 2362 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2362) cvn H.B /DEST pdfmark
+end
+ -2 2362 a -2 2372 a
+SDict begin H.S end
+ -2 2372
+a -2 2372 a
+SDict begin 13 H.A end
+ -2 2372 a -2 2372 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2363) cvn H.B /DEST pdfmark
+end
+ -2 2372 a Black 463 2514
+a FC(1.)p Black 546 2514 a
+SDict begin H.S end
+ 546 2514 a 546 2514 a
+SDict begin 13 H.A end
+ 546
+2514 a 546 2514 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2364) cvn H.B /DEST pdfmark
+end
+ 546 2514 a 546 2514 a
+SDict begin H.S end
+ 546 2514 a 546
+2514 a
+SDict begin 13 H.A end
+ 546 2514 a 546 2514 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2365) cvn H.B /DEST pdfmark
+end
+ 546 2514 a Fr
+(localstatedir/lib/yule/rc.CLIENTNAME)-2 2526 y
+SDict begin H.S end
+ -2 2526
+a -2 2526 a
+SDict begin 13 H.A end
+ -2 2526 a -2 2526 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2366) cvn H.B /DEST pdfmark
+end
+ -2 2526 a Black 463 2663
+a FC(2.)p Black 546 2663 a
+SDict begin H.S end
+ 546 2663 a 546 2663 a
+SDict begin 13 H.A end
+ 546
+2663 a 546 2663 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2367) cvn H.B /DEST pdfmark
+end
+ 546 2663 a 546 2663 a
+SDict begin H.S end
+ 546 2663 a 546
+2663 a
+SDict begin 13 H.A end
+ 546 2663 a 546 2663 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2368) cvn H.B /DEST pdfmark
+end
+ 546 2663 a Fr(localstatedir/lib/yule/rc)-2
+2823 y
+SDict begin H.S end
+ -2 2823 a -2 2823 a
+SDict begin 13 H.A end
+ -2 2823 a -2 2823 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DATABASE-FILE-DOWNLOAD) cvn
+H.B /DEST pdfmark end
+ -2 2823
+a 396 3151 a Fp(6.5.2.)36 b(Database)f(\002le)1465 3151
+y
+SDict begin H.S end
+ 1465 3151 a 1465 3151 a
+SDict begin 18.72 H.A end
+ 1465 3151 a 1465 3151 a
+SDict begin [ /View [/XYZ H.V] /Dest (8.52.30.2) cvn H.B /DEST pdfmark
+end
+ 1465
+3151 a -2 3319 a
+SDict begin H.S end
+ -2 3319 a -2 3319 a
+SDict begin 13 H.A end
+ -2 3319 a -2 3319
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2371) cvn H.B /DEST pdfmark
+end
+ -2 3319 a 396 3425 a FC(If)20 b(the)h(compiled-in)d(path)h(to)i(the)f
+(database)f(\002le)i(be)o(gins)f(with)g(the)g(special)g(v)n(alue)g
+(\223REQ_FR)m(OM_SER)-7 b(VER\224,)396 3533 y(the)518
+3533 y
+SDict begin H.S end
+ 518 3533 a 518 3533 a
+SDict begin 13 H.A end
+ 518 3533 a 518 3533 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2372) cvn H.B /DEST pdfmark
+end
+ 518
+3533 a Fx(client)22 b FC(will)f(request)f(to)g(do)n(wnload)e(the)i
+(database)g(\002le)h(from)2305 3533 y
+SDict begin H.S end
+ 2305 3533 a 2305
+3533 a
+SDict begin 13 H.A end
+ 2305 3533 a 2305 3533 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2373) cvn H.B /DEST pdfmark
+end
+ 2305 3533 a FC(yule)f(\(i.e.)f(from)h
+(the)g(serv)o(er\).)-2 3551 y
+SDict begin H.S end
+ -2 3551 a -2 3551 a
+SDict begin 11.7 H.A end
+ -2
+3551 a -2 3551 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2374) cvn H.B /DEST pdfmark
+end
+ -2 3551 a 745 3651 2668 17 v 745 4497
+17 846 v 1843 3804 a Fp(CA)-10 b(VEA)f(T)786 3972 y
+SDict begin H.S end
+ 786
+3972 a 786 3972 a
+SDict begin 11.7 H.A end
+ 786 3972 a 786 3972 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2376) cvn H.B /DEST pdfmark
+end
+ 786 3972 a 95
+x Fv(\223REQ_FR)o(OM_SER)l(VER\224)1624 4067 y
+SDict begin H.S end
+ 1624 4067
+a 1624 4067 a
+SDict begin 11.7 H.A end
+ 1624 4067 a 1624 4067 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2377) cvn H.B /DEST pdfmark
+end
+ 1624 4067 a Fq(m)o(ust)28
+b Fv(be)20 b(f)n(ollo)o(w)o(ed)d(b)o(y)j(a)h(path)e(that)g(will)h(be)g
+(used)f(f)n(or)786 4165 y(wr)q(iting)g(the)h(database)e(\002le)i(when)
+1793 4165 y
+SDict begin H.S end
+ 1793 4165 a 1793 4165 a
+SDict begin 11.7 H.A end
+ 1793 4165 a 1793
+4165 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2378) cvn H.B /DEST pdfmark
+end
+ 1793 4165 a Fq(initializing)t Fv(.)c(Upon)j(initialization,)d
+(the)k(database)e(is)786 4262 y(alw)o(a)n(ys)i(wr)q(itten)f(to)h(a)h
+(local)e(\002le)o(,)h(and)f(m)o(ust)i(be)f(copied)f(with)2556
+4262 y
+SDict begin H.S end
+ 2556 4262 a 2556 4262 a
+SDict begin 11.7 H.A end
+ 2556 4262 a 2556 4262
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2379) cvn H.B /DEST pdfmark
+end
+ 2556 4262 a Fw(scp)g Fv(to)h(the)g(ser)r(v)n(er)h(\(the)786
+4359 y(client)f(cannot)1227 4359 y
+SDict begin H.S end
+ 1227 4359 a 1227 4359
+a
+SDict begin 11.7 H.A end
+ 1227 4359 a 1227 4359 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2380) cvn H.B /DEST pdfmark
+end
+ 1227 4359 a Fq(upload)25 b
+Fv(the)20 b(database)e(\002le)i(to)g(the)g(ser)r(v)n(er)l(,)h(as)f
+(this)g(w)o(ould)f(open)g(a)786 4456 y(secur)q(ity)i(hole\).)p
+3396 4497 17 846 v 745 4513 2668 17 v -2 4690 a
+SDict begin H.S end
+ -2 4690
+a -2 4690 a
+SDict begin 13 H.A end
+ -2 4690 a -2 4690 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2381) cvn H.B /DEST pdfmark
+end
+ -2 4690 a 396 4747 a
+FC(Example:)735 4747 y
+SDict begin H.S end
+ 735 4747 a 735 4747 a
+SDict begin 13 H.A end
+ 735 4747
+a 735 4747 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2382) cvn H.B /DEST pdfmark
+end
+ 735 4747 a Fy(--with-data-\002le=REQ_FR)n(OM_SER)-5
+b(VER/v)o(ar/lib/samhain/data.samhain)16 b FC(In)k(this)h(case,)396
+4855 y(the)f(client)h(will)g(request)e(to)h(do)n(wnload)f(the)h
+(database)f(\002le)i(from)e(the)i(serv)o(er)e(if)2719
+4855 y
+SDict begin H.S end
+ 2719 4855 a 2719 4855 a
+SDict begin 13 H.A end
+ 2719 4855 a 2719 4855
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2383) cvn H.B /DEST pdfmark
+end
+ 2719 4855 a Fx(c)o(hec)n(king)p FC(,)g(and)h(will)h(create)f(a)396
+4963 y(local)g(database)g(\002le)1012 4963 y
+SDict begin H.S end
+ 1012 4963
+a 1012 4963 a
+SDict begin 13 H.A end
+ 1012 4963 a 1012 4963 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2384) cvn H.B /DEST pdfmark
+end
+ 1012 4963 a Fr
+(/var/lib/samhain/data.samhain)c FC(if)2404 4963 y
+SDict begin H.S end
+ 2404
+4963 a 2404 4963 a
+SDict begin 13 H.A end
+ 2404 4963 a 2404 4963 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2385) cvn H.B /DEST pdfmark
+end
+ 2404 4963
+a Fx(initializing)p FC(.)k(Y)-9 b(ou)19 b(ha)n(v)o(e)h(to)g(use)3352
+4963 y
+SDict begin H.S end
+ 3352 4963 a 3352 4963 a
+SDict begin 13 H.A end
+ 3352 4963 a 3352 4963
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2386) cvn H.B /DEST pdfmark
+end
+ 3352 4963 a Fy(scp)h FC(to)f(cop)o(y)396 5071 y(the)g(\002le)h
+(signature)e(database)h(to)g(the)h(serv)o(er)e(then.)-2
+5089 y
+SDict begin H.S end
+ -2 5089 a -2 5089 a
+SDict begin 11.7 H.A end
+ -2 5089 a -2 5089 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2387) cvn H.B /DEST pdfmark
+end
+ -2 5089
+a Black 3658 5805 a Fx(67)p Black eop end
+%%Page: 68 73
+TeXDict begin 68 72 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.68) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2731 104 a
+Fx(Chapter)20 b(6.)g(yule,)g(the)g(lo)o(g)g(server)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 11.7 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2389) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 562 309 a Fw(NO)m(TE:)h Fv(F)n(or)e(ob)o(vious)g(secur)q(ity)h
+(reasons)o(,)f(the)h(client)f(cannot)g(specify)i(the)e(path)g(to)h(the)
+g(database)e(\002le)j(on)562 406 y(the)f(ser)r(v)n(er)h(side)o(.)e(The)
+h(ser)r(v)n(er)g(will)g(lookup)f(the)g(databse)g(\002le)h(using)g(only)
+f(the)h(hostname)f(of)h(the)g(client)f(and)562 503 y(the)h(compiled-in)
+e(path)h(f)n(or)h(the)f('localstatedir')e(\(see)j(belo)o(w\).)e(The)i
+(def)n(ault)e(f)n(or)h('localstatedir')e(is)3391 503
+y
+SDict begin H.S end
+ 3391 503 a 3391 503 a
+SDict begin 11.7 H.A end
+ 3391 503 a 3391 503 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2390) cvn H.B /DEST pdfmark
+end
+ 3391 503
+a Ft(/var)p Fv(.)-2 818 y
+SDict begin H.S end
+ -2 818 a -2 818 a
+SDict begin 13 H.A end
+ -2 818 a
+-2 818 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2391) cvn H.B /DEST pdfmark
+end
+ -2 818 a 396 926 a FC(The)j(serv)o(er)f(will)i(search)f(for)g
+(the)g(database)g(\002le)g(to)h(send)f(in)g(the)g(follo)n(wing)f(order)
+g(of)h(priority)e(\(see)p 0 TeXcolorgray 396 1034 a
+SDict begin H.S end
+ 396
+1034 a FC(Section)i(A.5)789 1034 y
+SDict begin 13 H.L end
+ 789 1034 a 789 1034
+a
+SDict begin [ /Subtype /Link /Dest (0:PATHS) cvn /H /I /Border [0 0
+0] /Color [1 0 0] H.B /ANN pdfmark end
+ 789 1034 a Black -1 w FC(>\).)904 1034 y
+SDict begin H.S end
+ 904 1034 a
+904 1034 a
+SDict begin 13 H.A end
+ 904 1034 a 904 1034 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2393) cvn H.B /DEST pdfmark
+end
+ 904 1034 a Fx(CLIENTN)n(AME)j
+FC(is)e(the)f(hostname)f(of)h(the)h(client')-5 b(s)20
+b(host,)g(as)h(listed)g(in)f(the)g(serv)o(er')-5 b(s)20
+b(con\002g)f(\002le)396 1142 y(in)i(the)604 1142 y
+SDict begin H.S end
+ 604
+1142 a 604 1142 a
+SDict begin 13 H.A end
+ 604 1142 a 604 1142 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2394) cvn H.B /DEST pdfmark
+end
+ 604 1142 a Fy(Clients)g
+FC(section:)-2 1309 y
+SDict begin H.S end
+ -2 1309 a -2 1309 a
+SDict begin 13 H.A end
+ -2 1309 a -2
+1309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2395) cvn H.B /DEST pdfmark
+end
+ -2 1309 a -2 1309 a
+SDict begin H.S end
+ -2 1309 a -2 1309 a
+SDict begin 13 H.A end
+ -2 1309
+a -2 1309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2396) cvn H.B /DEST pdfmark
+end
+ -2 1309 a -2 1319 a
+SDict begin H.S end
+ -2 1319 a -2 1319 a
+SDict begin 13 H.A end
+ -2
+1319 a -2 1319 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2397) cvn H.B /DEST pdfmark
+end
+ -2 1319 a Black 463 1478 a FC(1.)p Black
+546 1478 a
+SDict begin H.S end
+ 546 1478 a 546 1478 a
+SDict begin 13 H.A end
+ 546 1478 a 546 1478
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2398) cvn H.B /DEST pdfmark
+end
+ 546 1478 a 546 1478 a
+SDict begin H.S end
+ 546 1478 a 546 1478 a
+SDict begin 13 H.A end
+ 546 1478
+a 546 1478 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2399) cvn H.B /DEST pdfmark
+end
+ 546 1478 a Fr(localstatedir/lib/yule/file.CLIENTNAM)o(E)-2
+1490 y
+SDict begin H.S end
+ -2 1490 a -2 1490 a
+SDict begin 13 H.A end
+ -2 1490 a -2 1490 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2400) cvn H.B /DEST pdfmark
+end
+ -2 1490
+a Black 463 1628 a FC(2.)p Black 546 1628 a
+SDict begin H.S end
+ 546 1628
+a 546 1628 a
+SDict begin 13 H.A end
+ 546 1628 a 546 1628 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2401) cvn H.B /DEST pdfmark
+end
+ 546 1628 a 546 1628
+a
+SDict begin H.S end
+ 546 1628 a 546 1628 a
+SDict begin 13 H.A end
+ 546 1628 a 546 1628 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2402) cvn H.B /DEST pdfmark
+end
+ 546 1628
+a Fr(localstatedir/lib/yule/file)-2 1871 y
+SDict begin H.S end
+ -2 1871 a
+-2 1871 a
+SDict begin 13 H.A end
+ -2 1871 a -2 1871 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SERVER-LOGGING) cvn H.B /DEST
+pdfmark end
+ -2 1871 a 377 x Fu(6.6.)39
+b(Rules)f(f)m(or)i(log)o(ging)d(of)i(c)m(lient)g(messa)o(g)q(es)2775
+2248 y
+SDict begin H.S end
+ 2775 2248 a 2775 2248 a
+SDict begin 22.464 H.A end
+ 2775 2248 a 2775 2248
+a
+SDict begin [ /View [/XYZ H.V] /Dest (8.53.1) cvn H.B /DEST pdfmark
+end
+ 2775 2248 a -2 2446 a
+SDict begin H.S end
+ -2 2446 a -2 2446 a
+SDict begin 13 H.A end
+ -2 2446 a
+-2 2446 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2405) cvn H.B /DEST pdfmark
+end
+ -2 2446 a 396 2522 a FC(As)21 b(the)f(log)g(serv)o(er)g(may)f
+(recei)n(v)o(e)g(quite)h(a)h(lar)o(ge)e(number)g(of)g(log)h(messages)h
+(from)e(clients)h(\(depending)e(on)h(the)396 2630 y(number)g(of)h
+(clients)g(and)g(their)g(threshold)e(settings\),)i(client)h(messages)f
+(are)g(treated)g(specially)g(and)f(by)h(def)o(ault)396
+2738 y(are)g(only)g(logged)e(to)j(f)o(acilities)g(suitable)f(for)f(b)n
+(ulk)h(logging:)f(console,)g(log)h(\002le,)g(relational)f(database)h
+(\(if)396 2846 y(enabled\),)f(and)g(e)o(xternal)g(\(if)h(enabled\).)-2
+3027 y
+SDict begin H.S end
+ -2 3027 a -2 3027 a
+SDict begin 13 H.A end
+ -2 3027 a -2 3027 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2406) cvn H.B /DEST pdfmark
+end
+ -2 3027
+a 396 3120 a FC(T)-7 b(o)20 b(o)o(v)o(erride)d(this)j(beha)n(vior)m(,)e
+(you)g(can)i(set)g(the)g(option)2009 3120 y
+SDict begin H.S end
+ 2009 3120
+a 2009 3120 a
+SDict begin 13 H.A end
+ 2009 3120 a 2009 3120 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2407) cvn H.B /DEST pdfmark
+end
+ 2009 3120 a Fy(UseClientSe)o(v)o
+(erity=)2692 3120 y
+SDict begin H.S end
+ 2692 3120 a 2692 3120 a
+SDict begin 13 H.A end
+ 2692 3120
+a 2692 3120 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2408) cvn H.B /DEST pdfmark
+end
+ 2692 3120 a Fl(yes)f FC(in)h(the)3052 3120
+y
+SDict begin H.S end
+ 3052 3120 a 3052 3120 a
+SDict begin 13 H.A end
+ 3052 3120 a 3052 3120 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2409) cvn H.B /DEST pdfmark
+end
+ 3052
+3120 a Fx([Misc])h FC(section)f(of)f(the)396 3228 y(con\002guration)f
+(\002le.)i(In)g(that)h(case,)f(the)g(client)g(message)g(se)n(v)o(erity)
+g(is)h(used,)f(and)f(client)h(messages)h(are)f(treated)396
+3335 y(just)h(lik)o(e)f(local)h(messages)f(\(i.e.)g(lik)o(e)g(those)g
+(from)f(the)i(serv)o(er)e(itself\).)-2 3519 y
+SDict begin H.S end
+ -2 3519
+a -2 3519 a
+SDict begin 13 H.A end
+ -2 3519 a -2 3519 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2410) cvn H.B /DEST pdfmark
+end
+ -2 3519 a 396 3609 a
+FC(If)h(you)g(also)g(w)o(ant)g(to)h(\002lter)f(by)g(message)g(class,)h
+(there)f(is)h(also)f(an)h(option)2574 3609 y
+SDict begin H.S end
+ 2574 3609
+a 2574 3609 a
+SDict begin 13 H.A end
+ 2574 3609 a 2574 3609 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2411) cvn H.B /DEST pdfmark
+end
+ 2574 3609 a Fy(UseClientClass=)
+3156 3609 y
+SDict begin H.S end
+ 3156 3609 a 3156 3609 a
+SDict begin 13 H.A end
+ 3156 3609 a 3156
+3609 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2412) cvn H.B /DEST pdfmark
+end
+ 3156 3609 a Fl(yes)-2 3793 y
+SDict begin H.S end
+ -2 3793 a -2 3793
+a
+SDict begin 13 H.A end
+ -2 3793 a -2 3793 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2413) cvn H.B /DEST pdfmark
+end
+ -2 3793 a 396 3883 a FC(All)g(client)f(messages)h
+(are)f(recorded)e(in)i(the)h(main)e(log)h(\002le)h(by)f(def)o(ault.)f
+(Ho)n(we)n(v)o(er)m(,)f(it)j(is)g(possible)f(to)g(use)396
+3991 y(separate)g(log)g(\002les)h(for)f(indi)n(vidual)e(clients.)i
+(This)h(can)f(be)g(enabled)f(with)2557 3991 y
+SDict begin H.S end
+ 2557 3991
+a 2557 3991 a
+SDict begin 13 H.A end
+ 2557 3991 a 2557 3991 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2414) cvn H.B /DEST pdfmark
+end
+ 2557 3991 a Fy(UseSeparateLogs=)
+3219 3991 y
+SDict begin H.S end
+ 3219 3991 a 3219 3991 a
+SDict begin 13 H.A end
+ 3219 3991 a 3219
+3991 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2415) cvn H.B /DEST pdfmark
+end
+ 3219 3991 a Fl(yes/no)h FC(in)g(the)396 4099 y
+SDict begin H.S end
+
+396 4099 a 396 4099 a
+SDict begin 13 H.A end
+ 396 4099 a 396 4099 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2416) cvn H.B /DEST pdfmark
+end
+ 396 4099
+a Fx(Misc)h FC(section)f(of)g(the)g(serv)o(er)g(con\002guration)d
+(\002le.)k(No)f(locking)f(will)i(be)f(performed)e(for)h(such)h
+(separate)g(client)396 4207 y(log)g(\002les)h(\(only)e(one)h(instance)g
+(of)g(the)g(serv)o(er)f(can)h(listen)h(on)f(the)g(TCP)h(port,)e(thus)h
+(there)g(will)h(be)f(no)g(concurrent)396 4315 y(access\).)-2
+4340 y
+SDict begin H.S end
+ -2 4340 a -2 4340 a
+SDict begin 13 H.A end
+ -2 4340 a -2 4340 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:GCM) cvn H.B /DEST pdfmark
+end
+ -2 4340
+a 363 x Fu(6.7.)39 b(Detecting)e(')-11 b(dead')38 b(c)m(lients)1866
+4703 y
+SDict begin H.S end
+ 1866 4703 a 1866 4703 a
+SDict begin 22.464 H.A end
+ 1866 4703 a 1866 4703
+a
+SDict begin [ /View [/XYZ H.V] /Dest (8.54.1) cvn H.B /DEST pdfmark
+end
+ 1866 4703 a -2 4901 a
+SDict begin H.S end
+ -2 4901 a -2 4901 a
+SDict begin 13 H.A end
+ -2 4901 a
+-2 4901 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2419) cvn H.B /DEST pdfmark
+end
+ -2 4901 a 396 4977 a FC(It)21 b(is)g(possible)f(to)g(set)h(a)
+g(time)f(limit)h(for)e(the)i(maximum)d(time)i(between)g(tw)o(o)g
+(consecuti)n(v)o(e)f(messages)h(of)g(a)g(client)396 5085
+y(\(option)657 5085 y
+SDict begin H.S end
+ 657 5085 a 657 5085 a
+SDict begin 13 H.A end
+ 657 5085
+a 657 5085 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2420) cvn H.B /DEST pdfmark
+end
+ 657 5085 a Fy(SetClientT)o(imeLimit)g FC(in)h(the)f
+([Misc])g(section)g(of)g(the)g(con\002guration)e(\002le\).)i(If)g(the)g
+(time)g(limit)h(is)396 5192 y(e)o(xceeded)e(without)g(a)i(message)f
+(from)f(the)h(client,)g(the)g(serv)o(er)g(will)h(issue)f(a)h(w)o
+(arning.)e(The)h(def)o(ault)f(is)i(86400)396 5300 y(seconds)f(\(one)f
+(day\);)h(specifying)e(a)j(v)n(alue)e(of)h(0)g(will)h(switch)g(of)n(f)e
+(this)i(option.)p Black 3661 5805 a Fx(68)p Black eop
+end
+%%Page: 69 74
+TeXDict begin 69 73 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.69) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2472) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2731 104 a Fx(Chapter)20
+b(6.)g(yule,)g(the)g(lo)o(g)g(server)p Black -2 226 a
+SDict begin H.S end
+
+-2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2421) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309
+a FC(Y)-9 b(ou)20 b(may)g(w)o(ant)g(to)g(set)1094 309
+y
+SDict begin H.S end
+ 1094 309 a 1094 309 a
+SDict begin 13 H.A end
+ 1094 309 a 1094 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2422) cvn H.B /DEST pdfmark
+end
+ 1094 309
+a Fy(ExportSe)o(v)o(erity)e(=)k(mark)e FC(\(or)g(an)o(y)f(lo)n(wer)h
+(threshold\))e(in)i(the)h(client)f(con\002guration)d(\002le)396
+417 y(in)k(order)e(to)h(log)g(timestamp)f(\('heartbeat'\))f(messages)i
+(to)h(the)f(serv)o(er)-5 b(.)-2 445 y
+SDict begin H.S end
+ -2 445 a -2 445
+a
+SDict begin 13 H.A end
+ -2 445 a -2 445 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SERVER-STATUS-INFORMATION)
+cvn H.B /DEST pdfmark end
+ -2 445 a 359 x Fu(6.8.)39 b(The)g(HTML)f(ser)q(ver)
+h(status)g(pa)o(g)q(e)2281 804 y
+SDict begin H.S end
+ 2281 804 a 2281 804
+a
+SDict begin 22.464 H.A end
+ 2281 804 a 2281 804 a
+SDict begin [ /View [/XYZ H.V] /Dest (8.55.1) cvn H.B /DEST pdfmark
+end
+ 2281 804 a -2 1002 a
+SDict begin H.S end
+ -2 1002
+a -2 1002 a
+SDict begin 13 H.A end
+ -2 1002 a -2 1002 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2425) cvn H.B /DEST pdfmark
+end
+ -2 1002 a -2 1002 a
+SDict begin H.S end
+ -2
+1002 a -2 1002 a
+SDict begin 13 H.A end
+ -2 1002 a -2 1002 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2426) cvn H.B /DEST pdfmark
+end
+ -2 1002 a 396 1078
+a FC(yule)19 b(writes)h(the)g(current)e(status)i(to)g(a)g(HTML)f
+(\002le.)h(The)g(def)o(ault)e(name)h(of)h(this)g(\002le)g(is)2942
+1078 y
+SDict begin H.S end
+ 2942 1078 a 2942 1078 a
+SDict begin 13 H.A end
+ 2942 1078 a 2942 1078
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2427) cvn H.B /DEST pdfmark
+end
+ 2942 1078 a Fr(samhain.html)p FC(,)e(and)h(by)396 1186
+y(def)o(ault)h(it)h(is)g(placed)e(in)1113 1186 y
+SDict begin H.S end
+ 1113
+1186 a 1113 1186 a
+SDict begin 13 H.A end
+ 1113 1186 a 1113 1186 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2428) cvn H.B /DEST pdfmark
+end
+ 1113 1186
+a Fr(/var/log)p FC(.)-2 1370 y
+SDict begin H.S end
+ -2 1370 a -2 1370 a
+SDict begin 13 H.A end
+ -2
+1370 a -2 1370 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2429) cvn H.B /DEST pdfmark
+end
+ -2 1370 a 396 1460 a FC(The)h(\002le)h(contains)e(a)i
+(header)e(with)h(the)h(current)e(status)h(of)g(the)h(serv)o(er)e
+(\(starting)g(time,)h(current)f(time,)h(open)396 1568
+y(connections,)e(total)j(connections)d(since)i(start\),)h(and)e(a)i
+(table)f(that)g(lists)i(the)e(status)h(of)f(all)h(re)o(gistered)d
+(clients.)-2 1752 y
+SDict begin H.S end
+ -2 1752 a -2 1752 a
+SDict begin 13 H.A end
+ -2 1752 a -2
+1752 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2430) cvn H.B /DEST pdfmark
+end
+ -2 1752 a 396 1842 a FC(There)i(are)g(a)g(number)f(of)h
+(pre-de\002ned)d(e)n(v)o(ents)j(that)g(may)g(occur)f(for)h(a)g(client:)
+-2 1860 y
+SDict begin H.S end
+ -2 1860 a -2 1860 a
+SDict begin 13 H.A end
+ -2 1860 a -2 1860 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2431) cvn H.B /DEST pdfmark
+end
+ -2
+1860 a -2 1984 a
+SDict begin H.S end
+ -2 1984 a -2 1984 a
+SDict begin 13 H.A end
+ -2 1984 a -2 1984
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2433) cvn H.B /DEST pdfmark
+end
+ -2 1984 a 396 2074 a FC(Inacti)n(v)o(e)-2 2075 y
+SDict begin H.S end
+ -2
+2075 a -2 2075 a
+SDict begin 13 H.A end
+ -2 2075 a -2 2075 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2434) cvn H.B /DEST pdfmark
+end
+ -2 2075 a Black
+Black 562 2224 a
+SDict begin H.S end
+ 562 2224 a 562 2224 a
+SDict begin 13 H.A end
+ 562 2224 a 562
+2224 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2435) cvn H.B /DEST pdfmark
+end
+ 562 2224 a FC(The)g(client)g(has)h(not)f(connected)e(since)i
+(serv)o(er)g(startup.)-2 2325 y
+SDict begin H.S end
+ -2 2325 a -2 2325 a
+SDict begin 13 H.A end
+ -2
+2325 a -2 2325 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2437) cvn H.B /DEST pdfmark
+end
+ -2 2325 a 396 2415 a FC(Started)-2 2416
+y
+SDict begin H.S end
+ -2 2416 a -2 2416 a
+SDict begin 13 H.A end
+ -2 2416 a -2 2416 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2438) cvn H.B /DEST pdfmark
+end
+ -2 2416 a Black
+Black 562 2564 a
+SDict begin H.S end
+ 562 2564 a 562 2564 a
+SDict begin 13 H.A end
+ 562 2564 a 562
+2564 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2439) cvn H.B /DEST pdfmark
+end
+ 562 2564 a FC(The)g(client)g(has)h(started.)f(This)g(message)g
+(may)g(be)g(missing)g(if)g(the)h(client)f(w)o(as)h(already)e(running)f
+(at)j(serv)o(er)562 2672 y(startup.)-2 2773 y
+SDict begin H.S end
+ -2 2773
+a -2 2773 a
+SDict begin 13 H.A end
+ -2 2773 a -2 2773 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2441) cvn H.B /DEST pdfmark
+end
+ -2 2773 a 396 2863 a
+FC(Exited)-2 2864 y
+SDict begin H.S end
+ -2 2864 a -2 2864 a
+SDict begin 13 H.A end
+ -2 2864 a -2
+2864 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2442) cvn H.B /DEST pdfmark
+end
+ -2 2864 a Black Black 562 3013 a
+SDict begin H.S end
+ 562 3013 a 562
+3013 a
+SDict begin 13 H.A end
+ 562 3013 a 562 3013 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2443) cvn H.B /DEST pdfmark
+end
+ 562 3013 a FC(The)f(client)g(has)h(e)o
+(xited.)-2 3096 y
+SDict begin H.S end
+ -2 3096 a -2 3096 a
+SDict begin 13 H.A end
+ -2 3096 a -2 3096
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2445) cvn H.B /DEST pdfmark
+end
+ -2 3096 a 396 3203 a FC(Message)-2 3221 y
+SDict begin H.S end
+ -2 3221 a
+-2 3221 a
+SDict begin 13 H.A end
+ -2 3221 a -2 3221 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2446) cvn H.B /DEST pdfmark
+end
+ -2 3221 a Black Black 562
+3353 a
+SDict begin H.S end
+ 562 3353 a 562 3353 a
+SDict begin 13 H.A end
+ 562 3353 a 562 3353 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2447) cvn H.B /DEST pdfmark
+end
+ 562
+3353 a FC(The)f(client)g(has)h(sent)f(a)h(message.)-2
+3454 y
+SDict begin H.S end
+ -2 3454 a -2 3454 a
+SDict begin 13 H.A end
+ -2 3454 a -2 3454 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2449) cvn H.B /DEST pdfmark
+end
+ -2 3454
+a 396 3544 a FC(File)g(transfer)-2 3545 y
+SDict begin H.S end
+ -2 3545 a -2
+3545 a
+SDict begin 13 H.A end
+ -2 3545 a -2 3545 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2450) cvn H.B /DEST pdfmark
+end
+ -2 3545 a Black Black 562
+3693 a
+SDict begin H.S end
+ 562 3693 a 562 3693 a
+SDict begin 13 H.A end
+ 562 3693 a 562 3693 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2451) cvn H.B /DEST pdfmark
+end
+ 562
+3693 a FC(The)f(client)g(has)h(fetched)e(a)i(\002le)f(from)g(the)g
+(serv)o(er)-5 b(.)-2 3777 y
+SDict begin H.S end
+ -2 3777 a -2 3777 a
+SDict begin 13 H.A end
+ -2 3777
+a -2 3777 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2453) cvn H.B /DEST pdfmark
+end
+ -2 3777 a 396 3884 a FC(ILLEGAL)-2 3885 y
+SDict begin H.S end
+
+-2 3885 a -2 3885 a
+SDict begin 13 H.A end
+ -2 3885 a -2 3885 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2454) cvn H.B /DEST pdfmark
+end
+ -2 3885 a Black
+Black 562 4034 a
+SDict begin H.S end
+ 562 4034 a 562 4034 a
+SDict begin 13 H.A end
+ 562 4034 a 562
+4034 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2455) cvn H.B /DEST pdfmark
+end
+ 562 4034 a FC(Startup)20 b(without)f(prior)h(e)o(xit.)f(May)h
+(indicate)g(a)g(preceding)f(abnormal)f(termination.)-2
+4135 y
+SDict begin H.S end
+ -2 4135 a -2 4135 a
+SDict begin 13 H.A end
+ -2 4135 a -2 4135 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2457) cvn H.B /DEST pdfmark
+end
+ -2 4135
+a 396 4225 a FC(P)-8 b(ANIC)-2 4226 y
+SDict begin H.S end
+ -2 4226 a -2 4226
+a
+SDict begin 13 H.A end
+ -2 4226 a -2 4226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2458) cvn H.B /DEST pdfmark
+end
+ -2 4226 a Black Black 562 4374
+a
+SDict begin H.S end
+ 562 4374 a 562 4374 a
+SDict begin 13 H.A end
+ 562 4374 a 562 4374 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2459) cvn H.B /DEST pdfmark
+end
+ 562 4374
+a FC(The)20 b(client)g(has)h(encountered)c(a)k(f)o(atal)f(error)f
+(condition.)-2 4458 y
+SDict begin H.S end
+ -2 4458 a -2 4458 a
+SDict begin 13 H.A end
+ -2 4458 a -2
+4458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2461) cvn H.B /DEST pdfmark
+end
+ -2 4458 a 396 4565 a FC(F)-6 b(AILED)-2 4565 y
+SDict begin H.S end
+
+-2 4565 a -2 4565 a
+SDict begin 13 H.A end
+ -2 4565 a -2 4565 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2462) cvn H.B /DEST pdfmark
+end
+ -2 4565 a Black
+Black 562 4714 a
+SDict begin H.S end
+ 562 4714 a 562 4714 a
+SDict begin 13 H.A end
+ 562 4714 a 562
+4714 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2463) cvn H.B /DEST pdfmark
+end
+ 562 4714 a FC(An)21 b(unsuccessful)e(attempt)g(to)i(set)g(up)e
+(a)i(session)g(k)o(e)o(y)e(or)h(transfer)f(a)i(message.)-2
+4815 y
+SDict begin H.S end
+ -2 4815 a -2 4815 a
+SDict begin 13 H.A end
+ -2 4815 a -2 4815 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2465) cvn H.B /DEST pdfmark
+end
+ -2 4815
+a 396 4905 a FC(POLICY)-2 4906 y
+SDict begin H.S end
+ -2 4906 a -2 4906 a
+SDict begin 13 H.A end
+
+-2 4906 a -2 4906 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2466) cvn H.B /DEST pdfmark
+end
+ -2 4906 a Black Black 562 5055 a
+SDict begin H.S end
+
+562 5055 a 562 5055 a
+SDict begin 13 H.A end
+ 562 5055 a 562 5055 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2467) cvn H.B /DEST pdfmark
+end
+ 562 5055
+a FC(The)f(client)g(has)h(disco)o(v)o(ered)d(a)i(polic)o(y)f
+(violation.)p Black 3661 5805 a Fx(69)p Black eop end
+%%Page: 70 75
+TeXDict begin 70 74 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.70) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2536) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2731 104 a Fx(Chapter)20
+b(6.)g(yule,)g(the)g(lo)o(g)g(server)p Black -2 226 a
+SDict begin H.S end
+
+-2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2469) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309
+a FC(TIME_EXCEEDED)-2 319 y
+SDict begin H.S end
+ -2 319 a -2 319 a
+SDict begin 13 H.A end
+ -2 319
+a -2 319 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2470) cvn H.B /DEST pdfmark
+end
+ -2 319 a Black Black 562 458 a
+SDict begin H.S end
+ 562 458 a 562
+458 a
+SDict begin 13 H.A end
+ 562 458 a 562 458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2471) cvn H.B /DEST pdfmark
+end
+ 562 458 a FC(No)h(message)f(\(e.g.)f
+(timestamp\))g(has)i(been)e(recei)n(v)o(ed)g(from)g(the)h(client)g(for)
+g(a)g(de\002ned)g(amount)e(of)i(time)562 566 y(\(def)o(ault)f(1)i(day)
+-5 b(,)19 b(option)g(SetClientT)m(imeLimit\).)396 840
+y(F)o(or)h(each)g(client,)g(the)g(latest)h(e)n(v)o(ent)e(of)h(each)g
+(gi)n(v)o(en)f(type)h(is)h(listed.)f(Ev)o(ents)g(are)g(sorted)g(by)f
+(time.)i(Ev)o(ents)e(that)396 948 y(ha)n(v)o(e)h(not)g(occurred)e
+(\(yet\))h(are)i(not)e(listed.)-2 1132 y
+SDict begin H.S end
+ -2 1132 a -2
+1132 a
+SDict begin 13 H.A end
+ -2 1132 a -2 1132 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2473) cvn H.B /DEST pdfmark
+end
+ -2 1132 a 396 1222 a FC(It)i(is)g(possible)f
+(to)g(specify)g(templates)g(for)f(\(i\))h(the)h(\002le)f(header)m(,)f
+(\(ii\))h(a)h(single)f(table)g(entry)-5 b(,)19 b(and)g(\(iii\))i(the)f
+(\002le)h(end.)396 1330 y(T)-6 b(emplates)20 b(must)g(be)g(named)1281
+1330 y
+SDict begin H.S end
+ 1281 1330 a 1281 1330 a
+SDict begin 13 H.A end
+ 1281 1330 a 1281 1330
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2474) cvn H.B /DEST pdfmark
+end
+ 1281 1330 a Fr(head.html)p FC(,)1726 1330 y
+SDict begin H.S end
+ 1726 1330
+a 1726 1330 a
+SDict begin 13 H.A end
+ 1726 1330 a 1726 1330 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2475) cvn H.B /DEST pdfmark
+end
+ 1726 1330 a Fr(entry.html)p
+FC(,)e(and)2356 1330 y
+SDict begin H.S end
+ 2356 1330 a 2356 1330 a
+SDict begin 13 H.A end
+ 2356 1330
+a 2356 1330 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2476) cvn H.B /DEST pdfmark
+end
+ 2356 1330 a Fr(foot.html)p FC(,)h(respecti)n(v)o(ely)-5
+b(,)18 b(and)i(must)g(be)396 1438 y(located)g(in)g(the)g(data)g
+(directory)f(\(i.e.)1494 1438 y
+SDict begin H.S end
+ 1494 1438 a 1494 1438
+a
+SDict begin 13 H.A end
+ 1494 1438 a 1494 1438 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2477) cvn H.B /DEST pdfmark
+end
+ 1494 1438 a Fr(localstatedir/lib/yule/)p
+FC(,)d(see)p 0 TeXcolorgray 2693 1438 a
+SDict begin H.S end
+ 2693 1438 a FC(Section)k(A.5)
+3086 1438 y
+SDict begin 13 H.L end
+ 3086 1438 a 3086 1438 a
+SDict begin [ /Subtype /Link /Dest (0:PATHS) cvn /H /I /Border [0 0
+0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3086 1438 a Black
+-1 w FC(>\).)g(The)g(distrib)n(ution)396 1546 y(package)f(includes)g
+(tw)o(o)i(sample)f(\002les)1546 1546 y
+SDict begin H.S end
+ 1546 1546 a 1546
+1546 a
+SDict begin 13 H.A end
+ 1546 1546 a 1546 1546 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2479) cvn H.B /DEST pdfmark
+end
+ 1546 1546 a Fr(head.html)f
+FC(and)2111 1546 y
+SDict begin H.S end
+ 2111 1546 a 2111 1546 a
+SDict begin 13 H.A end
+ 2111 1546
+a 2111 1546 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2480) cvn H.B /DEST pdfmark
+end
+ 2111 1546 a Fr(foot.html)p FC(.)-2 1730
+y
+SDict begin H.S end
+ -2 1730 a -2 1730 a
+SDict begin 13 H.A end
+ -2 1730 a -2 1730 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2481) cvn H.B /DEST pdfmark
+end
+ -2 1730 a 396
+1820 a FC(The)h(follo)n(wing)f(replacements)f(will)j(be)g(made)e(in)h
+(the)h(head)e(template:)-2 1838 y
+SDict begin H.S end
+ -2 1838 a -2 1838 a
+SDict begin 13 H.A end
+
+-2 1838 a -2 1838 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2482) cvn H.B /DEST pdfmark
+end
+ -2 1838 a -2 1931 a
+SDict begin H.S end
+ -2 1931 a -2
+1931 a
+SDict begin 13 H.A end
+ -2 1931 a -2 1931 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2483) cvn H.B /DEST pdfmark
+end
+ -2 1931 a -2 1931 a
+SDict begin H.S end
+ -2 1931
+a -2 1931 a
+SDict begin 13 H.A end
+ -2 1931 a -2 1931 a
+SDict begin [ /View [/XYZ H.V] /Dest (table.10) cvn H.B /DEST pdfmark
+end
+ -2 1931 a 396 1934 3359
+4 v 396 1934 V 396 2059 4 125 v 424 2034 a FD(Placeholder)p
+2074 2059 V 1208 w(Signi\002cance)p 3751 2059 V 396 2062
+3359 4 v 396 2062 V 396 2187 4 125 v 424 2162 a FC(\045T)p
+2074 2187 V 1558 w(Current)g(time.)p 3751 2187 V 396
+2190 3359 4 v 396 2190 V 396 2315 4 125 v 424 2290 a(\045S)p
+2074 2315 V 1563 w(Startup)g(time.)p 3751 2315 V 396
+2318 3359 4 v 396 2318 V 396 2442 4 125 v 424 2418 a(\045L)p
+2074 2442 V 1558 w(T)m(ime)h(of)g(last)h(connection.)p
+3751 2442 V 396 2446 3359 4 v 396 2446 V 396 2570 4 125
+v 424 2545 a(\045O)p 2074 2570 V 1549 w(Open)e(connections.)p
+3751 2570 V 396 2574 3359 4 v 396 2574 V 396 2698 4 125
+v 424 2673 a(\045A)p 2074 2698 V 1549 w(T)-7 b(otal)20
+b(connections)f(since)h(startup.)p 3751 2698 V 396 2702
+3359 4 v 396 2702 V 396 2826 4 125 v 424 2801 a(\045M)p
+2074 2826 V 1535 w(Maximum)f(simultaneous)f(connections.)p
+3751 2826 V 396 2829 3359 4 v 396 2829 V -2 2995 a
+SDict begin H.S end
+ -2
+2995 a -2 2995 a
+SDict begin 13 H.A end
+ -2 2995 a -2 2995 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2507) cvn H.B /DEST pdfmark
+end
+ -2 2995 a 396 3078
+a FC(The)i(follo)n(wing)f(replacements)f(will)j(be)g(made)e(in)h(the)h
+(entry)e(template:)-2 3096 y
+SDict begin H.S end
+ -2 3096 a -2 3096 a
+SDict begin 13 H.A end
+ -2 3096
+a -2 3096 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2508) cvn H.B /DEST pdfmark
+end
+ -2 3096 a -2 3190 a
+SDict begin H.S end
+ -2 3190 a -2 3190 a
+SDict begin 13 H.A end
+ -2
+3190 a -2 3190 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2509) cvn H.B /DEST pdfmark
+end
+ -2 3190 a -2 3190 a
+SDict begin H.S end
+ -2 3190 a -2 3190
+a
+SDict begin 13 H.A end
+ -2 3190 a -2 3190 a
+SDict begin [ /View [/XYZ H.V] /Dest (table.11) cvn H.B /DEST pdfmark
+end
+ -2 3190 a 396 3193 3359 4 v 396
+3193 V 396 3318 4 125 v 424 3293 a FD(Placeholder)p 2074
+3318 V 1208 w(Signi\002cance)p 3751 3318 V 396 3321 3359
+4 v 396 3321 V 396 3446 4 125 v 424 3421 a FC(\045H)p
+2074 3446 V 1549 w(Host)h(name.)p 3751 3446 V 396 3449
+3359 4 v 396 3449 V 396 3573 4 125 v 424 3548 a(\045S)p
+2074 3573 V 1563 w(Ev)o(ent.)p 3751 3573 V 396 3577 3359
+4 v 396 3577 V 396 3701 4 125 v 424 3676 a(\045T)p 2074
+3701 V 1558 w(T)m(ime)g(of)g(e)n(v)o(ent.)p 3751 3701
+V 396 3705 3359 4 v 396 3705 V -2 3705 a
+SDict begin H.S end
+ -2 3705 a -2
+3705 a
+SDict begin 11.7 H.A end
+ -2 3705 a -2 3705 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2524) cvn H.B /DEST pdfmark
+end
+ -2 3705 a -2 3871 a
+SDict begin H.S end
+ -2 3871
+a -2 3871 a
+SDict begin 11.7 H.A end
+ -2 3871 a -2 3871 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2526) cvn H.B /DEST pdfmark
+end
+ -2 3871 a 562 3943 a
+Fw(TIP:)g Fv(A)h(liter)o(al)d('\045')j(in)f(the)f(HTML)h(output)f(m)o
+(ust)i(be)f(represented)d(b)o(y)j(a)h('\045)f(')h(\('\045')f(f)n(ollo)o
+(w)o(ed)e(b)o(y)i(space\))g(in)g(the)562 4040 y(template)o(.)-2
+4272 y
+SDict begin H.S end
+ -2 4272 a -2 4272 a
+SDict begin 13 H.A end
+ -2 4272 a -2 4272 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CHROOT) cvn H.B /DEST pdfmark
+end
+ -2 4272
+a 378 x Fu(6.9.)39 b(Chr)m(oot)746 4650 y
+SDict begin H.S end
+ 746 4650 a
+746 4650 a
+SDict begin 22.464 H.A end
+ 746 4650 a 746 4650 a
+SDict begin [ /View [/XYZ H.V] /Dest (8.56.1) cvn H.B /DEST pdfmark
+end
+ 746 4650 a -2 4817 a
+SDict begin H.S end
+
+-2 4817 a -2 4817 a
+SDict begin 13 H.A end
+ -2 4817 a -2 4817 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2529) cvn H.B /DEST pdfmark
+end
+ -2 4817 a 396
+4924 a FC(As)21 b(of)f(v)o(ersion)f(1.7.0,)1071 4924
+y
+SDict begin H.S end
+ 1071 4924 a 1071 4924 a
+SDict begin 13 H.A end
+ 1071 4924 a 1071 4924 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2530) cvn H.B /DEST pdfmark
+end
+ 1071
+4924 a FC(yuleis)h(able)g(to)g(chroot)f(itself)i(after)f(startup)f(and)
+h(initialization,)f(either)h(by)g(using)g(the)396 5031
+y(command)e(line)j(option)-2 5132 y
+SDict begin H.S end
+ -2 5132 a -2 5132
+a
+SDict begin 11.7 H.A end
+ -2 5132 a -2 5132 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2531) cvn H.B /DEST pdfmark
+end
+ -2 5132 a -2 5132 a
+SDict begin H.S end
+ -2 5132 a -2
+5132 a
+SDict begin 11.7 H.A end
+ -2 5132 a -2 5132 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2532) cvn H.B /DEST pdfmark
+end
+ -2 5132 a 396 5212 a Ft(bash$)596
+5212 y
+SDict begin H.S end
+ 596 5212 a 596 5212 a
+SDict begin 11.7 H.A end
+ 596 5212 a 596 5212 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2533) cvn H.B /DEST pdfmark
+end
+ 596
+5212 a 42 w Fs(yule)42 b(--chroot=)1200 5212 y
+SDict begin H.S end
+ 1200 5212
+a 1200 5212 a
+SDict begin 11.7 H.A end
+ 1200 5212 a 1200 5212 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2534) cvn H.B /DEST pdfmark
+end
+ 1200 5212 a Fd(/chrootdir)p
+Black 3661 5805 a Fx(70)p Black eop end
+%%Page: 71 76
+TeXDict begin 71 75 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.71) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2594) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2731 104 a Fx(Chapter)20
+b(6.)g(yule,)g(the)g(lo)o(g)g(server)p Black -2 226 a
+SDict begin H.S end
+
+-2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2535) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309
+a FC(or)g(by)g(requesting)f(it)h(in)h(the)f(con\002guration)e(\002le:)
+396 489 y Fr([Misc])396 586 y Fc(SetChrootDir=)p Fm(path)-2
+761 y
+SDict begin H.S end
+ -2 761 a -2 761 a
+SDict begin 13 H.A end
+ -2 761 a -2 761 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2539) cvn H.B /DEST pdfmark
+end
+ -2 761 a 396
+860 a FC(In)i(order)f(to)h(prepare)f(for)h(the)g(chroot)f(jail,)h(the)h
+(follo)n(wing)d(is)j(required:)-2 878 y
+SDict begin H.S end
+ -2 878 a -2 878
+a
+SDict begin 11.7 H.A end
+ -2 878 a -2 878 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2540) cvn H.B /DEST pdfmark
+end
+ -2 878 a -2 1002 a
+SDict begin H.S end
+ -2 1002 a -2 1002
+a
+SDict begin 11.7 H.A end
+ -2 1002 a -2 1002 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2542) cvn H.B /DEST pdfmark
+end
+ -2 1002 a 562 1082 a Fw(TIP:)f
+Fv(In)g(the)932 1082 y
+SDict begin H.S end
+ 932 1082 a 932 1082 a
+SDict begin 11.7 H.A end
+ 932 1082
+a 932 1082 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2543) cvn H.B /DEST pdfmark
+end
+ 932 1082 a Ft(scripts)j Fv(subdirector)r(y)c(of)h(the)g
+(source)g(director)r(y)f(there)g(is)i(a)f(scr)q(ipt)2956
+1082 y
+SDict begin H.S end
+ 2956 1082 a 2956 1082 a
+SDict begin 11.7 H.A end
+ 2956 1082 a 2956 1082
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2544) cvn H.B /DEST pdfmark
+end
+ 2956 1082 a Ft(chroot.sh)k Fv(to)c(perf)n(or)r(m)562
+1179 y(steps)h(\(4\))f(and)f(\(5\))h(\(only)g(f)n(or)g(Lin)o(ux\).)-2
+1494 y
+SDict begin H.S end
+ -2 1494 a -2 1494 a
+SDict begin 13 H.A end
+ -2 1494 a -2 1494 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2545) cvn H.B /DEST pdfmark
+end
+ -2 1494
+a -2 1494 a
+SDict begin H.S end
+ -2 1494 a -2 1494 a
+SDict begin 13 H.A end
+ -2 1494 a -2 1494 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2546) cvn H.B /DEST pdfmark
+end
+ -2
+1494 a -2 1577 a
+SDict begin H.S end
+ -2 1577 a -2 1577 a
+SDict begin 13 H.A end
+ -2 1577 a -2 1577
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2547) cvn H.B /DEST pdfmark
+end
+ -2 1577 a Black 463 1851 a FC(1.)p Black 546 1851 a
+SDict begin H.S end
+
+546 1851 a 546 1851 a
+SDict begin 13 H.A end
+ 546 1851 a 546 1851 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2548) cvn H.B /DEST pdfmark
+end
+ 546 1851
+a FC(Compile)f(normally)-5 b(.)18 b(Mak)o(e)i(sure)g(you)f(use)h
+(either)2041 1851 y
+SDict begin H.S end
+ 2041 1851 a 2041 1851 a
+SDict begin 13 H.A end
+ 2041 1851
+a 2041 1851 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2549) cvn H.B /DEST pdfmark
+end
+ 2041 1851 a Fr(dev/random)f FC(\(def)o(ault)g(if)h(e)o
+(xisting\))f(or)h(EGD)g(\(Entrop)o(y)546 1959 y(Gathering)e(Daemon\))h
+(for)h(the)g(entrop)o(y)e(de)n(vice.)i(If)2074 1959 y
+SDict begin H.S end
+
+2074 1959 a 2074 1959 a
+SDict begin 13 H.A end
+ 2074 1959 a 2074 1959 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2550) cvn H.B /DEST pdfmark
+end
+ 2074
+1959 a Fr(dev/random)f FC(does)h(not)f(e)o(xist,)i(the)f(def)o(ault)f
+(is)i(the)546 2067 y(')-5 b(standard)19 b(unix)g(entrop)o(y)g
+(gatherer',)e(which)j(uses)h(the)f(output)f(of)h(man)o(y)f(system)h
+(commands,)f(and)546 2175 y(therefore)f(is)j(not)f(suitable)g(within)g
+(a)h(chroot)e(jail.)-2 2193 y
+SDict begin H.S end
+ -2 2193 a -2 2193 a
+SDict begin 13 H.A end
+ -2
+2193 a -2 2193 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2551) cvn H.B /DEST pdfmark
+end
+ -2 2193 a Black 463 2324 a FC(2.)p Black
+546 2324 a
+SDict begin H.S end
+ 546 2324 a 546 2324 a
+SDict begin 13 H.A end
+ 546 2324 a 546 2324
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2552) cvn H.B /DEST pdfmark
+end
+ 546 2324 a FC(Install)h(with)g(the)h(command\(s\):)-2
+2381 y
+SDict begin H.S end
+ -2 2381 a -2 2381 a
+SDict begin 11.7 H.A end
+ -2 2381 a -2 2381 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2553) cvn H.B /DEST pdfmark
+end
+ -2 2381
+a -2 2381 a
+SDict begin H.S end
+ -2 2381 a -2 2381 a
+SDict begin 11.7 H.A end
+ -2 2381 a -2 2381 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2554) cvn H.B /DEST pdfmark
+end
+ -2
+2381 a 546 2463 a Ft(bash$)746 2463 y
+SDict begin H.S end
+ 746 2463 a 746
+2463 a
+SDict begin 11.7 H.A end
+ 746 2463 a 746 2463 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2555) cvn H.B /DEST pdfmark
+end
+ 746 2463 a 42 w Fs(make)42
+b(DESTDIR=)1310 2463 y
+SDict begin H.S end
+ 1310 2463 a 1310 2463 a
+SDict begin 11.7 H.A end
+ 1310 2463
+a 1310 2463 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2556) cvn H.B /DEST pdfmark
+end
+ 1310 2463 a Fd(/chrootdir)49 b Fs(install)-2
+2471 y
+SDict begin H.S end
+ -2 2471 a -2 2471 a
+SDict begin 11.7 H.A end
+ -2 2471 a -2 2471 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2557) cvn H.B /DEST pdfmark
+end
+ -2 2471
+a 546 2560 a Ft(bash$)746 2560 y
+SDict begin H.S end
+ 746 2560 a 746 2560
+a
+SDict begin 11.7 H.A end
+ 746 2560 a 746 2560 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2558) cvn H.B /DEST pdfmark
+end
+ 746 2560 a 42 w Fs(make)42 b(DESTDIR=)1310
+2560 y
+SDict begin H.S end
+ 1310 2560 a 1310 2560 a
+SDict begin 11.7 H.A end
+ 1310 2560 a 1310 2560
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2559) cvn H.B /DEST pdfmark
+end
+ 1310 2560 a Fd(/chrootdir)49 b Fs(install-user)-2 2568
+y
+SDict begin H.S end
+ -2 2568 a -2 2568 a
+SDict begin 11.7 H.A end
+ -2 2568 a -2 2568 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2560) cvn H.B /DEST pdfmark
+end
+ -2 2568 a 546
+2657 a Ft(bash$)746 2657 y
+SDict begin H.S end
+ 746 2657 a 746 2657 a
+SDict begin 11.7 H.A end
+ 746
+2657 a 746 2657 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2561) cvn H.B /DEST pdfmark
+end
+ 746 2657 a 42 w Fs(make)42 b(install-boot)-2
+2665 y
+SDict begin H.S end
+ -2 2665 a -2 2665 a
+SDict begin 13 H.A end
+ -2 2665 a -2 2665 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2562) cvn H.B /DEST pdfmark
+end
+ -2 2665
+a Black 463 2807 a FC(3.)p Black 546 2807 a
+SDict begin H.S end
+ 546 2807
+a 546 2807 a
+SDict begin 13 H.A end
+ 546 2807 a 546 2807 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2563) cvn H.B /DEST pdfmark
+end
+ 546 2807 a FC(Fix)20
+b(the)g(path)g(to)g(the)1171 2807 y
+SDict begin H.S end
+ 1171 2807 a 1171
+2807 a
+SDict begin 13 H.A end
+ 1171 2807 a 1171 2807 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2564) cvn H.B /DEST pdfmark
+end
+ 1171 2807 a FC(yule)f(binary)g(in)i(the)
+f(runle)n(v)o(el)e(start/stop)j(script)f(installed)g(by)g(the)g(last)h
+(command.)-2 2825 y
+SDict begin H.S end
+ -2 2825 a -2 2825 a
+SDict begin 13 H.A end
+ -2 2825 a -2
+2825 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2565) cvn H.B /DEST pdfmark
+end
+ -2 2825 a Black 463 2956 a FC(4.)p Black 546 2956
+a
+SDict begin H.S end
+ 546 2956 a 546 2956 a
+SDict begin 13 H.A end
+ 546 2956 a 546 2956 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2566) cvn H.B /DEST pdfmark
+end
+ 546 2956
+a FC(Prepare)e(the)h(chroot)f(en)m(vironment.)e(Basically)-5
+b(,)20 b(you)f(need)h(under)2511 2956 y
+SDict begin H.S end
+ 2511 2956 a 2511
+2956 a
+SDict begin 13 H.A end
+ 2511 2956 a 2511 2956 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2567) cvn H.B /DEST pdfmark
+end
+ 2511 2956 a Fr(/chrootdir)-2
+3140 y
+SDict begin H.S end
+ -2 3140 a -2 3140 a
+SDict begin 13 H.A end
+ -2 3140 a -2 3140 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2568) cvn H.B /DEST pdfmark
+end
+ -2 3140
+a 546 3230 a FC(\(a\))g(an)g(entrop)o(y)e(de)n(vice,)h(either)1497
+3230 y
+SDict begin H.S end
+ 1497 3230 a 1497 3230 a
+SDict begin 13 H.A end
+ 1497 3230 a 1497 3230
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2569) cvn H.B /DEST pdfmark
+end
+ 1497 3230 a Fr(dev/random)p FC(,)1987 3230 y
+SDict begin H.S end
+ 1987 3230
+a 1987 3230 a
+SDict begin 13 H.A end
+ 1987 3230 a 1987 3230 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2570) cvn H.B /DEST pdfmark
+end
+ 1987 3230 a Fr(dev/urandom)p
+FC(,)g(or)h(an)g(EGD)g(\(Entrop)o(y)e(Gathering)546 3338
+y(Daemon\))g(sock)o(et,)-2 3519 y
+SDict begin H.S end
+ -2 3519 a -2 3519 a
+SDict begin 13 H.A end
+
+-2 3519 a -2 3519 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2571) cvn H.B /DEST pdfmark
+end
+ -2 3519 a 546 3612 a FC(\(b\))h(minimum)1007
+3612 y
+SDict begin H.S end
+ 1007 3612 a 1007 3612 a
+SDict begin 13 H.A end
+ 1007 3612 a 1007 3612
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2572) cvn H.B /DEST pdfmark
+end
+ 1007 3612 a Fr(etc/passwd)p FC(,)1497 3612 y
+SDict begin H.S end
+ 1497 3612
+a 1497 3612 a
+SDict begin 13 H.A end
+ 1497 3612 a 1497 3612 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2573) cvn H.B /DEST pdfmark
+end
+ 1497 3612 a Fr(etc/group)g
+FC(\002les,)i(at)g(least)g(with)f(entries)g(for)g(root)f(and)h(the)g
+(unpri)n(vile)o(ged)546 3720 y
+SDict begin H.S end
+ 546 3720 a 546 3720 a
+SDict begin 13 H.A end
+
+546 3720 a 546 3720 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2574) cvn H.B /DEST pdfmark
+end
+ 546 3720 a FC(yule)f(user)-5 b(.)21
+b(Replace)f(passw)o(ords)g(with)g(an)g(asterix,)g(and)g(mak)o(e)f(sure)
+h(the)h(homedirectory)c(of)i(the)546 3828 y(unpri)n(vile)o(ged)983
+3828 y
+SDict begin H.S end
+ 983 3828 a 983 3828 a
+SDict begin 13 H.A end
+ 983 3828 a 983 3828 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2575) cvn H.B /DEST pdfmark
+end
+ 983
+3828 a FC(yule)h(user)g(is)h(correct)e(within)h(the)g(chroot)f(jail.)-2
+4012 y
+SDict begin H.S end
+ -2 4012 a -2 4012 a
+SDict begin 13 H.A end
+ -2 4012 a -2 4012 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2576) cvn H.B /DEST pdfmark
+end
+ -2 4012
+a 546 4102 a FC(\(c\))h(\002les)h(required)d(for)i(DNS:)1443
+4102 y
+SDict begin H.S end
+ 1443 4102 a 1443 4102 a
+SDict begin 13 H.A end
+ 1443 4102 a 1443 4102
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2577) cvn H.B /DEST pdfmark
+end
+ 1443 4102 a Fr(etc/nsswitch.conf)p FC(,)2246 4102 y
+SDict begin H.S end
+
+2246 4102 a 2246 4102 a
+SDict begin 13 H.A end
+ 2246 4102 a 2246 4102 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2578) cvn H.B /DEST pdfmark
+end
+ 2246
+4102 a Fr(etc/hosts)p FC(,)2691 4102 y
+SDict begin H.S end
+ 2691 4102 a 2691
+4102 a
+SDict begin 13 H.A end
+ 2691 4102 a 2691 4102 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2579) cvn H.B /DEST pdfmark
+end
+ 2691 4102 a Fr(etc/host.conf)p
+FC(,)546 4210 y
+SDict begin H.S end
+ 546 4210 a 546 4210 a
+SDict begin 13 H.A end
+ 546 4210 a 546
+4210 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2580) cvn H.B /DEST pdfmark
+end
+ 546 4210 a Fr(etc/resolv.conf)p FC(,)1260 4210
+y
+SDict begin H.S end
+ 1260 4210 a 1260 4210 a
+SDict begin 13 H.A end
+ 1260 4210 a 1260 4210 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2581) cvn H.B /DEST pdfmark
+end
+ 1260
+4210 a Fr(etc/services)p FC(,)1839 4210 y
+SDict begin H.S end
+ 1839 4210 a
+1839 4210 a
+SDict begin 13 H.A end
+ 1839 4210 a 1839 4210 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2582) cvn H.B /DEST pdfmark
+end
+ 1839 4210 a Fr(etc/protocols)p
+FC(.)438 4328 y
+SDict begin H.S end
+ 438 4328 a 438 4328 a
+SDict begin 13 H.A end
+ 438 4328 a 438
+4328 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2583) cvn H.B /DEST pdfmark
+end
+ 438 4328 a Black 463 4478 a FC(5.)p Black 546
+4478 a
+SDict begin H.S end
+ 546 4478 a 546 4478 a
+SDict begin 13 H.A end
+ 546 4478 a 546 4478 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2584) cvn H.B /DEST pdfmark
+end
+ 546
+4478 a FC(Create)g(a)h(symlink)1129 4478 y
+SDict begin H.S end
+ 1129 4478
+a 1129 4478 a
+SDict begin 13 H.A end
+ 1129 4478 a 1129 4478 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2585) cvn H.B /DEST pdfmark
+end
+ 1129 4478 a Fr(/etc/yulerc)e
+FC(to)1728 4478 y
+SDict begin H.S end
+ 1728 4478 a 1728 4478 a
+SDict begin 13 H.A end
+ 1728 4478 a
+1728 4478 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2586) cvn H.B /DEST pdfmark
+end
+ 1728 4478 a Fr(/chrootdir/etc/yulerc)f FC(\(no,)h(it)i
+(will)g(not)e(w)o(ork)h(the)g(other)546 4586 y(w)o(ay)g(round\).)-2
+4901 y
+SDict begin H.S end
+ -2 4901 a -2 4901 a
+SDict begin 13 H.A end
+ -2 4901 a -2 4901 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2587) cvn H.B /DEST pdfmark
+end
+ -2 4901
+a 396 5009 a FC(Because)694 5009 y
+SDict begin H.S end
+ 694 5009 a 694 5009
+a
+SDict begin 13 H.A end
+ 694 5009 a 694 5009 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2588) cvn H.B /DEST pdfmark
+end
+ 694 5009 a FC(yule)f(chroots)h(after)f
+(startup,)h(there)g(is)h(no)e(need)h(to)g(cop)o(y)g(shared)f(libraries)
+h(into)g(the)g(chroot)f(jail.)i(The)o(y)396 5117 y(will)g(be)f(loaded)f
+(upon)g(startup,)h(before)f(the)h(chroot\(\))e(occurs.)-2
+5135 y
+SDict begin H.S end
+ -2 5135 a -2 5135 a
+SDict begin 11.7 H.A end
+ -2 5135 a -2 5135 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2589) cvn H.B /DEST pdfmark
+end
+ -2 5135
+a Black 3661 5805 a Fx(71)p Black eop end
+%%Page: 72 77
+TeXDict begin 72 76 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.72) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2731 104 a
+Fx(Chapter)20 b(6.)g(yule,)g(the)g(lo)o(g)g(server)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 11.7 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2591) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 562 309 a Fw(TIP:)g Fv(If)g(y)o(ou)g(are)f(using)g(syslog)i
+(logging,)c(y)o(ou)i(need)g(a)2156 309 y
+SDict begin H.S end
+ 2156 309 a 2156
+309 a
+SDict begin 11.7 H.A end
+ 2156 309 a 2156 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2592) cvn H.B /DEST pdfmark
+end
+ 2156 309 a Ft(dev/log)k Fv(soc)o(k)o(et)d
+(in)g(the)f(chroot)g(jail.)g(Moder)r(n)3533 309 y
+SDict begin H.S end
+ 3533
+309 a 3533 309 a
+SDict begin 11.7 H.A end
+ 3533 309 a 3533 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2593) cvn H.B /DEST pdfmark
+end
+ 3533 309 a Fv(syslog)562
+406 y(incar)r(nations)f(will)h(allo)o(w)g(y)o(ou)h(to)g(ha)o(v)n(e)f
+(an)h(additional)d(soc)o(k)o(et)i(using)h(the)f(command:)562
+576 y Fo(bash$)742 576 y
+SDict begin H.S end
+ 742 576 a 742 576 a
+SDict begin 10.53 H.A end
+ 742 576
+a 742 576 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2596) cvn H.B /DEST pdfmark
+end
+ 742 576 a 38 w Fn(syslogd)39 b(-a)1180 576
+y
+SDict begin H.S end
+ 1180 576 a 1180 576 a
+SDict begin 10.53 H.A end
+ 1180 576 a 1180 576 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2597) cvn H.B /DEST pdfmark
+end
+ 1180 576
+a Fb(/chrootdir)s Fn(/dev/log)39 756 y
+SDict begin H.S end
+ 39 756 a 39 756
+a
+SDict begin 11.7 H.A end
+ 39 756 a 39 756 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2598) cvn H.B /DEST pdfmark
+end
+ 39 756 a -2 922 a
+SDict begin H.S end
+ -2 922 a -2 922
+a
+SDict begin 11.7 H.A end
+ -2 922 a -2 922 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2600) cvn H.B /DEST pdfmark
+end
+ -2 922 a 562 1020 a Fw(TIP:)20 b
+Fv(If)h(y)o(ou)e(are)h(using)f(a)i(Gn)o(uPG-signed)d(con\002gur)o
+(ation,)f(y)o(ou)j(will)g(need)f(a)h(w)o(or)q(king)f(cop)n(y)i(of)3351
+1020 y
+SDict begin H.S end
+ 3351 1020 a 3351 1020 a
+SDict begin 11.7 H.A end
+ 3351 1020 a 3351 1020
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2601) cvn H.B /DEST pdfmark
+end
+ 3351 1020 a Fv(gpg)e(in)h(the)562 1117 y(chroot)g(jail.)-2
+1349 y
+SDict begin H.S end
+ -2 1349 a -2 1349 a
+SDict begin 13 H.A end
+ -2 1349 a -2 1349 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:LIBWRAP) cvn H.B /DEST pdfmark
+end
+ -2 1349
+a 377 x Fu(6.10.)39 b(Restrict)f(access)g(with)h(libwrap)f(\(tcp)h
+(wrapper)n(s\))3307 1726 y
+SDict begin H.S end
+ 3307 1726 a 3307 1726 a
+SDict begin 22.464 H.A end
+ 3307
+1726 a 3307 1726 a
+SDict begin [ /View [/XYZ H.V] /Dest (8.57.1) cvn H.B /DEST pdfmark
+end
+ 3307 1726 a -2 1922 a
+SDict begin H.S end
+ -2 1922 a -2
+1922 a
+SDict begin 13 H.A end
+ -2 1922 a -2 1922 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2604) cvn H.B /DEST pdfmark
+end
+ -2 1922 a 396 2000 a FC(As)21
+b(of)f(v)o(ersion)f(1.8.0,)1071 2000 y
+SDict begin H.S end
+ 1071 2000 a 1071
+2000 a
+SDict begin 13 H.A end
+ 1071 2000 a 1071 2000 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2605) cvn H.B /DEST pdfmark
+end
+ 1071 2000 a FC(yule)g(can)h(be)g(b)n
+(uild)g(with)h(support)d(for)2215 2000 y
+SDict begin H.S end
+ 2215 2000 a
+2215 2000 a
+SDict begin 13 H.A end
+ 2215 2000 a 2215 2000 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2606) cvn H.B /DEST pdfmark
+end
+ 2215 2000 a FC(libwrap,)h(i.e.)h(W)
+m(ietse)h(V)-9 b(enema')k(s)20 b(tcp)g(wrappers)396 2108
+y(libraries.)g(T)-7 b(o)20 b(enable)g(this,)g(use)h(the)1469
+2108 y
+SDict begin H.S end
+ 1469 2108 a 1469 2108 a
+SDict begin 13 H.A end
+ 1469 2108 a 1469 2108
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2607) cvn H.B /DEST pdfmark
+end
+ 1469 2108 a Fy(con\002gur)o(e)e FC(option)2053 2108
+y
+SDict begin H.S end
+ 2053 2108 a 2053 2108 a
+SDict begin 13 H.A end
+ 2053 2108 a 2053 2108 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2608) cvn H.B /DEST pdfmark
+end
+ 2053
+2108 a Fx(--with-libwr)o(ap)p FC(.)-2 2292 y
+SDict begin H.S end
+ -2 2292
+a -2 2292 a
+SDict begin 13 H.A end
+ -2 2292 a -2 2292 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2609) cvn H.B /DEST pdfmark
+end
+ -2 2292 a 396 2382 a
+FC(Y)-9 b(ou)20 b(can)g(then)g(restrict)g(access)h(to)1420
+2382 y
+SDict begin H.S end
+ 1420 2382 a 1420 2382 a
+SDict begin 13 H.A end
+ 1420 2382 a 1420 2382
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2610) cvn H.B /DEST pdfmark
+end
+ 1420 2382 a FC(yule)f(with)g(appropriate)e(entries)i(in)g(the)2601
+2382 y
+SDict begin H.S end
+ 2601 2382 a 2601 2382 a
+SDict begin 13 H.A end
+ 2601 2382 a 2601 2382
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2611) cvn H.B /DEST pdfmark
+end
+ 2601 2382 a Fr(/etc/hosts.allow)e FC(and/or)396 2490
+y
+SDict begin H.S end
+ 396 2490 a 396 2490 a
+SDict begin 13 H.A end
+ 396 2490 a 396 2490 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2612) cvn H.B /DEST pdfmark
+end
+ 396 2490
+a Fr(/etc/hosts.deny)g FC(\002les.)-2 2502 y
+SDict begin H.S end
+ -2 2502
+a -2 2502 a
+SDict begin 11.7 H.A end
+ -2 2502 a -2 2502 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2613) cvn H.B /DEST pdfmark
+end
+ -2 2502 a -2 2626 a
+SDict begin H.S end
+ -2
+2626 a -2 2626 a
+SDict begin 11.7 H.A end
+ -2 2626 a -2 2626 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2615) cvn H.B /DEST pdfmark
+end
+ -2 2626 a 562 2712
+a Fw(NO)m(TE:)j Fv(If)f(y)o(ou)g(use)g(the)1280 2712
+y
+SDict begin H.S end
+ 1280 2712 a 1280 2712 a
+SDict begin 11.7 H.A end
+ 1280 2712 a 1280 2712 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2616) cvn H.B /DEST pdfmark
+end
+ 1280
+2712 a Fw(con\002gure)f Fv(option)1866 2712 y
+SDict begin H.S end
+ 1866 2712
+a 1866 2712 a
+SDict begin 11.7 H.A end
+ 1866 2712 a 1866 2712 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2617) cvn H.B /DEST pdfmark
+end
+ 1866 2712 a Fq(--enab)o
+(le-install-na)o(me=NAME)7 b Fv(,)14 b(then)3040 2712
+y
+SDict begin H.S end
+ 3040 2712 a 3040 2712 a
+SDict begin 11.7 H.A end
+ 3040 2712 a 3040 2712 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2618) cvn H.B /DEST pdfmark
+end
+ 3040
+2712 a Fv(yule)20 b(will)g(be)g(installed)562 2809 y(as)h('NAME',)f
+(and)f(this)h(is)h(what)e(y)o(ou)h(then)f(need)g(to)h(use)g(as)h(the)f
+(daemons)f(name)g(in)h(the)562 2906 y
+SDict begin H.S end
+ 562 2906 a 562
+2906 a
+SDict begin 11.7 H.A end
+ 562 2906 a 562 2906 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2619) cvn H.B /DEST pdfmark
+end
+ 562 2906 a Ft(/etc/hosts.allow)27
+b Fv(and/or)1461 2906 y
+SDict begin H.S end
+ 1461 2906 a 1461 2906 a
+SDict begin 11.7 H.A end
+ 1461
+2906 a 1461 2906 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2620) cvn H.B /DEST pdfmark
+end
+ 1461 2906 a Ft(/etc/hosts.deny)f Fv(\002les)o(.)-2
+3139 y
+SDict begin H.S end
+ -2 3139 a -2 3139 a
+SDict begin 13 H.A end
+ -2 3139 a -2 3139 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SEND-COMMANDS) cvn H.B /DEST
+pdfmark end
+ -2 3139
+a 377 x Fu(6.11.)39 b(Sending)f(commands)f(to)i(c)m(lients)2388
+3516 y
+SDict begin H.S end
+ 2388 3516 a 2388 3516 a
+SDict begin 22.464 H.A end
+ 2388 3516 a 2388 3516
+a
+SDict begin [ /View [/XYZ H.V] /Dest (8.58.1) cvn H.B /DEST pdfmark
+end
+ 2388 3516 a -2 3714 a
+SDict begin H.S end
+ -2 3714 a -2 3714 a
+SDict begin 13 H.A end
+ -2 3714 a
+-2 3714 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2623) cvn H.B /DEST pdfmark
+end
+ -2 3714 a 396 3790 a FC(It)21 b(is)g(generally)e(not)g
+(possible)h(to)h(send)f(commands)e(to)i(clients,)h(because)e(the)h
+(client)h(does)f(not)f(listen)i(on)f(the)396 3898 y(netw)o(ork)f(\(the)
+h(client)g(needs)g(root)g(pri)n(vile)o(ges)e(to)j(perform)d(its)j
+(tasks,)g(and)e(you)h(don')o(t)e(w)o(ant)j(a)f(root)g(netw)o(ork)396
+4005 y(daemon\).)-2 4186 y
+SDict begin H.S end
+ -2 4186 a -2 4186 a
+SDict begin 13 H.A end
+ -2 4186
+a -2 4186 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2624) cvn H.B /DEST pdfmark
+end
+ -2 4186 a 396 4279 a FC(Ho)n(we)n(v)o(er)m(,)e(it)j(is)g
+(possible)f(to)h(send)f(a)g(command)e(if)j(and)e(when)h(a)h(client)f
+(connects)f(to)h(deli)n(v)o(er)f(a)i(message.)f(As)h(of)396
+4387 y(v)o(ersion)e(1.8.0,)g(clients)h(use)h(a)f(ne)n(w)g(v)o(ersion)f
+(of)h(the)g(client/serv)o(er)f(protocol,)f(which)i(includes)g(a)g(set)h
+(of)396 4495 y(pre-de\002ned)d(commands)h(that)h(are)g(understood)e(by)
+h(the)i(client.)f(Currently)f(implemented)f(are)3200
+4495 y
+SDict begin H.S end
+ 3200 4495 a 3200 4495 a
+SDict begin 13 H.A end
+ 3200 4495 a 3200 4495
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2625) cvn H.B /DEST pdfmark
+end
+ 3200 4495 a Fx(RELO)-5 b(AD)20 b FC(to)396 4603 y(reload)f(the)i
+(con\002guration,)c(and)1372 4603 y
+SDict begin H.S end
+ 1372 4603 a 1372
+4603 a
+SDict begin 13 H.A end
+ 1372 4603 a 1372 4603 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2626) cvn H.B /DEST pdfmark
+end
+ 1372 4603 a Fx(ST)o(OP)i
+FC(to)i(terminate)e(the)h(client.)-2 4787 y
+SDict begin H.S end
+ -2 4787 a
+-2 4787 a
+SDict begin 13 H.A end
+ -2 4787 a -2 4787 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2627) cvn H.B /DEST pdfmark
+end
+ -2 4787 a 396 4877 a FC(Pre-1.8.0)e
+(clients,)j(or)f(clients)g(b)n(uild)g(with)g(the)g(\(optional\))f(old)g
+(protocol)g(v)o(ersion,)g(will)i(simply)e(ignore)g(such)396
+4985 y(commands.)-2 4986 y
+SDict begin H.S end
+ -2 4986 a -2 4986 a
+SDict begin 13 H.A end
+ -2 4986
+a -2 4986 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SUPPLY-COMMANDS) cvn H.B /DEST
+pdfmark end
+ -2 4986 a Black 3661 5805 a Fx(72)p Black
+eop end
+%%Page: 73 78
+TeXDict begin 73 77 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.73) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2731 104 a
+Fx(Chapter)20 b(6.)g(yule,)g(the)g(lo)o(g)g(server)p
+Black 396 313 a Fp(6.11.1.)36 b(Comm)n(unicating)f(with)f(the)f(ser)q
+(ver)2573 313 y
+SDict begin H.S end
+ 2573 313 a 2573 313 a
+SDict begin 18.72 H.A end
+ 2573 313 a 2573
+313 a
+SDict begin [ /View [/XYZ H.V] /Dest (8.58.31.2) cvn H.B /DEST pdfmark
+end
+ 2573 313 a -2 506 a
+SDict begin H.S end
+ -2 506 a -2 506 a
+SDict begin 13 H.A end
+ -2 506 a
+-2 506 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2630) cvn H.B /DEST pdfmark
+end
+ -2 506 a 396 587 a FC(As)21 b(of)f(v)o(ersion)f(1.8.0,)1071
+587 y
+SDict begin H.S end
+ 1071 587 a 1071 587 a
+SDict begin 13 H.A end
+ 1071 587 a 1071 587 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2631) cvn H.B /DEST pdfmark
+end
+ 1071
+587 a FC(yule)g(can)h(send)g(a)h(command)d(to)i(a)h(client)f(if)h(and)e
+(when)h(a)h(client)f(connects)f(to)h(deli)n(v)o(er)f(a)396
+695 y(message,)h(e.g.)g(a)g(timestamp)g(message)g(\(clients)g(are)g
+(not)g(listening)g(on)g(the)g(netw)o(ork,)f(and)g(thus)h(commands)f
+(can)396 803 y(only)h(be)g(sent)g(together)f(with)h(the)h
+(con\002rmation)d(when)h(a)i(message)f(is)h(recei)n(v)o(ed\).)-2
+987 y
+SDict begin H.S end
+ -2 987 a -2 987 a
+SDict begin 13 H.A end
+ -2 987 a -2 987 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2632) cvn H.B /DEST pdfmark
+end
+ -2 987 a 396
+1077 a FC(Of)g(course)e(the)h(serv)o(er)g(needs)f(to)i(kno)n(w)e(which)
+h(\(if)g(an)o(y\))f(command)f(to)i(send.)g(Therefore)e(it)j(can)f(open)
+f(a)i(unix)396 1185 y(domain)e(sock)o(et)h(upon)f(startup)h(\(in)g(the)
+g(same)g(directory)f(as)i(the)f(PID)g(\002le\).)h(Opening)d(this)j
+(command)d(interf)o(ace)396 1293 y(must)i(be)h(requested)e(e)o
+(xplicitely)g(with)h(the)g(option)1910 1293 y
+SDict begin H.S end
+ 1910 1293
+a 1910 1293 a
+SDict begin 13 H.A end
+ 1910 1293 a 1910 1293 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2633) cvn H.B /DEST pdfmark
+end
+ 1910 1293 a Fy(SetUseSock)o(et=)
+2432 1293 y
+SDict begin H.S end
+ 2432 1293 a 2432 1293 a
+SDict begin 13 H.A end
+ 2432 1293 a 2432
+1293 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2634) cvn H.B /DEST pdfmark
+end
+ 2432 1293 a Fl(yes)g FC(\(in)g(the)g([Misc])h(section\).)-2
+1477 y
+SDict begin H.S end
+ -2 1477 a -2 1477 a
+SDict begin 13 H.A end
+ -2 1477 a -2 1477 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2635) cvn H.B /DEST pdfmark
+end
+ -2 1477
+a 396 1567 a FC(A)g(separate)f(application)1159 1567
+y
+SDict begin H.S end
+ 1159 1567 a 1159 1567 a
+SDict begin 13 H.A end
+ 1159 1567 a 1159 1567 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2636) cvn H.B /DEST pdfmark
+end
+ 1159
+1567 a FC(yulectl)g(is)h(compiled)e(together)g(with)h(the)g(serv)o(er)g
+(that)g(pro)o(vides)e(a)j(command-line)396 1674 y(interf)o(ace)f(to)g
+(access)h(this)f(f)o(acility)-5 b(.)20 b(Use)1586 1674
+y
+SDict begin H.S end
+ 1586 1674 a 1586 1674 a
+SDict begin 13 H.A end
+ 1586 1674 a 1586 1674 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2637) cvn H.B /DEST pdfmark
+end
+ 1586
+1674 a Fy(yulectl)g(-h)g FC(for)g(help.)-2 1703 y
+SDict begin H.S end
+ -2
+1703 a -2 1703 a
+SDict begin 13 H.A end
+ -2 1703 a -2 1703 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:AUTH-CRED) cvn H.B /DEST pdfmark
+end
+ -2 1703 a 396 2013
+a Fp(6.11.2.)36 b(A)l(uthenticating)g(to)d(the)g(ser)q(ver)2379
+2013 y
+SDict begin H.S end
+ 2379 2013 a 2379 2013 a
+SDict begin 18.72 H.A end
+ 2379 2013 a 2379 2013
+a
+SDict begin [ /View [/XYZ H.V] /Dest (8.58.32.2) cvn H.B /DEST pdfmark
+end
+ 2379 2013 a -2 2206 a
+SDict begin H.S end
+ -2 2206 a -2 2206 a
+SDict begin 13 H.A end
+ -2 2206 a
+-2 2206 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2640) cvn H.B /DEST pdfmark
+end
+ -2 2206 a 396 2287 a FC(There)20 b(are)g(tw)o(o)g(methods)f
+(to)i(authenticate)e(to)h(the)g(serv)o(er)-5 b(.)20 b(If)g(supported)e
+(by)i(the)g(OS,)g(authentication)f(is)i(done)396 2395
+y(by)f(passing)g(the)g(credentials)f(of)h(the)h(sock)o(et)f(peer)f(to)i
+(the)f(serv)o(er)f(\(this)i(is)g(a)f(special)h(feature)e(of)h(unix)f
+(domain)396 2503 y(sock)o(ets\),)h(and)850 2503 y
+SDict begin H.S end
+ 850
+2503 a 850 2503 a
+SDict begin 13 H.A end
+ 850 2503 a 850 2503 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2641) cvn H.B /DEST pdfmark
+end
+ 850 2503 a Fx(r)m(equiring)f
+(the)h(UID)g FC(of)g(the)h(the)f(sock)o(et)g(peer)f(\(i.e.)h(the)h
+(user)f(using)f(the)2955 2503 y
+SDict begin H.S end
+ 2955 2503 a 2955 2503
+a
+SDict begin 13 H.A end
+ 2955 2503 a 2955 2503 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2642) cvn H.B /DEST pdfmark
+end
+ 2955 2503 a FC(yulectl)h(program\))e(to)396
+2611 y(match)i(a)h(UID)f(as)h(set)g(with)f(the)1339 2611
+y
+SDict begin H.S end
+ 1339 2611 a 1339 2611 a
+SDict begin 13 H.A end
+ 1339 2611 a 1339 2611 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2643) cvn H.B /DEST pdfmark
+end
+ 1339
+2611 a Fy(SetSock)o(etAllo)o(wUid=)2068 2611 y
+SDict begin H.S end
+ 2068 2611
+a 2068 2611 a
+SDict begin 13 H.A end
+ 2068 2611 a 2068 2611 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2644) cvn H.B /DEST pdfmark
+end
+ 2068 2611 a Fl(UID)25
+b FC(option)19 b(\(def)o(ault)g(is)i(0,)f(i.e.)g(only)f(root)h(can)g
+(use)g(the)396 2719 y(interf)o(ace\).)-2 2734 y
+SDict begin H.S end
+ -2 2734
+a -2 2734 a
+SDict begin 11.7 H.A end
+ -2 2734 a -2 2734 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2645) cvn H.B /DEST pdfmark
+end
+ -2 2734 a -2 2858 a
+SDict begin H.S end
+ -2
+2858 a -2 2858 a
+SDict begin 11.7 H.A end
+ -2 2858 a -2 2858 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2647) cvn H.B /DEST pdfmark
+end
+ -2 2858 a 562 2940
+a Fw(Note:)g Fv(If)g(passing)g(credentials)e(o)o(v)n(er)i(the)f(soc)o
+(k)o(et)h(is)h(suppor)s(ted)d(b)o(y)i(the)g(OS)o(,)g(it)g(is)g(not)g
+(possib)o(le)e(to)j(f)n(ak)o(e)562 3037 y(these)f(credentials)e(-)j
+(the)o(y)e(are)h(supplied)e(b)o(y)i(the)g(k)o(er)r(nel.)e(Theref)n(ore)
+o(,)f(the)j(ser)r(v)n(er)g(can)h(rely)f(on)g(the)f(f)n(act)h(that)562
+3135 y(the)g(user)g(process)g(wr)q(iting)f(to)h(the)g(soc)o(k)o(et)g
+(has)g(indeed)e(the)i(UID)g(passed)g(via)g(the)g(soc)o(k)o(et.)f(Thus)o
+(,)h(the)562 3232 y(access)i(r)q(ights)d(to)h(the)g(soc)o(k)o(et)g(are)
+f(basically)h(not)f(impor)s(tant)f(\(on)i(some)h(systems)o(,)g(the)o(y)
+f(are)f(not)h(e)n(v)n(en)562 3329 y(recogniz)o(ed/respected)c(at)k
+(all\).)-2 3644 y
+SDict begin H.S end
+ -2 3644 a -2 3644 a
+SDict begin 13 H.A end
+ -2 3644 a -2 3644
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2648) cvn H.B /DEST pdfmark
+end
+ -2 3644 a 396 3752 a FC(As)h(of)f(v)o(ersion)f(1.8.12,)f(if)j(\(and)e
+(only)g(if\))h(passing)g(credentials)g(o)o(v)o(er)e(the)j(sock)o(et)f
+(is)h(not)f(supported,)e(you)h(can)396 3860 y(specify)h(a)g(passw)o
+(ord)g(with)g(the)1338 3860 y
+SDict begin H.S end
+ 1338 3860 a 1338 3860 a
+SDict begin 13 H.A end
+
+1338 3860 a 1338 3860 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2649) cvn H.B /DEST pdfmark
+end
+ 1338 3860 a Fy(SetSock)o(etP)o(assw)o(ord=)2071
+3860 y
+SDict begin H.S end
+ 2071 3860 a 2071 3860 a
+SDict begin 13 H.A end
+ 2071 3860 a 2071 3860
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2650) cvn H.B /DEST pdfmark
+end
+ 2071 3860 a Fl(password)i FC(option.)d(The)h(passw)o(ord)f(must)h(be)
+h(14)396 3968 y(characters)f(or)f(less,)i(and)f(must)g(not)g(include)f
+(the)i('@')f(character)-5 b(.)-2 4146 y
+SDict begin H.S end
+ -2 4146 a -2
+4146 a
+SDict begin 13 H.A end
+ -2 4146 a -2 4146 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2651) cvn H.B /DEST pdfmark
+end
+ -2 4146 a 396 4242 a FC(Of)21
+b(course)e(you)g(must)i(supply)e(the)h(passw)o(ord)f(to)1853
+4242 y
+SDict begin H.S end
+ 1853 4242 a 1853 4242 a
+SDict begin 13 H.A end
+ 1853 4242 a 1853 4242
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2652) cvn H.B /DEST pdfmark
+end
+ 1853 4242 a FC(yulectl)h(if)g(you)f(w)o(ant)i(to)f(communicate)e
+(with)i(the)h(serv)o(er)-5 b(.)19 b(T)-7 b(o)396 4350
+y(do)20 b(so,)g(create)g(a)h(\002le)1019 4350 y
+SDict begin H.S end
+ 1019
+4350 a 1019 4350 a
+SDict begin 13 H.A end
+ 1019 4350 a 1019 4350 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2653) cvn H.B /DEST pdfmark
+end
+ 1019 4350
+a Fr(.yulectl_cred)d FC(in)j(your)e(home)g(directory)-5
+b(,)18 b(and)h(place)h(the)g(passw)o(ord)g(there.)-2
+4368 y
+SDict begin H.S end
+ -2 4368 a -2 4368 a
+SDict begin 11.7 H.A end
+ -2 4368 a -2 4368 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2654) cvn H.B /DEST pdfmark
+end
+ -2 4368
+a -2 4493 a
+SDict begin H.S end
+ -2 4493 a -2 4493 a
+SDict begin 11.7 H.A end
+ -2 4493 a -2 4493 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2656) cvn H.B /DEST pdfmark
+end
+ -2
+4493 a 562 4572 a Fw(Note:)g Fv(P)m(ass)n(w)o(ord)g(authentication)c
+(is)k(not)g(suppor)s(ted)e(if)i(the)g(OS)h(suppor)s(ts)e(the)h(af)n
+(orementioned)15 b(method.)-2 4887 y
+SDict begin H.S end
+ -2 4887 a -2 4887
+a
+SDict begin 13 H.A end
+ -2 4887 a -2 4887 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:UDP) cvn H.B /DEST pdfmark
+end
+ -2 4887 a Black 3661 5805 a Fx(73)p
+Black eop end
+%%Page: 74 79
+TeXDict begin 74 78 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.74) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2731 104 a
+Fx(Chapter)20 b(6.)g(yule,)g(the)g(lo)o(g)g(server)p
+Black -2 330 a Fu(6.12.)39 b(Syslog)f(log)o(ging)1386
+330 y
+SDict begin H.S end
+ 1386 330 a 1386 330 a
+SDict begin 22.464 H.A end
+ 1386 330 a 1386 330 a
+SDict begin [ /View [/XYZ H.V] /Dest (8.59.1) cvn H.B /DEST pdfmark
+end
+ 1386
+330 a -2 528 a
+SDict begin H.S end
+ -2 528 a -2 528 a
+SDict begin 13 H.A end
+ -2 528 a -2 528 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2659) cvn H.B /DEST pdfmark
+end
+ -2
+528 a -2 528 a
+SDict begin H.S end
+ -2 528 a -2 528 a
+SDict begin 13 H.A end
+ -2 528 a -2 528 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2660) cvn H.B /DEST pdfmark
+end
+ -2
+528 a 396 604 a FC(yule)20 b(\(v)o(ersion)f(1.2.8+\))f(can)i(listen)g
+(on)g(port)g(514/udp)e(to)i(collect)g(reports)f(from)h(syslog)f
+(clients.)i(This)f(must)g(be)396 712 y(enabled)f(by)g(using)h(the)1100
+712 y
+SDict begin H.S end
+ 1100 712 a 1100 712 a
+SDict begin 13 H.A end
+ 1100 712 a 1100 712 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2661) cvn H.B /DEST pdfmark
+end
+ 1100
+712 a Fy(--enable-udp)g FC(con\002gure)e(option)g(when)i(compiling.)e
+(In)h(addition,)f(in)i(the)3327 712 y
+SDict begin H.S end
+ 3327 712 a 3327
+712 a
+SDict begin 13 H.A end
+ 3327 712 a 3327 712 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2662) cvn H.B /DEST pdfmark
+end
+ 3327 712 a Fx(Misc)h FC(section)396
+820 y(of)f(the)g(con\002guration)e(\002le,)j(you)e(must)h(set)h(the)f
+(option)2015 820 y
+SDict begin H.S end
+ 2015 820 a 2015 820 a
+SDict begin 13 H.A end
+ 2015 820 a 2015
+820 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2663) cvn H.B /DEST pdfmark
+end
+ 2015 820 a Fy(SetUDP)-6 b(Acti)o(v)o(e=)2563 820
+y
+SDict begin H.S end
+ 2563 820 a 2563 820 a
+SDict begin 13 H.A end
+ 2563 820 a 2563 820 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2664) cvn H.B /DEST pdfmark
+end
+ 2563 820
+a Fl(yes)q FC(.)-2 1004 y
+SDict begin H.S end
+ -2 1004 a -2 1004 a
+SDict begin 13 H.A end
+ -2 1004
+a -2 1004 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2665) cvn H.B /DEST pdfmark
+end
+ -2 1004 a 396 1094 a FC(This)21 b(option)e(requires)g(to)h
+(run)1303 1094 y
+SDict begin H.S end
+ 1303 1094 a 1303 1094 a
+SDict begin 13 H.A end
+ 1303 1094 a
+1303 1094 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2666) cvn H.B /DEST pdfmark
+end
+ 1303 1094 a FC(yule)f(either)h(as)1766 1094
+y
+SDict begin H.S end
+ 1766 1094 a 1766 1094 a
+SDict begin 13 H.A end
+ 1766 1094 a 1766 1094 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2667) cvn H.B /DEST pdfmark
+end
+ 1766
+1094 a Fx(r)l(oot)q FC(,)h(or)f(as)2123 1094 y
+SDict begin H.S end
+ 2123 1094
+a 2123 1094 a
+SDict begin 13 H.A end
+ 2123 1094 a 2123 1094 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2668) cvn H.B /DEST pdfmark
+end
+ 2123 1094 a Fx(SUID)g
+FC(root.)f(F)o(or)h(security)-5 b(,)2942 1094 y
+SDict begin H.S end
+ 2942
+1094 a 2942 1094 a
+SDict begin 13 H.A end
+ 2942 1094 a 2942 1094 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2669) cvn H.B /DEST pdfmark
+end
+ 2942 1094
+a FC(yule)20 b(will)h(drop)e(root)396 1202 y(pri)n(vile)o(ges)g(irre)n
+(v)n(ocably)f(immediately)h(after)h(binding)e(to)j(port)e(514/udp.)f
+(It)i(will)h(assume)f(the)h(credentials)e(of)396 1310
+y(some)h(compiled-in)e(user)-5 b(.)21 b(The)e(def)o(ault)h(is)h
+('yule',)e(')l(daemon',)e(or)j('nobody')d(\(i.e.)j(the)g(\002rst)h(of)f
+(these)h(that)f(e)o(xists)396 1418 y(on)g(your)f(system\).)h(Y)-9
+b(ou)19 b(can)h(o)o(v)o(erride)e(this)j(with)f(the)1990
+1418 y
+SDict begin H.S end
+ 1990 1418 a 1990 1418 a
+SDict begin 13 H.A end
+ 1990 1418 a 1990 1418
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2670) cvn H.B /DEST pdfmark
+end
+ 1990 1418 a Fy(--enable-identity=)2625 1418 y
+SDict begin H.S end
+ 2625
+1418 a 2625 1418 a
+SDict begin 13 H.A end
+ 2625 1418 a 2625 1418 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2671) cvn H.B /DEST pdfmark
+end
+ 2625 1418
+a Fl(USER)f FC(option.)g(Note)h(that)g(each)396 1526
+y(daemon)f(should)g(ha)n(v)o(e)h(its)h(o)n(wn)e(user/group,)f(such)i
+(that)g(an)g(e)o(xploit)g(will)h(gi)n(v)o(e)e(write)h(access)h(to)f
+(\002les)i(o)n(wned)d(by)396 1634 y(other)h(daemons.)-2
+1645 y
+SDict begin H.S end
+ -2 1645 a -2 1645 a
+SDict begin 13 H.A end
+ -2 1645 a -2 1645 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:PERFORMANCE-TUNING-SERVER)
+cvn H.B /DEST pdfmark end
+ -2 1645
+a 376 x Fu(6.13.)39 b(P)l(erf)m(ormance)d(tuning)1706
+2021 y
+SDict begin H.S end
+ 1706 2021 a 1706 2021 a
+SDict begin 22.464 H.A end
+ 1706 2021 a 1706 2021
+a
+SDict begin [ /View [/XYZ H.V] /Dest (8.60.1) cvn H.B /DEST pdfmark
+end
+ 1706 2021 a -2 2219 a
+SDict begin H.S end
+ -2 2219 a -2 2219 a
+SDict begin 13 H.A end
+ -2 2219 a
+-2 2219 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2674) cvn H.B /DEST pdfmark
+end
+ -2 2219 a 396 2295 a FC(Ev)o(en)19 b(without)h(tweaking,)f
+(the)h(serv)o(er)f(can)h(probably)e(handle)h(some)h(100)g(connections)e
+(per)i(second)f(on)h(a)396 2403 y(500Mhz)f(i686.)g(Depending)f(on)i
+(the)g(v)o(erbosity)e(of)i(the)h(logging)d(that)i(you)g(wish,)g(this)h
+(should)e(suf)n(\002ce)h(e)n(v)o(en)f(for)396 2511 y(some)h(thousand)f
+(clients.)-2 2678 y
+SDict begin H.S end
+ -2 2678 a -2 2678 a
+SDict begin 13 H.A end
+ -2 2678 a -2
+2678 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2675) cvn H.B /DEST pdfmark
+end
+ -2 2678 a 396 2785 a FC(Almost)i(all)f(time)h(is)g(spent)f
+(\(i\))g(in)g(the)g(HMA)m(C)h(function)d(that)j(computes)e(the)h
+(message)g(signatures,)f(and)h(\(ii\))g(if)396 2893 y(you)g(do)f(not)h
+(ha)n(v)o(e)g(the)1069 2893 y
+SDict begin H.S end
+ 1069 2893 a 1069 2893 a
+SDict begin 13 H.A end
+
+1069 2893 a 1069 2893 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2676) cvn H.B /DEST pdfmark
+end
+ 1069 2893 a FC(gmp)f(\(GNU)i(MP\))f(multiple)f
+(precision)h(library)-5 b(,)18 b(in)i(the)h(multiple)e(precision)g
+(arithmetic)396 3001 y(library)g(\(for)h(SRP)h(authentication\).)-2
+3185 y
+SDict begin H.S end
+ -2 3185 a -2 3185 a
+SDict begin 13 H.A end
+ -2 3185 a -2 3185 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2677) cvn H.B /DEST pdfmark
+end
+ -2 3185
+a 396 3275 a FC(The)f(reason)g(for)f(\(ii\))h(is)h(that)1245
+3275 y
+SDict begin H.S end
+ 1245 3275 a 1245 3275 a
+SDict begin 13 H.A end
+ 1245 3275 a 1245 3275
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2678) cvn H.B /DEST pdfmark
+end
+ 1245 3275 a FC(samhain/)1546 3275 y
+SDict begin H.S end
+ 1546 3275 a 1546
+3275 a
+SDict begin 13 H.A end
+ 1546 3275 a 1546 3275 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2679) cvn H.B /DEST pdfmark
+end
+ 1546 3275 a FC(yule)d(will)j(use)g(a)f
+(simple,)g(portable,)f(b)n(ut)h(not)g(v)o(ery)f(ef)n(\002cient)h(MP)g
+(library)396 3383 y(that)h(is)g(included)d(in)j(the)f(source)f(code,)h
+(if)1639 3383 y
+SDict begin H.S end
+ 1639 3383 a 1639 3383 a
+SDict begin 13 H.A end
+ 1639 3383 a 1639
+3383 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2680) cvn H.B /DEST pdfmark
+end
+ 1639 3383 a FC(gmp)f(is)j(not)d(present)h(on)g(your)f(system.)-2
+3567 y
+SDict begin H.S end
+ -2 3567 a -2 3567 a
+SDict begin 13 H.A end
+ -2 3567 a -2 3567 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2681) cvn H.B /DEST pdfmark
+end
+ -2 3567
+a 396 3657 a FC(T)-7 b(o)21 b(impro)o(v)o(e)d(performance,)f(you)i
+(can:)-2 3841 y
+SDict begin H.S end
+ -2 3841 a -2 3841 a
+SDict begin 13 H.A end
+ -2 3841 a -2 3841
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2682) cvn H.B /DEST pdfmark
+end
+ -2 3841 a -2 3841 a
+SDict begin H.S end
+ -2 3841 a -2 3841 a
+SDict begin 13 H.A end
+ -2 3841 a -2
+3841 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2683) cvn H.B /DEST pdfmark
+end
+ -2 3841 a -2 3851 a
+SDict begin H.S end
+ -2 3851 a -2 3851 a
+SDict begin 13 H.A end
+ -2 3851
+a -2 3851 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2684) cvn H.B /DEST pdfmark
+end
+ -2 3851 a Black 396 3993 a FB(\225)p Black
+479 3993 a
+SDict begin H.S end
+ 479 3993 a 479 3993 a
+SDict begin 13 H.A end
+ 479 3993 a 479 3993
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2685) cvn H.B /DEST pdfmark
+end
+ 479 3993 a FC(install)703 3993 y
+SDict begin H.S end
+ 703 3993 a 703 3993
+a
+SDict begin 13 H.A end
+ 703 3993 a 703 3993 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2686) cvn H.B /DEST pdfmark
+end
+ 703 3993 a FC(gmp,)g(remo)o(v)o(e)f(the)j
+(\002le)f(con\002g.cache)e(in)j(the)f(source)f(directory)g(\(if)h(you)f
+(ha)n(v)o(e)h(run)3162 3993 y
+SDict begin H.S end
+ 3162 3993 a 3162 3993 a
+SDict begin 13 H.A end
+
+3162 3993 a 3162 3993 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2687) cvn H.B /DEST pdfmark
+end
+ 3162 3993 a Fy(con\002gur)o(e)479
+4101 y FC(before\),)e(and)i(then)g(run)1196 4101 y
+SDict begin H.S end
+ 1196
+4101 a 1196 4101 a
+SDict begin 13 H.A end
+ 1196 4101 a 1196 4101 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2688) cvn H.B /DEST pdfmark
+end
+ 1196 4101
+a Fy(con\002gur)o(e)g FC(and)1688 4101 y
+SDict begin H.S end
+ 1688 4101 a
+1688 4101 a
+SDict begin 13 H.A end
+ 1688 4101 a 1688 4101 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2689) cvn H.B /DEST pdfmark
+end
+ 1688 4101 a Fy(mak)o(e)h
+FC(again.)e(The)2273 4101 y
+SDict begin H.S end
+ 2273 4101 a 2273 4101 a
+SDict begin 13 H.A end
+ 2273
+4101 a 2273 4101 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2690) cvn H.B /DEST pdfmark
+end
+ 2273 4101 a Fy(con\002gur)o(e)g FC(script)h(should)f
+(automatically)g(detect)479 4209 y(the)601 4209 y
+SDict begin H.S end
+ 601
+4209 a 601 4209 a
+SDict begin 13 H.A end
+ 601 4209 a 601 4209 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2691) cvn H.B /DEST pdfmark
+end
+ 601 4209 a FC(gmp)h(library)f
+(and)h(link)g(against)f(it.)-2 4227 y
+SDict begin H.S end
+ -2 4227 a -2 4227
+a
+SDict begin 13 H.A end
+ -2 4227 a -2 4227 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2692) cvn H.B /DEST pdfmark
+end
+ -2 4227 a Black 396 4358 a FB(\225)p
+Black 479 4358 a
+SDict begin H.S end
+ 479 4358 a 479 4358 a
+SDict begin 13 H.A end
+ 479 4358 a 479
+4358 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2693) cvn H.B /DEST pdfmark
+end
+ 479 4358 a FC(use)i(a)f(simple)g(k)o(e)o(yed)f(hash)h
+(\(HASH-TIGER\),)f(which)h(will)h(compute)d(signatures)i(as)h
+(HASH\(message)e(k)o(e)o(y\))479 4466 y(instead)h(of)g(the)g(HMA)m(C)h
+(\(HMA)m(C-TIGER\).)d(This)j(will)g(sa)n(v)o(e)f(tw)o(o)h(of)f(the)g
+(three)f(hash)h(computations)479 4574 y(required)f(for)g(a)i(HMA)m(C)f
+(signature.)-2 4592 y
+SDict begin H.S end
+ -2 4592 a -2 4592 a
+SDict begin 11.7 H.A end
+ -2 4592 a -2
+4592 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2694) cvn H.B /DEST pdfmark
+end
+ -2 4592 a 1060 4692 2502 17 v 1060 5150 17 459
+v 2075 4845 a Fp(CA)-10 b(VEA)f(T)1102 5013 y
+SDict begin H.S end
+ 1102 5013
+a 1102 5013 a
+SDict begin 11.7 H.A end
+ 1102 5013 a 1102 5013 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2696) cvn H.B /DEST pdfmark
+end
+ 1102 5013 a 96
+x Fv(Mak)o(e)20 b(sure)g(y)o(ou)g(use)g(the)g(same)g(signature)e(type)i
+(on)g(ser)r(v)n(er)h(and)e(client)g(!)p 3545 5150 17
+459 v 1060 5167 2502 17 v -2 5260 a
+SDict begin H.S end
+ -2 5260 a -2 5260
+a
+SDict begin 11.7 H.A end
+ -2 5260 a -2 5260 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2697) cvn H.B /DEST pdfmark
+end
+ -2 5260 a 569 5308 a Fr([Misc])569
+5405 y(#)p Black 3661 5805 a Fx(74)p Black eop end
+%%Page: 75 80
+TeXDict begin 75 79 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.75) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2731 104 a
+Fx(Chapter)20 b(6.)g(yule,)g(the)g(lo)o(g)g(server)p
+Black 569 309 a Fr(#)45 b(use)f(simple)g(keyed)g(hash)g(for)g(message)g
+(signatures)569 406 y(#)h(Make)f(sure)g(you)g(set)h(this)f(both)g(for)g
+(client)g(and)g(server)569 503 y(#)569 600 y(MACType=HASH-TIGER)-2
+697 y
+SDict begin H.S end
+ -2 697 a -2 697 a
+SDict begin 13 H.A end
+ -2 697 a -2 697 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2698) cvn H.B /DEST pdfmark
+end
+ -2 697 a Black
+396 847 a FB(\225)p Black 479 847 a
+SDict begin H.S end
+ 479 847 a 479 847
+a
+SDict begin 13 H.A end
+ 479 847 a 479 847 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2699) cvn H.B /DEST pdfmark
+end
+ 479 847 a FC(b)n(uild)20 b(a)h(static)g(binary)e
+(\(use)h(the)1437 847 y
+SDict begin H.S end
+ 1437 847 a 1437 847 a
+SDict begin 13 H.A end
+ 1437 847
+a 1437 847 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2700) cvn H.B /DEST pdfmark
+end
+ 1437 847 a Fy(--enable-static)e FC(switch)j(for)e
+(con\002gure\).)f(Static)j(binaries)e(are)i(f)o(aster)m(,)e(and)479
+955 y(also)i(more)e(secure,)h(because)f(the)o(y)h(cannot)f(be)h(sub)o
+(v)o(erted)e(via)i(libc.)-2 973 y
+SDict begin H.S end
+ -2 973 a -2 973 a
+SDict begin 11.7 H.A end
+ -2
+973 a -2 973 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2701) cvn H.B /DEST pdfmark
+end
+ -2 973 a -2 1097 a
+SDict begin H.S end
+ -2 1097 a -2 1097 a
+SDict begin 11.7 H.A end
+
+-2 1097 a -2 1097 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2703) cvn H.B /DEST pdfmark
+end
+ -2 1097 a 645 1176 a Fw(NO)m(TE:)h
+Fv(Unf)n(or)s(tunately)16 b(this)k(is)h(not)f(possib)o(le)e(on)i(Solar)
+q(is)o(.)f(This)h(is)h(not)e(a)h(b)o(ug)f(in)3011 1176
+y
+SDict begin H.S end
+ 3011 1176 a 3011 1176 a
+SDict begin 11.7 H.A end
+ 3011 1176 a 3011 1176 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2704) cvn H.B /DEST pdfmark
+end
+ 3011
+1176 a Fv(samhain,)g(b)o(ut)g(is)645 1273 y(because)h(some)g(functions)
+f(in)h(Solar)q(is)f(are)h(only)f(supplied)g(b)o(y)h(dynamic)g(libr)o
+(ar)q(ies)o(.)438 1614 y
+SDict begin H.S end
+ 438 1614 a 438 1614 a
+SDict begin 13 H.A end
+ 438 1614
+a 438 1614 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2705) cvn H.B /DEST pdfmark
+end
+ 438 1614 a Black 396 1763 a FB(\225)p Black
+479 1763 a
+SDict begin H.S end
+ 479 1763 a 479 1763 a
+SDict begin 13 H.A end
+ 479 1763 a 479 1763
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2706) cvn H.B /DEST pdfmark
+end
+ 479 1763 a FC(change)f(the)h(compiler)f(switches)i(to)f(optimize)g
+(more)f(aggressi)n(v)o(ely)-5 b(.)-2 1781 y
+SDict begin H.S end
+ -2 1781 a
+-2 1781 a
+SDict begin 13 H.A end
+ -2 1781 a -2 1781 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2707) cvn H.B /DEST pdfmark
+end
+ -2 1781 a Black 396 1913
+a FB(\225)p Black 479 1913 a
+SDict begin H.S end
+ 479 1913 a 479 1913 a
+SDict begin 13 H.A end
+ 479
+1913 a 479 1913 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2708) cvn H.B /DEST pdfmark
+end
+ 479 1913 a FC(if)21 b(on)f(a)g(commercial)f(UNIX,)h
+(check)f(whether)g(the)i(nati)n(v)o(e)e(compiler)g(produces)f(f)o
+(aster)j(code)e(than)h(gcc)g(\(you)479 2021 y(need)g(an)g(ANSI)g(C)h
+(compiler\).)e(The)1561 2021 y
+SDict begin H.S end
+ 1561 2021 a 1561 2021
+a
+SDict begin 13 H.A end
+ 1561 2021 a 1561 2021 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2709) cvn H.B /DEST pdfmark
+end
+ 1561 2021 a Fy(con\002gur)o(e)g
+FC(script)h(honours)e(CC)k(\(compiler\))c(and)i(CFLA)m(GS)479
+2129 y(en)m(vironment)d(v)n(ariables.)p Black 3661 5805
+a Fx(75)p Black eop end
+%%Page: 76 81
+TeXDict begin 76 80 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.76) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black -2 226
+a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:EXTERN) cvn H.B /DEST pdfmark
+end
+ -2 226 a 125 x
+Fz(Chapter)48 b(7.)f(Hooks)h(f)m(or)g(External)f(Pr)m(ograms)3263
+351 y
+SDict begin H.S end
+ 3263 351 a 3263 351 a
+SDict begin 26.957 H.A end
+ 3263 351 a 3263 351 a
+SDict begin [ /View [/XYZ H.V] /Dest (9.0) cvn H.B /DEST pdfmark end
+ 3263
+351 a -2 609 a
+SDict begin H.S end
+ -2 609 a -2 609 a
+SDict begin 13 H.A end
+ -2 609 a -2 609 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2712) cvn H.B /DEST pdfmark
+end
+ -2
+609 a -2 609 a
+SDict begin H.S end
+ -2 609 a -2 609 a
+SDict begin 13 H.A end
+ -2 609 a -2 609 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2713) cvn H.B /DEST pdfmark
+end
+ -2
+609 a 396 679 a FC(samhain)20 b(pro)o(vides)e(se)n(v)o(eral)i(hooks)f
+(for)g(e)o(xternal)g(programs)g(for)g(\(re-\)processing)e(the)k(audit)e
+(trail,)i(including)396 787 y(pipes,)f(a)h(System)f(V)h(message)f
+(queue,)e(and)i(the)g(option)f(to)i(call)f(e)o(xternal)f(programs.)-2
+805 y
+SDict begin H.S end
+ -2 805 a -2 805 a
+SDict begin 13 H.A end
+ -2 805 a -2 805 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:PIPES) cvn H.B /DEST pdfmark
+end
+ -2 805 a 359
+x Fu(7.1.)39 b(Pipes)661 1164 y
+SDict begin H.S end
+ 661 1164 a 661 1164 a
+SDict begin 22.464 H.A end
+
+661 1164 a 661 1164 a
+SDict begin [ /View [/XYZ H.V] /Dest (9.61.1) cvn H.B /DEST pdfmark
+end
+ 661 1164 a -2 1360 a
+SDict begin H.S end
+ -2 1360 a
+-2 1360 a
+SDict begin 13 H.A end
+ -2 1360 a -2 1360 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2716) cvn H.B /DEST pdfmark
+end
+ -2 1360 a 396 1438 a FC(It)21
+b(is)g(possible)f(to)g(use)h(named)e(pipes)h(as)h('console')d(de)n
+(vice\(s\))h(\()2262 1438 y
+SDict begin H.S end
+ 2262 1438 a 2262 1438 a
+SDict begin 13 H.A end
+ 2262
+1438 a 2262 1438 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2717) cvn H.B /DEST pdfmark
+end
+ 2262 1438 a FC(samhain)g(supports)g(up)h(to)h(tw)o
+(o)f(console)f(de)n(vices,)396 1546 y(both)h(of)g(which)f(may)h(be)g
+(named)f(pipes.)h(Y)-9 b(ou)19 b(can)h(set)h(the)g(de)n(vice)e(path)h
+(at)g(compile)g(time)g(\(see)p 0 TeXcolorgray 3216 1546
+a
+SDict begin H.S end
+ 3216 1546 a FC(Section)g(A.5)3609 1546 y
+SDict begin 13 H.L end
+ 3609 1546
+a 3609 1546 a
+SDict begin [ /Subtype /Link /Dest (0:PATHS) cvn /H /I /Border [0 0
+0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3609 1546 a Black FC(>\),)396 1654 y(and/or)f(in)h(the)h
+(con\002guration)c(\002le)k(\(see)p 0 TeXcolorgray 1581
+1654 a
+SDict begin H.S end
+ 1581 1654 a FC(Section)f(4.8)1956 1654 y
+SDict begin 13 H.L end
+ 1956
+1654 a 1956 1654 a
+SDict begin [ /Subtype /Link /Dest (0:CONSOLEDETAILS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1956 1654 a Black -1 w FC(>\).)-2
+1682 y
+SDict begin H.S end
+ -2 1682 a -2 1682 a
+SDict begin 13 H.A end
+ -2 1682 a -2 1682 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SYSTEM-V-MESSAGE-QUEUE) cvn
+H.B /DEST pdfmark end
+ -2 1682
+a 359 x Fu(7.2.)39 b(System)f(V)i(messa)o(g)q(e)e(queue)2041
+2041 y
+SDict begin H.S end
+ 2041 2041 a 2041 2041 a
+SDict begin 22.464 H.A end
+ 2041 2041 a 2041 2041
+a
+SDict begin [ /View [/XYZ H.V] /Dest (9.62.1) cvn H.B /DEST pdfmark
+end
+ 2041 2041 a -2 2239 a
+SDict begin H.S end
+ -2 2239 a -2 2239 a
+SDict begin 13 H.A end
+ -2 2239 a
+-2 2239 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2722) cvn H.B /DEST pdfmark
+end
+ -2 2239 a 396 2315 a FC(It)21 b(is)g(possible)f(to)g(ha)n(v)o
+(e)g(a)g(SystemV)h(IPC)f(message)g(queue)g(\(which)f(is)i(de\002nitely)
+e(more)h(ele)o(gant)f(than)g(named)396 2423 y(pipes\))h(as)h
+(additional)e('console')f(de)n(vice.)h(Y)-9 b(ou)20 b(need)g(to)g
+(compile)f(with)2523 2423 y
+SDict begin H.S end
+ 2523 2423 a 2523 2423 a
+SDict begin 13 H.A end
+ 2523
+2423 a 2523 2423 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2723) cvn H.B /DEST pdfmark
+end
+ 2523 2423 a Fy(--enable-message-queue=)3416
+2423 y
+SDict begin H.S end
+ 3416 2423 a 3416 2423 a
+SDict begin 13 H.A end
+ 3416 2423 a 3416 2423
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2724) cvn H.B /DEST pdfmark
+end
+ 3416 2423 a Fl(MODE)k FC(and)396 2531 y(use)e(the)f(option)883
+2531 y
+SDict begin H.S end
+ 883 2531 a 883 2531 a
+SDict begin 13 H.A end
+ 883 2531 a 883 2531 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2725) cvn H.B /DEST pdfmark
+end
+ 883
+2531 a Fy(MessageQueueActi)o(v)o(e=)1686 2531 y
+SDict begin H.S end
+ 1686
+2531 a 1686 2531 a
+SDict begin 13 H.A end
+ 1686 2531 a 1686 2531 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2726) cvn H.B /DEST pdfmark
+end
+ 1686 2531
+a Fl(T/F)6 b FC(.)-2 2715 y
+SDict begin H.S end
+ -2 2715 a -2 2715 a
+SDict begin 13 H.A end
+ -2 2715
+a -2 2715 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2727) cvn H.B /DEST pdfmark
+end
+ -2 2715 a 396 2805 a FC(The)20 b(def)o(ault)g(mode)f(is)i
+(0700)e(\(rwx------\),)e(b)n(ut)j(this)g(is)i(a)e(compile)f(option)g
+(\(message)h(queues)f(are)396 2913 y(k)o(ernel-resident,)f(b)n(ut)i(ha)
+n(v)o(e)g(access)g(permissions)g(lik)o(e)g(\002les\).)h(T)-7
+b(o)20 b(get)g(the)h(System)f(V)h(IPC)g(k)o(e)o(y)e(for)h(the)g
+(message)396 3021 y(queue,)f(use)767 3021 y
+SDict begin H.S end
+ 767 3021
+a 767 3021 a
+SDict begin 13 H.A end
+ 767 3021 a 767 3021 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2728) cvn H.B /DEST pdfmark
+end
+ 767 3021 a Fy(ftok\("/tmp",)h
+('#'\);)f FC(\()1439 3021 y
+SDict begin H.S end
+ 1439 3021 a 1439 3021 a
+SDict begin 13 H.A end
+ 1439
+3021 a 1439 3021 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2729) cvn H.B /DEST pdfmark
+end
+ 1439 3021 a Fy(man)h(ftok)p FC(,)1800
+3021 y
+SDict begin H.S end
+ 1800 3021 a 1800 3021 a
+SDict begin 13 H.A end
+ 1800 3021 a 1800 3021
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2730) cvn H.B /DEST pdfmark
+end
+ 1800 3021 a Fy(man)h(msgctl)p FC(,)2250 3021 y
+SDict begin H.S end
+ 2250
+3021 a 2250 3021 a
+SDict begin 13 H.A end
+ 2250 3021 a 2250 3021 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2731) cvn H.B /DEST pdfmark
+end
+ 2250 3021
+a Fy(man)g(msgr)o(cv)p FC(\).)d(Note)j(that)f(not)g(all)g(systems)396
+3129 y(support)f(SysV)i(IPC.)-2 3147 y
+SDict begin H.S end
+ -2 3147 a -2 3147
+a
+SDict begin 11.7 H.A end
+ -2 3147 a -2 3147 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2732) cvn H.B /DEST pdfmark
+end
+ -2 3147 a -2 3272 a
+SDict begin H.S end
+ -2 3272 a -2
+3272 a
+SDict begin 11.7 H.A end
+ -2 3272 a -2 3272 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2734) cvn H.B /DEST pdfmark
+end
+ -2 3272 a 562 3351 a Fw(TIP:)f
+Fv(There)f(is)i(a)f(demo)g(application)d(\(a)j(GNOME)h(panel)e
+(applet\))f(a)o(v)n(ailab)o(le)e(on)k(the)g(do)o(wnload)d(site)j(that)
+562 3448 y(uses)h(the)f(message)f(queue)o(.)-2 3680 y
+SDict begin H.S end
+
+-2 3680 a -2 3680 a
+SDict begin 13 H.A end
+ -2 3680 a -2 3680 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CALLING-EXTERNAL-PROGRAMS)
+cvn H.B /DEST pdfmark end
+ -2 3680 a 377
+x Fu(7.3.)39 b(Calling)f(e)n(xternal)g(pr)m(ograms)2044
+4057 y
+SDict begin H.S end
+ 2044 4057 a 2044 4057 a
+SDict begin 22.464 H.A end
+ 2044 4057 a 2044 4057
+a
+SDict begin [ /View [/XYZ H.V] /Dest (9.63.1) cvn H.B /DEST pdfmark
+end
+ 2044 4057 a -2 4255 a
+SDict begin H.S end
+ -2 4255 a -2 4255 a
+SDict begin 13 H.A end
+ -2 4255 a
+-2 4255 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2737) cvn H.B /DEST pdfmark
+end
+ -2 4255 a -2 4255 a
+SDict begin H.S end
+ -2 4255 a -2 4255 a
+SDict begin 13 H.A end
+ -2
+4255 a -2 4255 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2738) cvn H.B /DEST pdfmark
+end
+ -2 4255 a 396 4331 a FC(samhain)20 b(may)f(in)m(v)n
+(ok)o(e)g(e)o(xternal)g(programs)g(or)h(scripts)g(in)g(order)f(to)i
+(implement)e(logging)f(capabilities)i(that)g(are)396
+4439 y(not)g(supported)e(by)975 4439 y
+SDict begin H.S end
+ 975 4439 a 975
+4439 a
+SDict begin 13 H.A end
+ 975 4439 a 975 4439 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2739) cvn H.B /DEST pdfmark
+end
+ 975 4439 a FC(samhain)i(itself)g(\(e.g.)g
+(pager)f(support\).)f(This)i(section)g(pro)o(vides)f(an)h(o)o(v)o
+(ervie)n(w)e(of)i(this)396 4547 y(capability)-5 b(.)-2
+4731 y
+SDict begin H.S end
+ -2 4731 a -2 4731 a
+SDict begin 13 H.A end
+ -2 4731 a -2 4731 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2740) cvn H.B /DEST pdfmark
+end
+ -2 4731
+a 396 4821 a FC(External)19 b(programs/scripts)f(in)m(v)n(ok)o(ed)h
+(for)g(logging)g(will)i(recei)n(v)o(e)e(the)h(formatted)f(log)h
+(message)g(on)3352 4821 y
+SDict begin H.S end
+ 3352 4821 a 3352 4821 a
+SDict begin 13 H.A end
+ 3352
+4821 a 3352 4821 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2741) cvn H.B /DEST pdfmark
+end
+ 3352 4821 a Fx(stdin)p FC(.)g(The)396
+4929 y(program)e(should)h(e)o(xpect)h(that)1322 4929
+y
+SDict begin H.S end
+ 1322 4929 a 1322 4929 a
+SDict begin 13 H.A end
+ 1322 4929 a 1322 4929 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2742) cvn H.B /DEST pdfmark
+end
+ 1322
+4929 a Fx(stdout)h FC(and)1688 4929 y
+SDict begin H.S end
+ 1688 4929 a 1688
+4929 a
+SDict begin 13 H.A end
+ 1688 4929 a 1688 4929 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2743) cvn H.B /DEST pdfmark
+end
+ 1688 4929 a Fx(stderr)i
+FC(are)d(closed,)g(and)f(that)i(the)f(w)o(orking)e(directory)h(is)i
+(the)f(root)396 5037 y(directory)-5 b(.)p Black 3660
+5805 a Fx(76)p Black eop end
+%%Page: 77 82
+TeXDict begin 77 81 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.77) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2385 104 a
+Fx(Chapter)20 b(7.)g(Hooks)g(for)g(External)g(Pr)l(o)o(gr)o(ams)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2744) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a FC(Each)g(e)o(xternal)f(program)f(must)i(be)g
+(de\002ned)f(in)i(the)f(con\002guration)e(\002le,)i(in)g(a)h(section)f
+(starting)g(with)g(the)g(header)396 417 y
+SDict begin H.S end
+ 396 417 a 396
+417 a
+SDict begin 13 H.A end
+ 396 417 a 396 417 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2745) cvn H.B /DEST pdfmark
+end
+ 396 417 a Fy([Exter)o(nal])p
+FC(.)f(In)h(addition,)1204 417 y
+SDict begin H.S end
+ 1204 417 a 1204 417
+a
+SDict begin 13 H.A end
+ 1204 417 a 1204 417 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2746) cvn H.B /DEST pdfmark
+end
+ 1204 417 a Fy(Exter)o(nalSe)o(v)o(erity)e
+FC(must)j(be)f(set)h(to)f(an)g(appropriate)e(threshold)h(in)h(the)g
+(section)396 525 y
+SDict begin H.S end
+ 396 525 a 396 525 a
+SDict begin 13 H.A end
+ 396 525 a 396
+525 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2747) cvn H.B /DEST pdfmark
+end
+ 396 525 a Fy([Log])p FC(.)-2 707 y
+SDict begin H.S end
+ -2 707 a -2
+707 a
+SDict begin 13 H.A end
+ -2 707 a -2 707 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2748) cvn H.B /DEST pdfmark
+end
+ -2 707 a 396 799 a FC(Each)g(program)e
+(de\002nition)h(starts)i(with)f(the)h(line)-2 983 y
+SDict begin H.S end
+ -2
+983 a -2 983 a
+SDict begin 13 H.A end
+ -2 983 a -2 983 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2749) cvn H.B /DEST pdfmark
+end
+ -2 983 a -2 983 a
+SDict begin H.S end
+ -2
+983 a -2 983 a
+SDict begin 13 H.A end
+ -2 983 a -2 983 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2750) cvn H.B /DEST pdfmark
+end
+ -2 983 a 396 1073 a
+Fy(OpenCommand=)1011 1073 y
+SDict begin H.S end
+ 1011 1073 a 1011 1073 a
+SDict begin 13 H.A end
+ 1011
+1073 a 1011 1073 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2751) cvn H.B /DEST pdfmark
+end
+ 1011 1073 a Fl(/full/path)-2 1255
+y
+SDict begin H.S end
+ -2 1255 a -2 1255 a
+SDict begin 13 H.A end
+ -2 1255 a -2 1255 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2752) cvn H.B /DEST pdfmark
+end
+ -2 1255 a 396
+1346 a FC(Options)e(for)g(the)g(program)f(may)h(follo)n(w)-5
+b(.)18 b(The)h(de\002nition)f(of)h(an)h(e)o(xternal)e(program)f(is)k
+(ended)d(when)h(the)g(section)396 1454 y(ends,)h(or)g(when)f(another)
+1150 1454 y
+SDict begin H.S end
+ 1150 1454 a 1150 1454 a
+SDict begin 13 H.A end
+ 1150 1454 a 1150
+1454 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2753) cvn H.B /DEST pdfmark
+end
+ 1150 1454 a Fy(OpenCommand=)1765 1454 y
+SDict begin H.S end
+ 1765 1454
+a 1765 1454 a
+SDict begin 13 H.A end
+ 1765 1454 a 1765 1454 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2754) cvn H.B /DEST pdfmark
+end
+ 1765 1454 a Fl(/full/path)h
+FC(line)g(for)g(the)g(ne)o(xt)g(command)e(is)j(encountered.)-2
+1637 y
+SDict begin H.S end
+ -2 1637 a -2 1637 a
+SDict begin 13 H.A end
+ -2 1637 a -2 1637 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2755) cvn H.B /DEST pdfmark
+end
+ -2 1637
+a -2 1637 a
+SDict begin H.S end
+ -2 1637 a -2 1637 a
+SDict begin 13 H.A end
+ -2 1637 a -2 1637 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2756) cvn H.B /DEST pdfmark
+end
+ -2
+1637 a -2 1647 a
+SDict begin H.S end
+ -2 1647 a -2 1647 a
+SDict begin 13 H.A end
+ -2 1647 a -2 1647
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2757) cvn H.B /DEST pdfmark
+end
+ -2 1647 a Black 396 1791 a FB(\225)p Black 479 1791
+a
+SDict begin H.S end
+ 479 1791 a 479 1791 a
+SDict begin 13 H.A end
+ 479 1791 a 479 1791 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2758) cvn H.B /DEST pdfmark
+end
+ 479 1791
+a FC(There)f(are)g(se)n(v)o(eral)f(places)i(in)1382 1791
+y
+SDict begin H.S end
+ 1382 1791 a 1382 1791 a
+SDict begin 13 H.A end
+ 1382 1791 a 1382 1791 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2759) cvn H.B /DEST pdfmark
+end
+ 1382
+1791 a FC(samhain)e(where)h(e)o(xternal)f(programs)f(may)i(be)g
+(called.)g(Each)g(such)f(place)h(is)479 1899 y(identi\002ed)g(by)f(a)
+975 1899 y
+SDict begin H.S end
+ 975 1899 a 975 1899 a
+SDict begin 13 H.A end
+ 975 1899 a 975 1899
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2760) cvn H.B /DEST pdfmark
+end
+ 975 1899 a Fx(type)p FC(.)h(Currently)-5 b(,)18 b(v)n(alid)i(types)g
+(are:)-2 2083 y
+SDict begin H.S end
+ -2 2083 a -2 2083 a
+SDict begin 13 H.A end
+ -2 2083 a -2 2083
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2761) cvn H.B /DEST pdfmark
+end
+ -2 2083 a -2 2083 a
+SDict begin H.S end
+ -2 2083 a -2 2083 a
+SDict begin 13 H.A end
+ -2 2083 a -2
+2083 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2762) cvn H.B /DEST pdfmark
+end
+ -2 2083 a -2 2083 a
+SDict begin H.S end
+ -2 2083 a -2 2083 a
+SDict begin 13 H.A end
+ -2 2083
+a -2 2083 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2763) cvn H.B /DEST pdfmark
+end
+ -2 2083 a Black 479 2214 a Fa(\225)p Black
+562 2214 a
+SDict begin H.S end
+ 562 2214 a 562 2214 a
+SDict begin 13 H.A end
+ 562 2214 a 562 2214
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2764) cvn H.B /DEST pdfmark
+end
+ 562 2214 a 562 2214 a
+SDict begin H.S end
+ 562 2214 a 562 2214 a
+SDict begin 13 H.A end
+ 562 2214
+a 562 2214 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2765) cvn H.B /DEST pdfmark
+end
+ 562 2214 a Fx(lo)o(g)g FC(\227)h(An)f(e)o(xternal)f
+(logging)g(f)o(acility)-5 b(,)19 b(which)h(is)h(handled)e(lik)o(e)h
+(other)f(logging)g(f)o(acilities.)h(The)g(program)562
+2322 y(will)h(recei)n(v)o(e)e(the)i(logged)d(message)i(on)g(stdin,)g
+(follo)n(wed)f(by)h(a)g(ne)n(wline,)g(follo)n(wed)e(by)i(the)g(string)
+3474 2322 y
+SDict begin H.S end
+ 3474 2322 a 3474 2322 a
+SDict begin 13 H.A end
+ 3474 2322 a 3474
+2322 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2766) cvn H.B /DEST pdfmark
+end
+ 3474 2322 a Fx([EOF])562 2430 y FC(and)g(another)f(ne)n(wline.)
+-2 2431 y
+SDict begin H.S end
+ -2 2431 a -2 2431 a
+SDict begin 13 H.A end
+ -2 2431 a -2 2431 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2767) cvn H.B /DEST pdfmark
+end
+ -2
+2431 a Black 479 2579 a Fa(\225)p Black 562 2579 a
+SDict begin H.S end
+ 562
+2579 a 562 2579 a
+SDict begin 13 H.A end
+ 562 2579 a 562 2579 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2768) cvn H.B /DEST pdfmark
+end
+ 562 2579 a 562
+2579 a
+SDict begin H.S end
+ 562 2579 a 562 2579 a
+SDict begin 13 H.A end
+ 562 2579 a 562 2579 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2769) cvn H.B /DEST pdfmark
+end
+ 562
+2579 a Fx(srv)j FC(\227)e(Ex)o(ecuted)f(by)h(the)g(serv)o(er)m(,)e
+(whene)n(v)o(er)h(the)h(status)h(of)f(a)g(client,)g(as)h(displayed)e
+(in)h(the)h(HTML)f(status)562 2687 y(table,)g(has)h(changed.)d(The)i
+(program)e(will)j(recei)n(v)o(e)e(the)h(client)g(hostname,)f(the)h
+(timestamp,)g(and)f(the)h(ne)n(w)562 2795 y(status,)h(follo)n(wed)e(by)
+h(a)g(ne)n(wline,)f(follo)n(wed)g(by)1988 2795 y
+SDict begin H.S end
+ 1988
+2795 a 1988 2795 a
+SDict begin 13 H.A end
+ 1988 2795 a 1988 2795 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2770) cvn H.B /DEST pdfmark
+end
+ 1988 2795
+a Fx([EOF])i FC(and)e(another)g(ne)n(wline.)438 3063
+y
+SDict begin H.S end
+ 438 3063 a 438 3063 a
+SDict begin 13 H.A end
+ 438 3063 a 438 3063 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2771) cvn H.B /DEST pdfmark
+end
+ 438 3063
+a Black 396 3212 a FB(\225)p Black 479 3212 a
+SDict begin H.S end
+ 479 3212
+a 479 3212 a
+SDict begin 13 H.A end
+ 479 3212 a 479 3212 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2772) cvn H.B /DEST pdfmark
+end
+ 479 3212 a FC(An)o(y)h(number)e(of)i
+(e)o(xternal)f(programs)f(may)i(be)g(de\002ned)f(in)i(the)f
+(con\002guration)d(\002le.)k(Each)f(e)o(xternal)f(program)479
+3320 y(has)i(a)668 3320 y
+SDict begin H.S end
+ 668 3320 a 668 3320 a
+SDict begin 13 H.A end
+ 668 3320
+a 668 3320 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2773) cvn H.B /DEST pdfmark
+end
+ 668 3320 a Fx(type)p FC(,)f(which)g(is)1148
+3320 y
+SDict begin H.S end
+ 1148 3320 a 1148 3320 a
+SDict begin 13 H.A end
+ 1148 3320 a 1148 3320
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2774) cvn H.B /DEST pdfmark
+end
+ 1148 3320 a Fx(lo)o(g)g FC(by)g(def)o(ault.)f(Whene)n(v)o(er)g(e)o
+(xternal)f(programs)h(are)h(called,)g(all)g(programs)f(of)h(the)479
+3428 y(appropriate)878 3428 y
+SDict begin H.S end
+ 878 3428 a 878 3428 a
+SDict begin 13 H.A end
+ 878
+3428 a 878 3428 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2775) cvn H.B /DEST pdfmark
+end
+ 878 3428 a Fx(type)g FC(are)g(e)o(x)o(ecuted.)e(The)
+1643 3428 y
+SDict begin H.S end
+ 1643 3428 a 1643 3428 a
+SDict begin 13 H.A end
+ 1643 3428 a 1643
+3428 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2776) cvn H.B /DEST pdfmark
+end
+ 1643 3428 a Fx(type)i FC(can)g(be)g(set)h(with)2319
+3428 y
+SDict begin H.S end
+ 2319 3428 a 2319 3428 a
+SDict begin 13 H.A end
+ 2319 3428 a 2319 3428
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2777) cvn H.B /DEST pdfmark
+end
+ 2319 3428 a Fy(SetT)-6 b(ype=)2651 3428 y
+SDict begin H.S end
+ 2651 3428
+a 2651 3428 a
+SDict begin 13 H.A end
+ 2651 3428 a 2651 3428 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2778) cvn H.B /DEST pdfmark
+end
+ 2651 3428 a Fl(type)-2
+3446 y
+SDict begin H.S end
+ -2 3446 a -2 3446 a
+SDict begin 13 H.A end
+ -2 3446 a -2 3446 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2779) cvn H.B /DEST pdfmark
+end
+ -2 3446
+a Black 396 3578 a FB(\225)p Black 479 3578 a
+SDict begin H.S end
+ 479 3578
+a 479 3578 a
+SDict begin 13 H.A end
+ 479 3578 a 479 3578 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2780) cvn H.B /DEST pdfmark
+end
+ 479 3578 a FC(External)19
+b(programs)g(must)h(be)g(on)g(a)g(trusted)g(path)g(\(see)p
+0 TeXcolorgray 2123 3578 a
+SDict begin H.S end
+ 2123 3578 a FC(Section)g(2.10.1)2603
+3578 y
+SDict begin 13 H.L end
+ 2603 3578 a 2603 3578 a
+SDict begin [ /Subtype /Link /Dest (0:DEFTRUST) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2603 3578 a Black -2 w
+FC(>\),)g(i.e.)g(must)g(not)g(be)g(writeable)g(by)479
+3686 y(untrusted)f(users.)-2 3687 y
+SDict begin H.S end
+ -2 3687 a -2 3687
+a
+SDict begin 13 H.A end
+ -2 3687 a -2 3687 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2782) cvn H.B /DEST pdfmark
+end
+ -2 3687 a Black 396 3835 a FB(\225)p
+Black 479 3835 a
+SDict begin H.S end
+ 479 3835 a 479 3835 a
+SDict begin 13 H.A end
+ 479 3835 a 479
+3835 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2783) cvn H.B /DEST pdfmark
+end
+ 479 3835 a FC(F)o(or)h(enhanced)e(security)-5
+b(,)19 b(the)i(\(192-bit)d(TIGER\))i(checksum)e(of)i(the)g(e)o(xternal)
+f(program/script)f(may)i(be)479 3943 y(speci\002ed)g(in)h(the)f
+(con\002guration)d(\002le:)1616 3943 y
+SDict begin H.S end
+ 1616 3943 a 1616
+3943 a
+SDict begin 13 H.A end
+ 1616 3943 a 1616 3943 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2784) cvn H.B /DEST pdfmark
+end
+ 1616 3943 a Fy(SetChecksum=)2147
+3943 y
+SDict begin H.S end
+ 2147 3943 a 2147 3943 a
+SDict begin 13 H.A end
+ 2147 3943 a 2147 3943
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2785) cvn H.B /DEST pdfmark
+end
+ 2147 3943 a Fl(checksum)24 b FC(\(one)19 b(string,)h(no)f(blanks)h
+(in)g(checksum\))-2 3961 y
+SDict begin H.S end
+ -2 3961 a -2 3961 a
+SDict begin 13 H.A end
+ -2 3961
+a -2 3961 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2786) cvn H.B /DEST pdfmark
+end
+ -2 3961 a Black 396 4092 a FB(\225)p Black
+479 4092 a
+SDict begin H.S end
+ 479 4092 a 479 4092 a
+SDict begin 13 H.A end
+ 479 4092 a 479 4092
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2787) cvn H.B /DEST pdfmark
+end
+ 479 4092 a FC(Command)f(line)h(ar)o(guments)e(and)i(en)m(vironment)d
+(v)n(ariables)j(for)f(each)h(e)o(xternal)f(program)f(are)i
+(con\002gurable)479 4200 y(\(the)g(def)o(ault)g(is)h(no)f(command)e
+(line)i(ar)o(guments,)e(and)i(only)f(the)h(timezone)f(in)i(the)f(en)m
+(vironment\):)-2 4384 y
+SDict begin H.S end
+ -2 4384 a -2 4384 a
+SDict begin 13 H.A end
+ -2 4384 a
+-2 4384 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2788) cvn H.B /DEST pdfmark
+end
+ -2 4384 a -2 4384 a
+SDict begin H.S end
+ -2 4384 a -2 4384 a
+SDict begin 13 H.A end
+ -2
+4384 a -2 4384 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2789) cvn H.B /DEST pdfmark
+end
+ -2 4384 a 479 4474 a Fy(SetCommandline=)1140
+4474 y
+SDict begin H.S end
+ 1140 4474 a 1140 4474 a
+SDict begin 13 H.A end
+ 1140 4474 a 1140 4474
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2790) cvn H.B /DEST pdfmark
+end
+ 1140 4474 a Fl(full_command_line)e FC(\(full)i(command)e(line)i
+(starting)g(with)h(the)f(name)f(of)h(the)479 4582 y(program\))-2
+4766 y
+SDict begin H.S end
+ -2 4766 a -2 4766 a
+SDict begin 13 H.A end
+ -2 4766 a -2 4766 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2791) cvn H.B /DEST pdfmark
+end
+ -2 4766
+a -2 4766 a
+SDict begin H.S end
+ -2 4766 a -2 4766 a
+SDict begin 13 H.A end
+ -2 4766 a -2 4766 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2792) cvn H.B /DEST pdfmark
+end
+ -2
+4766 a 479 4856 a Fy(Seten)m(vir)o(on=)906 4856 y
+SDict begin H.S end
+ 906
+4856 a 906 4856 a
+SDict begin 13 H.A end
+ 906 4856 a 906 4856 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2793) cvn H.B /DEST pdfmark
+end
+ 906 4856 a Fl(KEY=value)438
+4975 y
+SDict begin H.S end
+ 438 4975 a 438 4975 a
+SDict begin 13 H.A end
+ 438 4975 a 438 4975 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2794) cvn H.B /DEST pdfmark
+end
+ 438
+4975 a Black 396 5124 a FB(\225)p Black 479 5124 a
+SDict begin H.S end
+ 479
+5124 a 479 5124 a
+SDict begin 13 H.A end
+ 479 5124 a 479 5124 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2795) cvn H.B /DEST pdfmark
+end
+ 479 5124 a FC(The)g(user)g
+(whose)g(credentials)f(shall)i(be)f(used,)g(can)g(be)g(speci\002ed:)
+2446 5124 y
+SDict begin H.S end
+ 2446 5124 a 2446 5124 a
+SDict begin 13 H.A end
+ 2446 5124 a 2446
+5124 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2796) cvn H.B /DEST pdfmark
+end
+ 2446 5124 a Fy(SetCr)o(edentials=)3014 5124 y
+SDict begin H.S end
+
+3014 5124 a 3014 5124 a
+SDict begin 13 H.A end
+ 3014 5124 a 3014 5124 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2797) cvn H.B /DEST pdfmark
+end
+ 3014
+5124 a Fl(username)-2 5142 y
+SDict begin H.S end
+ -2 5142 a -2 5142 a
+SDict begin 13 H.A end
+ -2 5142
+a -2 5142 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2798) cvn H.B /DEST pdfmark
+end
+ -2 5142 a Black 396 5273 a FB(\225)p Black
+479 5273 a
+SDict begin H.S end
+ 479 5273 a 479 5273 a
+SDict begin 13 H.A end
+ 479 5273 a 479 5273
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2799) cvn H.B /DEST pdfmark
+end
+ 479 5273 a FC(Some)g(\002lters)h(are)f(a)n(v)n(ailable)g(to)g(mak)o
+(e)g(the)g(e)o(x)o(ecution)e(of)i(an)g(e)o(xternal)f(program)f
+(dependent)g(on)i(the)g(message)479 5381 y(content:)p
+Black 3658 5805 a Fx(77)p Black eop end
+%%Page: 78 83
+TeXDict begin 78 82 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.78) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2385 104 a
+Fx(Chapter)20 b(7.)g(Hooks)g(for)g(External)g(Pr)l(o)o(gr)o(ams)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2800) cvn H.B /DEST pdfmark
+end
+ -2
+226 a -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2801) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 479 309 a Fy(SetFilterNot=)966 309 y
+SDict begin H.S end
+ 966 309 a
+966 309 a
+SDict begin 13 H.A end
+ 966 309 a 966 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2802) cvn H.B /DEST pdfmark
+end
+ 966 309 a Fl(list)f FC(If)h(an)o(y)f(w)o
+(ord)h(in)g(')o(list')h(matches)f(a)g(w)o(ord)g(in)g(the)g(message,)g
+(the)g(program)e(is)j(not)479 417 y(e)o(x)o(ecuted,)d(else)-2
+595 y
+SDict begin H.S end
+ -2 595 a -2 595 a
+SDict begin 13 H.A end
+ -2 595 a -2 595 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2803) cvn H.B /DEST pdfmark
+end
+ -2 595 a -2
+595 a
+SDict begin H.S end
+ -2 595 a -2 595 a
+SDict begin 13 H.A end
+ -2 595 a -2 595 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2804) cvn H.B /DEST pdfmark
+end
+ -2 595 a 479
+691 a Fy(SetFilterAnd=)988 691 y
+SDict begin H.S end
+ 988 691 a 988 691 a
+SDict begin 13 H.A end
+
+988 691 a 988 691 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2805) cvn H.B /DEST pdfmark
+end
+ 988 691 a Fl(list)i FC(if)g(an)o(y)g(w)o(ord)f(in)i
+(')o(list')f(is)i(missing)e(in)g(the)g(message,)g(the)g(program)e(is)j
+(not)f(e)o(x)o(ecuted,)479 799 y(else)-2 965 y
+SDict begin H.S end
+ -2 965
+a -2 965 a
+SDict begin 13 H.A end
+ -2 965 a -2 965 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2806) cvn H.B /DEST pdfmark
+end
+ -2 965 a -2 965 a
+SDict begin H.S end
+ -2 965
+a -2 965 a
+SDict begin 13 H.A end
+ -2 965 a -2 965 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2807) cvn H.B /DEST pdfmark
+end
+ -2 965 a 479 1073 a Fy(SetFilterOr=)938
+1073 y
+SDict begin H.S end
+ 938 1073 a 938 1073 a
+SDict begin 13 H.A end
+ 938 1073 a 938 1073 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2808) cvn H.B /DEST pdfmark
+end
+ 938
+1073 a Fl(list)f FC(if)i(none)e(of)h(the)g(w)o(ords)g(in)g(')o(list')h
+(is)g(in)f(the)g(message,)g(the)g(program)e(is)k(not)d(e)o(x)o(ecuted.)
+479 1180 y(An)o(y)h(\002lter)g(not)g(de\002ned)f(is)i(not)f(e)n(v)n
+(aluated.)438 1299 y
+SDict begin H.S end
+ 438 1299 a 438 1299 a
+SDict begin 13 H.A end
+ 438 1299 a
+438 1299 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2809) cvn H.B /DEST pdfmark
+end
+ 438 1299 a Black 396 1448 a FB(\225)p Black
+479 1448 a
+SDict begin H.S end
+ 479 1448 a 479 1448 a
+SDict begin 13 H.A end
+ 479 1448 a 479 1448
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2810) cvn H.B /DEST pdfmark
+end
+ 479 1448 a FC(It)h(is)g(possible)f(to)g(set)h(a)g(')l(deadtime'.)d(W)
+m(ithin)i(that)g(')l(deadtime',)e(the)i(respecti)n(v)o(e)f(e)o(xternal)
+g(program)f(will)j(be)479 1556 y(e)o(x)o(ecuted)e(only)g(once)g(\(if)i
+(triggered\):)1609 1556 y
+SDict begin H.S end
+ 1609 1556 a 1609 1556 a
+SDict begin 13 H.A end
+ 1609
+1556 a 1609 1556 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2811) cvn H.B /DEST pdfmark
+end
+ 1609 1556 a Fy(SetDeadtime=)2109 1556
+y
+SDict begin H.S end
+ 2109 1556 a 2109 1556 a
+SDict begin 13 H.A end
+ 2109 1556 a 2109 1556 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2812) cvn H.B /DEST pdfmark
+end
+ 2109
+1556 a Fl(seconds)39 1706 y
+SDict begin H.S end
+ 39 1706 a 39 1706 a
+SDict begin 13 H.A end
+ 39 1706
+a 39 1706 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:PAGING) cvn H.B /DEST pdfmark
+end
+ 39 1706 a 396 2034 a Fp(7.3.1.)36 b(Example)f(setup)f(f)n
+(or)e(pa)o(ging)2186 2034 y
+SDict begin H.S end
+ 2186 2034 a 2186 2034 a
+SDict begin 18.72 H.A end
+ 2186
+2034 a 2186 2034 a
+SDict begin [ /View [/XYZ H.V] /Dest (9.63.33.2) cvn H.B /DEST pdfmark
+end
+ 2186 2034 a -2 2226 a
+SDict begin H.S end
+ -2 2226 a -2
+2226 a
+SDict begin 13 H.A end
+ -2 2226 a -2 2226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2815) cvn H.B /DEST pdfmark
+end
+ -2 2226 a 396 2308 a FC(The)20
+b(distrib)n(ution)f(contains)h(tw)o(o)g(e)o(xample)f(perl)h(scripts)g
+(for)g(paging)e(and)i(SMS)h(messages)f(\(e)o(xample_pager)-5
+b(.pl,)396 2416 y(e)o(xample_sms.pl\).)17 b(The)j(paging)f(script)h
+(will)h(page)f(via)g(a)h(web)f(CGI)g(script)h(at)f(www)-5
+b(.pagemart.com)396 2523 y(\(ob)o(viously)18 b(will)j(w)o(ork)e(only)h
+(for)f(their)h(pagers\),)f(the)h(SMS)h(script)f(is)i(for)d(an)o(y)h
+(German)f('free)g(SMS')i(web)f(site)396 2631 y(that)g(outsources)e
+(free)h(SMS)h(to)g(pitcom)e(\(with)h(a)h(suitable)f(query)f(on)h
+(Google)g(you)f(can)i(\002nd)f(such)g(sites;)i(you)d(can)396
+2739 y(then)i(inspect)g(the)g(HTML)g(form)f(to)i(set)g(proper)d(v)n
+(alues)i(for)f(the)i(required)d(form)h(v)n(ariables.\))-2
+2923 y
+SDict begin H.S end
+ -2 2923 a -2 2923 a
+SDict begin 13 H.A end
+ -2 2923 a -2 2923 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2816) cvn H.B /DEST pdfmark
+end
+ -2 2923
+a 396 3013 a FC(If)h(you)g(kno)n(w)f(some)h(Perl,)g(both)f(scripts)i
+(can)f(be)g(adapted)f(f)o(airly)h(easily)g(to)h(other)e(pro)o(viders.)f
+(Belo)n(w)i(is)h(an)396 3121 y(e)o(xample)e(setup)h(for)g(calling)f(e)o
+(xample_pager)-5 b(.pl)17 b(as)k(an)f(e)o(xternal)f(logging)f(f)o
+(acility)-5 b(.)-2 3222 y
+SDict begin H.S end
+ -2 3222 a -2 3222 a
+SDict begin 11.7 H.A end
+ -2 3222
+a -2 3222 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2817) cvn H.B /DEST pdfmark
+end
+ -2 3222 a 486 3301 a Fr([External])486 3399
+y(#)45 b(start)f(definition)f(of)h(first)g(external)g(program)486
+3496 y(OpenCommand=/usr/local/bin/example_page)o(r.pl)486
+3593 y(SetType=log)486 3690 y(#)h(arguments)486 3787
+y(SetCommandline=example_pager.pl)40 b(pager_id)486 3884
+y(#)45 b(environment)486 3981 y(SetEnviron=HOME=/home/moses)486
+4078 y(SetEnviron=PATH=/bin:/usr/bin:/usr/loca)o(l/bin)486
+4176 y(#)g(checksum)486 4273 y(SetChecksum=FCBD3377B65F92F1701AFEEF3B5)
+o(E8A80E)o(D4936F)o(D0D172)o(C84)486 4370 y(#)g(credentials)486
+4467 y(SetCredentials=moses)486 4564 y(#)g(filter)486
+4661 y(SetFilterOr=POLICY)486 4758 y(#)g(deadtime)486
+4856 y(SetDeadtime=3600)p Black 3661 5805 a Fx(78)p Black
+eop end
+%%Page: 79 84
+TeXDict begin 79 83 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.79) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black -2 226
+a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SIGNED-FILES) cvn H.B /DEST
+pdfmark end
+ -2 226 a 125 x
+Fz(Chapter)48 b(8.)f(Ad)n(ditional)i(Features)f(\227)g(Signed)-2
+575 y(Con\002guration/Database)g(Files)2380 575 y
+SDict begin H.S end
+ 2380
+575 a 2380 575 a
+SDict begin 26.957 H.A end
+ 2380 575 a 2380 575 a
+SDict begin [ /View [/XYZ H.V] /Dest (10.0) cvn H.B /DEST pdfmark end
+ 2380 575 a -2
+833 a
+SDict begin H.S end
+ -2 833 a -2 833 a
+SDict begin 13 H.A end
+ -2 833 a -2 833 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2820) cvn H.B /DEST pdfmark
+end
+ -2 833 a 396
+903 a FC(Both)20 b(the)h(con\002guration)c(\002le)k(\(see)p
+0 TeXcolorgray 1445 903 a
+SDict begin H.S end
+ 1445 903 a FC(Section)f(C.1)1833
+903 y
+SDict begin 13 H.L end
+ 1833 903 a 1833 903 a
+SDict begin [ /Subtype /Link /Dest (0:CONFIGFILE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1833 903 a Black FC(>\))g(and)g(the)g
+(database)g(of)g(\002le)g(signatures)g(\()p 0 TeXcolorgray
+3100 903 a
+SDict begin H.S end
+ 3100 903 a FC(Section)f(5.8)3474 903 y
+SDict begin 13 H.L end
+ 3474
+903 a 3474 903 a
+SDict begin [ /Subtype /Link /Dest (0:DATABASEFILE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3474 903 a Black -1 w FC(>\))h(may)396
+1011 y(al)o(w)o(ays)h(be)f(clearte)o(xt)f(signed)h(by)g(GnuGP)g(\()1690
+1011 y
+SDict begin H.S end
+ 1690 1011 a 1690 1011 a
+SDict begin 13 H.A end
+ 1690 1011 a 1690 1011
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2823) cvn H.B /DEST pdfmark
+end
+ 1690 1011 a Fy(gpg)p FC(\).)e(The)2037 1011 y
+SDict begin H.S end
+ 2037
+1011 a 2037 1011 a
+SDict begin 13 H.A end
+ 2037 1011 a 2037 1011 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2824) cvn H.B /DEST pdfmark
+end
+ 2037 1011
+a Fx(r)m(ecommended)j FC(options)e(are:)-2 1195 y
+SDict begin H.S end
+ -2
+1195 a -2 1195 a
+SDict begin 13 H.A end
+ -2 1195 a -2 1195 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2825) cvn H.B /DEST pdfmark
+end
+ -2 1195 a -2 1195
+a
+SDict begin H.S end
+ -2 1195 a -2 1195 a
+SDict begin 13 H.A end
+ -2 1195 a -2 1195 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2826) cvn H.B /DEST pdfmark
+end
+ -2 1195 a 396
+1285 a Fy(gpg)h(-a)g(--clearsign)f(--not-dash-escaped)1720
+1285 y
+SDict begin H.S end
+ 1720 1285 a 1720 1285 a
+SDict begin 13 H.A end
+ 1720 1285 a 1720 1285
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2827) cvn H.B /DEST pdfmark
+end
+ 1720 1285 a Fl(FILE)-2 1468 y
+SDict begin H.S end
+ -2 1468 a -2 1468 a
+SDict begin 13 H.A end
+ -2
+1468 a -2 1468 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2828) cvn H.B /DEST pdfmark
+end
+ -2 1468 a 396 1559 a FC(If)h(compiled)f(with)h
+(support)f(for)h(signatures,)1736 1559 y
+SDict begin H.S end
+ 1736 1559 a
+1736 1559 a
+SDict begin 13 H.A end
+ 1736 1559 a 1736 1559 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2829) cvn H.B /DEST pdfmark
+end
+ 1736 1559 a FC(samhain)f(will)i(in)
+m(v)n(ok)o(e)2424 1559 y
+SDict begin H.S end
+ 2424 1559 a 2424 1559 a
+SDict begin 13 H.A end
+ 2424
+1559 a 2424 1559 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2830) cvn H.B /DEST pdfmark
+end
+ 2424 1559 a Fy(gpg)f FC(to)h(v)o(erify)d(the)j
+(signature.)d(T)-7 b(o)21 b(compile)396 1667 y(with)565
+1667 y
+SDict begin H.S end
+ 565 1667 a 565 1667 a
+SDict begin 13 H.A end
+ 565 1667 a 565 1667 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2831) cvn H.B /DEST pdfmark
+end
+ 565
+1667 a Fy(gpg)f FC(support,)e(use)j(the)f(option:)-2
+1851 y
+SDict begin H.S end
+ -2 1851 a -2 1851 a
+SDict begin 13 H.A end
+ -2 1851 a -2 1851 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2832) cvn H.B /DEST pdfmark
+end
+ -2 1851
+a -2 1851 a
+SDict begin H.S end
+ -2 1851 a -2 1851 a
+SDict begin 13 H.A end
+ -2 1851 a -2 1851 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2833) cvn H.B /DEST pdfmark
+end
+ -2
+1851 a 396 1941 a Fy(./con\002gur)o(e)f(--with-gpg=/full/path/to/gpg)-2
+2124 y
+SDict begin H.S end
+ -2 2124 a -2 2124 a
+SDict begin 13 H.A end
+ -2 2124 a -2 2124 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2834) cvn H.B /DEST pdfmark
+end
+ -2 2124
+a -2 2124 a
+SDict begin H.S end
+ -2 2124 a -2 2124 a
+SDict begin 13 H.A end
+ -2 2124 a -2 2124 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2835) cvn H.B /DEST pdfmark
+end
+ -2
+2124 a -2 2134 a
+SDict begin H.S end
+ -2 2134 a -2 2134 a
+SDict begin 13 H.A end
+ -2 2134 a -2 2134
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2836) cvn H.B /DEST pdfmark
+end
+ -2 2134 a Black 396 2277 a FB(\225)p Black 479 2277
+a
+SDict begin H.S end
+ 479 2277 a 479 2277 a
+SDict begin 13 H.A end
+ 479 2277 a 479 2277 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2837) cvn H.B /DEST pdfmark
+end
+ 479 2277
+a FC(samhain)h(will)h(check)e(that)h(the)h(path)e(to)i(the)1780
+2277 y
+SDict begin H.S end
+ 1780 2277 a 1780 2277 a
+SDict begin 13 H.A end
+ 1780 2277 a 1780 2277
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2838) cvn H.B /DEST pdfmark
+end
+ 1780 2277 a Fy(gpg)f FC(e)o(x)o(ecutable)e(is)j(writeable)2709
+2277 y
+SDict begin H.S end
+ 2709 2277 a 2709 2277 a
+SDict begin 13 H.A end
+ 2709 2277 a 2709 2277
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2839) cvn H.B /DEST pdfmark
+end
+ 2709 2277 a Fx(only)f(by)g(trusted)g(user)o(s)h FC(\(see)p
+0 TeXcolorgray 479 2385 a
+SDict begin H.S end
+ 479 2385 a FC(Section)f(2.10.1)959
+2385 y
+SDict begin 13 H.L end
+ 959 2385 a 959 2385 a
+SDict begin [ /Subtype /Link /Dest (0:DEFTRUST) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 959 2385 a Black -2 w FC(>\).)-2
+2400 y
+SDict begin H.S end
+ -2 2400 a -2 2400 a
+SDict begin 13 H.A end
+ -2 2400 a -2 2400 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2841) cvn H.B /DEST pdfmark
+end
+ -2 2400
+a Black 396 2534 a FB(\225)p Black 479 2534 a
+SDict begin H.S end
+ 479 2534
+a 479 2534 a
+SDict begin 13 H.A end
+ 479 2534 a 479 2534 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2842) cvn H.B /DEST pdfmark
+end
+ 479 2534 a FC(The)g(program)e(will)j
+(be)f(called)g(without)g(using)f(the)i(shell,)f(with)g(its)h(full)g
+(path)e(\(as)i(compiled)e(in\),)g(and)h(with)g(an)479
+2642 y(en)m(vironment)d(that)k(is)g(limited)f(to)g(the)g(HOME)h(v)n
+(ariable.)-2 2643 y
+SDict begin H.S end
+ -2 2643 a -2 2643 a
+SDict begin 13 H.A end
+ -2 2643 a -2
+2643 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2843) cvn H.B /DEST pdfmark
+end
+ -2 2643 a Black 396 2792 a FB(\225)p Black 479
+2792 a
+SDict begin H.S end
+ 479 2792 a 479 2792 a
+SDict begin 13 H.A end
+ 479 2792 a 479 2792 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2844) cvn H.B /DEST pdfmark
+end
+ 479
+2792 a FC(The)f(public)f(k)o(e)o(y)h(must)g(be)g(in)h(in)f(the)g
+(subdirectory)2006 2792 y
+SDict begin H.S end
+ 2006 2792 a 2006 2792 a
+SDict begin 13 H.A end
+ 2006
+2792 a 2006 2792 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2845) cvn H.B /DEST pdfmark
+end
+ 2006 2792 a Fr(HOME/.gnupg)p FC(,)f(where)g(HOME)h
+(is)i(the)e(home)f(directory)479 2900 y(of)h(the)g(ef)n(fecti)n(v)o(e)f
+(user)h(\(usually)1444 2900 y
+SDict begin H.S end
+ 1444 2900 a 1444 2900 a
+SDict begin 13 H.A end
+
+1444 2900 a 1444 2900 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2846) cvn H.B /DEST pdfmark
+end
+ 1444 2900 a Fx(r)l(oot)q FC(\).)-2
+2917 y
+SDict begin H.S end
+ -2 2917 a -2 2917 a
+SDict begin 13 H.A end
+ -2 2917 a -2 2917 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2847) cvn H.B /DEST pdfmark
+end
+ -2 2917
+a Black 396 3049 a FB(\225)p Black 479 3049 a
+SDict begin H.S end
+ 479 3049
+a 479 3049 a
+SDict begin 13 H.A end
+ 479 3049 a 479 3049 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2848) cvn H.B /DEST pdfmark
+end
+ 479 3049 a FC(From)g(the)g(command)e
+(line,)i(the)h(signature)e(must)h(v)o(erify)f(correctly)g(with)2648
+3049 y
+SDict begin H.S end
+ 2648 3049 a 2648 3049 a
+SDict begin 13 H.A end
+ 2648 3049 a 2648 3049
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2849) cvn H.B /DEST pdfmark
+end
+ 2648 3049 a Fy(/path/to/gpg)g(--status-fd)g(1)479 3157
+y(--v)o(erify)762 3157 y
+SDict begin H.S end
+ 762 3157 a 762 3157 a
+SDict begin 13 H.A end
+ 762 3157
+a 762 3157 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2850) cvn H.B /DEST pdfmark
+end
+ 762 3157 a Fl(FILE)25 b FC(when)20 b(in)m(v)n(ok)o(ed)e
+(by)i(the)g(ef)n(fecti)n(v)o(e)f(user)h(of)g(samhain)f(\(usually)2817
+3157 y
+SDict begin H.S end
+ 2817 3157 a 2817 3157 a
+SDict begin 13 H.A end
+ 2817 3157 a 2817 3157
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2851) cvn H.B /DEST pdfmark
+end
+ 2817 3157 a Fx(r)l(oot)q FC(\).)39 3296 y
+SDict begin H.S end
+ 39 3296 a
+39 3296 a
+SDict begin 11.7 H.A end
+ 39 3296 a 39 3296 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2852) cvn H.B /DEST pdfmark
+end
+ 39 3296 a -2 3420 a
+SDict begin H.S end
+ -2
+3420 a -2 3420 a
+SDict begin 11.7 H.A end
+ -2 3420 a -2 3420 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2854) cvn H.B /DEST pdfmark
+end
+ -2 3420 a 562 3517
+a Fw(TIP:)g Fv(There)g(is)h(a)f(P)l(er)q(l)g(scr)q(ipt)1424
+3517 y
+SDict begin H.S end
+ 1424 3517 a 1424 3517 a
+SDict begin 11.7 H.A end
+ 1424 3517 a 1424 3517
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2855) cvn H.B /DEST pdfmark
+end
+ 1424 3517 a Fw(samhainadmin.pl)d Fv(to)k(f)n(acilitate)c(some)k
+(tasks)g(related)e(to)h(the)g(administr)o(ation)562 3614
+y(of)h(signed)f(con\002gur)o(ation)f(and)h(database)g(\002les)h(\(see)p
+0 TeXcolorgray 2127 3614 a
+SDict begin H.S end
+ 2127 3614 a Fv(Section)f(8.1)2502
+3614 y
+SDict begin 11.7 H.L end
+ 2502 3614 a 2502 3614 a
+SDict begin [ /Subtype /Link /Dest (0:SAMHAINADMIN) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2502 3614 a Black -1 w
+Fv(>\).)39 3753 y
+SDict begin H.S end
+ 39 3753 a 39 3753 a
+SDict begin 11.7 H.A end
+ 39 3753 a 39 3753
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2857) cvn H.B /DEST pdfmark
+end
+ 39 3753 a 745 3853 2668 17 v 745 4741 17 889 v 1843
+4048 a Fp(CA)-10 b(VEA)f(T)786 4215 y
+SDict begin H.S end
+ 786 4215 a 786
+4215 a
+SDict begin 11.7 H.A end
+ 786 4215 a 786 4215 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2859) cvn H.B /DEST pdfmark
+end
+ 786 4215 a 96 x Fv(When)19
+b(signing,)g(the)g(option)1630 4311 y
+SDict begin H.S end
+ 1630 4311 a 1630
+4311 a
+SDict begin 11.7 H.A end
+ 1630 4311 a 1630 4311 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2860) cvn H.B /DEST pdfmark
+end
+ 1630 4311 a Fq(--not-dash-escaped)k
+Fv(is)e(recommended,)d(because)786 4408 y(otherwise)h(the)h(database)e
+(might)h(get)h(corr)q(upted.)e(Ho)o(w)o(e)n(v)n(er)l(,)i(this)g
+(implies)f(that)g(after)h(a)786 4505 y(database)f(update)o(,)f(y)o(ou)
+1523 4505 y
+SDict begin H.S end
+ 1523 4505 a 1523 4505 a
+SDict begin 11.7 H.A end
+ 1523 4505 a 1523
+4505 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2861) cvn H.B /DEST pdfmark
+end
+ 1523 4505 a Fq(m)o(ust)28 b Fv(remo)o(v)n(e)20
+b(the)f(old)h(signature)e(\002rst,)j(bef)n(ore)d(re-signing)786
+4602 y(the)i(database)o(.)e(Without)g(')l(dash)i(escaping',)2086
+4602 y
+SDict begin H.S end
+ 2086 4602 a 2086 4602 a
+SDict begin 11.7 H.A end
+ 2086 4602 a 2086 4602
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2862) cvn H.B /DEST pdfmark
+end
+ 2086 4602 a Fv(gpg)f(will)h(not)f(proper)q(ly)g(handle)f(the)i(old)
+786 4699 y(signature)o(.)e(See)i(the)g(tip)f(just)h(abo)o(v)n(e)o(.)p
+3396 4741 17 889 v 745 4758 2668 17 v -2 4934 a
+SDict begin H.S end
+ -2 4934
+a -2 4934 a
+SDict begin 13 H.A end
+ -2 4934 a -2 4934 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2863) cvn H.B /DEST pdfmark
+end
+ -2 4934 a 396 4991 a
+FC(As)h(signatures)f(on)f(\002les)j(are)e(only)f(useful)h(as)h(long)e
+(as)i(you)e(can)h(trust)h(the)2564 4991 y
+SDict begin H.S end
+ 2564 4991 a
+2564 4991 a
+SDict begin 13 H.A end
+ 2564 4991 a 2564 4991 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2864) cvn H.B /DEST pdfmark
+end
+ 2564 4991 a Fy(gpg)f
+FC(e)o(x)o(ecutable,)e(the)3230 4991 y
+SDict begin H.S end
+ 3230 4991 a 3230
+4991 a
+SDict begin 13 H.A end
+ 3230 4991 a 3230 4991 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2865) cvn H.B /DEST pdfmark
+end
+ 3230 4991 a Fy(con\002gur)o(e)396
+5099 y FC(script)i(will)h(determine)e(the)h(TIGER192)1616
+5099 y
+SDict begin H.S end
+ 1616 5099 a 1616 5099 a
+SDict begin 13 H.A end
+ 1616 5099 a 1616 5099
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2866) cvn H.B /DEST pdfmark
+end
+ 1616 5099 a Fx(c)o(hec)n(ksum)g FC(of)g(the)2169 5099
+y
+SDict begin H.S end
+ 2169 5099 a 2169 5099 a
+SDict begin 13 H.A end
+ 2169 5099 a 2169 5099 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2867) cvn H.B /DEST pdfmark
+end
+ 2169
+5099 a Fy(gpg)g FC(e)o(x)o(ecutable,)e(which)h(will)i(be)f(compiled)f
+(into)396 5207 y
+SDict begin H.S end
+ 396 5207 a 396 5207 a
+SDict begin 13 H.A end
+ 396 5207 a 396
+5207 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2868) cvn H.B /DEST pdfmark
+end
+ 396 5207 a FC(samhain.)g(In)h(case)h(of)f(an)g(error)m(,)f(you)g
+(can)h(specify)f(the)i(checksum)d(by)i(hand)f(with:)p
+Black -2 5805 a
+SDict begin H.S end
+ -2 5805 a -2 5805 a
+SDict begin 13 H.A end
+ -2 5805 a -2 5805
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2873) cvn H.B /DEST pdfmark
+end
+ -2 5805 a 3661 5874 a Fx(79)p Black eop end
+%%Page: 80 85
+TeXDict begin 80 84 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.80) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 1360 104 a
+Fx(Chapter)20 b(8.)g(Additional)e(F)-6 b(eatur)m(es)20
+b(\227)h(Signed)d(Con\002gur)o(ation/Database)e(F)l(iles)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2869) cvn H.B /DEST pdfmark
+end
+ -2
+226 a -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2870) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a Fy(--with-checksum=")1080 309 y
+SDict begin H.S end
+ 1080
+309 a 1080 309 a
+SDict begin 13 H.A end
+ 1080 309 a 1080 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2871) cvn H.B /DEST pdfmark
+end
+ 1080 309 a Fl(CHECKSUM)9
+b Fy(")19 b FC(\227)i(or)f(\227)1812 309 y
+SDict begin H.S end
+ 1812 309 a
+1812 309 a
+SDict begin 13 H.A end
+ 1812 309 a 1812 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2872) cvn H.B /DEST pdfmark
+end
+ 1812 309 a Fy(--without-checksum)396
+583 y Fx(CHECKSUM)25 b FC(should)19 b(be)h(the)g(checksum)f(as)i
+(printed)e(by)-2 767 y
+SDict begin H.S end
+ -2 767 a -2 767 a
+SDict begin 13 H.A end
+ -2 767 a -2
+767 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2875) cvn H.B /DEST pdfmark
+end
+ -2 767 a -2 767 a
+SDict begin H.S end
+ -2 767 a -2 767 a
+SDict begin 13 H.A end
+ -2 767 a -2
+767 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2876) cvn H.B /DEST pdfmark
+end
+ -2 767 a 396 857 a Fy(gpg)h(--load-extension)e(tiger)i
+(--print-md)g(TIGER192)2133 857 y
+SDict begin H.S end
+ 2133 857 a 2133 857
+a
+SDict begin 13 H.A end
+ 2133 857 a 2133 857 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2877) cvn H.B /DEST pdfmark
+end
+ 2133 857 a Fl(/path/to/gpg)k
+FC(\227)d(or)f(\227)2994 857 y
+SDict begin H.S end
+ 2994 857 a 2994 857 a
+SDict begin 13 H.A end
+
+2994 857 a 2994 857 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2878) cvn H.B /DEST pdfmark
+end
+ 2994 857 a Fy(samhain)h(-H)396
+965 y
+SDict begin H.S end
+ 396 965 a 396 965 a
+SDict begin 13 H.A end
+ 396 965 a 396 965 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2879) cvn H.B /DEST pdfmark
+end
+ 396 965
+a Fl(/path/to/gpg)j FC(\(the)c(full)g(line)h(of)f(output,)1735
+965 y
+SDict begin H.S end
+ 1735 965 a 1735 965 a
+SDict begin 13 H.A end
+ 1735 965 a 1735 965 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2880) cvn H.B /DEST pdfmark
+end
+ 1735
+965 a Fx(with)h(spaces)p FC(\).)-2 1149 y
+SDict begin H.S end
+ -2 1149 a -2
+1149 a
+SDict begin 13 H.A end
+ -2 1149 a -2 1149 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2881) cvn H.B /DEST pdfmark
+end
+ -2 1149 a -2 1149 a
+SDict begin H.S end
+ -2 1149
+a -2 1149 a
+SDict begin 13 H.A end
+ -2 1149 a -2 1149 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2882) cvn H.B /DEST pdfmark
+end
+ -2 1149 a 396 1239 a
+Fx(Example:)735 1239 y
+SDict begin H.S end
+ 735 1239 a 735 1239 a
+SDict begin 13 H.A end
+ 735 1239
+a 735 1239 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2883) cvn H.B /DEST pdfmark
+end
+ 735 1239 a Fy(--with-checksum="/usr/bin/gpg:)f(1C739B6A)f
+(F768C949)e(F)-7 b(ABEF313)19 b(5F0B37F5)396 1346 y(22ED4A27)g
+(60D59664")-2 1347 y
+SDict begin H.S end
+ -2 1347 a -2 1347 a
+SDict begin 11.7 H.A end
+ -2 1347 a -2
+1347 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2884) cvn H.B /DEST pdfmark
+end
+ -2 1347 a 745 1447 2668 17 v 745 2196 17 749 v
+1790 1601 a Fp(W)-7 b(ARNING)786 1768 y
+SDict begin H.S end
+ 786 1768 a 786
+1768 a
+SDict begin 11.7 H.A end
+ 786 1768 a 786 1768 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2886) cvn H.B /DEST pdfmark
+end
+ 786 1768 a 96 x Fv(Compiling)18
+b(in)i(the)g(Gn)o(uPG)g(chec)o(ksum)h(will)e(tie)h(the)f(samhain)h(e)n
+(x)n(ecutab)o(le)d(to)j(the)f(gpg)786 1961 y(e)n(x)n(ecutab)o(le)o(.)e
+(If)j(y)o(ou)f(upg)o(r)o(ade)f(Gn)o(uPG,)h(y)o(ou)g(will)g(need)g(to)h
+(re-compile)e(samhain.)g(If)i(y)o(ou)786 2058 y(don't)f(lik)o(e)h(this)
+o(,)f(use)1398 2058 y
+SDict begin H.S end
+ 1398 2058 a 1398 2058 a
+SDict begin 11.7 H.A end
+ 1398 2058
+a 1398 2058 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2887) cvn H.B /DEST pdfmark
+end
+ 1398 2058 a Fw('--with-c)o(hec)o(ksum=no')d
+Fv(\(or)2295 2058 y
+SDict begin H.S end
+ 2295 2058 a 2295 2058 a
+SDict begin 11.7 H.A end
+ 2295 2058
+a 2295 2058 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2888) cvn H.B /DEST pdfmark
+end
+ 2295 2058 a Fw('--without-c)o(hec)o(ksum')p
+Fv(,)g(which)j(is)786 2155 y(equiv)n(alent\).)p 3396
+2196 17 749 v 745 2213 2668 17 v -2 2389 a
+SDict begin H.S end
+ -2 2389 a
+-2 2389 a
+SDict begin 13 H.A end
+ -2 2389 a -2 2389 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2889) cvn H.B /DEST pdfmark
+end
+ -2 2389 a 396 2445 a FC(Lik)o(e)n(wise,)h
+(it)g(is)h(highly)e(recommended)e(to)j(compile)e(in)i(the)2184
+2445 y
+SDict begin H.S end
+ 2184 2445 a 2184 2445 a
+SDict begin 13 H.A end
+ 2184 2445 a 2184 2445
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2890) cvn H.B /DEST pdfmark
+end
+ 2184 2445 a Fx(k)o(e)n(y)g(\002ng)o(erprint)g FC(of)g(the)g
+(signature)e(k)o(e)o(y)-5 b(,)19 b(which)g(then)396 2553
+y(will)i(be)f(v)o(eri\002ed)f(after)h(checking)f(the)h(signature)f
+(itself:)-2 2737 y
+SDict begin H.S end
+ -2 2737 a -2 2737 a
+SDict begin 13 H.A end
+ -2 2737 a -2 2737
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2891) cvn H.B /DEST pdfmark
+end
+ -2 2737 a -2 2737 a
+SDict begin H.S end
+ -2 2737 a -2 2737 a
+SDict begin 13 H.A end
+ -2 2737 a -2
+2737 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2892) cvn H.B /DEST pdfmark
+end
+ -2 2737 a 396 2827 a Fy(--with-fp=FINGERPRINT)-2
+3010 y
+SDict begin H.S end
+ -2 3010 a -2 3010 a
+SDict begin 13 H.A end
+ -2 3010 a -2 3010 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2893) cvn H.B /DEST pdfmark
+end
+ -2 3010
+a -2 3010 a
+SDict begin H.S end
+ -2 3010 a -2 3010 a
+SDict begin 13 H.A end
+ -2 3010 a -2 3010 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2894) cvn H.B /DEST pdfmark
+end
+ -2
+3010 a 396 3101 a Fx(Example)h FC(\(spaces)g(in)g(FINGERPRINT)g(do)g
+(not)g(matter\):)2133 3101 y
+SDict begin H.S end
+ 2133 3101 a 2133 3101 a
+SDict begin 13 H.A end
+
+2133 3101 a 2133 3101 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2895) cvn H.B /DEST pdfmark
+end
+ 2133 3101 a Fy(--with-fp="EF6C)f(EF54)h(701A)f
+(0AFD)h(B86A)396 3209 y(F4C3)g(1AAD)g(26C8)f(0F57)g(1F6C")-2
+3210 y
+SDict begin H.S end
+ -2 3210 a -2 3210 a
+SDict begin 11.7 H.A end
+ -2 3210 a -2 3210 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2896) cvn H.B /DEST pdfmark
+end
+ -2 3210
+a -2 3335 a
+SDict begin H.S end
+ -2 3335 a -2 3335 a
+SDict begin 11.7 H.A end
+ -2 3335 a -2 3335 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2898) cvn H.B /DEST pdfmark
+end
+ -2
+3335 a 562 3431 a Fw(TIP:)724 3431 y
+SDict begin H.S end
+ 724 3431 a 724 3431
+a
+SDict begin 11.7 H.A end
+ 724 3431 a 724 3431 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2899) cvn H.B /DEST pdfmark
+end
+ 724 3431 a Fw(make)h(install)f
+Fv(will)g(gpg)h(sign)f(the)h(con\002gur)o(ation)e(\002le)i(bef)n(ore)e
+(installation.)-2 3663 y
+SDict begin H.S end
+ -2 3663 a -2 3663 a
+SDict begin 11.7 H.A end
+ -2 3663
+a -2 3663 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2900) cvn H.B /DEST pdfmark
+end
+ -2 3663 a -2 3663 a
+SDict begin H.S end
+ -2 3663 a -2 3663 a
+SDict begin 11.7 H.A end
+ -2
+3663 a -2 3663 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2901) cvn H.B /DEST pdfmark
+end
+ -2 3663 a 396 3760 a Ft(bash$)643 3760
+y
+SDict begin H.S end
+ 643 3760 a 643 3760 a
+SDict begin 11.7 H.A end
+ 643 3760 a 643 3760 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2902) cvn H.B /DEST pdfmark
+end
+ 643 3760
+a Fs(./configure)44 b(--with-gpg=/usr/bin)q(/gp)q(g)i
+(--with-fp=EF6CEF54)q(701)q(A0A)q(FDB)q(86)q(AF4)q(C31)q(AAD)q(26C)q
+(80F)q(571)q(F6C)-2 3769 y
+SDict begin H.S end
+ -2 3769 a -2 3769 a
+SDict begin 11.7 H.A end
+ -2 3769
+a -2 3769 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2903) cvn H.B /DEST pdfmark
+end
+ -2 3769 a 396 3857 a Ft(bash$)643 3857 y
+SDict begin H.S end
+
+643 3857 a 643 3857 a
+SDict begin 11.7 H.A end
+ 643 3857 a 643 3857 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2904) cvn H.B /DEST pdfmark
+end
+ 643 3857
+a Fs(make)-2 3865 y
+SDict begin H.S end
+ -2 3865 a -2 3865 a
+SDict begin 11.7 H.A end
+ -2 3865 a -2
+3865 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2905) cvn H.B /DEST pdfmark
+end
+ -2 3865 a 396 3955 a Ft(bash$)643 3955 y
+SDict begin H.S end
+ 643 3955
+a 643 3955 a
+SDict begin 11.7 H.A end
+ 643 3955 a 643 3955 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2906) cvn H.B /DEST pdfmark
+end
+ 643 3955 a Fs(su)-2
+3963 y
+SDict begin H.S end
+ -2 3963 a -2 3963 a
+SDict begin 11.7 H.A end
+ -2 3963 a -2 3963 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2907) cvn H.B /DEST pdfmark
+end
+ -2 3963
+a 396 4052 a Ft(bash$)643 4052 y
+SDict begin H.S end
+ 643 4052 a 643 4052
+a
+SDict begin 11.7 H.A end
+ 643 4052 a 643 4052 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2908) cvn H.B /DEST pdfmark
+end
+ 643 4052 a Fs(make)c(install)-2
+4060 y
+SDict begin H.S end
+ -2 4060 a -2 4060 a
+SDict begin 11.7 H.A end
+ -2 4060 a -2 4060 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2909) cvn H.B /DEST pdfmark
+end
+ -2 4060
+a 396 4149 a Ft(bash$)643 4149 y
+SDict begin H.S end
+ 643 4149 a 643 4149
+a
+SDict begin 11.7 H.A end
+ 643 4149 a 643 4149 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2910) cvn H.B /DEST pdfmark
+end
+ 643 4149 a Fs(samhain)h(-t)e(init)-2
+4157 y
+SDict begin H.S end
+ -2 4157 a -2 4157 a
+SDict begin 11.7 H.A end
+ -2 4157 a -2 4157 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2911) cvn H.B /DEST pdfmark
+end
+ -2 4157
+a 396 4246 a Ft(bash$)643 4246 y
+SDict begin H.S end
+ 643 4246 a 643 4246
+a
+SDict begin 11.7 H.A end
+ 643 4246 a 643 4246 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2912) cvn H.B /DEST pdfmark
+end
+ 643 4246 a Fs(gpg)g(-a)g(--clearsign)j
+(/var/lib/samhain/s)q(amh)q(ain)q(_f)q(ile)-2 4255 y
+SDict begin H.S end
+
+-2 4255 a -2 4255 a
+SDict begin 11.7 H.A end
+ -2 4255 a -2 4255 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2913) cvn H.B /DEST pdfmark
+end
+ -2 4255 a 396
+4343 a Ft(bash$)643 4343 y
+SDict begin H.S end
+ 643 4343 a 643 4343 a
+SDict begin 11.7 H.A end
+ 643
+4343 a 643 4343 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2914) cvn H.B /DEST pdfmark
+end
+ 643 4343 a Fs(mv)d(/var/lib/samhain/sa)q(mha)q(in_)q
+(fil)q(e.a)q(sc)47 b(/var/lib/samhain/sam)q(hai)q(n_f)q(il)q(e)-2
+4518 y
+SDict begin H.S end
+ -2 4518 a -2 4518 a
+SDict begin 13 H.A end
+ -2 4518 a -2 4518 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2915) cvn H.B /DEST pdfmark
+end
+ -2 4518
+a -2 4518 a
+SDict begin H.S end
+ -2 4518 a -2 4518 a
+SDict begin 13 H.A end
+ -2 4518 a -2 4518 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2916) cvn H.B /DEST pdfmark
+end
+ -2
+4518 a 396 4617 a FC(samhain)20 b(will)h(report)e(the)h(signature)f(k)o
+(e)o(y)h(o)n(wner)f(and)g(the)i(k)o(e)o(y)e(\002ngerprint)f(as)j
+(obtained)e(from)3226 4617 y
+SDict begin H.S end
+ 3226 4617 a 3226 4617 a
+SDict begin 13 H.A end
+
+3226 4617 a 3226 4617 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2917) cvn H.B /DEST pdfmark
+end
+ 3226 4617 a Fy(gpg)p FC(.)h(If)g(both)396
+4725 y(\002les)h(are)g(present)e(and)h(check)o(ed)f(\(i.e.)g(when)h
+(checking)e(\002les)k(against)d(the)h(database\),)f(both)h(must)g(be)g
+(signed)396 4833 y(with)h(the)f(same)g(k)o(e)o(y)-5 b(.)19
+b(If)h(the)g(v)o(eri\002cation)f(is)i(successful,)2087
+4833 y
+SDict begin H.S end
+ 2087 4833 a 2087 4833 a
+SDict begin 13 H.A end
+ 2087 4833 a 2087 4833
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2918) cvn H.B /DEST pdfmark
+end
+ 2087 4833 a FC(samhain)e(will)i(only)f(report)f(the)h(signature)f(on)
+h(the)396 4941 y(con\002guration)e(\002le.)i(If)g(the)g(v)o
+(eri\002cation)f(f)o(ails,)i(or)f(the)g(k)o(e)o(y)f(for)h(the)g
+(con\002guration)d(\002le)k(is)g(dif)n(ferent)e(from)g(that)h(of)396
+5049 y(the)g(database)g(\002le,)h(an)f(error)f(message)h(will)h
+(result.)-2 5067 y
+SDict begin H.S end
+ -2 5067 a -2 5067 a
+SDict begin 13 H.A end
+ -2 5067 a -2 5067
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SAMHAINADMIN) cvn H.B /DEST
+pdfmark end
+ -2 5067 a Black 3661 5805 a Fx(80)p Black eop end
+%%Page: 81 86
+TeXDict begin 81 85 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.81) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 1360 104 a
+Fx(Chapter)20 b(8.)g(Additional)e(F)-6 b(eatur)m(es)20
+b(\227)h(Signed)d(Con\002gur)o(ation/Database)e(F)l(iles)p
+Black -2 330 a Fu(8.1.)39 b(The)g(samhainadmin)d(script)2008
+330 y
+SDict begin H.S end
+ 2008 330 a 2008 330 a
+SDict begin 22.464 H.A end
+ 2008 330 a 2008 330 a
+SDict begin [ /View [/XYZ H.V] /Dest (10.64.1) cvn H.B /DEST pdfmark
+end
+ 2008
+330 a -2 526 a
+SDict begin H.S end
+ -2 526 a -2 526 a
+SDict begin 13 H.A end
+ -2 526 a -2 526 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2921) cvn H.B /DEST pdfmark
+end
+ -2
+526 a 396 604 a FC(In)20 b(the)g(subdirectory)1044 604
+y
+SDict begin H.S end
+ 1044 604 a 1044 604 a
+SDict begin 13 H.A end
+ 1044 604 a 1044 604 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2922) cvn H.B /DEST pdfmark
+end
+ 1044 604
+a Fr(scripts/)g FC(of)f(the)i(source)e(directory)g(you)g(will)i(\002nd)
+f(a)g(Perl)h(script)3056 604 y
+SDict begin H.S end
+ 3056 604 a 3056 604 a
+SDict begin 13 H.A end
+
+3056 604 a 3056 604 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2923) cvn H.B /DEST pdfmark
+end
+ 3056 604 a Fy(samhainadmin.pl)396
+712 y FC(to)g(f)o(acilitate)f(some)g(tasks)h(related)e(to)i(the)f
+(administration)e(of)i(signed)g(con\002guration)d(and)j(database)g
+(\002les)h(\(e.g.)396 820 y(e)o(xamine/create/remo)o(v)o(e)16
+b(signatures\).)j(By)h(def)o(ault,)g(this)g(script)g(is)2405
+820 y
+SDict begin H.S end
+ 2405 820 a 2405 820 a
+SDict begin 13 H.A end
+ 2405 820 a 2405 820 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2924) cvn H.B /DEST pdfmark
+end
+ 2405
+820 a Fx(not)f(installed)r FC(.)-2 921 y
+SDict begin H.S end
+ -2 921 a -2
+921 a
+SDict begin 11.7 H.A end
+ -2 921 a -2 921 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2925) cvn H.B /DEST pdfmark
+end
+ -2 921 a -2 921 a
+SDict begin H.S end
+ -2 921 a -2
+921 a
+SDict begin 11.7 H.A end
+ -2 921 a -2 921 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2926) cvn H.B /DEST pdfmark
+end
+ -2 921 a 396 1000 a Ft(bash$)643
+1000 y
+SDict begin H.S end
+ 643 1000 a 643 1000 a
+SDict begin 11.7 H.A end
+ 643 1000 a 643 1000 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2927) cvn H.B /DEST pdfmark
+end
+ 643
+1000 a Fs(samhainadmin.pl)45 b(--help)486 1097 y Fr(samhainadmin.pl)d
+({)j(-m)f(F)h(|)g(--sign-cfgfile)d(})269 b([options])43
+b([in.cfgfile])576 1195 y(Sign)h(the)g(configuration)f(file.)h(If)g
+(in.cfgfile)f(is)i(given,)f(sign)g(it)576 1292 y(and)g(install)g(it)g
+(as)h(configuration)d(file.)486 1486 y(samhainadmin.pl)g({)j(-m)f(f)h
+(|)g(--print-cfgfile)d(})224 b([options])576 1583 y(Print)44
+b(the)g(configuration)f(file)h(to)g(stdout.)g(Signatures)f(are)h
+(removed.)486 1777 y(samhainadmin.pl)e({)j(-m)f(D)h(|)g
+(--sign-datafile)d(})224 b([options])43 b([in.datafile])576
+1875 y(Sign)h(the)g(database)g(file.)g(If)g(in.datafile)f(is)i(given,)e
+(sign)i(it)576 1972 y(and)f(install)g(it)g(as)h(database)e(file.)486
+2166 y(samhainadmin.pl)f({)j(-m)f(d)h(|)g(--print-datafile)d(})179
+b([options])576 2263 y(Print)44 b(the)g(database)f(file)i(to)f(stdout.)
+g(Signatures)f(are)h(removed.)g(Use)576 2360 y(option)f(--list)h(to)h
+(list)f(files)g(in)g(database)g(rather)g(than)g(printing)f(the)i(raw)f
+(file.)486 2554 y(samhainadmin.pl)e({)j(-m)f(R)h(|)g
+(--remove-signature)d(})89 b([options])43 b(file1)h([file2)g(...])576
+2652 y(Remove)f(cleartext)h(signature)f(from)h(input)g(file\(s\).)g
+(The)g(file)576 2749 y(is)g(replaced)g(by)g(the)g(non-signed)g(file.)
+486 2943 y(samhainadmin.pl)e({)j(-m)f(E)h(|)g(--sign)f(})627
+b([options])43 b(file1)h([file2)g(...])576 3040 y(Sign)g(file\(s\))f
+(with)i(a)f(cleartext)g(signature.)f(The)h(file)576 3137
+y(is)g(replaced)g(by)g(the)g(signed)g(file.)486 3332
+y(samhainadmin.pl)e({)j(-m)f(e)h(|)g(--examine)e(})493
+b([options])43 b(file1)h([file2)g(...])576 3429 y(Report)f(signature)h
+(status)g(of)g(file\(s\).)486 3623 y(samhainadmin.pl)e({)j(-m)f(G)h(|)g
+(--generate-keys)d(})224 b([options])576 3720 y(Generate)43
+b(a)i(PGP)f(keypair)g(to)g(use)h(for)f(signing.)396 3914
+y(Options:)486 4012 y(-c)g(cfgfile)179 b(--cfgfile)43
+b(cfgfile)576 4109 y(Select)g(an)i(alternate)e(configuration)g(file.)
+486 4303 y(-d)h(datafile)134 b(--datafile)43 b(datafile)576
+4400 y(Select)g(an)i(alternate)e(database)h(file.)486
+4594 y(-p)g(passphrase)g(--passphrase)e(passphrase)576
+4691 y(Set)i(the)g(passphrase)f(for)i(gpg.)f(By)g(default,)g(gpg)g
+(will)g(ask.)486 4886 y(-l)538 b(--list)576 4983 y(List)44
+b(the)g(files)g(in)h(database)e(rather)h(than)g(printing)g(the)g(raw)g
+(file.)486 5177 y(-v)538 b(--verbose)576 5274 y(Verbose)43
+b(output.)p Black 3661 5805 a Fx(81)p Black eop end
+%%Page: 82 87
+TeXDict begin 82 86 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.82) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black -2 226
+a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:STEALTHMODE) cvn H.B /DEST
+pdfmark end
+ -2 226 a 125 x
+Fz(Chapter)48 b(9.)f(Ad)n(ditional)i(Features)f(\227)g(Stealth)3335
+351 y
+SDict begin H.S end
+ 3335 351 a 3335 351 a
+SDict begin 26.957 H.A end
+ 3335 351 a 3335 351 a
+SDict begin [ /View [/XYZ H.V] /Dest (11.0) cvn H.B /DEST pdfmark end
+ 3335
+351 a -2 607 a
+SDict begin H.S end
+ -2 607 a -2 607 a
+SDict begin 13 H.A end
+ -2 607 a -2 607 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2930) cvn H.B /DEST pdfmark
+end
+ -2
+607 a 396 679 a FC(If)20 b(an)g(intruder)f(does)h(not)g(kno)n(w)f(that)
+1503 679 y
+SDict begin H.S end
+ 1503 679 a 1503 679 a
+SDict begin 13 H.A end
+ 1503 679 a 1503 679
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2931) cvn H.B /DEST pdfmark
+end
+ 1503 679 a FC(samhain)h(is)h(running,)d(s/he)i(will)h(mak)o(e)f(no)g
+(attempt)f(to)i(sub)o(v)o(ert)d(it.)j(Hence,)396 787
+y(you)d(may)h(consider)f(to)h(run)1218 787 y
+SDict begin H.S end
+ 1218 787
+a 1218 787 a
+SDict begin 13 H.A end
+ 1218 787 a 1218 787 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2932) cvn H.B /DEST pdfmark
+end
+ 1218 787 a FC(samhain)f(in)h
+(stealth)g(mode,)f(using)h(some)f(of)h(the)g(options)f(discussed)h(in)g
+(this)g(section.)-2 805 y
+SDict begin H.S end
+ -2 805 a -2 805 a
+SDict begin 13 H.A end
+ -2 805 a
+-2 805 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:HIDING-THE-EXECUTABLE) cvn
+H.B /DEST pdfmark end
+ -2 805 a 359 x Fu(9.1.)39 b(Hiding)f(the)h(e)n(x)o(ecutab)o
+(le)1758 1164 y
+SDict begin H.S end
+ 1758 1164 a 1758 1164 a
+SDict begin 22.464 H.A end
+ 1758 1164 a 1758
+1164 a
+SDict begin [ /View [/XYZ H.V] /Dest (11.65.1) cvn H.B /DEST pdfmark
+end
+ 1758 1164 a -2 1362 a
+SDict begin H.S end
+ -2 1362 a -2 1362 a
+SDict begin 13 H.A end
+ -2 1362
+a -2 1362 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2935) cvn H.B /DEST pdfmark
+end
+ -2 1362 a -2 1362 a
+SDict begin H.S end
+ -2 1362 a -2 1362 a
+SDict begin 13 H.A end
+ -2
+1362 a -2 1362 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2936) cvn H.B /DEST pdfmark
+end
+ -2 1362 a 396 1438 a FC(samhain)20 b(may)f(be)i
+(compiled)d(with)j(support)e(for)g(a)i(stealth)f(mode)f(of)h
+(operation,)e(meaning)h(that)h(the)h(program)396 1546
+y(can)f(be)g(run)f(without)h(an)o(y)f(ob)o(vious)f(trace)i(of)g(its)h
+(presence)e(on)h(disk.)f(The)h(follo)n(wing)e(compile-time)h(options)g
+(are)396 1654 y(pro)o(vided:)-2 1838 y
+SDict begin H.S end
+ -2 1838 a -2 1838
+a
+SDict begin 13 H.A end
+ -2 1838 a -2 1838 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2937) cvn H.B /DEST pdfmark
+end
+ -2 1838 a -2 1838 a
+SDict begin H.S end
+ -2 1838 a -2
+1838 a
+SDict begin 13 H.A end
+ -2 1838 a -2 1838 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2938) cvn H.B /DEST pdfmark
+end
+ -2 1838 a 396 1928 a Fy(--enable-stealth=)
+994 1928 y
+SDict begin H.S end
+ 994 1928 a 994 1928 a
+SDict begin 13 H.A end
+ 994 1928 a 994 1928
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2939) cvn H.B /DEST pdfmark
+end
+ 994 1928 a Fl(xor_val)f FC(pro)o(vides)g(the)j(follo)n(wing)d
+(measures:)-2 2112 y
+SDict begin H.S end
+ -2 2112 a -2 2112 a
+SDict begin 13 H.A end
+ -2 2112 a -2
+2112 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2940) cvn H.B /DEST pdfmark
+end
+ -2 2112 a -2 2112 a
+SDict begin H.S end
+ -2 2112 a -2 2112 a
+SDict begin 13 H.A end
+ -2 2112
+a -2 2112 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2941) cvn H.B /DEST pdfmark
+end
+ -2 2112 a -2 2122 a
+SDict begin H.S end
+ -2 2122 a -2 2122 a
+SDict begin 13 H.A end
+ -2
+2122 a -2 2122 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2942) cvn H.B /DEST pdfmark
+end
+ -2 2122 a Black 463 2264 a FC(1.)p Black
+546 2264 a
+SDict begin H.S end
+ 546 2264 a 546 2264 a
+SDict begin 13 H.A end
+ 546 2264 a 546 2264
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2943) cvn H.B /DEST pdfmark
+end
+ 546 2264 a FC(All)j(embedded)d(strings)i(are)g(obfuscated)e(by)i
+(XORing)g(them)g(with)g(some)g(v)n(alue)2935 2264 y
+SDict begin H.S end
+ 2935
+2264 a 2935 2264 a
+SDict begin 13 H.A end
+ 2935 2264 a 2935 2264 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2944) cvn H.B /DEST pdfmark
+end
+ 2935 2264
+a Fx(xor_val)f FC(chosen)h(at)546 2372 y(compile)f(time.)h(The)g(allo)n
+(wed)f(range)h(for)1777 2372 y
+SDict begin H.S end
+ 1777 2372 a 1777 2372
+a
+SDict begin 13 H.A end
+ 1777 2372 a 1777 2372 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2945) cvn H.B /DEST pdfmark
+end
+ 1777 2372 a Fx(xor_val)g FC(is)h(128)e(to)h
+(255.)-2 2390 y
+SDict begin H.S end
+ -2 2390 a -2 2390 a
+SDict begin 13 H.A end
+ -2 2390 a -2 2390
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2946) cvn H.B /DEST pdfmark
+end
+ -2 2390 a Black 463 2521 a FC(2.)p Black 546 2521 a
+SDict begin H.S end
+
+546 2521 a 546 2521 a
+SDict begin 13 H.A end
+ 546 2521 a 546 2521 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2947) cvn H.B /DEST pdfmark
+end
+ 546 2521
+a FC(The)g(messages)g(in)g(the)g(log)g(\002le)h(are)f(obfuscated)f(by)g
+(XORing)i(them)e(with)2755 2521 y
+SDict begin H.S end
+ 2755 2521 a 2755 2521
+a
+SDict begin 13 H.A end
+ 2755 2521 a 2755 2521 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2948) cvn H.B /DEST pdfmark
+end
+ 2755 2521 a Fx(xor_val)p FC(.)g(The)h(b)n
+(uilt-in)f(routine)546 2629 y(for)g(v)n(alidating)g(the)h(log)g(\002le)
+h(\()1418 2629 y
+SDict begin H.S end
+ 1418 2629 a 1418 2629 a
+SDict begin 13 H.A end
+ 1418 2629 a
+1418 2629 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2949) cvn H.B /DEST pdfmark
+end
+ 1418 2629 a Fy(samhain)f(-L)h(/path/to/log\002le)p
+FC(\))d(will)j(handle)e(this)i(transparently)-5 b(.)18
+b(Y)-9 b(ou)19 b(may)546 2737 y(specify)g(as)i(path)f(an)g(already)f(e)
+o(xisting)h(binary)e(\002le)j(\(e.g.)f(an)g(e)o(x)o(ecutable,)e(or)i(a)
+g(JPEG)h(image\),)e(to)h(which)546 2845 y(the)g(log)g(will)h(get)f
+(appended.)-2 2863 y
+SDict begin H.S end
+ -2 2863 a -2 2863 a
+SDict begin 11.7 H.A end
+ -2 2863 a -2
+2863 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2950) cvn H.B /DEST pdfmark
+end
+ -2 2863 a -2 2988 a
+SDict begin H.S end
+ -2 2988 a -2 2988 a
+SDict begin 11.7 H.A end
+ -2 2988
+a -2 2988 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2952) cvn H.B /DEST pdfmark
+end
+ -2 2988 a 712 3067 a Fw(TIP:)g Fv(Use)1027
+3067 y
+SDict begin H.S end
+ 1027 3067 a 1027 3067 a
+SDict begin 11.7 H.A end
+ 1027 3067 a 1027 3067
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2953) cvn H.B /DEST pdfmark
+end
+ 1027 3067 a Fw(samhain)f(-jL)h(/path/to/log\002le)d
+Fv(if)j(y)o(ou)g(just)g(w)o(ant)f(to)h(vie)o(w)g(r)o(ather)f(than)g(v)n
+(er)q(ify)i(the)e(log\002le)o(.)438 3407 y
+SDict begin H.S end
+ 438 3407 a
+438 3407 a
+SDict begin 13 H.A end
+ 438 3407 a 438 3407 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2954) cvn H.B /DEST pdfmark
+end
+ 438 3407 a Black 463
+3557 a FC(3.)p Black 546 3557 a
+SDict begin H.S end
+ 546 3557 a 546 3557 a
+SDict begin 13 H.A end
+
+546 3557 a 546 3557 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2955) cvn H.B /DEST pdfmark
+end
+ 546 3557 a FC(Strings)h(in)g(the)g(database)g
+(\002le)h(are)f(obfuscated)e(by)i(XORing)g(them)g(with)2706
+3557 y
+SDict begin H.S end
+ 2706 3557 a 2706 3557 a
+SDict begin 13 H.A end
+ 2706 3557 a 2706 3557
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2956) cvn H.B /DEST pdfmark
+end
+ 2706 3557 a Fx(xor_val)p FC(.)g(Y)-9 b(ou)19 b(may)h(append)e(the)546
+3665 y(database)h(\002le)i(to)g(some)f(binary)e(\002le)j(\(e.g.)f(an)g
+(e)o(x)o(ecutable,)e(or)i(a)g(JPEG)h(image\),)e(if)i(you)e(lik)o(e.)-2
+3683 y
+SDict begin H.S end
+ -2 3683 a -2 3683 a
+SDict begin 13 H.A end
+ -2 3683 a -2 3683 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2957) cvn H.B /DEST pdfmark
+end
+ -2 3683
+a Black 463 3814 a FC(4.)p Black 546 3814 a
+SDict begin H.S end
+ 546 3814
+a 546 3814 a
+SDict begin 13 H.A end
+ 546 3814 a 546 3814 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2958) cvn H.B /DEST pdfmark
+end
+ 546 3814 a FC(The)h(con\002guration)
+d(\002le)k(must)f(be)g(ste)o(ganographically)d(hidden)h(in)j(a)f
+(postscript)g(image)g(\002le)g(\(the)g(image)546 3922
+y(data)g(must)g(be)g(uncompressed\).)d(T)-7 b(o)21 b(create)f(such)f(a)
+i(\002le)g(from)e(an)h(e)o(xisting)g(image,)f(you)g(may)h(use)g(e.g.)g
+(the)546 4030 y(program)848 4030 y
+SDict begin H.S end
+ 848 4030 a 848 4030
+a
+SDict begin 13 H.A end
+ 848 4030 a 848 4030 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2959) cvn H.B /DEST pdfmark
+end
+ 848 4030 a Fy(con)m(v)o(ert)p
+FC(,)f(which)g(is)i(part)f(of)g(the)1814 4030 y
+SDict begin H.S end
+ 1814
+4030 a 1814 4030 a
+SDict begin 13 H.A end
+ 1814 4030 a 1814 4030 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2960) cvn H.B /DEST pdfmark
+end
+ 1814 4030
+a FC(ImageMagick)e(package,)h(such)h(as)2872 4030 y
+SDict begin H.S end
+ 2872
+4030 a 2872 4030 a
+SDict begin 13 H.A end
+ 2872 4030 a 2872 4030 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2961) cvn H.B /DEST pdfmark
+end
+ 2872 4030
+a Fy(con)m(v)o(ert)f(+compr)o(ess)546 4138 y
+SDict begin H.S end
+ 546 4138
+a 546 4138 a
+SDict begin 13 H.A end
+ 546 4138 a 546 4138 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2962) cvn H.B /DEST pdfmark
+end
+ 546 4138 a Fl(ima.jpg)43
+b(ima.ps)q FC(.)-2 4148 y
+SDict begin H.S end
+ -2 4148 a -2 4148 a
+SDict begin 11.7 H.A end
+ -2 4148
+a -2 4148 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2963) cvn H.B /DEST pdfmark
+end
+ -2 4148 a -2 4273 a
+SDict begin H.S end
+ -2 4273 a -2 4273 a
+SDict begin 11.7 H.A end
+ -2
+4273 a -2 4273 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2965) cvn H.B /DEST pdfmark
+end
+ -2 4273 a 712 4360 a Fw(TIP:)874 4360
+y
+SDict begin H.S end
+ 874 4360 a 874 4360 a
+SDict begin 11.7 H.A end
+ 874 4360 a 874 4360 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2966) cvn H.B /DEST pdfmark
+end
+ 874 4360
+a Fw(make)19 b(install)g Fv(will)h(do)g(this)g(automatically)d(bef)n
+(ore)i(installation.)-2 4675 y
+SDict begin H.S end
+ -2 4675 a -2 4675 a
+SDict begin 13 H.A end
+ -2
+4675 a -2 4675 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2967) cvn H.B /DEST pdfmark
+end
+ -2 4675 a 546 4783 a FC(T)-7 b(o)20
+b(hide/e)o(xtract)f(the)h(con\002guration)d(data)j(within/from)f(the)h
+(postscript)g(\002le,)g(a)h(utility)f(program)546 4891
+y
+SDict begin H.S end
+ 546 4891 a 546 4891 a
+SDict begin 13 H.A end
+ 546 4891 a 546 4891 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2968) cvn H.B /DEST pdfmark
+end
+ 546 4891
+a Fy(samhain_stealth)f FC(is)i(pro)o(vided.)d(Use)i(it)h(without)f
+(options)f(to)h(get)h(help.)-2 4909 y
+SDict begin H.S end
+ -2 4909 a -2 4909
+a
+SDict begin 11.7 H.A end
+ -2 4909 a -2 4909 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2969) cvn H.B /DEST pdfmark
+end
+ -2 4909 a -2 5033 a
+SDict begin H.S end
+ -2 5033 a -2
+5033 a
+SDict begin 11.7 H.A end
+ -2 5033 a -2 5033 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2971) cvn H.B /DEST pdfmark
+end
+ -2 5033 a 712 5113 a Fw(NO)m(TE:)f
+Fv(If)1024 5113 y
+SDict begin H.S end
+ 1024 5113 a 1024 5113 a
+SDict begin 11.7 H.A end
+ 1024 5113 a
+1024 5113 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2972) cvn H.B /DEST pdfmark
+end
+ 1024 5113 a Fw(--enab)o(le-stealth)c Fv(is)21
+b(used)f(together)e(with)2303 5113 y
+SDict begin H.S end
+ 2303 5113 a 2303
+5113 a
+SDict begin 11.7 H.A end
+ 2303 5113 a 2303 5113 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2973) cvn H.B /DEST pdfmark
+end
+ 2303 5113 a Fw(--with-gpg)p
+Fv(,)g(then)h(the)h(con\002g)g(\002le)g(m)o(ust)h(be)712
+5210 y(signed)e(bef)n(ore)f(hiding)g(it)i(\(r)o(ather)f(than)g(signing)
+g(the)h(PS)g(image)f(\002le)i(afterw)o(ards\).)p Black
+3661 5805 a Fx(82)p Black eop end
+%%Page: 83 88
+TeXDict begin 83 87 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.83) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2365 104 a
+Fx(Chapter)20 b(9.)g(Additional)f(F)-6 b(eatur)m(es)19
+b(\227)i(Stealth)p Black -2 624 a
+SDict begin H.S end
+ -2 624 a -2 624 a
+SDict begin 13 H.A end
+ -2
+624 a -2 624 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2974) cvn H.B /DEST pdfmark
+end
+ -2 624 a -2 624 a
+SDict begin H.S end
+ -2 624 a -2 624 a
+SDict begin 13 H.A end
+ -2
+624 a -2 624 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2975) cvn H.B /DEST pdfmark
+end
+ -2 624 a 396 732 a Fy(--enable-micr)o(o-stealth=)1229
+732 y
+SDict begin H.S end
+ 1229 732 a 1229 732 a
+SDict begin 13 H.A end
+ 1229 732 a 1229 732 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2976) cvn H.B /DEST pdfmark
+end
+ 1229
+732 a Fl(xor_val)c FC(is)k(lik)o(e)1781 732 y
+SDict begin H.S end
+ 1781 732
+a 1781 732 a
+SDict begin 13 H.A end
+ 1781 732 a 1781 732 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2977) cvn H.B /DEST pdfmark
+end
+ 1781 732 a Fy(--enable-stealth)p
+FC(,)d(b)n(ut)j(uses)f(a)h('normal')d(con\002guration)g(\002le)396
+840 y(\(not)i(hidden)f(ste)o(ganographically\).)-2 1024
+y
+SDict begin H.S end
+ -2 1024 a -2 1024 a
+SDict begin 13 H.A end
+ -2 1024 a -2 1024 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2978) cvn H.B /DEST pdfmark
+end
+ -2 1024 a -2
+1024 a
+SDict begin H.S end
+ -2 1024 a -2 1024 a
+SDict begin 13 H.A end
+ -2 1024 a -2 1024 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2979) cvn H.B /DEST pdfmark
+end
+ -2 1024
+a 396 1114 a Fy(--enable-nocl[=ARG])f FC(will)j(disables)f(command)f
+(line)h(parsing.)f(The)h(optional)f(ar)o(gument)e(is)22
+b(a)e('magic')f(w)o(ord)396 1222 y(that)i(will)f(enable)g(reading)f
+(command-line)e(ar)o(guments)h(from)2246 1222 y
+SDict begin H.S end
+ 2246
+1222 a 2246 1222 a
+SDict begin 13 H.A end
+ 2246 1222 a 2246 1222 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2980) cvn H.B /DEST pdfmark
+end
+ 2246 1222
+a Fx(stdin)p FC(.)i(If)g(the)h(\002rst)f(command-line)e(ar)o(gument)g
+(is)396 1330 y(not)i(the)g('magic')f(w)o(ord,)h(all)g(command)f(line)h
+(ar)o(guments)e(will)j(be)f(ignored.)e(This)j(allo)n(ws)f(to)g(start)h
+(the)f(program)396 1438 y(with)h(completely)d(arbitrary)h(command-line)
+e(ar)o(guments.)-2 1622 y
+SDict begin H.S end
+ -2 1622 a -2 1622 a
+SDict begin 13 H.A end
+ -2 1622
+a -2 1622 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2981) cvn H.B /DEST pdfmark
+end
+ -2 1622 a -2 1622 a
+SDict begin H.S end
+ -2 1622 a -2 1622 a
+SDict begin 13 H.A end
+ -2
+1622 a -2 1622 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2982) cvn H.B /DEST pdfmark
+end
+ -2 1622 a 396 1712 a Fy(--enable-install-name=)1197
+1712 y
+SDict begin H.S end
+ 1197 1712 a 1197 1712 a
+SDict begin 13 H.A end
+ 1197 1712 a 1197 1712
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2983) cvn H.B /DEST pdfmark
+end
+ 1197 1712 a Fl(NAME)24 b FC(will)d(rename)e(e)n(v)o(ery)f(installed)j
+(\002le)f(from)2629 1712 y
+SDict begin H.S end
+ 2629 1712 a 2629 1712 a
+SDict begin 13 H.A end
+ 2629
+1712 a 2629 1712 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2984) cvn H.B /DEST pdfmark
+end
+ 2629 1712 a Fx(samhain)f FC(to)3016
+1712 y
+SDict begin H.S end
+ 3016 1712 a 3016 1712 a
+SDict begin 13 H.A end
+ 3016 1712 a 3016 1712
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2985) cvn H.B /DEST pdfmark
+end
+ 3016 1712 a Fx(N)n(AME)j FC(when)e(doing)f(a)396 1820
+y
+SDict begin H.S end
+ 396 1820 a 396 1820 a
+SDict begin 13 H.A end
+ 396 1820 a 396 1820 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2986) cvn H.B /DEST pdfmark
+end
+ 396 1820
+a Fy(mak)o(e)i(install)f FC(\(standalone/client)f(installation\),)g
+(and)g(lik)o(e)n(wise)i(rename)e(installed)h(\002les)h(from)3240
+1820 y
+SDict begin H.S end
+ 3240 1820 a 3240 1820 a
+SDict begin 13 H.A end
+ 3240 1820 a 3240 1820
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2987) cvn H.B /DEST pdfmark
+end
+ 3240 1820 a Fx(yule)f FC(to)3485 1820 y
+SDict begin H.S end
+ 3485 1820 a
+3485 1820 a
+SDict begin 13 H.A end
+ 3485 1820 a 3485 1820 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2988) cvn H.B /DEST pdfmark
+end
+ 3485 1820 a Fx(N)n(AME)396
+1928 y FC(when)g(doing)f(a)864 1928 y
+SDict begin H.S end
+ 864 1928 a 864
+1928 a
+SDict begin 13 H.A end
+ 864 1928 a 864 1928 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2989) cvn H.B /DEST pdfmark
+end
+ 864 1928 a Fy(mak)o(e)i(install)g
+FC(\(serv)o(er)e(installation\).)g(Also,)h(the)g(boot)g(scripts)g
+(\(samhain.startSuSE,)396 2036 y(samhain.startDebian,)e
+(samhain.startRedHat\))g(will)j(be)f(updated)f(accordingly)-5
+b(.)17 b(Files)k(created)f(by)3368 2036 y
+SDict begin H.S end
+ 3368 2036 a
+3368 2036 a
+SDict begin 13 H.A end
+ 3368 2036 a 3368 2036 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2990) cvn H.B /DEST pdfmark
+end
+ 3368 2036 a FC(samhain)396
+2143 y(\(e.g.)g(the)g(database\))f(will)i(also)f(ha)n(v)o(e)1500
+2143 y
+SDict begin H.S end
+ 1500 2143 a 1500 2143 a
+SDict begin 13 H.A end
+ 1500 2143 a 1500 2143
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2991) cvn H.B /DEST pdfmark
+end
+ 1500 2143 a Fx(samhain)f FC(replaced)g(by)2208 2143
+y
+SDict begin H.S end
+ 2208 2143 a 2208 2143 a
+SDict begin 13 H.A end
+ 2208 2143 a 2208 2143 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2992) cvn H.B /DEST pdfmark
+end
+ 2208
+2143 a Fx(N)n(AME)j FC(in)f(their)f(\002lenames.)-2 2161
+y
+SDict begin H.S end
+ -2 2161 a -2 2161 a
+SDict begin 11.7 H.A end
+ -2 2161 a -2 2161 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2993) cvn H.B /DEST pdfmark
+end
+ -2 2161 a -2
+2286 a
+SDict begin H.S end
+ -2 2286 a -2 2286 a
+SDict begin 11.7 H.A end
+ -2 2286 a -2 2286 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2995) cvn H.B /DEST pdfmark
+end
+ -2 2286
+a 562 2365 a Fw(TIP:)g Fv(The)g(man)g(pages)f(ha)o(v)n(e)h(f)n(ar)f
+(too)h(m)o(uch)h(speci\002c)f(inf)n(or)r(mation)d(enab)o(ling)g(an)j
+(intr)q(uder)e(to)i(inf)n(er)f(the)562 2462 y(presence)g(of)h(samhain.)
+f(There)g(is)i(no)f(point)f(in)h(changing)2278 2462 y
+SDict begin H.S end
+
+2278 2462 a 2278 2462 a
+SDict begin 11.7 H.A end
+ 2278 2462 a 2278 2462 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2996) cvn H.B /DEST pdfmark
+end
+ 2278
+2462 a Fq(samhain)g Fv(to)2665 2462 y
+SDict begin H.S end
+ 2665 2462 a 2665
+2462 a
+SDict begin 11.7 H.A end
+ 2665 2462 a 2665 2462 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2997) cvn H.B /DEST pdfmark
+end
+ 2665 2462 a Fq(NAME)28
+b Fv(there)19 b(\227)h(this)g(w)o(ould)f(r)o(ather)562
+2559 y(help)g(an)h(intr)q(uder)e(to)i(\002nd)h(out)e(what)1631
+2559 y
+SDict begin H.S end
+ 1631 2559 a 1631 2559 a
+SDict begin 11.7 H.A end
+ 1631 2559 a 1631 2559
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:2998) cvn H.B /DEST pdfmark
+end
+ 1631 2559 a Fq(NAME)28 b Fv(is)o(.)20 b(Y)-10 b(ou)19
+b(probab)o(ly)f(w)o(ant)h(to)i(a)o(v)n(oid)e(installing)e
+(man8/samhain.8)562 2657 y(and)j(man5/samhainrc.5.)39
+2806 y
+SDict begin H.S end
+ 39 2806 a 39 2806 a
+SDict begin 13 H.A end
+ 39 2806 a 39 2806 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:KHIDE) cvn H.B /DEST pdfmark
+end
+ 39 2806
+a 396 3134 a Fp(9.1.1.)36 b(Using)e(kernel)g(modules)h(to)e(hide)h
+(samhain)i(\(Lin)o(ux/ix86)396 3290 y(onl)n(y\))679 3290
+y
+SDict begin H.S end
+ 679 3290 a 679 3290 a
+SDict begin 18.72 H.A end
+ 679 3290 a 679 3290 a
+SDict begin [ /View [/XYZ H.V] /Dest (11.65.34.2) cvn H.B /DEST pdfmark
+end
+ 679 3290
+a -2 3314 a
+SDict begin H.S end
+ -2 3314 a -2 3314 a
+SDict begin 11.7 H.A end
+ -2 3314 a -2 3314 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3001) cvn H.B /DEST pdfmark
+end
+ -2
+3314 a -2 3439 a
+SDict begin H.S end
+ -2 3439 a -2 3439 a
+SDict begin 11.7 H.A end
+ -2 3439 a -2 3439
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3003) cvn H.B /DEST pdfmark
+end
+ -2 3439 a 562 3511 a Fw(Impor)q(tant:)20 b Fv(These)f(modules)h
+(modify)f(the)h(r)q(unning)e(k)o(er)r(nel.)g(Please)i(read)f(this)h
+(section)f(carefully)g(\(in)562 3608 y(par)s(ticular)f(the)i(ca)o(v)n
+(eats)g(noted)f(at)h(the)f(end\),)g(and)h(test)g(the)g(modules)f(bef)n
+(ore)f(installing.)f(Without)h(proper)562 3705 y(testing)h(it)h(ma)n(y)
+h(happen)d(that)h(y)o(ou)h(need)f(to)h(reboot)f(into)g(single)g(user)h
+(mode)g(to)g(remo)o(v)n(e)g(the)f(modules)g(and)562 3803
+y(to)h(mak)o(e)g(y)o(our)g(system)h(useab)o(le)d(again)h(...)-2
+4118 y
+SDict begin H.S end
+ -2 4118 a -2 4118 a
+SDict begin 13 H.A end
+ -2 4118 a -2 4118 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3004) cvn H.B /DEST pdfmark
+end
+ -2 4118
+a 396 4226 a FC(If)h(the)h(con\002gure)d(option)1162
+4226 y
+SDict begin H.S end
+ 1162 4226 a 1162 4226 a
+SDict begin 13 H.A end
+ 1162 4226 a 1162 4226
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3005) cvn H.B /DEST pdfmark
+end
+ 1162 4226 a Fy(--enable-khide=SYSTEM_MAP)j FC(is)g(used,)f(tw)o(o)g
+(\(pre-2.6)e(k)o(ernel\))h(or)h(one)g(\(2.6)396 4334
+y(k)o(ernel\))f(loadable)g(k)o(ernel)h(module\(s\))e(will)j(be)f(b)n
+(uilt.)g(These)g(are)g(named)2563 4334 y
+SDict begin H.S end
+ 2563 4334 a
+2563 4334 a
+SDict begin 13 H.A end
+ 2563 4334 a 2563 4334 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3006) cvn H.B /DEST pdfmark
+end
+ 2563 4334 a Fr(samhain_hide.o)42
+b(/)396 4442 y(samhain_erase.o)18 b FC(\(pre-2.6\))g(or)1493
+4442 y
+SDict begin H.S end
+ 1493 4442 a 1493 4442 a
+SDict begin 13 H.A end
+ 1493 4442 a 1493 4442
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3007) cvn H.B /DEST pdfmark
+end
+ 1493 4442 a Fr(samhain_hide.ko)g FC(\(2.6\).)-2 4626
+y
+SDict begin H.S end
+ -2 4626 a -2 4626 a
+SDict begin 13 H.A end
+ -2 4626 a -2 4626 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3008) cvn H.B /DEST pdfmark
+end
+ -2 4626 a 396
+4716 a FC(SYSTEM_MAP)i(must)g(be)g(the)h(path)e(to)i(the)f(System.map)f
+(\002le)i(for)e(your)g(current)g(k)o(ernel)g(\(e.g.)396
+4824 y
+SDict begin H.S end
+ 396 4824 a 396 4824 a
+SDict begin 13 H.A end
+ 396 4824 a 396 4824 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3009) cvn H.B /DEST pdfmark
+end
+ 396
+4824 a Fr(/boot/System.map-rh-2.4.18-3)p FC(\).)1721
+4824 y
+SDict begin H.S end
+ 1721 4824 a 1721 4824 a
+SDict begin 13 H.A end
+ 1721 4824 a 1721 4824
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3010) cvn H.B /DEST pdfmark
+end
+ 1721 4824 a Fr(samhain_hide.o)f FC(will)j(hide)f(e)n(v)o(ery)f
+(\002le/directory/process)396 4932 y(with)i(the)f(string)g(N)m(AME)g
+(\(from)f(the)h(con\002gure)e(option)2058 4932 y
+SDict begin H.S end
+ 2058
+4932 a 2058 4932 a
+SDict begin 13 H.A end
+ 2058 4932 a 2058 4932 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3011) cvn H.B /DEST pdfmark
+end
+ 2058 4932
+a Fy(--enable-install-name=N)n(AME)p FC(\).)h(If)i(the)f(con\002gure)
+396 5040 y(option)629 5040 y
+SDict begin H.S end
+ 629 5040 a 629 5040 a
+SDict begin 13 H.A end
+ 629
+5040 a 629 5040 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3012) cvn H.B /DEST pdfmark
+end
+ 629 5040 a Fy(--enable-install-name)f
+FC(is)i(not)f(used,)f(N)m(AME)i(is)g(set)g(to)2335 5040
+y
+SDict begin H.S end
+ 2335 5040 a 2335 5040 a
+SDict begin 13 H.A end
+ 2335 5040 a 2335 5040 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3013) cvn H.B /DEST pdfmark
+end
+ 2335
+5040 a FC(samhain.)e(T)-7 b(o)21 b(hide)e(the)i(module)d(itself,)j(the)
+396 5148 y(second)f(module)917 5148 y
+SDict begin H.S end
+ 917 5148 a 917
+5148 a
+SDict begin 13 H.A end
+ 917 5148 a 917 5148 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3014) cvn H.B /DEST pdfmark
+end
+ 917 5148 a Fr(samhain_erase.o)f
+FC(is)i(pro)o(vided.)c(Loading)i(and)g(immediately)g(thereafter)g
+(unloading)f(this)396 5255 y(module)h(will)i(hide)f(an)o(y)f(module)g
+(with)h(the)h(string)e(N)m(AME)i(in)f(its)h(name.)2558
+5255 y
+SDict begin H.S end
+ 2558 5255 a 2558 5255 a
+SDict begin 13 H.A end
+ 2558 5255 a 2558 5255
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3015) cvn H.B /DEST pdfmark
+end
+ 2558 5255 a Fy(mak)o(e)f(install)h FC(will)g(install)f(the)h(k)o
+(ernel)396 5363 y(modules)e(to)i(the)f(appropriate)e(place.)h(The)o(y)h
+(will)h(be)f(loaded)f(when)g(booting)g(into)h(runle)n(v)o(el)e(2,)i(3,)
+g(4,)g(or)g(5.)p Black 3661 5805 a Fx(83)p Black eop
+end
+%%Page: 84 89
+TeXDict begin 84 88 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.84) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3056) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2365 104 a Fx(Chapter)20
+b(9.)g(Additional)f(F)-6 b(eatur)m(es)19 b(\227)i(Stealth)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3016) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a FC(W)m(ith)g(2.6)e(k)o(ernels,)h(only)f(one)h(k)o
+(ernel)f(module)1791 309 y
+SDict begin H.S end
+ 1791 309 a 1791 309 a
+SDict begin 13 H.A end
+ 1791
+309 a 1791 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3017) cvn H.B /DEST pdfmark
+end
+ 1791 309 a Fr(samhain_hide.ko)f FC(will)j(be)f(b)n
+(uild.)g(This)g(module)f(is)396 417 y(self-hiding,)g(i.e.)h(the)g
+(separate)1335 417 y
+SDict begin H.S end
+ 1335 417 a 1335 417 a
+SDict begin 13 H.A end
+ 1335 417 a
+1335 417 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3018) cvn H.B /DEST pdfmark
+end
+ 1335 417 a Fr(samhain_erase)e FC(module)h(is)i(not)f(needed)
+f(an)o(ymore.)f(Otherwise)i(it)h(w)o(orks)e(as)396 525
+y(described)g(abo)o(v)o(e.)f(Self-hiding)g(can)h(be)h(switched)f(of)n
+(f)g(by)h(passing)f(the)h(option)f(')l(remo)o(v)o(eme=0')c(to)20
+b(the)g(module:)396 632 y
+SDict begin H.S end
+ 396 632 a 396 632 a
+SDict begin 13 H.A end
+ 396 632
+a 396 632 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3019) cvn H.B /DEST pdfmark
+end
+ 396 632 a Fy(insmod)h(./samhain_hide.k)o(o)f(r)o(emo)o(v)o
+(eme=0)-2 809 y
+SDict begin H.S end
+ -2 809 a -2 809 a
+SDict begin 13 H.A end
+ -2 809 a -2 809 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3020) cvn H.B /DEST pdfmark
+end
+ -2
+809 a 396 906 a FC(Building)g(a)g(linux)g(k)o(ernel)f(module)g
+(requires)g(a)i(proper)d(b)n(uild)i(en)m(vironment.)d(Y)-9
+b(ou)19 b(should)h(ha)n(v)o(e)f(a)i(link)396 1014 y
+SDict begin H.S end
+ 396
+1014 a 396 1014 a
+SDict begin 13 H.A end
+ 396 1014 a 396 1014 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3021) cvn H.B /DEST pdfmark
+end
+ 396 1014 a Fr
+(/lib/modules/`uname)42 b(-r`/build)19 b FC(which)h(points)g(to)g(a)h
+(functional)d(b)n(uild)i(en)m(vironment.)d(Usually)-5
+b(,)19 b(you)396 1122 y(need)h(to)g(install)h(the)f(k)o(ernel)f
+(sources)h(for)g(your)f(k)o(ernel,)g(and)g(e)n(v)o(entually)g(\(if)h
+(compiling)e(the)j(modules)e(f)o(ails\))h(you)396 1230
+y(may)g(need)f(to)i(con\002gure)d(the)i(k)o(ernel)g(source)f(for)h
+(your)f(k)o(ernel:)-2 1331 y
+SDict begin H.S end
+ -2 1331 a -2 1331 a
+SDict begin 11.7 H.A end
+ -2 1331
+a -2 1331 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3022) cvn H.B /DEST pdfmark
+end
+ -2 1331 a 486 1410 a
+SDict begin H.S end
+ 486 1410 a 486 1410
+a
+SDict begin 11.7 H.A end
+ 486 1410 a 486 1410 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3023) cvn H.B /DEST pdfmark
+end
+ 486 1410 a Ft(sh$)647 1410 y
+SDict begin H.S end
+
+647 1410 a 647 1410 a
+SDict begin 11.7 H.A end
+ 647 1410 a 647 1410 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3024) cvn H.B /DEST pdfmark
+end
+ 647 1410
+a Fs(cd)41 b(/your/kernel/sourc)q(e/d)q(ire)q(cto)q(ry)486
+1508 y
+SDict begin H.S end
+ 486 1508 a 486 1508 a
+SDict begin 11.7 H.A end
+ 486 1508 a 486 1508 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3025) cvn H.B /DEST pdfmark
+end
+ 486
+1508 a Ft(sh$)647 1508 y
+SDict begin H.S end
+ 647 1508 a 647 1508 a
+SDict begin 11.7 H.A end
+ 647 1508
+a 647 1508 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3026) cvn H.B /DEST pdfmark
+end
+ 647 1508 a Fs(make)h(mrproper)486 1605 y
+SDict begin H.S end
+
+486 1605 a 486 1605 a
+SDict begin 11.7 H.A end
+ 486 1605 a 486 1605 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3027) cvn H.B /DEST pdfmark
+end
+ 486 1605
+a Ft(sh$)647 1605 y
+SDict begin H.S end
+ 647 1605 a 647 1605 a
+SDict begin 11.7 H.A end
+ 647 1605 a
+647 1605 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3028) cvn H.B /DEST pdfmark
+end
+ 647 1605 a Fs(make)g(cloneconfig)486 1702
+y
+SDict begin H.S end
+ 486 1702 a 486 1702 a
+SDict begin 11.7 H.A end
+ 486 1702 a 486 1702 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3029) cvn H.B /DEST pdfmark
+end
+ 486 1702
+a Ft(sh$)647 1702 y
+SDict begin H.S end
+ 647 1702 a 647 1702 a
+SDict begin 11.7 H.A end
+ 647 1702 a
+647 1702 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3030) cvn H.B /DEST pdfmark
+end
+ 647 1702 a Fs(make)g(dep)k Fr(\(obsolete)d(for)i(2.6\))486
+1799 y
+SDict begin H.S end
+ 486 1799 a 486 1799 a
+SDict begin 11.7 H.A end
+ 486 1799 a 486 1799 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3031) cvn H.B /DEST pdfmark
+end
+ 486
+1799 a Ft(sh$)647 1799 y
+SDict begin H.S end
+ 647 1799 a 647 1799 a
+SDict begin 11.7 H.A end
+ 647 1799
+a 647 1799 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3032) cvn H.B /DEST pdfmark
+end
+ 647 1799 a Fs(make)d(modules)47 b Fr(\(only)d(for)h(2.6\))
+486 1896 y
+SDict begin H.S end
+ 486 1896 a 486 1896 a
+SDict begin 11.7 H.A end
+ 486 1896 a 486 1896
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3033) cvn H.B /DEST pdfmark
+end
+ 486 1896 a Ft(sh$)647 1896 y
+SDict begin H.S end
+ 647 1896 a 647 1896 a
+SDict begin 11.7 H.A end
+
+647 1896 a 647 1896 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3034) cvn H.B /DEST pdfmark
+end
+ 647 1896 a Fs(cd)c(/lib/modules/`unam)q(e)46
+b(-r`)486 1993 y
+SDict begin H.S end
+ 486 1993 a 486 1993 a
+SDict begin 11.7 H.A end
+ 486 1993 a 486
+1993 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3035) cvn H.B /DEST pdfmark
+end
+ 486 1993 a Ft(sh$)647 1993 y
+SDict begin H.S end
+ 647 1993 a 647 1993
+a
+SDict begin 11.7 H.A end
+ 647 1993 a 647 1993 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3036) cvn H.B /DEST pdfmark
+end
+ 647 1993 a Fs(ln)41 b(-s)g(/your/kernel/sourc)q
+(e/d)q(ire)q(cto)q(ry)47 b(build)-2 2090 y
+SDict begin H.S end
+ -2 2090 a
+-2 2090 a
+SDict begin 11.7 H.A end
+ -2 2090 a -2 2090 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3037) cvn H.B /DEST pdfmark
+end
+ -2 2090 a 745 2190 2668
+17 v 745 3078 17 889 v 1673 2385 a Fp(CA)-10 b(VEA)f(T)34
+b(NO)-5 b(.)34 b(1)786 2553 y
+SDict begin H.S end
+ 786 2553 a 786 2553 a
+SDict begin 11.7 H.A end
+ 786
+2553 a 786 2553 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3039) cvn H.B /DEST pdfmark
+end
+ 786 2553 a 95 x Fv(The)20 b(modules)f(are)h(k)o(er)r
+(nel-speci\002c)o(,)e(and)2032 2648 y
+SDict begin H.S end
+ 2032 2648 a 2032
+2648 a
+SDict begin 11.7 H.A end
+ 2032 2648 a 2032 2648 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3040) cvn H.B /DEST pdfmark
+end
+ 2032 2648 a Fq(MUST)30
+b Fv(be)20 b(recompiled)e(whene)n(v)n(er)h(the)786 2745
+y(currently)h(used)f(k)o(er)r(nel)g(is)i(recompiled)d(or)i(replaced)e
+(b)o(y)j(another)d(one)h(\(e)n(v)n(en)h(if)g(the)786
+2843 y(k)o(er)r(nel)f(v)n(ersion)h(is)h(identical\).)c(F)l(ailure)h(to)
+i(do)g(so)h(might)e(lead)g(to)i(a)f(k)o(er)r(nel)e(panic.)i(The)786
+2940 y(same)h(is)g(tr)q(ue)e(if)h(the)1398 2940 y
+SDict begin H.S end
+ 1398
+2940 a 1398 2940 a
+SDict begin 11.7 H.A end
+ 1398 2940 a 1398 2940 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3041) cvn H.B /DEST pdfmark
+end
+ 1398 2940
+a Ft(System.map)k Fv(that)c(y)o(ou)f(ha)o(v)n(e)h(speci\002ed)f(is)i
+(not)f(the)f(one)786 3037 y(corresponding)f(to)i(y)o(our)f(current)h(k)
+o(er)r(nel.)p 3396 3078 17 889 v 745 3095 2668 17 v -2
+3105 a
+SDict begin H.S end
+ -2 3105 a -2 3105 a
+SDict begin 11.7 H.A end
+ -2 3105 a -2 3105 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3042) cvn H.B /DEST pdfmark
+end
+ -2 3105
+a 745 3205 2668 17 v 745 4183 17 978 v 1673 3400 a Fp(CA)-10
+b(VEA)f(T)34 b(NO)-5 b(.)34 b(2)786 3568 y
+SDict begin H.S end
+ 786 3568 a
+786 3568 a
+SDict begin 11.7 H.A end
+ 786 3568 a 786 3568 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3044) cvn H.B /DEST pdfmark
+end
+ 786 3568 a 95 x Fv(When)19
+b(the)1127 3663 y
+SDict begin H.S end
+ 1127 3663 a 1127 3663 a
+SDict begin 11.7 H.A end
+ 1127 3663 a
+1127 3663 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3045) cvn H.B /DEST pdfmark
+end
+ 1127 3663 a Ft(samhain_hide)25 b Fv(module)19
+b(is)h(hidden,)e(the)i(k)o(er)r(nel)f(doesn't)f(kno)o(w)i(an)o(ymore)
+786 3760 y(about)f(its)i(e)n(xistence)o(,)d(thus)i(it)h(cannot)e(be)h
+(remo)o(v)n(ed)f(e)n(xcept)h(b)o(y)g(rebooting.)d(On)j(pre-2.6)786
+3858 y(k)o(er)r(nels)o(,)f(hiding)f(the)1413 3858 y
+SDict begin H.S end
+ 1413
+3858 a 1413 3858 a
+SDict begin 11.7 H.A end
+ 1413 3858 a 1413 3858 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3046) cvn H.B /DEST pdfmark
+end
+ 1413 3858
+a Ft(samhain_hide.o)25 b Fv(module)19 b(requires)g(loading/unloadi)o
+(ng)14 b(the)786 3955 y
+SDict begin H.S end
+ 786 3955 a 786 3955 a
+SDict begin 11.7 H.A end
+ 786 3955
+a 786 3955 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3047) cvn H.B /DEST pdfmark
+end
+ 786 3955 a Ft(samhain_erase.o)26 b Fv(module)o(.)19
+b(On)h(2.6)g(k)o(er)r(nels)o(,)f(the)2349 3955 y
+SDict begin H.S end
+ 2349
+3955 a 2349 3955 a
+SDict begin 11.7 H.A end
+ 2349 3955 a 2349 3955 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3048) cvn H.B /DEST pdfmark
+end
+ 2349 3955
+a Ft(samhain_hide.ko)26 b Fv(module)19 b(will)786 4052
+y(automatically)f(hide)h(itself)h(after)f(loading,)e(EXCEPT)j(if)g(y)o
+(ou)g(pass)g(the)g(option)786 4149 y(')l(remo)o(v)n(eme=0')f(to)h(the)f
+(module:)1766 4149 y
+SDict begin H.S end
+ 1766 4149 a 1766 4149 a
+SDict begin 11.7 H.A end
+ 1766 4149
+a 1766 4149 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3049) cvn H.B /DEST pdfmark
+end
+ 1766 4149 a Fw(insmod)h(./samhain_hide)q(.k)o(o)15
+b(remo)o(veme=0)p 3396 4183 17 978 v 745 4199 2668 17
+v -2 4210 a
+SDict begin H.S end
+ -2 4210 a -2 4210 a
+SDict begin 11.7 H.A end
+ -2 4210 a -2 4210 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3050) cvn H.B /DEST pdfmark
+end
+ -2
+4210 a Black 3661 5805 a Fx(84)p Black eop end
+%%Page: 85 90
+TeXDict begin 85 89 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.85) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2365 104 a
+Fx(Chapter)20 b(9.)g(Additional)f(F)-6 b(eatur)m(es)19
+b(\227)i(Stealth)p Black 745 242 2668 17 v 745 1588 17
+1346 v 898 437 a Fp(CA)-10 b(VEA)f(T)34 b(NO)-5 b(.)35
+b(3)e(-)g(Impor)r(tant)h(Lin)o(ux)g(2.6)g(issue)786 628
+y
+SDict begin H.S end
+ 786 628 a 786 628 a
+SDict begin 11.7 H.A end
+ 786 628 a 786 628 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3052) cvn H.B /DEST pdfmark
+end
+ 786 628 a 73
+x Fv(The)20 b(stealth)f(module)g(b)o(uilds)f(\002ne)i(on)g(Lin)o(ux)g
+(2.6)f(\(if)h(the)g(b)o(uild)e(system)k(is)e(proper)q(ly)786
+798 y(con\002gured)f(\227)i(see)f(abo)o(v)n(e\).)f(It)h(w)o(as)h
+(tested)e(on)h(tw)o(o)g(systems:)i(2.6.5-7.104-smp)786
+895 y(\(SuSE)e(9.1\))g(and)f(2.6.6)g(\(no)h(SMP\).)g(It)g(only)g(w)o
+(or)q(k)o(ed)g(on)g(the)f(latter)g(system,)i(while)e(the)786
+992 y(\002rst)j(one)d(w)o(as)i(rendered)c(un)o(useab)o(le)h(\(ls)i(and)
+g(ps)g(didn't)f(w)o(or)q(k)h(an)o(ymore\).)f(Not)h(sure)786
+1089 y(about)f(the)h(reason.)786 1256 y
+SDict begin H.S end
+ 786 1256 a 786
+1256 a
+SDict begin 11.7 H.A end
+ 786 1256 a 786 1256 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3053) cvn H.B /DEST pdfmark
+end
+ 786 1256 a 96 x Fv(Because)g(on)g(2.6)f
+(the)h(module)f(will)g(b)o(y)i(def)n(ault)c(automatically)h(hide)h
+(itself)n(,)g(and)g(cannot)786 1449 y(be)h(remo)o(v)n(ed)g(then)f(\(e)n
+(xcept)g(b)o(y)i(rebooting\),)c(y)o(ou)i(should)2485
+1449 y
+SDict begin H.S end
+ 2485 1449 a 2485 1449 a
+SDict begin 11.7 H.A end
+ 2485 1449 a 2485 1449
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3054) cvn H.B /DEST pdfmark
+end
+ 2485 1449 a Fq(TEST)30 b Fv(the)20 b(module)f(with)g(the)786
+1547 y(option)g(')l(remo)o(v)n(eme=0',)f(lik)o(e)h(e)o(.g.:)1813
+1547 y
+SDict begin H.S end
+ 1813 1547 a 1813 1547 a
+SDict begin 11.7 H.A end
+ 1813 1547 a 1813 1547
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3055) cvn H.B /DEST pdfmark
+end
+ 1813 1547 a Fw(insmod)h(./samhain_hide)q(.k)o(o)c(remo)o(veme=0)p
+3396 1588 17 1346 v 745 1605 2668 17 v -2 1615 a
+SDict begin H.S end
+ -2 1615
+a -2 1615 a
+SDict begin 11.7 H.A end
+ -2 1615 a -2 1615 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3056) cvn H.B /DEST pdfmark
+end
+ -2 1615 a -2 1781 a
+SDict begin H.S end
+ -2
+1781 a -2 1781 a
+SDict begin 11.7 H.A end
+ -2 1781 a -2 1781 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3058) cvn H.B /DEST pdfmark
+end
+ -2 1781 a 562 1836
+a Fw(TIP:)k Fv(Hidden)f(\002les)h(can)h(still)e(be)h(accessed)g(if)h
+(their)e(names)h(are)f(kno)o(wn,)h(thus)g(using)f(the)h(option)562
+1933 y
+SDict begin H.S end
+ 562 1933 a 562 1933 a
+SDict begin 11.7 H.A end
+ 562 1933 a 562 1933 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3059) cvn H.B /DEST pdfmark
+end
+ 562
+1933 a Fw(--enab)o(le-install-name)c Fv(to)k(rename)f(installed)f
+(\002les)i(is)h(recommended)d(f)n(or)i(secur)q(ity)-7
+b(.)39 2072 y
+SDict begin H.S end
+ 39 2072 a 39 2072 a
+SDict begin 11.7 H.A end
+ 39 2072 a 39 2072 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3060) cvn H.B /DEST pdfmark
+end
+
+39 2072 a -2 2238 a
+SDict begin H.S end
+ -2 2238 a -2 2238 a
+SDict begin 11.7 H.A end
+ -2 2238 a -2
+2238 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3062) cvn H.B /DEST pdfmark
+end
+ -2 2238 a 562 2335 a Fw(TIP:)20 b Fv(Using)g(the)g(modules)f(at)
+h(system)h(boot)e(ma)n(y)i(cause)f(prob)o(lems)f(with)g(the)h(GNOME)h
+(\(1.2\))3332 2335 y
+SDict begin H.S end
+ 3332 2335 a 3332 2335 a
+SDict begin 11.7 H.A end
+ 3332 2335
+a 3332 2335 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3063) cvn H.B /DEST pdfmark
+end
+ 3332 2335 a Fw(gdm)g Fv(displa)n(y)562
+2432 y(manager)e(\(seen)h(on)f(SuSE)h(7.4)g(with)g(the)f(Ximian)g
+(desktop;)g(no)h(prob)o(lems)f(obser)r(v)n(ed)g(with)h(kdm\).)g(In)h
+(case)562 2529 y(of)f(prob)o(lems)o(,)f(y)o(ou)g(ma)n(y)i(need)e(to)h
+(reboot)f(into)g(single-user)f(mode)i(and)f(edit)g(the)h(boot)f(init)g
+(scr)q(ipt)i(...)-2 2845 y
+SDict begin H.S end
+ -2 2845 a -2 2845 a
+SDict begin 13 H.A end
+ -2 2845
+a -2 2845 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:PACKING-THE-EXECUTABLE) cvn
+H.B /DEST pdfmark end
+ -2 2845 a 377 x Fu(9.2.)39 b(P)l(ac)m(king)f(the)h(e)n(x)o
+(ecutab)o(le)1855 3222 y
+SDict begin H.S end
+ 1855 3222 a 1855 3222 a
+SDict begin 22.464 H.A end
+ 1855
+3222 a 1855 3222 a
+SDict begin [ /View [/XYZ H.V] /Dest (11.66.1) cvn H.B /DEST pdfmark
+end
+ 1855 3222 a -2 3420 a
+SDict begin H.S end
+ -2 3420 a -2
+3420 a
+SDict begin 13 H.A end
+ -2 3420 a -2 3420 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3066) cvn H.B /DEST pdfmark
+end
+ -2 3420 a 396 3496 a FC(F)o(or)20
+b(e)n(v)o(en)f(more)h(stealthyness,)f(it)i(is)g(possible)f(to)g(pack)g
+(and)f(encrypt)g(the)2570 3496 y
+SDict begin H.S end
+ 2570 3496 a 2570 3496
+a
+SDict begin 13 H.A end
+ 2570 3496 a 2570 3496 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3067) cvn H.B /DEST pdfmark
+end
+ 2570 3496 a FC(samhain)h(e)o(x)o(ecutable.)e
+(The)i(pack)o(er)f(is)396 3604 y(just)i(moderately)d(ef)n(fecti)n(v)o
+(e,)h(b)n(ut)h(portable.)f(Note)h(that)g(the)g(encryption)e(k)o(e)o(y)i
+(of)f(course)h(must)g(be)g(present)g(in)g(the)396 3712
+y(pack)o(ed)f(e)o(x)o(ecutable,)f(thus)i(this)h(is)g(no)f(secure)g
+(encryption,)d(b)n(ut)k(rather)e(is)i(intended)e(for)g(obfuscation)g
+(of)g(the)396 3820 y(e)o(x)o(ecutable.)f(There)i(is)h(a)f(mak)o(e)g
+(tar)o(get)f(for)h(packing)f(the)2070 3820 y
+SDict begin H.S end
+ 2070 3820
+a 2070 3820 a
+SDict begin 13 H.A end
+ 2070 3820 a 2070 3820 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3068) cvn H.B /DEST pdfmark
+end
+ 2070 3820 a FC(samhain)g(e)o(x)o
+(ecutable:)-2 4004 y
+SDict begin H.S end
+ -2 4004 a -2 4004 a
+SDict begin 13 H.A end
+ -2 4004 a -2
+4004 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3069) cvn H.B /DEST pdfmark
+end
+ -2 4004 a -2 4004 a
+SDict begin H.S end
+ -2 4004 a -2 4004 a
+SDict begin 13 H.A end
+ -2 4004
+a -2 4004 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3070) cvn H.B /DEST pdfmark
+end
+ -2 4004 a 396 4094 a Fy(mak)o(e)i(samhain.pk)-2
+4277 y
+SDict begin H.S end
+ -2 4277 a -2 4277 a
+SDict begin 13 H.A end
+ -2 4277 a -2 4277 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3071) cvn H.B /DEST pdfmark
+end
+ -2 4277
+a 396 4368 a FC(On)f(e)o(x)o(ecution,)880 4368 y
+SDict begin H.S end
+ 880
+4368 a 880 4368 a
+SDict begin 13 H.A end
+ 880 4368 a 880 4368 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3072) cvn H.B /DEST pdfmark
+end
+ 880 4368 a Fy(samhain.pk)h
+FC(will)g(unpack)d(into)i(a)h(temporary)d(\002le)j(and)e(e)o(x)o(ecute)
+g(this,)i(passing)f(along)f(all)396 4476 y(command)f(line)j(ar)o
+(guments.)d(The)h(temporary)f(\002le)j(is)g(created)f(in)2336
+4476 y
+SDict begin H.S end
+ 2336 4476 a 2336 4476 a
+SDict begin 13 H.A end
+ 2336 4476 a 2336 4476
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3073) cvn H.B /DEST pdfmark
+end
+ 2336 4476 a Fr(/tmp)p FC(,)g(if)h(the)f(stick)o(y)g(bit)g(is)h(set)g
+(on)f(this)396 4584 y(directory)-5 b(,)18 b(and)i(in)958
+4584 y
+SDict begin H.S end
+ 958 4584 a 958 4584 a
+SDict begin 13 H.A end
+ 958 4584 a 958 4584 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3074) cvn H.B /DEST pdfmark
+end
+ 958
+4584 a Fr(/usr/bin)f FC(otherwise.)h(The)g(\002lename)f(is)i(chosen)f
+(at)g(random,)f(and)g(the)h(\002le)h(is)g(only)f(opened)396
+4691 y(if)h(it)g(does)f(not)f(e)o(xist)i(already)e(\(otherwise)g(a)i
+(ne)n(w)f(random)e(\002lename)i(will)h(be)f(tried\).)f(The)h(\002le)h
+(permission)e(is)i(set)396 4799 y(to)g(700.)-2 4966 y
+SDict begin H.S end
+
+-2 4966 a -2 4966 a
+SDict begin 13 H.A end
+ -2 4966 a -2 4966 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3075) cvn H.B /DEST pdfmark
+end
+ -2 4966 a 396
+5073 a FC(The)f(directory)f(entry)g(for)h(the)g(unpack)o(ed)e(e)o(x)o
+(ecutable)g(will)j(be)f(deleted)g(after)f(e)o(x)o(ecuting)g(it,)h(b)n
+(ut)g(on)g(systems)396 5181 y(with)h(a)622 5181 y
+SDict begin H.S end
+ 622
+5181 a 622 5181 a
+SDict begin 13 H.A end
+ 622 5181 a 622 5181 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3076) cvn H.B /DEST pdfmark
+end
+ 622 5181 a Fr(/proc)f
+FC(\002lesystem,)g(the)h(deleted)e(entry)g(may)h(sho)n(w)g(up)g(there.)
+f(In)h(particular)m(,)f(this)h(is)h(the)g(case)f(for)396
+5289 y(Linux.)f(Y)-9 b(ou)20 b(should)f(be)h(a)o(w)o(are)g(that)g(this)
+h(may)f(raise)g(suspicion.)p Black 3661 5805 a Fx(85)p
+Black eop end
+%%Page: 86 91
+TeXDict begin 86 90 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.86) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2365 104 a
+Fx(Chapter)20 b(9.)g(Additional)f(F)-6 b(eatur)m(es)19
+b(\227)i(Stealth)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2
+226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3077) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309 a FC(On)f(Linux,)f(the)881
+309 y
+SDict begin H.S end
+ 881 309 a 881 309 a
+SDict begin 13 H.A end
+ 881 309 a 881 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3078) cvn H.B /DEST pdfmark
+end
+ 881 309
+a Fr(/proc)g FC(\002lesystem)i(is)g(used)f(to)g(call)h(the)f(unpack)o
+(ed)e(e)o(x)o(ecutable)h(without)g(a)i(race)f(condition,)e(by)396
+417 y(e)o(x)o(ecuting)737 417 y
+SDict begin H.S end
+ 737 417 a 737 417 a
+SDict begin 13 H.A end
+ 737
+417 a 737 417 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3079) cvn H.B /DEST pdfmark
+end
+ 737 417 a Fr(/proc/self/fd/NN)p FC(,)g(where)i(NN)g(is)
+h(the)g(\002le)g(descriptor)d(to)j(which)e(the)i(unpack)o(ed)d(e)o(x)o
+(ecutable)396 525 y(has)j(been)e(written.)h(On)g(other)f(systems,)i
+(the)f(\002lename)g(of)g(the)g(unpack)o(ed)e(e)o(x)o(ecutable)g(must)i
+(be)h(used,)e(which)396 632 y(creates)h(a)h(race)f(condition)e(\(the)i
+(\002le)h(may)f(be)g(modi\002ed)f(between)g(creation)h(and)f(e)o(x)o
+(ecution\).)-2 817 y
+SDict begin H.S end
+ -2 817 a -2 817 a
+SDict begin 13 H.A end
+ -2 817 a -2 817
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3080) cvn H.B /DEST pdfmark
+end
+ -2 817 a 396 906 a FC(The)h(pack)o(ed)f(e)o(x)o(ecutable)f(will)j
+(not)f(honour)e(the)i(SUID)h(bit.)p Black 3660 5805 a
+Fx(86)p Black eop end
+%%Page: 87 92
+TeXDict begin 87 91 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.87) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black -2 226
+a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOYMENT) cvn H.B /DEST pdfmark
+end
+ -2 226 a 125 x
+Fz(Chapter)48 b(10.)f(Deplo)m(yment)h(to)g(remote)g(hosts)3304
+351 y
+SDict begin H.S end
+ 3304 351 a 3304 351 a
+SDict begin 26.957 H.A end
+ 3304 351 a 3304 351 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.0) cvn H.B /DEST pdfmark end
+ 3304
+351 a -2 441 a
+SDict begin H.S end
+ -2 441 a -2 441 a
+SDict begin 13 H.A end
+ -2 441 a -2 441 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY.SH) cvn H.B /DEST pdfmark
+end
+ -2
+441 a 341 x Fu(10.1.)39 b(Method)f(A:)h(The)g(deplo)m(yment)e(system)
+2731 782 y
+SDict begin H.S end
+ 2731 782 a 2731 782 a
+SDict begin 22.464 H.A end
+ 2731 782 a 2731 782
+a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.1) cvn H.B /DEST pdfmark
+end
+ 2731 782 a -2 978 a
+SDict begin H.S end
+ -2 978 a -2 978 a
+SDict begin 13 H.A end
+ -2 978 a -2 978
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3085) cvn H.B /DEST pdfmark
+end
+ -2 978 a -2 978 a
+SDict begin H.S end
+ -2 978 a -2 978 a
+SDict begin 13 H.A end
+ -2 978 a -2 978
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3086) cvn H.B /DEST pdfmark
+end
+ -2 978 a 396 1056 a FC(samhain)20 b(includes)f(a)i(system)f(to)h(f)o
+(acilitate)f(deplo)o(yment)e(of)i(the)g(client)g(to)h(remote)e(hosts.)h
+(This)g(system)h(enables)396 1164 y(you)f(to:)g(b)n(uild)g(and)f(store)
+i(binary)d(packages)h(for)h(dif)n(ferent)f(operating)f(systems,)i
+(install)h(them,)f(create)g(baseline)396 1272 y(databases)g(upon)f
+(installation,)g(update)h(the)g(serv)o(er)f(con\002guration,)e(and)j
+(maintain)f(the)i(client)f(database)396 1380 y(required)f(by)g(the)920
+1380 y
+SDict begin H.S end
+ 920 1380 a 920 1380 a
+SDict begin 13 H.A end
+ 920 1380 a 920 1380 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3087) cvn H.B /DEST pdfmark
+end
+ 920
+1380 a FC(beltane)g(web-based)g(console.)-2 1564 y
+SDict begin H.S end
+ -2
+1564 a -2 1564 a
+SDict begin 13 H.A end
+ -2 1564 a -2 1564 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3088) cvn H.B /DEST pdfmark
+end
+ -2 1564 a 396 1654
+a FC(The)h(system)h(comprises)e(a)i(shell)f(script)1595
+1654 y
+SDict begin H.S end
+ 1595 1654 a 1595 1654 a
+SDict begin 13 H.A end
+ 1595 1654 a 1595 1654
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3089) cvn H.B /DEST pdfmark
+end
+ 1595 1654 a Fy(deploy)-6 b(.sh)21 b FC(that)f(will)h(be)f(installed)g
+(in)h(the)f(same)g(directory)f(as)i(the)396 1762 y
+SDict begin H.S end
+ 396
+1762 a 396 1762 a
+SDict begin 13 H.A end
+ 396 1762 a 396 1762 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3090) cvn H.B /DEST pdfmark
+end
+ 396 1762 a FC(samhain/yule)e
+(\(by)g(def)o(ault,)1262 1762 y
+SDict begin H.S end
+ 1262 1762 a 1262 1762
+a
+SDict begin 13 H.A end
+ 1262 1762 a 1262 1762 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3091) cvn H.B /DEST pdfmark
+end
+ 1262 1762 a Fr(/usr/local/sbin)p
+FC(\),)f(and)i(a)g(directory)f(tree)h(that)g(will)h(be)f(installed)g
+(belo)n(w)g(the)396 1870 y
+SDict begin H.S end
+ 396 1870 a 396 1870 a
+SDict begin 13 H.A end
+ 396
+1870 a 396 1870 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3092) cvn H.B /DEST pdfmark
+end
+ 396 1870 a FC(samhain/yule)f(data)h(directory)e
+(\(see)p 0 TeXcolorgray 1494 1870 a
+SDict begin H.S end
+ 1494 1870 a FC(Section)i(10.1.2)
+1974 1870 y
+SDict begin 13 H.L end
+ 1974 1870 a 1974 1870 a
+SDict begin [ /Subtype /Link /Dest (0:DEPLOY-LAYOUT) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1974 1870 a Black
+-3 w FC(>\).)g(The)g(script)g(and)g(the)g(directory)e(tree)j(can)f(be)g
+(relocated)396 1978 y(freely)-5 b(.)19 b(There)g(is)i(a)g
+(con\002guration)d(\002le)1564 1978 y
+SDict begin H.S end
+ 1564 1978 a 1564
+1978 a
+SDict begin 13 H.A end
+ 1564 1978 a 1564 1978 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3094) cvn H.B /DEST pdfmark
+end
+ 1564 1978 a Fr(~/.deploy.conf)h
+FC(that)h(is)h(created)f(in)g(the)g(home)f(directory)g(of)h(the)396
+2086 y(user)g(when)756 2086 y
+SDict begin H.S end
+ 756 2086 a 756 2086 a
+SDict begin 13 H.A end
+ 756
+2086 a 756 2086 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3095) cvn H.B /DEST pdfmark
+end
+ 756 2086 a Fy(deploy)-6 b(.sh)20 b
+FC(is)h(run)f(for)f(the)i(\002rst)g(time,)f(where)f(you)h(can)g
+(specify)f(the)h(def)o(ault)g(for)f(the)i(top)e(le)n(v)o(el)396
+2194 y(directory)g(of)h(the)g(system.)-2 2212 y
+SDict begin H.S end
+ -2 2212
+a -2 2212 a
+SDict begin 11.7 H.A end
+ -2 2212 a -2 2212 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3096) cvn H.B /DEST pdfmark
+end
+ -2 2212 a -2 2336 a
+SDict begin H.S end
+ -2
+2336 a -2 2336 a
+SDict begin 11.7 H.A end
+ -2 2336 a -2 2336 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3098) cvn H.B /DEST pdfmark
+end
+ -2 2336 a 562 2415
+a Fw(Note:)g Fv(In)g(the)g(f)n(ollo)o(wing,)d(an)1414
+2415 y
+SDict begin H.S end
+ 1414 2415 a 1414 2415 a
+SDict begin 11.7 H.A end
+ 1414 2415 a 1414 2415
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3099) cvn H.B /DEST pdfmark
+end
+ 1414 2415 a Fq(architecture)j Fv(is)h(just)f(a)g(label)f(f)n(or)g
+(some)i(g)o(roup)e(of)h(hosts)o(,)g(typically)g(a)562
+2512 y(par)s(ticular)e(oper)o(ating)g(system)j(\(or)f(some)h(par)s
+(ticular)d(installation)f(thereof\).)h(As)j(long)e(as)h(y)o(ou)g(kno)o
+(w)g(what)562 2609 y(the)g(label)f(means)o(,)g(y)o(ou)h(can)g(choose)g
+(it)g(freely)f(\(alphan)o(umer)q(ic)f(+)i(underscore\).)-2
+2667 y
+SDict begin H.S end
+ -2 2667 a -2 2667 a
+SDict begin 11.7 H.A end
+ -2 2667 a -2 2667 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3100) cvn H.B /DEST pdfmark
+end
+ -2 2667
+a 562 2748 a Fv(The)g(architecture)e(f)n(or)i(a)g(b)o(uild/install)c
+(host)k(\(i.e)o(.)f(the)h(association)e(betw)o(een)h(a)h(host)g(and)f
+(the)562 2845 y(architecture-speci\002c)f(con\002gur)o(ation)g(data\))h
+(is)i(currently)e(speci\002ed)h(via)g(a)g(command-line)e(option.)-2
+3161 y
+SDict begin H.S end
+ -2 3161 a -2 3161 a
+SDict begin 13 H.A end
+ -2 3161 a -2 3161 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3101) cvn H.B /DEST pdfmark
+end
+ -2 3161
+a 396 3269 a FC(The)i(system)h(allo)n(ws)f(to)g(use)h(per)n
+(-architecture)c(customized)i(b)n(uild)h(options,)f(as)i(well)g(as)g
+(per)n(-host)e(customized)396 3377 y(runtime)g(con\002guration)f
+(\002les.)-2 3561 y
+SDict begin H.S end
+ -2 3561 a -2 3561 a
+SDict begin 13 H.A end
+ -2 3561 a -2
+3561 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3102) cvn H.B /DEST pdfmark
+end
+ -2 3561 a 396 3651 a FC(By)j(def)o(ault,)e(the)h(system)h(will)g
+(search)e(for)h(a)h(suf)n(\002ciently)e(adv)n(anced)f(incarnation)g(of)
+2925 3651 y
+SDict begin H.S end
+ 2925 3651 a 2925 3651 a
+SDict begin 13 H.A end
+ 2925 3651 a 2925
+3651 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3103) cvn H.B /DEST pdfmark
+end
+ 2925 3651 a FC(dialog)i(to)g(pro)o(vide)e(a)j(nice)396
+3759 y(user)f(interf)o(ace.)f(Y)-9 b(ou)20 b(can)g(switch)h(this)f(of)n
+(f)g(in)g(f)o(a)n(v)n(our)f(of)h(a)h(plain)f(console)f(interf)o(ace,)g
+(if)i(you)e(prefer)g(\(or)g(if)i(you)396 3866 y(w)o(ant)g(to)f(run)f
+(the)i(script)f(non-interacti)n(v)o(ely\).)-2 4050 y
+SDict begin H.S end
+
+-2 4050 a -2 4050 a
+SDict begin 13 H.A end
+ -2 4050 a -2 4050 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3104) cvn H.B /DEST pdfmark
+end
+ -2 4050 a 396
+4140 a FC(T)-7 b(o)21 b(use)f(this)h(system,)f(you)f(must)h(\002rst)h
+(install)g(it)g(with)f(the)h(command:)-2 4241 y
+SDict begin H.S end
+ -2 4241
+a -2 4241 a
+SDict begin 11.7 H.A end
+ -2 4241 a -2 4241 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3105) cvn H.B /DEST pdfmark
+end
+ -2 4241 a -2 4241 a
+SDict begin H.S end
+ -2
+4241 a -2 4241 a
+SDict begin 11.7 H.A end
+ -2 4241 a -2 4241 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3106) cvn H.B /DEST pdfmark
+end
+ -2 4241 a 396 4321
+a Ft(sh$)558 4321 y
+SDict begin H.S end
+ 558 4321 a 558 4321 a
+SDict begin 11.7 H.A end
+ 558 4321 a
+558 4321 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3107) cvn H.B /DEST pdfmark
+end
+ 558 4321 a Fs(make)41 b(install-deploy)-2
+4330 y
+SDict begin H.S end
+ -2 4330 a -2 4330 a
+SDict begin 11.7 H.A end
+ -2 4330 a -2 4330 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3108) cvn H.B /DEST pdfmark
+end
+ -2 4330
+a -2 4496 a
+SDict begin H.S end
+ -2 4496 a -2 4496 a
+SDict begin 11.7 H.A end
+ -2 4496 a -2 4496 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3110) cvn H.B /DEST pdfmark
+end
+ -2
+4496 a 562 4584 a Fw(Installation)18 b(tip:)h Fv(This)h(system)i(is)f
+(some)o(what)d(tied)i(to)g(the)f(ser)r(v)n(er)i(\(yule\).)e(While)g(y)o
+(ou)h(can)g(saf)n(ely)f(install)g(it)562 4681 y(later)l(,)g(installing)
+f(it)i(together)e(with)i(the)f(ser)r(v)n(er)i(will)e(tak)o(e)h(care)g
+(that)f(the)h(def)n(aults)e(are)i(already)f(correct.)562
+4778 y(Upon)h(\002rst)h(in)o(v)n(ocation)d(a)i(con\002gur)o(ation)e
+(\002le)1883 4778 y
+SDict begin H.S end
+ 1883 4778 a 1883 4778 a
+SDict begin 11.7 H.A end
+ 1883 4778
+a 1883 4778 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3111) cvn H.B /DEST pdfmark
+end
+ 1883 4778 a Ft(~/.deploy.conf)26 b Fv(will)19
+b(be)h(wr)q(itten,)f(where)g(y)o(ou)h(can)g(modify)562
+4875 y(the)g(def)n(aults)e(settings)o(.)39 5014 y
+SDict begin H.S end
+ 39
+5014 a 39 5014 a
+SDict begin 11.7 H.A end
+ 39 5014 a 39 5014 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3112) cvn H.B /DEST pdfmark
+end
+ 39 5014 a Black
+-2 5805 a
+SDict begin H.S end
+ -2 5805 a -2 5805 a
+SDict begin 13 H.A end
+ -2 5805 a -2 5805 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-REQ) cvn H.B /DEST pdfmark
+end
+ -2
+5805 a 3658 5874 a Fx(87)p Black eop end
+%%Page: 88 93
+TeXDict begin 88 92 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.88) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2401 104 a
+Fx(Chapter)20 b(10.)f(Deployment)g(to)h(r)m(emote)h(hosts)p
+Black 745 242 2668 17 v 745 1393 17 1151 v 1413 437 a
+Fp(Bac)n(kwar)n(d)35 b(compatibility)786 628 y
+SDict begin H.S end
+ 786 628
+a 786 628 a
+SDict begin 11.7 H.A end
+ 786 628 a 786 628 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3114) cvn H.B /DEST pdfmark
+end
+ 786 628 a 73 x Fv(The)20
+b(deplo)n(yment)e(system)j(has)f(been)f(completely)g(re)n(vised)h(in)f
+(v)n(ersion)h(2.0)g(of)786 798 y(samhain.)f(It)i(will)1297
+798 y
+SDict begin H.S end
+ 1297 798 a 1297 798 a
+SDict begin 11.7 H.A end
+ 1297 798 a 1297 798 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3115) cvn H.B /DEST pdfmark
+end
+ 1297
+798 a Fq(not)27 b Fv(w)o(or)q(k)20 b(with)g(samhain)f(v)n(ersions)h
+(belo)o(w)f(2.0)h(\(i.e)o(.)f(y)o(ou)h(cannot)786 895
+y(install)f(them)h(using)f(this)h(system\).)i(Ho)o(w)o(e)n(v)n(er)l(,)d
+(the)h(def)n(ault)e(location)g(and)h(f)n(or)r(mat)g(of)h(the)786
+992 y(client)g(database)e(\(used)h(b)o(y)i(the)1740 992
+y
+SDict begin H.S end
+ 1740 992 a 1740 992 a
+SDict begin 11.7 H.A end
+ 1740 992 a 1740 992 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3116) cvn H.B /DEST pdfmark
+end
+ 1740 992
+a Fv(beltane)d(w)o(eb-based)h(console\))g(has)h(not)g(changed.)786
+1175 y
+SDict begin H.S end
+ 786 1175 a 786 1175 a
+SDict begin 11.7 H.A end
+ 786 1175 a 786 1175 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3117) cvn H.B /DEST pdfmark
+end
+ 786
+1175 a 80 x Fv(Installing)e(the)i(ne)o(w)f(v)n(ersion)h(of)g(the)f
+(deplo)n(y)g(system)j(will)d(not)h(o)o(v)n(erwr)q(ite)f(the)g(old)786
+1352 y(v)n(ersion)h(\(deplo)n(y)-7 b(.sh)17 b(will)i(be)h(installed)e
+(as)i(deplo)n(y2.sh,)d(if)j(an)g(old)f(v)n(ersion)g(is)h(detected\).)p
+3396 1393 17 1151 v 745 1410 2668 17 v -2 1420 a
+SDict begin H.S end
+ -2 1420
+a -2 1420 a
+SDict begin 13 H.A end
+ -2 1420 a -2 1420 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-REQ) cvn H.B /DEST pdfmark
+end
+ -2 1420 a 396 1691 a
+Fp(10.1.1.)36 b(Requirements)1590 1691 y
+SDict begin H.S end
+ 1590 1691 a
+1590 1691 a
+SDict begin 18.72 H.A end
+ 1590 1691 a 1590 1691 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.35.2) cvn H.B /DEST pdfmark
+end
+ 1590 1691 a -2 1882
+a
+SDict begin H.S end
+ -2 1882 a -2 1882 a
+SDict begin 13 H.A end
+ -2 1882 a -2 1882 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3120) cvn H.B /DEST pdfmark
+end
+ -2 1882 a -2
+1882 a
+SDict begin H.S end
+ -2 1882 a -2 1882 a
+SDict begin 13 H.A end
+ -2 1882 a -2 1882 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3121) cvn H.B /DEST pdfmark
+end
+ -2 1882
+a -2 1906 a
+SDict begin H.S end
+ -2 1906 a -2 1906 a
+SDict begin 13 H.A end
+ -2 1906 a -2 1906 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3122) cvn H.B /DEST pdfmark
+end
+ -2
+1906 a Black 463 2054 a FC(1.)p Black 546 2054 a
+SDict begin H.S end
+ 546
+2054 a 546 2054 a
+SDict begin 13 H.A end
+ 546 2054 a 546 2054 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3123) cvn H.B /DEST pdfmark
+end
+ 546 2054 a FC(Y)-9
+b(ou)19 b(must)i(ha)n(v)o(e)e(compiled)g(and)h(installed)g(the)g(serv)o
+(er)f(\()2202 2054 y
+SDict begin H.S end
+ 2202 2054 a 2202 2054 a
+SDict begin 13 H.A end
+ 2202 2054
+a 2202 2054 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3124) cvn H.B /DEST pdfmark
+end
+ 2202 2054 a FC(yule\))g(on)h(the)g(local)g(host)g(where)g
+(you)f(use)i(the)546 2162 y(deplo)o(y)e(system.)-2 2180
+y
+SDict begin H.S end
+ -2 2180 a -2 2180 a
+SDict begin 13 H.A end
+ -2 2180 a -2 2180 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3125) cvn H.B /DEST pdfmark
+end
+ -2 2180 a Black
+463 2311 a FC(2.)p Black 546 2311 a
+SDict begin H.S end
+ 546 2311 a 546 2311
+a
+SDict begin 13 H.A end
+ 546 2311 a 546 2311 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3126) cvn H.B /DEST pdfmark
+end
+ 546 2311 a FC(Y)-9 b(ou)19 b(must)i(ha)n(v)o(e)
+e(installed)h(the)g(deplo)o(yment)e(system)j(by)f(using)2449
+2311 y
+SDict begin H.S end
+ 2449 2311 a 2449 2311 a
+SDict begin 13 H.A end
+ 2449 2311 a 2449 2311
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3127) cvn H.B /DEST pdfmark
+end
+ 2449 2311 a Fy(mak)o(e)h(deploy-install)p FC(.)e(This)h(will)h
+(install)546 2419 y(the)f(script)873 2419 y
+SDict begin H.S end
+ 873 2419
+a 873 2419 a
+SDict begin 13 H.A end
+ 873 2419 a 873 2419 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3128) cvn H.B /DEST pdfmark
+end
+ 873 2419 a Fr(deploy.sh)f
+FC(into)h(the)1570 2419 y
+SDict begin H.S end
+ 1570 2419 a 1570 2419 a
+SDict begin 13 H.A end
+ 1570
+2419 a 1570 2419 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3129) cvn H.B /DEST pdfmark
+end
+ 1570 2419 a Fr(sbindir)f FC(\(def)o(ault)2182
+2419 y
+SDict begin H.S end
+ 2182 2419 a 2182 2419 a
+SDict begin 13 H.A end
+ 2182 2419 a 2182 2419
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3130) cvn H.B /DEST pdfmark
+end
+ 2182 2419 a Fr(/usr/local/sbin)p FC(,)f(b)n(ut)i(depends)f(on)h(your)
+546 2527 y(con\002gure)e(options\),)h(and)g(the)i(deplo)o(yment)c
+(system)k(into)546 2635 y
+SDict begin H.S end
+ 546 2635 a 546 2635 a
+SDict begin 13 H.A end
+ 546 2635
+a 546 2635 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3131) cvn H.B /DEST pdfmark
+end
+ 546 2635 a Fr(localstatedir/install_name/profiles)15
+b FC(\(def)o(ault)2414 2635 y
+SDict begin H.S end
+ 2414 2635 a 2414 2635 a
+SDict begin 13 H.A end
+
+2414 2635 a 2414 2635 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3132) cvn H.B /DEST pdfmark
+end
+ 2414 2635 a Fr(/var/lib/yule/profiles)p
+FC(,)i(b)n(ut)546 2743 y(depends)i(on)g(your)g(con\002gure)g
+(options\).)-2 2927 y
+SDict begin H.S end
+ -2 2927 a -2 2927 a
+SDict begin 13 H.A end
+ -2 2927 a -2
+2927 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3133) cvn H.B /DEST pdfmark
+end
+ -2 2927 a 546 3017 a FC(If)h(you)f(already)g(ha)n(v)o(e)h
+(installed)g(the)g(deprecated)e(v)o(ersion)h(1)i(deplo)o(yment)d
+(system,)i(the)g(script)g(will)h(be)546 3125 y(installed)f(as)938
+3125 y
+SDict begin H.S end
+ 938 3125 a 938 3125 a
+SDict begin 13 H.A end
+ 938 3125 a 938 3125 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3134) cvn H.B /DEST pdfmark
+end
+ 938
+3125 a Fr(deploy2.sh)p FC(.)438 3243 y
+SDict begin H.S end
+ 438 3243 a 438
+3243 a
+SDict begin 13 H.A end
+ 438 3243 a 438 3243 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3135) cvn H.B /DEST pdfmark
+end
+ 438 3243 a Black 463 3393
+a FC(3.)p Black 546 3393 a
+SDict begin H.S end
+ 546 3393 a 546 3393 a
+SDict begin 13 H.A end
+ 546
+3393 a 546 3393 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3136) cvn H.B /DEST pdfmark
+end
+ 546 3393 a FC(F)o(or)g(each)f(architecture)g(that)h
+(you)g(de\002ne,)f(there)h(must)g(be)g(\(at)g(least\))h(one)2719
+3393 y
+SDict begin H.S end
+ 2719 3393 a 2719 3393 a
+SDict begin 13 H.A end
+ 2719 3393 a 2719 3393
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3137) cvn H.B /DEST pdfmark
+end
+ 2719 3393 a Fx(b)n(uild)e(host)j FC(where)e(de)n(v)o(elopment)546
+3501 y(tools)g(\(C)h(compiler)m(,)d(mak)o(e,)i(strip\))g(are)g(a)n(v)n
+(ailable)f(to)i(b)n(uild)f(the)g(client)g(e)o(x)o(ecutable.)-2
+3519 y
+SDict begin H.S end
+ -2 3519 a -2 3519 a
+SDict begin 13 H.A end
+ -2 3519 a -2 3519 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3138) cvn H.B /DEST pdfmark
+end
+ -2 3519
+a Black 463 3650 a FC(4.)p Black 546 3650 a
+SDict begin H.S end
+ 546 3650
+a 546 3650 a
+SDict begin 13 H.A end
+ 546 3650 a 546 3650 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3139) cvn H.B /DEST pdfmark
+end
+ 546 3650 a FC(On)g(each)g(remote)f
+(where)h(you)f(w)o(ant)h(to)h(b)n(uild)e(or)h(install,)h(you)e(should)g
+(be)h(able)g(to)h(login)e(as)i(root)f(with)g(ssh)546
+3758 y(using)f(RSA)j(authentication,)c(such)h(that)i(ssh-agent)e(can)h
+(be)g(used.)39 3897 y
+SDict begin H.S end
+ 39 3897 a 39 3897 a
+SDict begin 11.7 H.A end
+ 39 3897 a 39
+3897 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3140) cvn H.B /DEST pdfmark
+end
+ 39 3897 a -2 4021 a
+SDict begin H.S end
+ -2 4021 a -2 4021 a
+SDict begin 11.7 H.A end
+ -2 4021
+a -2 4021 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3142) cvn H.B /DEST pdfmark
+end
+ -2 4021 a 562 4118 a Fw(TIP:)g Fv(T)-9 b(o)20
+b(use)g(RSA-based)f(authentication)d(in)k(a)1994 4118
+y
+SDict begin H.S end
+ 1994 4118 a 1994 4118 a
+SDict begin 11.7 H.A end
+ 1994 4118 a 1994 4118 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3143) cvn H.B /DEST pdfmark
+end
+ 1994
+4118 a Fq(secure)i Fv(w)o(a)n(y)-7 b(,)20 b(y)o(ou)f(ma)n(y)i(proceed)e
+(as)h(f)n(ollo)o(ws:)-2 4176 y
+SDict begin H.S end
+ -2 4176 a -2 4176 a
+SDict begin 11.7 H.A end
+ -2
+4176 a -2 4176 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3144) cvn H.B /DEST pdfmark
+end
+ -2 4176 a 562 4257 a Fv(Use)716 4257
+y
+SDict begin H.S end
+ 716 4257 a 716 4257 a
+SDict begin 11.7 H.A end
+ 716 4257 a 716 4257 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3145) cvn H.B /DEST pdfmark
+end
+ 716 4257
+a Fw(ssh-ke)o(yg)q(en)c Fv(to)21 b(create)e(a)h(pub)o(lic/pr)q(iv)n
+(ate)d(k)o(e)o(y)j(pair)l(.)f(Don't)h(f)n(orget)e(to)i(set)h(a)f
+(passphr)o(ase)f(f)n(or)h(the)562 4354 y(pr)q(iv)n(ate)g(k)o(e)o(y)g
+(\()966 4354 y
+SDict begin H.S end
+ 966 4354 a 966 4354 a
+SDict begin 11.7 H.A end
+ 966 4354 a 966 4354
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3146) cvn H.B /DEST pdfmark
+end
+ 966 4354 a Fw(ssh-ke)o(yg)q(en)c Fv(will)j(ask)j(f)n(or)d(it\).)-2
+4412 y
+SDict begin H.S end
+ -2 4412 a -2 4412 a
+SDict begin 11.7 H.A end
+ -2 4412 a -2 4412 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3147) cvn H.B /DEST pdfmark
+end
+ -2 4412
+a 562 4493 a Fv(Cop)n(y)h(the)g(pub)o(lic)e(k)o(e)o(y)i(\()1253
+4493 y
+SDict begin H.S end
+ 1253 4493 a 1253 4493 a
+SDict begin 11.7 H.A end
+ 1253 4493 a 1253 4493
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3148) cvn H.B /DEST pdfmark
+end
+ 1253 4493 a Ft(HOME/.ssh/identity)q(.pu)q(b)27 b Fv(f)n(or)19
+b(the)h(ssh)h(protocol)e(v)n(ersion)g(1,)562 4590 y
+SDict begin H.S end
+ 562
+4590 a 562 4590 a
+SDict begin 11.7 H.A end
+ 562 4590 a 562 4590 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3149) cvn H.B /DEST pdfmark
+end
+ 562 4590 a Ft
+(HOME/.ssh/id_rsa.p)q(ub)27 b Fv(f)n(or)20 b(ssh)h(protocol)d(v)n
+(ersion)i(2\))g(to)2349 4590 y
+SDict begin H.S end
+ 2349 4590 a 2349 4590
+a
+SDict begin 11.7 H.A end
+ 2349 4590 a 2349 4590 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3150) cvn H.B /DEST pdfmark
+end
+ 2349 4590 a Ft(HOME/.ssh/authoriz)q(ed_)q
+(key)q(s)27 b Fv(on)20 b(an)o(y)562 4687 y(remote)g(host)g(where)f(y)o
+(ou)h(w)o(ant)f(to)h(log)g(in.)1822 4687 y
+SDict begin H.S end
+ 1822 4687
+a 1822 4687 a
+SDict begin 11.7 H.A end
+ 1822 4687 a 1822 4687 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3151) cvn H.B /DEST pdfmark
+end
+ 1822 4687 a Fq(Do)g(not)g(cop)n
+(y)g(the)g(pr)q(iv)n(ate)f(k)o(e)o(y)2750 4687 y
+SDict begin H.S end
+ 2750
+4687 a 2750 4687 a
+SDict begin 11.7 H.A end
+ 2750 4687 a 2750 4687 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3152) cvn H.B /DEST pdfmark
+end
+ 2750 4687
+a Ft(HOME/.ssh/identity)27 b Fv(\(ssh)562 4784 y(protocol)19
+b(v)n(ersion)h(1\))g(or)1283 4784 y
+SDict begin H.S end
+ 1283 4784 a 1283
+4784 a
+SDict begin 11.7 H.A end
+ 1283 4784 a 1283 4784 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3153) cvn H.B /DEST pdfmark
+end
+ 1283 4784 a Ft(HOME/.ssh/id_rsa)26
+b Fv(\(ssh)21 b(protocol)e(v)n(ersion)h(2\))g(to)g(an)o(y)g(untr)q
+(usted)e(host)i(!)-2 4842 y
+SDict begin H.S end
+ -2 4842 a -2 4842 a
+SDict begin 11.7 H.A end
+ -2 4842
+a -2 4842 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3154) cvn H.B /DEST pdfmark
+end
+ -2 4842 a 562 4923 a Fv(On)h(y)o(our)e(centr)o(al)h(host,)f
+(e)n(x)n(ecute)g(the)h(commands)g(\(use)g("ssh-agent)f(-c")h(if)g(y)o
+(ou)g(are)g(using)f(a)h(csh-style)562 5020 y(shell\):)-2
+5119 y
+SDict begin H.S end
+ -2 5119 a -2 5119 a
+SDict begin 10.53 H.A end
+ -2 5119 a -2 5119 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3155) cvn H.B /DEST pdfmark
+end
+ -2 5119
+a -2 5119 a
+SDict begin H.S end
+ -2 5119 a -2 5119 a
+SDict begin 10.53 H.A end
+ -2 5119 a -2 5119 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3156) cvn H.B /DEST pdfmark
+end
+ -2
+5119 a 562 5191 a Fo(bash$)742 5191 y
+SDict begin H.S end
+ 742 5191 a 742
+5191 a
+SDict begin 10.53 H.A end
+ 742 5191 a 742 5191 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3157) cvn H.B /DEST pdfmark
+end
+ 742 5191 a Fn(eval)39 b(`ssh-agent)h(-s`)
+-2 5199 y
+SDict begin H.S end
+ -2 5199 a -2 5199 a
+SDict begin 10.53 H.A end
+ -2 5199 a -2 5199 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3158) cvn H.B /DEST pdfmark
+end
+ -2
+5199 a 562 5278 a Fo(bash$)742 5278 y
+SDict begin H.S end
+ 742 5278 a 742
+5278 a
+SDict begin 10.53 H.A end
+ 742 5278 a 742 5278 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3159) cvn H.B /DEST pdfmark
+end
+ 742 5278 a Fn(ssh-add)p
+Black 3661 5805 a Fx(88)p Black eop end
+%%Page: 89 94
+TeXDict begin 89 93 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.89) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2401 104 a
+Fx(Chapter)20 b(10.)f(Deployment)g(to)h(r)m(emote)h(hosts)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 11.7 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3160) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 562 309 a Fv(Y)-10 b(ou)20 b(can)g(then)f(ssh/scp)i(without)d
+(typing)i(the)f(passphr)o(ase)g(again,)g(until)g(y)o(ou)g(e)n(xit)h
+(the)g(current)f(shell.)-2 541 y
+SDict begin H.S end
+ -2 541 a -2 541 a
+SDict begin 13 H.A end
+ -2
+541 a -2 541 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-LAYOUT) cvn H.B /DEST
+pdfmark end
+ -2 541 a 396 869 a Fp(10.1.2.)36 b(La)n(y)m(out)e(of)f
+(the)g(deplo)n(yment)i(system)2685 869 y
+SDict begin H.S end
+ 2685 869 a 2685
+869 a
+SDict begin 18.72 H.A end
+ 2685 869 a 2685 869 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.36.2) cvn H.B /DEST pdfmark
+end
+ 2685 869 a -2 977 a
+SDict begin H.S end
+ -2 977
+a -2 977 a
+SDict begin 11.7 H.A end
+ -2 977 a -2 977 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3163) cvn H.B /DEST pdfmark
+end
+ -2 977 a 396 1049 a Fr
+(\(localstatedir\)/\(install_name\)/profiles/)1383 1147
+y(|)1383 1244 y(|)1383 1341 y(|--)44 b(source)g(------------>)e
+(\(tarballs\))1383 1438 y(|)1383 1535 y(|--)i(configs)g(----------->)e
+(\(default)i(configs\))1383 1632 y(|)1383 1729 y(|--)g(archpkg)1383
+1827 y(|)179 b(|)1383 1924 y(|)g(|--)44 b(architecture)f(->)h
+(\(compiled)g(package,)f(setup)h(script\))1383 2021 y(|)1383
+2118 y(|--)g(hosts)1383 2215 y(|)179 b(|)1383 2312 y(|)g(|--)44
+b(hostname)g(----->)f(\(optional)h(host-specific)e(config\))1383
+2409 y(|)1383 2506 y(|--)i(libexec)g(----------->)e(\(scripts\))1383
+2604 y(|)1383 2701 y(|--)i(private)g(----------->)e(\(gpg)j(key\))1383
+2798 y(|)1383 2895 y(|--)f(tmp)-2 2914 y
+SDict begin H.S end
+ -2 2914 a -2
+2914 a
+SDict begin 13 H.A end
+ -2 2914 a -2 2914 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-LAYOUT-CONFIGS) cvn
+H.B /DEST pdfmark end
+ -2 2914 a 396 3191 a Fj(10.1.2.1.)29
+b(The)f(con\002gs)f(subdirector)q(y)2002 3191 y
+SDict begin H.S end
+ 2002
+3191 a 2002 3191 a
+SDict begin 15.6 H.A end
+ 2002 3191 a 2002 3191 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.36.7.3) cvn H.B /DEST pdfmark
+end
+ 2002 3191
+a -2 3379 a
+SDict begin H.S end
+ -2 3379 a -2 3379 a
+SDict begin 13 H.A end
+ -2 3379 a -2 3379 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3166) cvn H.B /DEST pdfmark
+end
+ -2
+3379 a 396 3465 a FC(The)546 3465 y
+SDict begin H.S end
+ 546 3465 a 546 3465
+a
+SDict begin 13 H.A end
+ 546 3465 a 546 3465 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3167) cvn H.B /DEST pdfmark
+end
+ 546 3465 a Fr(configs)20 b FC(subdirectory)d
+(holds)j(for)g(each)g(architecture)e(at)j(least)g(tw)o(o)f(\002les)h
+(\(e)o(xample)e(\002les)i(will)g(be)f(placed)396 3572
+y(there)g(upon)f(installation)h(of)f(the)i(deplo)o(yment)d(system\):)-2
+3590 y
+SDict begin H.S end
+ -2 3590 a -2 3590 a
+SDict begin 13 H.A end
+ -2 3590 a -2 3590 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3168) cvn H.B /DEST pdfmark
+end
+ -2 3590
+a -2 3715 a
+SDict begin H.S end
+ -2 3715 a -2 3715 a
+SDict begin 13 H.A end
+ -2 3715 a -2 3715 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3170) cvn H.B /DEST pdfmark
+end
+ -2
+3715 a 396 3805 a Ff(<)p FC(architecture)p Ff(>)p FC(.con\002gure)d
+(\(required\))-2 3823 y
+SDict begin H.S end
+ -2 3823 a -2 3823 a
+SDict begin 13 H.A end
+ -2 3823 a
+-2 3823 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3171) cvn H.B /DEST pdfmark
+end
+ -2 3823 a Black Black 562 3954 a
+SDict begin H.S end
+ 562 3954 a
+562 3954 a
+SDict begin 13 H.A end
+ 562 3954 a 562 3954 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3172) cvn H.B /DEST pdfmark
+end
+ 562 3954 a FC(The)20
+b(con\002gure)e(options)i(for)f(this)i(architecture;)e(one)g(option)g
+(per)h(line,)g(each)g(enclosed)f(in)i(single)f(quotes.)-2
+4138 y
+SDict begin H.S end
+ -2 4138 a -2 4138 a
+SDict begin 13 H.A end
+ -2 4138 a -2 4138 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3173) cvn H.B /DEST pdfmark
+end
+ -2 4138
+a 562 4228 a FC(If)g(this)h(\002le)g(does)f(not)g(e)o(xist,)g(it)h
+(will)g(be)f(copied)f(from)2143 4228 y
+SDict begin H.S end
+ 2143 4228 a 2143
+4228 a
+SDict begin 13 H.A end
+ 2143 4228 a 2143 4228 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3174) cvn H.B /DEST pdfmark
+end
+ 2143 4228 a Fr(generic.configure)p
+FC(,)f(which)h(is)i(created)f(upon)562 4336 y(installation,)g(and)f
+(holds)h(\(only\))f(some)h(minimum)f(options.)-2 4538
+y
+SDict begin H.S end
+ -2 4538 a -2 4538 a
+SDict begin 13 H.A end
+ -2 4538 a -2 4538 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3176) cvn H.B /DEST pdfmark
+end
+ -2 4538 a 396
+4646 a Ff(<)p FC(architecture)p Ff(>)p FC(.samhainrc)d(\(required\))-2
+4663 y
+SDict begin H.S end
+ -2 4663 a -2 4663 a
+SDict begin 13 H.A end
+ -2 4663 a -2 4663 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3177) cvn H.B /DEST pdfmark
+end
+ -2 4663
+a Black Black 562 4795 a
+SDict begin H.S end
+ 562 4795 a 562 4795 a
+SDict begin 13 H.A end
+ 562 4795
+a 562 4795 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3178) cvn H.B /DEST pdfmark
+end
+ 562 4795 a FC(The)k(def)o(ault)g(runtime)f
+(con\002guration)e(\002le)k(for)f(a)g(client)g(running)e(on)i(this)h
+(architecture.)d(It)j(is)g(possible)f(to)562 4903 y(o)o(v)o(erride)e
+(this)j(on)f(installation)f(with)i(a)f(\002le)1844 4903
+y
+SDict begin H.S end
+ 1844 4903 a 1844 4903 a
+SDict begin 13 H.A end
+ 1844 4903 a 1844 4903 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3179) cvn H.B /DEST pdfmark
+end
+ 1844
+4903 a Fr(hosts/)p Fh(<)p Fr(hostname)p Fh(>)p Fr(/samhainrc)p
+FC(.)p Black 3661 5805 a Fx(89)p Black eop end
+%%Page: 90 95
+TeXDict begin 90 94 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.90) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2401 104 a
+Fx(Chapter)20 b(10.)f(Deployment)g(to)h(r)m(emote)h(hosts)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3181) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a Ff(<)p FC(architecture)p Ff(>)p FC(.preinstall)c
+(\(optional\))-2 327 y
+SDict begin H.S end
+ -2 327 a -2 327 a
+SDict begin 13 H.A end
+ -2 327 a -2
+327 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3182) cvn H.B /DEST pdfmark
+end
+ -2 327 a Black Black 562 458 a
+SDict begin H.S end
+ 562 458 a 562 458
+a
+SDict begin 13 H.A end
+ 562 458 a 562 458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3183) cvn H.B /DEST pdfmark
+end
+ 562 458 a FC(The)j(shell)h(script)f(to)g(run)g
+(before)f(installing)g(a)i(client.)f(T)-7 b(ypically)19
+b(this)i(script)f(w)o(ould)g(shutdo)n(wn)e(the)562 566
+y(running)g(client,)i(if)h(there)f(is)h(one.)-2 750 y
+SDict begin H.S end
+
+-2 750 a -2 750 a
+SDict begin 13 H.A end
+ -2 750 a -2 750 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3184) cvn H.B /DEST pdfmark
+end
+ -2 750 a 562 840
+a FC(Def)o(aults)g(to)949 840 y
+SDict begin H.S end
+ 949 840 a 949 840 a
+SDict begin 13 H.A end
+ 949
+840 a 949 840 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3185) cvn H.B /DEST pdfmark
+end
+ 949 840 a Fr(libexec/preinstall)p FC(.)-2
+1041 y
+SDict begin H.S end
+ -2 1041 a -2 1041 a
+SDict begin 13 H.A end
+ -2 1041 a -2 1041 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3187) cvn H.B /DEST pdfmark
+end
+ -2 1041
+a 396 1149 a Ff(<)p FC(architecture)p Ff(>)p FC(.postinstall)c
+(\(optional\))-2 1167 y
+SDict begin H.S end
+ -2 1167 a -2 1167 a
+SDict begin 13 H.A end
+ -2 1167 a
+-2 1167 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3188) cvn H.B /DEST pdfmark
+end
+ -2 1167 a Black Black 562 1299 a
+SDict begin H.S end
+ 562 1299 a
+562 1299 a
+SDict begin 13 H.A end
+ 562 1299 a 562 1299 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3189) cvn H.B /DEST pdfmark
+end
+ 562 1299 a FC(The)j(shell)h(script)f
+(to)g(run)g(after)g(installing)f(a)i(client.)f(This)g(script)h(recei)n
+(v)o(es)e(the)h(client)g(passw)o(ord)g(as)h(\002rst)562
+1407 y(\(and)f(only\))f(ar)o(gument,)e(and)j(typically)f(w)o(ould)h
+(set)h(the)f(passw)o(ord)f(in)i(the)f(client)g(binary)-5
+b(.)-2 1591 y
+SDict begin H.S end
+ -2 1591 a -2 1591 a
+SDict begin 13 H.A end
+ -2 1591 a -2 1591 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3190) cvn H.B /DEST pdfmark
+end
+
+-2 1591 a 562 1681 a FC(Def)o(aults)21 b(to)949 1681
+y
+SDict begin H.S end
+ 949 1681 a 949 1681 a
+SDict begin 13 H.A end
+ 949 1681 a 949 1681 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3191) cvn H.B /DEST pdfmark
+end
+ 949 1681
+a Fr(libexec/postinstall)p FC(.)-2 1882 y
+SDict begin H.S end
+ -2 1882 a -2
+1882 a
+SDict begin 13 H.A end
+ -2 1882 a -2 1882 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3193) cvn H.B /DEST pdfmark
+end
+ -2 1882 a 396 1990 a Ff(<)p
+FC(architecture)p Ff(>)p FC(.initscript)c(\(optional\))-2
+2008 y
+SDict begin H.S end
+ -2 2008 a -2 2008 a
+SDict begin 13 H.A end
+ -2 2008 a -2 2008 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3194) cvn H.B /DEST pdfmark
+end
+ -2 2008
+a Black Black 562 2139 a
+SDict begin H.S end
+ 562 2139 a 562 2139 a
+SDict begin 13 H.A end
+ 562 2139
+a 562 2139 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3195) cvn H.B /DEST pdfmark
+end
+ 562 2139 a FC(The)j(shell)h(script)f(to)g
+(initialize/update)f(the)h(baseline)g(database)g(\002le)h(installing)e
+(a)i(client.)-2 2323 y
+SDict begin H.S end
+ -2 2323 a -2 2323 a
+SDict begin 13 H.A end
+ -2 2323 a
+-2 2323 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3196) cvn H.B /DEST pdfmark
+end
+ -2 2323 a 562 2413 a FC(Def)o(aults)g(to)949
+2413 y
+SDict begin H.S end
+ 949 2413 a 949 2413 a
+SDict begin 13 H.A end
+ 949 2413 a 949 2413 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3197) cvn H.B /DEST pdfmark
+end
+ 949
+2413 a Fr(libexec/initscript)p FC(.)-2 2573 y
+SDict begin H.S end
+ -2 2573
+a -2 2573 a
+SDict begin 13 H.A end
+ -2 2573 a -2 2573 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-LAYOUT-ARCHPKG) cvn
+H.B /DEST pdfmark end
+ -2 2573 a 396 2869 a
+Fj(10.1.2.2.)29 b(The)f(ar)n(c)o(hpkg)g(subdirector)q(y)2033
+2869 y
+SDict begin H.S end
+ 2033 2869 a 2033 2869 a
+SDict begin 15.6 H.A end
+ 2033 2869 a 2033 2869
+a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.36.8.3) cvn H.B /DEST pdfmark
+end
+ 2033 2869 a -2 3057 a
+SDict begin H.S end
+ -2 3057 a -2 3057 a
+SDict begin 13 H.A end
+ -2 3057 a
+-2 3057 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3200) cvn H.B /DEST pdfmark
+end
+ -2 3057 a 396 3143 a FC(The)546 3143 y
+SDict begin H.S end
+ 546
+3143 a 546 3143 a
+SDict begin 13 H.A end
+ 546 3143 a 546 3143 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3201) cvn H.B /DEST pdfmark
+end
+ 546 3143 a Fr(archpkg)20
+b FC(directory)e(holds)i(for)f(each)h(architecture)f(a)h(subdirectory)
+2598 3143 y
+SDict begin H.S end
+ 2598 3143 a 2598 3143 a
+SDict begin 13 H.A end
+ 2598 3143 a 2598
+3143 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3202) cvn H.B /DEST pdfmark
+end
+ 2598 3143 a Fr(archpkg/)p Fh(<)p Fr(architecture)p
+Fh(>)p FC(,)396 3251 y(where)g(compiled)f(binary)f(installer)j
+(packages)e(are)h(stored.)-2 3435 y
+SDict begin H.S end
+ -2 3435 a -2 3435
+a
+SDict begin 13 H.A end
+ -2 3435 a -2 3435 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3203) cvn H.B /DEST pdfmark
+end
+ -2 3435 a 396 3525 a FC(F)o(or)g(each)g(b)n
+(uild,)f(up)h(to)h(four)e(\002les)i(will)g(be)f(stored:)g(\(a\))g(the)g
+(binary)f(installer)h(package)396 3632 y
+SDict begin H.S end
+ 396 3632 a 396
+3632 a
+SDict begin 13 H.A end
+ 396 3632 a 396 3632 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3204) cvn H.B /DEST pdfmark
+end
+ 396 3632 a Fr(samhain-)p
+Fh(<)p Fr(version)p Fh(>)p Fr(.)p Fh(<)p Fr(format)p
+Fh(>)p FC(,)c(\(b\))k(the)g(con\002gure)e(options)h(used)396
+3740 y(\()424 3740 y
+SDict begin H.S end
+ 424 3740 a 424 3740 a
+SDict begin 13 H.A end
+ 424 3740 a
+424 3740 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3205) cvn H.B /DEST pdfmark
+end
+ 424 3740 a Fr(configure-)p Fh(<)p Fr(version)p
+Fh(>)p Fr(.)p Fh(<)p Fr(format)p Fh(>)p FC(\),)c(\(c\))20
+b(the)g(samhain-install.sh)f(script)h(generated)e(during)h(the)h(b)n
+(uild)396 3848 y(\()424 3848 y
+SDict begin H.S end
+ 424 3848 a 424 3848 a
+SDict begin 13 H.A end
+
+424 3848 a 424 3848 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3206) cvn H.B /DEST pdfmark
+end
+ 424 3848 a Fr(install-)p Fh(<)p
+Fr(version)p Fh(>)p Fr(.)p Fh(<)p Fr(format)p Fh(>)p
+FC(\),)15 b(and)20 b(\(only)f(for)g(pack)o(ed)h(e)o(x)o(ecutables\))e
+(the)i(client)g(passw)o(ord)g(set)h(in)396 3956 y(the)f(e)o(x)o
+(ecutable)f(\()920 3956 y
+SDict begin H.S end
+ 920 3956 a 920 3956 a
+SDict begin 13 H.A end
+ 920 3956
+a 920 3956 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3207) cvn H.B /DEST pdfmark
+end
+ 920 3956 a Fr(PASSWD-)p Fh(<)p Fr(version)p
+Fh(>)p Fr(.)p Fh(<)p Fr(format)p Fh(>)p FC(\).)-2 4065
+y
+SDict begin H.S end
+ -2 4065 a -2 4065 a
+SDict begin 13 H.A end
+ -2 4065 a -2 4065 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-CUSTOMIZE) cvn H.B /DEST
+pdfmark end
+ -2 4065 a 396
+4378 a Fp(10.1.3.)36 b(Customizing)f(the)e(system)2168
+4378 y
+SDict begin H.S end
+ 2168 4378 a 2168 4378 a
+SDict begin 18.72 H.A end
+ 2168 4378 a 2168 4378
+a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.37.2) cvn H.B /DEST pdfmark
+end
+ 2168 4378 a -2 4404 a
+SDict begin H.S end
+ -2 4404 a -2 4404 a
+SDict begin 13 H.A end
+ -2 4404 a
+-2 4404 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3210) cvn H.B /DEST pdfmark
+end
+ -2 4404 a 396 4665 a Fj(10.1.3.1.)c(Setting)f(default)g
+(options)1891 4665 y
+SDict begin H.S end
+ 1891 4665 a 1891 4665 a
+SDict begin 15.6 H.A end
+ 1891 4665
+a 1891 4665 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.37.9.3) cvn H.B /DEST pdfmark
+end
+ 1891 4665 a -2 4853 a
+SDict begin H.S end
+ -2 4853 a -2 4853
+a
+SDict begin 13 H.A end
+ -2 4853 a -2 4853 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3212) cvn H.B /DEST pdfmark
+end
+ -2 4853 a 396 4939 a FC(If)20 b(you)g(w)o(ant)g
+(to)g(change)f(the)h(def)o(ault)g(options,)f(you)g(can)h(set)h(some)f
+(of)g(them)g(via)g(a)h(con\002guration)c(\002le)396 5047
+y
+SDict begin H.S end
+ 396 5047 a 396 5047 a
+SDict begin 13 H.A end
+ 396 5047 a 396 5047 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3213) cvn H.B /DEST pdfmark
+end
+ 396 5047
+a Fr(~/.deploy.conf)p FC(,)h(which)i(is)h(created)f(upon)e(the)j
+(\002rst)g(in)m(v)n(ocation)d(of)2541 5047 y
+SDict begin H.S end
+ 2541 5047
+a 2541 5047 a
+SDict begin 13 H.A end
+ 2541 5047 a 2541 5047 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3214) cvn H.B /DEST pdfmark
+end
+ 2541 5047 a Fy(deploy)-6
+b(.sh)p FC(.)-2 5075 y
+SDict begin H.S end
+ -2 5075 a -2 5075 a
+SDict begin 13 H.A end
+ -2 5075 a
+-2 5075 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3215) cvn H.B /DEST pdfmark
+end
+ -2 5075 a Black 3661 5805 a Fx(90)p Black eop
+end
+%%Page: 91 96
+TeXDict begin 91 95 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.91) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3257) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2401 104 a Fx(Chapter)20
+b(10.)f(Deployment)g(to)h(r)m(emote)h(hosts)p Black 396
+309 a Fj(10.1.3.2.)29 b(Ad)o(ding)e(suppor)r(t)g(f)n(or)h(an)f(ar)n(c)o
+(hitecture)2450 309 y
+SDict begin H.S end
+ 2450 309 a 2450 309 a
+SDict begin 15.6 H.A end
+ 2450 309
+a 2450 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.37.10.3) cvn H.B /DEST
+pdfmark end
+ 2450 309 a -2 497 a
+SDict begin H.S end
+ -2 497 a -2 497 a
+SDict begin 13 H.A end
+ -2
+497 a -2 497 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3217) cvn H.B /DEST pdfmark
+end
+ -2 497 a 396 583 a FC(T)-7 b(o)21 b(add)e(support)g(for)
+h(another)e(architecture)h Ff(<)p FC(arch)p Ff(>)p FC(,)g(just)h
+(create)g(the)g(tw)o(o)h(\002les)2812 583 y
+SDict begin H.S end
+ 2812 583
+a 2812 583 a
+SDict begin 13 H.A end
+ 2812 583 a 2812 583 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3218) cvn H.B /DEST pdfmark
+end
+ 2812 583 a Fh(<)p
+Fr(arch)p Fh(>)p Fr(.configure)396 691 y FC(\(con\002gure)d(options\))h
+(and)1192 691 y
+SDict begin H.S end
+ 1192 691 a 1192 691 a
+SDict begin 13 H.A end
+ 1192 691 a 1192
+691 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3219) cvn H.B /DEST pdfmark
+end
+ 1192 691 a Fh(<)p Fr(arch)p Fh(>)p Fr(.samhainrc)f
+FC(\(runtime)g(con\002guration\))f(in)k(the)2965 691
+y
+SDict begin H.S end
+ 2965 691 a 2965 691 a
+SDict begin 13 H.A end
+ 2965 691 a 2965 691 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3220) cvn H.B /DEST pdfmark
+end
+ 2965 691
+a Fr(configs)f FC(directory)e(of)396 799 y(the)i(deplo)o(yment)e
+(system)j(\(see)p 0 TeXcolorgray 1336 799 a
+SDict begin H.S end
+ 1336 799
+a FC(Section)f(10.1.2)1816 799 y
+SDict begin 13 H.L end
+ 1816 799 a 1816 799
+a
+SDict begin [ /Subtype /Link /Dest (0:DEPLOY-LAYOUT) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1816 799 a Black -2 w FC(>\).)-2 983 y
+SDict begin H.S end
+ -2 983 a -2
+983 a
+SDict begin 13 H.A end
+ -2 983 a -2 983 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3222) cvn H.B /DEST pdfmark
+end
+ -2 983 a 396 1073 a FC(Upon)f(installation)h
+(of)g(the)g(system,)h(a)f(template)g(\002le)1967 1073
+y
+SDict begin H.S end
+ 1967 1073 a 1967 1073 a
+SDict begin 13 H.A end
+ 1967 1073 a 1967 1073 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3223) cvn H.B /DEST pdfmark
+end
+ 1967
+1073 a Fr(generic.configure)e FC(is)j(created,)e(which)h(contains)f
+(the)396 1180 y(minimum)g(options)g(for)h(a)g(client.)-2
+1209 y
+SDict begin H.S end
+ -2 1209 a -2 1209 a
+SDict begin 13 H.A end
+ -2 1209 a -2 1209 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3224) cvn H.B /DEST pdfmark
+end
+ -2 1209
+a 396 1486 a Fj(10.1.3.3.)29 b(P)m(er)n(-ar)n(c)o(hitecture)g
+(pre-/postinstallation)f(scripts)2901 1486 y
+SDict begin H.S end
+ 2901 1486
+a 2901 1486 a
+SDict begin 15.6 H.A end
+ 2901 1486 a 2901 1486 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.37.11.3) cvn H.B /DEST
+pdfmark end
+ 2901 1486 a -2
+1673 a
+SDict begin H.S end
+ -2 1673 a -2 1673 a
+SDict begin 13 H.A end
+ -2 1673 a -2 1673 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3226) cvn H.B /DEST pdfmark
+end
+ -2 1673
+a -2 1839 a
+SDict begin H.S end
+ -2 1839 a -2 1839 a
+SDict begin 13 H.A end
+ -2 1839 a -2 1839 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3227) cvn H.B /DEST pdfmark
+end
+ -2
+1839 a 396 1926 a FC(The)20 b(def)o(ault)g(scripts)g(for)g
+(preinstallation)e(\(shutting)h(do)n(wn)h(the)g(running)e(client\))i
+(and)f(postinstallation)h(\(setting)396 2034 y(the)g(client)h(passw)o
+(ord,)e(\002xing)g(the)i(local)f(con\002guration)d(\002le\),)k(and)e
+(the)h(script)h(for)e(database)h(initialization)f(are)396
+2142 y(located)h(in)g(the)864 2142 y
+SDict begin H.S end
+ 864 2142 a 864 2142
+a
+SDict begin 13 H.A end
+ 864 2142 a 864 2142 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3228) cvn H.B /DEST pdfmark
+end
+ 864 2142 a Fr(libexec)g FC(directory)-5
+b(.)18 b(Y)-9 b(ou)19 b(can)h(o)o(v)o(erride)e(them)i(for)g(some)g
+(\(or)f(all\))i(architectures)d(by)i(storing)396 2250
+y(architecture-speci\002c)e(\002les)1249 2250 y
+SDict begin H.S end
+ 1249
+2250 a 1249 2250 a
+SDict begin 13 H.A end
+ 1249 2250 a 1249 2250 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3229) cvn H.B /DEST pdfmark
+end
+ 1249 2250
+a Fh(<)p Fr(arch)p Fh(>)p Fr(.preinstall)p FC(,)2083
+2250 y
+SDict begin H.S end
+ 2083 2250 a 2083 2250 a
+SDict begin 13 H.A end
+ 2083 2250 a 2083 2250
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3230) cvn H.B /DEST pdfmark
+end
+ 2083 2250 a Fh(<)p Fr(arch)p Fh(>)p Fr(.postinstall)p
+FC(,)2961 2250 y
+SDict begin H.S end
+ 2961 2250 a 2961 2250 a
+SDict begin 13 H.A end
+ 2961 2250 a
+2961 2250 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3231) cvn H.B /DEST pdfmark
+end
+ 2961 2250 a Fh(<)p Fr(arch)p Fh(>)p Fr(.initscrip)396
+2358 y FC(in)j(the)604 2358 y
+SDict begin H.S end
+ 604 2358 a 604 2358 a
+SDict begin 13 H.A end
+ 604
+2358 a 604 2358 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3232) cvn H.B /DEST pdfmark
+end
+ 604 2358 a Fr(configs)e FC(directory)-5
+b(.)-2 2386 y
+SDict begin H.S end
+ -2 2386 a -2 2386 a
+SDict begin 13 H.A end
+ -2 2386 a -2 2386 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3233) cvn H.B /DEST pdfmark
+end
+
+-2 2386 a 396 2664 a Fj(10.1.3.4.)29 b(P)m(er)n(-host)f(runtime)g
+(con\002guration)2269 2664 y
+SDict begin H.S end
+ 2269 2664 a 2269 2664 a
+SDict begin 15.6 H.A end
+
+2269 2664 a 2269 2664 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.37.12.3) cvn H.B /DEST
+pdfmark end
+ 2269 2664 a -2 2852 a
+SDict begin H.S end
+ -2 2852
+a -2 2852 a
+SDict begin 13 H.A end
+ -2 2852 a -2 2852 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3235) cvn H.B /DEST pdfmark
+end
+ -2 2852 a 396 2938 a
+FC(If)20 b(you)g(w)o(ant)g(to)g(o)o(v)o(erride)e(the)i(runtime)f
+(con\002guration)f(\002le)2171 2938 y
+SDict begin H.S end
+ 2171 2938 a 2171
+2938 a
+SDict begin 13 H.A end
+ 2171 2938 a 2171 2938 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3236) cvn H.B /DEST pdfmark
+end
+ 2171 2938 a Fr(configs/)p
+Fh(<)p Fr(arch)p Fh(>)p Fr(.samhainrc)e FC(on)k(a)h(per)n(-host)396
+3046 y(basis,)g(you)e(need)h(to)g(store)g(a)h(host-speci\002c)e
+(runtime)g(con\002guration)f(\002le)j(as)396 3154 y
+SDict begin H.S end
+ 396
+3154 a 396 3154 a
+SDict begin 13 H.A end
+ 396 3154 a 396 3154 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3237) cvn H.B /DEST pdfmark
+end
+ 396 3154 a Fr(hosts/)p
+Fh(<)p Fr(hostname)p Fh(>)p Fr(/samhainrc)p FC(,)16 b(before)j(you)g
+(run)2143 3154 y
+SDict begin H.S end
+ 2143 3154 a 2143 3154 a
+SDict begin 13 H.A end
+ 2143 3154 a
+2143 3154 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3238) cvn H.B /DEST pdfmark
+end
+ 2143 3154 a Fy(deploy)-6 b(.sh)20 b(install)p
+FC(.)-2 3265 y
+SDict begin H.S end
+ -2 3265 a -2 3265 a
+SDict begin 13 H.A end
+ -2 3265 a -2 3265
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-SCRIPT) cvn H.B /DEST
+pdfmark end
+ -2 3265 a 396 3575 a Fp(10.1.4.)36 b(Using)e(the)g(deplo)n(y)-10
+b(.sh)35 b(script)2277 3575 y
+SDict begin H.S end
+ 2277 3575 a 2277 3575 a
+SDict begin 18.72 H.A end
+
+2277 3575 a 2277 3575 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.38.2) cvn H.B /DEST pdfmark
+end
+ 2277 3575 a -2 3602 a
+SDict begin H.S end
+ -2 3602
+a -2 3602 a
+SDict begin 11.7 H.A end
+ -2 3602 a -2 3602 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3241) cvn H.B /DEST pdfmark
+end
+ -2 3602 a -2 3726 a
+SDict begin H.S end
+ -2
+3726 a -2 3726 a
+SDict begin 11.7 H.A end
+ -2 3726 a -2 3726 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3243) cvn H.B /DEST pdfmark
+end
+ -2 3726 a 562 3797
+a Fw(Tip:)20 b Fv(When)f(r)q(un)h(f)n(or)g(the)f(\002rst)i(time)o(,)
+1619 3797 y
+SDict begin H.S end
+ 1619 3797 a 1619 3797 a
+SDict begin 11.7 H.A end
+ 1619 3797 a 1619
+3797 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3244) cvn H.B /DEST pdfmark
+end
+ 1619 3797 a Fw(deplo)o(y)-6 b(.sh)17 b Fv(will)i(create)h(a)g
+(con\002gur)o(ation)e(\002le)2960 3797 y
+SDict begin H.S end
+ 2960 3797 a
+2960 3797 a
+SDict begin 11.7 H.A end
+ 2960 3797 a 2960 3797 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3245) cvn H.B /DEST pdfmark
+end
+ 2960 3797 a Ft(~/.deploy.conf)26
+b Fv(with)562 3894 y(some)21 b(def)n(ault)d(con\002gur)o(ation)f
+(options)o(.)i(Y)-10 b(ou)19 b(ma)n(y)i(w)o(ant)e(to)h(re)n(vie)o(w)f
+(this)h(\002le)o(.)g(Note)g(that)f(y)o(ou)h(can)g(o)o(v)n(err)q(ide)562
+3991 y(all)g(options)e(there)i(with)f(command-line)f(options;)h(the)g
+(con\002gur)o(ation)f(\002le)i(is)h(just)f(f)n(or)g(con)o(v)n(enience)o
+(,)d(if)j(y)o(ou)562 4088 y(don't)f(lik)o(e)g(the)h(def)n(aults)e(and)i
+(don't)e(w)o(ant)i(to)g(type)g(the)g(corresponding)d(option)h(on)i(the)
+g(command)f(line)562 4186 y(e)n(v)n(er)r(y)i(time)o(.)-2
+4501 y
+SDict begin H.S end
+ -2 4501 a -2 4501 a
+SDict begin 13 H.A end
+ -2 4501 a -2 4501 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3246) cvn H.B /DEST pdfmark
+end
+ -2 4501
+a -2 4501 a
+SDict begin H.S end
+ -2 4501 a -2 4501 a
+SDict begin 13 H.A end
+ -2 4501 a -2 4501 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3247) cvn H.B /DEST pdfmark
+end
+ -2
+4501 a 396 4609 a Fy(deploy)-6 b(.sh)21 b FC(can)f(be)g(in)m(v)n(ok)o
+(ed)e(in)j(three)e(w)o(ays:)-2 4710 y
+SDict begin H.S end
+ -2 4710 a -2 4710
+a
+SDict begin 11.7 H.A end
+ -2 4710 a -2 4710 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3248) cvn H.B /DEST pdfmark
+end
+ -2 4710 a -2 4710 a
+SDict begin H.S end
+ -2 4710 a -2
+4710 a
+SDict begin 11.7 H.A end
+ -2 4710 a -2 4710 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3249) cvn H.B /DEST pdfmark
+end
+ -2 4710 a 396 4789 a Ft(bash$)596
+4789 y
+SDict begin H.S end
+ 596 4789 a 596 4789 a
+SDict begin 11.7 H.A end
+ 596 4789 a 596 4789 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3250) cvn H.B /DEST pdfmark
+end
+ 596
+4789 a Fs(deploy.sh)45 b(--help)396 4886 y Fr(This)f(will)h(provide)e
+(a)i(general)f(overview.)-2 4898 y
+SDict begin H.S end
+ -2 4898 a -2 4898
+a
+SDict begin 11.7 H.A end
+ -2 4898 a -2 4898 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3251) cvn H.B /DEST pdfmark
+end
+ -2 4898 a 396 4983 a Ft(bash$)596
+4983 y
+SDict begin H.S end
+ 596 4983 a 596 4983 a
+SDict begin 11.7 H.A end
+ 596 4983 a 596 4983 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3252) cvn H.B /DEST pdfmark
+end
+ 596
+4983 a Fs(deploy.sh)h(--help)e(command)396 5081 y Fr(This)h(will)h
+(provide)e(help)h(on)h(a)g(specific)e(command)h(\(where)g(command)f
+(can)i(be)f(any)g(of:)396 5178 y('clean',)g('download',)f('checksrc',)g
+('build',)g(or)i('install'.)-2 5187 y
+SDict begin H.S end
+ -2 5187 a -2 5187
+a
+SDict begin 11.7 H.A end
+ -2 5187 a -2 5187 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3253) cvn H.B /DEST pdfmark
+end
+ -2 5187 a 396 5275 a Ft(bash$)596
+5275 y
+SDict begin H.S end
+ 596 5275 a 596 5275 a
+SDict begin 11.7 H.A end
+ 596 5275 a 596 5275 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3254) cvn H.B /DEST pdfmark
+end
+ 596
+5275 a Fs(deploy.sh)g([options])f(command)396 5372 y
+Fr(This)g(will)h(run)f('command')f(with)h(the)h(specified)e(options.)p
+Black 3661 5805 a Fx(91)p Black eop end
+%%Page: 92 97
+TeXDict begin 92 96 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.92) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2401 104 a
+Fx(Chapter)20 b(10.)f(Deployment)g(to)h(r)m(emote)h(hosts)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3255) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a FC(A)g(log)f(of)g(the)g(last)h(run)e(will)i(be)f(k)o
+(ept)g(in)1581 309 y
+SDict begin H.S end
+ 1581 309 a 1581 309 a
+SDict begin 13 H.A end
+ 1581 309 a
+1581 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3256) cvn H.B /DEST pdfmark
+end
+ 1581 309 a Fr(tmp/logfile.lastrun)396 583
+y Fx(command)h FC(can)f(be)g(an)o(y)g(of)f(the)i(follo)n(wing:)-2
+601 y
+SDict begin H.S end
+ -2 601 a -2 601 a
+SDict begin 13 H.A end
+ -2 601 a -2 601 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3259) cvn H.B /DEST pdfmark
+end
+ -2 601 a -2
+725 a
+SDict begin H.S end
+ -2 725 a -2 725 a
+SDict begin 13 H.A end
+ -2 725 a -2 725 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3261) cvn H.B /DEST pdfmark
+end
+ -2 725 a 396
+815 a FC(info)-2 816 y
+SDict begin H.S end
+ -2 816 a -2 816 a
+SDict begin 13 H.A end
+ -2 816 a -2
+816 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3262) cvn H.B /DEST pdfmark
+end
+ -2 816 a Black Black 562 965 a
+SDict begin H.S end
+ 562 965 a 562 965
+a
+SDict begin 13 H.A end
+ 562 965 a 562 965 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3263) cvn H.B /DEST pdfmark
+end
+ 562 965 a FC(Pro)o(vides)e(information)f(on)i
+(installed)g(clients,)g(or)g(a)n(v)n(ailable)g(installer)g(packages.)-2
+1066 y
+SDict begin H.S end
+ -2 1066 a -2 1066 a
+SDict begin 13 H.A end
+ -2 1066 a -2 1066 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3265) cvn H.B /DEST pdfmark
+end
+ -2 1066
+a 396 1156 a FC(clean)-2 1157 y
+SDict begin H.S end
+ -2 1157 a -2 1157 a
+SDict begin 13 H.A end
+ -2
+1157 a -2 1157 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3266) cvn H.B /DEST pdfmark
+end
+ -2 1157 a Black Black 562 1305 a
+SDict begin H.S end
+ 562
+1305 a 562 1305 a
+SDict begin 13 H.A end
+ 562 1305 a 562 1305 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3267) cvn H.B /DEST pdfmark
+end
+ 562 1305 a FC(Remo)o(v)o(es)g
+(source)f(tarballs)h(from)f(the)1697 1305 y
+SDict begin H.S end
+ 1697 1305
+a 1697 1305 a
+SDict begin 13 H.A end
+ 1697 1305 a 1697 1305 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3268) cvn H.B /DEST pdfmark
+end
+ 1697 1305 a Fr(source)g
+FC(subdirectory)f(of)i(the)g(deplo)o(y)f(system.)h(Remo)o(v)o(es)g
+(unused)562 1413 y(installer)h(packages)e(from)g(the)1480
+1413 y
+SDict begin H.S end
+ 1480 1413 a 1480 1413 a
+SDict begin 13 H.A end
+ 1480 1413 a 1480 1413
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3269) cvn H.B /DEST pdfmark
+end
+ 1480 1413 a Fr(archpkg/)p Fh(<)p Fr(arch)p Fh(>)f FC(subdirectories)h
+(of)h(the)g(deplo)o(y)f(system.)-2 1514 y
+SDict begin H.S end
+ -2 1514 a -2
+1514 a
+SDict begin 13 H.A end
+ -2 1514 a -2 1514 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3271) cvn H.B /DEST pdfmark
+end
+ -2 1514 a 396 1604 a FC(do)n(wnload)-2
+1605 y
+SDict begin H.S end
+ -2 1605 a -2 1605 a
+SDict begin 13 H.A end
+ -2 1605 a -2 1605 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3272) cvn H.B /DEST pdfmark
+end
+ -2 1605
+a Black Black 562 1753 a
+SDict begin H.S end
+ 562 1753 a 562 1753 a
+SDict begin 13 H.A end
+ 562 1753
+a 562 1753 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3273) cvn H.B /DEST pdfmark
+end
+ 562 1753 a FC(Do)n(wnload)g(a)h(source)g(tarball)g(from)f
+(the)h(distrib)n(ution)f(site,)i(v)o(erify)e(the)h(GnuPG)g(signature)f
+(\(gpg)g(must)h(be)562 1861 y(installed\),)g(and)f(install)i(it)g(into)
+f(the)1616 1861 y
+SDict begin H.S end
+ 1616 1861 a 1616 1861 a
+SDict begin 13 H.A end
+ 1616 1861 a
+1616 1861 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3274) cvn H.B /DEST pdfmark
+end
+ 1616 1861 a Fr(source)g FC(subdirectory)e(of)i(the)g(deplo)
+o(y)f(system.)3072 1861 y
+SDict begin H.S end
+ 3072 1861 a 3072 1861 a
+SDict begin 13 H.A end
+ 3072
+1861 a 3072 1861 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3275) cvn H.B /DEST pdfmark
+end
+ 3072 1861 a Fx(Requir)m(es)h FC(one)f(of:)562
+1969 y
+SDict begin H.S end
+ 562 1969 a 562 1969 a
+SDict begin 13 H.A end
+ 562 1969 a 562 1969 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3276) cvn H.B /DEST pdfmark
+end
+ 562
+1969 a Fy(wget)p FC(,)770 1969 y
+SDict begin H.S end
+ 770 1969 a 770 1969
+a
+SDict begin 13 H.A end
+ 770 1969 a 770 1969 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3277) cvn H.B /DEST pdfmark
+end
+ 770 1969 a Fy(curl)p FC(,)954
+1969 y
+SDict begin H.S end
+ 954 1969 a 954 1969 a
+SDict begin 13 H.A end
+ 954 1969 a 954 1969 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3278) cvn H.B /DEST pdfmark
+end
+ 954
+1969 a Fy(links)p FC(,)1167 1969 y
+SDict begin H.S end
+ 1167 1969 a 1167 1969
+a
+SDict begin 13 H.A end
+ 1167 1969 a 1167 1969 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3279) cvn H.B /DEST pdfmark
+end
+ 1167 1969 a Fy(lynx)p FC(,)1360
+1969 y
+SDict begin H.S end
+ 1360 1969 a 1360 1969 a
+SDict begin 13 H.A end
+ 1360 1969 a 1360 1969
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3280) cvn H.B /DEST pdfmark
+end
+ 1360 1969 a Fy(fetch)p FC(,)h(or)1667 1969 y
+SDict begin H.S end
+ 1667 1969
+a 1667 1969 a
+SDict begin 13 H.A end
+ 1667 1969 a 1667 1969 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3281) cvn H.B /DEST pdfmark
+end
+ 1667 1969 a Fy(lwp-r)o(equest)p
+FC(.)-2 2069 y
+SDict begin H.S end
+ -2 2069 a -2 2069 a
+SDict begin 13 H.A end
+ -2 2069 a -2 2069
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3283) cvn H.B /DEST pdfmark
+end
+ -2 2069 a 396 2160 a FC(checksrc)-2 2161 y
+SDict begin H.S end
+ -2 2161
+a -2 2161 a
+SDict begin 13 H.A end
+ -2 2161 a -2 2161 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3284) cvn H.B /DEST pdfmark
+end
+ -2 2161 a Black Black
+562 2310 a
+SDict begin H.S end
+ 562 2310 a 562 2310 a
+SDict begin 13 H.A end
+ 562 2310 a 562 2310
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3285) cvn H.B /DEST pdfmark
+end
+ 562 2310 a FC(Check)g(the)g(GnuPG)g(signatures)g(of)g(a)n(v)n
+(ailable)f(source)h(tarballs)g(in)g(the)2661 2310 y
+SDict begin H.S end
+ 2661
+2310 a 2661 2310 a
+SDict begin 13 H.A end
+ 2661 2310 a 2661 2310 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3286) cvn H.B /DEST pdfmark
+end
+ 2661 2310
+a Fr(source)g FC(subdirectory)e(of)i(the)562 2417 y(deplo)o(y)f(system)
+i(\(gpg)e(must)h(be)g(installed\).)f(Optionally)g(delete)h(tarballs)h
+(with)f(no/in)m(v)n(alid)e(signature.)-2 2518 y
+SDict begin H.S end
+ -2 2518
+a -2 2518 a
+SDict begin 13 H.A end
+ -2 2518 a -2 2518 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3288) cvn H.B /DEST pdfmark
+end
+ -2 2518 a 396 2608 a
+FC(b)n(uild)-2 2609 y
+SDict begin H.S end
+ -2 2609 a -2 2609 a
+SDict begin 13 H.A end
+ -2 2609 a -2
+2609 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3289) cvn H.B /DEST pdfmark
+end
+ -2 2609 a Black Black 562 2758 a
+SDict begin H.S end
+ 562 2758 a 562
+2758 a
+SDict begin 13 H.A end
+ 562 2758 a 562 2758 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3290) cvn H.B /DEST pdfmark
+end
+ 562 2758 a FC(Build)j(a)f(binary)f
+(installer)h(package)f(for)h(the)g(chosen)f(architecture)g(from)g(one)h
+(of)f(the)i(tarballs)f(in)g(the)562 2866 y
+SDict begin H.S end
+ 562 2866 a
+562 2866 a
+SDict begin 13 H.A end
+ 562 2866 a 562 2866 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3291) cvn H.B /DEST pdfmark
+end
+ 562 2866 a Fr(source)g
+FC(subdirectory)-5 b(,)17 b(and)j(store)g(it)h(in)f(the)1900
+2866 y
+SDict begin H.S end
+ 1900 2866 a 1900 2866 a
+SDict begin 13 H.A end
+ 1900 2866 a 1900 2866
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3292) cvn H.B /DEST pdfmark
+end
+ 1900 2866 a Fr(archpkg/)p Fh(<)p Fr(architecture)p
+Fh(>)d FC(subdirectory)h(\(which)562 2974 y(will)j(be)f(created)g(if)g
+(it)h(does)f(not)g(e)o(xist)g(yet\).)g(Requires)g(a)g(\002le)2357
+2974 y
+SDict begin H.S end
+ 2357 2974 a 2357 2974 a
+SDict begin 13 H.A end
+ 2357 2974 a 2357 2974
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3293) cvn H.B /DEST pdfmark
+end
+ 2357 2974 a Fh(<)p Fr(architecture)p Fh(>)p Fr(.configure)d
+FC(and)i(a)562 3082 y(\002le)689 3082 y
+SDict begin H.S end
+ 689 3082 a 689
+3082 a
+SDict begin 13 H.A end
+ 689 3082 a 689 3082 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3294) cvn H.B /DEST pdfmark
+end
+ 689 3082 a Fh(<)p Fr(architecture)p
+Fh(>)p Fr(.samhainrc)e FC(in)j(the)2023 3082 y
+SDict begin H.S end
+ 2023 3082
+a 2023 3082 a
+SDict begin 13 H.A end
+ 2023 3082 a 2023 3082 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3295) cvn H.B /DEST pdfmark
+end
+ 2023 3082 a Fr(configs)g
+FC(subdirectory)-5 b(.)-2 3183 y
+SDict begin H.S end
+ -2 3183 a -2 3183 a
+SDict begin 13 H.A end
+
+-2 3183 a -2 3183 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3297) cvn H.B /DEST pdfmark
+end
+ -2 3183 a 396 3273 a FC(install)-2
+3274 y
+SDict begin H.S end
+ -2 3274 a -2 3274 a
+SDict begin 13 H.A end
+ -2 3274 a -2 3274 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3298) cvn H.B /DEST pdfmark
+end
+ -2 3274
+a Black Black 562 3422 a
+SDict begin H.S end
+ 562 3422 a 562 3422 a
+SDict begin 13 H.A end
+ 562 3422
+a 562 3422 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3299) cvn H.B /DEST pdfmark
+end
+ 562 3422 a FC(Cop)o(y)20 b(a)h(pre-b)n(uilt)e(binary)g
+(package)f(\(b)n(uilt)i(with)2018 3422 y
+SDict begin H.S end
+ 2018 3422 a
+2018 3422 a
+SDict begin 13 H.A end
+ 2018 3422 a 2018 3422 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3300) cvn H.B /DEST pdfmark
+end
+ 2018 3422 a Fy(deploy)-6
+b(.sh)20 b(b)n(uild)p FC(\))i(to)e(a)h(remote)e(host,)h(stop)g(the)g
+(client)562 3530 y(running)e(there)i(\(if)g(an)o(y\),)e(install)j(the)f
+(\(ne)n(w\))f(client,)h(update)f(the)h(serv)o(er)f(con\002guration)f
+(\002le)i(and)g(reload)f(the)562 3638 y(serv)o(er)m(,)g(initialize)h
+(the)h(\002le)f(signature)g(database)f(and)h(fetch)g(it)g(from)g(the)g
+(remote)f(host.)-2 3739 y
+SDict begin H.S end
+ -2 3739 a -2 3739 a
+SDict begin 13 H.A end
+ -2 3739
+a -2 3739 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3302) cvn H.B /DEST pdfmark
+end
+ -2 3739 a 396 3829 a FC(uninstall)-2 3830
+y
+SDict begin H.S end
+ -2 3830 a -2 3830 a
+SDict begin 13 H.A end
+ -2 3830 a -2 3830 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3303) cvn H.B /DEST pdfmark
+end
+ -2 3830 a Black
+Black 562 3978 a
+SDict begin H.S end
+ 562 3978 a 562 3978 a
+SDict begin 13 H.A end
+ 562 3978 a 562
+3978 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3304) cvn H.B /DEST pdfmark
+end
+ 562 3978 a FC(Remo)o(v)o(e)g(a)i(samhain)e(client)i(that)f(w)o
+(as)h(pre)n(viously)d(installed)i(with)2552 3978 y
+SDict begin H.S end
+ 2552
+3978 a 2552 3978 a
+SDict begin 13 H.A end
+ 2552 3978 a 2552 3978 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3305) cvn H.B /DEST pdfmark
+end
+ 2552 3978
+a Fy(deploy)-6 b(.sh)20 b(install)p FC(.)-2 3996 y
+SDict begin H.S end
+ -2
+3996 a -2 3996 a
+SDict begin 13 H.A end
+ -2 3996 a -2 3996 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-SH-GENERAL) cvn H.B
+/DEST pdfmark end
+ -2 3996 a 396 4266
+a Fj(10.1.4.1.)29 b(General)e(options)1570 4266 y
+SDict begin H.S end
+ 1570
+4266 a 1570 4266 a
+SDict begin 15.6 H.A end
+ 1570 4266 a 1570 4266 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.38.13.3) cvn H.B /DEST
+pdfmark end
+ 1570 4266
+a -2 4452 a
+SDict begin H.S end
+ -2 4452 a -2 4452 a
+SDict begin 13 H.A end
+ -2 4452 a -2 4452 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3308) cvn H.B /DEST pdfmark
+end
+ -2
+4452 a -2 4452 a
+SDict begin H.S end
+ -2 4452 a -2 4452 a
+SDict begin 13 H.A end
+ -2 4452 a -2 4452
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3309) cvn H.B /DEST pdfmark
+end
+ -2 4452 a 396 4540 a Fy(-q)21 b(|)g(--quiet)f(|)h(--quiet=2)f
+FC(Produce)e(output)h(suitable)h(for)g(logging.)e(Note)i(that)h
+(--quiet=2)d(implies)i(--yes)g(\(see)396 4647 y(belo)n(w\).)-2
+4828 y
+SDict begin H.S end
+ -2 4828 a -2 4828 a
+SDict begin 13 H.A end
+ -2 4828 a -2 4828 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3310) cvn H.B /DEST pdfmark
+end
+ -2 4828
+a -2 4828 a
+SDict begin H.S end
+ -2 4828 a -2 4828 a
+SDict begin 13 H.A end
+ -2 4828 a -2 4828 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3311) cvn H.B /DEST pdfmark
+end
+ -2
+4828 a 396 4921 a Fy(-s)h(|)g(--simulate)f FC(Print)g(what)g(w)o(ould)g
+(be)g(done,)f(b)n(ut)h(do)g(not)g(actually)f(change)g(the)h(system.)-2
+5105 y
+SDict begin H.S end
+ -2 5105 a -2 5105 a
+SDict begin 13 H.A end
+ -2 5105 a -2 5105 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3312) cvn H.B /DEST pdfmark
+end
+ -2 5105
+a -2 5105 a
+SDict begin H.S end
+ -2 5105 a -2 5105 a
+SDict begin 13 H.A end
+ -2 5105 a -2 5105 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3313) cvn H.B /DEST pdfmark
+end
+ -2
+5105 a 396 5195 a Fy(-y)g(|)h(--y)o(es)f FC(Assume)g(yes)h(as)g(answer)
+f(to)g(all)h(prompts)e(and)g(run)h(non-interacti)n(v)o(ely)-5
+b(.)p Black 3661 5805 a Fx(92)p Black eop end
+%%Page: 93 98
+TeXDict begin 93 97 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.93) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2401 104 a
+Fx(Chapter)20 b(10.)f(Deployment)g(to)h(r)m(emote)h(hosts)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3314) cvn H.B /DEST pdfmark
+end
+ -2
+226 a -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3315) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a Fy(-o)f Ff(<)p Fy(\002le)p Ff(>)g Fy(|)h(--log\002le=)p
+Ff(<)p Fy(\002le)p Ff(>)e FC(Specify)g(an)i(output)d(\002le)j(for)f
+(messages)g(that)h(w)o(ould)e(go)h(to)g(stdout)g(otherwise.)396
+417 y(Has)h(no)f(ef)n(fect)g(on)f(stderr)h(\(error)f(messages\).)-2
+601 y
+SDict begin H.S end
+ -2 601 a -2 601 a
+SDict begin 13 H.A end
+ -2 601 a -2 601 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3316) cvn H.B /DEST pdfmark
+end
+ -2 601 a -2
+601 a
+SDict begin H.S end
+ -2 601 a -2 601 a
+SDict begin 13 H.A end
+ -2 601 a -2 601 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3317) cvn H.B /DEST pdfmark
+end
+ -2 601 a 396
+691 a Fy(-d)i Ff(<)p Fy(dialog)p Ff(>)e Fy(|)i(--dialog=)p
+Ff(<)p Fy(dialog)p Ff(>)c FC(Specify)i(your)g(preferred)f("dialog")h
+(clone)h(\(e.g.)f(Xdialog\).)g(Use)i("no")e(to)396 799
+y(force)h(plain)f(te)o(xt.)-2 910 y
+SDict begin H.S end
+ -2 910 a -2 910 a
+SDict begin 13 H.A end
+
+-2 910 a -2 910 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-INFO) cvn H.B /DEST
+pdfmark end
+ -2 910 a 396 1220 a Fp(10.1.5.)36 b(deplo)n(y)-10
+b(.sh)35 b(inf)n(o)1591 1220 y
+SDict begin H.S end
+ 1591 1220 a 1591 1220
+a
+SDict begin 18.72 H.A end
+ 1591 1220 a 1591 1220 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.39.2) cvn H.B /DEST pdfmark
+end
+ 1591 1220 a -2 1411 a
+SDict begin H.S end
+ -2 1411
+a -2 1411 a
+SDict begin 13 H.A end
+ -2 1411 a -2 1411 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3320) cvn H.B /DEST pdfmark
+end
+ -2 1411 a 396 1494 a
+FC(This)21 b(command)d(will)j(sho)n(w)f(information)d(for)j(hosts)g(in)
+h(the)f(client)g(database)g(\(def)o(ault\),)e(or)i(for)g(a)n(v)n
+(ailable)396 1602 y(binary)f(installer)h(packages.)-2
+1620 y
+SDict begin H.S end
+ -2 1620 a -2 1620 a
+SDict begin 13 H.A end
+ -2 1620 a -2 1620 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-INFO-OPT) cvn H.B /DEST
+pdfmark end
+ -2 1620
+a 396 1889 a Fj(10.1.5.1.)29 b(Speci\002c)f(options)1581
+1889 y
+SDict begin H.S end
+ 1581 1889 a 1581 1889 a
+SDict begin 15.6 H.A end
+ 1581 1889 a 1581 1889
+a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.39.14.3) cvn H.B /DEST
+pdfmark end
+ 1581 1889 a -2 2076 a
+SDict begin H.S end
+ -2 2076 a -2 2076 a
+SDict begin 13 H.A end
+ -2 2076 a
+-2 2076 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3323) cvn H.B /DEST pdfmark
+end
+ -2 2076 a -2 2076 a
+SDict begin H.S end
+ -2 2076 a -2 2076 a
+SDict begin 13 H.A end
+ -2
+2076 a -2 2076 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3324) cvn H.B /DEST pdfmark
+end
+ -2 2076 a 396 2163 a Fy(--packages)19
+b FC(Sho)n(w)h(information)e(for)h(a)n(v)n(ailable)h(installer)g
+(packages)f(rather)h(than)f(for)h(clients.)-2 2275 y
+SDict begin H.S end
+
+-2 2275 a -2 2275 a
+SDict begin 13 H.A end
+ -2 2275 a -2 2275 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-CLEAN) cvn H.B /DEST
+pdfmark end
+ -2 2275 a 396
+2585 a Fp(10.1.6.)36 b(deplo)n(y)-10 b(.sh)35 b(c)n(lean)1676
+2585 y
+SDict begin H.S end
+ 1676 2585 a 1676 2585 a
+SDict begin 18.72 H.A end
+ 1676 2585 a 1676 2585
+a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.40.2) cvn H.B /DEST pdfmark
+end
+ 1676 2585 a -2 2775 a
+SDict begin H.S end
+ -2 2775 a -2 2775 a
+SDict begin 13 H.A end
+ -2 2775 a
+-2 2775 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3327) cvn H.B /DEST pdfmark
+end
+ -2 2775 a 396 2859 a FC(This)21 b(command)d(will)j(clean)f
+(unused)f(\002les:)i(source)e(tarballs)h(in)h(the)2407
+2859 y
+SDict begin H.S end
+ 2407 2859 a 2407 2859 a
+SDict begin 13 H.A end
+ 2407 2859 a 2407 2859
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3328) cvn H.B /DEST pdfmark
+end
+ 2407 2859 a Fr(source)f FC(subdirectory)-5 b(,)17 b(and)j(unused)396
+2967 y(installer)h(packages)e(in)h(the)1217 2967 y
+SDict begin H.S end
+ 1217
+2967 a 1217 2967 a
+SDict begin 13 H.A end
+ 1217 2967 a 1217 2967 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3329) cvn H.B /DEST pdfmark
+end
+ 1217 2967
+a Fr(archpkg/)p Fh(<)p Fr(arch)p Fh(>)e FC(subdirectories.)-2
+2985 y
+SDict begin H.S end
+ -2 2985 a -2 2985 a
+SDict begin 13 H.A end
+ -2 2985 a -2 2985 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-CLEAN-OPT) cvn H.B /DEST
+pdfmark end
+ -2 2985
+a 396 3254 a Fj(10.1.6.1.)29 b(Speci\002c)f(options)1581
+3254 y
+SDict begin H.S end
+ 1581 3254 a 1581 3254 a
+SDict begin 15.6 H.A end
+ 1581 3254 a 1581 3254
+a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.40.15.3) cvn H.B /DEST
+pdfmark end
+ 1581 3254 a -2 3440 a
+SDict begin H.S end
+ -2 3440 a -2 3440 a
+SDict begin 13 H.A end
+ -2 3440 a
+-2 3440 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3332) cvn H.B /DEST pdfmark
+end
+ -2 3440 a 396 3528 a FC(There)20 b(are)g(no)g(speci\002c)g
+(options)f(for)h(this)g(command.)-2 3639 y
+SDict begin H.S end
+ -2 3639 a
+-2 3639 a
+SDict begin 13 H.A end
+ -2 3639 a -2 3639 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-DOWNLOAD) cvn H.B /DEST
+pdfmark end
+ -2 3639 a 396 3949 a Fp(10.1.7.)36
+b(deplo)n(y)-10 b(.sh)35 b(do)n(wnload)1929 3949 y
+SDict begin H.S end
+ 1929
+3949 a 1929 3949 a
+SDict begin 18.72 H.A end
+ 1929 3949 a 1929 3949 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.41.2) cvn H.B /DEST pdfmark
+end
+ 1929 3949
+a -2 4140 a
+SDict begin H.S end
+ -2 4140 a -2 4140 a
+SDict begin 13 H.A end
+ -2 4140 a -2 4140 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3335) cvn H.B /DEST pdfmark
+end
+ -2
+4140 a 396 4223 a FC(This)21 b(command)d(will)j(do)n(wnload)d(a)i
+(source)g(tarball)g(from)f(the)h(distrib)n(ution)f(website,)h(v)o
+(erify)f(its)i(GnuPG)396 4331 y(signature,)e(and)h(install)h(it)f(into)
+g(the)1446 4331 y
+SDict begin H.S end
+ 1446 4331 a 1446 4331 a
+SDict begin 13 H.A end
+ 1446 4331 a
+1446 4331 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3336) cvn H.B /DEST pdfmark
+end
+ 1446 4331 a Fr(source)f FC(subdirectory)-5
+b(.)17 b(This)k(command)d(requires)h(that)h(either)3346
+4331 y
+SDict begin H.S end
+ 3346 4331 a 3346 4331 a
+SDict begin 13 H.A end
+ 3346 4331 a 3346 4331
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3337) cvn H.B /DEST pdfmark
+end
+ 3346 4331 a Fy(wget)g FC(or)396 4439 y
+SDict begin H.S end
+ 396 4439 a 396
+4439 a
+SDict begin 13 H.A end
+ 396 4439 a 396 4439 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3338) cvn H.B /DEST pdfmark
+end
+ 396 4439 a Fy(lynx)g FC(is)h(in)g(your)e
+(P)-8 b(A)f(TH.)-2 4457 y
+SDict begin H.S end
+ -2 4457 a -2 4457 a
+SDict begin 11.7 H.A end
+ -2 4457
+a -2 4457 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3339) cvn H.B /DEST pdfmark
+end
+ -2 4457 a -2 4582 a
+SDict begin H.S end
+ -2 4582 a -2 4582 a
+SDict begin 11.7 H.A end
+ -2
+4582 a -2 4582 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3341) cvn H.B /DEST pdfmark
+end
+ -2 4582 a 562 4661 a Fw(Man)o(ual)20
+b(installation)d(of)j(sour)o(ce:)e Fv(This)i(note)g(applies)e(if)i(y)o
+(ou)g(w)o(ant)f(to)h(do)o(wnload)e(source)i(man)o(ually)562
+4758 y(instead.)f(Samhain)f(distr)q(ib)o(ution)f(tarballs)i(contain)f
+(e)n(xactly)i(tw)o(o)h(\002les:)f(\002rst,)h(a)f(source)g(tarball)e
+(with)i(the)562 4855 y(source)g(code)o(,)g(and)f(second,)h(its)g(Gn)o
+(uPG)g(signature)o(.)e(F)n(or)i(installation)c(into)k(the)2920
+4855 y
+SDict begin H.S end
+ 2920 4855 a 2920 4855 a
+SDict begin 11.7 H.A end
+ 2920 4855 a 2920 4855
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3342) cvn H.B /DEST pdfmark
+end
+ 2920 4855 a Ft(source)j Fv(subdirector)r(y)-7 b(,)18
+b(the)562 4952 y(distr)q(ib)o(ution)f(tarball)h(m)o(ust)j(be)f(unpac)o
+(k)o(ed,)e(and)h(both)g(the)h(source)g(source)g(tarball)e(and)h(its)i
+(Gn)o(uPG)562 5049 y(signature)d(mo)o(v)n(ed)i(into)g(the)1398
+5049 y
+SDict begin H.S end
+ 1398 5049 a 1398 5049 a
+SDict begin 11.7 H.A end
+ 1398 5049 a 1398 5049
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3343) cvn H.B /DEST pdfmark
+end
+ 1398 5049 a Ft(source)j Fv(subdirector)r(y)-7 b(.)39
+5199 y
+SDict begin H.S end
+ 39 5199 a 39 5199 a
+SDict begin 13 H.A end
+ 39 5199 a 39 5199 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-DOWNLOAD-OPT) cvn H.B
+/DEST pdfmark end
+ 39 5199
+a Black 3661 5805 a Fx(93)p Black eop end
+%%Page: 94 99
+TeXDict begin 94 98 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.94) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2401 104 a
+Fx(Chapter)20 b(10.)f(Deployment)g(to)h(r)m(emote)h(hosts)p
+Black 396 309 a Fj(10.1.7.1.)29 b(Speci\002c)f(options)1581
+309 y
+SDict begin H.S end
+ 1581 309 a 1581 309 a
+SDict begin 15.6 H.A end
+ 1581 309 a 1581 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.41.16.3) cvn H.B /DEST
+pdfmark end
+ 1581
+309 a -2 495 a
+SDict begin H.S end
+ -2 495 a -2 495 a
+SDict begin 13 H.A end
+ -2 495 a -2 495 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3346) cvn H.B /DEST pdfmark
+end
+ -2
+495 a -2 495 a
+SDict begin H.S end
+ -2 495 a -2 495 a
+SDict begin 13 H.A end
+ -2 495 a -2 495 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3347) cvn H.B /DEST pdfmark
+end
+ -2
+495 a 396 583 a Fy(--v)o(ersion=)p Ff(<)p Fy(v)o(ersion)p
+Ff(>)18 b FC(The)i(v)o(ersion)e(of)i(samhain)f(to)h(do)n(wnload.)d(The)
+i(def)o(ault)g(is)i("current")d(to)i(do)n(wnload)e(the)396
+691 y(current)h(v)o(ersion.)-2 785 y
+SDict begin H.S end
+ -2 785 a -2 785
+a
+SDict begin 13 H.A end
+ -2 785 a -2 785 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-CHECKSRC) cvn H.B /DEST
+pdfmark end
+ -2 785 a 396 1112 a Fp(10.1.8.)36
+b(deplo)n(y)-10 b(.sh)35 b(c)o(hec)n(ksr)n(c)1885 1112
+y
+SDict begin H.S end
+ 1885 1112 a 1885 1112 a
+SDict begin 18.72 H.A end
+ 1885 1112 a 1885 1112 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.42.2) cvn H.B /DEST pdfmark
+end
+ 1885
+1112 a -2 1303 a
+SDict begin H.S end
+ -2 1303 a -2 1303 a
+SDict begin 13 H.A end
+ -2 1303 a -2 1303
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3350) cvn H.B /DEST pdfmark
+end
+ -2 1303 a 396 1386 a FC(This)21 b(command)d(will)j(check)e(the)h
+(GnuPG)g(signatures)g(of)f(source)h(tarballs)g(in)g(the)2827
+1386 y
+SDict begin H.S end
+ 2827 1386 a 2827 1386 a
+SDict begin 13 H.A end
+ 2827 1386 a 2827 1386
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3351) cvn H.B /DEST pdfmark
+end
+ 2827 1386 a Fr(source)f FC(subdirectory)-5 b(.)-2 1404
+y
+SDict begin H.S end
+ -2 1404 a -2 1404 a
+SDict begin 13 H.A end
+ -2 1404 a -2 1404 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-CHECKSRC-OPT) cvn H.B
+/DEST pdfmark end
+ -2 1404 a 396
+1673 a Fj(10.1.8.1.)29 b(Speci\002c)f(options)1581 1673
+y
+SDict begin H.S end
+ 1581 1673 a 1581 1673 a
+SDict begin 15.6 H.A end
+ 1581 1673 a 1581 1673 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.42.17.3) cvn H.B /DEST
+pdfmark end
+ 1581
+1673 a -2 1860 a
+SDict begin H.S end
+ -2 1860 a -2 1860 a
+SDict begin 13 H.A end
+ -2 1860 a -2 1860
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3354) cvn H.B /DEST pdfmark
+end
+ -2 1860 a -2 1860 a
+SDict begin H.S end
+ -2 1860 a -2 1860 a
+SDict begin 13 H.A end
+ -2 1860 a -2
+1860 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3355) cvn H.B /DEST pdfmark
+end
+ -2 1860 a 396 1947 a Fy(--delete)20 b FC(Delete)g(source)g
+(tarballs)g(if)g(PGP)h(signature)e(cannot)h(be)g(v)o(eri\002ed.)-2
+2059 y
+SDict begin H.S end
+ -2 2059 a -2 2059 a
+SDict begin 13 H.A end
+ -2 2059 a -2 2059 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-BUILD) cvn H.B /DEST
+pdfmark end
+ -2 2059
+a 396 2369 a Fp(10.1.9.)36 b(deplo)n(y)-10 b(.sh)35 b(b)n(uild)1657
+2369 y
+SDict begin H.S end
+ 1657 2369 a 1657 2369 a
+SDict begin 18.72 H.A end
+ 1657 2369 a 1657 2369
+a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.43.2) cvn H.B /DEST pdfmark
+end
+ 1657 2369 a -2 2560 a
+SDict begin H.S end
+ -2 2560 a -2 2560 a
+SDict begin 13 H.A end
+ -2 2560 a
+-2 2560 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3358) cvn H.B /DEST pdfmark
+end
+ -2 2560 a 396 2643 a FC(This)21 b(command)d(will)j(create)f
+(a)g(temporary)e(directory)h(on)h(a)g(remote)f(b)n(uild)h(host,)g(cop)o
+(y)f(the)i(selected)f(v)o(ersion)f(of)396 2751 y(the)h(source)g(there,)
+f(b)n(uild)h(the)g(selected)h(format)e(of)h(the)g(binary)f(installer)h
+(package,)e(retrie)n(v)o(e)h(and)h(store)g(the)396 2859
+y(package)f(into)h(the)961 2859 y
+SDict begin H.S end
+ 961 2859 a 961 2859
+a
+SDict begin 13 H.A end
+ 961 2859 a 961 2859 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3359) cvn H.B /DEST pdfmark
+end
+ 961 2859 a Fr(archpkg/)p Fh(<)p
+Fr(architecture)p Fh(>)d FC(subdirectory)-5 b(,)17 b(and)j(remo)o(v)o
+(e)e(the)i(temporary)e(b)n(uild)396 2967 y(directory)-5
+b(.)-2 3151 y
+SDict begin H.S end
+ -2 3151 a -2 3151 a
+SDict begin 13 H.A end
+ -2 3151 a -2 3151 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3360) cvn H.B /DEST pdfmark
+end
+
+-2 3151 a 396 3241 a FC(F)o(or)20 b(each)g(b)n(uild,)f(up)h(to)h(four)e
+(\002les)i(will)g(be)f(stored:)g(\(a\))g(the)g(binary)f(installer)h
+(package)396 3348 y
+SDict begin H.S end
+ 396 3348 a 396 3348 a
+SDict begin 13 H.A end
+ 396 3348 a
+396 3348 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3361) cvn H.B /DEST pdfmark
+end
+ 396 3348 a Fr(samhain-)p Fh(<)p Fr(version)p
+Fh(>)p Fr(.)p Fh(<)p Fr(format)p Fh(>)p FC(,)c(\(b\))k(the)g
+(con\002gure)e(options)h(used)396 3456 y(\()424 3456
+y
+SDict begin H.S end
+ 424 3456 a 424 3456 a
+SDict begin 13 H.A end
+ 424 3456 a 424 3456 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3362) cvn H.B /DEST pdfmark
+end
+ 424 3456
+a Fr(configure-)p Fh(<)p Fr(version)p Fh(>)p Fr(.)p Fh(<)p
+Fr(format)p Fh(>)p FC(\),)c(\(c\))20 b(the)g(samhain-install.sh)f
+(script)h(generated)e(during)h(the)h(b)n(uild)396 3564
+y(\()424 3564 y
+SDict begin H.S end
+ 424 3564 a 424 3564 a
+SDict begin 13 H.A end
+ 424 3564 a 424
+3564 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3363) cvn H.B /DEST pdfmark
+end
+ 424 3564 a Fr(install-)p Fh(<)p Fr(version)p Fh(>)p
+Fr(.)p Fh(<)p Fr(format)p Fh(>)p FC(\),)15 b(and)20 b(\(only)f(for)g
+(pack)o(ed)h(e)o(x)o(ecutables\))e(the)i(client)g(passw)o(ord)g(set)h
+(in)396 3672 y(the)f(e)o(x)o(ecutable)f(\()920 3672 y
+SDict begin H.S end
+
+920 3672 a 920 3672 a
+SDict begin 13 H.A end
+ 920 3672 a 920 3672 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3364) cvn H.B /DEST pdfmark
+end
+ 920 3672
+a Fr(PASSWD-)p Fh(<)p Fr(version)p Fh(>)p Fr(.)p Fh(<)p
+Fr(format)p Fh(>)p FC(\).)-2 3687 y
+SDict begin H.S end
+ -2 3687 a -2 3687
+a
+SDict begin 11.7 H.A end
+ -2 3687 a -2 3687 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3365) cvn H.B /DEST pdfmark
+end
+ -2 3687 a -2 3812 a
+SDict begin H.S end
+ -2 3812 a -2
+3812 a
+SDict begin 11.7 H.A end
+ -2 3812 a -2 3812 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3367) cvn H.B /DEST pdfmark
+end
+ -2 3812 a 562 3894 a Fw(P)n(ac)o(ka)o(g)q(e)
+f(f)o(ormats:)h Fv(Note)g(that)h(the)f(b)o(uild)f(host)i(m)o(ust)h(pro)
+o(vide)e(the)h(required)d(tools)j(if)g(y)o(ou)g(w)o(ant)f(to)h(b)o
+(uild)f(a)562 3991 y(pac)o(kage)g(f)n(or)h(the)f(nativ)n(e)h(pac)o
+(kage)e(manager)h(\(i.e)o(.)g(deb)m(,)g(r)r(pm,)i(tbz2,)f(depot)e
+(\(HP-UX\),)i(or)g(solar)q(is)g(pkg\).)g(On)562 4088
+y(RPM-based)g(Lin)o(ux)f(distr)q(ib)o(utions)e(and)j(Gentoo)e(Lin)o
+(ux,)i(b)o(uilding)d(of)j(RPMs)h(and)e(tbz2s)o(,)h(respectiv)n(ely)-7
+b(,)562 4185 y(should)19 b(just)h(w)o(or)q(k.)h(Debian)d(requires)h
+(additional)e(pac)o(kages)i(f)n(or)g(b)o(uilding)e(debs)o(.)-2
+4243 y
+SDict begin H.S end
+ -2 4243 a -2 4243 a
+SDict begin 11.7 H.A end
+ -2 4243 a -2 4243 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3368) cvn H.B /DEST pdfmark
+end
+ -2 4243
+a 562 4324 a Fv(The)j("r)q(un")f(binar)r(y)g(pac)o(kage)g(f)n(or)r(mat)
+g(does)h(not)f(require)g(additional)d(tools)k(\(it)g(is)h(a)f(self-e)n
+(xtr)o(acting)e(tar)562 4421 y(pac)o(kage)h(based)g(on)h(the)1317
+4421 y
+SDict begin H.S end
+ 1317 4421 a 1317 4421 a
+SDict begin 11.7 H.A end
+ 1317 4421 a 1317 4421
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3369) cvn H.B /DEST pdfmark
+end
+ 1317 4421 a Fv(mak)o(eself)f(application,)e(which)i(is)i(included)d
+(in)i(the)g(samhain)f(distr)q(ib)o(ution\).)d(Use)562
+4518 y
+SDict begin H.S end
+ 562 4518 a 562 4518 a
+SDict begin 11.7 H.A end
+ 562 4518 a 562 4518 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3370) cvn H.B /DEST pdfmark
+end
+ 562
+4518 a Fw(/bin/sh)j Fh(<)p Fw(pac)o(ka)o(g)q(e)p Fh(>)e
+Fw(--help)i Fv(f)n(or)h(details)o(.)39 4668 y
+SDict begin H.S end
+ 39 4668
+a 39 4668 a
+SDict begin 13 H.A end
+ 39 4668 a 39 4668 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-BUILD-OPT) cvn H.B /DEST
+pdfmark end
+ 39 4668 a 396 4963 a
+Fj(10.1.9.1.)29 b(Speci\002c)f(options)1581 4963 y
+SDict begin H.S end
+ 1581
+4963 a 1581 4963 a
+SDict begin 15.6 H.A end
+ 1581 4963 a 1581 4963 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.43.18.3) cvn H.B /DEST
+pdfmark end
+ 1581 4963
+a -2 5150 a
+SDict begin H.S end
+ -2 5150 a -2 5150 a
+SDict begin 13 H.A end
+ -2 5150 a -2 5150 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3373) cvn H.B /DEST pdfmark
+end
+ -2
+5150 a -2 5150 a
+SDict begin H.S end
+ -2 5150 a -2 5150 a
+SDict begin 13 H.A end
+ -2 5150 a -2 5150
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3374) cvn H.B /DEST pdfmark
+end
+ -2 5150 a 396 5237 a Fy(--host=)p Ff(<)p Fy(hostname)p
+Ff(>)19 b FC(The)h(b)n(uild)f(host.)p Black 3661 5805
+a Fx(94)p Black eop end
+%%Page: 95 100
+TeXDict begin 95 99 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.95) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2401 104 a
+Fx(Chapter)20 b(10.)f(Deployment)g(to)h(r)m(emote)h(hosts)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3375) cvn H.B /DEST pdfmark
+end
+ -2
+226 a -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3376) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a Fy(--ar)o(ch=)p Ff(<)p Fy(ar)o(ch)p Ff(>)d
+FC(The)h(architecture)g(to)h(b)n(uild)g(for)-5 b(.)20
+b(This)g(is)h(used)f(to)h(get)f(the)g("./con\002gure")e(options)h(from)
+g(the)396 417 y(\002le)523 417 y
+SDict begin H.S end
+ 523 417 a 523 417 a
+SDict begin 13 H.A end
+
+523 417 a 523 417 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3377) cvn H.B /DEST pdfmark
+end
+ 523 417 a Fr(configs/)p Fh(<)p Fr(arch)p
+Fh(>)p Fr(.configure)p FC(,)d(and)k(to)g(store)h(the)f(binary)f
+(package)f(into)i(the)g(directory)396 525 y
+SDict begin H.S end
+ 396 525 a
+396 525 a
+SDict begin 13 H.A end
+ 396 525 a 396 525 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3378) cvn H.B /DEST pdfmark
+end
+ 396 525 a Fr(archpkg/)p
+Fh(<)p Fr(arch)p Fh(>)p FC(.)-2 702 y
+SDict begin H.S end
+ -2 702 a -2 702
+a
+SDict begin 13 H.A end
+ -2 702 a -2 702 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3379) cvn H.B /DEST pdfmark
+end
+ -2 702 a -2 702 a
+SDict begin H.S end
+ -2 702 a -2 702
+a
+SDict begin 13 H.A end
+ -2 702 a -2 702 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3380) cvn H.B /DEST pdfmark
+end
+ -2 702 a 396 799 a Fy(--v)o(ersion=)p
+Ff(<)p Fy(v)o(ersion)p Ff(>)f FC(The)h(v)o(ersion)e(of)i(samhain)g(you)
+f(w)o(ant)h(to)h(b)n(uild.)e(Must)i(be)f(in)g(the)3085
+799 y
+SDict begin H.S end
+ 3085 799 a 3085 799 a
+SDict begin 13 H.A end
+ 3085 799 a 3085 799 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3381) cvn H.B /DEST pdfmark
+end
+ 3085
+799 a Fr(source)396 906 y FC(subdirectory)-5 b(.)-2 1090
+y
+SDict begin H.S end
+ -2 1090 a -2 1090 a
+SDict begin 13 H.A end
+ -2 1090 a -2 1090 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3382) cvn H.B /DEST pdfmark
+end
+ -2 1090 a -2
+1090 a
+SDict begin H.S end
+ -2 1090 a -2 1090 a
+SDict begin 13 H.A end
+ -2 1090 a -2 1090 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3383) cvn H.B /DEST pdfmark
+end
+ -2 1090
+a 396 1180 a Fy(--f)n(ormat=)p Ff(<)p Fy(run|r)o
+(pm|deb|tbz2|depot|solaris-pkg)p Ff(>)18 b FC(The)i(format)f(of)h(the)g
+(binary)f(installer)h(package.)396 1288 y("run")f(is)j(a)e(portable)f
+(\(Unix\))g(package)g(based)h(on)1870 1288 y
+SDict begin H.S end
+ 1870 1288
+a 1870 1288 a
+SDict begin 13 H.A end
+ 1870 1288 a 1870 1288 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3384) cvn H.B /DEST pdfmark
+end
+ 1870 1288 a FC(mak)o(eself,)g
+("deb")f(is)i(a)g(Debian)e(package,)g("tbz2")g(is)j(a)e(binary)396
+1396 y(Gentoo)f(Linux)h(package,)e("rpm")h(is)i(an)g(RPM)g(package,)d
+("depot")h(is)i(an)f(HP-UX)h(binary)e(package,)f(and)396
+1504 y("solaris-pkg")h(for)g(Sun)h(Solaris.)-2 1688 y
+SDict begin H.S end
+
+-2 1688 a -2 1688 a
+SDict begin 13 H.A end
+ -2 1688 a -2 1688 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3385) cvn H.B /DEST pdfmark
+end
+ -2 1688 a -2
+1688 a
+SDict begin H.S end
+ -2 1688 a -2 1688 a
+SDict begin 13 H.A end
+ -2 1688 a -2 1688 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3386) cvn H.B /DEST pdfmark
+end
+ -2 1688
+a 396 1778 a Fy(--pack)o(ed=)p Ff(<)p Fy(passw)o(ord)p
+Ff(>)g FC(Build)g(a)g(pack)o(ed)g(e)o(x)o(ecutable,)e(and)h(set)i(the)f
+(client)h(passw)o(ord)e(before)g(packing.)-2 1962 y
+SDict begin H.S end
+ -2
+1962 a -2 1962 a
+SDict begin 13 H.A end
+ -2 1962 a -2 1962 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3387) cvn H.B /DEST pdfmark
+end
+ -2 1962 a -2 1962
+a
+SDict begin H.S end
+ -2 1962 a -2 1962 a
+SDict begin 13 H.A end
+ -2 1962 a -2 1962 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3388) cvn H.B /DEST pdfmark
+end
+ -2 1962 a 396
+2052 a Fy(--user=)p Ff(<)p Fy(user)o(name)p Ff(>)h FC(Login)f(as)i
+Ff(<)p FC(username)p Ff(>)d FC(on)h(the)i(b)n(uild)e(host)i(\(def)o
+(aults)e(to)h(root\).)-2 2236 y
+SDict begin H.S end
+ -2 2236 a -2 2236 a
+SDict begin 13 H.A end
+ -2
+2236 a -2 2236 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3389) cvn H.B /DEST pdfmark
+end
+ -2 2236 a -2 2236 a
+SDict begin H.S end
+ -2 2236 a -2 2236
+a
+SDict begin 13 H.A end
+ -2 2236 a -2 2236 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3390) cvn H.B /DEST pdfmark
+end
+ -2 2236 a 396 2326 a Fy(--add-path=)p
+Ff(<)p Fy(path)p Ff(>)e FC(Append)h Ff(<)p FC(path)p
+Ff(>)g FC(to)h(the)g(P)-8 b(A)f(TH)21 b(v)n(ariable)e(on)h(the)g(b)n
+(uild)g(host.)-2 2438 y
+SDict begin H.S end
+ -2 2438 a -2 2438 a
+SDict begin 13 H.A end
+ -2 2438 a
+-2 2438 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-INSTALL) cvn H.B /DEST
+pdfmark end
+ -2 2438 a 396 2748 a Fp(10.1.10.)37 b(deplo)n(y)-10
+b(.sh)35 b(install)1785 2748 y
+SDict begin H.S end
+ 1785 2748 a 1785 2748
+a
+SDict begin 18.72 H.A end
+ 1785 2748 a 1785 2748 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.44.2) cvn H.B /DEST pdfmark
+end
+ 1785 2748 a -2 2938 a
+SDict begin H.S end
+ -2 2938
+a -2 2938 a
+SDict begin 13 H.A end
+ -2 2938 a -2 2938 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3393) cvn H.B /DEST pdfmark
+end
+ -2 2938 a 396 3022 a
+FC(This)21 b(command)d(will)j(create)f(a)g(temporary)e(directory)h(on)h
+(a)g(remote)f(host,)h(cop)o(y)g(the)g(selected)g(v)o(ersion)f(of)h(the)
+396 3130 y(installer)h(package,)d(its)j(corresponding)c
+(samhain-install.sh)i(script,)h(the)g(runtime)f(con\002guration)e
+(\002le,)k(and)f(the)396 3237 y(preinstall,)g(postinstall,)g
+(initscripts)g(scripts)g(there.)g(It)g(will)h(then:)-2
+3421 y
+SDict begin H.S end
+ -2 3421 a -2 3421 a
+SDict begin 13 H.A end
+ -2 3421 a -2 3421 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3394) cvn H.B /DEST pdfmark
+end
+ -2 3421
+a 396 3511 a FC(\(A\))f(run)g(the)786 3511 y
+SDict begin H.S end
+ 786 3511
+a 786 3511 a
+SDict begin 13 H.A end
+ 786 3511 a 786 3511 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3395) cvn H.B /DEST pdfmark
+end
+ 786 3511 a Fr(preinstall)f
+FC(script)h(on)g(the)g(client,)g(which)g(shuts)g(do)n(wn)f(the)i
+(running)d(samhain)h(daemon)g(\(if)396 3619 y(there)h(is)h(an)o(y\).)-2
+3803 y
+SDict begin H.S end
+ -2 3803 a -2 3803 a
+SDict begin 13 H.A end
+ -2 3803 a -2 3803 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3396) cvn H.B /DEST pdfmark
+end
+ -2 3803
+a 396 3893 a FC(\(B\))g(install)f(the)h(binary)e(installer)h(package)e
+(on)i(the)g(client.)-2 4077 y
+SDict begin H.S end
+ -2 4077 a -2 4077 a
+SDict begin 13 H.A end
+ -2
+4077 a -2 4077 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3397) cvn H.B /DEST pdfmark
+end
+ -2 4077 a 396 4167 a FC(\(C\))h(run)e(the)781
+4167 y
+SDict begin H.S end
+ 781 4167 a 781 4167 a
+SDict begin 13 H.A end
+ 781 4167 a 781 4167 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3398) cvn H.B /DEST pdfmark
+end
+ 781
+4167 a Fr(postinstall)g FC(script)h(on)g(the)g(client,)g(which)g(sets)h
+(the)g(client)f(passw)o(ord)f(\(unless)h(the)g(binary)f(is)396
+4275 y(pack)o(ed\),)g(and)g(replaces)h(the)g(def)o(ault)g(runtime)f
+(con\002guration)e(\002le)k(with)g(the)f(proper)e(one.)i(The)f(latter)i
+(step)f(is)396 4383 y(required,)e(because)996 4383 y
+SDict begin H.S end
+
+996 4383 a 996 4383 a
+SDict begin 13 H.A end
+ 996 4383 a 996 4383 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3399) cvn H.B /DEST pdfmark
+end
+ 996 4383
+a Fy(deploy)-6 b(.sh)20 b(b)n(uild)h FC(b)n(uilds)e(from)f(the)i
+(pristine)f(source,)f(so)i(the)f(runtime)f(con\002guration)f(\002le)j
+(in)396 4491 y(the)g(installer)h(package)d(is)k(just)e(the)h(def)o
+(ault)e(one.)-2 4675 y
+SDict begin H.S end
+ -2 4675 a -2 4675 a
+SDict begin 13 H.A end
+ -2 4675 a
+-2 4675 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3400) cvn H.B /DEST pdfmark
+end
+ -2 4675 a 396 4765 a FC(\(D\))h(cop)o(y)g(the)g(proper)e
+(client)i(runtime)f(con\002guration)f(\002le)j(to)f(the)g(serv)o(er)g
+(data)g(directory)e(\(as)396 4873 y
+SDict begin H.S end
+ 396 4873 a 396 4873
+a
+SDict begin 13 H.A end
+ 396 4873 a 396 4873 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3401) cvn H.B /DEST pdfmark
+end
+ 396 4873 a Fr(rc.)p Fh(<)p Fr(client_name)p
+Fh(>)p FC(\),)g(\002x)i(the)g(serv)o(er)f(con\002guration)f(\002le,)j
+(and)e(restart)h(the)h(serv)o(er)e(\(which)g(will)i(f)o(ail)396
+4981 y(non-f)o(atally)d(if)j(the)f(serv)o(er)g(is)h(not)e(running\).)-2
+5165 y
+SDict begin H.S end
+ -2 5165 a -2 5165 a
+SDict begin 13 H.A end
+ -2 5165 a -2 5165 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3402) cvn H.B /DEST pdfmark
+end
+ -2 5165
+a 396 5255 a FC(\(E\))h(run)f(the)777 5255 y
+SDict begin H.S end
+ 777 5255
+a 777 5255 a
+SDict begin 13 H.A end
+ 777 5255 a 777 5255 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3403) cvn H.B /DEST pdfmark
+end
+ 777 5255 a Fr(initscript)g
+FC(script)h(on)g(the)g(client,)g(which)g(initializes)g(\(or)g
+(updates\))f(the)h(baseline)g(database.)p Black 3661
+5805 a Fx(95)p Black eop end
+%%Page: 96 101
+TeXDict begin 96 100 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.96) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3442) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2401 104 a Fx(Chapter)20
+b(10.)f(Deployment)g(to)h(r)m(emote)h(hosts)p Black -2
+226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3404) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396
+309 a FC(\(F\))f(retrie)n(v)o(e)f(the)i(baseline)e(database,)h(cop)o(y)
+f(it)i(to)f(the)h(serv)o(er)e(data)h(directory)e(\(as)2807
+309 y
+SDict begin H.S end
+ 2807 309 a 2807 309 a
+SDict begin 13 H.A end
+ 2807 309 a 2807 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3405) cvn H.B /DEST pdfmark
+end
+ 2807
+309 a Fr(file.)p Fh(<)p Fr(client_name)p Fh(>)p FC(\),)396
+417 y(and)i(remo)o(v)o(e)e(the)i(temporary)e(directory)h(on)h(the)g
+(client.)-2 435 y
+SDict begin H.S end
+ -2 435 a -2 435 a
+SDict begin 11.7 H.A end
+ -2 435 a -2 435 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3406) cvn H.B /DEST pdfmark
+end
+
+-2 435 a -2 559 a
+SDict begin H.S end
+ -2 559 a -2 559 a
+SDict begin 11.7 H.A end
+ -2 559 a -2 559 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3408) cvn H.B /DEST pdfmark
+end
+
+-2 559 a 562 638 a Fw(The)g(runtime)g(con\002guration)d(\002le:)i
+Fv(If)1725 638 y
+SDict begin H.S end
+ 1725 638 a 1725 638 a
+SDict begin 11.7 H.A end
+ 1725 638 a 1725
+638 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3409) cvn H.B /DEST pdfmark
+end
+ 1725 638 a Ft(hosts/)p Fi(<)p Ft(hostname)p Fi(>)p
+Ft(/)p Fi(<)p Ft(arch)p Fi(>)p Ft(.s)q(amh)q(ain)q(rc)27
+b Fv(or)562 735 y
+SDict begin H.S end
+ 562 735 a 562 735 a
+SDict begin 11.7 H.A end
+ 562 735 a 562 735
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3410) cvn H.B /DEST pdfmark
+end
+ 562 735 a Ft(hosts/)p Fi(<)p Ft(hostname)p Fi(>)p Ft(/samh)q(ain)q
+(rc)g Fv(e)n(xists)o(,)20 b(this)g(will)g(be)g(used)g(\(in)f(this)h
+(order)g(of)g(pref)n(erence\),)d(otherwise)562 833 y
+SDict begin H.S end
+
+562 833 a 562 833 a
+SDict begin 11.7 H.A end
+ 562 833 a 562 833 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3411) cvn H.B /DEST pdfmark
+end
+ 562 833 a Ft(configs/)p
+Fi(<)p Ft(arch)p Fi(>)p Ft(.samhai)q(nrc)28 b Fv(will)19
+b(be)h(used.)f(If)i(the)e(latter)g(does)h(not)g(e)n(xist,)g(the)f
+(command)h(will)f(f)n(ail.)39 971 y
+SDict begin H.S end
+ 39 971 a 39 971 a
+SDict begin 11.7 H.A end
+
+39 971 a 39 971 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3412) cvn H.B /DEST pdfmark
+end
+ 39 971 a -2 1137 a
+SDict begin H.S end
+ -2 1137 a -2 1137
+a
+SDict begin 11.7 H.A end
+ -2 1137 a -2 1137 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3414) cvn H.B /DEST pdfmark
+end
+ -2 1137 a 562 1234 a Fw(T)-6 b(ransparent)18
+b(handling)g(of)i(par)q(ticular)f(b)o(uild)g(options:)f
+Fv(The)i(b)o(uild)e(options)h('--enab)o(le-stealth=)o(..)-8
+b(')15 b(is)562 1332 y(handled)j(b)o(y)i(deter)r(mining)d(the)j
+(argument)e(from)i(the)g(con\002gure)f(options)g(that)g(w)o(ere)h(used)
+g(f)n(or)g(the)f(b)o(uild,)562 1429 y(and)h(prepar)q(ing)d(the)j(r)q
+(untime)f(con\002gur)o(ation)f(\002le)i(appropr)q(iately)-7
+b(.)16 b(I.e)o(.,)j(y)o(ou)h(should)f(pro)o(vide)g(a)h('nor)r(mal',)562
+1526 y(plain-te)n(xt)e(con\002gur)o(ation)g(\002le)o(.)-2
+1584 y
+SDict begin H.S end
+ -2 1584 a -2 1584 a
+SDict begin 11.7 H.A end
+ -2 1584 a -2 1584 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3415) cvn H.B /DEST pdfmark
+end
+ -2 1584
+a 562 1664 a Fv(The)i(b)o(uild)e(option)g('--with-nocl=..)-7
+b(')16 b(is)21 b(handled)d(b)o(y)i(deter)r(mining)d(the)j(argument)e
+(\(which)i(is)g(required)e(f)n(or)562 1762 y(database)g
+(initialization\))e(from)k(the)g(con\002gure)f(options)g(that)g(w)o
+(ere)h(used)g(f)n(or)g(the)f(b)o(uild,)f(and)i(passing)f(it)h(to)562
+1859 y(the)687 1859 y
+SDict begin H.S end
+ 687 1859 a 687 1859 a
+SDict begin 11.7 H.A end
+ 687 1859
+a 687 1859 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3416) cvn H.B /DEST pdfmark
+end
+ 687 1859 a Ft(initscript)k Fv(scr)q(ipt.)39
+2008 y
+SDict begin H.S end
+ 39 2008 a 39 2008 a
+SDict begin 13 H.A end
+ 39 2008 a 39 2008 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-INSTALL-OPT) cvn H.B
+/DEST pdfmark end
+ 39 2008
+a 396 2304 a Fj(10.1.10.1.)29 b(Speci\002c)g(options)1637
+2304 y
+SDict begin H.S end
+ 1637 2304 a 1637 2304 a
+SDict begin 15.6 H.A end
+ 1637 2304 a 1637 2304
+a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.44.19.3) cvn H.B /DEST
+pdfmark end
+ 1637 2304 a -2 2490 a
+SDict begin H.S end
+ -2 2490 a -2 2490 a
+SDict begin 13 H.A end
+ -2 2490 a
+-2 2490 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3419) cvn H.B /DEST pdfmark
+end
+ -2 2490 a -2 2490 a
+SDict begin H.S end
+ -2 2490 a -2 2490 a
+SDict begin 13 H.A end
+ -2
+2490 a -2 2490 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3420) cvn H.B /DEST pdfmark
+end
+ -2 2490 a 396 2578 a Fy(--host=)p Ff(<)p
+Fy(hostname)p Ff(>)19 b FC(The)h(host)g(on)f(which)h(to)g(install.)-2
+2747 y
+SDict begin H.S end
+ -2 2747 a -2 2747 a
+SDict begin 13 H.A end
+ -2 2747 a -2 2747 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3421) cvn H.B /DEST pdfmark
+end
+ -2 2747
+a -2 2747 a
+SDict begin H.S end
+ -2 2747 a -2 2747 a
+SDict begin 13 H.A end
+ -2 2747 a -2 2747 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3422) cvn H.B /DEST pdfmark
+end
+ -2
+2747 a 396 2852 a Fy(--ar)o(ch=)p Ff(<)p Fy(ar)o(ch)p
+Ff(>)e FC(The)h(architecture)g(to)h(install.)h(This)f(is)h(used)f(to)h
+(get)f(the)g(installer)g(package)f(from)g(the)396 2960
+y(directory)717 2960 y
+SDict begin H.S end
+ 717 2960 a 717 2960 a
+SDict begin 13 H.A end
+ 717 2960
+a 717 2960 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3423) cvn H.B /DEST pdfmark
+end
+ 717 2960 a Fr(archpkg/)p Fh(<)p Fr(arch)p
+Fh(>)p Fr(/)p FC(.)-2 3144 y
+SDict begin H.S end
+ -2 3144 a -2 3144 a
+SDict begin 13 H.A end
+ -2 3144
+a -2 3144 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3424) cvn H.B /DEST pdfmark
+end
+ -2 3144 a -2 3144 a
+SDict begin H.S end
+ -2 3144 a -2 3144 a
+SDict begin 13 H.A end
+ -2
+3144 a -2 3144 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3425) cvn H.B /DEST pdfmark
+end
+ -2 3144 a 396 3234 a Fy(--v)o(ersion=)p
+Ff(<)p Fy(v)o(ersion)p Ff(>)g FC(The)h(v)o(ersion)e(of)i(samhain)g(you)
+f(w)o(ant)h(to)h(install.)f(An)g(installer)h(package)d(for)i(this)396
+3341 y(v)o(ersion)f(must)h(e)o(xist)h(in)f(the)1226 3341
+y
+SDict begin H.S end
+ 1226 3341 a 1226 3341 a
+SDict begin 13 H.A end
+ 1226 3341 a 1226 3341 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3426) cvn H.B /DEST pdfmark
+end
+ 1226
+3341 a Fr(archpkg/)p Fh(<)p Fr(arch)p Fh(>)p Fr(/)e FC(subdirectory)-5
+b(.)-2 3526 y
+SDict begin H.S end
+ -2 3526 a -2 3526 a
+SDict begin 13 H.A end
+ -2 3526 a -2 3526 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3427) cvn H.B /DEST pdfmark
+end
+
+-2 3526 a -2 3526 a
+SDict begin H.S end
+ -2 3526 a -2 3526 a
+SDict begin 13 H.A end
+ -2 3526 a -2
+3526 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3428) cvn H.B /DEST pdfmark
+end
+ -2 3526 a 396 3615 a Fy(--f)n(ormat=)p Ff(<)p
+Fy(run|r)o(pm|deb|tbz2|depot|solaris-pkg)p Ff(>)18 b
+FC(The)i(format)f(of)h(the)g(binary)f(installer)h(package.)396
+3723 y("run")f(is)j(a)e(portable)f(\(Unix\))g(package)g(based)h(on)1870
+3723 y
+SDict begin H.S end
+ 1870 3723 a 1870 3723 a
+SDict begin 13 H.A end
+ 1870 3723 a 1870 3723
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3429) cvn H.B /DEST pdfmark
+end
+ 1870 3723 a FC(mak)o(eself,)g("deb")f(is)i(a)g(Debian)e(package,)g
+("tbz2")g(is)j(a)e(binary)396 3831 y(Gentoo)f(Linux)h(package,)e("rpm")
+h(is)i(an)g(RPM)g(package,)d("depot")h(is)i(an)f(HP-UX)h(binary)e
+(package,)f(and)396 3939 y("solaris-pkg")h(for)g(Sun)h(Solaris.)-2
+4123 y
+SDict begin H.S end
+ -2 4123 a -2 4123 a
+SDict begin 13 H.A end
+ -2 4123 a -2 4123 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3430) cvn H.B /DEST pdfmark
+end
+ -2 4123
+a -2 4123 a
+SDict begin H.S end
+ -2 4123 a -2 4123 a
+SDict begin 13 H.A end
+ -2 4123 a -2 4123 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3431) cvn H.B /DEST pdfmark
+end
+ -2
+4123 a 396 4213 a Fy(--yule_exec=)p Ff(<)p Fy(path)p
+Ff(>)d FC(P)o(ath)k(to)f(the)g(yule)g(e)o(x)o(ecutable.)-2
+4397 y
+SDict begin H.S end
+ -2 4397 a -2 4397 a
+SDict begin 13 H.A end
+ -2 4397 a -2 4397 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3432) cvn H.B /DEST pdfmark
+end
+ -2 4397
+a -2 4397 a
+SDict begin H.S end
+ -2 4397 a -2 4397 a
+SDict begin 13 H.A end
+ -2 4397 a -2 4397 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3433) cvn H.B /DEST pdfmark
+end
+ -2
+4397 a 396 4487 a Fy(--yule_conf=)p Ff(<)p Fy(path)p
+Ff(>)e FC(P)o(ath)i(to)g(the)g(yule)g(con\002guration)d(\002le.)-2
+4671 y
+SDict begin H.S end
+ -2 4671 a -2 4671 a
+SDict begin 13 H.A end
+ -2 4671 a -2 4671 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3434) cvn H.B /DEST pdfmark
+end
+ -2 4671
+a -2 4671 a
+SDict begin H.S end
+ -2 4671 a -2 4671 a
+SDict begin 13 H.A end
+ -2 4671 a -2 4671 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3435) cvn H.B /DEST pdfmark
+end
+ -2
+4671 a 396 4761 a Fy(--yule_data=)p Ff(<)p Fy(path)p
+Ff(>)g FC(P)o(ath)j(to)h(the)f(yule)g(data)g(directory)-5
+b(.)-2 4945 y
+SDict begin H.S end
+ -2 4945 a -2 4945 a
+SDict begin 13 H.A end
+ -2 4945 a -2 4945 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3436) cvn H.B /DEST pdfmark
+end
+
+-2 4945 a -2 4945 a
+SDict begin H.S end
+ -2 4945 a -2 4945 a
+SDict begin 13 H.A end
+ -2 4945 a -2
+4945 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3437) cvn H.B /DEST pdfmark
+end
+ -2 4945 a 396 5035 a Fy(--no-init)20 b FC(Do)g(not)g(initialize)
+g(the)g(\002le)h(signature)e(\(baseline\))g(database)h(\(and)f
+(consequentially)-5 b(,)17 b(do)j(not)g(replace)396 5143
+y(the)518 5143 y
+SDict begin H.S end
+ 518 5143 a 518 5143 a
+SDict begin 13 H.A end
+ 518 5143 a 518
+5143 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3438) cvn H.B /DEST pdfmark
+end
+ 518 5143 a Fr(file.)p Fh(<)p Fr(host)p Fh(>)f
+FC(\002le)i(on)f(serv)o(er)-5 b(.)p Black 3660 5805 a
+Fx(96)p Black eop end
+%%Page: 97 102
+TeXDict begin 97 101 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.97) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2401 104 a
+Fx(Chapter)20 b(10.)f(Deployment)g(to)h(r)m(emote)h(hosts)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3439) cvn H.B /DEST pdfmark
+end
+ -2
+226 a -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3440) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a Fy(--no-r)o(c\002le)e FC(Do)h(not)g(replace)f(the)1398
+309 y
+SDict begin H.S end
+ 1398 309 a 1398 309 a
+SDict begin 13 H.A end
+ 1398 309 a 1398 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3441) cvn H.B /DEST pdfmark
+end
+ 1398
+309 a Fr(rc.)p Fh(<)p Fr(host)p Fh(>)g FC(\002le)i(on)e(serv)o(er)-5
+b(.)396 583 y Fy(--no-start)19 b FC(Do)h(not)g(start)g(up)g(the)g
+(client)h(after)e(installation.)-2 767 y
+SDict begin H.S end
+ -2 767 a -2
+767 a
+SDict begin 13 H.A end
+ -2 767 a -2 767 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3444) cvn H.B /DEST pdfmark
+end
+ -2 767 a -2 767 a
+SDict begin H.S end
+ -2 767 a -2
+767 a
+SDict begin 13 H.A end
+ -2 767 a -2 767 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3445) cvn H.B /DEST pdfmark
+end
+ -2 767 a 396 857 a Fy(--local=)p
+Ff(<)p Fy(command)p Ff(>)f FC(An)i(optional)e(command)g(e)o(x)o(ecuted)
+g(locally)i(\(i.e.)f(on)h(the)g(serv)o(er\))e(twice)i(\(with)g(the)g
+(last)396 965 y(ar)o(gument)e(set)j(to)f('\002rst')h(and)e(')-5
+b(second',)19 b(respecti)n(v)o(ely)-5 b(.)18 b(First)j(is)g(after)f
+(client)g(con\002g)g(\002le)g(installation)g(\(i.e.)396
+1073 y(before)f(baseline)h(database)f(initialisation)h(on)g(the)g
+(client\),)g(second)f(is)i(just)g(before)e(client)h(startup.)g(W)m(ill)
+h(be)396 1180 y(called)f(as)705 1180 y
+SDict begin H.S end
+ 705 1180 a 705
+1180 a
+SDict begin 13 H.A end
+ 705 1180 a 705 1180 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3446) cvn H.B /DEST pdfmark
+end
+ 705 1180 a Fy(command)1076
+1180 y
+SDict begin H.S end
+ 1076 1180 a 1076 1180 a
+SDict begin 13 H.A end
+ 1076 1180 a 1076 1180
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3447) cvn H.B /DEST pdfmark
+end
+ 1076 1180 a Fl(hostname)1456 1180 y
+SDict begin H.S end
+ 1456 1180 a 1456
+1180 a
+SDict begin 13 H.A end
+ 1456 1180 a 1456 1180 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3448) cvn H.B /DEST pdfmark
+end
+ 1456 1180 a Fl(arch)1657
+1180 y
+SDict begin H.S end
+ 1657 1180 a 1657 1180 a
+SDict begin 13 H.A end
+ 1657 1180 a 1657 1180
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3449) cvn H.B /DEST pdfmark
+end
+ 1657 1180 a Fl(basedir)1996 1180 y
+SDict begin H.S end
+ 1996 1180 a 1996
+1180 a
+SDict begin 13 H.A end
+ 1996 1180 a 1996 1180 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3450) cvn H.B /DEST pdfmark
+end
+ 1996 1180 a Fl(yule_data)2420
+1180 y
+SDict begin H.S end
+ 2420 1180 a 2420 1180 a
+SDict begin 13 H.A end
+ 2420 1180 a 2420 1180
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3451) cvn H.B /DEST pdfmark
+end
+ 2420 1180 a Fl(first|second)s FC(.)-2 1293 y
+SDict begin H.S end
+ -2 1293
+a -2 1293 a
+SDict begin 13 H.A end
+ -2 1293 a -2 1293 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-UNINSTALL) cvn H.B /DEST
+pdfmark end
+ -2 1293 a 396 1602 a
+Fp(10.1.11.)37 b(deplo)n(y)-10 b(.sh)35 b(uninstall)1931
+1602 y
+SDict begin H.S end
+ 1931 1602 a 1931 1602 a
+SDict begin 18.72 H.A end
+ 1931 1602 a 1931 1602
+a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.45.2) cvn H.B /DEST pdfmark
+end
+ 1931 1602 a -2 1793 a
+SDict begin H.S end
+ -2 1793 a -2 1793 a
+SDict begin 13 H.A end
+ -2 1793 a
+-2 1793 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3454) cvn H.B /DEST pdfmark
+end
+ -2 1793 a 396 1876 a FC(This)20 b(command)e(will)j(remo)o(v)o
+(e)d(a)j(samhain)e(client)h(that)g(w)o(as)h(pre)n(viously)d(installed)i
+(by)f(using)3158 1876 y
+SDict begin H.S end
+ 3158 1876 a 3158 1876 a
+SDict begin 13 H.A end
+ 3158
+1876 a 3158 1876 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3455) cvn H.B /DEST pdfmark
+end
+ 3158 1876 a Fy(deploy)-6 b(.sh)20
+b(install)p FC(.)-2 1894 y
+SDict begin H.S end
+ -2 1894 a -2 1894 a
+SDict begin 13 H.A end
+ -2 1894
+a -2 1894 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-UNINSTALL-OPT) cvn H.B
+/DEST pdfmark end
+ -2 1894 a 396 2163 a Fj(10.1.11.1.)29 b(Speci\002c)g
+(options)1637 2163 y
+SDict begin H.S end
+ 1637 2163 a 1637 2163 a
+SDict begin 15.6 H.A end
+ 1637 2163
+a 1637 2163 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.45.20.3) cvn H.B /DEST
+pdfmark end
+ 1637 2163 a -2 2350 a
+SDict begin H.S end
+ -2 2350 a -2 2350
+a
+SDict begin 13 H.A end
+ -2 2350 a -2 2350 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3458) cvn H.B /DEST pdfmark
+end
+ -2 2350 a -2 2350 a
+SDict begin H.S end
+ -2 2350 a -2
+2350 a
+SDict begin 13 H.A end
+ -2 2350 a -2 2350 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3459) cvn H.B /DEST pdfmark
+end
+ -2 2350 a 396 2437 a Fy(--host=)p
+Ff(<)p Fy(hostname)p Ff(>)19 b FC(The)h(host)g(on)f(which)h(to)g
+(uninstall.)-2 2534 y
+SDict begin H.S end
+ -2 2534 a -2 2534 a
+SDict begin 13 H.A end
+ -2 2534 a -2
+2534 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEPLOY-MISC) cvn H.B /DEST
+pdfmark end
+ -2 2534 a 396 2859 a Fp(10.1.12.)37 b(Usa)o(g)q(e)e(notes)1572
+2859 y
+SDict begin H.S end
+ 1572 2859 a 1572 2859 a
+SDict begin 18.72 H.A end
+ 1572 2859 a 1572 2859
+a
+SDict begin [ /View [/XYZ H.V] /Dest (12.67.46.2) cvn H.B /DEST pdfmark
+end
+ 1572 2859 a -2 2885 a
+SDict begin H.S end
+ -2 2885 a -2 2885 a
+SDict begin 11.7 H.A end
+ -2 2885 a
+-2 2885 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3462) cvn H.B /DEST pdfmark
+end
+ -2 2885 a 745 2985 2668 17 v 745 3637 17 652
+v 1842 3138 a Fp(W)-5 b(arning)786 3331 y
+SDict begin H.S end
+ 786 3331 a
+786 3331 a
+SDict begin 11.7 H.A end
+ 786 3331 a 786 3331 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3464) cvn H.B /DEST pdfmark
+end
+ 786 3331 a 71 x Fv(On)21
+b(Solar)q(is)o(,)e(the)g(P)-9 b(A)g(TH)21 b(en)o(vironment)c(v)n(ar)q
+(iab)o(le)h(on)i(the)g(remote)f(host)h(\(where)f(y)o(ou)786
+3499 y(b)o(uild)g(or)h(deplo)n(y\))e(ma)n(y)j(get)f(set)g(according)f
+(to)h(/etc/def)n(ault/su,)c(which)k(ma)n(y)h(be)786 3596
+y(diff)n(erent)d(from)i(what)g(y)o(ou)f(w)o(ould)h(e)n(xpect)f(\(noted)
+g(b)o(y)h(S)o(.)g(Baile)o(y\).)p 3396 3637 17 652 v 745
+3653 2668 17 v -2 3830 a
+SDict begin H.S end
+ -2 3830 a -2 3830 a
+SDict begin 13 H.A end
+ -2 3830
+a -2 3830 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:NATIVE-PACKAGES) cvn H.B /DEST
+pdfmark end
+ -2 3830 a 319 x Fu(10.2.)39 b(Method)f(B:)h(The)g(native)f
+(pac)m(ka)o(g)q(e)g(mana)o(g)q(er)3058 4149 y
+SDict begin H.S end
+ 3058 4149
+a 3058 4149 a
+SDict begin 22.464 H.A end
+ 3058 4149 a 3058 4149 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.68.1) cvn H.B /DEST pdfmark
+end
+ 3058 4149 a -2
+4347 a
+SDict begin H.S end
+ -2 4347 a -2 4347 a
+SDict begin 13 H.A end
+ -2 4347 a -2 4347 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3467) cvn H.B /DEST pdfmark
+end
+ -2 4347
+a -2 4347 a
+SDict begin H.S end
+ -2 4347 a -2 4347 a
+SDict begin 13 H.A end
+ -2 4347 a -2 4347 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3468) cvn H.B /DEST pdfmark
+end
+ -2
+4347 a 396 4423 a FC(Samhain)20 b(pro)o(vides)e(an)i(easy)g(method)f
+(to)i(create)1855 4423 y
+SDict begin H.S end
+ 1855 4423 a 1855 4423 a
+SDict begin 13 H.A end
+ 1855
+4423 a 1855 4423 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3469) cvn H.B /DEST pdfmark
+end
+ 1855 4423 a Fx(custom)e(binary)h(pac)n(ka)o(g)o(es)f
+FC(with)i(the)f(nati)n(v)o(e)f(package)396 4531 y(manager)g(of)h(your)f
+(operating)f(system.)i(Basically)-5 b(,)20 b(this)h(w)o(orks)f(lik)o
+(e:)-2 4632 y
+SDict begin H.S end
+ -2 4632 a -2 4632 a
+SDict begin 11.7 H.A end
+ -2 4632 a -2 4632 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3470) cvn H.B /DEST pdfmark
+end
+
+-2 4632 a -2 4632 a
+SDict begin H.S end
+ -2 4632 a -2 4632 a
+SDict begin 11.7 H.A end
+ -2 4632 a -2
+4632 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3471) cvn H.B /DEST pdfmark
+end
+ -2 4632 a 396 4712 a Ft(bash$)596 4712 y
+SDict begin H.S end
+ 596 4712
+a 596 4712 a
+SDict begin 11.7 H.A end
+ 596 4712 a 596 4712 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3472) cvn H.B /DEST pdfmark
+end
+ 596 4712 a Fs(./configure)46
+b([your)c(preferred)i(options])-2 4721 y
+SDict begin H.S end
+ -2 4721 a -2
+4721 a
+SDict begin 11.7 H.A end
+ -2 4721 a -2 4721 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3473) cvn H.B /DEST pdfmark
+end
+ -2 4721 a 396 4809 a Ft(bash$)596
+4809 y
+SDict begin H.S end
+ 596 4809 a 596 4809 a
+SDict begin 11.7 H.A end
+ 596 4809 a 596 4809 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3474) cvn H.B /DEST pdfmark
+end
+ 596
+4809 a Fs(make)g(rpm|deb|tbz2|depot|s)q(ola)q(ris)q(-p)q(kg)-2
+4992 y
+SDict begin H.S end
+ -2 4992 a -2 4992 a
+SDict begin 13 H.A end
+ -2 4992 a -2 4992 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3475) cvn H.B /DEST pdfmark
+end
+ -2 4992
+a 396 5083 a FC(I.e.)20 b(the)g(binary)f(package)g(will)i(be)f(b)n
+(uilt)g(with)h(the)f(compile)f(options)g(chosen)h(in)g(the)g(preceding)
+3242 5083 y
+SDict begin H.S end
+ 3242 5083 a 3242 5083 a
+SDict begin 13 H.A end
+ 3242 5083 a 3242
+5083 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3476) cvn H.B /DEST pdfmark
+end
+ 3242 5083 a Fy(./con\002gur)o(e)396 5191 y FC(command.)e
+(Supported)g(package)h(formats)g(are:)1840 5191 y
+SDict begin H.S end
+ 1840
+5191 a 1840 5191 a
+SDict begin 13 H.A end
+ 1840 5191 a 1840 5191 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3477) cvn H.B /DEST pdfmark
+end
+ 1840 5191
+a Fx(rpm)h FC(\(e.g.)f(Redhat,)h(SuSE,)g(...\),)2797
+5191 y
+SDict begin H.S end
+ 2797 5191 a 2797 5191 a
+SDict begin 13 H.A end
+ 2797 5191 a 2797 5191
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3478) cvn H.B /DEST pdfmark
+end
+ 2797 5191 a Fx(deb)f FC(\(Debian\),)3274 5191 y
+SDict begin H.S end
+ 3274
+5191 a 3274 5191 a
+SDict begin 13 H.A end
+ 3274 5191 a 3274 5191 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3479) cvn H.B /DEST pdfmark
+end
+ 3274 5191
+a Fx(tbz2)h FC(\(Gentoo)396 5299 y(Linux\),)664 5299
+y
+SDict begin H.S end
+ 664 5299 a 664 5299 a
+SDict begin 13 H.A end
+ 664 5299 a 664 5299 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3480) cvn H.B /DEST pdfmark
+end
+ 664 5299
+a Fx(depot)g FC(\(HP-UX\),)g(and)1362 5299 y
+SDict begin H.S end
+ 1362 5299
+a 1362 5299 a
+SDict begin 13 H.A end
+ 1362 5299 a 1362 5299 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3481) cvn H.B /DEST pdfmark
+end
+ 1362 5299 a Fx(solaris-pkg)f
+FC(\(Solaris\).)-2 5315 y
+SDict begin H.S end
+ -2 5315 a -2 5315 a
+SDict begin 11.7 H.A end
+ -2 5315
+a -2 5315 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3482) cvn H.B /DEST pdfmark
+end
+ -2 5315 a Black 3658 5805 a Fx(97)p Black
+eop end
+%%Page: 98 103
+TeXDict begin 98 102 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.98) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2401 104 a
+Fx(Chapter)20 b(10.)f(Deployment)g(to)h(r)m(emote)h(hosts)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 11.7 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3484) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 562 309 a Fw(TIP:)f Fv(The)g(binar)r(y)f(pac)o(kage)g(will)g(use)
+i(the)e(OS-speci\002c)2195 309 y
+SDict begin H.S end
+ 2195 309 a 2195 309
+a
+SDict begin 11.7 H.A end
+ 2195 309 a 2195 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3485) cvn H.B /DEST pdfmark
+end
+ 2195 309 a Ft(samhainrc.OS)25
+b Fv(con\002gur)o(ation)18 b(\002le)i(from)g(the)562
+406 y(source)g(director)r(y)-7 b(,)19 b(thus)h(if)g(y)o(ou)g(customiz)o
+(e)g(this)o(,)g(y)o(our)f(pac)o(kage)g(will)g(contain)g(y)o(our)h
+(customiz)o(ed)f(v)n(ersion.)39 544 y
+SDict begin H.S end
+ 39 544 a 39 544
+a
+SDict begin 11.7 H.A end
+ 39 544 a 39 544 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3486) cvn H.B /DEST pdfmark
+end
+ 39 544 a -2 711 a
+SDict begin H.S end
+ -2 711 a -2 711
+a
+SDict begin 11.7 H.A end
+ -2 711 a -2 711 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3488) cvn H.B /DEST pdfmark
+end
+ -2 711 a 562 808 a Fw(TIP:)h Fv(Upon)g
+(installation,)c(the)k(pac)o(kage)e(will)i(not)g(automatically)d
+(initializ)o(e)h(the)h(baseline)f(database)o(,)g(and)562
+905 y(not)i(star)s(t)g(the)g(daemon)e(\(though)h(it)h(will)f(install)g
+(the)h(r)q(unle)n(v)n(el)e(scr)q(ipt)i(to)g(star)s(t)g(upon)f(boot\).)
+39 1043 y
+SDict begin H.S end
+ 39 1043 a 39 1043 a
+SDict begin 11.7 H.A end
+ 39 1043 a 39 1043 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3489) cvn H.B /DEST pdfmark
+end
+ 39
+1043 a -2 1209 a
+SDict begin H.S end
+ -2 1209 a -2 1209 a
+SDict begin 11.7 H.A end
+ -2 1209 a -2 1209
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3491) cvn H.B /DEST pdfmark
+end
+ -2 1209 a 562 1307 a Fw(NO)m(TE:)i Fv(F)n(or)e(reasons)h(e)n
+(xplained)d(in)p 0 TeXcolorgray 1647 1307 a
+SDict begin H.S end
+ 1647 1307
+a Fv(Section)i(11.2)2064 1307 y
+SDict begin 11.7 H.L end
+ 2064 1307 a 2064 1307
+a
+SDict begin [ /Subtype /Link /Dest (0:KEYPAD) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2064 1307 a Black -2 w Fv(>,)h(w)o(e)h(do)f(not)f(recommend)h(to)g
+(distr)q(ib)o(ute)d(binar)r(y)562 1404 y(pac)o(kages)i(to)h(third)g
+(par)s(ties)o(.)e(On)j(the)e(other)g(hand,)g(it)h(is)h(perf)n(ectly)e
+(ok)h(to)h(use)f(a)g(self-b)o(uilt)e(binar)r(y)h(pac)o(kage)562
+1501 y(to)h(install/distr)q(ib)o(ute)1181 1501 y
+SDict begin H.S end
+ 1181
+1501 a 1181 1501 a
+SDict begin 11.7 H.A end
+ 1181 1501 a 1181 1501 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3493) cvn H.B /DEST pdfmark
+end
+ 1181 1501
+a Fv(samhain)f(on)h(y)o(our)f(machine/within)e(y)o(our)j(o)o(wn)f(netw)
+o(or)q(k.)39 1650 y
+SDict begin H.S end
+ 39 1650 a 39 1650 a
+SDict begin 13 H.A end
+ 39 1650 a 39
+1650 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:RPM) cvn H.B /DEST pdfmark
+end
+ 39 1650 a 396 1978 a Fp(10.2.1.)36 b(Building)f(an)e(RPM)1745
+1978 y
+SDict begin H.S end
+ 1745 1978 a 1745 1978 a
+SDict begin 18.72 H.A end
+ 1745 1978 a 1745 1978
+a
+SDict begin [ /View [/XYZ H.V] /Dest (12.68.47.2) cvn H.B /DEST pdfmark
+end
+ 1745 1978 a -2 2005 a
+SDict begin H.S end
+ -2 2005 a -2 2005 a
+SDict begin 13 H.A end
+ -2 2005 a
+-2 2005 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CUSTOMRPM) cvn H.B /DEST pdfmark
+end
+ -2 2005 a 396 2266 a Fj(10.2.1.1.)c(Custom)e(RPM)1431
+2266 y
+SDict begin H.S end
+ 1431 2266 a 1431 2266 a
+SDict begin 15.6 H.A end
+ 1431 2266 a 1431 2266
+a
+SDict begin [ /View [/XYZ H.V] /Dest (12.68.47.21.3) cvn H.B /DEST
+pdfmark end
+ 1431 2266 a -2 2433 a
+SDict begin H.S end
+ -2 2433 a -2 2433 a
+SDict begin 13 H.A end
+ -2 2433 a
+-2 2433 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3498) cvn H.B /DEST pdfmark
+end
+ -2 2433 a 396 2540 a FC(If)20 b(you)g(run)749
+2540 y
+SDict begin H.S end
+ 749 2540 a 749 2540 a
+SDict begin 13 H.A end
+ 749 2540 a 749 2540 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3499) cvn H.B /DEST pdfmark
+end
+ 749
+2540 a Fy(./con\002gur)o(e)f FC(in)i(the)f(source)f(directory)-5
+b(,)18 b(a)j(spec)f(\002le)2278 2540 y
+SDict begin H.S end
+ 2278 2540 a 2278
+2540 a
+SDict begin 13 H.A end
+ 2278 2540 a 2278 2540 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3500) cvn H.B /DEST pdfmark
+end
+ 2278 2540 a Fr(samhain.spec)f
+FC(will)h(be)h(created)e(from)396 2648 y
+SDict begin H.S end
+ 396 2648 a 396
+2648 a
+SDict begin 13 H.A end
+ 396 2648 a 396 2648 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3501) cvn H.B /DEST pdfmark
+end
+ 396 2648 a Fr(samhain.spec.in)p
+FC(.)f(Y)-9 b(ou)20 b(can)g(then)g(use)1696 2648 y
+SDict begin H.S end
+ 1696
+2648 a 1696 2648 a
+SDict begin 13 H.A end
+ 1696 2648 a 1696 2648 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3502) cvn H.B /DEST pdfmark
+end
+ 1696 2648
+a Fy(mak)o(e)h(r)o(pm)g FC(to)f(create)g(source)f(and)h(binary)f(RPMs,)
+i(or)3336 2648 y
+SDict begin H.S end
+ 3336 2648 a 3336 2648 a
+SDict begin 13 H.A end
+ 3336 2648 a
+3336 2648 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3503) cvn H.B /DEST pdfmark
+end
+ 3336 2648 a Fy(mak)o(e)g(sr)o(pm)396 2756
+y FC(to)g(create)f(just)g(the)g(source)g(RPM.)-2 2940
+y
+SDict begin H.S end
+ -2 2940 a -2 2940 a
+SDict begin 13 H.A end
+ -2 2940 a -2 2940 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3504) cvn H.B /DEST pdfmark
+end
+ -2 2940 a 396
+3029 a FC(The)g(RPM)h(will)g(be)f(located)g(in)1337 3029
+y
+SDict begin H.S end
+ 1337 3029 a 1337 3029 a
+SDict begin 13 H.A end
+ 1337 3029 a 1337 3029 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3505) cvn H.B /DEST pdfmark
+end
+ 1337
+3029 a Fr(/usr/src/\(distribution-specific\)/RPMS/i3)o(86)p
+FC(.)15 b(Installing)k(the)396 3137 y(RPM)i(will)742
+3137 y
+SDict begin H.S end
+ 742 3137 a 742 3137 a
+SDict begin 13 H.A end
+ 742 3137 a 742 3137 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3506) cvn H.B /DEST pdfmark
+end
+ 742
+3137 a Fx(not)f(initialize)h FC(the)f(database)f(automatically)-5
+b(.)-2 3321 y
+SDict begin H.S end
+ -2 3321 a -2 3321 a
+SDict begin 13 H.A end
+ -2 3321 a -2 3321 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3507) cvn H.B /DEST pdfmark
+end
+
+-2 3321 a 396 3411 a FC(If)20 b(an)o(ything)e(f)o(ails)j(during)e(the)h
+(b)n(uild)g(\(and)f(after)h(installation)g(has)g(be)o(gun\),)e(just)j
+(cd)f(into)g(the)g(b)n(uild)g(directory)396 3519 y(and)g(do)g(a)698
+3519 y
+SDict begin H.S end
+ 698 3519 a 698 3519 a
+SDict begin 13 H.A end
+ 698 3519 a 698 3519 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3508) cvn H.B /DEST pdfmark
+end
+ 698
+3519 a Fy(mak)o(e)h(uninstall)g(&&)g(mak)o(e)g(uninstall-boot)p
+FC(.)e(If)h(b)n(uilding)f(for)g(a)i(non-RedHat)d(system,)i(the)h(error)
+396 3627 y(messages)g(will)g(tell)f(you)g(which)f(\002le)i(paths)f(in)h
+(the)f(spec)g(\002le)h(were)f(incorrect.)-2 3656 y
+SDict begin H.S end
+ -2
+3656 a -2 3656 a
+SDict begin 13 H.A end
+ -2 3656 a -2 3656 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:VANILLARPM) cvn H.B /DEST pdfmark
+end
+ -2 3656 a 396 3933
+a Fj(10.2.1.2.)29 b(Single-host)1354 3933 y
+SDict begin H.S end
+ 1354 3933
+a 1354 3933 a
+SDict begin 15.6 H.A end
+ 1354 3933 a 1354 3933 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.68.47.22.3) cvn H.B /DEST
+pdfmark end
+ 1354 3933 a -2
+4121 a
+SDict begin H.S end
+ -2 4121 a -2 4121 a
+SDict begin 13 H.A end
+ -2 4121 a -2 4121 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3511) cvn H.B /DEST pdfmark
+end
+ -2 4121
+a 396 4207 a FC(If)20 b(you)g(w)o(ant)g(to)g(create)g(an)g(RPM)h(for)f
+(a)h(single-host)e(v)o(ersion)g(of)h(samhain)f(without)g(an)o(y)h(f)o
+(anc)o(y)f(options,)g(you)396 4315 y(can)h(just)h(run)-2
+4416 y
+SDict begin H.S end
+ -2 4416 a -2 4416 a
+SDict begin 11.7 H.A end
+ -2 4416 a -2 4416 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3512) cvn H.B /DEST pdfmark
+end
+ -2 4416
+a -2 4416 a
+SDict begin H.S end
+ -2 4416 a -2 4416 a
+SDict begin 11.7 H.A end
+ -2 4416 a -2 4416 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3513) cvn H.B /DEST pdfmark
+end
+ -2
+4416 a 396 4495 a Ft(bash$)638 4495 y
+SDict begin H.S end
+ 638 4495 a 638
+4495 a
+SDict begin 11.7 H.A end
+ 638 4495 a 638 4495 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3514) cvn H.B /DEST pdfmark
+end
+ 638 4495 a Fs(rpmbuild)43
+b(-ta)f(samhain-)1483 4495 y
+SDict begin H.S end
+ 1483 4495 a 1483 4495 a
+SDict begin 11.7 H.A end
+
+1483 4495 a 1483 4495 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3515) cvn H.B /DEST pdfmark
+end
+ 1483 4495 a Fd(version)q Fs(.tar.g)q(z)-2
+4670 y
+SDict begin H.S end
+ -2 4670 a -2 4670 a
+SDict begin 13 H.A end
+ -2 4670 a -2 4670 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3516) cvn H.B /DEST pdfmark
+end
+ -2 4670
+a 396 4769 a FC(on)20 b(the)g(tarball)g(\(there)f(is)j(a)e(def)o(ault)g
+(spec)g(\002le)h(in)f(there\).)-2 4953 y
+SDict begin H.S end
+ -2 4953 a -2
+4953 a
+SDict begin 13 H.A end
+ -2 4953 a -2 4953 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3517) cvn H.B /DEST pdfmark
+end
+ -2 4953 a 396 5043 a FC(The)g(RPM)h(will)g
+(be)f(located)g(in)1337 5043 y
+SDict begin H.S end
+ 1337 5043 a 1337 5043
+a
+SDict begin 13 H.A end
+ 1337 5043 a 1337 5043 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3518) cvn H.B /DEST pdfmark
+end
+ 1337 5043 a Fr
+(/usr/src/\(distribution-specific\)/RPMS/i3)o(86)p FC(.)15
+b(Installing)k(the)396 5151 y(RPM)i(will)742 5151 y
+SDict begin H.S end
+ 742
+5151 a 742 5151 a
+SDict begin 13 H.A end
+ 742 5151 a 742 5151 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3519) cvn H.B /DEST pdfmark
+end
+ 742 5151 a Fx(not)f(initialize)
+h FC(the)f(baseline)g(database)f(automatically)-5 b(.)-2
+5262 y
+SDict begin H.S end
+ -2 5262 a -2 5262 a
+SDict begin 13 H.A end
+ -2 5262 a -2 5262 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:HPUX) cvn H.B /DEST pdfmark
+end
+ -2 5262
+a Black 3661 5805 a Fx(98)p Black eop end
+%%Page: 99 104
+TeXDict begin 99 103 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.99) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2401 104 a
+Fx(Chapter)20 b(10.)f(Deployment)g(to)h(r)m(emote)h(hosts)p
+Black 396 313 a Fp(10.2.2.)36 b(Building)f(an)e(HP-UX)g(pac)n(ka)o(g)q
+(e)2358 313 y
+SDict begin H.S end
+ 2358 313 a 2358 313 a
+SDict begin 18.72 H.A end
+ 2358 313 a 2358 313
+a
+SDict begin [ /View [/XYZ H.V] /Dest (12.68.48.2) cvn H.B /DEST pdfmark
+end
+ 2358 313 a -2 506 a
+SDict begin H.S end
+ -2 506 a -2 506 a
+SDict begin 13 H.A end
+ -2 506 a -2 506
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3522) cvn H.B /DEST pdfmark
+end
+ -2 506 a 396 587 a FC(First)21 b(run)701 587 y
+SDict begin H.S end
+ 701
+587 a 701 587 a
+SDict begin 13 H.A end
+ 701 587 a 701 587 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3523) cvn H.B /DEST pdfmark
+end
+ 701 587 a Fy(./con\002gur)o(e)e
+FC(in)h(the)g(source)g(directory)e(with)j(your)e(preferred)f(options,)h
+(then)g(do)h(a)3139 587 y
+SDict begin H.S end
+ 3139 587 a 3139 587 a
+SDict begin 13 H.A end
+ 3139
+587 a 3139 587 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3524) cvn H.B /DEST pdfmark
+end
+ 3139 587 a Fy(mak)o(e)g(depot)p FC(.)g(The)396
+695 y(result)g(should)g(be)g(a)g(package)f(named)1535
+695 y
+SDict begin H.S end
+ 1535 695 a 1535 695 a
+SDict begin 13 H.A end
+ 1535 695 a 1535 695 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3525) cvn H.B /DEST pdfmark
+end
+ 1535
+695 a Fr(samhain.depot)p FC(,)g(that)h(can)g(be)g(installed)g(with)3010
+695 y
+SDict begin H.S end
+ 3010 695 a 3010 695 a
+SDict begin 13 H.A end
+ 3010 695 a 3010 695 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3526) cvn H.B /DEST pdfmark
+end
+ 3010
+695 a Fy(swinstall)p FC(.)h(Installing)396 803 y(the)f(package)f(will)
+961 803 y
+SDict begin H.S end
+ 961 803 a 961 803 a
+SDict begin 13 H.A end
+ 961 803 a 961 803 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3527) cvn H.B /DEST pdfmark
+end
+ 961
+803 a Fx(not)h(initialize)g FC(the)h(baseline)e(database)h
+(automatically)-5 b(.)-2 831 y
+SDict begin H.S end
+ -2 831 a -2 831 a
+SDict begin 13 H.A end
+ -2 831
+a -2 831 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SOL) cvn H.B /DEST pdfmark
+end
+ -2 831 a 396 1141 a Fp(10.2.3.)36 b(Building)f(a)e(Solaris)h
+(pac)n(ka)o(g)q(e)2312 1141 y
+SDict begin H.S end
+ 2312 1141 a 2312 1141 a
+SDict begin 18.72 H.A end
+
+2312 1141 a 2312 1141 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.68.49.2) cvn H.B /DEST pdfmark
+end
+ 2312 1141 a -2 1168 a
+SDict begin H.S end
+ -2 1168
+a -2 1168 a
+SDict begin 11.7 H.A end
+ -2 1168 a -2 1168 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3530) cvn H.B /DEST pdfmark
+end
+ -2 1168 a -2 1292 a
+SDict begin H.S end
+ -2
+1292 a -2 1292 a
+SDict begin 11.7 H.A end
+ -2 1292 a -2 1292 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3532) cvn H.B /DEST pdfmark
+end
+ -2 1292 a 562 1363
+a Fw(NO)m(TE:)21 b Fv(This)e(is)i(e)n(xper)q(imental)d(and)h(not)h(w)o
+(ell)f(tested.)g(Constr)q(uctiv)n(e)h(f)n(eedbac)o(k)e(from)i(e)n(xper)
+q(ienced)e(Solar)q(is)562 1460 y(administr)o(ators)g(is)j(w)o(elcome)o
+(.)-2 1775 y
+SDict begin H.S end
+ -2 1775 a -2 1775 a
+SDict begin 13 H.A end
+ -2 1775 a -2 1775 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3533) cvn H.B /DEST pdfmark
+end
+
+-2 1775 a 396 1883 a FC(First)g(run)701 1883 y
+SDict begin H.S end
+ 701 1883
+a 701 1883 a
+SDict begin 13 H.A end
+ 701 1883 a 701 1883 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3534) cvn H.B /DEST pdfmark
+end
+ 701 1883 a Fy(./con\002gur)o(e)e
+FC(in)h(the)g(source)g(directory)e(with)j(your)e(preferred)f(options,)h
+(then)g(do)h(a)3139 1883 y
+SDict begin H.S end
+ 3139 1883 a 3139 1883 a
+SDict begin 13 H.A end
+ 3139
+1883 a 3139 1883 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3535) cvn H.B /DEST pdfmark
+end
+ 3139 1883 a Fy(mak)o(e)396 1991 y(solaris-pkg)p
+FC(.)g(The)g(result)g(should)f(be)h(a)h(package)e(named)2119
+1991 y
+SDict begin H.S end
+ 2119 1991 a 2119 1991 a
+SDict begin 13 H.A end
+ 2119 1991 a 2119 1991
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3536) cvn H.B /DEST pdfmark
+end
+ 2119 1991 a Fr(samhain.pkg)p FC(.)-2 2020 y
+SDict begin H.S end
+ -2 2020
+a -2 2020 a
+SDict begin 13 H.A end
+ -2 2020 a -2 2020 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:TBZ2) cvn H.B /DEST pdfmark
+end
+ -2 2020 a 396 2330 a
+Fp(10.2.4.)36 b(Building)f(a)e(Gentoo)h(Lin)o(ux)g(pac)n(ka)o(g)q(e)
+2683 2330 y
+SDict begin H.S end
+ 2683 2330 a 2683 2330 a
+SDict begin 18.72 H.A end
+ 2683 2330 a 2683
+2330 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.68.50.2) cvn H.B /DEST pdfmark
+end
+ 2683 2330 a -2 2522 a
+SDict begin H.S end
+ -2 2522 a -2 2522 a
+SDict begin 13 H.A end
+ -2 2522
+a -2 2522 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3539) cvn H.B /DEST pdfmark
+end
+ -2 2522 a 396 2604 a FC(First)21 b(run)701
+2604 y
+SDict begin H.S end
+ 701 2604 a 701 2604 a
+SDict begin 13 H.A end
+ 701 2604 a 701 2604 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3540) cvn H.B /DEST pdfmark
+end
+ 701
+2604 a Fy(./con\002gur)o(e)e([y)n(our)g(pr)o(eferr)o(ed)g(options])h
+FC(in)g(the)g(source)g(directory)e(\(reminder:)h(use)3242
+2604 y
+SDict begin H.S end
+ 3242 2604 a 3242 2604 a
+SDict begin 13 H.A end
+ 3242 2604 a 3242 2604
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3541) cvn H.B /DEST pdfmark
+end
+ 3242 2604 a Fy(./con\002gur)o(e)396 2712 y(--pr)o(e\002x=USR)p
+FC(,)g(NO)m(T)1101 2712 y
+SDict begin H.S end
+ 1101 2712 a 1101 2712 a
+SDict begin 13 H.A end
+ 1101
+2712 a 1101 2712 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3542) cvn H.B /DEST pdfmark
+end
+ 1101 2712 a Fy(./con\002gur)o(e)g(--pr)o
+(e\002x=/usr)h FC(for)f(standard)g(paths\),)h(then)f(do)h(a)2953
+2712 y
+SDict begin H.S end
+ 2953 2712 a 2953 2712 a
+SDict begin 13 H.A end
+ 2953 2712 a 2953 2712
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3543) cvn H.B /DEST pdfmark
+end
+ 2953 2712 a Fy(mak)o(e)g(tbz2)p FC(.)g(The)3510 2712
+y
+SDict begin H.S end
+ 3510 2712 a 3510 2712 a
+SDict begin 13 H.A end
+ 3510 2712 a 3510 2712 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3544) cvn H.B /DEST pdfmark
+end
+ 3510
+2712 a Fr(.tbz2)396 2820 y FC(package)f(will)i(be)f(in)1023
+2820 y
+SDict begin H.S end
+ 1023 2820 a 1023 2820 a
+SDict begin 13 H.A end
+ 1023 2820 a 1023 2820
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3545) cvn H.B /DEST pdfmark
+end
+ 1023 2820 a Fr(/usr/portage/packages/All)d FC(\(this)j(is)h(just)g
+(ho)n(w)f(Gentoo)f(package)g(b)n(uilding)396 2928 y(w)o(orks\).)-2
+3108 y
+SDict begin H.S end
+ -2 3108 a -2 3108 a
+SDict begin 13 H.A end
+ -2 3108 a -2 3108 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3546) cvn H.B /DEST pdfmark
+end
+ -2 3108
+a 396 3202 a FC(The)h(Gentoo)f(package)g(thus)h(created)g(will)1674
+3202 y
+SDict begin H.S end
+ 1674 3202 a 1674 3202 a
+SDict begin 13 H.A end
+ 1674 3202 a 1674 3202
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3547) cvn H.B /DEST pdfmark
+end
+ 1674 3202 a Fx(not)f(initialize)i FC(the)f(database)g(automatically)e
+(upon)h(installation.)h(The)396 3309 y
+SDict begin H.S end
+ 396 3309 a 396
+3309 a
+SDict begin 13 H.A end
+ 396 3309 a 396 3309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3548) cvn H.B /DEST pdfmark
+end
+ 396 3309 a Fr(.tbz2)g FC(package)f(\002le)
+i(will)g(be)f(in)1395 3309 y
+SDict begin H.S end
+ 1395 3309 a 1395 3309 a
+SDict begin 13 H.A end
+
+1395 3309 a 1395 3309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3549) cvn H.B /DEST pdfmark
+end
+ 1395 3309 a Fr(/usr/portage/packages/All)d
+FC(\(this)j(is)h(just)g(ho)n(w)f(Gentoo)f(package)396
+3417 y(b)n(uilding)g(w)o(orks\).)-2 3435 y
+SDict begin H.S end
+ -2 3435 a
+-2 3435 a
+SDict begin 11.7 H.A end
+ -2 3435 a -2 3435 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3550) cvn H.B /DEST pdfmark
+end
+ -2 3435 a -2 3560 a
+SDict begin H.S end
+ -2
+3560 a -2 3560 a
+SDict begin 11.7 H.A end
+ -2 3560 a -2 3560 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3552) cvn H.B /DEST pdfmark
+end
+ -2 3560 a 562 3639
+a Fw(NO)m(TE:)i Fv(If)f(y)o(ou)g(just)g(w)o(ant)f(to)h(install)f(on)h
+(y)o(our)f(o)o(wn)h(system,)h(r)o(ather)e(than)h(b)o(uilding)c(a)21
+b(pac)o(kage)d(f)n(or)i(other)562 3736 y(machines)o(,)f(y)o(ou)h(can)g
+(use)h(the)e(command)1818 3736 y
+SDict begin H.S end
+ 1818 3736 a 1818 3736
+a
+SDict begin 11.7 H.A end
+ 1818 3736 a 1818 3736 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3553) cvn H.B /DEST pdfmark
+end
+ 1818 3736 a Fw(make)h(emer)o(g)q(e)f
+Fv(\(after)g(r)q(unning)2782 3736 y
+SDict begin H.S end
+ 2782 3736 a 2782
+3736 a
+SDict begin 11.7 H.A end
+ 2782 3736 a 2782 3736 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3554) cvn H.B /DEST pdfmark
+end
+ 2782 3736 a Fw(./con\002gure)p
+Fv(,)f(of)i(course\).)-2 3969 y
+SDict begin H.S end
+ -2 3969 a -2 3969 a
+SDict begin 13 H.A end
+ -2
+3969 a -2 3969 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DEB) cvn H.B /DEST pdfmark
+end
+ -2 3969 a 396 4297 a Fp(10.2.5.)36 b(Building)f(a)e
+(Debian)i(pac)n(ka)o(g)q(e)2312 4297 y
+SDict begin H.S end
+ 2312 4297 a 2312
+4297 a
+SDict begin 18.72 H.A end
+ 2312 4297 a 2312 4297 a
+SDict begin [ /View [/XYZ H.V] /Dest (12.68.51.2) cvn H.B /DEST pdfmark
+end
+ 2312 4297 a -2 4489 a
+SDict begin H.S end
+
+-2 4489 a -2 4489 a
+SDict begin 13 H.A end
+ -2 4489 a -2 4489 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3557) cvn H.B /DEST pdfmark
+end
+ -2 4489 a 396
+4571 a FC(First)21 b(run)701 4571 y
+SDict begin H.S end
+ 701 4571 a 701 4571
+a
+SDict begin 13 H.A end
+ 701 4571 a 701 4571 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3558) cvn H.B /DEST pdfmark
+end
+ 701 4571 a Fy(./con\002gur)o(e)e
+FC(in)h(the)g(source)g(directory)e(\(reminder:)h(use)2364
+4571 y
+SDict begin H.S end
+ 2364 4571 a 2364 4571 a
+SDict begin 13 H.A end
+ 2364 4571 a 2364 4571
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3559) cvn H.B /DEST pdfmark
+end
+ 2364 4571 a Fy(./con\002gur)o(e)g(--pr)o(e\002x=USR)p
+FC(,)g(NO)m(T)396 4679 y
+SDict begin H.S end
+ 396 4679 a 396 4679 a
+SDict begin 13 H.A end
+ 396 4679
+a 396 4679 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3560) cvn H.B /DEST pdfmark
+end
+ 396 4679 a Fy(./con\002gur)o(e)g(--pr)o(e\002x=/usr)h
+FC(for)g(standard)f(paths\),)g(then)h(do)g(a)2248 4679
+y
+SDict begin H.S end
+ 2248 4679 a 2248 4679 a
+SDict begin 13 H.A end
+ 2248 4679 a 2248 4679 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3561) cvn H.B /DEST pdfmark
+end
+ 2248
+4679 a Fy(mak)o(e)h(deb)p FC(.)g(The)2783 4679 y
+SDict begin H.S end
+ 2783
+4679 a 2783 4679 a
+SDict begin 13 H.A end
+ 2783 4679 a 2783 4679 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3562) cvn H.B /DEST pdfmark
+end
+ 2783 4679
+a Fr(.deb)f FC(package)e(and)i(the)396 4787 y(corresponding)892
+4787 y
+SDict begin H.S end
+ 892 4787 a 892 4787 a
+SDict begin 13 H.A end
+ 892 4787 a 892 4787 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3563) cvn H.B /DEST pdfmark
+end
+ 892
+4787 a Fr(.dsc)g FC(\002le)h(will)g(be)f(in)g(the)h(directory)d(abo)o
+(v)o(e)h(the)h(source)f(directory)g(\(this)h(is)h(just)g(ho)n(w)e
+(Debian)396 4895 y(package)g(b)n(uilding)g(w)o(orks\).)-2
+5079 y
+SDict begin H.S end
+ -2 5079 a -2 5079 a
+SDict begin 13 H.A end
+ -2 5079 a -2 5079 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3564) cvn H.B /DEST pdfmark
+end
+ -2 5079
+a 396 5169 a FC(Y)-9 b(ou)19 b(will)i(need)e(the)g(follo)n(wing)f
+(additional)h(Debian)g(packages)f(in)i(order)f(to)g(b)n(uild)h(a)g
+(Debian)f(packages:)3495 5169 y
+SDict begin H.S end
+ 3495 5169 a 3495 5169
+a
+SDict begin 13 H.A end
+ 3495 5169 a 3495 5169 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3565) cvn H.B /DEST pdfmark
+end
+ 3495 5169 a Fy(apt-get)396
+5276 y(fak)o(er)o(oot)p FC(,)735 5276 y
+SDict begin H.S end
+ 735 5276 a 735
+5276 a
+SDict begin 13 H.A end
+ 735 5276 a 735 5276 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3566) cvn H.B /DEST pdfmark
+end
+ 735 5276 a Fy(apt-get)g(debmak)o(e)p
+FC(,)1368 5276 y
+SDict begin H.S end
+ 1368 5276 a 1368 5276 a
+SDict begin 13 H.A end
+ 1368 5276 a
+1368 5276 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3567) cvn H.B /DEST pdfmark
+end
+ 1368 5276 a Fy(apt-get)g(debhelper)p FC(,)2035
+5276 y
+SDict begin H.S end
+ 2035 5276 a 2035 5276 a
+SDict begin 13 H.A end
+ 2035 5276 a 2035 5276
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3568) cvn H.B /DEST pdfmark
+end
+ 2035 5276 a Fy(apt-get)g(de)o(vscripts)p FC(,)h(and)2845
+5276 y
+SDict begin H.S end
+ 2845 5276 a 2845 5276 a
+SDict begin 13 H.A end
+ 2845 5276 a 2845 5276
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3569) cvn H.B /DEST pdfmark
+end
+ 2845 5276 a Fy(apt-get)f(cpio)p FC(.)p Black 3661 5805
+a Fx(99)p Black eop end
+%%Page: 100 105
+TeXDict begin 100 104 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.100) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2401 104 a
+Fx(Chapter)20 b(10.)f(Deployment)g(to)h(r)m(emote)h(hosts)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3570) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a FC(The)f(Debian)g(package)e(thus)j(created)e(will)1669
+309 y
+SDict begin H.S end
+ 1669 309 a 1669 309 a
+SDict begin 13 H.A end
+ 1669 309 a 1669 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3571) cvn H.B /DEST pdfmark
+end
+ 1669
+309 a Fx(not)h(initialize)g FC(the)g(database)g(automatically)f(upon)f
+(installation.)i(It)396 417 y(will)h(be)f(located)g(in)g(the)1113
+417 y
+SDict begin H.S end
+ 1113 417 a 1113 417 a
+SDict begin 13 H.A end
+ 1113 417 a 1113 417 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3572) cvn H.B /DEST pdfmark
+end
+ 1113
+417 a Fx(par)m(ent)g(dir)m(ectory)g FC(of)g(the)g(source)f(directory)g
+(\(that')-5 b(s)20 b(just)h(the)f(w)o(ay)g(the)h(Debian)e(b)n(uild)396
+525 y(system)i(w)o(orks\).)p Black 3620 5805 a Fx(100)p
+Black eop end
+%%Page: 101 106
+TeXDict begin 101 105 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.101) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black -2 226
+a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SECURITY-DESIGN) cvn H.B /DEST
+pdfmark end
+ -2 226 a 125 x
+Fz(Chapter)48 b(11.)f(Security)g(Design)2284 351 y
+SDict begin H.S end
+ 2284
+351 a 2284 351 a
+SDict begin 26.957 H.A end
+ 2284 351 a 2284 351 a
+SDict begin [ /View [/XYZ H.V] /Dest (13.0) cvn H.B /DEST pdfmark end
+ 2284 351 a -2
+443 a
+SDict begin H.S end
+ -2 443 a -2 443 a
+SDict begin 13 H.A end
+ -2 443 a -2 443 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SECURITY-USAGE) cvn H.B /DEST
+pdfmark end
+ -2 443 a 339
+x Fu(11.1.)39 b(Usa)o(g)q(e)789 782 y
+SDict begin H.S end
+ 789 782 a 789 782
+a
+SDict begin 22.464 H.A end
+ 789 782 a 789 782 a
+SDict begin [ /View [/XYZ H.V] /Dest (13.69.1) cvn H.B /DEST pdfmark
+end
+ 789 782 a -2 980 a
+SDict begin H.S end
+ -2 980 a -2
+980 a
+SDict begin 13 H.A end
+ -2 980 a -2 980 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3577) cvn H.B /DEST pdfmark
+end
+ -2 980 a 396 1056 a FC(It)21
+b(is)g(recommended)c(to:)-2 1223 y
+SDict begin H.S end
+ -2 1223 a -2 1223
+a
+SDict begin 13 H.A end
+ -2 1223 a -2 1223 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3578) cvn H.B /DEST pdfmark
+end
+ -2 1223 a -2 1223 a
+SDict begin H.S end
+ -2 1223 a -2
+1223 a
+SDict begin 13 H.A end
+ -2 1223 a -2 1223 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3579) cvn H.B /DEST pdfmark
+end
+ -2 1223 a -2 1233 a
+SDict begin H.S end
+ -2 1233
+a -2 1233 a
+SDict begin 13 H.A end
+ -2 1233 a -2 1233 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3580) cvn H.B /DEST pdfmark
+end
+ -2 1233 a Black 396 1392
+a FB(\225)p Black 479 1392 a
+SDict begin H.S end
+ 479 1392 a 479 1392 a
+SDict begin 13 H.A end
+ 479
+1392 a 479 1392 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3581) cvn H.B /DEST pdfmark
+end
+ 479 1392 a 479 1392 a
+SDict begin H.S end
+ 479 1392 a 479
+1392 a
+SDict begin 13 H.A end
+ 479 1392 a 479 1392 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3582) cvn H.B /DEST pdfmark
+end
+ 479 1392 a Fx(compile)j(a)g(static)h
+(binary)e FC(\(not)h(link)o(ed)f(to)i(shared)e(libraries\),)g(using)h
+(the)g(con\002gure)f(option)3199 1392 y
+SDict begin H.S end
+ 3199 1392 a 3199
+1392 a
+SDict begin 13 H.A end
+ 3199 1392 a 3199 1392 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3583) cvn H.B /DEST pdfmark
+end
+ 3199 1392 a Fy(--enable-static)479
+1500 y FC(if)i(possible)f(\(not)f(possible)h(on)g(Solaris)g(\227)h
+(this)g(is)g(a)f(Solaris)h(problem,)d(not)i(a)h(problem)d(of)3166
+1500 y
+SDict begin H.S end
+ 3166 1500 a 3166 1500 a
+SDict begin 13 H.A end
+ 3166 1500 a 3166 1500
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3584) cvn H.B /DEST pdfmark
+end
+ 3166 1500 a FC(samhain\))-2 1518 y
+SDict begin H.S end
+ -2 1518 a -2 1518
+a
+SDict begin 13 H.A end
+ -2 1518 a -2 1518 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3585) cvn H.B /DEST pdfmark
+end
+ -2 1518 a Black 396 1650 a FB(\225)p
+Black 479 1650 a
+SDict begin H.S end
+ 479 1650 a 479 1650 a
+SDict begin 13 H.A end
+ 479 1650 a 479
+1650 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3586) cvn H.B /DEST pdfmark
+end
+ 479 1650 a 479 1650 a
+SDict begin H.S end
+ 479 1650 a 479 1650 a
+SDict begin 13 H.A end
+ 479
+1650 a 479 1650 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3587) cvn H.B /DEST pdfmark
+end
+ 479 1650 a Fx(strip)j(the)g(binary)e
+FC(\(on)g(i386)h(Linux/FreeBSD,)f(also)h(use)h(the)f(pro)o(vided)2607
+1650 y
+SDict begin H.S end
+ 2607 1650 a 2607 1650 a
+SDict begin 13 H.A end
+ 2607 1650 a 2607 1650
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3588) cvn H.B /DEST pdfmark
+end
+ 2607 1650 a Fy(sstrip)h FC(utility:)3068 1650 y
+SDict begin H.S end
+ 3068
+1650 a 3068 1650 a
+SDict begin 13 H.A end
+ 3068 1650 a 3068 1650 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3589) cvn H.B /DEST pdfmark
+end
+ 3068 1650
+a Fy(strip)g(samhain)f(&&)479 1758 y(sstrip)h(samhain)p
+FC(\).)f(This)h(will)g(help)e(some)n(what)h(against)f(intruders)g(that)
+h(try)g(to)h(run)e(it)i(under)e(a)i(deb)n(ugger)d(...)-2
+1776 y
+SDict begin H.S end
+ -2 1776 a -2 1776 a
+SDict begin 11.7 H.A end
+ -2 1776 a -2 1776 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3590) cvn H.B /DEST pdfmark
+end
+ -2 1776
+a -2 1900 a
+SDict begin H.S end
+ -2 1900 a -2 1900 a
+SDict begin 11.7 H.A end
+ -2 1900 a -2 1900 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3592) cvn H.B /DEST pdfmark
+end
+ -2
+1900 a 645 1979 a Fw(NO)m(TE:)895 1979 y
+SDict begin H.S end
+ 895 1979 a 895
+1979 a
+SDict begin 11.7 H.A end
+ 895 1979 a 895 1979 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3593) cvn H.B /DEST pdfmark
+end
+ 895 1979 a Fw(make)i(install)f
+Fv(will)g(alw)o(a)n(ys)h(str)q(ip)g(the)f(e)n(xcutab)o(les)o(.)f(T)-9
+b(r)r(ying)20 b(to)g(str)q(ip)g(again)e(b)o(y)i(hand)f(ma)n(y)i(corr)q
+(upt)645 2076 y(the)f(e)n(x)n(ecutab)o(le)o(.)438 2417
+y
+SDict begin H.S end
+ 438 2417 a 438 2417 a
+SDict begin 13 H.A end
+ 438 2417 a 438 2417 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3594) cvn H.B /DEST pdfmark
+end
+ 438 2417
+a Black 396 2566 a FB(\225)p Black 479 2566 a
+SDict begin H.S end
+ 479 2566
+a 479 2566 a
+SDict begin 13 H.A end
+ 479 2566 a 479 2566 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3595) cvn H.B /DEST pdfmark
+end
+ 479 2566 a 479 2566
+a
+SDict begin H.S end
+ 479 2566 a 479 2566 a
+SDict begin 13 H.A end
+ 479 2566 a 479 2566 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3596) cvn H.B /DEST pdfmark
+end
+ 479 2566
+a Fx(use)h(signed)e(database/con\002gur)o(ation)c(\002les)21
+b FC(using)e(the)h(con\002gure)f(option)2683 2566 y
+SDict begin H.S end
+ 2683
+2566 a 2683 2566 a
+SDict begin 13 H.A end
+ 2683 2566 a 2683 2566 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3597) cvn H.B /DEST pdfmark
+end
+ 2683 2566
+a Fy(--with-gpg=P)-6 b(A)e(TH_T)o(O_GPG)p FC(,)479 2674
+y
+SDict begin H.S end
+ 479 2674 a 479 2674 a
+SDict begin 13 H.A end
+ 479 2674 a 479 2674 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3598) cvn H.B /DEST pdfmark
+end
+ 479 2674
+a Fx(and)22 b FC(compile)d(in)h(the)h(\002ngerprint)d(of)i(the)g
+(signing)f(k)o(e)o(y)h(\()2138 2674 y
+SDict begin H.S end
+ 2138 2674 a 2138
+2674 a
+SDict begin 13 H.A end
+ 2138 2674 a 2138 2674 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3599) cvn H.B /DEST pdfmark
+end
+ 2138 2674 a 20 w Fy(--with-fp=...)p
+FC(\))-2 2692 y
+SDict begin H.S end
+ -2 2692 a -2 2692 a
+SDict begin 13 H.A end
+ -2 2692 a -2 2692
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3600) cvn H.B /DEST pdfmark
+end
+ -2 2692 a Black 396 2824 a FB(\225)p Black 479 2824
+a
+SDict begin H.S end
+ 479 2824 a 479 2824 a
+SDict begin 13 H.A end
+ 479 2824 a 479 2824 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3601) cvn H.B /DEST pdfmark
+end
+ 479 2824
+a 479 2824 a
+SDict begin H.S end
+ 479 2824 a 479 2824 a
+SDict begin 13 H.A end
+ 479 2824 a 479 2824
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3602) cvn H.B /DEST pdfmark
+end
+ 479 2824 a Fx(tak)o(e)h(a)f(look)g(at)g(the)g(stealth)g(options)f
+FC(-)i(while)f(')-5 b(security)20 b(by)g(obscurity')2600
+2824 y
+SDict begin H.S end
+ 2600 2824 a 2600 2824 a
+SDict begin 13 H.A end
+ 2600 2824 a 2600 2824
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3603) cvn H.B /DEST pdfmark
+end
+ 2600 2824 a Fx(only)g FC(is)h(a)f(v)o(ery)f(bad)h(idea,)g(it)h
+(certainly)479 2932 y(helps)f(if)h(an)f(intruder)f(does)g(not)h(kno)n
+(w)f(what)i(defenses)e(you)g(ha)n(v)o(e)h(in)g(place)-2
+3247 y
+SDict begin H.S end
+ -2 3247 a -2 3247 a
+SDict begin 13 H.A end
+ -2 3247 a -2 3247 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3604) cvn H.B /DEST pdfmark
+end
+ -2 3247
+a 396 3355 a FC(If)g(you)g(use)g(a)807 3355 y
+SDict begin H.S end
+ 807 3355
+a 807 3355 a
+SDict begin 13 H.A end
+ 807 3355 a 807 3355 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3605) cvn H.B /DEST pdfmark
+end
+ 807 3355 a Fx(pr)m(ecompiled)1242
+3355 y
+SDict begin H.S end
+ 1242 3355 a 1242 3355 a
+SDict begin 13 H.A end
+ 1242 3355 a 1242 3355
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3606) cvn H.B /DEST pdfmark
+end
+ 1242 3355 a FC(samhain)f(e)o(x)o(ecutable)f(\(e.g.)i(from)f(a)h
+(binary)f(distrib)n(ution\),)g(in)h(principle)f(a)396
+3463 y(prospecti)n(v)o(e)f(intruder)h(could)g(easily)i(obtain)e(a)i
+(cop)o(y)e(of)h(the)g(e)o(x)o(ecutable)e(and)i(analyze)f(it)i(in)g(adv)
+n(ance.)d(This)i(will)396 3571 y(enable)g(her/him)f(to)h(generate)f(f)o
+(ak)o(e)h(audit)g(trails)h(and/or)d(generate)h(a)i(trojan)e(for)h(this)
+h(particular)e(binary)396 3679 y(distrib)n(ution.)-2
+3846 y
+SDict begin H.S end
+ -2 3846 a -2 3846 a
+SDict begin 13 H.A end
+ -2 3846 a -2 3846 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3607) cvn H.B /DEST pdfmark
+end
+ -2 3846
+a 396 3953 a FC(F)o(or)h(this)h(reason,)e(it)i(is)g(possible)f(for)g
+(the)g(user)g(to)g(add)g(more)f(k)o(e)o(y)h(material)g(into)f(the)i
+(binary)e(e)o(x)o(ecutable.)f(This)i(is)396 4061 y(done)f(with)i(the)f
+(command:)-2 4228 y
+SDict begin H.S end
+ -2 4228 a -2 4228 a
+SDict begin 13 H.A end
+ -2 4228 a -2
+4228 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3608) cvn H.B /DEST pdfmark
+end
+ -2 4228 a -2 4228 a
+SDict begin H.S end
+ -2 4228 a -2 4228 a
+SDict begin 13 H.A end
+ -2 4228
+a -2 4228 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3609) cvn H.B /DEST pdfmark
+end
+ -2 4228 a 396 4335 a Fy(samhain)h(--add-k)o(ey=)1106
+4335 y
+SDict begin H.S end
+ 1106 4335 a 1106 4335 a
+SDict begin 13 H.A end
+ 1106 4335 a 1106 4335
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3610) cvn H.B /DEST pdfmark
+end
+ 1106 4335 a Fl(key@/path/to/executable)-2 4518 y
+SDict begin H.S end
+ -2
+4518 a -2 4518 a
+SDict begin 13 H.A end
+ -2 4518 a -2 4518 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3611) cvn H.B /DEST pdfmark
+end
+ -2 4518 a 396 4609
+a FC(This)g(will)g(read)e(the)h(\002le)1127 4609 y
+SDict begin H.S end
+ 1127
+4609 a 1127 4609 a
+SDict begin 13 H.A end
+ 1127 4609 a 1127 4609 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3612) cvn H.B /DEST pdfmark
+end
+ 1127 4609
+a Fr(/path/to/executable)p FC(,)e(add)h(the)h(k)o(e)o(y)2422
+4609 y
+SDict begin H.S end
+ 2422 4609 a 2422 4609 a
+SDict begin 13 H.A end
+ 2422 4609 a 2422 4609
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3613) cvn H.B /DEST pdfmark
+end
+ 2422 4609 a Fx(k)o(e)n(y)p FC(,)g(which)f(should)h(not)f(contain)h(a)
+g('@')396 4717 y(\(because)f(it)h(has)f(a)h(special)g(meaning,)d
+(separating)h(k)o(e)o(y)h(from)g(path\),)f(o)o(v)o(erwrite)f(an)o(y)i
+(k)o(e)o(y)g(pre)n(viously)e(set)j(by)f(this)396 4825
+y(command,)f(and)i(write)g(the)g(ne)n(w)g(binary)f(to)i(the)f(location)
+2105 4825 y
+SDict begin H.S end
+ 2105 4825 a 2105 4825 a
+SDict begin 13 H.A end
+ 2105 4825 a 2105
+4825 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3614) cvn H.B /DEST pdfmark
+end
+ 2105 4825 a Fr(/path/to/executable.out)d FC(\(i.e.)j(with)g
+(.out)396 4932 y(appended\).)e(Y)-9 b(ou)19 b(should)g(then)h(cop)o(y)f
+(the)i(ne)n(w)f(binary)e(to)j(the)f(location)f(of)h(the)g(old)g(one)g
+(\(i.e.)g(o)o(v)o(erwrite)e(the)i(old)396 5040 y(one\).)-2
+5066 y
+SDict begin H.S end
+ -2 5066 a -2 5066 a
+SDict begin 13 H.A end
+ -2 5066 a -2 5066 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:KEYPAD) cvn H.B /DEST pdfmark
+end
+ -2 5066
+a Black 3620 5805 a Fx(101)p Black eop end
+%%Page: 102 107
+TeXDict begin 102 106 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.102) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2799 104 a
+Fx(Chapter)20 b(11.)f(Security)h(Design)p Black -2 330
+a Fu(11.2.)39 b(Integrity)f(of)h(the)g(e)n(x)o(ecutab)o(le)2133
+330 y
+SDict begin H.S end
+ 2133 330 a 2133 330 a
+SDict begin 22.464 H.A end
+ 2133 330 a 2133 330 a
+SDict begin [ /View [/XYZ H.V] /Dest (13.70.1) cvn H.B /DEST pdfmark
+end
+ 2133
+330 a -2 528 a
+SDict begin H.S end
+ -2 528 a -2 528 a
+SDict begin 13 H.A end
+ -2 528 a -2 528 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3617) cvn H.B /DEST pdfmark
+end
+ -2
+528 a 396 604 a FC(Each)20 b(samhain)f(e)o(x)o(ecutable)g(contains)g(a)
+i(compiled-in)d(k)o(e)o(y)-5 b(,)19 b(that)h(is)h(used)f(when)g(the)g
+(signatures)f(of)h(emails)396 712 y(and/or)f(log\002le)h(entries)g(are)
+g(v)o(eri\002ed.)f(By)i(def)o(ault,)e(a)i(cryptographically)16
+b(strong)j(random)g(k)o(e)o(y)g(is)i(generated)e(by)396
+820 y(the)518 820 y
+SDict begin H.S end
+ 518 820 a 518 820 a
+SDict begin 13 H.A end
+ 518 820 a 518
+820 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3618) cvn H.B /DEST pdfmark
+end
+ 518 820 a Fy(con\002gur)o(e)h FC(script)g(at)h(compile)e(time.)h
+(Thus,)g(each)g(b)n(uild)f(is)i(unique,)e(and)h(signature)f(v)o
+(eri\002cation)f(will)j(f)o(ail)g(if)396 928 y(a)g(dif)n(ferent)d(b)n
+(uild)i(is)h(used,)f(e)o(xcept)f(if)i(the)f(compiled-in)e(k)o(e)o(y)h
+(w)o(as)i(set)g(to)g(a)f(common)f(v)n(alue)g(for)h(both)f(b)n(uilds.)-2
+1112 y
+SDict begin H.S end
+ -2 1112 a -2 1112 a
+SDict begin 13 H.A end
+ -2 1112 a -2 1112 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3619) cvn H.B /DEST pdfmark
+end
+ -2 1112
+a 396 1202 a FC(T)-7 b(o)21 b(set)g(a)f(user)n(-de\002ned)f(k)o(e)o(y)
+-5 b(,)19 b(there)g(is)i(an)g(option)-2 1386 y
+SDict begin H.S end
+ -2 1386
+a -2 1386 a
+SDict begin 13 H.A end
+ -2 1386 a -2 1386 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3620) cvn H.B /DEST pdfmark
+end
+ -2 1386 a -2 1386 a
+SDict begin H.S end
+ -2
+1386 a -2 1386 a
+SDict begin 13 H.A end
+ -2 1386 a -2 1386 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3621) cvn H.B /DEST pdfmark
+end
+ -2 1386 a 396 1476
+a Fy(./con\002gur)o(e)e(--enable-base=)1310 1476 y
+SDict begin H.S end
+ 1310
+1476 a 1310 1476 a
+SDict begin 13 H.A end
+ 1310 1476 a 1310 1476 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3622) cvn H.B /DEST pdfmark
+end
+ 1310 1476
+a Fl(B1,B2)-2 1659 y
+SDict begin H.S end
+ -2 1659 a -2 1659 a
+SDict begin 13 H.A end
+ -2 1659 a -2
+1659 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3623) cvn H.B /DEST pdfmark
+end
+ -2 1659 a 396 1750 a FC(where)h(B1,B2)g(should)f(be)h(tw)o(o)h
+(inte)o(gers)e(in)i(the)f(range)f(0...2147483647.)-2
+1934 y
+SDict begin H.S end
+ -2 1934 a -2 1934 a
+SDict begin 13 H.A end
+ -2 1934 a -2 1934 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3624) cvn H.B /DEST pdfmark
+end
+ -2 1934
+a 396 2024 a FC(The)h(k)o(e)o(y)g(generated)e(by)1132
+2024 y
+SDict begin H.S end
+ 1132 2024 a 1132 2024 a
+SDict begin 13 H.A end
+ 1132 2024 a 1132 2024
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3625) cvn H.B /DEST pdfmark
+end
+ 1132 2024 a Fy(con\002gur)o(e)h FC(is)i(printed)e(in)i(the)f
+(con\002gure)e(script')-5 b(s)21 b(output.)e(It)h(is)h(recommended)c
+(that)396 2132 y(you)j(sa)n(v)o(e)g(this)h(k)o(e)o(y)e(and)h(use)g(it)h
+(for)f(further)e(b)n(uilds.)-2 2316 y
+SDict begin H.S end
+ -2 2316 a -2 2316
+a
+SDict begin 13 H.A end
+ -2 2316 a -2 2316 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3626) cvn H.B /DEST pdfmark
+end
+ -2 2316 a 396 2406 a FC(Whene)n(v)o(er)h(you)g
+(try)h(to)g(v)o(erify)f(the)h(inte)o(grity)f(of)h(e-mails)g(or)g(log)g
+(\002le)h(entries,)f(this)h(compiled-in)d(k)o(e)o(y)h(is)i(used)f(\(to)
+396 2514 y(be)g(more)g(speci\002c:)g(the)g(signature)g(k)o(e)o(y)f(is)i
+(encrypted)d(with)j(a)f(one-time)f(pad)h(generated)e(from)h(the)i
+(message)396 2622 y(itself)g(and)f(the)g(compiled-in)e(k)o(e)o(y\).)h
+(As)i(a)f(result,)g(if)h(e)o(x)o(ecutable)d(B)j(is)g(used)f(to)h(v)o
+(erify)e(the)h(inte)o(grity)f(of)g(e-mails)396 2730 y(sent)i(by)f(e)o
+(x)o(ecutable)e(A,)1129 2730 y
+SDict begin H.S end
+ 1129 2730 a 1129 2730
+a
+SDict begin 13 H.A end
+ 1129 2730 a 1129 2730 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3627) cvn H.B /DEST pdfmark
+end
+ 1129 2730 a Fx(inte)m(grity)i(veri\002cation)
+f(will)i(fail)g FC(if)f(the)h(compiled-in)d(k)o(e)o(ys)h(of)h(A)h(and)f
+(B)h(do)f(not)f(match.)396 2838 y(This)i(can)f(be)g(used)g(to)g(check)f
+(the)i(inte)o(grity)d(of)i(A)h(in)f(a)h(straightforw)o(ard)d(w)o(ay)i
+(\(check)f(e-mails)h(on)g(another)f(host,)396 2946 y(using)h(a)h(dif)n
+(ferent)d(e)o(x)o(ecutable)g(compiled)h(with)h(the)h(same)f(k)o(e)o
+(y\).)-2 3130 y
+SDict begin H.S end
+ -2 3130 a -2 3130 a
+SDict begin 13 H.A end
+ -2 3130 a -2 3130
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3628) cvn H.B /DEST pdfmark
+end
+ -2 3130 a 396 3219 a FC(Ob)o(viously)-5 b(,)18 b(this)j(scheme)f(can)
+g(be)g(brok)o(en,)e(b)n(ut)i(it)h(requires)e(an)h(intruder)f(to)h
+(disassemble/decompile)e(and)396 3327 y(analyze)i(the)g(e)o(xisting)
+1075 3327 y
+SDict begin H.S end
+ 1075 3327 a 1075 3327 a
+SDict begin 13 H.A end
+ 1075 3327 a 1075
+3327 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3629) cvn H.B /DEST pdfmark
+end
+ 1075 3327 a FC(samhain)g(e)o(x)o(ecutable,)e(rather)h(than)h
+(simply)g(replace)f(it)i(with)f(a)h(precompiled)d(trojan.)-2
+3511 y
+SDict begin H.S end
+ -2 3511 a -2 3511 a
+SDict begin 13 H.A end
+ -2 3511 a -2 3511 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3630) cvn H.B /DEST pdfmark
+end
+ -2 3511
+a 396 3601 a FC(Ho)n(we)n(v)o(er)m(,)g(if)j(you)e(use)i(a)1139
+3601 y
+SDict begin H.S end
+ 1139 3601 a 1139 3601 a
+SDict begin 13 H.A end
+ 1139 3601 a 1139 3601
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3631) cvn H.B /DEST pdfmark
+end
+ 1139 3601 a Fx(pr)m(ecompiled)1574 3601 y
+SDict begin H.S end
+ 1574 3601
+a 1574 3601 a
+SDict begin 13 H.A end
+ 1574 3601 a 1574 3601 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3632) cvn H.B /DEST pdfmark
+end
+ 1574 3601 a FC(samhain)f(e)o(x)o
+(ecutable)e(\(e.g.)h(from)g(a)i(binary)e(distrib)n(ution\),)f(in)i
+(principle)396 3709 y(a)h(prospecti)n(v)o(e)d(intruder)h(could)g
+(easily)h(obtain)g(a)g(cop)o(y)g(of)f(the)i(e)o(x)o(ecutable)d(and)i
+(analyze)f(it)i(in)f(adv)n(ance.)f(This)396 3817 y(will)i(enable)f
+(her/him)f(to)h(generate)f(f)o(ak)o(e)h(audit)g(trails)h(and/or)d
+(generate)h(a)i(trojan)e(for)h(this)h(particular)e(binary)396
+3925 y(distrib)n(ution.)-2 4092 y
+SDict begin H.S end
+ -2 4092 a -2 4092 a
+SDict begin 13 H.A end
+
+-2 4092 a -2 4092 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3633) cvn H.B /DEST pdfmark
+end
+ -2 4092 a 396 4199 a FC(F)o(or)h(this)h(reason,)e
+(it)i(is)g(possible)f(for)g(the)g(user)g(to)g(add)g(more)f(k)o(e)o(y)h
+(material)g(into)f(the)i(binary)e(e)o(x)o(ecutable.)f(This)i(is)396
+4307 y(done)f(with)i(the)f(command:)-2 4474 y
+SDict begin H.S end
+ -2 4474
+a -2 4474 a
+SDict begin 13 H.A end
+ -2 4474 a -2 4474 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3634) cvn H.B /DEST pdfmark
+end
+ -2 4474 a -2 4474 a
+SDict begin H.S end
+ -2
+4474 a -2 4474 a
+SDict begin 13 H.A end
+ -2 4474 a -2 4474 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3635) cvn H.B /DEST pdfmark
+end
+ -2 4474 a 396 4581
+a Fy(samhain)h(--add-k)o(ey=)1106 4581 y
+SDict begin H.S end
+ 1106 4581 a
+1106 4581 a
+SDict begin 13 H.A end
+ 1106 4581 a 1106 4581 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3636) cvn H.B /DEST pdfmark
+end
+ 1106 4581 a Fl
+(key@/path/to/executable)-2 4764 y
+SDict begin H.S end
+ -2 4764 a -2 4764
+a
+SDict begin 13 H.A end
+ -2 4764 a -2 4764 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3637) cvn H.B /DEST pdfmark
+end
+ -2 4764 a 396 4855 a FC(This)g(will)g(read)e(the)
+h(\002le)1127 4855 y
+SDict begin H.S end
+ 1127 4855 a 1127 4855 a
+SDict begin 13 H.A end
+ 1127 4855
+a 1127 4855 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3638) cvn H.B /DEST pdfmark
+end
+ 1127 4855 a Fr(/path/to/executable)p FC(,)e(add)h(the)h
+(k)o(e)o(y)2422 4855 y
+SDict begin H.S end
+ 2422 4855 a 2422 4855 a
+SDict begin 13 H.A end
+ 2422 4855
+a 2422 4855 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3639) cvn H.B /DEST pdfmark
+end
+ 2422 4855 a Fx(k)o(e)n(y)p FC(,)g(which)f(should)h(not)f
+(contain)h(a)g('@')396 4963 y(\(because)f(it)h(has)f(a)h(special)g
+(meaning,)d(separating)h(k)o(e)o(y)h(from)g(path\),)f(o)o(v)o(erwrite)f
+(an)o(y)i(k)o(e)o(y)g(pre)n(viously)e(set)j(by)f(this)396
+5071 y(command,)f(and)i(write)g(the)g(ne)n(w)g(binary)f(to)i(the)f
+(location)2105 5071 y
+SDict begin H.S end
+ 2105 5071 a 2105 5071 a
+SDict begin 13 H.A end
+ 2105 5071
+a 2105 5071 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3640) cvn H.B /DEST pdfmark
+end
+ 2105 5071 a Fr(/path/to/executable.out)d
+FC(\(i.e.)j(with)g(.out)396 5179 y(appended\).)-2 5197
+y
+SDict begin H.S end
+ -2 5197 a -2 5197 a
+SDict begin 11.7 H.A end
+ -2 5197 a -2 5197 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3641) cvn H.B /DEST pdfmark
+end
+ -2 5197 a Black
+3620 5805 a Fx(102)p Black eop end
+%%Page: 103 108
+TeXDict begin 103 107 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.103) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2799 104 a
+Fx(Chapter)20 b(11.)f(Security)h(Design)p Black 745 242
+2668 17 v 745 797 17 555 v 1790 396 a Fp(W)-7 b(ARNING)786
+563 y
+SDict begin H.S end
+ 786 563 a 786 563 a
+SDict begin 11.7 H.A end
+ 786 563 a 786 563 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3643) cvn H.B /DEST pdfmark
+end
+ 786 563
+a 96 x Fv(Using)20 b(a)h(precompiled)c(samhain)i(e)n(x)n(ecutab)o(le)e
+(from)k(a)f(binar)r(y)f(pac)o(kage)g(distr)q(ib)o(ution)e(is)786
+756 y(not)j(recommended)e(unless)i(y)o(ou)g(add)f(in)h(k)o(e)o(y)g
+(mater)q(ial)f(as)h(descr)q(ibed)f(abo)o(v)n(e)o(.)p
+3396 797 17 555 v 745 813 2668 17 v -2 907 a
+SDict begin H.S end
+ -2 907 a
+-2 907 a
+SDict begin 13 H.A end
+ -2 907 a -2 907 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CLIENT-INTEGRITY) cvn H.B /DEST
+pdfmark end
+ -2 907 a 320 x Fu(11.3.)39
+b(Client)f(e)n(x)o(ecutab)o(le)f(integrity)2140 1227
+y
+SDict begin H.S end
+ 2140 1227 a 2140 1227 a
+SDict begin 22.464 H.A end
+ 2140 1227 a 2140 1227 a
+SDict begin [ /View [/XYZ H.V] /Dest (13.71.1) cvn H.B /DEST pdfmark
+end
+ 2140
+1227 a -2 1425 a
+SDict begin H.S end
+ -2 1425 a -2 1425 a
+SDict begin 13 H.A end
+ -2 1425 a -2 1425
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3646) cvn H.B /DEST pdfmark
+end
+ -2 1425 a 396 1501 a FC(If)20 b(you)g(use)749 1501
+y
+SDict begin H.S end
+ 749 1501 a 749 1501 a
+SDict begin 13 H.A end
+ 749 1501 a 749 1501 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3647) cvn H.B /DEST pdfmark
+end
+ 749 1501
+a FC(samhain)f(in)i(a)f(client/serv)o(er)f(setup,)h(the)g(client)h
+(needs)e(to)i(authenticate)e(to)h(the)g(serv)o(er)f(using)h(a)396
+1609 y(passw)o(ord)g(that)g(is)h(located)f(within)g(the)g(client)g(e)o
+(x)o(ecutable,)e(at)j(one)e(of)h(se)n(v)o(eral)g(possible)g(places)g
+(\(where)f(the)396 1717 y(v)n(alid)h(place)g(for)f(your)g(particular)g
+(b)n(uild)h(is)h(chosen)f(at)g(random)f(at)h(compile)g(time\).)f(If)h
+(the)h(passw)o(ord)e(is)i(set,)g(the)396 1825 y(alternati)n(v)o(e)e
+(places)h(are)g(\002lled)h(with)f(random)f(v)n(alues.)-2
+2009 y
+SDict begin H.S end
+ -2 2009 a -2 2009 a
+SDict begin 13 H.A end
+ -2 2009 a -2 2009 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3648) cvn H.B /DEST pdfmark
+end
+ -2 2009
+a 396 2098 a FC(Upon)g(authentication)g(to)h(the)g(serv)o(er)m(,)f
+(client)h(and)g(serv)o(er)f(ne)o(gotiate)g(ephemeral)g(k)o(e)o(ys)g
+(for)h(signing)f(and)396 2206 y(encrypting)f(further)h(communication.)
+-2 2390 y
+SDict begin H.S end
+ -2 2390 a -2 2390 a
+SDict begin 13 H.A end
+ -2 2390 a -2 2390 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3649) cvn H.B /DEST pdfmark
+end
+ -2
+2390 a 396 2480 a FC(This)i(implies)f(that)g(an)g(intruder)f(needs)h
+(to)g(analyse)g(the)g(running)e(process)i(to)g(obtain)f(kno)n(wledge)f
+(of)i(the)396 2588 y(signing/encryption)d(k)o(e)o(ys)j(in)g(order)f(to)
+h(successfully)g(f)o(ak)o(e)g(a)g(v)n(alid)g(communication)d(with)k
+(the)f(serv)o(er)m(,)f(or)h(she)396 2696 y(needs)g(to)g
+(analyse/disassemble)f(the)i(e)o(x)o(ecutable)d(in)i(order)f(to)i
+(\002nd)e(the)i(passw)o(ord.)-2 2725 y
+SDict begin H.S end
+ -2 2725 a -2 2725
+a
+SDict begin 13 H.A end
+ -2 2725 a -2 2725 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SERVER-SECURITY) cvn H.B /DEST
+pdfmark end
+ -2 2725 a 359 x Fu(11.4.)39 b(The)g(ser)q(ver)
+1085 3084 y
+SDict begin H.S end
+ 1085 3084 a 1085 3084 a
+SDict begin 22.464 H.A end
+ 1085 3084 a 1085
+3084 a
+SDict begin [ /View [/XYZ H.V] /Dest (13.72.1) cvn H.B /DEST pdfmark
+end
+ 1085 3084 a -2 3252 a
+SDict begin H.S end
+ -2 3252 a -2 3252 a
+SDict begin 13 H.A end
+ -2 3252
+a -2 3252 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3652) cvn H.B /DEST pdfmark
+end
+ -2 3252 a 396 3358 a FC(The)20 b(serv)o(er)f(does)h(not)g
+(need)g(root)f(pri)n(vile)o(ges.)g(Therefore,)f(if)i(it)h(is)g(started)
+f(with)h(root)e(pri)n(vile)o(ges,)g(it)i(will)g(drop)396
+3466 y(them)f(irre)n(v)n(ocably)e(after)i(startup.)g(If)g(a)g(pri)n
+(vile)o(ged)e(port)i(\(belo)n(w)f(1024\))f(must)j(be)f(opened,)e(the)i
+(serv)o(er)g(will)h(\002rst)396 3574 y(open)e(it,)i(then)f(drop)f
+(root,)g(and)h(only)f(thereafter)g(accept)h(an)o(y)f(connection)f(on)i
+(the)g(port.)-2 3758 y
+SDict begin H.S end
+ -2 3758 a -2 3758 a
+SDict begin 13 H.A end
+ -2 3758 a
+-2 3758 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3653) cvn H.B /DEST pdfmark
+end
+ -2 3758 a 396 3848 a FC(The)g(serv)o(er)f(can)h(be)h
+(chrooted,)d(and)h(actually)h(has)g(a)h(con\002g)e(\002le)i(option)e
+(to)h(do)g(so)h(by)e(itself)i(\(which)f(means)f(that)396
+3955 y(you)h(don')o(t)e(need)i(to)g(cop)o(y)f(shared)h(libraries)f
+(into)h(the)h(chroot)e(en)m(vironment\).)-2 4139 y
+SDict begin H.S end
+ -2
+4139 a -2 4139 a
+SDict begin 13 H.A end
+ -2 4139 a -2 4139 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3654) cvn H.B /DEST pdfmark
+end
+ -2 4139 a 396 4229
+a FC(\(If)h(your)f(clients)h(are)h(con\002gured)c(to)k(do)n(wnload)d
+(baseline)i(databases)g(and)f(con\002guration)f(\002les)j(from)e(the)
+396 4337 y(serv)o(er:\))g(The)h(serv)o(er)g(does)f(not)h(need)g(write)g
+(access)h(to)f(the)h(directory)d(where)i(client)g(baseline)g(databases)
+f(and)396 4445 y(con\002guration)f(\002les)j(are)f(stored,)f(and)h(it)h
+(w)o(ould)e(be)i(wise)g(to)f(den)o(y)f(such)h(access)h(\(cho)n(wn)d(to)
+j(some)f(other)f(user)m(,)396 4553 y(and)h(allo)n(w)g(group)f(read)g
+(access)i(for)e(the)i(serv)o(er\).)-2 4582 y
+SDict begin H.S end
+ -2 4582
+a -2 4582 a
+SDict begin 13 H.A end
+ -2 4582 a -2 4582 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DESIGN) cvn H.B /DEST pdfmark
+end
+ -2 4582 a 359 x Fu(11.5.)39
+b(General)893 4941 y
+SDict begin H.S end
+ 893 4941 a 893 4941 a
+SDict begin 22.464 H.A end
+ 893 4941 a
+893 4941 a
+SDict begin [ /View [/XYZ H.V] /Dest (13.73.1) cvn H.B /DEST pdfmark
+end
+ 893 4941 a -2 5109 a
+SDict begin H.S end
+ -2 5109 a -2 5109 a
+SDict begin 13 H.A end
+ -2
+5109 a -2 5109 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3657) cvn H.B /DEST pdfmark
+end
+ -2 5109 a 396 5215 a FC(Ob)o(viously)-5
+b(,)18 b(a)j(security)e(application)g(should)g(not)h(open)f(up)h
+(security)g(holes)g(by)f(itself.)i(Therefore,)d(an)i(inportant)396
+5323 y(aspect)g(in)h(the)f(de)n(v)o(elopment)d(of)1368
+5323 y
+SDict begin H.S end
+ 1368 5323 a 1368 5323 a
+SDict begin 13 H.A end
+ 1368 5323 a 1368 5323
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3658) cvn H.B /DEST pdfmark
+end
+ 1368 5323 a FC(samhain)j(has)g(been)g(the)g(security)f(of)h(the)h
+(program)d(itself.)i(While)3326 5323 y
+SDict begin H.S end
+ 3326 5323 a 3326
+5323 a
+SDict begin 13 H.A end
+ 3326 5323 a 3326 5323 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3659) cvn H.B /DEST pdfmark
+end
+ 3326 5323 a FC(samhain)p
+Black 3620 5805 a Fx(103)p Black eop end
+%%Page: 104 109
+TeXDict begin 104 108 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.104) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2799 104 a
+Fx(Chapter)20 b(11.)f(Security)h(Design)p Black 396 309
+a FC(comes)g(with)h(no)e(w)o(arranty)g(\(see)i(the)f(license\),)g(much)
+f(ef)n(fort)g(has)h(been)g(in)m(v)o(ested)f(to)h(identify)f(security)
+396 417 y(problems)g(and)h(a)n(v)n(oid)g(them.)-2 601
+y
+SDict begin H.S end
+ -2 601 a -2 601 a
+SDict begin 13 H.A end
+ -2 601 a -2 601 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3660) cvn H.B /DEST pdfmark
+end
+ -2 601 a 396 691
+a FC(As)h(the)f(client)h(requires)e(root)g(pri)n(vile)o(ges,)g(while)h
+(the)g(serv)o(er)g(does)g(not,)f(the)i(clients)f(has)g(no)g(open)f
+(sock)o(et)h(to)396 799 y(listen)h(on)f(the)g(netw)o(ork.)f
+(Consequently)-5 b(,)17 b(all)k(client/serv)o(er)e(connections)f(are)j
+(initiated)e(by)h(the)g(client.)-2 983 y
+SDict begin H.S end
+ -2 983 a -2
+983 a
+SDict begin 13 H.A end
+ -2 983 a -2 983 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3661) cvn H.B /DEST pdfmark
+end
+ -2 983 a 396 1073 a FC(T)-7 b(o)21
+b(a)n(v)n(oid)f(b)n(uf)n(fer)e(o)o(v)o(er\003o)n(ws,)h(only)g(secure)h
+(string)g(handling)e(functions)h(are)h(used)g(to)g(limit)h(the)f
+(amount)f(of)h(data)396 1180 y(copied)f(into)h(a)h(b)n(uf)n(fer)e(to)h
+(the)g(size)h(of)f(the)g(respecti)n(v)o(e)f(b)n(uf)n(fer)g(\(unless)h
+(it)h(is)g(kno)n(wn)e(in)h(adv)n(ance)f(that)h(the)g(data)396
+1288 y(will)h(\002t)g(into)f(the)g(b)n(uf)n(fer\).)-2
+1469 y
+SDict begin H.S end
+ -2 1469 a -2 1469 a
+SDict begin 13 H.A end
+ -2 1469 a -2 1469 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3662) cvn H.B /DEST pdfmark
+end
+ -2 1469
+a 396 1562 a FC(On)g(startup,)g(the)g(timezone)f(is)i(sa)n(v)o(ed,)f
+(and)g(all)g(en)m(vironment)e(v)n(ariables)h(are)h(set)h(to)f(zero)g
+(thereafter)-5 b(.)19 b(Signal)396 1670 y(handlers,)g(timers,)h(and)g
+(\002le)h(creation)e(mask)h(are)g(reset,)g(and)g(the)g(core)g(dump)f
+(size)h(is)i(set)e(to)h(zero.)e(If)h(started)g(as)396
+1778 y(daemon,)f(all)h(\002le)h(descriptors)e(are)h(closed,)g(and)g
+(the)g(\002rst)h(three)f(streams)g(are)g(opened)f(to)3034
+1778 y
+SDict begin H.S end
+ 3034 1778 a 3034 1778 a
+SDict begin 13 H.A end
+ 3034 1778 a 3034 1778
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3663) cvn H.B /DEST pdfmark
+end
+ 3034 1778 a Fr(/dev/null)p FC(.)-2 1962 y
+SDict begin H.S end
+ -2 1962 a
+-2 1962 a
+SDict begin 13 H.A end
+ -2 1962 a -2 1962 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3664) cvn H.B /DEST pdfmark
+end
+ -2 1962 a 396 2052 a FC(If)h(e)o(xternal)
+f(programs)g(are)h(used)g(\(in)g(the)g(entrop)o(y)e(gatherer)m(,)g(if)
+2279 2052 y
+SDict begin H.S end
+ 2279 2052 a 2279 2052 a
+SDict begin 13 H.A end
+ 2279 2052 a 2279
+2052 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3665) cvn H.B /DEST pdfmark
+end
+ 2279 2052 a Fr(/dev/random)h FC(is)i(not)e(a)n(v)n(ailable\),)h
+(the)o(y)f(are)396 2160 y(in)m(v)n(ok)o(ed)g(directly)g(\(without)g
+(using)h(the)g(shell\),)g(with)g(the)h(full)f(path,)f(and)h(with)g(a)h
+(limited)f(en)m(vironment)d(\(by)396 2268 y(def)o(ault)j(only)f(the)h
+(timezone\).)f(Pri)n(vile)o(ged)g(credentials)g(are)h(dropped)e(before)
+h(calling)g(the)i(e)o(xternal)e(program.)-2 2452 y
+SDict begin H.S end
+ -2
+2452 a -2 2452 a
+SDict begin 13 H.A end
+ -2 2452 a -2 2452 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3666) cvn H.B /DEST pdfmark
+end
+ -2 2452 a 396 2542
+a FC(W)m(ith)i(respect)f(to)g(its)h(o)n(wn)f(\002les)h
+(\(con\002guration,)c(database,)i(the)h(log)g(\002le,)h(and)f(its)h
+(lock\),)e(on)h(access)3365 2542 y
+SDict begin H.S end
+ 3365 2542 a 3365 2542
+a
+SDict begin 13 H.A end
+ 3365 2542 a 3365 2542 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3667) cvn H.B /DEST pdfmark
+end
+ 3365 2542 a FC(samhain)396
+2650 y(checks)g(the)g(complete)f(path)h(for)g(write)g(access)h(by)e
+(untrusted)g(users.)h(Some)g(care)g(has)h(been)e(tak)o(en)h(to)g(a)n(v)
+n(oid)g(race)396 2758 y(conditions)f(on)h(\002le)h(access)f(as)h(f)o
+(ar)f(as)h(possible.)-2 2942 y
+SDict begin H.S end
+ -2 2942 a -2 2942 a
+SDict begin 13 H.A end
+ -2
+2942 a -2 2942 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3668) cvn H.B /DEST pdfmark
+end
+ -2 2942 a 396 3032 a FC(Critical)g(information,)d
+(including)g(session)j(k)o(e)o(ys)e(and)h(data)g(read)g(from)f(\002les)
+i(for)f(computing)e(checksums,)g(is)396 3140 y(k)o(ept)i(in)g(memory)f
+(for)h(which)f(paging)g(is)i(disabled)f(\(if)g(the)g(operating)e
+(system)j(supports)e(this\).)h(This)g(w)o(ay)g(it)h(is)396
+3248 y(a)n(v)n(oided)f(that)g(such)g(information)e(is)j(transfered)d
+(to)j(a)f(persistent)g(sw)o(ap)h(store)f(medium,)f(where)g(it)i(might)f
+(be)396 3356 y(accessible)h(to)f(unauthorized)d(users.)-2
+3522 y
+SDict begin H.S end
+ -2 3522 a -2 3522 a
+SDict begin 13 H.A end
+ -2 3522 a -2 3522 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3669) cvn H.B /DEST pdfmark
+end
+ -2 3522
+a 396 3630 a FC(Random)i(numbers)g(are)h(generated)f(from)g(a)h
+(pseudo-random)d(number)h(generator)g(\(PRNG\))j(with)f(a)h(period)e
+(of)396 3738 y(2^88)g(\(actually)h(by)g(mixing)f(the)h(output)f(from)g
+(three)h(instances)g(of)g(the)g(PRNG\).)g(The)g(internal)g(state)h(of)e
+(the)396 3845 y(PRNG)i(is)h(seeded)d(from)g(a)i(strong)e(entrop)o(y)g
+(source)g(\(if)h(a)n(v)n(ailable,)2377 3845 y
+SDict begin H.S end
+ 2377 3845
+a 2377 3845 a
+SDict begin 13 H.A end
+ 2377 3845 a 2377 3845 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3670) cvn H.B /DEST pdfmark
+end
+ 2377 3845 a Fr(/dev/random)f
+FC(is)i(used,)f(else)g(lots)h(of)396 3953 y(system)f(statistics)h(is)g
+(pooled)d(and)h(mix)o(ed)f(with)i(a)g(hash)g(function\).)d(The)i(PRNG)i
+(is)f(re-seeded)e(from)h(the)h(entrop)o(y)396 4061 y(source)g(at)g(re)o
+(gular)f(interv)n(als)h(\(one)f(hour\).)-2 4245 y
+SDict begin H.S end
+ -2
+4245 a -2 4245 a
+SDict begin 13 H.A end
+ -2 4245 a -2 4245 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3671) cvn H.B /DEST pdfmark
+end
+ -2 4245 a 396 4335
+a FC(Numbers)g(generated)g(from)g(a)h(PRNG)h(can)f(be)g(predicted,)e
+(if)j(the)f(internal)f(state)i(of)f(the)g(PRNG)h(can)f(be)g(inferred.)
+396 4443 y(T)-7 b(o)21 b(a)n(v)n(oid)f(this,)g(the)g(internal)g(state)h
+(of)e(the)i(PRNG)g(is)g(hidden)e(by)g(hashing)g(the)i(output)e(with)h
+(a)h(hash)f(function.)p Black 3620 5805 a Fx(104)p Black
+eop end
+%%Page: 105 110
+TeXDict begin 105 109 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.105) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black -2 226
+a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:COMPILATION-OPTIONS) cvn H.B
+/DEST pdfmark end
+ -2 226 a 125 x
+Fz(Appendix)48 b(A.)g(List)g(of)g(options)h(f)m(or)f(the)g
+(./con\002gure)-2 575 y(script)467 575 y
+SDict begin H.S end
+ 467 575 a 467
+575 a
+SDict begin 26.957 H.A end
+ 467 575 a 467 575 a
+SDict begin [ /View [/XYZ H.V] /Dest (14.0) cvn H.B /DEST pdfmark end
+ 467 575 a -2 664 a
+SDict begin H.S end
+ -2 664 a
+-2 664 a
+SDict begin 13 H.A end
+ -2 664 a -2 664 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:COMPILATION-OPTIONS-GENERAL)
+cvn H.B /DEST pdfmark end
+ -2 664 a 342 x Fu(A.1.)39
+b(General)837 1006 y
+SDict begin H.S end
+ 837 1006 a 837 1006 a
+SDict begin 22.464 H.A end
+ 837 1006 a
+837 1006 a
+SDict begin [ /View [/XYZ H.V] /Dest (14.74.1) cvn H.B /DEST pdfmark
+end
+ 837 1006 a -2 1008 a
+SDict begin H.S end
+ -2 1008 a -2 1008 a
+SDict begin 13 H.A end
+ -2
+1008 a -2 1008 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3676) cvn H.B /DEST pdfmark
+end
+ -2 1008 a -2 1132 a
+SDict begin H.S end
+ -2 1132 a -2 1132
+a
+SDict begin 13 H.A end
+ -2 1132 a -2 1132 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3678) cvn H.B /DEST pdfmark
+end
+ -2 1132 a 396 1238 a FC(--with-rnd=e)o(gd/de)n
+(v/unix/d)o(ef)o(au)o(lt)-2 1256 y
+SDict begin H.S end
+ -2 1256 a -2 1256
+a
+SDict begin 13 H.A end
+ -2 1256 a -2 1256 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3679) cvn H.B /DEST pdfmark
+end
+ -2 1256 a Black Black 562 1388
+a
+SDict begin H.S end
+ 562 1388 a 562 1388 a
+SDict begin 13 H.A end
+ 562 1388 a 562 1388 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3680) cvn H.B /DEST pdfmark
+end
+ 562 1388
+a FC(The)20 b(entrop)o(y)f(gatherer)f(to)i(use.)h('e)o(gd')d(is)j(the)g
+(Entrop)o(y)d(Gathering)h(Daemon)g(\(EGD\),)g(')l(de)n(v')g(is)562
+1496 y(/de)n(v/random,)e('unix')i(is)i(the)f(b)n(uilt-in)g(Unix)g
+(entrop)o(y)e(gatherer)h(\(similar)h(to)g(EGD\),)g(and)f(')l(def)o
+(ault')g(will)562 1604 y(check)h(for)f(/de)n(v/random)f(\002rst,)i(and)
+g(use)g('unix')f(as)i(f)o(allback.)-2 1699 y
+SDict begin H.S end
+ -2 1699
+a -2 1699 a
+SDict begin 13 H.A end
+ -2 1699 a -2 1699 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3682) cvn H.B /DEST pdfmark
+end
+ -2 1699 a 396 1795 a
+FC(--with-e)o(gd-sock)o(et=N)m(AME)-2 1813 y
+SDict begin H.S end
+ -2 1813
+a -2 1813 a
+SDict begin 13 H.A end
+ -2 1813 a -2 1813 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3683) cvn H.B /DEST pdfmark
+end
+ -2 1813 a Black Black
+562 1944 a
+SDict begin H.S end
+ 562 1944 a 562 1944 a
+SDict begin 13 H.A end
+ 562 1944 a 562 1944
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3684) cvn H.B /DEST pdfmark
+end
+ 562 1944 a FC(The)f(path)g(to)g(the)g(EGD)h(sock)o(et.)f(Def)o(ault)g
+(is)1873 1944 y
+SDict begin H.S end
+ 1873 1944 a 1873 1944 a
+SDict begin 13 H.A end
+ 1873 1944 a 1873
+1944 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3685) cvn H.B /DEST pdfmark
+end
+ 1873 1944 a Fr(localstatedir/lib/samhain/entropy)15
+b FC(\(see)p 0 TeXcolorgray 562 2052 a
+SDict begin H.S end
+ 562 2052 a FC(Section)20
+b(A.5)955 2052 y
+SDict begin 13 H.L end
+ 955 2052 a 955 2052 a
+SDict begin [ /Subtype /Link /Dest (0:PATHS) cvn /H /I /Border [0 0
+0] /Color [1 0 0] H.B /ANN pdfmark end
+ 955 2052 a Black
+-1 w FC(\).)-2 2150 y
+SDict begin H.S end
+ -2 2150 a -2 2150 a
+SDict begin 13 H.A end
+ -2 2150 a -2
+2150 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3688) cvn H.B /DEST pdfmark
+end
+ -2 2150 a 396 2243 a FC(--with-identity=USER)-2
+2261 y
+SDict begin H.S end
+ -2 2261 a -2 2261 a
+SDict begin 13 H.A end
+ -2 2261 a -2 2261 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3689) cvn H.B /DEST pdfmark
+end
+ -2 2261
+a Black Black 562 2392 a
+SDict begin H.S end
+ 562 2392 a 562 2392 a
+SDict begin 13 H.A end
+ 562 2392
+a 562 2392 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3690) cvn H.B /DEST pdfmark
+end
+ 562 2392 a FC(The)g(username)f(to)h(use)h(when)e(dropping)
+f(root)h(pri)n(vile)o(ges)g(\(def)o(ault)2566 2392 y
+SDict begin H.S end
+
+2566 2392 a 2566 2392 a
+SDict begin 13 H.A end
+ 2566 2392 a 2566 2392 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3691) cvn H.B /DEST pdfmark
+end
+ 2566
+2392 a Fx(nobody)p FC(\).)-2 2493 y
+SDict begin H.S end
+ -2 2493 a -2 2493
+a
+SDict begin 13 H.A end
+ -2 2493 a -2 2493 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3693) cvn H.B /DEST pdfmark
+end
+ -2 2493 a 396 2583 a FC(--with-sender=SENDER)-2
+2584 y
+SDict begin H.S end
+ -2 2584 a -2 2584 a
+SDict begin 13 H.A end
+ -2 2584 a -2 2584 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3694) cvn H.B /DEST pdfmark
+end
+ -2 2584
+a Black Black 562 2733 a
+SDict begin H.S end
+ 562 2733 a 562 2733 a
+SDict begin 13 H.A end
+ 562 2733
+a 562 2733 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3695) cvn H.B /DEST pdfmark
+end
+ 562 2733 a FC(The)h(username)f(of)h(the)g(sender)g(for)f
+(e-mail,)h(or)g(a)g(complete)f(e-mail)h(address.)g(If)g(only)f(a)i
+(username)e(is)562 2841 y(gi)n(v)o(en,)785 2841 y
+SDict begin H.S end
+ 785
+2841 a 785 2841 a
+SDict begin 13 H.A end
+ 785 2841 a 785 2841 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3696) cvn H.B /DEST pdfmark
+end
+ 785 2841 a Fx
+(SENDER@{FQDN_of_local_host})e FC(will)k(be)f(used)g(for)g(the)g
+(sender)-5 b(.)19 b(Def)o(ault)h(is)3238 2841 y
+SDict begin H.S end
+ 3238
+2841 a 3238 2841 a
+SDict begin 13 H.A end
+ 3238 2841 a 3238 2841 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3697) cvn H.B /DEST pdfmark
+end
+ 3238 2841
+a Fx(daemon)p FC(.)-2 2942 y
+SDict begin H.S end
+ -2 2942 a -2 2942 a
+SDict begin 13 H.A end
+ -2 2942
+a -2 2942 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3699) cvn H.B /DEST pdfmark
+end
+ -2 2942 a 396 3032 a FC(--with-recipient=ADDR)-2
+3050 y
+SDict begin H.S end
+ -2 3050 a -2 3050 a
+SDict begin 13 H.A end
+ -2 3050 a -2 3050 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3700) cvn H.B /DEST pdfmark
+end
+ -2 3050
+a Black Black 562 3181 a
+SDict begin H.S end
+ 562 3181 a 562 3181 a
+SDict begin 13 H.A end
+ 562 3181
+a 562 3181 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3701) cvn H.B /DEST pdfmark
+end
+ 562 3181 a FC(The)g(recepient\(s\))f(for)g(e-mail,)h
+(seperated)f(by)h(whitespace)g(\(max.)f(8\).)g(Y)-9 b(ou)20
+b(can)g(add)g(recepients)f(in)h(the)562 3289 y(con\002guration)e
+(\002le)j(as)g(well.)-2 3390 y
+SDict begin H.S end
+ -2 3390 a -2 3390 a
+SDict begin 13 H.A end
+ -2
+3390 a -2 3390 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3703) cvn H.B /DEST pdfmark
+end
+ -2 3390 a 396 3480 a FC(--with-trusted=UID)-2
+3481 y
+SDict begin H.S end
+ -2 3481 a -2 3481 a
+SDict begin 13 H.A end
+ -2 3481 a -2 3481 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3704) cvn H.B /DEST pdfmark
+end
+ -2 3481
+a Black Black 562 3629 a
+SDict begin H.S end
+ 562 3629 a 562 3629 a
+SDict begin 13 H.A end
+ 562 3629
+a 562 3629 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3705) cvn H.B /DEST pdfmark
+end
+ 562 3629 a FC(T)m(rusted)f(users)g(\(must)g(be)g(a)h
+(comma-separated)c(list)k(of)f(numerical)f(UIDs\).)h(Only)g(required)e
+(if)j(the)562 3737 y(con\002guration)d(\002le)j(must)f(be)g(on)g(a)g
+(path)g(writeable)g(by)g(others)f(than)2580 3737 y
+SDict begin H.S end
+ 2580
+3737 a 2580 3737 a
+SDict begin 13 H.A end
+ 2580 3737 a 2580 3737 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3706) cvn H.B /DEST pdfmark
+end
+ 2580 3737
+a Fx(r)l(oot)j FC(and)e(the)3000 3737 y
+SDict begin H.S end
+ 3000 3737 a 3000
+3737 a
+SDict begin 13 H.A end
+ 3000 3737 a 3000 3737 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3707) cvn H.B /DEST pdfmark
+end
+ 3000 3737 a Fx(ef)o(fective)g
+FC(user)-5 b(.)-2 3838 y
+SDict begin H.S end
+ -2 3838 a -2 3838 a
+SDict begin 13 H.A end
+ -2 3838
+a -2 3838 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3709) cvn H.B /DEST pdfmark
+end
+ -2 3838 a 396 3928 a FC(--with-timeserv)o(er=HOST)-2
+3929 y
+SDict begin H.S end
+ -2 3929 a -2 3929 a
+SDict begin 13 H.A end
+ -2 3929 a -2 3929 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3710) cvn H.B /DEST pdfmark
+end
+ -2 3929
+a Black Black 562 4078 a
+SDict begin H.S end
+ 562 4078 a 562 4078 a
+SDict begin 13 H.A end
+ 562 4078
+a 562 4078 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3711) cvn H.B /DEST pdfmark
+end
+ 562 4078 a FC(Set)21 b(host)f(address)g(for)g(time)g(serv)
+o(er)f(\(def)o(ault)g(is)j(to)e(use)g(o)n(wn)g(clock\).)f(Y)-9
+b(ou)20 b(can)g(set)h(this)f(in)h(the)562 4186 y(con\002guration)d
+(\002le)j(as)g(well.)f(An)g(address)g(in)g(the)h(con\002guration)c
+(\002le)k(will)g(tak)o(e)f(precedence.)e(Note)i(that)562
+4294 y(the)h(simple)f(')o(time')f(service)h(\(port)f(37/tcp\))g(is)i
+(used.)-2 4395 y
+SDict begin H.S end
+ -2 4395 a -2 4395 a
+SDict begin 13 H.A end
+ -2 4395 a -2 4395
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3713) cvn H.B /DEST pdfmark
+end
+ -2 4395 a 396 4485 a FC(--with-alttimeserv)o(er=HOST)-2
+4486 y
+SDict begin H.S end
+ -2 4486 a -2 4486 a
+SDict begin 13 H.A end
+ -2 4486 a -2 4486 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3714) cvn H.B /DEST pdfmark
+end
+ -2 4486
+a Black Black 562 4634 a
+SDict begin H.S end
+ 562 4634 a 562 4634 a
+SDict begin 13 H.A end
+ 562 4634
+a 562 4634 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3715) cvn H.B /DEST pdfmark
+end
+ 562 4634 a FC(Set)g(host)f(address)g(for)g(an)g(alternati)
+n(v)o(e)f(\(backup\))e(time)k(serv)o(er)-5 b(.)-2 4735
+y
+SDict begin H.S end
+ -2 4735 a -2 4735 a
+SDict begin 13 H.A end
+ -2 4735 a -2 4735 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3717) cvn H.B /DEST pdfmark
+end
+ -2 4735 a 396
+4825 a FC(--enable-stealth=XOR_V)-11 b(AL)-2 4835 y
+SDict begin H.S end
+ -2
+4835 a -2 4835 a
+SDict begin 13 H.A end
+ -2 4835 a -2 4835 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3718) cvn H.B /DEST pdfmark
+end
+ -2 4835 a Black
+Black 562 4974 a
+SDict begin H.S end
+ 562 4974 a 562 4974 a
+SDict begin 13 H.A end
+ 562 4974 a 562
+4974 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3719) cvn H.B /DEST pdfmark
+end
+ 562 4974 a FC(Enable)20 b(stealth)g(mode,)f(and)h(set)h(XOR_V)
+-11 b(AL.)19 b(XOR_V)-11 b(AL)20 b(must)h(be)f(decimal,)f(in)h(the)h
+(range)e(127)g(--)h(255,)562 5082 y(and)g(will)h(be)f(used)g(to)g
+(obfuscate)f(literal)i(strings.)p Black -2 5805 a
+SDict begin H.S end
+ -2
+5805 a -2 5805 a
+SDict begin 13 H.A end
+ -2 5805 a -2 5805 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3726) cvn H.B /DEST pdfmark
+end
+ -2 5805 a 3620 5874
+a Fx(105)p Black eop end
+%%Page: 106 111
+TeXDict begin 106 110 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.106) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2016 104 a
+Fx(Appendix)19 b(A.)h(List)h(of)g(options)e(for)h(the)h(./con\002gur)m
+(e)d(script)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226
+a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3721) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309 a FC(--enable-micro-stealth=XOR_V)-11
+b(AL)-2 319 y
+SDict begin H.S end
+ -2 319 a -2 319 a
+SDict begin 13 H.A end
+ -2 319 a -2 319 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3722) cvn H.B /DEST pdfmark
+end
+ -2
+319 a Black Black 562 458 a
+SDict begin H.S end
+ 562 458 a 562 458 a
+SDict begin 13 H.A end
+ 562 458
+a 562 458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3723) cvn H.B /DEST pdfmark
+end
+ 562 458 a FC(As)675 458 y
+SDict begin H.S end
+ 675 458 a 675 458
+a
+SDict begin 13 H.A end
+ 675 458 a 675 458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3724) cvn H.B /DEST pdfmark
+end
+ 675 458 a Fy(--with-stealth)p FC(,)19
+b(b)n(ut)h(without)f(ste)o(ganographic)e(hidden)i(con\002guration)e
+(\002le.)396 649 y(--enable-nocl=PW)-2 650 y
+SDict begin H.S end
+ -2 650 a
+-2 650 a
+SDict begin 13 H.A end
+ -2 650 a -2 650 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3727) cvn H.B /DEST pdfmark
+end
+ -2 650 a Black Black 562 799
+a
+SDict begin H.S end
+ 562 799 a 562 799 a
+SDict begin 13 H.A end
+ 562 799 a 562 799 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3728) cvn H.B /DEST pdfmark
+end
+ 562 799 a FC(Command)i(line)h
+(parsing)f(is)j(disabled,)d(b)n(ut)h(command-line)d(ar)o(guments)i
+(will)h(be)h(read)e(from)g(STDIN)i(if)562 906 y(the)g(\002rst)f
+(command)f(line)h(ar)o(gument)e(is)j(PW)-8 b(.)21 b(PW="")g(\(empty)e
+(string\))h(will)h(disable)f(command)e(line)562 1014
+y(parsing)h(completely)-5 b(.)19 b(This)h(option)f(may)h(be)g(used)g
+(as)h(addition)d(to)j(--enable\(-micro\)-stealth)16 b(to)k(pre)n(v)o
+(ent)562 1122 y(interacti)n(v)o(e)f(enforcement)f(of)i(telltale)h
+(output.)-2 1223 y
+SDict begin H.S end
+ -2 1223 a -2 1223 a
+SDict begin 13 H.A end
+ -2 1223 a -2 1223
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3730) cvn H.B /DEST pdfmark
+end
+ -2 1223 a 396 1313 a FC(--enable-install-name=N)m(AME)-2
+1314 y
+SDict begin H.S end
+ -2 1314 a -2 1314 a
+SDict begin 13 H.A end
+ -2 1314 a -2 1314 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3731) cvn H.B /DEST pdfmark
+end
+ -2 1314
+a Black Black 562 1463 a
+SDict begin H.S end
+ 562 1463 a 562 1463 a
+SDict begin 13 H.A end
+ 562 1463
+a 562 1463 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3732) cvn H.B /DEST pdfmark
+end
+ 562 1463 a FC(Upon)f(installation,)f(rename)g(e)n(v)o(ery)
+g(\002le)i(from)1954 1463 y
+SDict begin H.S end
+ 1954 1463 a 1954 1463 a
+SDict begin 13 H.A end
+ 1954
+1463 a 1954 1463 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3733) cvn H.B /DEST pdfmark
+end
+ 1954 1463 a Fr(samhain)f FC(\(or)2406
+1463 y
+SDict begin H.S end
+ 2406 1463 a 2406 1463 a
+SDict begin 13 H.A end
+ 2406 1463 a 2406 1463
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3734) cvn H.B /DEST pdfmark
+end
+ 2406 1463 a Fr(yule)g FC(for)g(the)g(serv)o(er\))f(to)3181
+1463 y
+SDict begin H.S end
+ 3181 1463 a 3181 1463 a
+SDict begin 13 H.A end
+ 3181 1463 a 3181 1463
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3735) cvn H.B /DEST pdfmark
+end
+ 3181 1463 a Fr(NAME)p FC(.)h(T)-7 b(o)20 b(be)562 1571
+y(used)g(in)h(conjunction)c(with)k(--with-\(micro-\)stealth.)-2
+1672 y
+SDict begin H.S end
+ -2 1672 a -2 1672 a
+SDict begin 13 H.A end
+ -2 1672 a -2 1672 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3737) cvn H.B /DEST pdfmark
+end
+ -2 1672
+a 396 1762 a FC(--enable-khide=SYSTEM_MAP)-2 1772 y
+SDict begin H.S end
+ -2
+1772 a -2 1772 a
+SDict begin 13 H.A end
+ -2 1772 a -2 1772 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3738) cvn H.B /DEST pdfmark
+end
+ -2 1772 a Black
+Black 562 1911 a
+SDict begin H.S end
+ 562 1911 a 562 1911 a
+SDict begin 13 H.A end
+ 562 1911 a 562
+1911 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3739) cvn H.B /DEST pdfmark
+end
+ 562 1911 a FC(\(Linux)e(only\))g(compile)g(k)o(ernel)h(modules)f
+(to)h(hide)g(all)h(\002les)g(with)f(N)m(AME)g(\(from)562
+2019 y(--enable-install-name=N)m(AME\))c(within)k(the)g(path.)g(By)g
+(def)o(ault,)g(N)m(AME)g(is)h(')-5 b(samhain')19 b(for)h(the)562
+2127 y(client/standalone)f(v)o(ersion,)f(and)i('yule')f(for)h(the)g
+(serv)o(er)-5 b(.)19 b(SYSTEM_MAP)h(must)g(be)g(the)h(path)e(to)i(the)
+562 2235 y
+SDict begin H.S end
+ 562 2235 a 562 2235 a
+SDict begin 13 H.A end
+ 562 2235 a 562 2235
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3740) cvn H.B /DEST pdfmark
+end
+ 562 2235 a Fr(System.map)e FC(\002le)i(corresponding)c(to)j(the)h(k)o
+(ernel.)-2 2336 y
+SDict begin H.S end
+ -2 2336 a -2 2336 a
+SDict begin 13 H.A end
+ -2 2336 a -2 2336
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3742) cvn H.B /DEST pdfmark
+end
+ -2 2336 a 396 2426 a FC(--enable-base=B1,B2)-2 2438
+y
+SDict begin H.S end
+ -2 2438 a -2 2438 a
+SDict begin 13 H.A end
+ -2 2438 a -2 2438 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3743) cvn H.B /DEST pdfmark
+end
+ -2 2438 a Black
+Black 562 2575 a
+SDict begin H.S end
+ 562 2575 a 562 2575 a
+SDict begin 13 H.A end
+ 562 2575 a 562
+2575 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3744) cvn H.B /DEST pdfmark
+end
+ 562 2575 a FC(Set)g(compiled-in)d(k)o(e)o(y)i(for)f(email)i(and)
+e(log\002le)h(signature)f(v)o(eri\002cation.)g(ONE)h(string)g(\(no)f
+(space\))h(made)g(of)562 2683 y(TW)o(O)h(comma-separated)d(inte)o(gers)
+h(in)h(the)g(range)g(0)g(--)g(2147483647.)c(See)p 0 TeXcolorgray
+2808 2683 a
+SDict begin H.S end
+ 2808 2683 a FC(Section)k(11.2)3225 2683 y
+SDict begin 13 H.L end
+
+3225 2683 a 3225 2683 a
+SDict begin [ /Subtype /Link /Dest (0:KEYPAD) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3225 2683 a Black -2 w FC(>)h(for)e(details)i
+(on)562 2791 y(this)g(option.)-2 2892 y
+SDict begin H.S end
+ -2 2892 a -2
+2892 a
+SDict begin 13 H.A end
+ -2 2892 a -2 2892 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3747) cvn H.B /DEST pdfmark
+end
+ -2 2892 a 396 2982 a FC(--enable-db-reload)
+-2 2983 y
+SDict begin H.S end
+ -2 2983 a -2 2983 a
+SDict begin 13 H.A end
+ -2 2983 a -2 2983 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3748) cvn H.B /DEST pdfmark
+end
+ -2
+2983 a Black Black 562 3131 a
+SDict begin H.S end
+ 562 3131 a 562 3131 a
+SDict begin 13 H.A end
+ 562
+3131 a 562 3131 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3749) cvn H.B /DEST pdfmark
+end
+ 562 3131 a FC([CLIENT)f(ONL)-8 b(Y])20
+b(Enable)f(reload)g(of)h(\002le)h(database)e(on)h(SIGHUP)h
+(\(otherwise,)e(only)g(the)h(con\002g)g(\002le)562 3239
+y(will)h(be)f(read)g(again\).)-2 3340 y
+SDict begin H.S end
+ -2 3340 a -2
+3340 a
+SDict begin 13 H.A end
+ -2 3340 a -2 3340 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3751) cvn H.B /DEST pdfmark
+end
+ -2 3340 a 396 3430 a FC(--enable-xml-log)-2
+3448 y
+SDict begin H.S end
+ -2 3448 a -2 3448 a
+SDict begin 13 H.A end
+ -2 3448 a -2 3448 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3752) cvn H.B /DEST pdfmark
+end
+ -2 3448
+a Black Black 562 3580 a
+SDict begin H.S end
+ 562 3580 a 562 3580 a
+SDict begin 13 H.A end
+ 562 3580
+a 562 3580 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3753) cvn H.B /DEST pdfmark
+end
+ 562 3580 a FC(Enable)g(XML)g(format)f(for)g(the)i(log)f
+(\002le.)-2 3681 y
+SDict begin H.S end
+ -2 3681 a -2 3681 a
+SDict begin 13 H.A end
+ -2 3681 a -2 3681
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3755) cvn H.B /DEST pdfmark
+end
+ -2 3681 a 396 3771 a FC(--with-database=mysql/postgresql/oracle/o)o
+(db)o(c)-2 3789 y
+SDict begin H.S end
+ -2 3789 a -2 3789 a
+SDict begin 13 H.A end
+ -2 3789 a -2 3789
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3756) cvn H.B /DEST pdfmark
+end
+ -2 3789 a Black Black 562 3920 a
+SDict begin H.S end
+ 562 3920 a 562 3920
+a
+SDict begin 13 H.A end
+ 562 3920 a 562 3920 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3757) cvn H.B /DEST pdfmark
+end
+ 562 3920 a FC(Support)f(logging)f(to)j(a)f
+(relational)g(database)f(\(MySQL,)h(PostgreSQL,)f(Oracle)h(or)g
+(unixODBC\).)f(Oracle)562 4028 y(and)h(unixODBC)g(are)g(not)g(fully)g
+(tested.)-2 4129 y
+SDict begin H.S end
+ -2 4129 a -2 4129 a
+SDict begin 13 H.A end
+ -2 4129 a -2 4129
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3759) cvn H.B /DEST pdfmark
+end
+ -2 4129 a 396 4219 a FC(--with-prelude)-2 4237 y
+SDict begin H.S end
+ -2
+4237 a -2 4237 a
+SDict begin 13 H.A end
+ -2 4237 a -2 4237 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3760) cvn H.B /DEST pdfmark
+end
+ -2 4237 a Black
+Black 562 4368 a
+SDict begin H.S end
+ 562 4368 a 562 4368 a
+SDict begin 13 H.A end
+ 562 4368 a 562
+4368 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3761) cvn H.B /DEST pdfmark
+end
+ 562 4368 a FC(Support)f(logging)f(to)j(the)f(Prelude)f(IDS)i
+(system.)f(Requires)g(the)g(libprelude)f(library)-5 b(.)-2
+4469 y
+SDict begin H.S end
+ -2 4469 a -2 4469 a
+SDict begin 13 H.A end
+ -2 4469 a -2 4469 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3763) cvn H.B /DEST pdfmark
+end
+ -2 4469
+a 396 4559 a FC(--with-libprelude-pre\002x=PFX)-2 4577
+y
+SDict begin H.S end
+ -2 4577 a -2 4577 a
+SDict begin 13 H.A end
+ -2 4577 a -2 4577 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3764) cvn H.B /DEST pdfmark
+end
+ -2 4577 a Black
+Black 562 4709 a
+SDict begin H.S end
+ 562 4709 a 562 4709 a
+SDict begin 13 H.A end
+ 562 4709 a 562
+4709 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3765) cvn H.B /DEST pdfmark
+end
+ 562 4709 a FC(Pre\002x)20 b(where)g(libprelude)e(is)k
+(installed.)d(This)i(will)g(be)f(used)g(to)g(search)2670
+4709 y
+SDict begin H.S end
+ 2670 4709 a 2670 4709 a
+SDict begin 13 H.A end
+ 2670 4709 a 2670 4709
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3766) cvn H.B /DEST pdfmark
+end
+ 2670 4709 a Fy(libpr)o(elude-con\002g)f FC(in)i(the)562
+4817 y
+SDict begin H.S end
+ 562 4817 a 562 4817 a
+SDict begin 13 H.A end
+ 562 4817 a 562 4817 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3767) cvn H.B /DEST pdfmark
+end
+ 562
+4817 a Fr(PFX/bin/)f FC(directory)-5 b(.)-2 4918 y
+SDict begin H.S end
+ -2
+4918 a -2 4918 a
+SDict begin 13 H.A end
+ -2 4918 a -2 4918 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3769) cvn H.B /DEST pdfmark
+end
+ -2 4918 a 396 5008
+a FC(--enable-deb)n(ug)-2 5026 y
+SDict begin H.S end
+ -2 5026 a -2 5026 a
+SDict begin 13 H.A end
+
+-2 5026 a -2 5026 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3770) cvn H.B /DEST pdfmark
+end
+ -2 5026 a Black Black 562 5157 a
+SDict begin H.S end
+
+562 5157 a 562 5157 a
+SDict begin 13 H.A end
+ 562 5157 a 562 5157 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3771) cvn H.B /DEST pdfmark
+end
+ 562 5157
+a FC(Enable)20 b(deb)n(ugging.)d(W)m(ill)k(slo)n(w)g(do)n(wn)e(things,)
+g(increase)h(resource)f(usage,)g(and)h(may)g(leak)g(information)562
+5265 y(that)h(should)e(be)h(k)o(ept)g(secure.)f(W)m(ill)i(dump)e
+('core')g(and)h(')-5 b(samhain_backtrace')17 b(in)j(the)g(root)g
+(directory)e(on)562 5373 y(se)o(gf)o(ault.)i(Do)g(not)g(use)g(in)g
+(production)e(code.)p Black 3618 5805 a Fx(106)p Black
+eop end
+%%Page: 107 112
+TeXDict begin 107 111 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.107) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2016 104 a
+Fx(Appendix)19 b(A.)h(List)h(of)g(options)e(for)h(the)h(./con\002gur)m
+(e)d(script)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226
+a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3773) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309 a FC(--enable-ptrace)-2 327
+y
+SDict begin H.S end
+ -2 327 a -2 327 a
+SDict begin 13 H.A end
+ -2 327 a -2 327 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3774) cvn H.B /DEST pdfmark
+end
+ -2 327 a Black
+Black 562 458 a
+SDict begin H.S end
+ 562 458 a 562 458 a
+SDict begin 13 H.A end
+ 562 458 a 562 458
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3775) cvn H.B /DEST pdfmark
+end
+ 562 458 a FC(Periodically)h(check)h(whether)f(a)h(deb)n(ugger)e(is)k
+(attached,)d(and)g(abort)h(if)g(yes.)g(Only)g(tak)o(es)h(ef)n(fect)e
+(if)562 566 y
+SDict begin H.S end
+ 562 566 a 562 566 a
+SDict begin 13 H.A end
+ 562 566 a 562 566 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3776) cvn H.B /DEST pdfmark
+end
+
+562 566 a Fy(--enable-deb)n(ug)h FC(is)h(not)f(used.)g(Only)f(tested)i
+(on)f(Linux.)-2 667 y
+SDict begin H.S end
+ -2 667 a -2 667 a
+SDict begin 13 H.A end
+ -2 667 a -2 667
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3778) cvn H.B /DEST pdfmark
+end
+ -2 667 a 396 757 a FC(--with-c\003ags=FLA)m(GS)-2 775
+y
+SDict begin H.S end
+ -2 775 a -2 775 a
+SDict begin 13 H.A end
+ -2 775 a -2 775 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3779) cvn H.B /DEST pdfmark
+end
+ -2 775 a Black
+Black 562 906 a
+SDict begin H.S end
+ 562 906 a 562 906 a
+SDict begin 13 H.A end
+ 562 906 a 562 906
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3780) cvn H.B /DEST pdfmark
+end
+ 562 906 a FC(Additional)f(\003ags)i(to)f(pass)h(to)f(the)g(compiler)
+-5 b(.)-2 1007 y
+SDict begin H.S end
+ -2 1007 a -2 1007 a
+SDict begin 13 H.A end
+ -2 1007 a -2 1007
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3782) cvn H.B /DEST pdfmark
+end
+ -2 1007 a 396 1097 a FC(--with-libs=LIBS)-2 1098 y
+SDict begin H.S end
+
+-2 1098 a -2 1098 a
+SDict begin 13 H.A end
+ -2 1098 a -2 1098 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3783) cvn H.B /DEST pdfmark
+end
+ -2 1098 a Black
+Black 562 1247 a
+SDict begin H.S end
+ 562 1247 a 562 1247 a
+SDict begin 13 H.A end
+ 562 1247 a 562
+1247 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3784) cvn H.B /DEST pdfmark
+end
+ 562 1247 a FC(Additional)19 b(libraries)h(to)g(link)g(with.)-2
+1331 y
+SDict begin H.S end
+ -2 1331 a -2 1331 a
+SDict begin 13 H.A end
+ -2 1331 a -2 1331 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3786) cvn H.B /DEST pdfmark
+end
+ -2 1331
+a 396 1438 a FC(--disable-lar)o(ge\002le)-2 1456 y
+SDict begin H.S end
+ -2
+1456 a -2 1456 a
+SDict begin 13 H.A end
+ -2 1456 a -2 1456 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3787) cvn H.B /DEST pdfmark
+end
+ -2 1456 a Black
+Black 562 1587 a
+SDict begin H.S end
+ 562 1587 a 562 1587 a
+SDict begin 13 H.A end
+ 562 1587 a 562
+1587 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3788) cvn H.B /DEST pdfmark
+end
+ 562 1587 a FC(Disable)h(support)e(for)g(lar)o(ge)g(\002les)i(\()
+p Ff(>)f FC(2GB\).)g(Lar)o(ge)f(\002le)i(support)e(is)i(enabled)e
+(automatically)g(if)h(your)562 1695 y(system)h(supports)e(it.)-2
+1796 y
+SDict begin H.S end
+ -2 1796 a -2 1796 a
+SDict begin 13 H.A end
+ -2 1796 a -2 1796 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3790) cvn H.B /DEST pdfmark
+end
+ -2 1796
+a 396 1886 a FC(--enable-udp)-2 1904 y
+SDict begin H.S end
+ -2 1904 a -2 1904
+a
+SDict begin 13 H.A end
+ -2 1904 a -2 1904 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3791) cvn H.B /DEST pdfmark
+end
+ -2 1904 a Black Black 562 2036
+a
+SDict begin H.S end
+ 562 2036 a 562 2036 a
+SDict begin 13 H.A end
+ 562 2036 a 562 2036 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3792) cvn H.B /DEST pdfmark
+end
+ 562 2036
+a FC(This)i(options)e(enables)h(code)f(to)i(listen)f(on)g(port)f
+(514/upd,)f(i.e.)i(the)h(syslog)e(port.)h(Thus)g(the)g(serv)o(er)f(can)
+562 2143 y(recei)n(v)o(e)g(syslog)h(reports)g(from)f(remote)g(hosts)i
+(\(if)f(the)o(y)f(are)h(con\002gured)e(to)i(send\),)g(and)f(log)h(them)
+g(to)g(an)o(y)g(of)562 2251 y(the)h(log)e(f)o(acilities)i(supported)d
+(by)i(samhain.)f(If)h(you)g(compile)f(in)h(support)f(for)h(this,)g(you)
+f(still)j(need)d(to)562 2359 y(enable)h(it)h(in)f(the)g(runtime)f
+(con\002guration)f(\002le.)-2 2419 y
+SDict begin H.S end
+ -2 2419 a -2 2419
+a
+SDict begin 13 H.A end
+ -2 2419 a -2 2419 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:COMPILATION-CHECKS) cvn H.B
+/DEST pdfmark end
+ -2 2419 a 359 x Fu(A.2.)39 b(Optional)f(modules)f
+(to)j(perf)m(or)e(ad)o(ditional)f(c)o(hec)m(ks)3379 2778
+y
+SDict begin H.S end
+ 3379 2778 a 3379 2778 a
+SDict begin 22.464 H.A end
+ 3379 2778 a 3379 2778 a
+SDict begin [ /View [/XYZ H.V] /Dest (14.75.1) cvn H.B /DEST pdfmark
+end
+ 3379
+2778 a -2 2974 a
+SDict begin H.S end
+ -2 2974 a -2 2974 a
+SDict begin 13 H.A end
+ -2 2974 a -2 2974
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3795) cvn H.B /DEST pdfmark
+end
+ -2 2974 a 396 3052 a FC(These)20 b(are)g(all)h(client-only)e
+(options,)g(as)i(the)f(serv)o(er)f(does)h(not)g(perform)e(an)o(y)h
+(checks)h(\(if)g(you)g(w)o(ant)g(to)g(run)396 3160 y(checks)g(on)g(the)
+g(log)g(serv)o(er)f(host,)h(you)f(need)h(to)g(run)g(a)g(client)g(there)
+g(as)h(well\).)-2 3178 y
+SDict begin H.S end
+ -2 3178 a -2 3178 a
+SDict begin 13 H.A end
+ -2 3178
+a -2 3178 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3796) cvn H.B /DEST pdfmark
+end
+ -2 3178 a -2 3302 a
+SDict begin H.S end
+ -2 3302 a -2 3302 a
+SDict begin 13 H.A end
+ -2
+3302 a -2 3302 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3798) cvn H.B /DEST pdfmark
+end
+ -2 3302 a 396 3392 a FC(--enable-login-w)o(atch)-2
+3410 y
+SDict begin H.S end
+ -2 3410 a -2 3410 a
+SDict begin 13 H.A end
+ -2 3410 a -2 3410 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3799) cvn H.B /DEST pdfmark
+end
+ -2 3410
+a Black Black 562 3542 a
+SDict begin H.S end
+ 562 3542 a 562 3542 a
+SDict begin 13 H.A end
+ 562 3542
+a 562 3542 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3800) cvn H.B /DEST pdfmark
+end
+ 562 3542 a FC([CLIENT)f(ONL)-8 b(Y])20 b(Compile)f(in)i
+(the)f(module)f(to)h(w)o(atch)g(for)g(login/logout)d(e)n(v)o(ents.)-2
+3643 y
+SDict begin H.S end
+ -2 3643 a -2 3643 a
+SDict begin 13 H.A end
+ -2 3643 a -2 3643 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3802) cvn H.B /DEST pdfmark
+end
+ -2 3643
+a 396 3733 a FC(--enable-mounts-check)-2 3734 y
+SDict begin H.S end
+ -2 3734
+a -2 3734 a
+SDict begin 13 H.A end
+ -2 3734 a -2 3734 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3803) cvn H.B /DEST pdfmark
+end
+ -2 3734 a Black Black
+562 3882 a
+SDict begin H.S end
+ 562 3882 a 562 3882 a
+SDict begin 13 H.A end
+ 562 3882 a 562 3882
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3804) cvn H.B /DEST pdfmark
+end
+ 562 3882 a FC([CLIENT)j(ONL)-8 b(Y])20 b(Compile)f(in)i(the)f(module)
+f(to)h(check)f(for)h(correct)f(mount)g(options.)-2 3983
+y
+SDict begin H.S end
+ -2 3983 a -2 3983 a
+SDict begin 13 H.A end
+ -2 3983 a -2 3983 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3806) cvn H.B /DEST pdfmark
+end
+ -2 3983 a 396
+4073 a FC(--enable-user\002les)-2 4074 y
+SDict begin H.S end
+ -2 4074 a -2
+4074 a
+SDict begin 13 H.A end
+ -2 4074 a -2 4074 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3807) cvn H.B /DEST pdfmark
+end
+ -2 4074 a Black Black 562
+4223 a
+SDict begin H.S end
+ 562 4223 a 562 4223 a
+SDict begin 13 H.A end
+ 562 4223 a 562 4223 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3808) cvn H.B /DEST pdfmark
+end
+ 562
+4223 a FC([CLIENT)h(ONL)-8 b(Y])20 b(Compile)f(in)i(the)f(module)f(to)h
+(check)f(for)h(\002les)h(in)f(user)g(home)g(directories)f(\(i.e.)h
+(with)562 4330 y(paths)g(relati)n(v)o(e)g(to)g($HOME)g(for)f(all)i
+(users\).)-2 4431 y
+SDict begin H.S end
+ -2 4431 a -2 4431 a
+SDict begin 13 H.A end
+ -2 4431 a -2
+4431 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3810) cvn H.B /DEST pdfmark
+end
+ -2 4431 a 396 4521 a FC(--enable-suidcheck)-2
+4522 y
+SDict begin H.S end
+ -2 4522 a -2 4522 a
+SDict begin 13 H.A end
+ -2 4522 a -2 4522 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3811) cvn H.B /DEST pdfmark
+end
+ -2 4522
+a Black Black 562 4671 a
+SDict begin H.S end
+ 562 4671 a 562 4671 a
+SDict begin 13 H.A end
+ 562 4671
+a 562 4671 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3812) cvn H.B /DEST pdfmark
+end
+ 562 4671 a FC([CLIENT)f(ONL)-8 b(Y])20 b(Compile)f(in)i
+(the)f(module)f(to)h(check)f(\002le)i(system)g(for)e(SUID/SGID)h
+(binaries)g(not)g(in)562 4779 y(the)h(database.)-2 4863
+y
+SDict begin H.S end
+ -2 4863 a -2 4863 a
+SDict begin 13 H.A end
+ -2 4863 a -2 4863 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3814) cvn H.B /DEST pdfmark
+end
+ -2 4863 a 396
+4970 a FC(--with-kcheck=SYSTEM_MAP)-2 4980 y
+SDict begin H.S end
+ -2 4980
+a -2 4980 a
+SDict begin 13 H.A end
+ -2 4980 a -2 4980 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3815) cvn H.B /DEST pdfmark
+end
+ -2 4980 a Black Black
+562 5119 a
+SDict begin H.S end
+ 562 5119 a 562 5119 a
+SDict begin 13 H.A end
+ 562 5119 a 562 5119
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3816) cvn H.B /DEST pdfmark
+end
+ 562 5119 a FC([CLIENT)f(ONL)-8 b(Y])20 b(\(Linux/FreeBSD)e(only\))h
+(Compile)h(in)g(the)h(module)d(to)j(check)e(for)h(runtime)f(k)o(ernel)
+562 5227 y(modi\002cations)g(\(e.g.)g(clobbered)g(k)o(ernel)g
+(syscalls\))i(to)f(detect)g(k)o(ernel-le)n(v)o(el)e(rootkits.)h
+(SYSTEM_MAP)562 5335 y(must)i(be)f(the)g(path)g(to)g(the)1337
+5335 y
+SDict begin H.S end
+ 1337 5335 a 1337 5335 a
+SDict begin 13 H.A end
+ 1337 5335 a 1337 5335
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3817) cvn H.B /DEST pdfmark
+end
+ 1337 5335 a Fr(System.map)f FC(\002le)i(corresponding)c(to)j(the)g(k)
+o(ernel.)-2 5395 y
+SDict begin H.S end
+ -2 5395 a -2 5395 a
+SDict begin 13 H.A end
+ -2 5395 a -2 5395
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:OPENPGP-SIGNATURES) cvn H.B
+/DEST pdfmark end
+ -2 5395 a Black 3617 5805 a Fx(107)p Black eop end
+%%Page: 108 113
+TeXDict begin 108 112 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.108) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2016 104 a
+Fx(Appendix)19 b(A.)h(List)h(of)g(options)e(for)h(the)h(./con\002gur)m
+(e)d(script)p Black -2 330 a Fu(A.3.)39 b(OpenPGP)e(Signatures)h(on)h
+(Con\002guration/Database)-2 517 y(Files)326 517 y
+SDict begin H.S end
+ 326
+517 a 326 517 a
+SDict begin 22.464 H.A end
+ 326 517 a 326 517 a
+SDict begin [ /View [/XYZ H.V] /Dest (14.76.1) cvn H.B /DEST pdfmark
+end
+ 326 517 a -2 519
+a
+SDict begin H.S end
+ -2 519 a -2 519 a
+SDict begin 13 H.A end
+ -2 519 a -2 519 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3820) cvn H.B /DEST pdfmark
+end
+ -2 519 a -2 643
+a
+SDict begin H.S end
+ -2 643 a -2 643 a
+SDict begin 13 H.A end
+ -2 643 a -2 643 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3822) cvn H.B /DEST pdfmark
+end
+ -2 643 a 396 749
+a FC(--with-gpg=P)-8 b(A)f(TH)-2 767 y
+SDict begin H.S end
+ -2 767 a -2 767
+a
+SDict begin 13 H.A end
+ -2 767 a -2 767 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3823) cvn H.B /DEST pdfmark
+end
+ -2 767 a Black Black 562 899 a
+SDict begin H.S end
+ 562
+899 a 562 899 a
+SDict begin 13 H.A end
+ 562 899 a 562 899 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3824) cvn H.B /DEST pdfmark
+end
+ 562 899 a FC(Use)21
+b(GnuPG)f(to)g(v)o(erify)f(database/con\002guration)e(\002le.)j(The)g
+(public)f(k)o(e)o(y)h(of)g(the)g(ef)n(fecti)n(v)o(e)f(user)m(,)g
+(usually)562 1007 y(root,)h(\(in)851 1007 y
+SDict begin H.S end
+ 851 1007
+a 851 1007 a
+SDict begin 13 H.A end
+ 851 1007 a 851 1007 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3825) cvn H.B /DEST pdfmark
+end
+ 851 1007 a Fr(~/.gnupg/pubring.gpg)p
+FC(\))d(will)k(be)f(used.)-2 1105 y
+SDict begin H.S end
+ -2 1105 a -2 1105
+a
+SDict begin 13 H.A end
+ -2 1105 a -2 1105 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3827) cvn H.B /DEST pdfmark
+end
+ -2 1105 a 396 1198 a FC(--with-checksum=CHECKSUM)
+-2 1199 y
+SDict begin H.S end
+ -2 1199 a -2 1199 a
+SDict begin 13 H.A end
+ -2 1199 a -2 1199 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3828) cvn H.B /DEST pdfmark
+end
+ -2
+1199 a Black Black 562 1347 a
+SDict begin H.S end
+ 562 1347 a 562 1347 a
+SDict begin 13 H.A end
+ 562
+1347 a 562 1347 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3829) cvn H.B /DEST pdfmark
+end
+ 562 1347 a FC(Compile)g(in)g(TIGER)h(checksum)d(of)i
+(the)1784 1347 y
+SDict begin H.S end
+ 1784 1347 a 1784 1347 a
+SDict begin 13 H.A end
+ 1784 1347 a
+1784 1347 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3830) cvn H.B /DEST pdfmark
+end
+ 1784 1347 a Fy(gpg)g FC(binary)-5 b(.)19
+b(CHECKSUM)i(must)f(be)g(the)g(full)g(line)h(output)e(by)562
+1455 y
+SDict begin H.S end
+ 562 1455 a 562 1455 a
+SDict begin 13 H.A end
+ 562 1455 a 562 1455 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3831) cvn H.B /DEST pdfmark
+end
+ 562
+1455 a FC(samhain)h(or)950 1455 y
+SDict begin H.S end
+ 950 1455 a 950 1455
+a
+SDict begin 13 H.A end
+ 950 1455 a 950 1455 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3832) cvn H.B /DEST pdfmark
+end
+ 950 1455 a Fy(gpg)g FC(when)f(computing)f(the)i
+(checksum.)-2 1556 y
+SDict begin H.S end
+ -2 1556 a -2 1556 a
+SDict begin 13 H.A end
+ -2 1556 a -2
+1556 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3834) cvn H.B /DEST pdfmark
+end
+ -2 1556 a 396 1646 a FC(--with-fp=FINGERPRINT)-2
+1664 y
+SDict begin H.S end
+ -2 1664 a -2 1664 a
+SDict begin 13 H.A end
+ -2 1664 a -2 1664 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3835) cvn H.B /DEST pdfmark
+end
+ -2 1664
+a Black Black 562 1795 a
+SDict begin H.S end
+ 562 1795 a 562 1795 a
+SDict begin 13 H.A end
+ 562 1795
+a 562 1795 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3836) cvn H.B /DEST pdfmark
+end
+ 562 1795 a FC(Compile)g(in)g(the)h(\002ngerprint)d(of)i
+(the)g(k)o(e)o(y)g(used)g(to)g(sign)g(the)g(con\002guration/database)d
+(\002le.)j(If)g(used,)562 1903 y(samhain)g(will)h(v)o(erify)d(the)j
+(\002ngerprint,)d(b)n(ut)i(still)h(report)e(on)h(the)g(used)g(public)g
+(k)o(e)o(y)-5 b(.)-2 1963 y
+SDict begin H.S end
+ -2 1963 a -2 1963 a
+SDict begin 13 H.A end
+ -2 1963
+a -2 1963 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CLIENT-SERVER-CONNECTIVITY)
+cvn H.B /DEST pdfmark end
+ -2 1963 a 359 x Fu(A.4.)39 b(Client/Ser)q(ver)e
+(Connectivity)2091 2322 y
+SDict begin H.S end
+ 2091 2322 a 2091 2322 a
+SDict begin 22.464 H.A end
+ 2091
+2322 a 2091 2322 a
+SDict begin [ /View [/XYZ H.V] /Dest (14.77.1) cvn H.B /DEST pdfmark
+end
+ 2091 2322 a -2 2352 a
+SDict begin H.S end
+ -2 2352 a -2
+2352 a
+SDict begin 13 H.A end
+ -2 2352 a -2 2352 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3839) cvn H.B /DEST pdfmark
+end
+ -2 2352 a -2 2476 a
+SDict begin H.S end
+ -2 2476
+a -2 2476 a
+SDict begin 13 H.A end
+ -2 2476 a -2 2476 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3841) cvn H.B /DEST pdfmark
+end
+ -2 2476 a 396 2554 a
+FC(--enable-netw)o(ork=client/serv)o(er)-2 2555 y
+SDict begin H.S end
+ -2
+2555 a -2 2555 a
+SDict begin 13 H.A end
+ -2 2555 a -2 2555 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3842) cvn H.B /DEST pdfmark
+end
+ -2 2555 a Black
+Black 562 2704 a
+SDict begin H.S end
+ 562 2704 a 562 2704 a
+SDict begin 13 H.A end
+ 562 2704 a 562
+2704 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3843) cvn H.B /DEST pdfmark
+end
+ 562 2704 a FC(Compile)20 b(a)h(client)f(or)g(serv)o(er)m(,)f
+(rather)g(than)h(a)g(standalone)f(v)o(ersion.)-2 2805
+y
+SDict begin H.S end
+ -2 2805 a -2 2805 a
+SDict begin 13 H.A end
+ -2 2805 a -2 2805 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3845) cvn H.B /DEST pdfmark
+end
+ -2 2805 a 396
+2895 a FC(--disable-encrypt)-2 2913 y
+SDict begin H.S end
+ -2 2913 a -2 2913
+a
+SDict begin 13 H.A end
+ -2 2913 a -2 2913 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3846) cvn H.B /DEST pdfmark
+end
+ -2 2913 a Black Black 562 3044
+a
+SDict begin H.S end
+ 562 3044 a 562 3044 a
+SDict begin 13 H.A end
+ 562 3044 a 562 3044 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3847) cvn H.B /DEST pdfmark
+end
+ 562 3044
+a FC(Disable)i(encryption)d(for)h(client/serv)o(er)g(communication.)-2
+3145 y
+SDict begin H.S end
+ -2 3145 a -2 3145 a
+SDict begin 13 H.A end
+ -2 3145 a -2 3145 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3849) cvn H.B /DEST pdfmark
+end
+ -2 3145
+a 396 3235 a FC(--enable-encrypt=1)-2 3253 y
+SDict begin H.S end
+ -2 3253
+a -2 3253 a
+SDict begin 13 H.A end
+ -2 3253 a -2 3253 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3850) cvn H.B /DEST pdfmark
+end
+ -2 3253 a Black Black
+562 3385 a
+SDict begin H.S end
+ 562 3385 a 562 3385 a
+SDict begin 13 H.A end
+ 562 3385 a 562 3385
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3851) cvn H.B /DEST pdfmark
+end
+ 562 3385 a FC(Use)i(v)o(ersion)e(1)h(encryption)e(for)i(client/serv)o
+(er)f(communication.)e(Samhain)i(1.8.x)g(introduces)f(an)562
+3493 y(enhanced)h(v)o(ersion)f(\(v)o(ersion)h(2\))h(of)g(the)g
+(client/serv)o(er)f(encryption.)f(By)i(def)o(ault,)f(the)i(serv)o(er)e
+(is)i(backw)o(ard)562 3600 y(compatible,)e(i.e.)h(it)h(can)f
+(communicate)e(with)i(both)g(v)o(ersion)f(1)h(\(pre-1.8.x\))d(and)i(v)o
+(ersion)g(2)h(clients.)562 3708 y(Building)g(the)g(serv)o(er)f(with)i
+(the)f(--enable-encrypt=1)c(option)i(mak)o(es)j(it)f(impossible)g(to)g
+(communicate)562 3816 y(with)h(v)o(ersion)e(2)h(clients.)-2
+3900 y
+SDict begin H.S end
+ -2 3900 a -2 3900 a
+SDict begin 13 H.A end
+ -2 3900 a -2 3900 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3853) cvn H.B /DEST pdfmark
+end
+ -2 3900
+a 396 4007 a FC(--disable-srp)-2 4025 y
+SDict begin H.S end
+ -2 4025 a -2
+4025 a
+SDict begin 13 H.A end
+ -2 4025 a -2 4025 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3854) cvn H.B /DEST pdfmark
+end
+ -2 4025 a Black Black 562
+4157 a
+SDict begin H.S end
+ 562 4157 a 562 4157 a
+SDict begin 13 H.A end
+ 562 4157 a 562 4157 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3855) cvn H.B /DEST pdfmark
+end
+ 562
+4157 a FC(Disable)h(the)f(use)g(of)g(the)g(zero-kno)n(wledge)d(SRP)k
+(protocol)e(to)h(authenticate)f(to)h(log)g(serv)o(er)m(,)f(and)h(use)g
+(a)562 4265 y(\(f)o(aster)m(,)g(b)n(ut)g(less)h(secure\))f
+(challenge-response)d(protocol.)2318 4265 y
+SDict begin H.S end
+ 2318 4265
+a 2318 4265 a
+SDict begin 13 H.A end
+ 2318 4265 a 2318 4265 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3856) cvn H.B /DEST pdfmark
+end
+ 2318 4265 a Fx(This)k(must)f(be)g
+(set)h(to)g(the)f(same)g(value)g(for)562 4373 y(client)h(and)e(server)
+-9 b(,)21 b(i.e)o(.)f(either)g(disabled)f(for)i(client)f(and)f(server)
+-9 b(,)21 b(or)g(for)f(none)f(of)i(both.)-2 4473 y
+SDict begin H.S end
+ -2
+4473 a -2 4473 a
+SDict begin 13 H.A end
+ -2 4473 a -2 4473 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3858) cvn H.B /DEST pdfmark
+end
+ -2 4473 a 396 4564
+a FC(--with-libwrap[=P)-8 b(A)f(TH])-2 4581 y
+SDict begin H.S end
+ -2 4581
+a -2 4581 a
+SDict begin 13 H.A end
+ -2 4581 a -2 4581 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3859) cvn H.B /DEST pdfmark
+end
+ -2 4581 a Black Black
+562 4713 a
+SDict begin H.S end
+ 562 4713 a 562 4713 a
+SDict begin 13 H.A end
+ 562 4713 a 562 4713
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3860) cvn H.B /DEST pdfmark
+end
+ 562 4713 a FC([SER)i(VER)21 b(ONL)-8 b(Y])20 b(Build)g(the)h(serv)o
+(er)e(with)h(support)f(for)h(libwrap)f(\(W)m(ietse)i(V)-9
+b(enema')k(s)19 b(TCP)i(wrappers)562 4821 y(library\).)e(In)943
+4821 y
+SDict begin H.S end
+ 943 4821 a 943 4821 a
+SDict begin 13 H.A end
+ 943 4821 a 943 4821 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3861) cvn H.B /DEST pdfmark
+end
+ 943
+4821 a Fr(/etc/hosts.allow)f FC(and/or)1914 4821 y
+SDict begin H.S end
+ 1914
+4821 a 1914 4821 a
+SDict begin 13 H.A end
+ 1914 4821 a 1914 4821 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3862) cvn H.B /DEST pdfmark
+end
+ 1914 4821
+a Fr(/etc/hosts.deny)p FC(,)g(use)i('yule')f(or)h(the)g(name)g
+(de\002ned)562 4929 y(with)h(--enable-install-name=N)m(AME)16
+b(for)j(the)i(name)e(of)h(the)g(daemon.)-2 5013 y
+SDict begin H.S end
+ -2
+5013 a -2 5013 a
+SDict begin 13 H.A end
+ -2 5013 a -2 5013 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3864) cvn H.B /DEST pdfmark
+end
+ -2 5013 a 396 5120
+a FC(--with-port=POR)-5 b(T)-2 5138 y
+SDict begin H.S end
+ -2 5138 a -2 5138
+a
+SDict begin 13 H.A end
+ -2 5138 a -2 5138 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3865) cvn H.B /DEST pdfmark
+end
+ -2 5138 a Black Black 562 5269
+a
+SDict begin H.S end
+ 562 5269 a 562 5269 a
+SDict begin 13 H.A end
+ 562 5269 a 562 5269 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3866) cvn H.B /DEST pdfmark
+end
+ 562 5269
+a FC(The)20 b(port)g(on)f(which)h(the)g(serv)o(er)g(will)h(listen)f
+(\(def)o(ault)f(is)i(49777\),)d(or)i(to)g(which)g(the)g(client)h(will)f
+(connect,)562 5377 y(respecti)n(v)o(ely)-5 b(.)996 5377
+y
+SDict begin H.S end
+ 996 5377 a 996 5377 a
+SDict begin 13 H.A end
+ 996 5377 a 996 5377 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3867) cvn H.B /DEST pdfmark
+end
+ 996 5377
+a Fx(This)21 b(must)g(be)f(set)h(to)f(the)g(same)h(value)e(for)i
+(client)f(and)f(server)-9 b(.)21 b FC(Only)f(needed)f(if)h(this)h(port)
+f(is)p Black 3620 5805 a Fx(108)p Black eop end
+%%Page: 109 114
+TeXDict begin 109 113 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.109) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3923) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2016 104 a Fx(Appendix)19
+b(A.)h(List)h(of)g(options)e(for)h(the)h(./con\002gur)m(e)d(script)p
+Black 562 309 a FC(already)h(used)g(by)g(some)h(other)e(application.)g
+(Port)i(numbers)e(belo)n(w)h(1024)f(require)3025 309
+y
+SDict begin H.S end
+ 3025 309 a 3025 309 a
+SDict begin 13 H.A end
+ 3025 309 a 3025 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3868) cvn H.B /DEST pdfmark
+end
+ 3025 309
+a Fx(r)l(oot)k FC(pri)n(vile)o(ges)c(for)h(the)562 417
+y(serv)o(er)-5 b(.)-2 500 y
+SDict begin H.S end
+ -2 500 a -2 500 a
+SDict begin 13 H.A end
+ -2 500
+a -2 500 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3870) cvn H.B /DEST pdfmark
+end
+ -2 500 a 396 608 a FC(--with-logserv)o(er=HOST)-2
+626 y
+SDict begin H.S end
+ -2 626 a -2 626 a
+SDict begin 13 H.A end
+ -2 626 a -2 626 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3871) cvn H.B /DEST pdfmark
+end
+ -2 626 a Black
+Black 562 757 a
+SDict begin H.S end
+ 562 757 a 562 757 a
+SDict begin 13 H.A end
+ 562 757 a 562 757
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3872) cvn H.B /DEST pdfmark
+end
+ 562 757 a FC([CLIENT)20 b(ONL)-8 b(Y])20 b(The)f(host)i(address)e(of)
+h(the)g(log)g(serv)o(er)-5 b(.)20 b(This)g(can)g(be)g(set)h(in)g(the)f
+(con\002guration)d(\002le.)k(A)562 865 y(compiled-in)d(address)i(is)h
+(only)f(required)e(if)i(you)g(w)o(ant)g(to)g(fetch)g(the)g
+(con\002guration)e(\002le)j(from)e(the)h(log)562 973
+y(serv)o(er)-5 b(.)20 b(An)g(address)g(in)g(the)g(con\002guration)e
+(\002le)j(will)g(tak)o(e)f(precedence.)-2 1074 y
+SDict begin H.S end
+ -2 1074
+a -2 1074 a
+SDict begin 13 H.A end
+ -2 1074 a -2 1074 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3874) cvn H.B /DEST pdfmark
+end
+ -2 1074 a 396 1164 a
+FC(--with-altlogserv)o(er=HOST)-2 1182 y
+SDict begin H.S end
+ -2 1182 a -2
+1182 a
+SDict begin 13 H.A end
+ -2 1182 a -2 1182 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3875) cvn H.B /DEST pdfmark
+end
+ -2 1182 a Black Black 562
+1313 a
+SDict begin H.S end
+ 562 1313 a 562 1313 a
+SDict begin 13 H.A end
+ 562 1313 a 562 1313 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3876) cvn H.B /DEST pdfmark
+end
+ 562
+1313 a FC([CLIENT)g(ONL)-8 b(Y])20 b(The)f(host)i(address)e(of)h(an)g
+(alternati)n(v)o(e)f(\(backup\))f(log)i(serv)o(er)-5
+b(.)-2 1373 y
+SDict begin H.S end
+ -2 1373 a -2 1373 a
+SDict begin 13 H.A end
+ -2 1373 a -2 1373 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:PATHS) cvn H.B /DEST pdfmark
+end
+
+-2 1373 a 359 x Fu(A.5.)39 b(P)l(aths)689 1732 y
+SDict begin H.S end
+ 689
+1732 a 689 1732 a
+SDict begin 22.464 H.A end
+ 689 1732 a 689 1732 a
+SDict begin [ /View [/XYZ H.V] /Dest (14.78.1) cvn H.B /DEST pdfmark
+end
+ 689 1732 a -2
+1900 a
+SDict begin H.S end
+ -2 1900 a -2 1900 a
+SDict begin 13 H.A end
+ -2 1900 a -2 1900 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3879) cvn H.B /DEST pdfmark
+end
+ -2 1900
+a 396 2006 a FC(Compiled-in)19 b(paths)h(may)g(be)g(as)h(long)e(as)i
+(255)e(chars.)h(If)g(the)2204 2006 y
+SDict begin H.S end
+ 2204 2006 a 2204
+2006 a
+SDict begin 13 H.A end
+ 2204 2006 a 2204 2006 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3880) cvn H.B /DEST pdfmark
+end
+ 2204 2006 a Fy(--with-stealth)f
+FC(option)g(is)i(used,)f(the)g(limit)g(is)i(127)396 2114
+y(chars.)e(The)g(paths)g(to)g(the)g(database,)g(log)g(\002le,)g(and)g
+(pid/lock)f(\002le)i(can)f(be)g(o)o(v)o(erridden)d(in)j(the)g
+(con\002guration)e(\002le)396 2222 y(\(see)p 0 TeXcolorgray
+551 2222 a
+SDict begin H.S end
+ 551 2222 a FC(Section)i(C.1)939 2222 y
+SDict begin 13 H.L end
+ 939
+2222 a 939 2222 a
+SDict begin [ /Subtype /Link /Dest (0:CONFIGFILE) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 939 2222 a Black -1 w FC(>\).)-2 2237
+y
+SDict begin H.S end
+ -2 2237 a -2 2237 a
+SDict begin 11.7 H.A end
+ -2 2237 a -2 2237 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3882) cvn H.B /DEST pdfmark
+end
+ -2 2237 a -2
+2361 a
+SDict begin H.S end
+ -2 2361 a -2 2361 a
+SDict begin 11.7 H.A end
+ -2 2361 a -2 2361 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3884) cvn H.B /DEST pdfmark
+end
+ -2 2361
+a 562 2443 a Fw(TIP:)g Fv(If)h(using)e(NFS)h(with)g(clients)f(on)h
+(diff)n(erent)e(hosts)i(accesing)g(the)f(same)i(\002les)o(,)f(y)o(ou)g
+(can)g(set)g(the)562 2541 y(database)o(,)e(log)h(\002le)o(,)g(and)g
+(pid/loc)o(k)g(\002le)h(names)f(to)h("A)l(UT)m(O")f(in)h(the)f
+(con\002gur)o(ation)e(\002le)j(to)g(simply)g(tac)o(k)g(on)f(the)562
+2638 y(hostname)g(on)h(the)g(compiled-in)d(path.)i(The)h(same)g(length)
+f(limits)h(apply)-7 b(.)39 2787 y
+SDict begin H.S end
+ 39 2787 a 39 2787 a
+SDict begin 13 H.A end
+
+39 2787 a 39 2787 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3885) cvn H.B /DEST pdfmark
+end
+ 39 2787 a -2 2953 a
+SDict begin H.S end
+ -2 2953 a -2
+2953 a
+SDict begin 13 H.A end
+ -2 2953 a -2 2953 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3887) cvn H.B /DEST pdfmark
+end
+ -2 2953 a 396 3061 a FC(--pre\002x=PREFIX)-2
+3079 y
+SDict begin H.S end
+ -2 3079 a -2 3079 a
+SDict begin 13 H.A end
+ -2 3079 a -2 3079 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3888) cvn H.B /DEST pdfmark
+end
+ -2 3079
+a Black Black 562 3211 a
+SDict begin H.S end
+ 562 3211 a 562 3211 a
+SDict begin 13 H.A end
+ 562 3211
+a 562 3211 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3889) cvn H.B /DEST pdfmark
+end
+ 562 3211 a FC(The)20 b(install)h(pre\002x.)e(Def)o(ault)h
+(is)h(none,)e(and)h(using)f(the)i(Filesystem)f(Hierarchy)e(Standard)h
+(2.2)h(directory)562 3318 y(layout.)f(If)h(you)g(prefer)f(the)h(GNU)g
+(layout)g(\(e)n(v)o(erything)d(under)i(/usr/local\),)g(use)h
+(--pre\002x=/usr/local.)e(See)p 0 TeXcolorgray 562 3426
+a
+SDict begin H.S end
+ 562 3426 a FC(Section)i(2.10)979 3426 y
+SDict begin 13 H.L end
+ 979 3426 a
+979 3426 a
+SDict begin [ /Subtype /Link /Dest (0:LAYOUT) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 979 3426 a Black -2 w FC(>)h(for)f(details.)-2
+3510 y
+SDict begin H.S end
+ -2 3510 a -2 3510 a
+SDict begin 13 H.A end
+ -2 3510 a -2 3510 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3892) cvn H.B /DEST pdfmark
+end
+ -2 3510
+a 396 3617 a FC(--sbindir=DIR)-2 3618 y
+SDict begin H.S end
+ -2 3618 a -2
+3618 a
+SDict begin 13 H.A end
+ -2 3618 a -2 3618 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3893) cvn H.B /DEST pdfmark
+end
+ -2 3618 a Black Black 562
+3767 a
+SDict begin H.S end
+ 562 3767 a 562 3767 a
+SDict begin 13 H.A end
+ 562 3767 a 562 3767 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3894) cvn H.B /DEST pdfmark
+end
+ 562
+3767 a FC(The)g(binary)f(directory)f(\(def)o(ault)i(is)1620
+3767 y
+SDict begin H.S end
+ 1620 3767 a 1620 3767 a
+SDict begin 13 H.A end
+ 1620 3767 a 1620 3767
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3895) cvn H.B /DEST pdfmark
+end
+ 1620 3767 a Fr(/usr/local/sbin)p FC(\))-2 3868 y
+SDict begin H.S end
+ -2
+3868 a -2 3868 a
+SDict begin 13 H.A end
+ -2 3868 a -2 3868 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3897) cvn H.B /DEST pdfmark
+end
+ -2 3868 a 396 3958
+a FC(--localstatedir=DPFX)-2 3959 y
+SDict begin H.S end
+ -2 3959 a -2 3959
+a
+SDict begin 13 H.A end
+ -2 3959 a -2 3959 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3898) cvn H.B /DEST pdfmark
+end
+ -2 3959 a Black Black 562 4107
+a
+SDict begin H.S end
+ 562 4107 a 562 4107 a
+SDict begin 13 H.A end
+ 562 4107 a 562 4107 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3899) cvn H.B /DEST pdfmark
+end
+ 562 4107
+a FC(The)g(state)h(data)f(directory)e(pre\002x)i(\(def)o(ault)f(is)1933
+4107 y
+SDict begin H.S end
+ 1933 4107 a 1933 4107 a
+SDict begin 13 H.A end
+ 1933 4107 a 1933 4107
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3900) cvn H.B /DEST pdfmark
+end
+ 1933 4107 a Fr(/var)p FC(\).)g(Data)i(will)f(be)g(written)g(to)h
+(DPFX/lib/)3295 4107 y
+SDict begin H.S end
+ 3295 4107 a 3295 4107 a
+SDict begin 13 H.A end
+ 3295 4107
+a 3295 4107 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3901) cvn H.B /DEST pdfmark
+end
+ 3295 4107 a Fx(install_name)p FC(.)-2 4208
+y
+SDict begin H.S end
+ -2 4208 a -2 4208 a
+SDict begin 13 H.A end
+ -2 4208 a -2 4208 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3903) cvn H.B /DEST pdfmark
+end
+ -2 4208 a 396
+4298 a FC(--with-state-dir=DIR)-2 4299 y
+SDict begin H.S end
+ -2 4299 a -2
+4299 a
+SDict begin 13 H.A end
+ -2 4299 a -2 4299 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3904) cvn H.B /DEST pdfmark
+end
+ -2 4299 a Black Black 562
+4448 a
+SDict begin H.S end
+ 562 4448 a 562 4448 a
+SDict begin 13 H.A end
+ 562 4448 a 562 4448 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3905) cvn H.B /DEST pdfmark
+end
+ 562
+4448 a FC(The)f(state)h(data)f(directory)f(\(def)o(ault)g(is)1719
+4448 y
+SDict begin H.S end
+ 1719 4448 a 1719 4448 a
+SDict begin 13 H.A end
+ 1719 4448 a 1719 4448
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3906) cvn H.B /DEST pdfmark
+end
+ 1719 4448 a Fr(DPFX/lib/install_name)p FC(\).)d(Data)21
+b(will)g(be)f(written)g(to)g(this)562 4555 y(directory)-5
+b(.)-2 4656 y
+SDict begin H.S end
+ -2 4656 a -2 4656 a
+SDict begin 13 H.A end
+ -2 4656 a -2 4656 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3908) cvn H.B /DEST pdfmark
+end
+
+-2 4656 a 396 4746 a FC(--mandir=MPREFIX)-2 4747 y
+SDict begin H.S end
+ -2
+4747 a -2 4747 a
+SDict begin 13 H.A end
+ -2 4747 a -2 4747 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3909) cvn H.B /DEST pdfmark
+end
+ -2 4747 a Black
+Black 562 4896 a
+SDict begin H.S end
+ 562 4896 a 562 4896 a
+SDict begin 13 H.A end
+ 562 4896 a 562
+4896 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3910) cvn H.B /DEST pdfmark
+end
+ 562 4896 a FC(The)20 b(man)g(directory)e(directory)h(pre\002x)g
+(\(def)o(ault)g(is)2085 4896 y
+SDict begin H.S end
+ 2085 4896 a 2085 4896
+a
+SDict begin 13 H.A end
+ 2085 4896 a 2085 4896 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3911) cvn H.B /DEST pdfmark
+end
+ 2085 4896 a Fr(/usr/local/share/man)p
+FC(\).)-2 4997 y
+SDict begin H.S end
+ -2 4997 a -2 4997 a
+SDict begin 13 H.A end
+ -2 4997 a -2 4997
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3913) cvn H.B /DEST pdfmark
+end
+ -2 4997 a 396 5087 a FC(--with-tmp-dir=TPFX)-2 5105
+y
+SDict begin H.S end
+ -2 5105 a -2 5105 a
+SDict begin 13 H.A end
+ -2 5105 a -2 5105 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3914) cvn H.B /DEST pdfmark
+end
+ -2 5105 a Black
+Black 562 5236 a
+SDict begin H.S end
+ 562 5236 a 562 5236 a
+SDict begin 13 H.A end
+ 562 5236 a 562
+5236 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3915) cvn H.B /DEST pdfmark
+end
+ 562 5236 a FC(The)h(directory)f(where)g(tmp)h(\002les)h(are)f
+(created)g(\(con\002g/database)e(do)n(wnloads)g(from)h(serv)o(er)m(,)g
+(e)o(xtracted)562 5344 y(PGP-signed)h(parts)g(of)g(con\002g/database)e
+(\002les\))j(\(def)o(ault)e(is)2330 5344 y
+SDict begin H.S end
+ 2330 5344
+a 2330 5344 a
+SDict begin 13 H.A end
+ 2330 5344 a 2330 5344 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3916) cvn H.B /DEST pdfmark
+end
+ 2330 5344 a Fx(HOME)r
+FC(\).)p Black 3620 5805 a Fx(109)p Black eop end
+%%Page: 110 115
+TeXDict begin 110 114 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.110) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2016 104 a
+Fx(Appendix)19 b(A.)h(List)h(of)g(options)e(for)h(the)h(./con\002gur)m
+(e)d(script)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226
+a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3918) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309 a FC(--with-con\002g-\002le=FILE)-2
+327 y
+SDict begin H.S end
+ -2 327 a -2 327 a
+SDict begin 13 H.A end
+ -2 327 a -2 327 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3919) cvn H.B /DEST pdfmark
+end
+ -2 327 a Black
+Black 562 458 a
+SDict begin H.S end
+ 562 458 a 562 458 a
+SDict begin 13 H.A end
+ 562 458 a 562 458
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3920) cvn H.B /DEST pdfmark
+end
+ 562 458 a FC(The)i(full)g(path)g(of)g(the)g(con\002guration)e(\002le)
+i(\(def)o(ault)g(is)2169 458 y
+SDict begin H.S end
+ 2169 458 a 2169 458 a
+SDict begin 13 H.A end
+
+2169 458 a 2169 458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3921) cvn H.B /DEST pdfmark
+end
+ 2169 458 a Fr(/etc/\(install_name\)rc)p
+FC(\).)396 649 y(--with-log-\002le=FILE)-2 667 y
+SDict begin H.S end
+ -2 667
+a -2 667 a
+SDict begin 13 H.A end
+ -2 667 a -2 667 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3924) cvn H.B /DEST pdfmark
+end
+ -2 667 a Black Black 562
+799 a
+SDict begin H.S end
+ 562 799 a 562 799 a
+SDict begin 13 H.A end
+ 562 799 a 562 799 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3925) cvn H.B /DEST pdfmark
+end
+ 562 799
+a FC(The)g(path)g(of)g(the)g(log)g(\002le)h(\(def)o(ault)e(is)1696
+799 y
+SDict begin H.S end
+ 1696 799 a 1696 799 a
+SDict begin 13 H.A end
+ 1696 799 a 1696 799 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3926) cvn H.B /DEST pdfmark
+end
+ 1696
+799 a Fr(DPFX/log/samhain_log)p FC(\).)-2 900 y
+SDict begin H.S end
+ -2 900
+a -2 900 a
+SDict begin 13 H.A end
+ -2 900 a -2 900 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3928) cvn H.B /DEST pdfmark
+end
+ -2 900 a 396 989 a FC
+(--with-pid-\002le=FILE)-2 1007 y
+SDict begin H.S end
+ -2 1007 a -2 1007 a
+SDict begin 13 H.A end
+
+-2 1007 a -2 1007 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3929) cvn H.B /DEST pdfmark
+end
+ -2 1007 a Black Black 562 1139 a
+SDict begin H.S end
+
+562 1139 a 562 1139 a
+SDict begin 13 H.A end
+ 562 1139 a 562 1139 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3930) cvn H.B /DEST pdfmark
+end
+ 562 1139
+a FC(The)h(path)g(of)g(the)g(PID)h(\002le)f(\(def)o(ault)f(is)1724
+1139 y
+SDict begin H.S end
+ 1724 1139 a 1724 1139 a
+SDict begin 13 H.A end
+ 1724 1139 a 1724 1139
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3931) cvn H.B /DEST pdfmark
+end
+ 1724 1139 a Fr(DPFX/run/\(install_name\).pid)p FC(\).)-2
+1240 y
+SDict begin H.S end
+ -2 1240 a -2 1240 a
+SDict begin 13 H.A end
+ -2 1240 a -2 1240 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3933) cvn H.B /DEST pdfmark
+end
+ -2 1240
+a 396 1330 a FC(--with-html-\002le=FILE)-2 1331 y
+SDict begin H.S end
+ -2
+1331 a -2 1331 a
+SDict begin 13 H.A end
+ -2 1331 a -2 1331 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3934) cvn H.B /DEST pdfmark
+end
+ -2 1331 a Black
+Black 562 1479 a
+SDict begin H.S end
+ 562 1479 a 562 1479 a
+SDict begin 13 H.A end
+ 562 1479 a 562
+1479 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3935) cvn H.B /DEST pdfmark
+end
+ 562 1479 a FC([SER)-7 b(VER)21 b(ONL)-8 b(Y])20
+b(The)g(path)g(of)g(the)g(HTML)g(status)h(\002le)f(where)g(the)g
+(current)f(status)i(of)f(clients)g(is)562 1587 y(displayed)f(\(def)o
+(ault)g(is)1256 1587 y
+SDict begin H.S end
+ 1256 1587 a 1256 1587 a
+SDict begin 13 H.A end
+ 1256 1587
+a 1256 1587 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3936) cvn H.B /DEST pdfmark
+end
+ 1256 1587 a Fr(DPFX/log/\(install_name\).html)p
+FC(\).)-2 1688 y
+SDict begin H.S end
+ -2 1688 a -2 1688 a
+SDict begin 13 H.A end
+ -2 1688 a -2 1688
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3938) cvn H.B /DEST pdfmark
+end
+ -2 1688 a 396 1778 a FC(--with-console=P)-8 b(A)f(TH)-2
+1779 y
+SDict begin H.S end
+ -2 1779 a -2 1779 a
+SDict begin 13 H.A end
+ -2 1779 a -2 1779 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3939) cvn H.B /DEST pdfmark
+end
+ -2 1779
+a Black Black 562 1928 a
+SDict begin H.S end
+ 562 1928 a 562 1928 a
+SDict begin 13 H.A end
+ 562 1928
+a 562 1928 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3940) cvn H.B /DEST pdfmark
+end
+ 562 1928 a FC(The)20 b(path)g(of)g(the)g(console)f(\(def)o
+(ault)h(is)1717 1928 y
+SDict begin H.S end
+ 1717 1928 a 1717 1928 a
+SDict begin 13 H.A end
+ 1717 1928
+a 1717 1928 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3941) cvn H.B /DEST pdfmark
+end
+ 1717 1928 a Fr(/dev/console)p FC(\).)e(This)i(may)g(be)g
+(a)h(FIFO.)-2 2029 y
+SDict begin H.S end
+ -2 2029 a -2 2029 a
+SDict begin 13 H.A end
+ -2 2029 a -2
+2029 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3943) cvn H.B /DEST pdfmark
+end
+ -2 2029 a 396 2119 a FC(--with-altconsole=P)-8
+b(A)f(TH)-2 2120 y
+SDict begin H.S end
+ -2 2120 a -2 2120 a
+SDict begin 13 H.A end
+ -2 2120 a -2 2120
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3944) cvn H.B /DEST pdfmark
+end
+ -2 2120 a Black Black 562 2268 a
+SDict begin H.S end
+ 562 2268 a 562 2268
+a
+SDict begin 13 H.A end
+ 562 2268 a 562 2268 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3945) cvn H.B /DEST pdfmark
+end
+ 562 2268 a FC(The)20 b(path)g(of)g(a)g(second)g
+(console)f(\(def)o(ault)g(is)i(none\).)e(This)h(may)g(be)g(a)h(FIFO.)f
+(If)g(de\002ned,)f(console)h(output)562 2376 y(will)h(al)o(w)o(ays)g
+(go)f(to)g(both)f(console)h(de)n(vices)f(\(b)n(ut)h(note)g(that)g
+(console)g(de)n(vices)f(are)h(only)g(used)g(when)562
+2484 y(running)e(as)j(daemon\).)p Black 3620 5805 a Fx(110)p
+Black eop end
+%%Page: 111 116
+TeXDict begin 111 115 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.111) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black -2 226
+a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:COMMAND-LINE) cvn H.B /DEST
+pdfmark end
+ -2 226 a 125 x
+Fz(Appendix)48 b(B.)g(List)g(of)g(command)g(line)g(options)3441
+351 y
+SDict begin H.S end
+ 3441 351 a 3441 351 a
+SDict begin 26.957 H.A end
+ 3441 351 a 3441 351 a
+SDict begin [ /View [/XYZ H.V] /Dest (15.0) cvn H.B /DEST pdfmark end
+ 3441
+351 a -2 441 a
+SDict begin H.S end
+ -2 441 a -2 441 a
+SDict begin 13 H.A end
+ -2 441 a -2 441 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:COMMAND-LINE-GENERAL) cvn H.B
+/DEST pdfmark end
+ -2
+441 a 341 x Fu(B.1.)39 b(General)837 782 y
+SDict begin H.S end
+ 837 782 a
+837 782 a
+SDict begin 22.464 H.A end
+ 837 782 a 837 782 a
+SDict begin [ /View [/XYZ H.V] /Dest (15.79.1) cvn H.B /DEST pdfmark
+end
+ 837 782 a -2 950 a
+SDict begin H.S end
+ -2 950
+a -2 950 a
+SDict begin 13 H.A end
+ -2 950 a -2 950 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3950) cvn H.B /DEST pdfmark
+end
+ -2 950 a -2 950 a
+SDict begin H.S end
+ -2 950
+a -2 950 a
+SDict begin 13 H.A end
+ -2 950 a -2 950 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3951) cvn H.B /DEST pdfmark
+end
+ -2 950 a -2 979 a
+SDict begin H.S end
+ -2 979
+a -2 979 a
+SDict begin 13 H.A end
+ -2 979 a -2 979 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3952) cvn H.B /DEST pdfmark
+end
+ -2 979 a Black 463 1155
+a FC(1.)p Black 546 1155 a
+SDict begin H.S end
+ 546 1155 a 546 1155 a
+SDict begin 13 H.A end
+ 546
+1155 a 546 1155 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3953) cvn H.B /DEST pdfmark
+end
+ 546 1155 a 546 1155 a
+SDict begin H.S end
+ 546 1155 a 546
+1155 a
+SDict begin 13 H.A end
+ 546 1155 a 546 1155 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3954) cvn H.B /DEST pdfmark
+end
+ 546 1155 a Fx(-D,)20 b(--daemon)e
+FC(Run)i(as)h(daemon.)-2 1166 y
+SDict begin H.S end
+ -2 1166 a -2 1166 a
+SDict begin 13 H.A end
+ -2
+1166 a -2 1166 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3955) cvn H.B /DEST pdfmark
+end
+ -2 1166 a Black 463 1304 a FC(2.)p Black
+546 1304 a
+SDict begin H.S end
+ 546 1304 a 546 1304 a
+SDict begin 13 H.A end
+ 546 1304 a 546 1304
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3956) cvn H.B /DEST pdfmark
+end
+ 546 1304 a 546 1304 a
+SDict begin H.S end
+ 546 1304 a 546 1304 a
+SDict begin 13 H.A end
+ 546 1304
+a 546 1304 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3957) cvn H.B /DEST pdfmark
+end
+ 546 1304 a Fx(--for)m(e)m(gr)l(ound)e FC(Stay)i(in)f(the)g
+(fore)o(ground,)d(do)i(not)h(run)g(as)g(daemon.)-2 1322
+y
+SDict begin H.S end
+ -2 1322 a -2 1322 a
+SDict begin 13 H.A end
+ -2 1322 a -2 1322 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3958) cvn H.B /DEST pdfmark
+end
+ -2 1322 a Black
+463 1454 a FC(3.)p Black 546 1454 a
+SDict begin H.S end
+ 546 1454 a 546 1454
+a
+SDict begin 13 H.A end
+ 546 1454 a 546 1454 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3959) cvn H.B /DEST pdfmark
+end
+ 546 1454 a 546 1454 a
+SDict begin H.S end
+ 546 1454
+a 546 1454 a
+SDict begin 13 H.A end
+ 546 1454 a 546 1454 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3960) cvn H.B /DEST pdfmark
+end
+ 546 1454 a Fx(-f)o(,)g(--for)m(e)o
+(ver)i FC(Loop)d(fore)n(v)o(er)m(,)e(e)n(v)o(en)i(if)i(not)f(daemon.)-2
+1472 y
+SDict begin H.S end
+ -2 1472 a -2 1472 a
+SDict begin 13 H.A end
+ -2 1472 a -2 1472 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3961) cvn H.B /DEST pdfmark
+end
+ -2 1472
+a Black 463 1603 a FC(4.)p Black 546 1603 a
+SDict begin H.S end
+ 546 1603
+a 546 1603 a
+SDict begin 13 H.A end
+ 546 1603 a 546 1603 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3962) cvn H.B /DEST pdfmark
+end
+ 546 1603 a 546 1603
+a
+SDict begin H.S end
+ 546 1603 a 546 1603 a
+SDict begin 13 H.A end
+ 546 1603 a 546 1603 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3963) cvn H.B /DEST pdfmark
+end
+ 546 1603
+a Fx(--bind-addr)m(ess=)p Ff(<)p Fx(IP-Addr)m(ess)p Ff(>)14
+b FC(Use)21 b(this)f(IP)g(address)f(\(i.e.)h(interf)o(ace\))e(for)h
+(outgoing)f(connections)g(\(e.g.)546 1711 y(on)h(multi-interf)o(ace)g
+(machines\).)-2 1726 y
+SDict begin H.S end
+ -2 1726 a -2 1726 a
+SDict begin 13 H.A end
+ -2 1726 a
+-2 1726 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3964) cvn H.B /DEST pdfmark
+end
+ -2 1726 a Black 463 1861 a FC(5.)p Black 546
+1861 a
+SDict begin H.S end
+ 546 1861 a 546 1861 a
+SDict begin 13 H.A end
+ 546 1861 a 546 1861 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3965) cvn H.B /DEST pdfmark
+end
+ 546
+1861 a 546 1861 a
+SDict begin H.S end
+ 546 1861 a 546 1861 a
+SDict begin 13 H.A end
+ 546 1861 a 546
+1861 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3966) cvn H.B /DEST pdfmark
+end
+ 546 1861 a Fx(-s)h Ff(<)p Fx(ar)m(g)p Ff(>)p Fx(,)f(--set-syslo)
+o(g-se)o(verity=)p Ff(<)p Fx(ar)m(g)p Ff(>)f FC(Set)j(the)f(se)n(v)o
+(erity)f(threshold)g(for)h(syslog.)3124 1861 y
+SDict begin H.S end
+ 3124 1861
+a 3124 1861 a
+SDict begin 13 H.A end
+ 3124 1861 a 3124 1861 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3967) cvn H.B /DEST pdfmark
+end
+ 3124 1861 a Fx(ar)m(g)g
+FC(may)g(be)g(one)g(of)546 1969 y
+SDict begin H.S end
+ 546 1969 a 546 1969
+a
+SDict begin 13 H.A end
+ 546 1969 a 546 1969 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3968) cvn H.B /DEST pdfmark
+end
+ 546 1969 a Fy(none,)g(deb)n(ug,)h(inf)n(o,)e
+(notice,)h(war)o(n,)g(mark,)g(err)-8 b(,)20 b(crit,)g(alert)p
+FC(.)-2 1986 y
+SDict begin H.S end
+ -2 1986 a -2 1986 a
+SDict begin 13 H.A end
+ -2 1986 a -2 1986
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3969) cvn H.B /DEST pdfmark
+end
+ -2 1986 a Black 463 2118 a FC(6.)p Black 546 2118 a
+SDict begin H.S end
+
+546 2118 a 546 2118 a
+SDict begin 13 H.A end
+ 546 2118 a 546 2118 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3970) cvn H.B /DEST pdfmark
+end
+ 546 2118
+a 546 2118 a
+SDict begin H.S end
+ 546 2118 a 546 2118 a
+SDict begin 13 H.A end
+ 546 2118 a 546 2118
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3971) cvn H.B /DEST pdfmark
+end
+ 546 2118 a Fx(-l)g Ff(<)p Fx(ar)m(g)p Ff(>)p Fx(,)f(--set-lo)o(g-se)o
+(verity=)p Ff(<)p Fx(ar)m(g)p Ff(>)e FC(Set)k(the)f(se)n(v)o(erity)g
+(threshold)e(for)i(log\002le.)3014 2118 y
+SDict begin H.S end
+ 3014 2118 a
+3014 2118 a
+SDict begin 13 H.A end
+ 3014 2118 a 3014 2118 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3972) cvn H.B /DEST pdfmark
+end
+ 3014 2118 a Fx(ar)m(g)g
+FC(may)f(be)i(one)e(of)546 2226 y
+SDict begin H.S end
+ 546 2226 a 546 2226
+a
+SDict begin 13 H.A end
+ 546 2226 a 546 2226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3973) cvn H.B /DEST pdfmark
+end
+ 546 2226 a Fy(none,)h(deb)n(ug,)h(inf)n(o,)e
+(notice,)h(war)o(n,)g(mark,)g(err)-8 b(,)20 b(crit,)g(alert)p
+FC(.)-2 2243 y
+SDict begin H.S end
+ -2 2243 a -2 2243 a
+SDict begin 13 H.A end
+ -2 2243 a -2 2243
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3974) cvn H.B /DEST pdfmark
+end
+ -2 2243 a Black 463 2375 a FC(7.)p Black 546 2375 a
+SDict begin H.S end
+
+546 2375 a 546 2375 a
+SDict begin 13 H.A end
+ 546 2375 a 546 2375 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3975) cvn H.B /DEST pdfmark
+end
+ 546 2375
+a 546 2375 a
+SDict begin H.S end
+ 546 2375 a 546 2375 a
+SDict begin 13 H.A end
+ 546 2375 a 546 2375
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3976) cvn H.B /DEST pdfmark
+end
+ 546 2375 a Fx(-m)g Ff(<)p Fx(ar)m(g)p Ff(>)p Fx(,)f(--set-mail-se)o
+(verity=)p Ff(<)p Fx(ar)m(g)p Ff(>)f FC(Set)i(the)h(se)n(v)o(erity)e
+(threshold)g(for)g(e-mail.)3093 2375 y
+SDict begin H.S end
+ 3093 2375 a 3093
+2375 a
+SDict begin 13 H.A end
+ 3093 2375 a 3093 2375 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3977) cvn H.B /DEST pdfmark
+end
+ 3093 2375 a Fx(ar)m(g)h
+FC(may)g(be)g(one)f(of)546 2483 y
+SDict begin H.S end
+ 546 2483 a 546 2483
+a
+SDict begin 13 H.A end
+ 546 2483 a 546 2483 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3978) cvn H.B /DEST pdfmark
+end
+ 546 2483 a Fy(none,)h(deb)n(ug,)h(inf)n(o,)e
+(notice,)h(war)o(n,)g(mark,)g(err)-8 b(,)20 b(crit,)g(alert)p
+FC(.)-2 2500 y
+SDict begin H.S end
+ -2 2500 a -2 2500 a
+SDict begin 13 H.A end
+ -2 2500 a -2 2500
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3979) cvn H.B /DEST pdfmark
+end
+ -2 2500 a Black 463 2633 a FC(8.)p Black 546 2633 a
+SDict begin H.S end
+
+546 2633 a 546 2633 a
+SDict begin 13 H.A end
+ 546 2633 a 546 2633 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3980) cvn H.B /DEST pdfmark
+end
+ 546 2633
+a 546 2633 a
+SDict begin H.S end
+ 546 2633 a 546 2633 a
+SDict begin 13 H.A end
+ 546 2633 a 546 2633
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3981) cvn H.B /DEST pdfmark
+end
+ 546 2633 a Fx(--set-database-se)o(verity=)p Ff(<)p
+Fx(ar)m(g)p Ff(>)15 b FC(Set)21 b(the)g(se)n(v)o(erity)e(threshold)g
+(for)g(logging)g(to)h(a)h(RDBMS.)3350 2633 y
+SDict begin H.S end
+ 3350 2633
+a 3350 2633 a
+SDict begin 13 H.A end
+ 3350 2633 a 3350 2633 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3982) cvn H.B /DEST pdfmark
+end
+ 3350 2633 a Fx(ar)m(g)f
+FC(may)f(be)546 2741 y(one)g(of)776 2741 y
+SDict begin H.S end
+ 776 2741 a
+776 2741 a
+SDict begin 13 H.A end
+ 776 2741 a 776 2741 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3983) cvn H.B /DEST pdfmark
+end
+ 776 2741 a Fy(none,)h(deb)n(ug,)h(inf)
+n(o,)f(notice,)g(war)o(n,)f(mark,)i(err)-8 b(,)20 b(crit,)g(alert)p
+FC(.)-2 2758 y
+SDict begin H.S end
+ -2 2758 a -2 2758 a
+SDict begin 13 H.A end
+ -2 2758 a -2 2758
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3984) cvn H.B /DEST pdfmark
+end
+ -2 2758 a Black 463 2890 a FC(9.)p Black 546 2890 a
+SDict begin H.S end
+
+546 2890 a 546 2890 a
+SDict begin 13 H.A end
+ 546 2890 a 546 2890 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3985) cvn H.B /DEST pdfmark
+end
+ 546 2890
+a 546 2890 a
+SDict begin H.S end
+ 546 2890 a 546 2890 a
+SDict begin 13 H.A end
+ 546 2890 a 546 2890
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3986) cvn H.B /DEST pdfmark
+end
+ 546 2890 a Fx(--set-pr)m(elude-se)o(verity=)p Ff(<)p
+Fx(ar)m(g)p Ff(>)c FC(Set)21 b(the)f(se)n(v)o(erity)g(threshold)e(for)i
+(logging)e(to)j(the)f(Prelude)f(IDS)i(system.)546 2998
+y
+SDict begin H.S end
+ 546 2998 a 546 2998 a
+SDict begin 13 H.A end
+ 546 2998 a 546 2998 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3987) cvn H.B /DEST pdfmark
+end
+ 546 2998
+a Fx(ar)m(g)f FC(may)f(be)i(one)e(of)1172 2998 y
+SDict begin H.S end
+ 1172
+2998 a 1172 2998 a
+SDict begin 13 H.A end
+ 1172 2998 a 1172 2998 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3988) cvn H.B /DEST pdfmark
+end
+ 1172 2998
+a Fy(none,)h(deb)n(ug,)h(inf)n(o,)f(notice,)f(war)o(n,)h(mark,)g(err)-8
+b(,)21 b(crit,)f(alert)p FC(.)-2 3016 y
+SDict begin H.S end
+ -2 3016 a -2
+3016 a
+SDict begin 13 H.A end
+ -2 3016 a -2 3016 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3989) cvn H.B /DEST pdfmark
+end
+ -2 3016 a Black 421 3148 a
+FC(10.)p Black 546 3148 a
+SDict begin H.S end
+ 546 3148 a 546 3148 a
+SDict begin 13 H.A end
+ 546 3148
+a 546 3148 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3990) cvn H.B /DEST pdfmark
+end
+ 546 3148 a 546 3148 a
+SDict begin H.S end
+ 546 3148 a 546 3148
+a
+SDict begin 13 H.A end
+ 546 3148 a 546 3148 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3991) cvn H.B /DEST pdfmark
+end
+ 546 3148 a Fx(-p)g Ff(<)p Fx(ar)m(g)p
+Ff(>)p Fx(,)f(--set-print-se)o(verity=)p Ff(<)p Fx(ar)m(g)p
+Ff(>)e FC(Set)k(the)f(se)n(v)o(erity)f(threshold)g(for)h
+(terminal/console.)3430 3148 y
+SDict begin H.S end
+ 3430 3148 a 3430 3148
+a
+SDict begin 13 H.A end
+ 3430 3148 a 3430 3148 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3992) cvn H.B /DEST pdfmark
+end
+ 3430 3148 a Fx(ar)m(g)g FC(may)546
+3256 y(be)g(one)f(of)875 3256 y
+SDict begin H.S end
+ 875 3256 a 875 3256 a
+SDict begin 13 H.A end
+
+875 3256 a 875 3256 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3993) cvn H.B /DEST pdfmark
+end
+ 875 3256 a Fy(none,)i(deb)n(ug,)f(inf)n(o,)g
+(notice,)g(war)o(n,)f(mark,)i(err)-8 b(,)20 b(crit,)g(alert)p
+FC(.)-2 3272 y
+SDict begin H.S end
+ -2 3272 a -2 3272 a
+SDict begin 13 H.A end
+ -2 3272 a -2 3272
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3994) cvn H.B /DEST pdfmark
+end
+ -2 3272 a Black 421 3405 a FC(11.)p Black 546 3405
+a
+SDict begin H.S end
+ 546 3405 a 546 3405 a
+SDict begin 13 H.A end
+ 546 3405 a 546 3405 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3995) cvn H.B /DEST pdfmark
+end
+ 546 3405
+a 546 3405 a
+SDict begin H.S end
+ 546 3405 a 546 3405 a
+SDict begin 13 H.A end
+ 546 3405 a 546 3405
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3996) cvn H.B /DEST pdfmark
+end
+ 546 3405 a Fx(-x)g Ff(<)p Fx(ar)m(g)p Ff(>)p Fx(,)f(--set-e)n
+(xtern-se)o(verity=)p Ff(<)p Fx(ar)m(g)p Ff(>)f FC(Set)i(the)h(se)n(v)o
+(erity)e(threshold)g(for)g(e)o(xternal)g(program\(s\).)3572
+3405 y
+SDict begin H.S end
+ 3572 3405 a 3572 3405 a
+SDict begin 13 H.A end
+ 3572 3405 a 3572 3405
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3997) cvn H.B /DEST pdfmark
+end
+ 3572 3405 a Fx(ar)m(g)546 3513 y FC(may)g(be)i(one)e(of)1039
+3513 y
+SDict begin H.S end
+ 1039 3513 a 1039 3513 a
+SDict begin 13 H.A end
+ 1039 3513 a 1039 3513
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3998) cvn H.B /DEST pdfmark
+end
+ 1039 3513 a Fy(none,)h(deb)n(ug,)h(inf)n(o,)f(notice,)f(war)o(n,)h
+(mark,)g(err)-8 b(,)21 b(crit,)f(alert)p FC(.)-2 3531
+y
+SDict begin H.S end
+ -2 3531 a -2 3531 a
+SDict begin 13 H.A end
+ -2 3531 a -2 3531 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:3999) cvn H.B /DEST pdfmark
+end
+ -2 3531 a Black
+421 3662 a FC(12.)p Black 546 3662 a
+SDict begin H.S end
+ 546 3662 a 546 3662
+a
+SDict begin 13 H.A end
+ 546 3662 a 546 3662 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4000) cvn H.B /DEST pdfmark
+end
+ 546 3662 a 546 3662 a
+SDict begin H.S end
+ 546 3662
+a 546 3662 a
+SDict begin 13 H.A end
+ 546 3662 a 546 3662 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4001) cvn H.B /DEST pdfmark
+end
+ 546 3662 a Fx(-L)g
+Ff(<)p Fx(ar)m(g)p Ff(>)p Fx(,)e(--verify-lo)o(g=)p Ff(<)p
+Fx(ar)m(g)p Ff(>)e FC(V)-9 b(erify)19 b(the)g(inte)o(grity)f(of)h(the)h
+(log)f(\002le)h(and)f(print)g(the)g(entries)h(\()3436
+3662 y
+SDict begin H.S end
+ 3436 3662 a 3436 3662 a
+SDict begin 13 H.A end
+ 3436 3662 a 3436 3662
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4002) cvn H.B /DEST pdfmark
+end
+ 3436 3662 a Fx(ar)m(g)f FC(is)h(the)546 3770 y(path)f(of)h(the)h(log)
+e(\002le\).)-2 3788 y
+SDict begin H.S end
+ -2 3788 a -2 3788 a
+SDict begin 13 H.A end
+ -2 3788 a -2
+3788 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4003) cvn H.B /DEST pdfmark
+end
+ -2 3788 a Black 421 3920 a FC(13.)p Black 546
+3920 a
+SDict begin H.S end
+ 546 3920 a 546 3920 a
+SDict begin 13 H.A end
+ 546 3920 a 546 3920 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4004) cvn H.B /DEST pdfmark
+end
+ 546
+3920 a 546 3920 a
+SDict begin H.S end
+ 546 3920 a 546 3920 a
+SDict begin 13 H.A end
+ 546 3920 a 546
+3920 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4005) cvn H.B /DEST pdfmark
+end
+ 546 3920 a Fx(-j,)h(--just-list)i FC(Modify)c(-L)j(to)f(just)h
+(list)g(the)f(log\002le,)g(rather)f(than)h(v)o(erify)f(\(to)h
+(de-obfuscate)e(the)i(log\002le)g(if)546 4028 y(you)f(ha)n(v)o(e)h
+(compiled)e(for)i(stealth)g(mode\).)1804 4028 y
+SDict begin H.S end
+ 1804
+4028 a 1804 4028 a
+SDict begin 13 H.A end
+ 1804 4028 a 1804 4028 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4006) cvn H.B /DEST pdfmark
+end
+ 1804 4028
+a Fx(Or)m(der)h(matter)o(s:)f FC(this)h(must)f(come)g(before)f(-L.)-2
+4046 y
+SDict begin H.S end
+ -2 4046 a -2 4046 a
+SDict begin 13 H.A end
+ -2 4046 a -2 4046 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4007) cvn H.B /DEST pdfmark
+end
+ -2 4046
+a Black 421 4177 a FC(14.)p Black 546 4177 a
+SDict begin H.S end
+ 546 4177
+a 546 4177 a
+SDict begin 13 H.A end
+ 546 4177 a 546 4177 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4008) cvn H.B /DEST pdfmark
+end
+ 546 4177 a 546 4177
+a
+SDict begin H.S end
+ 546 4177 a 546 4177 a
+SDict begin 13 H.A end
+ 546 4177 a 546 4177 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4009) cvn H.B /DEST pdfmark
+end
+ 546 4177
+a Fx(-M)h Ff(<)p Fx(ar)m(g)p Ff(>)p Fx(,)f(--verify-mail=)p
+Ff(<)p Fx(ar)m(g)p Ff(>)f FC(V)-9 b(erify)19 b(the)h(inte)o(grity)f(of)
+h(e-mailed)f(messages)i(\()3099 4177 y
+SDict begin H.S end
+ 3099 4177 a 3099
+4177 a
+SDict begin 13 H.A end
+ 3099 4177 a 3099 4177 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4010) cvn H.B /DEST pdfmark
+end
+ 3099 4177 a Fx(ar)m(g)e
+FC(is)i(the)g(path)e(of)546 4285 y(the)h(mail)g(box\).)-2
+4300 y
+SDict begin H.S end
+ -2 4300 a -2 4300 a
+SDict begin 13 H.A end
+ -2 4300 a -2 4300 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4011) cvn H.B /DEST pdfmark
+end
+ -2 4300
+a Black 421 4434 a FC(15.)p Black 546 4434 a
+SDict begin H.S end
+ 546 4434
+a 546 4434 a
+SDict begin 13 H.A end
+ 546 4434 a 546 4434 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4012) cvn H.B /DEST pdfmark
+end
+ 546 4434 a 546 4434
+a
+SDict begin H.S end
+ 546 4434 a 546 4434 a
+SDict begin 13 H.A end
+ 546 4434 a 546 4434 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4013) cvn H.B /DEST pdfmark
+end
+ 546 4434
+a Fx(-V)g Ff(<)p Fx(ar)m(g)p Ff(>)p Fx(,)f(--add-k)o(e)n(y=)p
+Ff(<)p Fx(ar)m(g)p Ff(>)d FC(Add)j(k)o(e)o(y)h(material)g(to)g(the)g
+(compiled-in)e(k)o(e)o(y)i(\(see)p 0 TeXcolorgray 3078
+4434 a
+SDict begin H.S end
+ 3078 4434 a FC(Section)g(11.2)3495 4434 y
+SDict begin 13 H.L end
+ 3495
+4434 a 3495 4434 a
+SDict begin [ /Subtype /Link /Dest (0:KEYPAD) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3495 4434 a Black -2 w FC(>\).)3609
+4434 y
+SDict begin H.S end
+ 3609 4434 a 3609 4434 a
+SDict begin 13 H.A end
+ 3609 4434 a 3609 4434
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4015) cvn H.B /DEST pdfmark
+end
+ 3609 4434 a Fx(ar)m(g)546 4542 y FC(must)g(be)g(of)g(the)g(form)1221
+4542 y
+SDict begin H.S end
+ 1221 4542 a 1221 4542 a
+SDict begin 13 H.A end
+ 1221 4542 a 1221 4542
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4016) cvn H.B /DEST pdfmark
+end
+ 1221 4542 a Fx(k)o(e)n(y@/path/to/e)n(xecutable)p FC(.)d(Output)j
+(will)h(be)f(written)g(to)546 4650 y
+SDict begin H.S end
+ 546 4650 a 546 4650
+a
+SDict begin 13 H.A end
+ 546 4650 a 546 4650 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4017) cvn H.B /DEST pdfmark
+end
+ 546 4650 a Fr(/path/to/executable.out)p
+FC(.)-2 4662 y
+SDict begin H.S end
+ -2 4662 a -2 4662 a
+SDict begin 13 H.A end
+ -2 4662 a -2 4662
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4018) cvn H.B /DEST pdfmark
+end
+ -2 4662 a Black 421 4800 a FC(16.)p Black 546 4800
+a
+SDict begin H.S end
+ 546 4800 a 546 4800 a
+SDict begin 13 H.A end
+ 546 4800 a 546 4800 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4019) cvn H.B /DEST pdfmark
+end
+ 546 4800
+a 546 4800 a
+SDict begin H.S end
+ 546 4800 a 546 4800 a
+SDict begin 13 H.A end
+ 546 4800 a 546 4800
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4020) cvn H.B /DEST pdfmark
+end
+ 546 4800 a Fx(-H)g Ff(<)p Fx(ar)m(g)p Ff(>)p Fx(,)f(--hash-string=)p
+Ff(<)p Fx(ar)m(g)p Ff(>)e FC(Print)j(the)g(hash)g(of)g(a)h(string)e(/)i
+(the)f(checksum)f(of)h(a)h(\002le,)f(and)g(e)o(xit.)g(If)546
+4908 y
+SDict begin H.S end
+ 546 4908 a 546 4908 a
+SDict begin 13 H.A end
+ 546 4908 a 546 4908 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4021) cvn H.B /DEST pdfmark
+end
+ 546
+4908 a Fx(ar)m(g)g FC(starts)h(with)f(a)h('/',)f(it)g(is)i(assumed)d
+(to)i(be)f(a)g(\002le,)h(otherwise)f(a)g(string.)g(This)g(function)f
+(is)i(useful)e(to)i(test)546 5016 y(the)f(hash)g(algorithm.)-2
+5034 y
+SDict begin H.S end
+ -2 5034 a -2 5034 a
+SDict begin 13 H.A end
+ -2 5034 a -2 5034 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4022) cvn H.B /DEST pdfmark
+end
+ -2 5034
+a Black 421 5165 a FC(17.)p Black 546 5165 a
+SDict begin H.S end
+ 546 5165
+a 546 5165 a
+SDict begin 13 H.A end
+ 546 5165 a 546 5165 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4023) cvn H.B /DEST pdfmark
+end
+ 546 5165 a 546 5165
+a
+SDict begin H.S end
+ 546 5165 a 546 5165 a
+SDict begin 13 H.A end
+ 546 5165 a 546 5165 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4024) cvn H.B /DEST pdfmark
+end
+ 546 5165
+a Fx(-z)g Ff(<)p Fx(ar)m(g)p Ff(>)p Fx(,)f(--tr)o(acele)o(vel=)p
+Ff(<)p Fx(ar)m(g)p Ff(>)f FC(If)i(compiled)e(with)j(--enable-deb)n(ug:)
+c(ar)o(g)i Ff(>)h FC(0)g(to)h(switch)f(on)g(deb)n(ug)546
+5273 y(output.)e(If)i(compiled)f(with)i(--enable-trace:)c(ar)o(g)j
+Ff(>)g FC(0)g(max.)g(le)n(v)o(el)g(for)f(call)i(tracing.)-2
+5291 y
+SDict begin H.S end
+ -2 5291 a -2 5291 a
+SDict begin 13 H.A end
+ -2 5291 a -2 5291 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4025) cvn H.B /DEST pdfmark
+end
+ -2 5291
+a Black 3620 5805 a Fx(111)p Black eop end
+%%Page: 112 117
+TeXDict begin 112 116 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.112) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2354 104 a
+Fx(Appendix)18 b(B.)i(List)i(of)e(command)f(line)h(options)p
+Black Black 421 309 a FC(18.)p Black 546 309 a
+SDict begin H.S end
+ 546 309
+a 546 309 a
+SDict begin 13 H.A end
+ 546 309 a 546 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4026) cvn H.B /DEST pdfmark
+end
+ 546 309 a 546 309 a
+SDict begin H.S end
+ 546
+309 a 546 309 a
+SDict begin 13 H.A end
+ 546 309 a 546 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4027) cvn H.B /DEST pdfmark
+end
+ 546 309 a Fx(-i)g
+Ff(<)p Fx(ar)m(g)p Ff(>)p Fx(,)f(--milestone=)p Ff(<)p
+Fx(ar)m(g)p Ff(>)f FC(If)i(compiled)f(with)h(--enable-trace:)e(trace)i
+(from)f(milestone)h(ar)o(g)f(to)546 417 y(ar)o(g+1.)f(If)i(ar)o(g)f(=)i
+(-1,)f(trace)g(all.)-2 435 y
+SDict begin H.S end
+ -2 435 a -2 435 a
+SDict begin 13 H.A end
+ -2 435
+a -2 435 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4028) cvn H.B /DEST pdfmark
+end
+ -2 435 a Black 421 566 a FC(19.)p Black 546
+566 a
+SDict begin H.S end
+ 546 566 a 546 566 a
+SDict begin 13 H.A end
+ 546 566 a 546 566 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4029) cvn H.B /DEST pdfmark
+end
+ 546 566
+a 546 566 a
+SDict begin H.S end
+ 546 566 a 546 566 a
+SDict begin 13 H.A end
+ 546 566 a 546 566 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4030) cvn H.B /DEST pdfmark
+end
+ 546
+566 a Fx(-d)g Ff(<)p Fx(ar)m(g)p Ff(>)p Fx(,)f(--list-database=)p
+Ff(<)p Fx(ar)m(g)p Ff(>)d FC(List)21 b(the)f(database)g(\002le)2427
+566 y
+SDict begin H.S end
+ 2427 566 a 2427 566 a
+SDict begin 13 H.A end
+ 2427 566 a 2427 566 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4031) cvn H.B /DEST pdfmark
+end
+ 2427
+566 a Fx(ar)m(g)g FC(\(use)g(\223def)o(ault\224)f(for)g(the)i
+(compiled-in)546 674 y(path\).)-2 692 y
+SDict begin H.S end
+ -2 692 a -2 692
+a
+SDict begin 13 H.A end
+ -2 692 a -2 692 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4032) cvn H.B /DEST pdfmark
+end
+ -2 692 a Black 421 823 a FC(20.)p
+Black 546 823 a
+SDict begin H.S end
+ 546 823 a 546 823 a
+SDict begin 13 H.A end
+ 546 823 a 546 823
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4033) cvn H.B /DEST pdfmark
+end
+ 546 823 a 546 823 a
+SDict begin H.S end
+ 546 823 a 546 823 a
+SDict begin 13 H.A end
+ 546 823 a 546
+823 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4034) cvn H.B /DEST pdfmark
+end
+ 546 823 a Fx(-a,)e(--full-detail)g FC(Modify)g(-d)h(to)g(list)h
+(full)f(details)h(\(numeric)d(mode,)h(o)n(wner)m(,)g(group,)f(all)j
+(three)f(timestamps)546 931 y(\(ctime,)f(mtime,)h(atime\),)g(and)f(the)
+i(checksum.)1943 931 y
+SDict begin H.S end
+ 1943 931 a 1943 931 a
+SDict begin 13 H.A end
+ 1943 931
+a 1943 931 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4035) cvn H.B /DEST pdfmark
+end
+ 1943 931 a Fx(Or)m(der)g(matter)o(s:)f FC(this)h(must)f
+(come)g(before)f(-d.)-2 946 y
+SDict begin H.S end
+ -2 946 a -2 946 a
+SDict begin 13 H.A end
+ -2 946
+a -2 946 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4036) cvn H.B /DEST pdfmark
+end
+ -2 946 a Black 421 1081 a FC(21.)p Black 546
+1081 a
+SDict begin H.S end
+ 546 1081 a 546 1081 a
+SDict begin 13 H.A end
+ 546 1081 a 546 1081 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4037) cvn H.B /DEST pdfmark
+end
+ 546
+1081 a 546 1081 a
+SDict begin H.S end
+ 546 1081 a 546 1081 a
+SDict begin 13 H.A end
+ 546 1081 a 546
+1081 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4038) cvn H.B /DEST pdfmark
+end
+ 546 1081 a 20 w Fx(--delimited)j FC(Same)e(as)h(--full-detail,)d
+(b)n(ut)i(with)1967 1081 y
+SDict begin H.S end
+ 1967 1081 a 1967 1081 a
+SDict begin 13 H.A end
+ 1967
+1081 a 1967 1081 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4039) cvn H.B /DEST pdfmark
+end
+ 1967 1081 a Fx(comma-delimited)g FC(\002elds.)-2
+1093 y
+SDict begin H.S end
+ -2 1093 a -2 1093 a
+SDict begin 13 H.A end
+ -2 1093 a -2 1093 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4040) cvn H.B /DEST pdfmark
+end
+ -2 1093
+a Black 421 1230 a FC(22.)p Black 546 1230 a
+SDict begin H.S end
+ 546 1230
+a 546 1230 a
+SDict begin 13 H.A end
+ 546 1230 a 546 1230 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4041) cvn H.B /DEST pdfmark
+end
+ 546 1230 a 546 1230
+a
+SDict begin H.S end
+ 546 1230 a 546 1230 a
+SDict begin 13 H.A end
+ 546 1230 a 546 1230 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4042) cvn H.B /DEST pdfmark
+end
+ 546 1230
+a Fx(-c,)g(--copyright)f FC(Print)i(cop)o(yright)d(information)g(and)h
+(e)o(xit.)-2 1248 y
+SDict begin H.S end
+ -2 1248 a -2 1248 a
+SDict begin 13 H.A end
+ -2 1248 a -2
+1248 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4043) cvn H.B /DEST pdfmark
+end
+ -2 1248 a Black 421 1380 a FC(23.)p Black 546
+1380 a
+SDict begin H.S end
+ 546 1380 a 546 1380 a
+SDict begin 13 H.A end
+ 546 1380 a 546 1380 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4044) cvn H.B /DEST pdfmark
+end
+ 546
+1380 a 546 1380 a
+SDict begin H.S end
+ 546 1380 a 546 1380 a
+SDict begin 13 H.A end
+ 546 1380 a 546
+1380 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4045) cvn H.B /DEST pdfmark
+end
+ 546 1380 a Fx(-h,)g(--help)g FC(Print)i(a)f(short)g(help)g(on)g
+(command)e(line)i(options)f(and)h(e)o(xit.)-2 1398 y
+SDict begin H.S end
+
+-2 1398 a -2 1398 a
+SDict begin 13 H.A end
+ -2 1398 a -2 1398 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4046) cvn H.B /DEST pdfmark
+end
+ -2 1398 a Black
+421 1529 a FC(24.)p Black 546 1529 a
+SDict begin H.S end
+ 546 1529 a 546 1529
+a
+SDict begin 13 H.A end
+ 546 1529 a 546 1529 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4047) cvn H.B /DEST pdfmark
+end
+ 546 1529 a 546 1529 a
+SDict begin H.S end
+ 546 1529
+a 546 1529 a
+SDict begin 13 H.A end
+ 546 1529 a 546 1529 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4048) cvn H.B /DEST pdfmark
+end
+ 546 1529 a Fx(--tr)o(ace-enable)d
+FC(Print)j(a)h(trace)f(of)g(the)g(e)o(x)o(ecution)e(\003o)n(w)-5
+b(.)-2 1530 y
+SDict begin H.S end
+ -2 1530 a -2 1530 a
+SDict begin 13 H.A end
+ -2 1530 a -2 1530 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4049) cvn H.B /DEST pdfmark
+end
+
+-2 1530 a Black 421 1679 a FC(25.)p Black 546 1679 a
+SDict begin H.S end
+
+546 1679 a 546 1679 a
+SDict begin 13 H.A end
+ 546 1679 a 546 1679 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4050) cvn H.B /DEST pdfmark
+end
+ 546 1679
+a 546 1679 a
+SDict begin H.S end
+ 546 1679 a 546 1679 a
+SDict begin 13 H.A end
+ 546 1679 a 546 1679
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4051) cvn H.B /DEST pdfmark
+end
+ 546 1679 a Fx(--tr)o(ace-lo)o(g\002le=)p Ff(<)p Fx(ar)m(g)p
+Ff(>)16 b FC(Use)21 b(\002le)1600 1679 y
+SDict begin H.S end
+ 1600 1679 a
+1600 1679 a
+SDict begin 13 H.A end
+ 1600 1679 a 1600 1679 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4052) cvn H.B /DEST pdfmark
+end
+ 1600 1679 a Fx(ar)m(g)f
+FC(to)g(log)g(the)g(trace.)-2 1838 y
+SDict begin H.S end
+ -2 1838 a -2 1838
+a
+SDict begin 13 H.A end
+ -2 1838 a -2 1838 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SAMHAIN-COMMAND-LINE) cvn H.B
+/DEST pdfmark end
+ -2 1838 a 377 x Fu(B.2.)39 b(samhain)885
+2215 y
+SDict begin H.S end
+ 885 2215 a 885 2215 a
+SDict begin 22.464 H.A end
+ 885 2215 a 885 2215 a
+SDict begin [ /View [/XYZ H.V] /Dest (15.80.1) cvn H.B /DEST pdfmark
+end
+ 885
+2215 a -2 2217 a
+SDict begin H.S end
+ -2 2217 a -2 2217 a
+SDict begin 13 H.A end
+ -2 2217 a -2 2217
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4056) cvn H.B /DEST pdfmark
+end
+ -2 2217 a -2 2246 a
+SDict begin H.S end
+ -2 2246 a -2 2246 a
+SDict begin 13 H.A end
+ -2 2246 a -2
+2246 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4057) cvn H.B /DEST pdfmark
+end
+ -2 2246 a Black 463 2422 a FC(1.)p Black 546 2422
+a
+SDict begin H.S end
+ 546 2422 a 546 2422 a
+SDict begin 13 H.A end
+ 546 2422 a 546 2422 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4058) cvn H.B /DEST pdfmark
+end
+ 546 2422
+a 546 2422 a
+SDict begin H.S end
+ 546 2422 a 546 2422 a
+SDict begin 13 H.A end
+ 546 2422 a 546 2422
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4059) cvn H.B /DEST pdfmark
+end
+ 546 2422 a Fx(-t)20 b Ff(<)p Fx(ar)m(g)p Ff(>)p Fx(,)f(--set-c)o(hec)
+n(ksum-test=)p Ff(<)p Fx(ar)m(g)p Ff(>)e FC(Set)k(\002le)g(checking)d
+(to)2516 2422 y
+SDict begin H.S end
+ 2516 2422 a 2516 2422 a
+SDict begin 13 H.A end
+ 2516 2422 a 2516
+2422 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4060) cvn H.B /DEST pdfmark
+end
+ 2516 2422 a Fx(init)q FC(,)2669 2422 y
+SDict begin H.S end
+ 2669 2422
+a 2669 2422 a
+SDict begin 13 H.A end
+ 2669 2422 a 2669 2422 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4061) cvn H.B /DEST pdfmark
+end
+ 2669 2422 a Fx(update)p
+FC(,)h(or)3027 2422 y
+SDict begin H.S end
+ 3027 2422 a 3027 2422 a
+SDict begin 13 H.A end
+ 3027 2422
+a 3027 2422 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4062) cvn H.B /DEST pdfmark
+end
+ 3027 2422 a Fx(c)o(hec)n(k)q FC(.)h(Use)3406
+2422 y
+SDict begin H.S end
+ 3406 2422 a 3406 2422 a
+SDict begin 13 H.A end
+ 3406 2422 a 3406 2422
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4063) cvn H.B /DEST pdfmark
+end
+ 3406 2422 a Fx(init)i FC(to)546 2530 y(create)e(the)g(database,)1214
+2530 y
+SDict begin H.S end
+ 1214 2530 a 1214 2530 a
+SDict begin 13 H.A end
+ 1214 2530 a 1214 2530
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4064) cvn H.B /DEST pdfmark
+end
+ 1214 2530 a Fx(update)f FC(to)h(update)f(it,)i(and)2017
+2530 y
+SDict begin H.S end
+ 2017 2530 a 2017 2530 a
+SDict begin 13 H.A end
+ 2017 2530 a 2017 2530
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4065) cvn H.B /DEST pdfmark
+end
+ 2017 2530 a Fx(c)o(hec)n(k)g FC(to)f(check)g(\002les)h(against)e(the)
+h(database.)-2 2548 y
+SDict begin H.S end
+ -2 2548 a -2 2548 a
+SDict begin 11.7 H.A end
+ -2 2548 a -2
+2548 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4066) cvn H.B /DEST pdfmark
+end
+ -2 2548 a -2 2673 a
+SDict begin H.S end
+ -2 2673 a -2 2673 a
+SDict begin 11.7 H.A end
+ -2 2673
+a -2 2673 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4068) cvn H.B /DEST pdfmark
+end
+ -2 2673 a 712 2752 a Fw(TIP:)g Fv(Y)-10 b(es)o(,)19
+b(it)h(is)h(nor)r(mal)e(that)1562 2752 y
+SDict begin H.S end
+ 1562 2752 a
+1562 2752 a
+SDict begin 11.7 H.A end
+ 1562 2752 a 1562 2752 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4069) cvn H.B /DEST pdfmark
+end
+ 1562 2752 a Fq(update)g
+Fv(tak)o(es)h(m)o(uch)h(more)f(time)g(than)2732 2752
+y
+SDict begin H.S end
+ 2732 2752 a 2732 2752 a
+SDict begin 11.7 H.A end
+ 2732 2752 a 2732 2752 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4070) cvn H.B /DEST pdfmark
+end
+ 2732
+2752 a Fq(init)7 b Fv(.)39 3092 y
+SDict begin H.S end
+ 39 3092 a 39 3092 a
+SDict begin 13 H.A end
+
+39 3092 a 39 3092 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4071) cvn H.B /DEST pdfmark
+end
+ 39 3092 a Black 463 3242 a FC(2.)p
+Black 546 3242 a
+SDict begin H.S end
+ 546 3242 a 546 3242 a
+SDict begin 13 H.A end
+ 546 3242 a 546
+3242 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4072) cvn H.B /DEST pdfmark
+end
+ 546 3242 a 546 3242 a
+SDict begin H.S end
+ 546 3242 a 546 3242 a
+SDict begin 13 H.A end
+ 546
+3242 a 546 3242 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4073) cvn H.B /DEST pdfmark
+end
+ 546 3242 a Fx(-i,)20 b(--inter)o(active)f
+FC(Use)i(interacti)n(v)o(e)e(mode)g(for)1908 3242 y
+SDict begin H.S end
+ 1908
+3242 a 1908 3242 a
+SDict begin 13 H.A end
+ 1908 3242 a 1908 3242 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4074) cvn H.B /DEST pdfmark
+end
+ 1908 3242
+a Fx(update)g FC(\(ask)h(before)f(updating)f(an)i(entry\).)-2
+3260 y
+SDict begin H.S end
+ -2 3260 a -2 3260 a
+SDict begin 13 H.A end
+ -2 3260 a -2 3260 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4075) cvn H.B /DEST pdfmark
+end
+ -2 3260
+a Black 463 3391 a FC(3.)p Black 546 3391 a
+SDict begin H.S end
+ 546 3391
+a 546 3391 a
+SDict begin 13 H.A end
+ 546 3391 a 546 3391 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4076) cvn H.B /DEST pdfmark
+end
+ 546 3391 a 546 3391
+a
+SDict begin H.S end
+ 546 3391 a 546 3391 a
+SDict begin 13 H.A end
+ 546 3391 a 546 3391 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4077) cvn H.B /DEST pdfmark
+end
+ 546 3391
+a Fx(-e)g Ff(<)p Fx(ar)m(g)p Ff(>)p Fx(,)f(--set-e)n(xport-se)o
+(verity=)p Ff(<)p Fx(ar)m(g)p Ff(>)e FC(Set)k(the)f(se)n(v)o(erity)g
+(threshold)e(for)i(forw)o(arding)e(messages)i(to)546
+3499 y(the)g(log)g(serv)o(er)-5 b(.)1033 3499 y
+SDict begin H.S end
+ 1033
+3499 a 1033 3499 a
+SDict begin 13 H.A end
+ 1033 3499 a 1033 3499 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4078) cvn H.B /DEST pdfmark
+end
+ 1033 3499
+a Fx(ar)m(g)20 b FC(may)g(be)g(one)g(of)1660 3499 y
+SDict begin H.S end
+ 1660
+3499 a 1660 3499 a
+SDict begin 13 H.A end
+ 1660 3499 a 1660 3499 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4079) cvn H.B /DEST pdfmark
+end
+ 1660 3499
+a Fy(none,)g(deb)n(ug,)h(inf)n(o,)e(notice,)h(war)o(n,)g(mark,)g(err)-8
+b(,)20 b(crit,)g(alert)p FC(.)-2 3517 y
+SDict begin H.S end
+ -2 3517 a -2
+3517 a
+SDict begin 13 H.A end
+ -2 3517 a -2 3517 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4080) cvn H.B /DEST pdfmark
+end
+ -2 3517 a Black 463 3649 a
+FC(4.)p Black 546 3649 a
+SDict begin H.S end
+ 546 3649 a 546 3649 a
+SDict begin 13 H.A end
+ 546 3649
+a 546 3649 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4081) cvn H.B /DEST pdfmark
+end
+ 546 3649 a 546 3649 a
+SDict begin H.S end
+ 546 3649 a 546 3649
+a
+SDict begin 13 H.A end
+ 546 3649 a 546 3649 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4082) cvn H.B /DEST pdfmark
+end
+ 546 3649 a Fx(-r)g Ff(<)p Fx(ar)m(g)p
+Ff(>)p Fx(,)f(--r)m(ecur)o(sion=)p Ff(<)p Fx(ar)m(g)p
+Ff(>)f FC(Set)j(the)f(def)o(ault)g(recursion)e(le)n(v)o(el)i(for)g
+(directories)f(\(0)h(--)g(99\).)-2 3666 y
+SDict begin H.S end
+ -2 3666 a -2
+3666 a
+SDict begin 13 H.A end
+ -2 3666 a -2 3666 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4083) cvn H.B /DEST pdfmark
+end
+ -2 3666 a Black 463 3798 a
+FC(5.)p Black 546 3798 a
+SDict begin H.S end
+ 546 3798 a 546 3798 a
+SDict begin 13 H.A end
+ 546 3798
+a 546 3798 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4084) cvn H.B /DEST pdfmark
+end
+ 546 3798 a 546 3798 a
+SDict begin H.S end
+ 546 3798 a 546 3798
+a
+SDict begin 13 H.A end
+ 546 3798 a 546 3798 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4085) cvn H.B /DEST pdfmark
+end
+ 546 3798 a Fx(--init2stdout)f
+FC(Write)i(the)f(database)g(to)g(stdout)g(when)g(performing)d(the)j
+(initialization.)-2 3857 y
+SDict begin H.S end
+ -2 3857 a -2 3857 a
+SDict begin 13 H.A end
+ -2 3857
+a -2 3857 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:COMMAND-LINE-YULE) cvn H.B
+/DEST pdfmark end
+ -2 3857 a 360 x Fu(B.3.)39 b(yule)589 4217
+y
+SDict begin H.S end
+ 589 4217 a 589 4217 a
+SDict begin 22.464 H.A end
+ 589 4217 a 589 4217 a
+SDict begin [ /View [/XYZ H.V] /Dest (15.81.1) cvn H.B /DEST pdfmark
+end
+ 589 4217
+a -2 4246 a
+SDict begin H.S end
+ -2 4246 a -2 4246 a
+SDict begin 13 H.A end
+ -2 4246 a -2 4246 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4089) cvn H.B /DEST pdfmark
+end
+ -2
+4246 a -2 4275 a
+SDict begin H.S end
+ -2 4275 a -2 4275 a
+SDict begin 13 H.A end
+ -2 4275 a -2 4275
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4090) cvn H.B /DEST pdfmark
+end
+ -2 4275 a Black 463 4423 a FC(1.)p Black 546 4423 a
+SDict begin H.S end
+
+546 4423 a 546 4423 a
+SDict begin 13 H.A end
+ 546 4423 a 546 4423 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4091) cvn H.B /DEST pdfmark
+end
+ 546 4423
+a 546 4423 a
+SDict begin H.S end
+ 546 4423 a 546 4423 a
+SDict begin 13 H.A end
+ 546 4423 a 546 4423
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4092) cvn H.B /DEST pdfmark
+end
+ 546 4423 a Fx(-S,)19 b(--server)k FC(Run)d(as)h(serv)o(er)-5
+b(.)19 b(Only)h(required)f(if)h(the)g(binary)f(is)i(dual-purpose.)-2
+4441 y
+SDict begin H.S end
+ -2 4441 a -2 4441 a
+SDict begin 13 H.A end
+ -2 4441 a -2 4441 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4093) cvn H.B /DEST pdfmark
+end
+ -2 4441
+a Black 463 4573 a FC(2.)p Black 546 4573 a
+SDict begin H.S end
+ 546 4573
+a 546 4573 a
+SDict begin 13 H.A end
+ 546 4573 a 546 4573 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4094) cvn H.B /DEST pdfmark
+end
+ 546 4573 a 546 4573
+a
+SDict begin H.S end
+ 546 4573 a 546 4573 a
+SDict begin 13 H.A end
+ 546 4573 a 546 4573 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4095) cvn H.B /DEST pdfmark
+end
+ 546 4573
+a Fx(-q,)e(--quali\002ed)h FC(Log)g(recei)n(v)o(ed)e(messages)j(with)f
+(the)g(fully)g(quali\002ed)f(name)h(of)g(client)g(host.)-2
+4591 y
+SDict begin H.S end
+ -2 4591 a -2 4591 a
+SDict begin 13 H.A end
+ -2 4591 a -2 4591 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4096) cvn H.B /DEST pdfmark
+end
+ -2 4591
+a Black 463 4722 a FC(3.)p Black 546 4722 a
+SDict begin H.S end
+ 546 4722
+a 546 4722 a
+SDict begin 13 H.A end
+ 546 4722 a 546 4722 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4097) cvn H.B /DEST pdfmark
+end
+ 546 4722 a 546 4722
+a
+SDict begin H.S end
+ 546 4722 a 546 4722 a
+SDict begin 13 H.A end
+ 546 4722 a 546 4722 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4098) cvn H.B /DEST pdfmark
+end
+ 546 4722
+a 20 w Fx(--c)o(hr)l(oot=)p Ff(<)p Fx(ar)m(g)p Ff(>)e
+FC(Chroot)h(to)h(to)h(the)f(directory)2016 4722 y
+SDict begin H.S end
+ 2016
+4722 a 2016 4722 a
+SDict begin 13 H.A end
+ 2016 4722 a 2016 4722 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4099) cvn H.B /DEST pdfmark
+end
+ 2016 4722
+a Fx(ar)m(g)g FC(\(should)f(be)h(an)h(absolute)e(path.)-2
+4740 y
+SDict begin H.S end
+ -2 4740 a -2 4740 a
+SDict begin 13 H.A end
+ -2 4740 a -2 4740 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4100) cvn H.B /DEST pdfmark
+end
+ -2 4740
+a Black 463 4872 a FC(4.)p Black 546 4872 a
+SDict begin H.S end
+ 546 4872
+a 546 4872 a
+SDict begin 13 H.A end
+ 546 4872 a 546 4872 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4101) cvn H.B /DEST pdfmark
+end
+ 546 4872 a 546 4872
+a
+SDict begin H.S end
+ 546 4872 a 546 4872 a
+SDict begin 13 H.A end
+ 546 4872 a 546 4872 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4102) cvn H.B /DEST pdfmark
+end
+ 546 4872
+a Fx(-G,)h(--g)o(en-passwor)m(d)g FC(Generate)f(a)i(random)d(passw)o
+(ord)i(suitable)g(for)f(use)i(in)f(the)g(follo)n(wing)f(option)g(\(16)
+546 4980 y(he)o(xadecimal)f(digits\).)-2 4998 y
+SDict begin H.S end
+ -2 4998
+a -2 4998 a
+SDict begin 13 H.A end
+ -2 4998 a -2 4998 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4103) cvn H.B /DEST pdfmark
+end
+ -2 4998 a Black 463 5129
+a FC(5.)p Black 546 5129 a
+SDict begin H.S end
+ 546 5129 a 546 5129 a
+SDict begin 13 H.A end
+ 546
+5129 a 546 5129 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4104) cvn H.B /DEST pdfmark
+end
+ 546 5129 a 546 5129 a
+SDict begin H.S end
+ 546 5129 a 546
+5129 a
+SDict begin 13 H.A end
+ 546 5129 a 546 5129 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4105) cvn H.B /DEST pdfmark
+end
+ 546 5129 a Fx(-P)i Ff(<)p
+Fx(ar)m(g)p Ff(>)p Fx(,)f(--passwor)m(d=)p Ff(<)p Fx(ar)m(g)p
+Ff(>)e FC(Compute)j(a)g(client)g(re)o(gistry)g(entry)-5
+b(.)2684 5129 y
+SDict begin H.S end
+ 2684 5129 a 2684 5129 a
+SDict begin 13 H.A end
+ 2684 5129 a 2684
+5129 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4106) cvn H.B /DEST pdfmark
+end
+ 2684 5129 a Fx(ar)m(g)20 b FC(is)h(the)g(chosen)e(passw)o(ord)g
+(\(16)546 5237 y(he)o(xadecimal)f(digits\).)p Black 3620
+5805 a Fx(112)p Black eop end
+%%Page: 113 118
+TeXDict begin 113 117 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.113) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black -2 226
+a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:THE-CONFIGURATION-FILE) cvn
+H.B /DEST pdfmark end
+ -2 226 a 125 x
+Fz(Appendix)48 b(C.)g(List)g(of)g(con\002guration)h(\002le)f(options)
+3680 351 y
+SDict begin H.S end
+ 3680 351 a 3680 351 a
+SDict begin 26.957 H.A end
+ 3680 351 a 3680 351
+a
+SDict begin [ /View [/XYZ H.V] /Dest (16.0) cvn H.B /DEST pdfmark end
+ 3680 351 a -2 443 a
+SDict begin H.S end
+ -2 443 a -2 443 a
+SDict begin 13 H.A end
+ -2 443 a -2 443
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CONFIGFILE) cvn H.B /DEST pdfmark
+end
+ -2 443 a 339 x Fu(C.1.)39 b(General)837 782 y
+SDict begin H.S end
+ 837 782
+a 837 782 a
+SDict begin 22.464 H.A end
+ 837 782 a 837 782 a
+SDict begin [ /View [/XYZ H.V] /Dest (16.82.1) cvn H.B /DEST pdfmark
+end
+ 837 782 a -2 950 a
+SDict begin H.S end
+ -2
+950 a -2 950 a
+SDict begin 13 H.A end
+ -2 950 a -2 950 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4111) cvn H.B /DEST pdfmark
+end
+ -2 950 a 396 1056 a
+FC(The)20 b(con\002guration)e(\002le)i(for)1254 1056
+y
+SDict begin H.S end
+ 1254 1056 a 1254 1056 a
+SDict begin 13 H.A end
+ 1254 1056 a 1254 1056 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4112) cvn H.B /DEST pdfmark
+end
+ 1254
+1056 a FC(samhain)g(is)h(named)1870 1056 y
+SDict begin H.S end
+ 1870 1056
+a 1870 1056 a
+SDict begin 13 H.A end
+ 1870 1056 a 1870 1056 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4113) cvn H.B /DEST pdfmark
+end
+ 1870 1056 a Fr(samhainrc)e
+FC(by)h(def)o(ault.)f(Also)i(by)e(def)o(ault,)h(it)g(is)i(placed)d(in)
+396 1164 y
+SDict begin H.S end
+ 396 1164 a 396 1164 a
+SDict begin 13 H.A end
+ 396 1164 a 396 1164
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4114) cvn H.B /DEST pdfmark
+end
+ 396 1164 a Fr(/etc)p FC(.)h(\(Name)g(and)f(location)h(is)h
+(con\002gurable)d(at)i(compile)f(time\).)h(The)g(distrib)n(ution)f
+(package)g(comes)h(with)g(a)396 1272 y(commented)e(sample)i
+(con\002guration)e(\002le.)-2 1456 y
+SDict begin H.S end
+ -2 1456 a -2 1456
+a
+SDict begin 13 H.A end
+ -2 1456 a -2 1456 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4115) cvn H.B /DEST pdfmark
+end
+ -2 1456 a 396 1546 a FC(This)j(section)f
+(introduces)e(the)i(general)f(structure)h(of)g(the)g(con\002guration)d
+(\002le.)k(Details)g(on)f(indi)n(vidual)e(entries)i(in)396
+1654 y(the)g(con\002guration)e(\002les)j(are)f(discussed)g(in)p
+0 TeXcolorgray 1688 1654 a
+SDict begin H.S end
+ 1688 1654 a FC(Section)f(5.4)2062
+1654 y
+SDict begin 13 H.L end
+ 2062 1654 a 2062 1654 a
+SDict begin [ /Subtype /Link /Dest (0:FILEDEF) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2062 1654 a Black -1 w
+FC(>)i(\(which)e(\002les)i(to)g(monitor\),)p 0 TeXcolorgray
+2957 1654 a
+SDict begin H.S end
+ 2957 1654 a FC(Section)e(4.1)3331 1654 y
+SDict begin 13 H.L end
+
+3331 1654 a 3331 1654 a
+SDict begin [ /Subtype /Link /Dest (0:LOGDEF) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 3331 1654 a Black -1 w FC(>)i(\(what)396
+1762 y(should)e(be)i(logged,)d(which)i(logging)e(f)o(acilities)j
+(should)e(be)h(used,)g(and)g(ho)n(w)f(these)i(f)o(acilities)g(are)f
+(properly)396 1870 y(con\002gured\),)e(and)p 0 TeXcolorgray
+961 1870 a
+SDict begin H.S end
+ 961 1870 a FC(Section)i(5.11)1378 1870 y
+SDict begin 13 H.L end
+ 1378
+1870 a 1378 1870 a
+SDict begin [ /Subtype /Link /Dest (0:MONDEF) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1378 1870 a Black -2 w FC(>)h(\(monitoring)c
+(login/logout)h(e)n(v)o(ents\).)-2 2054 y
+SDict begin H.S end
+ -2 2054 a -2
+2054 a
+SDict begin 13 H.A end
+ -2 2054 a -2 2054 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4119) cvn H.B /DEST pdfmark
+end
+ -2 2054 a 396 2144 a FC(The)i
+(con\002guration)e(\002le)i(contains)g(se)n(v)o(eral)1686
+2144 y
+SDict begin H.S end
+ 1686 2144 a 1686 2144 a
+SDict begin 13 H.A end
+ 1686 2144 a 1686 2144
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4120) cvn H.B /DEST pdfmark
+end
+ 1686 2144 a Fx(sections)p FC(,)g(indicated)g(by)2424
+2144 y
+SDict begin H.S end
+ 2424 2144 a 2424 2144 a
+SDict begin 13 H.A end
+ 2424 2144 a 2424 2144
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4121) cvn H.B /DEST pdfmark
+end
+ 2424 2144 a Fx(headings)f FC(in)2830 2144 y
+SDict begin H.S end
+ 2830 2144
+a 2830 2144 a
+SDict begin 13 H.A end
+ 2830 2144 a 2830 2144 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4122) cvn H.B /DEST pdfmark
+end
+ 2830 2144 a Fx(squar)m(e)h(br)o
+(ac)n(k)o(ets)p FC(.)g(Each)396 2252 y(section)g(may)g(hold)f(zero)h
+(or)g(more)1429 2252 y
+SDict begin H.S end
+ 1429 2252 a 1429 2252 a
+SDict begin 13 H.A end
+ 1429 2252
+a 1429 2252 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4123) cvn H.B /DEST pdfmark
+end
+ 1429 2252 a Fy(k)o(ey=)1600 2252 y
+SDict begin H.S end
+ 1600
+2252 a 1600 2252 a
+SDict begin 13 H.A end
+ 1600 2252 a 1600 2252 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4124) cvn H.B /DEST pdfmark
+end
+ 1600 2252
+a Fl(value)g FC(pairs.)g(K)n(e)o(ys)g(are)h(not)e(case)i(sensiti)n(v)o
+(e,)f(and)f(space)i(around)d(the)396 2360 y('=')i(is)h(allo)n(wed.)f
+(Blank)g(lines)g(and)g(lines)g(starting)g(with)h('#')e(are)h(comments.)
+f(Ev)o(erything)f(before)g(the)j(\002rst)396 2468 y(section)f(and)g
+(after)g(an)1065 2468 y
+SDict begin H.S end
+ 1065 2468 a 1065 2468 a
+SDict begin 13 H.A end
+ 1065
+2468 a 1065 2468 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4125) cvn H.B /DEST pdfmark
+end
+ 1065 2468 a Fy([EOF])g FC(is)h(ignored.)d(The)1833
+2468 y
+SDict begin H.S end
+ 1833 2468 a 1833 2468 a
+SDict begin 13 H.A end
+ 1833 2468 a 1833 2468
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4126) cvn H.B /DEST pdfmark
+end
+ 1833 2468 a Fy([EOF])h FC(end-of-\002le)g(mark)o(er)g(is)i(optional.)
+d(The)i(\002le)h(thus)f(looks)396 2575 y(lik)o(e:)-2
+2659 y
+SDict begin H.S end
+ -2 2659 a -2 2659 a
+SDict begin 11.7 H.A end
+ -2 2659 a -2 2659 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4127) cvn H.B /DEST pdfmark
+end
+ -2 2659
+a 486 2756 a Fr(#)45 b(this)f(is)g(a)h(comment)486 2853
+y([Section)e(heading])486 2950 y(key1=value)486 3047
+y(key2=value)486 3241 y([Another)g(section])486 3338
+y(key3=value)486 3436 y(key4=value)-2 3613 y
+SDict begin H.S end
+ -2 3613
+a -2 3613 a
+SDict begin 13 H.A end
+ -2 3613 a -2 3613 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4128) cvn H.B /DEST pdfmark
+end
+ -2 3613 a 396 3710 a
+FC(F)o(or)20 b(boolean)f(v)n(alues)g(the)i(follo)n(wing)d(are)i(equi)n
+(v)n(alent)f(\(case-insensiti)n(v)o(e\):)f(T)m(rue,)i(Y)-8
+b(es,)20 b(or)g(1.)g(Lik)o(e)n(wise,)g(the)396 3817 y(follo)n(wing)f
+(are)h(equi)n(v)n(alent)e(\(case-insensiti)n(v)o(e\):)h(F)o(alse,)h
+(No,)g(or)g(0.)-2 4001 y
+SDict begin H.S end
+ -2 4001 a -2 4001 a
+SDict begin 13 H.A end
+ -2 4001
+a -2 4001 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4129) cvn H.B /DEST pdfmark
+end
+ -2 4001 a 396 4091 a FC(In)g(lists,)i(v)n(alues)d(can)h(be)
+g(separated)g(by)f(space,)h(tabs,)h(or)f(commas.)-2 4109
+y
+SDict begin H.S end
+ -2 4109 a -2 4109 a
+SDict begin 11.7 H.A end
+ -2 4109 a -2 4109 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4130) cvn H.B /DEST pdfmark
+end
+ -2 4109 a -2
+4234 a
+SDict begin H.S end
+ -2 4234 a -2 4234 a
+SDict begin 11.7 H.A end
+ -2 4234 a -2 4234 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4132) cvn H.B /DEST pdfmark
+end
+ -2 4234
+a 562 4313 a Fw(TIP:)g Fv(Each)g(section)g(ma)n(y)g(occur)h(m)o
+(ultiple)d(times)o(.)39 4452 y
+SDict begin H.S end
+ 39 4452 a 39 4452 a
+SDict begin 11.7 H.A end
+ 39
+4452 a 39 4452 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4133) cvn H.B /DEST pdfmark
+end
+ 39 4452 a -2 4618 a
+SDict begin H.S end
+ -2 4618 a -2 4618
+a
+SDict begin 11.7 H.A end
+ -2 4618 a -2 4618 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4135) cvn H.B /DEST pdfmark
+end
+ -2 4618 a 562 4715 a Fw(NO)m(TE:)i
+Fv(Y)-10 b(ou)19 b(can)g(e)n(xplicitely)f(end)h(the)g(con\002gur)o
+(ation)e(\002le)j(with)f(an)2525 4715 y
+SDict begin H.S end
+ 2525 4715 a 2525
+4715 a
+SDict begin 11.7 H.A end
+ 2525 4715 a 2525 4715 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4136) cvn H.B /DEST pdfmark
+end
+ 2525 4715 a Fw([EOF])h
+Fv(\(on)f(a)h(separ)o(ate)e(line\),)g(b)o(ut)h(this)g(is)562
+4812 y(not)h(required,)e(unless)h(there)g(is)i(junk)f(be)o(y)o(ond.)39
+4962 y
+SDict begin H.S end
+ 39 4962 a 39 4962 a
+SDict begin 13 H.A end
+ 39 4962 a 39 4962 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CONDITIONALS) cvn H.B /DEST
+pdfmark end
+ 39 4962
+a Black 3620 5805 a Fx(113)p Black eop end
+%%Page: 114 119
+TeXDict begin 114 118 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.114) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4174) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2249 104 a Fx(Appendix)18
+b(C.)j(List)g(of)g(con\002gur)o(ation)c(\002le)j(options)p
+Black 396 313 a Fp(C.1.1.)35 b(Conditionals)1470 313
+y
+SDict begin H.S end
+ 1470 313 a 1470 313 a
+SDict begin 18.72 H.A end
+ 1470 313 a 1470 313 a
+SDict begin [ /View [/XYZ H.V] /Dest (16.82.52.2) cvn H.B /DEST pdfmark
+end
+ 1470 313
+a -2 480 a
+SDict begin H.S end
+ -2 480 a -2 480 a
+SDict begin 13 H.A end
+ -2 480 a -2 480 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4139) cvn H.B /DEST pdfmark
+end
+ -2 480
+a 396 587 a FC(Conditional)19 b(inclusion)g(of)h(entries)g(for)g(some)g
+(host\(s\))g(is)h(supported)d(via)i(an)o(y)g(number)e(of)i
+(@hostname/@end)396 695 y(directi)n(v)o(es.)f(@hostname)h(and)f(@end)h
+(must)h(each)e(be)i(on)e(separate)h(lines.)g(Lines)h(in)f(between)f
+(will)i(only)f(be)g(read)396 803 y(if)468 803 y
+SDict begin H.S end
+ 468 803
+a 468 803 a
+SDict begin 13 H.A end
+ 468 803 a 468 803 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4140) cvn H.B /DEST pdfmark
+end
+ 468 803 a Fx(hostname)f
+FC(\(which)g(may)h(be)g(a)g(re)o(gular)f(e)o(xpression\))f(matches)i
+(the)g(local)h(host.)-2 987 y
+SDict begin H.S end
+ -2 987 a -2 987 a
+SDict begin 13 H.A end
+ -2 987
+a -2 987 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4141) cvn H.B /DEST pdfmark
+end
+ -2 987 a 396 1077 a FC(Lik)o(e)n(wise,)f(conditional)f
+(inclusion)g(of)h(entries)g(based)g(on)f(system)i(type)e(is)j
+(supported)c(via)i(an)o(y)f(number)g(of)396 1185 y
+($sysname:release:machine/$end)d(directi)n(v)o(es.)1848
+1185 y
+SDict begin H.S end
+ 1848 1185 a 1848 1185 a
+SDict begin 13 H.A end
+ 1848 1185 a 1848 1185
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4142) cvn H.B /DEST pdfmark
+end
+ 1848 1185 a Fx(sysname:r)m(elease:mac)o(hine)h FC(for)i(the)i(local)f
+(host)g(can)g(be)396 1293 y(determined)f(using)g(the)h(command)1462
+1293 y
+SDict begin H.S end
+ 1462 1293 a 1462 1293 a
+SDict begin 13 H.A end
+ 1462 1293 a 1462 1293
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4143) cvn H.B /DEST pdfmark
+end
+ 1462 1293 a Fy(uname)g(-srm)h FC(and)f(may)f(be)h(a)h(re)o(gular)e(e)
+o(xpression.)-2 1477 y
+SDict begin H.S end
+ -2 1477 a -2 1477 a
+SDict begin 13 H.A end
+ -2 1477 a
+-2 1477 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4144) cvn H.B /DEST pdfmark
+end
+ -2 1477 a 396 1567 a FC(A)477 1567 y
+SDict begin H.S end
+ 477 1567
+a 477 1567 a
+SDict begin 13 H.A end
+ 477 1567 a 477 1567 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4145) cvn H.B /DEST pdfmark
+end
+ 477 1567 a Fy('!')h
+FC(in)g(front)f(of)h(the)1060 1567 y
+SDict begin H.S end
+ 1060 1567 a 1060
+1567 a
+SDict begin 13 H.A end
+ 1060 1567 a 1060 1567 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4146) cvn H.B /DEST pdfmark
+end
+ 1060 1567 a Fy('@'/'\\$')f
+FC(will)i(in)m(v)o(ert)e(its)j(meaning.)c(Conditionals)h(may)h(be)g
+(nested)g(up)g(to)g(15)g(le)n(v)o(els.)-2 1668 y
+SDict begin H.S end
+ -2 1668
+a -2 1668 a
+SDict begin 11.7 H.A end
+ -2 1668 a -2 1668 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4147) cvn H.B /DEST pdfmark
+end
+ -2 1668 a 486 1747 a
+Fr(@hostname)486 1844 y(#)45 b(only)f(read)g(if)g(hostname)g(matches)g
+(local)g(host)486 1941 y(@end)486 2038 y(!@hostname)486
+2135 y(#)h(not)f(read)g(if)h(hostname)e(matches)h(local)g(host)486
+2232 y(@end)486 2329 y(#)486 2427 y($sysname:release:machine)486
+2524 y(#)h(only)f(read)g(if)g(sysname:release:machine)d(matches)j
+(local)g(host)486 2621 y($end)486 2718 y(!$sysname:release:machine)486
+2815 y(#)h(not)f(read)g(if)h(sysname:release:machine)c(matches)88
+b(local)44 b(host)486 2912 y($end)-2 3087 y
+SDict begin H.S end
+ -2 3087 a
+-2 3087 a
+SDict begin 13 H.A end
+ -2 3087 a -2 3087 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:FILES-TO-CHECK) cvn H.B /DEST
+pdfmark end
+ -2 3087 a 368 x Fu(C.2.)39
+b(Files)g(to)g(c)o(hec)m(k)1247 3455 y
+SDict begin H.S end
+ 1247 3455 a 1247
+3455 a
+SDict begin 22.464 H.A end
+ 1247 3455 a 1247 3455 a
+SDict begin [ /View [/XYZ H.V] /Dest (16.83.1) cvn H.B /DEST pdfmark
+end
+ 1247 3455 a -2 3623 a
+SDict begin H.S end
+
+-2 3623 a -2 3623 a
+SDict begin 13 H.A end
+ -2 3623 a -2 3623 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4150) cvn H.B /DEST pdfmark
+end
+ -2 3623 a 396
+3729 a FC(Allo)n(wed)20 b(section)g(headings)f(\(see)p
+0 TeXcolorgray 1427 3729 a
+SDict begin H.S end
+ 1427 3729 a FC(Section)h(5.4.1)1865
+3729 y
+SDict begin 13 H.L end
+ 1865 3729 a 1865 3729 a
+SDict begin [ /Subtype /Link /Dest (0:POLICY) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1865 3729 a Black -2 w
+FC(>)h(for)e(more)h(details\))g(are:)-2 3913 y
+SDict begin H.S end
+ -2 3913
+a -2 3913 a
+SDict begin 13 H.A end
+ -2 3913 a -2 3913 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4152) cvn H.B /DEST pdfmark
+end
+ -2 3913 a -2 3913 a
+SDict begin H.S end
+ -2
+3913 a -2 3913 a
+SDict begin 13 H.A end
+ -2 3913 a -2 3913 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4153) cvn H.B /DEST pdfmark
+end
+ -2 3913 a 396 4003
+a Fy([Attrib)n(utes])p FC(,)856 4003 y
+SDict begin H.S end
+ 856 4003 a 856
+4003 a
+SDict begin 13 H.A end
+ 856 4003 a 856 4003 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4154) cvn H.B /DEST pdfmark
+end
+ 856 4003 a Fy([LogFiles])p
+FC(,)1257 4003 y
+SDict begin H.S end
+ 1257 4003 a 1257 4003 a
+SDict begin 13 H.A end
+ 1257 4003 a
+1257 4003 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4155) cvn H.B /DEST pdfmark
+end
+ 1257 4003 a Fy([Gr)o(o)o(wingLogFiles])p
+FC(,)1970 4003 y
+SDict begin H.S end
+ 1970 4003 a 1970 4003 a
+SDict begin 13 H.A end
+ 1970 4003 a
+1970 4003 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4156) cvn H.B /DEST pdfmark
+end
+ 1970 4003 a Fy([Ignor)o(eAll])p FC(,)2406
+4003 y
+SDict begin H.S end
+ 2406 4003 a 2406 4003 a
+SDict begin 13 H.A end
+ 2406 4003 a 2406 4003
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4157) cvn H.B /DEST pdfmark
+end
+ 2406 4003 a Fy([Ignor)o(eNone])p FC(,)2921 4003 y
+SDict begin H.S end
+ 2921
+4003 a 2921 4003 a
+SDict begin 13 H.A end
+ 2921 4003 a 2921 4003 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4158) cvn H.B /DEST pdfmark
+end
+ 2921 4003
+a Fy([ReadOnly])p FC(,)3378 4003 y
+SDict begin H.S end
+ 3378 4003 a 3378 4003
+a
+SDict begin 13 H.A end
+ 3378 4003 a 3378 4003 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4159) cvn H.B /DEST pdfmark
+end
+ 3378 4003 a Fy([User0])p FC(,)396
+4111 y
+SDict begin H.S end
+ 396 4111 a 396 4111 a
+SDict begin 13 H.A end
+ 396 4111 a 396 4111 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4160) cvn H.B /DEST pdfmark
+end
+ 396
+4111 a Fy([User1])p FC(,)g(and)841 4111 y
+SDict begin H.S end
+ 841 4111 a
+841 4111 a
+SDict begin 13 H.A end
+ 841 4111 a 841 4111 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4161) cvn H.B /DEST pdfmark
+end
+ 841 4111 a Fy([Pr)o(elink])-2
+4290 y
+SDict begin H.S end
+ -2 4290 a -2 4290 a
+SDict begin 13 H.A end
+ -2 4290 a -2 4290 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4162) cvn H.B /DEST pdfmark
+end
+ -2 4290
+a 396 4385 a FC(Placing)g(an)g(entry)g(under)e(one)i(of)g(these)g
+(headings)f(will)i(select)g(the)f(respecti)n(v)o(e)f(polic)o(y)g(for)h
+(that)g(entry)f(\(see)p 0 TeXcolorgray 396 4493 a
+SDict begin H.S end
+ 396
+4493 a FC(Section)h(5.4.1)834 4493 y
+SDict begin 13 H.L end
+ 834 4493 a 834 4493
+a
+SDict begin [ /Subtype /Link /Dest (0:POLICY) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 834 4493 a Black -2 w FC(>\).)g(Entries)g(under)f(the)h(abo)o(v)o(e)f
+(section)h(headings)e(must)j(be)f(of)g(the)g(form:)-2
+4677 y
+SDict begin H.S end
+ -2 4677 a -2 4677 a
+SDict begin 13 H.A end
+ -2 4677 a -2 4677 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4164) cvn H.B /DEST pdfmark
+end
+ -2 4677
+a -2 4677 a
+SDict begin H.S end
+ -2 4677 a -2 4677 a
+SDict begin 13 H.A end
+ -2 4677 a -2 4677 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4165) cvn H.B /DEST pdfmark
+end
+ -2
+4677 a 396 4767 a Fy(dir=)549 4767 y
+SDict begin H.S end
+ 549 4767 a 549 4767
+a
+SDict begin 13 H.A end
+ 549 4767 a 549 4767 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4166) cvn H.B /DEST pdfmark
+end
+ 549 4767 a Fl([optional)44 b(numerical)f
+(recursion)h(depth]path)-2 4943 y
+SDict begin H.S end
+ -2 4943 a -2 4943 a
+SDict begin 13 H.A end
+
+-2 4943 a -2 4943 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4167) cvn H.B /DEST pdfmark
+end
+ -2 4943 a -2 4943 a
+SDict begin H.S end
+ -2 4943 a -2
+4943 a
+SDict begin 13 H.A end
+ -2 4943 a -2 4943 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4168) cvn H.B /DEST pdfmark
+end
+ -2 4943 a 396 5041 a Fy(\002le=)549
+5041 y
+SDict begin H.S end
+ 549 5041 a 549 5041 a
+SDict begin 13 H.A end
+ 549 5041 a 549 5041 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4169) cvn H.B /DEST pdfmark
+end
+ 549
+5041 a Fl(path)-2 5062 y
+SDict begin H.S end
+ -2 5062 a -2 5062 a
+SDict begin 13 H.A end
+ -2 5062
+a -2 5062 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SEVERITY-OF-EVENTS) cvn H.B
+/DEST pdfmark end
+ -2 5062 a Black 3620 5805 a Fx(114)p Black
+eop end
+%%Page: 115 120
+TeXDict begin 115 119 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.115) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4222) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2249 104 a Fx(Appendix)18
+b(C.)j(List)g(of)g(con\002gur)o(ation)c(\002le)j(options)p
+Black -2 330 a Fu(C.3.)39 b(Se)n(verity)f(of)h(e)n(vents)1526
+330 y
+SDict begin H.S end
+ 1526 330 a 1526 330 a
+SDict begin 22.464 H.A end
+ 1526 330 a 1526 330 a
+SDict begin [ /View [/XYZ H.V] /Dest (16.84.1) cvn H.B /DEST pdfmark
+end
+ 1526
+330 a -2 526 a
+SDict begin H.S end
+ -2 526 a -2 526 a
+SDict begin 13 H.A end
+ -2 526 a -2 526 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4172) cvn H.B /DEST pdfmark
+end
+ -2
+526 a 396 604 a FC(Section)20 b(heading)f(\(see)p 0 TeXcolorgray
+1104 604 a
+SDict begin H.S end
+ 1104 604 a FC(Section)h(4.1.1)1542 604 y
+SDict begin 13 H.L end
+ 1542
+604 a 1542 604 a
+SDict begin [ /Subtype /Link /Dest (0:SEVERITYDEF) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1542 604 a Black -2 w FC(>)h(for)e(more)g(details\):)
+396 878 y Fy([Ev)o(entSe)o(v)o(erity])-2 1061 y
+SDict begin H.S end
+ -2 1061
+a -2 1061 a
+SDict begin 13 H.A end
+ -2 1061 a -2 1061 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4176) cvn H.B /DEST pdfmark
+end
+ -2 1061 a 396 1152 a
+FC(Entries:)-2 1319 y
+SDict begin H.S end
+ -2 1319 a -2 1319 a
+SDict begin 13 H.A end
+ -2 1319 a -2
+1319 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4177) cvn H.B /DEST pdfmark
+end
+ -2 1319 a -2 1319 a
+SDict begin H.S end
+ -2 1319 a -2 1319 a
+SDict begin 13 H.A end
+ -2 1319
+a -2 1319 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4178) cvn H.B /DEST pdfmark
+end
+ -2 1319 a 396 1426 a Fy(Se)o(v)o(erityReadOnly=)1094
+1426 y
+SDict begin H.S end
+ 1094 1426 a 1094 1426 a
+SDict begin 13 H.A end
+ 1094 1426 a 1094 1426
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4179) cvn H.B /DEST pdfmark
+end
+ 1094 1426 a Fl(severity)-2 1609 y
+SDict begin H.S end
+ -2 1609 a -2 1609
+a
+SDict begin 13 H.A end
+ -2 1609 a -2 1609 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4180) cvn H.B /DEST pdfmark
+end
+ -2 1609 a -2 1609 a
+SDict begin H.S end
+ -2 1609 a -2
+1609 a
+SDict begin 13 H.A end
+ -2 1609 a -2 1609 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4181) cvn H.B /DEST pdfmark
+end
+ -2 1609 a 396 1700 a Fy(Se)o(v)o
+(erityLogFiles=)1038 1700 y
+SDict begin H.S end
+ 1038 1700 a 1038 1700 a
+SDict begin 13 H.A end
+ 1038
+1700 a 1038 1700 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4182) cvn H.B /DEST pdfmark
+end
+ 1038 1700 a Fl(severity)-2 1883 y
+SDict begin H.S end
+
+-2 1883 a -2 1883 a
+SDict begin 13 H.A end
+ -2 1883 a -2 1883 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4183) cvn H.B /DEST pdfmark
+end
+ -2 1883 a -2
+1883 a
+SDict begin H.S end
+ -2 1883 a -2 1883 a
+SDict begin 13 H.A end
+ -2 1883 a -2 1883 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4184) cvn H.B /DEST pdfmark
+end
+ -2 1883
+a 396 1974 a Fy(Se)o(v)o(erityGr)o(o)o(wingLogs=)1217
+1974 y
+SDict begin H.S end
+ 1217 1974 a 1217 1974 a
+SDict begin 13 H.A end
+ 1217 1974 a 1217 1974
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4185) cvn H.B /DEST pdfmark
+end
+ 1217 1974 a Fl(severity)-2 2157 y
+SDict begin H.S end
+ -2 2157 a -2 2157
+a
+SDict begin 13 H.A end
+ -2 2157 a -2 2157 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4186) cvn H.B /DEST pdfmark
+end
+ -2 2157 a -2 2157 a
+SDict begin H.S end
+ -2 2157 a -2
+2157 a
+SDict begin 13 H.A end
+ -2 2157 a -2 2157 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4187) cvn H.B /DEST pdfmark
+end
+ -2 2157 a 396 2248 a Fy(Se)o(v)o(erityIgnor)
+o(eNone=)1153 2248 y
+SDict begin H.S end
+ 1153 2248 a 1153 2248 a
+SDict begin 13 H.A end
+ 1153 2248
+a 1153 2248 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4188) cvn H.B /DEST pdfmark
+end
+ 1153 2248 a Fl(severity)-2 2431 y
+SDict begin H.S end
+ -2 2431
+a -2 2431 a
+SDict begin 13 H.A end
+ -2 2431 a -2 2431 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4189) cvn H.B /DEST pdfmark
+end
+ -2 2431 a -2 2431 a
+SDict begin H.S end
+ -2
+2431 a -2 2431 a
+SDict begin 13 H.A end
+ -2 2431 a -2 2431 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4190) cvn H.B /DEST pdfmark
+end
+ -2 2431 a 396 2522
+a Fy(Se)o(v)o(erityIgnor)o(eAll=)1074 2522 y
+SDict begin H.S end
+ 1074 2522
+a 1074 2522 a
+SDict begin 13 H.A end
+ 1074 2522 a 1074 2522 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4191) cvn H.B /DEST pdfmark
+end
+ 1074 2522 a Fl(severity)-2
+2705 y
+SDict begin H.S end
+ -2 2705 a -2 2705 a
+SDict begin 13 H.A end
+ -2 2705 a -2 2705 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4192) cvn H.B /DEST pdfmark
+end
+ -2 2705
+a -2 2705 a
+SDict begin H.S end
+ -2 2705 a -2 2705 a
+SDict begin 13 H.A end
+ -2 2705 a -2 2705 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4193) cvn H.B /DEST pdfmark
+end
+ -2
+2705 a 396 2796 a Fy(Se)o(v)o(erityAttrib)n(utes=)1096
+2796 y
+SDict begin H.S end
+ 1096 2796 a 1096 2796 a
+SDict begin 13 H.A end
+ 1096 2796 a 1096 2796
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4194) cvn H.B /DEST pdfmark
+end
+ 1096 2796 a Fl(severity)-2 2979 y
+SDict begin H.S end
+ -2 2979 a -2 2979
+a
+SDict begin 13 H.A end
+ -2 2979 a -2 2979 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4195) cvn H.B /DEST pdfmark
+end
+ -2 2979 a -2 2979 a
+SDict begin H.S end
+ -2 2979 a -2
+2979 a
+SDict begin 13 H.A end
+ -2 2979 a -2 2979 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4196) cvn H.B /DEST pdfmark
+end
+ -2 2979 a 396 3070 a Fy(Se)o(v)o
+(erityUser0=)941 3070 y
+SDict begin H.S end
+ 941 3070 a 941 3070 a
+SDict begin 13 H.A end
+ 941 3070
+a 941 3070 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4197) cvn H.B /DEST pdfmark
+end
+ 941 3070 a Fl(severity)-2 3253 y
+SDict begin H.S end
+ -2 3253
+a -2 3253 a
+SDict begin 13 H.A end
+ -2 3253 a -2 3253 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4198) cvn H.B /DEST pdfmark
+end
+ -2 3253 a -2 3253 a
+SDict begin H.S end
+ -2
+3253 a -2 3253 a
+SDict begin 13 H.A end
+ -2 3253 a -2 3253 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4199) cvn H.B /DEST pdfmark
+end
+ -2 3253 a 396 3344
+a Fy(Se)o(v)o(erityUser1=)941 3344 y
+SDict begin H.S end
+ 941 3344 a 941 3344
+a
+SDict begin 13 H.A end
+ 941 3344 a 941 3344 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4200) cvn H.B /DEST pdfmark
+end
+ 941 3344 a Fl(severity)-2 3527
+y
+SDict begin H.S end
+ -2 3527 a -2 3527 a
+SDict begin 13 H.A end
+ -2 3527 a -2 3527 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4201) cvn H.B /DEST pdfmark
+end
+ -2 3527 a -2
+3527 a
+SDict begin H.S end
+ -2 3527 a -2 3527 a
+SDict begin 13 H.A end
+ -2 3527 a -2 3527 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4202) cvn H.B /DEST pdfmark
+end
+ -2 3527
+a 396 3618 a Fy(Se)o(v)o(erityPr)o(elink=)995 3618 y
+SDict begin H.S end
+
+995 3618 a 995 3618 a
+SDict begin 13 H.A end
+ 995 3618 a 995 3618 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4203) cvn H.B /DEST pdfmark
+end
+ 995 3618
+a Fl(severity)-2 3801 y
+SDict begin H.S end
+ -2 3801 a -2 3801 a
+SDict begin 13 H.A end
+ -2 3801 a
+-2 3801 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4204) cvn H.B /DEST pdfmark
+end
+ -2 3801 a -2 3801 a
+SDict begin H.S end
+ -2 3801 a -2 3801 a
+SDict begin 13 H.A end
+ -2
+3801 a -2 3801 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4205) cvn H.B /DEST pdfmark
+end
+ -2 3801 a 396 3892 a Fy(Se)o(v)o(erityFiles=)899
+3892 y
+SDict begin H.S end
+ 899 3892 a 899 3892 a
+SDict begin 13 H.A end
+ 899 3892 a 899 3892 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4206) cvn H.B /DEST pdfmark
+end
+ 899
+3892 a Fl(severity)-2 4075 y
+SDict begin H.S end
+ -2 4075 a -2 4075 a
+SDict begin 13 H.A end
+ -2 4075
+a -2 4075 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4207) cvn H.B /DEST pdfmark
+end
+ -2 4075 a -2 4075 a
+SDict begin H.S end
+ -2 4075 a -2 4075 a
+SDict begin 13 H.A end
+ -2
+4075 a -2 4075 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4208) cvn H.B /DEST pdfmark
+end
+ -2 4075 a 396 4166 a Fy(Se)o(v)o(erityDirs=)885
+4166 y
+SDict begin H.S end
+ 885 4166 a 885 4166 a
+SDict begin 13 H.A end
+ 885 4166 a 885 4166 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4209) cvn H.B /DEST pdfmark
+end
+ 885
+4166 a Fl(severity)-2 4349 y
+SDict begin H.S end
+ -2 4349 a -2 4349 a
+SDict begin 13 H.A end
+ -2 4349
+a -2 4349 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4210) cvn H.B /DEST pdfmark
+end
+ -2 4349 a -2 4349 a
+SDict begin H.S end
+ -2 4349 a -2 4349 a
+SDict begin 13 H.A end
+ -2
+4349 a -2 4349 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4211) cvn H.B /DEST pdfmark
+end
+ -2 4349 a 396 4440 a Fy(Se)o(v)o(erityNames=)973
+4440 y
+SDict begin H.S end
+ 973 4440 a 973 4440 a
+SDict begin 13 H.A end
+ 973 4440 a 973 4440 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4212) cvn H.B /DEST pdfmark
+end
+ 973
+4440 a Fl(severity)-2 4623 y
+SDict begin H.S end
+ -2 4623 a -2 4623 a
+SDict begin 13 H.A end
+ -2 4623
+a -2 4623 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4213) cvn H.B /DEST pdfmark
+end
+ -2 4623 a -2 4623 a
+SDict begin H.S end
+ -2 4623 a -2 4623 a
+SDict begin 13 H.A end
+ -2
+4623 a -2 4623 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4214) cvn H.B /DEST pdfmark
+end
+ -2 4623 a 396 4714 a Fx(se)o(verity)i
+FC(may)f(be)g(one)f(of)1167 4714 y
+SDict begin H.S end
+ 1167 4714 a 1167 4714
+a
+SDict begin 13 H.A end
+ 1167 4714 a 1167 4714 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4215) cvn H.B /DEST pdfmark
+end
+ 1167 4714 a Fy(none,)i(deb)n(ug,)f(inf)n(o,)g
+(notice,)g(war)o(n,)f(mark,)i(err)-8 b(,)20 b(crit,)g(alert)p
+FC(.)-2 4742 y
+SDict begin H.S end
+ -2 4742 a -2 4742 a
+SDict begin 13 H.A end
+ -2 4742 a -2 4742
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:LOGGING-THRESHOLDS) cvn H.B
+/DEST pdfmark end
+ -2 4742 a 359 x Fu(C.4.)39 b(Log)o(ging)e(thresholds)1641
+5101 y
+SDict begin H.S end
+ 1641 5101 a 1641 5101 a
+SDict begin 22.464 H.A end
+ 1641 5101 a 1641 5101
+a
+SDict begin [ /View [/XYZ H.V] /Dest (16.85.1) cvn H.B /DEST pdfmark
+end
+ 1641 5101 a -2 5299 a
+SDict begin H.S end
+ -2 5299 a -2 5299 a
+SDict begin 13 H.A end
+ -2 5299 a
+-2 5299 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4218) cvn H.B /DEST pdfmark
+end
+ -2 5299 a 396 5375 a FC(Section)20 b(heading)f(\(see)p
+0 TeXcolorgray 1104 5375 a
+SDict begin H.S end
+ 1104 5375 a FC(Section)h(4.3)1479
+5375 y
+SDict begin 13 H.L end
+ 1479 5375 a 1479 5375 a
+SDict begin [ /Subtype /Link /Dest (0:THRESHOLDS) cvn /H /I /Border
+[0 0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 1479 5375 a Black -1 w
+FC(>)g(for)g(more)f(details\):)p Black 3620 5805 a Fx(115)p
+Black eop end
+%%Page: 116 121
+TeXDict begin 116 120 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.116) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4266) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2249 104 a Fx(Appendix)18
+b(C.)j(List)g(of)g(con\002gur)o(ation)c(\002le)j(options)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4220) cvn H.B /DEST pdfmark
+end
+ -2
+226 a -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4221) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a Fy([Log])396 583 y FC(Entries:)-2 750
+y
+SDict begin H.S end
+ -2 750 a -2 750 a
+SDict begin 13 H.A end
+ -2 750 a -2 750 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4223) cvn H.B /DEST pdfmark
+end
+ -2 750 a -2 750
+a
+SDict begin H.S end
+ -2 750 a -2 750 a
+SDict begin 13 H.A end
+ -2 750 a -2 750 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4224) cvn H.B /DEST pdfmark
+end
+ -2 750 a 396 857
+a Fy(MailSe)o(v)o(erity=)899 857 y
+SDict begin H.S end
+ 899 857 a 899 857
+a
+SDict begin 13 H.A end
+ 899 857 a 899 857 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4225) cvn H.B /DEST pdfmark
+end
+ 899 857 a Fl(list)43 b(of)i([optional)e
+(specifier]threshold)-2 1040 y
+SDict begin H.S end
+ -2 1040 a -2 1040 a
+SDict begin 13 H.A end
+ -2
+1040 a -2 1040 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4226) cvn H.B /DEST pdfmark
+end
+ -2 1040 a -2 1040 a
+SDict begin H.S end
+ -2 1040 a -2 1040
+a
+SDict begin 13 H.A end
+ -2 1040 a -2 1040 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4227) cvn H.B /DEST pdfmark
+end
+ -2 1040 a 396 1131 a Fy(PrintSe)o(v)o(erity=)918
+1131 y
+SDict begin H.S end
+ 918 1131 a 918 1131 a
+SDict begin 13 H.A end
+ 918 1131 a 918 1131 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4228) cvn H.B /DEST pdfmark
+end
+ 918
+1131 a Fl(list)g(of)h([optional)f(specifier]threshold)-2
+1314 y
+SDict begin H.S end
+ -2 1314 a -2 1314 a
+SDict begin 13 H.A end
+ -2 1314 a -2 1314 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4229) cvn H.B /DEST pdfmark
+end
+ -2 1314
+a -2 1314 a
+SDict begin H.S end
+ -2 1314 a -2 1314 a
+SDict begin 13 H.A end
+ -2 1314 a -2 1314 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4230) cvn H.B /DEST pdfmark
+end
+ -2
+1314 a 396 1405 a Fy(LogSe)o(v)o(erity=)872 1405 y
+SDict begin H.S end
+ 872
+1405 a 872 1405 a
+SDict begin 13 H.A end
+ 872 1405 a 872 1405 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4231) cvn H.B /DEST pdfmark
+end
+ 872 1405 a Fl(list)g(of)h
+([optional)f(specifier]threshold)-2 1587 y
+SDict begin H.S end
+ -2 1587 a
+-2 1587 a
+SDict begin 13 H.A end
+ -2 1587 a -2 1587 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4232) cvn H.B /DEST pdfmark
+end
+ -2 1587 a -2 1587 a
+SDict begin H.S end
+ -2
+1587 a -2 1587 a
+SDict begin 13 H.A end
+ -2 1587 a -2 1587 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4233) cvn H.B /DEST pdfmark
+end
+ -2 1587 a 396 1679
+a Fy(SyslogSe)o(v)o(erity=)960 1679 y
+SDict begin H.S end
+ 960 1679 a 960
+1679 a
+SDict begin 13 H.A end
+ 960 1679 a 960 1679 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4234) cvn H.B /DEST pdfmark
+end
+ 960 1679 a Fl(list)f(of)j([optional)e
+(specifier]threshold)-2 1861 y
+SDict begin H.S end
+ -2 1861 a -2 1861 a
+SDict begin 13 H.A end
+ -2
+1861 a -2 1861 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4235) cvn H.B /DEST pdfmark
+end
+ -2 1861 a -2 1861 a
+SDict begin H.S end
+ -2 1861 a -2 1861
+a
+SDict begin 13 H.A end
+ -2 1861 a -2 1861 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4236) cvn H.B /DEST pdfmark
+end
+ -2 1861 a 396 1953 a Fy(Pr)o(eludeSe)o(v)o
+(erity=)1009 1953 y
+SDict begin H.S end
+ 1009 1953 a 1009 1953 a
+SDict begin 13 H.A end
+ 1009 1953
+a 1009 1953 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4237) cvn H.B /DEST pdfmark
+end
+ 1009 1953 a Fl(list)f(of)j([optional)e
+(specifier]threshold)-2 2135 y
+SDict begin H.S end
+ -2 2135 a -2 2135 a
+SDict begin 13 H.A end
+ -2
+2135 a -2 2135 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4238) cvn H.B /DEST pdfmark
+end
+ -2 2135 a -2 2135 a
+SDict begin H.S end
+ -2 2135 a -2 2135
+a
+SDict begin 13 H.A end
+ -2 2135 a -2 2135 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4239) cvn H.B /DEST pdfmark
+end
+ -2 2135 a 396 2227 a Fy(ExportSe)o(v)o(erity=)983
+2227 y
+SDict begin H.S end
+ 983 2227 a 983 2227 a
+SDict begin 13 H.A end
+ 983 2227 a 983 2227 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4240) cvn H.B /DEST pdfmark
+end
+ 983
+2227 a Fl(list)f(of)j([optional)e(specifier]threshold)-2
+2409 y
+SDict begin H.S end
+ -2 2409 a -2 2409 a
+SDict begin 13 H.A end
+ -2 2409 a -2 2409 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4241) cvn H.B /DEST pdfmark
+end
+ -2 2409
+a -2 2409 a
+SDict begin H.S end
+ -2 2409 a -2 2409 a
+SDict begin 13 H.A end
+ -2 2409 a -2 2409 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4242) cvn H.B /DEST pdfmark
+end
+ -2
+2409 a 396 2500 a Fy(Exter)o(nalSe)o(v)o(erity=)1042
+2500 y
+SDict begin H.S end
+ 1042 2500 a 1042 2500 a
+SDict begin 13 H.A end
+ 1042 2500 a 1042 2500
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4243) cvn H.B /DEST pdfmark
+end
+ 1042 2500 a Fl(list)f(of)i([optional)g(specifier]threshold)-2
+2683 y
+SDict begin H.S end
+ -2 2683 a -2 2683 a
+SDict begin 13 H.A end
+ -2 2683 a -2 2683 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4244) cvn H.B /DEST pdfmark
+end
+ -2 2683
+a -2 2683 a
+SDict begin H.S end
+ -2 2683 a -2 2683 a
+SDict begin 13 H.A end
+ -2 2683 a -2 2683 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4245) cvn H.B /DEST pdfmark
+end
+ -2
+2683 a 396 2774 a Fy(DatabaseSe)o(v)o(erity=)1062 2774
+y
+SDict begin H.S end
+ 1062 2774 a 1062 2774 a
+SDict begin 13 H.A end
+ 1062 2774 a 1062 2774 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4246) cvn H.B /DEST pdfmark
+end
+ 1062
+2774 a Fl(list)e(of)i([optional)f(specifier]threshold)-2
+2957 y
+SDict begin H.S end
+ -2 2957 a -2 2957 a
+SDict begin 13 H.A end
+ -2 2957 a -2 2957 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4247) cvn H.B /DEST pdfmark
+end
+ -2 2957
+a -2 2957 a
+SDict begin H.S end
+ -2 2957 a -2 2957 a
+SDict begin 13 H.A end
+ -2 2957 a -2 2957 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4248) cvn H.B /DEST pdfmark
+end
+ -2
+2957 a 396 3048 a Fx(thr)m(eshold)22 b FC(may)e(be)g(one)f(of)1223
+3048 y
+SDict begin H.S end
+ 1223 3048 a 1223 3048 a
+SDict begin 13 H.A end
+ 1223 3048 a 1223 3048
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4249) cvn H.B /DEST pdfmark
+end
+ 1223 3048 a Fy(none,)h(deb)n(ug,)h(inf)n(o,)f(notice,)g(war)o(n,)f
+(mark,)i(err)-8 b(,)20 b(crit,)g(alert)p FC(.)-2 3232
+y
+SDict begin H.S end
+ -2 3232 a -2 3232 a
+SDict begin 13 H.A end
+ -2 3232 a -2 3232 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4250) cvn H.B /DEST pdfmark
+end
+ -2 3232 a 396
+3322 a FC(The)g(optional)f(speci\002er)h(may)g(be)g(one)g(of)f('*',)h
+('!',)f(or)h('=',)g(which)f(are)i(interpreted)d(as)j('all',)f('e)o
+(xcluding',)d(and)396 3430 y('only',)i(respecti)n(v)o(ely)-5
+b(.)18 b(Examples:)h(specifying)g('*')g(is)i(equal)f(to)g(specify)g(')l
+(deb)n(ug';)e(specifying)g('!*')i(is)h(equal)e(to)396
+3538 y(specifying)g('none';)f('info,!alert')g(is)j(the)f(range)g(from)f
+('info')g(to)h('crit';)g(and)f('info,!=mark')e(is)k(info)f(and)f(abo)o
+(v)o(e,)396 3646 y(b)n(ut)h(e)o(xcluding)e('mark'.)-2
+3675 y
+SDict begin H.S end
+ -2 3675 a -2 3675 a
+SDict begin 13 H.A end
+ -2 3675 a -2 3675 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:WATCHING-LOGIN-LOGOUT-EVENTS)
+cvn H.B /DEST pdfmark end
+ -2 3675
+a 359 x Fu(C.5.)39 b(W)-6 b(atc)o(hing)38 b(login/logout)f(e)n(vents)
+2294 4034 y
+SDict begin H.S end
+ 2294 4034 a 2294 4034 a
+SDict begin 22.464 H.A end
+ 2294 4034 a 2294
+4034 a
+SDict begin [ /View [/XYZ H.V] /Dest (16.86.1) cvn H.B /DEST pdfmark
+end
+ 2294 4034 a -2 4232 a
+SDict begin H.S end
+ -2 4232 a -2 4232 a
+SDict begin 13 H.A end
+ -2 4232
+a -2 4232 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4253) cvn H.B /DEST pdfmark
+end
+ -2 4232 a 396 4308 a FC(Section)20 b(heading:)-2
+4492 y
+SDict begin H.S end
+ -2 4492 a -2 4492 a
+SDict begin 13 H.A end
+ -2 4492 a -2 4492 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4254) cvn H.B /DEST pdfmark
+end
+ -2 4492
+a -2 4492 a
+SDict begin H.S end
+ -2 4492 a -2 4492 a
+SDict begin 13 H.A end
+ -2 4492 a -2 4492 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4255) cvn H.B /DEST pdfmark
+end
+ -2
+4492 a 396 4582 a Fy([Utmp])-2 4765 y
+SDict begin H.S end
+ -2 4765 a -2 4765
+a
+SDict begin 13 H.A end
+ -2 4765 a -2 4765 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4256) cvn H.B /DEST pdfmark
+end
+ -2 4765 a 396 4856 a FC(Entries:)-2
+5022 y
+SDict begin H.S end
+ -2 5022 a -2 5022 a
+SDict begin 13 H.A end
+ -2 5022 a -2 5022 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4257) cvn H.B /DEST pdfmark
+end
+ -2 5022
+a -2 5022 a
+SDict begin H.S end
+ -2 5022 a -2 5022 a
+SDict begin 13 H.A end
+ -2 5022 a -2 5022 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4258) cvn H.B /DEST pdfmark
+end
+ -2
+5022 a 396 5130 a Fy(LoginCheckActi)o(v)o(e=)1102 5130
+y
+SDict begin H.S end
+ 1102 5130 a 1102 5130 a
+SDict begin 13 H.A end
+ 1102 5130 a 1102 5130 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4259) cvn H.B /DEST pdfmark
+end
+ 1102
+5130 a Fl(boolean)g FC(\227)h('1')e(to)i(switch)f(on,)g('0')f(to)i
+(switch)f(of)n(f.)-2 5312 y
+SDict begin H.S end
+ -2 5312 a -2 5312 a
+SDict begin 13 H.A end
+ -2 5312
+a -2 5312 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4260) cvn H.B /DEST pdfmark
+end
+ -2 5312 a -2 5312 a
+SDict begin H.S end
+ -2 5312 a -2 5312 a
+SDict begin 13 H.A end
+ -2
+5312 a -2 5312 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4261) cvn H.B /DEST pdfmark
+end
+ -2 5312 a 396 5404 a Fy(LoginCheckInter)o(v)o(al=)1162
+5404 y
+SDict begin H.S end
+ 1162 5404 a 1162 5404 a
+SDict begin 13 H.A end
+ 1162 5404 a 1162 5404
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4262) cvn H.B /DEST pdfmark
+end
+ 1162 5404 a Fl(seconds)g FC(\227)g(Interv)n(al)f(between)h(checks.)p
+Black 3618 5805 a Fx(116)p Black eop end
+%%Page: 117 122
+TeXDict begin 117 121 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.117) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4308) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2249 104 a Fx(Appendix)18
+b(C.)j(List)g(of)g(con\002gur)o(ation)c(\002le)j(options)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4263) cvn H.B /DEST pdfmark
+end
+ -2
+226 a -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4264) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a Fy(Se)o(v)o(erityLogin=)941 309 y
+SDict begin H.S end
+ 941
+309 a 941 309 a
+SDict begin 13 H.A end
+ 941 309 a 941 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4265) cvn H.B /DEST pdfmark
+end
+ 941 309 a Fl(severity)25
+b FC(\227)c(Se)n(v)o(erity)e(for)h(login)f(e)n(v)o(ents.)396
+583 y Fy(Se)o(v)o(erityLoginMulti=)p Fl(severity)25 b
+FC(\227)c(Se)n(v)o(erity)e(for)h(multiple)f(logins)h(by)g(same)g(user)
+-5 b(.)-2 767 y
+SDict begin H.S end
+ -2 767 a -2 767 a
+SDict begin 13 H.A end
+ -2 767 a -2 767 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4269) cvn H.B /DEST pdfmark
+end
+ -2
+767 a -2 767 a
+SDict begin H.S end
+ -2 767 a -2 767 a
+SDict begin 13 H.A end
+ -2 767 a -2 767 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4270) cvn H.B /DEST pdfmark
+end
+ -2
+767 a 396 857 a Fy(Se)o(v)o(erityLogout=)988 857 y
+SDict begin H.S end
+ 988
+857 a 988 857 a
+SDict begin 13 H.A end
+ 988 857 a 988 857 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4271) cvn H.B /DEST pdfmark
+end
+ 988 857 a Fl(severity)24
+b FC(\227)d(Se)n(v)o(erity)e(for)h(logout)f(e)n(v)o(ents.)-2
+885 y
+SDict begin H.S end
+ -2 885 a -2 885 a
+SDict begin 13 H.A end
+ -2 885 a -2 885 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CHECKING-FOR-KERNEL-MODULE-ROOTKITS)
+cvn H.B /DEST pdfmark end
+ -2 885 a 359
+x Fu(C.6.)39 b(Chec)m(king)e(f)m(or)j(kernel)e(module)g(r)m(ootkits)
+2749 1244 y
+SDict begin H.S end
+ 2749 1244 a 2749 1244 a
+SDict begin 22.464 H.A end
+ 2749 1244 a 2749
+1244 a
+SDict begin [ /View [/XYZ H.V] /Dest (16.87.1) cvn H.B /DEST pdfmark
+end
+ 2749 1244 a -2 1442 a
+SDict begin H.S end
+ -2 1442 a -2 1442 a
+SDict begin 13 H.A end
+ -2 1442
+a -2 1442 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4274) cvn H.B /DEST pdfmark
+end
+ -2 1442 a 396 1518 a FC(Section)20 b(heading:)-2
+1702 y
+SDict begin H.S end
+ -2 1702 a -2 1702 a
+SDict begin 13 H.A end
+ -2 1702 a -2 1702 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4275) cvn H.B /DEST pdfmark
+end
+ -2 1702
+a -2 1702 a
+SDict begin H.S end
+ -2 1702 a -2 1702 a
+SDict begin 13 H.A end
+ -2 1702 a -2 1702 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4276) cvn H.B /DEST pdfmark
+end
+ -2
+1702 a 396 1792 a Fy([K)n(er)o(nel])-2 1971 y
+SDict begin H.S end
+ -2 1971
+a -2 1971 a
+SDict begin 13 H.A end
+ -2 1971 a -2 1971 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4277) cvn H.B /DEST pdfmark
+end
+ -2 1971 a 396 2066 a
+FC(Entries:)-2 2233 y
+SDict begin H.S end
+ -2 2233 a -2 2233 a
+SDict begin 13 H.A end
+ -2 2233 a -2
+2233 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4278) cvn H.B /DEST pdfmark
+end
+ -2 2233 a -2 2233 a
+SDict begin H.S end
+ -2 2233 a -2 2233 a
+SDict begin 13 H.A end
+ -2 2233
+a -2 2233 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4279) cvn H.B /DEST pdfmark
+end
+ -2 2233 a 396 2340 a Fy(K)n(er)o(nelCheckActi)o(v)o(e=)1136
+2340 y
+SDict begin H.S end
+ 1136 2340 a 1136 2340 a
+SDict begin 13 H.A end
+ 1136 2340 a 1136 2340
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4280) cvn H.B /DEST pdfmark
+end
+ 1136 2340 a Fl(boolean)g FC(\227)g(')o(true')f(to)h(switch)h(on,)e
+('f)o(alse')h(to)h(switch)f(of)n(f.)-2 2518 y
+SDict begin H.S end
+ -2 2518
+a -2 2518 a
+SDict begin 13 H.A end
+ -2 2518 a -2 2518 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4281) cvn H.B /DEST pdfmark
+end
+ -2 2518 a -2 2518 a
+SDict begin H.S end
+ -2
+2518 a -2 2518 a
+SDict begin 13 H.A end
+ -2 2518 a -2 2518 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4282) cvn H.B /DEST pdfmark
+end
+ -2 2518 a 396 2614
+a Fy(K)n(er)o(nelCheckInter)o(v)o(al=)1196 2614 y
+SDict begin H.S end
+ 1196
+2614 a 1196 2614 a
+SDict begin 13 H.A end
+ 1196 2614 a 1196 2614 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4283) cvn H.B /DEST pdfmark
+end
+ 1196 2614
+a Fl(seconds)f FC(\227)i(Interv)n(al)e(between)g(checks.)-2
+2782 y
+SDict begin H.S end
+ -2 2782 a -2 2782 a
+SDict begin 13 H.A end
+ -2 2782 a -2 2782 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4284) cvn H.B /DEST pdfmark
+end
+ -2 2782
+a -2 2782 a
+SDict begin H.S end
+ -2 2782 a -2 2782 a
+SDict begin 13 H.A end
+ -2 2782 a -2 2782 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4285) cvn H.B /DEST pdfmark
+end
+ -2
+2782 a 396 2888 a Fy(K)n(er)o(nelCheckIDT=)1058 2888
+y
+SDict begin H.S end
+ 1058 2888 a 1058 2888 a
+SDict begin 13 H.A end
+ 1058 2888 a 1058 2888 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4286) cvn H.B /DEST pdfmark
+end
+ 1058
+2888 a Fl(boolean)i FC(\227)g(Check)f(the)g(Interrupt)e(Descriptor)h(T)
+-7 b(able)20 b(\(def)o(ault)f(true\).)-2 3072 y
+SDict begin H.S end
+ -2 3072
+a -2 3072 a
+SDict begin 13 H.A end
+ -2 3072 a -2 3072 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4287) cvn H.B /DEST pdfmark
+end
+ -2 3072 a -2 3072 a
+SDict begin H.S end
+ -2
+3072 a -2 3072 a
+SDict begin 13 H.A end
+ -2 3072 a -2 3072 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4288) cvn H.B /DEST pdfmark
+end
+ -2 3072 a 396 3162
+a Fy(Se)o(v)o(erityK)n(er)o(nel=)975 3162 y
+SDict begin H.S end
+ 975 3162
+a 975 3162 a
+SDict begin 13 H.A end
+ 975 3162 a 975 3162 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4289) cvn H.B /DEST pdfmark
+end
+ 975 3162 a Fl(severity)25
+b FC(\227)20 b(Se)n(v)o(erity)f(for)h(e)n(v)o(ents.)-2
+3346 y
+SDict begin H.S end
+ -2 3346 a -2 3346 a
+SDict begin 13 H.A end
+ -2 3346 a -2 3346 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4290) cvn H.B /DEST pdfmark
+end
+ -2 3346
+a -2 3346 a
+SDict begin H.S end
+ -2 3346 a -2 3346 a
+SDict begin 13 H.A end
+ -2 3346 a -2 3346 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4291) cvn H.B /DEST pdfmark
+end
+ -2
+3346 a 396 3436 a Fy(K)n(er)o(nelSystemCall)f(=)1127
+3436 y
+SDict begin H.S end
+ 1127 3436 a 1127 3436 a
+SDict begin 13 H.A end
+ 1127 3436 a 1127 3436
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4292) cvn H.B /DEST pdfmark
+end
+ 1127 3436 a Fl(address)i FC(\227)f(the)h(address)e(of)h(system_call)g
+(\(grep)f(system_call)h(System.map\))-2 3620 y
+SDict begin H.S end
+ -2 3620
+a -2 3620 a
+SDict begin 13 H.A end
+ -2 3620 a -2 3620 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4293) cvn H.B /DEST pdfmark
+end
+ -2 3620 a -2 3620 a
+SDict begin H.S end
+ -2
+3620 a -2 3620 a
+SDict begin 13 H.A end
+ -2 3620 a -2 3620 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4294) cvn H.B /DEST pdfmark
+end
+ -2 3620 a 396 3710
+a Fy(K)n(er)o(nelSyscallT)-8 b(able)20 b(=)1166 3710
+y
+SDict begin H.S end
+ 1166 3710 a 1166 3710 a
+SDict begin 13 H.A end
+ 1166 3710 a 1166 3710 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4295) cvn H.B /DEST pdfmark
+end
+ 1166
+3710 a Fl(address)g FC(\227)h(the)f(address)g(of)g(sys_call_table)f
+(\(grep)g(')h(sys_call_table')396 3818 y(System.map\))-2
+4002 y
+SDict begin H.S end
+ -2 4002 a -2 4002 a
+SDict begin 13 H.A end
+ -2 4002 a -2 4002 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4296) cvn H.B /DEST pdfmark
+end
+ -2 4002
+a -2 4002 a
+SDict begin H.S end
+ -2 4002 a -2 4002 a
+SDict begin 13 H.A end
+ -2 4002 a -2 4002 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4297) cvn H.B /DEST pdfmark
+end
+ -2
+4002 a 396 4092 a Fy(K)n(er)o(nelPr)o(ocRoot)d(=)1061
+4092 y
+SDict begin H.S end
+ 1061 4092 a 1061 4092 a
+SDict begin 13 H.A end
+ 1061 4092 a 1061 4092
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4298) cvn H.B /DEST pdfmark
+end
+ 1061 4092 a Fl(address)j FC(\227)h(the)f(address)g(of)g(proc_root)e
+(\(grep)g(')j(proc_root$')c(System.map\))-2 4276 y
+SDict begin H.S end
+ -2
+4276 a -2 4276 a
+SDict begin 13 H.A end
+ -2 4276 a -2 4276 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4299) cvn H.B /DEST pdfmark
+end
+ -2 4276 a -2 4276
+a
+SDict begin H.S end
+ -2 4276 a -2 4276 a
+SDict begin 13 H.A end
+ -2 4276 a -2 4276 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4300) cvn H.B /DEST pdfmark
+end
+ -2 4276 a 396
+4366 a Fy(K)n(er)o(nelPr)o(ocRootIops)g(=)1214 4366 y
+SDict begin H.S end
+
+1214 4366 a 1214 4366 a
+SDict begin 13 H.A end
+ 1214 4366 a 1214 4366 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4301) cvn H.B /DEST pdfmark
+end
+ 1214
+4366 a Fl(address)j FC(\227)g(the)h(address)e(of)h(proc_root_inode_ope)
+o(ration)o(s)15 b(\(grep)396 4474 y(proc_root_inode_ope)o(ration)o(s)g
+(System.map\))-2 4658 y
+SDict begin H.S end
+ -2 4658 a -2 4658 a
+SDict begin 13 H.A end
+ -2 4658 a
+-2 4658 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4302) cvn H.B /DEST pdfmark
+end
+ -2 4658 a -2 4658 a
+SDict begin H.S end
+ -2 4658 a -2 4658 a
+SDict begin 13 H.A end
+ -2
+4658 a -2 4658 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4303) cvn H.B /DEST pdfmark
+end
+ -2 4658 a 396 4748 a Fy(K)n(er)o(nelPr)o(ocRootLookup)
+i(=)1338 4748 y
+SDict begin H.S end
+ 1338 4748 a 1338 4748 a
+SDict begin 13 H.A end
+ 1338 4748 a 1338
+4748 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4304) cvn H.B /DEST pdfmark
+end
+ 1338 4748 a Fl(address)j FC(\227)h(the)f(address)g(of)g
+(proc_root_lookup)15 b(\(grep)j(proc_root_lookup)396
+4856 y(System.map\))-2 4884 y
+SDict begin H.S end
+ -2 4884 a -2 4884 a
+SDict begin 13 H.A end
+ -2
+4884 a -2 4884 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CHECKING-FOR-SUID-FILES) cvn
+H.B /DEST pdfmark end
+ -2 4884 a Black 3617 5805 a Fx(117)p
+Black eop end
+%%Page: 118 123
+TeXDict begin 118 122 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.118) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2249 104 a
+Fx(Appendix)18 b(C.)j(List)g(of)g(con\002gur)o(ation)c(\002le)j
+(options)p Black -2 330 a Fu(C.7.)39 b(Chec)m(king)e(f)m(or)j
+(SUID/SGID)d(\002les)2273 330 y
+SDict begin H.S end
+ 2273 330 a 2273 330 a
+SDict begin 22.464 H.A end
+
+2273 330 a 2273 330 a
+SDict begin [ /View [/XYZ H.V] /Dest (16.88.1) cvn H.B /DEST pdfmark
+end
+ 2273 330 a -2 528 a
+SDict begin H.S end
+ -2 528 a -2
+528 a
+SDict begin 13 H.A end
+ -2 528 a -2 528 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4307) cvn H.B /DEST pdfmark
+end
+ -2 528 a 396 604 a FC(Section)20
+b(heading:)396 878 y Fy([SuidCheck])-2 1057 y
+SDict begin H.S end
+ -2 1057
+a -2 1057 a
+SDict begin 13 H.A end
+ -2 1057 a -2 1057 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4310) cvn H.B /DEST pdfmark
+end
+ -2 1057 a 396 1152 a
+FC(Entries:)-2 1319 y
+SDict begin H.S end
+ -2 1319 a -2 1319 a
+SDict begin 13 H.A end
+ -2 1319 a -2
+1319 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4311) cvn H.B /DEST pdfmark
+end
+ -2 1319 a -2 1319 a
+SDict begin H.S end
+ -2 1319 a -2 1319 a
+SDict begin 13 H.A end
+ -2 1319
+a -2 1319 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4312) cvn H.B /DEST pdfmark
+end
+ -2 1319 a 396 1426 a Fy(SuidCheckActi)o(v)o(e=)1055
+1426 y
+SDict begin H.S end
+ 1055 1426 a 1055 1426 a
+SDict begin 13 H.A end
+ 1055 1426 a 1055 1426
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4313) cvn H.B /DEST pdfmark
+end
+ 1055 1426 a Fl(boolean)h FC(\227)g('1')e(to)i(switch)f(on,)g('0')f
+(to)i(switch)f(of)n(f.)-2 1604 y
+SDict begin H.S end
+ -2 1604 a -2 1604 a
+SDict begin 13 H.A end
+
+-2 1604 a -2 1604 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4314) cvn H.B /DEST pdfmark
+end
+ -2 1604 a -2 1604 a
+SDict begin H.S end
+ -2 1604 a -2
+1604 a
+SDict begin 13 H.A end
+ -2 1604 a -2 1604 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4315) cvn H.B /DEST pdfmark
+end
+ -2 1604 a 396 1700 a Fy(SuidCheckExclude=)
+1116 1700 y
+SDict begin H.S end
+ 1116 1700 a 1116 1700 a
+SDict begin 13 H.A end
+ 1116 1700 a 1116
+1700 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4316) cvn H.B /DEST pdfmark
+end
+ 1116 1700 a Fl(path)i FC(\227)f(A)g(directory)d(\(and)h(its)j
+(subdirectories\))c(to)i(e)o(xclude)f(from)g(the)h(check.)f(Only)396
+1808 y(one)h(directory)e(can)i(be)g(speci\002ed)g(this)h(w)o(ay)-5
+b(.)-2 1992 y
+SDict begin H.S end
+ -2 1992 a -2 1992 a
+SDict begin 13 H.A end
+ -2 1992 a -2 1992 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4317) cvn H.B /DEST pdfmark
+end
+
+-2 1992 a -2 1992 a
+SDict begin H.S end
+ -2 1992 a -2 1992 a
+SDict begin 13 H.A end
+ -2 1992 a -2
+1992 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4318) cvn H.B /DEST pdfmark
+end
+ -2 1992 a 396 2082 a Fy(SuidCheckSchedule=)1148
+2082 y
+SDict begin H.S end
+ 1148 2082 a 1148 2082 a
+SDict begin 13 H.A end
+ 1148 2082 a 1148 2082
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4319) cvn H.B /DEST pdfmark
+end
+ 1148 2082 a Fl(schedule)21 b FC(\227)g(Crontab-lik)o(e)e(schedule)g
+(for)g(checks.)-2 2250 y
+SDict begin H.S end
+ -2 2250 a -2 2250 a
+SDict begin 13 H.A end
+ -2 2250
+a -2 2250 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4320) cvn H.B /DEST pdfmark
+end
+ -2 2250 a -2 2250 a
+SDict begin H.S end
+ -2 2250 a -2 2250 a
+SDict begin 13 H.A end
+ -2
+2250 a -2 2250 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4321) cvn H.B /DEST pdfmark
+end
+ -2 2250 a 396 2356 a Fy(Se)o(v)o(eritySuidCheck=)1120
+2356 y
+SDict begin H.S end
+ 1120 2356 a 1120 2356 a
+SDict begin 13 H.A end
+ 1120 2356 a 1120 2356
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4322) cvn H.B /DEST pdfmark
+end
+ 1120 2356 a Fl(severity)26 b FC(\227)21 b(Se)n(v)o(erity)e(for)g(e)n
+(v)o(ents.)-2 2540 y
+SDict begin H.S end
+ -2 2540 a -2 2540 a
+SDict begin 13 H.A end
+ -2 2540 a -2
+2540 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4323) cvn H.B /DEST pdfmark
+end
+ -2 2540 a -2 2540 a
+SDict begin H.S end
+ -2 2540 a -2 2540 a
+SDict begin 13 H.A end
+ -2 2540
+a -2 2540 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4324) cvn H.B /DEST pdfmark
+end
+ -2 2540 a 396 2630 a Fy(SuidCheckFps=)959
+2630 y
+SDict begin H.S end
+ 959 2630 a 959 2630 a
+SDict begin 13 H.A end
+ 959 2630 a 959 2630 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4325) cvn H.B /DEST pdfmark
+end
+ 959
+2630 a Fl(fps)j FC(\227)f(Limit)f(\002les)h(per)f(seconds)g(for)f(SUID)
+i(check.)-2 2658 y
+SDict begin H.S end
+ -2 2658 a -2 2658 a
+SDict begin 13 H.A end
+ -2 2658 a -2 2658
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CHECKING-MOUNTS) cvn H.B /DEST
+pdfmark end
+ -2 2658 a 360 x Fu(C.8.)39 b(Chec)m(king)e(f)m(or)j(mount)e(options)
+2210 3018 y
+SDict begin H.S end
+ 2210 3018 a 2210 3018 a
+SDict begin 22.464 H.A end
+ 2210 3018 a 2210
+3018 a
+SDict begin [ /View [/XYZ H.V] /Dest (16.89.1) cvn H.B /DEST pdfmark
+end
+ 2210 3018 a -2 3216 a
+SDict begin H.S end
+ -2 3216 a -2 3216 a
+SDict begin 13 H.A end
+ -2 3216
+a -2 3216 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4328) cvn H.B /DEST pdfmark
+end
+ -2 3216 a 396 3292 a FC(Section)20 b(heading:)-2
+3476 y
+SDict begin H.S end
+ -2 3476 a -2 3476 a
+SDict begin 13 H.A end
+ -2 3476 a -2 3476 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4329) cvn H.B /DEST pdfmark
+end
+ -2 3476
+a -2 3476 a
+SDict begin H.S end
+ -2 3476 a -2 3476 a
+SDict begin 13 H.A end
+ -2 3476 a -2 3476 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4330) cvn H.B /DEST pdfmark
+end
+ -2
+3476 a 396 3565 a Fy([Mounts])-2 3744 y
+SDict begin H.S end
+ -2 3744 a -2
+3744 a
+SDict begin 13 H.A end
+ -2 3744 a -2 3744 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4331) cvn H.B /DEST pdfmark
+end
+ -2 3744 a 396 3839 a FC(Entries:)-2
+4006 y
+SDict begin H.S end
+ -2 4006 a -2 4006 a
+SDict begin 13 H.A end
+ -2 4006 a -2 4006 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4332) cvn H.B /DEST pdfmark
+end
+ -2 4006
+a -2 4006 a
+SDict begin H.S end
+ -2 4006 a -2 4006 a
+SDict begin 13 H.A end
+ -2 4006 a -2 4006 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4333) cvn H.B /DEST pdfmark
+end
+ -2
+4006 a 396 4113 a Fy(MountCheckActi)o(v)o(e=)1134 4113
+y
+SDict begin H.S end
+ 1134 4113 a 1134 4113 a
+SDict begin 13 H.A end
+ 1134 4113 a 1134 4113 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4334) cvn H.B /DEST pdfmark
+end
+ 1134
+4113 a Fl(boolean)g FC(\227)h('1')f(to)g(switch)g(on,)g('0')g(to)g
+(switch)g(of)n(f.)-2 4291 y
+SDict begin H.S end
+ -2 4291 a -2 4291 a
+SDict begin 13 H.A end
+ -2 4291
+a -2 4291 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4335) cvn H.B /DEST pdfmark
+end
+ -2 4291 a -2 4291 a
+SDict begin H.S end
+ -2 4291 a -2 4291 a
+SDict begin 13 H.A end
+ -2
+4291 a -2 4291 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4336) cvn H.B /DEST pdfmark
+end
+ -2 4291 a 396 4387 a Fy(MountCheckInter)o(v)o(al=)1194
+4387 y
+SDict begin H.S end
+ 1194 4387 a 1194 4387 a
+SDict begin 13 H.A end
+ 1194 4387 a 1194 4387
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4337) cvn H.B /DEST pdfmark
+end
+ 1194 4387 a Fl(seconds)g FC(\227)h(Interv)n(al)d(between)i(checks.)-2
+4555 y
+SDict begin H.S end
+ -2 4555 a -2 4555 a
+SDict begin 13 H.A end
+ -2 4555 a -2 4555 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4338) cvn H.B /DEST pdfmark
+end
+ -2 4555
+a -2 4555 a
+SDict begin H.S end
+ -2 4555 a -2 4555 a
+SDict begin 13 H.A end
+ -2 4555 a -2 4555 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4339) cvn H.B /DEST pdfmark
+end
+ -2
+4555 a 396 4661 a Fy(Se)o(v)o(erityMountMissing=)1249
+4661 y
+SDict begin H.S end
+ 1249 4661 a 1249 4661 a
+SDict begin 13 H.A end
+ 1249 4661 a 1249 4661
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4340) cvn H.B /DEST pdfmark
+end
+ 1249 4661 a Fl(severity)26 b FC(\227)21 b(Se)n(v)o(erity)e(for)h
+(missing)g(mounts.)-2 4845 y
+SDict begin H.S end
+ -2 4845 a -2 4845 a
+SDict begin 13 H.A end
+ -2 4845
+a -2 4845 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4341) cvn H.B /DEST pdfmark
+end
+ -2 4845 a -2 4845 a
+SDict begin H.S end
+ -2 4845 a -2 4845 a
+SDict begin 13 H.A end
+ -2
+4845 a -2 4845 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4342) cvn H.B /DEST pdfmark
+end
+ -2 4845 a 396 4935 a Fy(Se)o(v)o(erityOptionMissing=)
+1259 4935 y
+SDict begin H.S end
+ 1259 4935 a 1259 4935 a
+SDict begin 13 H.A end
+ 1259 4935 a 1259
+4935 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4343) cvn H.B /DEST pdfmark
+end
+ 1259 4935 a Fl(severity)25 b FC(\227)c(Se)n(v)o(erity)e(for)h
+(missing)g(mount)f(options.)-2 5119 y
+SDict begin H.S end
+ -2 5119 a -2 5119
+a
+SDict begin 13 H.A end
+ -2 5119 a -2 5119 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4344) cvn H.B /DEST pdfmark
+end
+ -2 5119 a -2 5119 a
+SDict begin H.S end
+ -2 5119 a -2
+5119 a
+SDict begin 13 H.A end
+ -2 5119 a -2 5119 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4345) cvn H.B /DEST pdfmark
+end
+ -2 5119 a 396 5209 a Fy(CheckMount=)909
+5209 y
+SDict begin H.S end
+ 909 5209 a 909 5209 a
+SDict begin 13 H.A end
+ 909 5209 a 909 5209 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4346) cvn H.B /DEST pdfmark
+end
+ 909
+5209 a Fl(/path)44 b([mount)g(options])20 b FC(\227)g(Mount)g(point)f
+(to)h(check.)g(Mount)f(options)g(must)h(be)g(gi)n(v)o(en)396
+5317 y(as)h(comma-separated)c(list,)22 b(separated)d(by)h(a)g(blank)f
+(from)h(the)g(preceding)e(mount)h(point.)-2 5346 y
+SDict begin H.S end
+ -2
+5346 a -2 5346 a
+SDict begin 13 H.A end
+ -2 5346 a -2 5346 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CHECKING-USERFILES) cvn H.B
+/DEST pdfmark end
+ -2 5346 a Black
+3620 5805 a Fx(118)p Black eop end
+%%Page: 119 124
+TeXDict begin 119 123 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.119) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4389) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2249 104 a Fx(Appendix)18
+b(C.)j(List)g(of)g(con\002gur)o(ation)c(\002le)j(options)p
+Black -2 330 a Fu(C.9.)39 b(Chec)m(king)e(f)m(or)j(user)f(\002les)1843
+330 y
+SDict begin H.S end
+ 1843 330 a 1843 330 a
+SDict begin 22.464 H.A end
+ 1843 330 a 1843 330 a
+SDict begin [ /View [/XYZ H.V] /Dest (16.90.1) cvn H.B /DEST pdfmark
+end
+ 1843
+330 a -2 528 a
+SDict begin H.S end
+ -2 528 a -2 528 a
+SDict begin 13 H.A end
+ -2 528 a -2 528 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4349) cvn H.B /DEST pdfmark
+end
+ -2
+528 a 396 604 a FC(Section)20 b(heading:)-2 788 y
+SDict begin H.S end
+ -2
+788 a -2 788 a
+SDict begin 13 H.A end
+ -2 788 a -2 788 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4350) cvn H.B /DEST pdfmark
+end
+ -2 788 a -2 788 a
+SDict begin H.S end
+ -2
+788 a -2 788 a
+SDict begin 13 H.A end
+ -2 788 a -2 788 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4351) cvn H.B /DEST pdfmark
+end
+ -2 788 a 396 878 a Fy([UserFiles])-2
+1057 y
+SDict begin H.S end
+ -2 1057 a -2 1057 a
+SDict begin 13 H.A end
+ -2 1057 a -2 1057 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4352) cvn H.B /DEST pdfmark
+end
+ -2 1057
+a 396 1152 a FC(Entries:)-2 1319 y
+SDict begin H.S end
+ -2 1319 a -2 1319
+a
+SDict begin 13 H.A end
+ -2 1319 a -2 1319 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4353) cvn H.B /DEST pdfmark
+end
+ -2 1319 a -2 1319 a
+SDict begin H.S end
+ -2 1319 a -2
+1319 a
+SDict begin 13 H.A end
+ -2 1319 a -2 1319 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4354) cvn H.B /DEST pdfmark
+end
+ -2 1319 a 396 1426 a Fy(User\002lesActi)o(v)
+o(e=)972 1426 y
+SDict begin H.S end
+ 972 1426 a 972 1426 a
+SDict begin 13 H.A end
+ 972 1426 a 972
+1426 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4355) cvn H.B /DEST pdfmark
+end
+ 972 1426 a Fl(boolean)h FC(\227)g('1')e(to)h(switch)h(on,)f('0')
+f(to)h(switch)h(of)n(f.)-2 1604 y
+SDict begin H.S end
+ -2 1604 a -2 1604 a
+SDict begin 13 H.A end
+
+-2 1604 a -2 1604 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4356) cvn H.B /DEST pdfmark
+end
+ -2 1604 a -2 1604 a
+SDict begin H.S end
+ -2 1604 a -2
+1604 a
+SDict begin 13 H.A end
+ -2 1604 a -2 1604 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4357) cvn H.B /DEST pdfmark
+end
+ -2 1604 a 396 1700 a Fy(User\002lesName=)955
+1700 y
+SDict begin H.S end
+ 955 1700 a 955 1700 a
+SDict begin 13 H.A end
+ 955 1700 a 955 1700 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4358) cvn H.B /DEST pdfmark
+end
+ 955
+1700 a Fl(filename)44 b(policy)27 b FC(\227)20 b(Files)i(to)e(check)f
+(for)h(under)f(each)h($HOME.)f(Allo)n(wed)h(v)n(alues)f(for)396
+1808 y('polic)o(y')g(are:)h(allignore,)e(attrib)n(utes,)i(log\002les,)g
+(loggro)n(w)-5 b(,)18 b(noignore)g(\(def)o(ault\),)h(readonly)-5
+b(,)17 b(user0,)i(user1.)-2 1992 y
+SDict begin H.S end
+ -2 1992 a -2 1992
+a
+SDict begin 13 H.A end
+ -2 1992 a -2 1992 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4359) cvn H.B /DEST pdfmark
+end
+ -2 1992 a -2 1992 a
+SDict begin H.S end
+ -2 1992 a -2
+1992 a
+SDict begin 13 H.A end
+ -2 1992 a -2 1992 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4360) cvn H.B /DEST pdfmark
+end
+ -2 1992 a 396 2082 a Fy
+(User\002lesCheckUids=)1134 2082 y
+SDict begin H.S end
+ 1134 2082 a 1134 2082
+a
+SDict begin 13 H.A end
+ 1134 2082 a 1134 2082 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4361) cvn H.B /DEST pdfmark
+end
+ 1134 2082 a Fl(uid)46 b(list)20
+b FC(\227)h(A)f(list)i(of)d(UIDs)i(where)f(we)g(w)o(ant)h(to)f(check.)f
+(The)h(def)o(ault)f(is)i(all.)396 2190 y(Ranges)f(\(e.g.)g(100-500\))d
+(are)j(allo)n(wed.)f(If)h(there)g(is)h(an)f(open)f(range)h(\(e.g.)f
+(1000-\),)f(it)j(must)f(be)g(last)h(in)f(the)h(list.)-2
+2218 y
+SDict begin H.S end
+ -2 2218 a -2 2218 a
+SDict begin 13 H.A end
+ -2 2218 a -2 2218 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DATABASE) cvn H.B /DEST pdfmark
+end
+ -2 2218
+a 360 x Fu(C.10.)39 b(Database)1021 2578 y
+SDict begin H.S end
+ 1021 2578
+a 1021 2578 a
+SDict begin 22.464 H.A end
+ 1021 2578 a 1021 2578 a
+SDict begin [ /View [/XYZ H.V] /Dest (16.91.1) cvn H.B /DEST pdfmark
+end
+ 1021 2578 a -2
+2745 a
+SDict begin H.S end
+ -2 2745 a -2 2745 a
+SDict begin 13 H.A end
+ -2 2745 a -2 2745 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4364) cvn H.B /DEST pdfmark
+end
+ -2 2745
+a 396 2851 a FC(Section)20 b(heading:)-2 3036 y
+SDict begin H.S end
+ -2 3036
+a -2 3036 a
+SDict begin 13 H.A end
+ -2 3036 a -2 3036 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4365) cvn H.B /DEST pdfmark
+end
+ -2 3036 a -2 3036 a
+SDict begin H.S end
+ -2
+3036 a -2 3036 a
+SDict begin 13 H.A end
+ -2 3036 a -2 3036 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4366) cvn H.B /DEST pdfmark
+end
+ -2 3036 a 396 3125
+a Fy([Database])-2 3304 y
+SDict begin H.S end
+ -2 3304 a -2 3304 a
+SDict begin 13 H.A end
+ -2 3304
+a -2 3304 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4367) cvn H.B /DEST pdfmark
+end
+ -2 3304 a 396 3399 a FC(Entries:)-2 3566
+y
+SDict begin H.S end
+ -2 3566 a -2 3566 a
+SDict begin 13 H.A end
+ -2 3566 a -2 3566 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4368) cvn H.B /DEST pdfmark
+end
+ -2 3566 a -2
+3566 a
+SDict begin H.S end
+ -2 3566 a -2 3566 a
+SDict begin 13 H.A end
+ -2 3566 a -2 3566 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4369) cvn H.B /DEST pdfmark
+end
+ -2 3566
+a 396 3673 a Fy(SetDBHost=)836 3673 y
+SDict begin H.S end
+ 836 3673 a 836
+3673 a
+SDict begin 13 H.A end
+ 836 3673 a 836 3673 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4370) cvn H.B /DEST pdfmark
+end
+ 836 3673 a Fl(db_host)f
+FC(\227)i(Host)g(where)e(the)h(DB)h(serv)o(er)f(runs)f(\(def)o(ault:)h
+(localhost\).)f(Should)g(be)h(numeric)f(IP)396 3781 y(address)h(for)g
+(PostgreSQL.)-2 3965 y
+SDict begin H.S end
+ -2 3965 a -2 3965 a
+SDict begin 13 H.A end
+ -2 3965 a
+-2 3965 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4371) cvn H.B /DEST pdfmark
+end
+ -2 3965 a -2 3965 a
+SDict begin H.S end
+ -2 3965 a -2 3965 a
+SDict begin 13 H.A end
+ -2
+3965 a -2 3965 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4372) cvn H.B /DEST pdfmark
+end
+ -2 3965 a 396 4055 a Fy(SetDBName=)877
+4055 y
+SDict begin H.S end
+ 877 4055 a 877 4055 a
+SDict begin 13 H.A end
+ 877 4055 a 877 4055 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4373) cvn H.B /DEST pdfmark
+end
+ 877
+4055 a Fl(db_name)g FC(\227)h(Name)f(of)g(the)g(database)f(\(def)o
+(ault:)h(samhain\).)-2 4236 y
+SDict begin H.S end
+ -2 4236 a -2 4236 a
+SDict begin 13 H.A end
+ -2
+4236 a -2 4236 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4374) cvn H.B /DEST pdfmark
+end
+ -2 4236 a -2 4236 a
+SDict begin H.S end
+ -2 4236 a -2 4236
+a
+SDict begin 13 H.A end
+ -2 4236 a -2 4236 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4375) cvn H.B /DEST pdfmark
+end
+ -2 4236 a 396 4329 a Fy(SetDBT)-8
+b(able=)864 4329 y
+SDict begin H.S end
+ 864 4329 a 864 4329 a
+SDict begin 13 H.A end
+ 864 4329 a 864
+4329 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4376) cvn H.B /DEST pdfmark
+end
+ 864 4329 a Fl(db_table)21 b FC(\227)f(Name)g(of)g(the)h
+(database)e(table)h(\(def)o(ault:)f(log\).)-2 4513 y
+SDict begin H.S end
+
+-2 4513 a -2 4513 a
+SDict begin 13 H.A end
+ -2 4513 a -2 4513 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4377) cvn H.B /DEST pdfmark
+end
+ -2 4513 a -2
+4513 a
+SDict begin H.S end
+ -2 4513 a -2 4513 a
+SDict begin 13 H.A end
+ -2 4513 a -2 4513 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4378) cvn H.B /DEST pdfmark
+end
+ -2 4513
+a 396 4603 a Fy(SetDB)o(User=)834 4603 y
+SDict begin H.S end
+ 834 4603 a 834
+4603 a
+SDict begin 13 H.A end
+ 834 4603 a 834 4603 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4379) cvn H.B /DEST pdfmark
+end
+ 834 4603 a Fl(db_user)24
+b FC(\227)d(Connect)f(as)g(this)h(user)f(\(def)o(ault:)f(samhain\).)-2
+4784 y
+SDict begin H.S end
+ -2 4784 a -2 4784 a
+SDict begin 13 H.A end
+ -2 4784 a -2 4784 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4380) cvn H.B /DEST pdfmark
+end
+ -2 4784
+a -2 4784 a
+SDict begin H.S end
+ -2 4784 a -2 4784 a
+SDict begin 13 H.A end
+ -2 4784 a -2 4784 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4381) cvn H.B /DEST pdfmark
+end
+ -2
+4784 a 396 4877 a Fy(SetDBP)o(assw)o(ord=)1009 4877 y
+SDict begin H.S end
+
+1009 4877 a 1009 4877 a
+SDict begin 13 H.A end
+ 1009 4877 a 1009 4877 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4382) cvn H.B /DEST pdfmark
+end
+ 1009
+4877 a Fl(db_password)j FC(\227)f(Use)g(this)g(passw)o(ord)e(\(def)o
+(ault:)g(none\).)-2 5061 y
+SDict begin H.S end
+ -2 5061 a -2 5061 a
+SDict begin 13 H.A end
+ -2 5061
+a -2 5061 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4383) cvn H.B /DEST pdfmark
+end
+ -2 5061 a -2 5061 a
+SDict begin H.S end
+ -2 5061 a -2 5061 a
+SDict begin 13 H.A end
+ -2
+5061 a -2 5061 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4384) cvn H.B /DEST pdfmark
+end
+ -2 5061 a 396 5151 a Fy(SetDBSer)o(v)o(erTstamp=)1175
+5151 y
+SDict begin H.S end
+ 1175 5151 a 1175 5151 a
+SDict begin 13 H.A end
+ 1175 5151 a 1175 5151
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4385) cvn H.B /DEST pdfmark
+end
+ 1175 5151 a Fl(boolean)i FC(\227)g(Log)e(serv)o(er)g(timestamp)h(for)
+g(client)g(messages)g(\(def)o(ault:)f(true\).)p Black
+3620 5805 a Fx(119)p Black eop end
+%%Page: 120 125
+TeXDict begin 120 124 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.120) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4431) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2249 104 a Fx(Appendix)18
+b(C.)j(List)g(of)g(con\002gur)o(ation)c(\002le)j(options)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4386) cvn H.B /DEST pdfmark
+end
+ -2
+226 a -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4387) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a Fy(UseP)n(ersistent=)921 309 y
+SDict begin H.S end
+ 921 309
+a 921 309 a
+SDict begin 13 H.A end
+ 921 309 a 921 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4388) cvn H.B /DEST pdfmark
+end
+ 921 309 a Fl(boolean)h
+FC(\227)g(Use)g(a)f(persistent)g(connection)e(\(def)o(ault:)i(true\).)
+396 583 y Fy(AddT)-8 b(oDBHash=)p Fl(field)24 b FC(\227)d(Add)f(a)g
+(database)g(\002eld)g(to)h(the)f(set)h(of)f(\002elds)g(that)h(are)f
+(used)g(for)f(tagging)g(the)h(log)396 691 y(record)f(with)h(an)h(MD5)f
+(hash.)-2 702 y
+SDict begin H.S end
+ -2 702 a -2 702 a
+SDict begin 13 H.A end
+ -2 702 a -2 702 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:MISCELLANEOUS) cvn H.B /DEST
+pdfmark end
+ -2
+702 a 376 x Fu(C.11.)39 b(Miscellaneous)1365 1078 y
+SDict begin H.S end
+ 1365
+1078 a 1365 1078 a
+SDict begin 22.464 H.A end
+ 1365 1078 a 1365 1078 a
+SDict begin [ /View [/XYZ H.V] /Dest (16.92.1) cvn H.B /DEST pdfmark
+end
+ 1365 1078
+a -2 1246 a
+SDict begin H.S end
+ -2 1246 a -2 1246 a
+SDict begin 13 H.A end
+ -2 1246 a -2 1246 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4394) cvn H.B /DEST pdfmark
+end
+ -2
+1246 a 396 1352 a FC(Section)20 b(heading:)-2 1536 y
+SDict begin H.S end
+
+-2 1536 a -2 1536 a
+SDict begin 13 H.A end
+ -2 1536 a -2 1536 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4395) cvn H.B /DEST pdfmark
+end
+ -2 1536 a -2
+1536 a
+SDict begin H.S end
+ -2 1536 a -2 1536 a
+SDict begin 13 H.A end
+ -2 1536 a -2 1536 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4396) cvn H.B /DEST pdfmark
+end
+ -2 1536
+a 396 1626 a Fy([Misc])-2 1804 y
+SDict begin H.S end
+ -2 1804 a -2 1804 a
+SDict begin 13 H.A end
+
+-2 1804 a -2 1804 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4397) cvn H.B /DEST pdfmark
+end
+ -2 1804 a 396 1900 a FC(Entries:)-2
+2067 y
+SDict begin H.S end
+ -2 2067 a -2 2067 a
+SDict begin 13 H.A end
+ -2 2067 a -2 2067 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4398) cvn H.B /DEST pdfmark
+end
+ -2 2067
+a -2 2067 a
+SDict begin H.S end
+ -2 2067 a -2 2067 a
+SDict begin 13 H.A end
+ -2 2067 a -2 2067 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4399) cvn H.B /DEST pdfmark
+end
+ -2
+2067 a 396 2174 a Fy(Daemon=)739 2174 y
+SDict begin H.S end
+ 739 2174 a 739
+2174 a
+SDict begin 13 H.A end
+ 739 2174 a 739 2174 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4400) cvn H.B /DEST pdfmark
+end
+ 739 2174 a Fl(boolean)g
+FC(\227)h(Whether)f(to)g(become)f(a)i(daemon)d(\(def)o(ault:)h(no\))-2
+2355 y
+SDict begin H.S end
+ -2 2355 a -2 2355 a
+SDict begin 13 H.A end
+ -2 2355 a -2 2355 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4401) cvn H.B /DEST pdfmark
+end
+ -2 2355
+a -2 2355 a
+SDict begin H.S end
+ -2 2355 a -2 2355 a
+SDict begin 13 H.A end
+ -2 2355 a -2 2355 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4402) cvn H.B /DEST pdfmark
+end
+ -2
+2355 a 396 2448 a Fy(MessageHeader=)1007 2448 y
+SDict begin H.S end
+ 1007
+2448 a 1007 2448 a
+SDict begin 13 H.A end
+ 1007 2448 a 1007 2448 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4403) cvn H.B /DEST pdfmark
+end
+ 1007 2448
+a Fl("\\\045S)43 b(\\\045T)i(\\\045F)f(\\\045L)g(\\\045C")20
+b FC(\227)h(Specify)f(custom)f(format)g(for)h(message)g(header)-5
+b(.)-2 2632 y
+SDict begin H.S end
+ -2 2632 a -2 2632 a
+SDict begin 13 H.A end
+ -2 2632 a -2 2632 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4404) cvn H.B /DEST pdfmark
+end
+
+-2 2632 a -2 2632 a
+SDict begin H.S end
+ -2 2632 a -2 2632 a
+SDict begin 13 H.A end
+ -2 2632 a -2
+2632 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4405) cvn H.B /DEST pdfmark
+end
+ -2 2632 a 396 2722 a Fy(V)d(ersionString=)934
+2722 y
+SDict begin H.S end
+ 934 2722 a 934 2722 a
+SDict begin 13 H.A end
+ 934 2722 a 934 2722 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4406) cvn H.B /DEST pdfmark
+end
+ 934
+2722 a Fl(string)25 b FC(\227)20 b(Set)h(v)o(ersion)e(string)h(to)g
+(include)g(in)g(\002le)h(signature)e(database)g(\(along)g(with)396
+2830 y(hostname)g(and)h(date\).)-2 3011 y
+SDict begin H.S end
+ -2 3011 a -2
+3011 a
+SDict begin 13 H.A end
+ -2 3011 a -2 3011 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4407) cvn H.B /DEST pdfmark
+end
+ -2 3011 a -2 3011 a
+SDict begin H.S end
+ -2 3011
+a -2 3011 a
+SDict begin 13 H.A end
+ -2 3011 a -2 3011 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4408) cvn H.B /DEST pdfmark
+end
+ -2 3011 a 396 3104 a
+Fy(SetRe)o(v)o(erseLookup=)1111 3104 y
+SDict begin H.S end
+ 1111 3104 a 1111
+3104 a
+SDict begin 13 H.A end
+ 1111 3104 a 1111 3104 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4409) cvn H.B /DEST pdfmark
+end
+ 1111 3104 a Fl(boolean)g
+FC(\227)h(If)f(f)o(alse,)g(skip)g(re)n(v)o(erse)f(lookups)g(when)h
+(connecting)e(to)i(a)h(host)f(kno)n(wn)e(by)396 3212
+y(name)i(rather)f(than)h(IP)g(address.)-2 3379 y
+SDict begin H.S end
+ -2 3379
+a -2 3379 a
+SDict begin 13 H.A end
+ -2 3379 a -2 3379 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4410) cvn H.B /DEST pdfmark
+end
+ -2 3379 a -2 3379 a
+SDict begin H.S end
+ -2
+3379 a -2 3379 a
+SDict begin 13 H.A end
+ -2 3379 a -2 3379 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4411) cvn H.B /DEST pdfmark
+end
+ -2 3379 a 396 3486
+a Fy(HideSetup=)817 3486 y
+SDict begin H.S end
+ 817 3486 a 817 3486 a
+SDict begin 13 H.A end
+ 817
+3486 a 817 3486 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4412) cvn H.B /DEST pdfmark
+end
+ 817 3486 a Fl(boolean)h FC(\227)g(Don')o(t)e(log)g
+(names)h(of)g(con\002g/database)e(\002les)k(on)d(startup.)-2
+3670 y
+SDict begin H.S end
+ -2 3670 a -2 3670 a
+SDict begin 13 H.A end
+ -2 3670 a -2 3670 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4413) cvn H.B /DEST pdfmark
+end
+ -2 3670
+a -2 3670 a
+SDict begin H.S end
+ -2 3670 a -2 3670 a
+SDict begin 13 H.A end
+ -2 3670 a -2 3670 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4414) cvn H.B /DEST pdfmark
+end
+ -2
+3670 a 396 3760 a Fy(SyslogF)n(acility=)937 3760 y
+SDict begin H.S end
+ 937
+3760 a 937 3760 a
+SDict begin 13 H.A end
+ 937 3760 a 937 3760 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4415) cvn H.B /DEST pdfmark
+end
+ 937 3760 a Fl(LOG_xxx)k
+FC(\227)e(Set)g(syslog)e(f)o(acility)i(\(def)o(ault)e(is)i(LOG_A)-5
+b(UTHPRIV\).)-2 3944 y
+SDict begin H.S end
+ -2 3944 a -2 3944 a
+SDict begin 13 H.A end
+ -2 3944 a
+-2 3944 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4416) cvn H.B /DEST pdfmark
+end
+ -2 3944 a -2 3944 a
+SDict begin H.S end
+ -2 3944 a -2 3944 a
+SDict begin 13 H.A end
+ -2
+3944 a -2 3944 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4417) cvn H.B /DEST pdfmark
+end
+ -2 3944 a 396 4034 a Fy(MA)g(CT)f(ype=)810
+4034 y
+SDict begin H.S end
+ 810 4034 a 810 4034 a
+SDict begin 13 H.A end
+ 810 4034 a 810 4034 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4418) cvn H.B /DEST pdfmark
+end
+ 810
+4034 a Fl(HASH-TIGER/HMAC-TIGER)20 b FC(\227)g(Set)h(type)f(of)g
+(message)g(authentication)e(code)h(\(HMA)m(C\).)h(Must)396
+4142 y(be)g(identical)g(on)g(client)g(and)g(serv)o(er)-5
+b(.)-2 4308 y
+SDict begin H.S end
+ -2 4308 a -2 4308 a
+SDict begin 13 H.A end
+ -2 4308 a -2 4308 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4419) cvn H.B /DEST pdfmark
+end
+
+-2 4308 a -2 4308 a
+SDict begin H.S end
+ -2 4308 a -2 4308 a
+SDict begin 13 H.A end
+ -2 4308 a -2
+4308 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4420) cvn H.B /DEST pdfmark
+end
+ -2 4308 a 396 4416 a Fy(SetLoopT)o(ime=)922 4416
+y
+SDict begin H.S end
+ 922 4416 a 922 4416 a
+SDict begin 13 H.A end
+ 922 4416 a 922 4416 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4421) cvn H.B /DEST pdfmark
+end
+ 922 4416
+a Fl(seconds)20 b FC(\227)h(Interv)n(al)e(between)g(timestamp)h
+(messages)g(\(60\).)-2 4600 y
+SDict begin H.S end
+ -2 4600 a -2 4600 a
+SDict begin 13 H.A end
+ -2
+4600 a -2 4600 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4422) cvn H.B /DEST pdfmark
+end
+ -2 4600 a -2 4600 a
+SDict begin H.S end
+ -2 4600 a -2 4600
+a
+SDict begin 13 H.A end
+ -2 4600 a -2 4600 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4423) cvn H.B /DEST pdfmark
+end
+ -2 4600 a 396 4690 a Fy(SetConsole=)836
+4690 y
+SDict begin H.S end
+ 836 4690 a 836 4690 a
+SDict begin 13 H.A end
+ 836 4690 a 836 4690 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4424) cvn H.B /DEST pdfmark
+end
+ 836
+4690 a Fl(device)g FC(\227)g(Set)h(the)f(console)g(de)n(vice)f(\(/de)n
+(v/console\).)-2 4870 y
+SDict begin H.S end
+ -2 4870 a -2 4870 a
+SDict begin 13 H.A end
+ -2 4870 a
+-2 4870 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4425) cvn H.B /DEST pdfmark
+end
+ -2 4870 a -2 4870 a
+SDict begin H.S end
+ -2 4870 a -2 4870 a
+SDict begin 13 H.A end
+ -2
+4870 a -2 4870 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4426) cvn H.B /DEST pdfmark
+end
+ -2 4870 a 396 4964 a Fy(MessageQueueActi)o(v)o(e=)1199
+4964 y
+SDict begin H.S end
+ 1199 4964 a 1199 4964 a
+SDict begin 13 H.A end
+ 1199 4964 a 1199 4964
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4427) cvn H.B /DEST pdfmark
+end
+ 1199 4964 a Fl(boolean)h FC(\227)h(Use)f(SysV)h(IPC)g(message)f
+(queue)f(\(f)o(alse\).)-2 5148 y
+SDict begin H.S end
+ -2 5148 a -2 5148 a
+SDict begin 13 H.A end
+
+-2 5148 a -2 5148 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4428) cvn H.B /DEST pdfmark
+end
+ -2 5148 a -2 5148 a
+SDict begin H.S end
+ -2 5148 a -2
+5148 a
+SDict begin 13 H.A end
+ -2 5148 a -2 5148 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4429) cvn H.B /DEST pdfmark
+end
+ -2 5148 a 396 5237 a Fy(Pr)o(eludeMapT)-8
+b(oInf)n(o=)1120 5237 y
+SDict begin H.S end
+ 1120 5237 a 1120 5237 a
+SDict begin 13 H.A end
+ 1120
+5237 a 1120 5237 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4430) cvn H.B /DEST pdfmark
+end
+ 1120 5237 a Fl(list)44 b(of)g(samhain)g(severities)
+20 b FC(\227)g(The)g(se)n(v)o(erities)g(that)g(should)g(be)g(mapped)e
+(to)396 5345 y(impact)i(se)n(v)o(erity)f('info')g(in)h(prelude)f
+(reports)g(\(def)o(ault:)h(none\).)e(This)j(option)e(is)i(only)e(a)n(v)
+n(ailable)h(with)g(libprelude)p Black 3620 5805 a Fx(120)p
+Black eop end
+%%Page: 121 126
+TeXDict begin 121 125 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.121) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2249 104 a
+Fx(Appendix)18 b(C.)j(List)g(of)g(con\002gur)o(ation)c(\002le)j
+(options)p Black 396 309 a FC(0.9.)396 583 y Fy(Pr)o(eludeMapT)-8
+b(oLo)o(w=)p Fl(list)44 b(of)h(samhain)e(severities)20
+b FC(\227)h(The)f(se)n(v)o(erities)g(that)g(should)f(be)h(mapped)f(to)
+396 691 y(impact)h(se)n(v)o(erity)f(')o(lo)n(w')h(in)g(prelude)f
+(reports)g(\(def)o(ault:)h(none\).)e(This)i(option)f(is)j(only)d(a)n(v)
+n(ailable)h(with)g(libprelude)396 799 y(0.9.)-2 966 y
+SDict begin H.S end
+
+-2 966 a -2 966 a
+SDict begin 13 H.A end
+ -2 966 a -2 966 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4434) cvn H.B /DEST pdfmark
+end
+ -2 966 a -2 966 a
+SDict begin H.S end
+
+-2 966 a -2 966 a
+SDict begin 13 H.A end
+ -2 966 a -2 966 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4435) cvn H.B /DEST pdfmark
+end
+ -2 966 a 396 1073
+a Fy(Pr)o(eludeMapT)-8 b(oMedium=)1273 1073 y
+SDict begin H.S end
+ 1273 1073
+a 1273 1073 a
+SDict begin 13 H.A end
+ 1273 1073 a 1273 1073 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4436) cvn H.B /DEST pdfmark
+end
+ 1273 1073 a Fl(list)45
+b(of)g(samhain)e(severities)20 b FC(\227)h(The)e(se)n(v)o(erities)h
+(that)h(should)e(be)396 1180 y(mapped)g(to)h(impact)g(se)n(v)o(erity)f
+('medium')f(in)j(prelude)e(reports)g(\(def)o(ault:)g(none\).)g(This)h
+(option)f(is)i(only)e(a)n(v)n(ailable)396 1288 y(with)i(libprelude)d
+(0.9.)-2 1472 y
+SDict begin H.S end
+ -2 1472 a -2 1472 a
+SDict begin 13 H.A end
+ -2 1472 a -2 1472
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4437) cvn H.B /DEST pdfmark
+end
+ -2 1472 a -2 1472 a
+SDict begin H.S end
+ -2 1472 a -2 1472 a
+SDict begin 13 H.A end
+ -2 1472 a -2
+1472 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4438) cvn H.B /DEST pdfmark
+end
+ -2 1472 a 396 1562 a Fy(Pr)o(eludeMapT)-8 b(oHigh=)1150
+1562 y
+SDict begin H.S end
+ 1150 1562 a 1150 1562 a
+SDict begin 13 H.A end
+ 1150 1562 a 1150 1562
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4439) cvn H.B /DEST pdfmark
+end
+ 1150 1562 a Fl(list)44 b(of)g(samhain)g(severities)19
+b FC(\227)i(The)f(se)n(v)o(erities)g(that)g(should)f(be)i(mapped)396
+1670 y(to)g(impact)e(se)n(v)o(erity)h('high')e(in)j(prelude)d(reports)i
+(\(def)o(ault:)f(none\).)f(This)j(option)e(is)i(only)e(a)n(v)n(ailable)
+h(with)396 1778 y(libprelude)f(0.9.)-2 1962 y
+SDict begin H.S end
+ -2 1962
+a -2 1962 a
+SDict begin 13 H.A end
+ -2 1962 a -2 1962 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4440) cvn H.B /DEST pdfmark
+end
+ -2 1962 a -2 1962 a
+SDict begin H.S end
+ -2
+1962 a -2 1962 a
+SDict begin 13 H.A end
+ -2 1962 a -2 1962 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4441) cvn H.B /DEST pdfmark
+end
+ -2 1962 a 396 2052
+a Fy(Pr)o(eludePr)o(o\002le=)954 2052 y
+SDict begin H.S end
+ 954 2052 a 954
+2052 a
+SDict begin 13 H.A end
+ 954 2052 a 954 2052 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4442) cvn H.B /DEST pdfmark
+end
+ 954 2052 a Fl(profile)f
+FC(\227)j(Set)g(the)f(pro\002le)g(\(sensor)f(name\))g(for)h(use)g(with)
+h(the)f(Prelude)f(IDS.)i(This)f(option)396 2160 y(is)h(only)f(a)n(v)n
+(ailable)f(with)i(libprelude)d(0.9.)i(Def)o(ault)f(is)j(')-5
+b(samhain')19 b(\(prelude)f(0.9\))h(or)h('Samhain')f(\(prelude)f
+(0.8\).)-2 2344 y
+SDict begin H.S end
+ -2 2344 a -2 2344 a
+SDict begin 13 H.A end
+ -2 2344 a -2 2344
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4443) cvn H.B /DEST pdfmark
+end
+ -2 2344 a -2 2344 a
+SDict begin H.S end
+ -2 2344 a -2 2344 a
+SDict begin 13 H.A end
+ -2 2344 a -2
+2344 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4444) cvn H.B /DEST pdfmark
+end
+ -2 2344 a 396 2434 a Fy(SetMailT)o(ime=)903 2434
+y
+SDict begin H.S end
+ 903 2434 a 903 2434 a
+SDict begin 13 H.A end
+ 903 2434 a 903 2434 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4445) cvn H.B /DEST pdfmark
+end
+ 903 2434
+a Fl(seconds)i FC(\227)h(Maximum)e(time)h(interv)n(al)g(between)f(mail)
+h(messages)h(\(86400)d(sec\).)-2 2618 y
+SDict begin H.S end
+ -2 2618 a -2
+2618 a
+SDict begin 13 H.A end
+ -2 2618 a -2 2618 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4446) cvn H.B /DEST pdfmark
+end
+ -2 2618 a -2 2618 a
+SDict begin H.S end
+ -2 2618
+a -2 2618 a
+SDict begin 13 H.A end
+ -2 2618 a -2 2618 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4447) cvn H.B /DEST pdfmark
+end
+ -2 2618 a 396 2708 a
+Fy(SetMailNum=)895 2708 y
+SDict begin H.S end
+ 895 2708 a 895 2708 a
+SDict begin 13 H.A end
+ 895 2708
+a 895 2708 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4448) cvn H.B /DEST pdfmark
+end
+ 895 2708 a Fl(0)45 b(--)g(127)22 b FC(\227)e(Maximum)f
+(number)f(of)i(pending)f(mails)h(on)g(internal)f(queue)g(\(10\).)-2
+2892 y
+SDict begin H.S end
+ -2 2892 a -2 2892 a
+SDict begin 13 H.A end
+ -2 2892 a -2 2892 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4449) cvn H.B /DEST pdfmark
+end
+ -2 2892
+a -2 2892 a
+SDict begin H.S end
+ -2 2892 a -2 2892 a
+SDict begin 13 H.A end
+ -2 2892 a -2 2892 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4450) cvn H.B /DEST pdfmark
+end
+ -2
+2892 a 396 2982 a Fy(SetMailAddr)o(ess=)1009 2982 y
+SDict begin H.S end
+ 1009
+2982 a 1009 2982 a
+SDict begin 13 H.A end
+ 1009 2982 a 1009 2982 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4451) cvn H.B /DEST pdfmark
+end
+ 1009 2982
+a Fl(recepient)h FC(\227)g(Add)g(a)h(recepient)e(e-mail)h(address)f
+(\(max.)g(8\).)-2 3166 y
+SDict begin H.S end
+ -2 3166 a -2 3166 a
+SDict begin 13 H.A end
+ -2 3166
+a -2 3166 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4452) cvn H.B /DEST pdfmark
+end
+ -2 3166 a -2 3166 a
+SDict begin H.S end
+ -2 3166 a -2 3166 a
+SDict begin 13 H.A end
+ -2
+3166 a -2 3166 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4453) cvn H.B /DEST pdfmark
+end
+ -2 3166 a 396 3256 a Fy(SetMailRelay=)924
+3256 y
+SDict begin H.S end
+ 924 3256 a 924 3256 a
+SDict begin 13 H.A end
+ 924 3256 a 924 3256 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4454) cvn H.B /DEST pdfmark
+end
+ 924
+3256 a Fl(IP)44 b(address)20 b FC(\227)h(The)e(mail)i(relay)f(\(for)f
+(of)n(fsite)h(mail;)g(def)o(ault:)g(none\).)-2 3440 y
+SDict begin H.S end
+
+-2 3440 a -2 3440 a
+SDict begin 13 H.A end
+ -2 3440 a -2 3440 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4455) cvn H.B /DEST pdfmark
+end
+ -2 3440 a -2
+3440 a
+SDict begin H.S end
+ -2 3440 a -2 3440 a
+SDict begin 13 H.A end
+ -2 3440 a -2 3440 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4456) cvn H.B /DEST pdfmark
+end
+ -2 3440
+a 396 3530 a Fy(MailSubject=)877 3530 y
+SDict begin H.S end
+ 877 3530 a 877
+3530 a
+SDict begin 13 H.A end
+ 877 3530 a 877 3530 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4457) cvn H.B /DEST pdfmark
+end
+ 877 3530 a Fl(string)25
+b FC(\227)c(Custom)f(format)f(for)h(the)g(email)g(subject)g(\(none\).)
+-2 3714 y
+SDict begin H.S end
+ -2 3714 a -2 3714 a
+SDict begin 13 H.A end
+ -2 3714 a -2 3714 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4458) cvn H.B /DEST pdfmark
+end
+ -2
+3714 a -2 3714 a
+SDict begin H.S end
+ -2 3714 a -2 3714 a
+SDict begin 13 H.A end
+ -2 3714 a -2 3714
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4459) cvn H.B /DEST pdfmark
+end
+ -2 3714 a 396 3804 a Fy(SetMailSender=)969 3804 y
+SDict begin H.S end
+ 969
+3804 a 969 3804 a
+SDict begin 13 H.A end
+ 969 3804 a 969 3804 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4460) cvn H.B /DEST pdfmark
+end
+ 969 3804 a Fl(string)26
+b FC(\227)20 b(Sender)g(for)f(the)h('From:')f(\002eld.)-2
+3980 y
+SDict begin H.S end
+ -2 3980 a -2 3980 a
+SDict begin 13 H.A end
+ -2 3980 a -2 3980 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4461) cvn H.B /DEST pdfmark
+end
+ -2 3980
+a -2 3980 a
+SDict begin H.S end
+ -2 3980 a -2 3980 a
+SDict begin 13 H.A end
+ -2 3980 a -2 3980 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4462) cvn H.B /DEST pdfmark
+end
+ -2
+3980 a 396 4078 a Fy(SetMailFilterAnd=)1071 4078 y
+SDict begin H.S end
+ 1071
+4078 a 1071 4078 a
+SDict begin 13 H.A end
+ 1071 4078 a 1071 4078 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4463) cvn H.B /DEST pdfmark
+end
+ 1071 4078
+a Fl(list)g FC(\227)h(De\002nes)g(a)g(list)h(of)e(strings)g(all)h(of)g
+(which)f(must)g(match)g(a)h(message,)f(otherwise)g(it)396
+4186 y(will)i(not)f(be)g(mailed.)-2 4353 y
+SDict begin H.S end
+ -2 4353 a
+-2 4353 a
+SDict begin 13 H.A end
+ -2 4353 a -2 4353 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4464) cvn H.B /DEST pdfmark
+end
+ -2 4353 a -2 4353 a
+SDict begin H.S end
+ -2
+4353 a -2 4353 a
+SDict begin 13 H.A end
+ -2 4353 a -2 4353 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4465) cvn H.B /DEST pdfmark
+end
+ -2 4353 a 396 4460
+a Fy(SetMailFilterOr=)1021 4460 y
+SDict begin H.S end
+ 1021 4460 a 1021 4460
+a
+SDict begin 13 H.A end
+ 1021 4460 a 1021 4460 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4466) cvn H.B /DEST pdfmark
+end
+ 1021 4460 a Fl(list)f FC(\227)i(De\002nes)f
+(a)h(list)g(of)f(strings)g(at)h(least)g(one)e(of)h(which)g(must)g
+(match)g(a)h(message,)396 4568 y(otherwise)f(it)h(will)g(not)f(be)g
+(mailed.)-2 4735 y
+SDict begin H.S end
+ -2 4735 a -2 4735 a
+SDict begin 13 H.A end
+ -2 4735 a -2 4735
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4467) cvn H.B /DEST pdfmark
+end
+ -2 4735 a -2 4735 a
+SDict begin H.S end
+ -2 4735 a -2 4735 a
+SDict begin 13 H.A end
+ -2 4735 a -2
+4735 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4468) cvn H.B /DEST pdfmark
+end
+ -2 4735 a 396 4842 a Fy(SetMailFilterNot=)1049
+4842 y
+SDict begin H.S end
+ 1049 4842 a 1049 4842 a
+SDict begin 13 H.A end
+ 1049 4842 a 1049 4842
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4469) cvn H.B /DEST pdfmark
+end
+ 1049 4842 a Fl(list)f FC(\227)i(De\002nes)f(a)h(list)g(of)f(strings)g
+(none)f(of)h(which)g(should)f(match)g(a)i(message,)396
+4950 y(otherwise)f(it)h(will)g(not)f(be)g(mailed.)-2
+5117 y
+SDict begin H.S end
+ -2 5117 a -2 5117 a
+SDict begin 13 H.A end
+ -2 5117 a -2 5117 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4470) cvn H.B /DEST pdfmark
+end
+ -2 5117
+a -2 5117 a
+SDict begin H.S end
+ -2 5117 a -2 5117 a
+SDict begin 13 H.A end
+ -2 5117 a -2 5117 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4471) cvn H.B /DEST pdfmark
+end
+ -2
+5117 a 396 5224 a Fy(SamhainP)o(ath=)923 5224 y
+SDict begin H.S end
+ 923 5224
+a 923 5224 a
+SDict begin 13 H.A end
+ 923 5224 a 923 5224 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4472) cvn H.B /DEST pdfmark
+end
+ 923 5224 a Fl(path)h
+FC(\227)f(The)g(path)g(of)g(the)g(process)g(image.)p
+Black 3620 5805 a Fx(121)p Black eop end
+%%Page: 122 127
+TeXDict begin 122 126 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.122) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4524) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2249 104 a Fx(Appendix)18
+b(C.)j(List)g(of)g(con\002gur)o(ation)c(\002le)j(options)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4473) cvn H.B /DEST pdfmark
+end
+ -2
+226 a -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4474) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a Fy(SetBindAddr)o(ess=)1013 309 y
+SDict begin H.S end
+ 1013
+309 a 1013 309 a
+SDict begin 13 H.A end
+ 1013 309 a 1013 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4475) cvn H.B /DEST pdfmark
+end
+ 1013 309 a Fl(IP)46
+b(address)20 b FC(\227)g(The)g(IP)h(address)f(\(i.e.)f(interf)o(ace)h
+(on)g(multi-interf)o(ace)e(box\))h(to)h(use)h(for)396
+417 y(outgoing)d(connections)h(\(e.g.)g(e-mail\).)-2
+601 y
+SDict begin H.S end
+ -2 601 a -2 601 a
+SDict begin 13 H.A end
+ -2 601 a -2 601 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4476) cvn H.B /DEST pdfmark
+end
+ -2 601 a -2
+601 a
+SDict begin H.S end
+ -2 601 a -2 601 a
+SDict begin 13 H.A end
+ -2 601 a -2 601 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4477) cvn H.B /DEST pdfmark
+end
+ -2 601 a 396
+691 a Fy(SetT)o(imeSer)o(v)o(er=)971 691 y
+SDict begin H.S end
+ 971 691 a
+971 691 a
+SDict begin 13 H.A end
+ 971 691 a 971 691 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4478) cvn H.B /DEST pdfmark
+end
+ 971 691 a Fl(IP)44 b(address)20
+b FC(\227)h(The)f(time)g(serv)o(er)-5 b(.)20 b(Note)g(that)g(the)g
+(simple)h(')o(time')e(service)h(\(port)f(37/tcp\))396
+799 y(is)i(used.)-2 965 y
+SDict begin H.S end
+ -2 965 a -2 965 a
+SDict begin 13 H.A end
+ -2 965 a
+-2 965 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4479) cvn H.B /DEST pdfmark
+end
+ -2 965 a -2 965 a
+SDict begin H.S end
+ -2 965 a -2 965 a
+SDict begin 13 H.A end
+ -2 965 a
+-2 965 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4480) cvn H.B /DEST pdfmark
+end
+ -2 965 a 396 1073 a Fy(T)-6 b(rustedUser=)884
+1073 y
+SDict begin H.S end
+ 884 1073 a 884 1073 a
+SDict begin 13 H.A end
+ 884 1073 a 884 1073 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4481) cvn H.B /DEST pdfmark
+end
+ 884
+1073 a Fl(username\(,username,..\))p FC(.)18 b(\227)i(List)h(of)f
+(additional)f(trusted)h(users.)-2 1247 y
+SDict begin H.S end
+ -2 1247 a -2
+1247 a
+SDict begin 13 H.A end
+ -2 1247 a -2 1247 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4482) cvn H.B /DEST pdfmark
+end
+ -2 1247 a -2 1247 a
+SDict begin H.S end
+ -2 1247
+a -2 1247 a
+SDict begin 13 H.A end
+ -2 1247 a -2 1247 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4483) cvn H.B /DEST pdfmark
+end
+ -2 1247 a 396 1346 a
+Fy(SetLog\002leP)o(ath=)965 1346 y
+SDict begin H.S end
+ 965 1346 a 965 1346
+a
+SDict begin 13 H.A end
+ 965 1346 a 965 1346 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4484) cvn H.B /DEST pdfmark
+end
+ 965 1346 a Fl(AUTO)43 b(or)i(/path)20
+b FC(\227)g(P)o(ath)g(to)f(log)h(\002le)g(\(A)-5 b(UT)o(O)19
+b(to)h(tack)f(hostname)f(on)i(compiled-in)d(path\).)-2
+1530 y
+SDict begin H.S end
+ -2 1530 a -2 1530 a
+SDict begin 13 H.A end
+ -2 1530 a -2 1530 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4485) cvn H.B /DEST pdfmark
+end
+ -2 1530
+a -2 1530 a
+SDict begin H.S end
+ -2 1530 a -2 1530 a
+SDict begin 13 H.A end
+ -2 1530 a -2 1530 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4486) cvn H.B /DEST pdfmark
+end
+ -2
+1530 a 396 1620 a Fy(SetLock\002leP)o(ath=)1006 1620
+y
+SDict begin H.S end
+ 1006 1620 a 1006 1620 a
+SDict begin 13 H.A end
+ 1006 1620 a 1006 1620 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4487) cvn H.B /DEST pdfmark
+end
+ 1006
+1620 a Fl(AUTO)44 b(or)g(/path)q FC(\227)20 b(P)o(ath)g(to)h(lock)e
+(\002le)i(\(A)-5 b(UT)o(O)20 b(to)g(tack)g(hostname)f(on)h(compiled-in)
+396 1728 y(path\).)-2 1912 y
+SDict begin H.S end
+ -2 1912 a -2 1912 a
+SDict begin 13 H.A end
+ -2 1912
+a -2 1912 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4488) cvn H.B /DEST pdfmark
+end
+ -2 1912 a 396 2002 a FC(The)g(follo)n(wing)f(options)g(are)
+h(only)f(rele)n(v)n(ant)g(for)h(standalone)f(or)h(client)g(e)o(x)o
+(ecutables:)-2 2186 y
+SDict begin H.S end
+ -2 2186 a -2 2186 a
+SDict begin 13 H.A end
+ -2 2186 a -2
+2186 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4489) cvn H.B /DEST pdfmark
+end
+ -2 2186 a -2 2186 a
+SDict begin H.S end
+ -2 2186 a -2 2186 a
+SDict begin 13 H.A end
+ -2 2186
+a -2 2186 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4490) cvn H.B /DEST pdfmark
+end
+ -2 2186 a 396 2276 a Fy(SetNiceLe)o(v)o(el=)903
+2276 y
+SDict begin H.S end
+ 903 2276 a 903 2276 a
+SDict begin 13 H.A end
+ 903 2276 a 903 2276 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4491) cvn H.B /DEST pdfmark
+end
+ 903
+2276 a Fl(-19..19)f FC(\227)i(Set)g(scheduling)d(priority)h(during)g
+(\002le)i(check.)e(\227)h(\(see)h('man)e(nice'\).)-2
+2460 y
+SDict begin H.S end
+ -2 2460 a -2 2460 a
+SDict begin 13 H.A end
+ -2 2460 a -2 2460 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4492) cvn H.B /DEST pdfmark
+end
+ -2 2460
+a -2 2460 a
+SDict begin H.S end
+ -2 2460 a -2 2460 a
+SDict begin 13 H.A end
+ -2 2460 a -2 2460 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4493) cvn H.B /DEST pdfmark
+end
+ -2
+2460 a 396 2550 a Fy(SetIOLimit=)849 2550 y
+SDict begin H.S end
+ 849 2550
+a 849 2550 a
+SDict begin 13 H.A end
+ 849 2550 a 849 2550 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4494) cvn H.B /DEST pdfmark
+end
+ 849 2550 a Fl(bps)i
+FC(\227)g(Set)g(IO)f(limits)h(\(kilobytes)e(per)h(second\))f(for)g
+(\002le)i(check.)-2 2734 y
+SDict begin H.S end
+ -2 2734 a -2 2734 a
+SDict begin 13 H.A end
+ -2 2734
+a -2 2734 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4495) cvn H.B /DEST pdfmark
+end
+ -2 2734 a -2 2734 a
+SDict begin H.S end
+ -2 2734 a -2 2734 a
+SDict begin 13 H.A end
+ -2
+2734 a -2 2734 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4496) cvn H.B /DEST pdfmark
+end
+ -2 2734 a 396 2824 a Fy(SetFilecheckT)o(ime=)1074
+2824 y
+SDict begin H.S end
+ 1074 2824 a 1074 2824 a
+SDict begin 13 H.A end
+ 1074 2824 a 1074 2824
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4497) cvn H.B /DEST pdfmark
+end
+ 1074 2824 a Fl(seconds)f FC(\227)h(Interv)n(al)e(between)g(\002le)i
+(checks)f(\(600\).)-2 3005 y
+SDict begin H.S end
+ -2 3005 a -2 3005 a
+SDict begin 13 H.A end
+ -2 3005
+a -2 3005 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4498) cvn H.B /DEST pdfmark
+end
+ -2 3005 a -2 3005 a
+SDict begin H.S end
+ -2 3005 a -2 3005 a
+SDict begin 13 H.A end
+ -2
+3005 a -2 3005 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4499) cvn H.B /DEST pdfmark
+end
+ -2 3005 a 396 3098 a Fy(FileCheckScheduleOne=)1269
+3098 y
+SDict begin H.S end
+ 1269 3098 a 1269 3098 a
+SDict begin 13 H.A end
+ 1269 3098 a 1269 3098
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4500) cvn H.B /DEST pdfmark
+end
+ 1269 3098 a Fl(schedule)p FC(\227)g(Crontab-lik)o(e)f(schedule)g(for)
+g(\002le)i(checks.)-2 3266 y
+SDict begin H.S end
+ -2 3266 a -2 3266 a
+SDict begin 13 H.A end
+ -2 3266
+a -2 3266 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4501) cvn H.B /DEST pdfmark
+end
+ -2 3266 a -2 3266 a
+SDict begin H.S end
+ -2 3266 a -2 3266 a
+SDict begin 13 H.A end
+ -2
+3266 a -2 3266 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4502) cvn H.B /DEST pdfmark
+end
+ -2 3266 a 396 3372 a Fy(UseHardlinkCheck=)1126
+3372 y
+SDict begin H.S end
+ 1126 3372 a 1126 3372 a
+SDict begin 13 H.A end
+ 1126 3372 a 1126 3372
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4503) cvn H.B /DEST pdfmark
+end
+ 1126 3372 a Fl(boolean)q FC(\227)f(Compare)f(number)f(of)i(hardlinks)
+f(to)h(number)f(of)h(subdirectories)e(for)396 3480 y(directories.)-2
+3647 y
+SDict begin H.S end
+ -2 3647 a -2 3647 a
+SDict begin 13 H.A end
+ -2 3647 a -2 3647 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4504) cvn H.B /DEST pdfmark
+end
+ -2 3647
+a -2 3647 a
+SDict begin H.S end
+ -2 3647 a -2 3647 a
+SDict begin 13 H.A end
+ -2 3647 a -2 3647 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4505) cvn H.B /DEST pdfmark
+end
+ -2
+3647 a 396 3754 a Fy(HardlinkOffset=)989 3754 y
+SDict begin H.S end
+ 989 3754
+a 989 3754 a
+SDict begin 13 H.A end
+ 989 3754 a 989 3754 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4506) cvn H.B /DEST pdfmark
+end
+ 989 3754 a Fl(N)10
+b Fy(:)1072 3754 y
+SDict begin H.S end
+ 1072 3754 a 1072 3754 a
+SDict begin 13 H.A end
+ 1072 3754
+a 1072 3754 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4507) cvn H.B /DEST pdfmark
+end
+ 1072 3754 a Fl(/path)19 b FC(\227)i(Exception)d(\(use)i
+(multiple)g(times)g(for)g(multiple)g(e)o(xceptions\).)e(N)i(is)h(of)n
+(fset)396 3862 y(\(actual)f(-)g(e)o(xpected)f(hardlinks\))f(for)1481
+3862 y
+SDict begin H.S end
+ 1481 3862 a 1481 3862 a
+SDict begin 13 H.A end
+ 1481 3862 a 1481 3862
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4508) cvn H.B /DEST pdfmark
+end
+ 1481 3862 a Fr(/path)p FC(.)-2 4046 y
+SDict begin H.S end
+ -2 4046 a -2
+4046 a
+SDict begin 13 H.A end
+ -2 4046 a -2 4046 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4509) cvn H.B /DEST pdfmark
+end
+ -2 4046 a -2 4046 a
+SDict begin H.S end
+ -2 4046
+a -2 4046 a
+SDict begin 13 H.A end
+ -2 4046 a -2 4046 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4510) cvn H.B /DEST pdfmark
+end
+ -2 4046 a 396 4136 a
+Fy(AddOKChars=)942 4136 y
+SDict begin H.S end
+ 942 4136 a 942 4136 a
+SDict begin 13 H.A end
+ 942 4136
+a 942 4136 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4511) cvn H.B /DEST pdfmark
+end
+ 942 4136 a Fl(N1,)44 b(N2,)g(..)21 b FC(\227)f(List)h(of)e
+(acceptable)g(characters)g(\(byte)g(v)n(alue\(s\)\))f(for)h(the)h
+(check)f(for)g(weird)396 4244 y(\002lenames.)h(Nn)g(may)g(be)g(he)o(x)f
+(\(leading)g('0x':)g(0xNN\),)g(octal)i(\(leading)d(zero:)i(0NNN\),)g
+(or)g(decimal.)f(Use)i('all')396 4352 y(for)f(all.)-2
+4519 y
+SDict begin H.S end
+ -2 4519 a -2 4519 a
+SDict begin 13 H.A end
+ -2 4519 a -2 4519 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4512) cvn H.B /DEST pdfmark
+end
+ -2 4519
+a -2 4519 a
+SDict begin H.S end
+ -2 4519 a -2 4519 a
+SDict begin 13 H.A end
+ -2 4519 a -2 4519 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4513) cvn H.B /DEST pdfmark
+end
+ -2
+4519 a 396 4626 a Fy(Ignor)o(eAdded=)913 4626 y
+SDict begin H.S end
+ 913 4626
+a 913 4626 a
+SDict begin 13 H.A end
+ 913 4626 a 913 4626 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4514) cvn H.B /DEST pdfmark
+end
+ 913 4626 a Fl(path_regex)5
+b FC(\227)19 b(Ignore)f(if)j(this)g(\002le/directory)d(is)j
+(added/created.)-2 4810 y
+SDict begin H.S end
+ -2 4810 a -2 4810 a
+SDict begin 13 H.A end
+ -2 4810
+a -2 4810 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4515) cvn H.B /DEST pdfmark
+end
+ -2 4810 a -2 4810 a
+SDict begin H.S end
+ -2 4810 a -2 4810 a
+SDict begin 13 H.A end
+ -2
+4810 a -2 4810 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4516) cvn H.B /DEST pdfmark
+end
+ -2 4810 a 396 4900 a Fy(Ignor)o(eMissing=)954
+4900 y
+SDict begin H.S end
+ 954 4900 a 954 4900 a
+SDict begin 13 H.A end
+ 954 4900 a 954 4900 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4517) cvn H.B /DEST pdfmark
+end
+ 954
+4900 a Fl(path_regex)5 b FC(\227)19 b(Ignore)g(if)h(this)h
+(\002le/directory)e(is)i(missing/deleted.)-2 5084 y
+SDict begin H.S end
+ -2
+5084 a -2 5084 a
+SDict begin 13 H.A end
+ -2 5084 a -2 5084 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4518) cvn H.B /DEST pdfmark
+end
+ -2 5084 a -2 5084
+a
+SDict begin H.S end
+ -2 5084 a -2 5084 a
+SDict begin 13 H.A end
+ -2 5084 a -2 5084 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4519) cvn H.B /DEST pdfmark
+end
+ -2 5084 a 396
+5174 a Fy(ReportOnlyOnce=)1054 5174 y
+SDict begin H.S end
+ 1054 5174 a 1054
+5174 a
+SDict begin 13 H.A end
+ 1054 5174 a 1054 5174 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4520) cvn H.B /DEST pdfmark
+end
+ 1054 5174 a Fl(boolean)e
+FC(\227)i(Report)f(only)f(once)g(on)h(a)h(modi\002ed)e(\002le)i
+(\(yes\).)p Black 3620 5805 a Fx(122)p Black eop end
+%%Page: 123 128
+TeXDict begin 123 127 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.123) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2249 104 a
+Fx(Appendix)18 b(C.)j(List)g(of)g(con\002gur)o(ation)c(\002le)j
+(options)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a
+-2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4521) cvn H.B /DEST pdfmark
+end
+ -2 226 a -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a
+-2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4522) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309 a Fy(ReportFullDetail=)1049
+309 y
+SDict begin H.S end
+ 1049 309 a 1049 309 a
+SDict begin 13 H.A end
+ 1049 309 a 1049 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4523) cvn H.B /DEST pdfmark
+end
+ 1049
+309 a Fl(boolean)f FC(\227)i(Report)f(in)g(full)g(detail)h(on)e
+(modi\002ed)g(\002les)i(\(no\).)396 583 y Fy(UseLocalT)o(ime=)p
+Fl(boolean)g FC(\227)f(Report)g(\002le)h(timestamps)f(in)g(local)g
+(time)h(rather)e(than)h(GMT)g(\(no\).)f(Do)h(not)g(use)396
+691 y(this)h(with)f(Beltane.)-2 857 y
+SDict begin H.S end
+ -2 857 a -2 857
+a
+SDict begin 13 H.A end
+ -2 857 a -2 857 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4527) cvn H.B /DEST pdfmark
+end
+ -2 857 a -2 857 a
+SDict begin H.S end
+ -2 857 a -2 857
+a
+SDict begin 13 H.A end
+ -2 857 a -2 857 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4528) cvn H.B /DEST pdfmark
+end
+ -2 857 a 396 965 a Fy(ChecksumT)-8
+b(est=)960 965 y
+SDict begin H.S end
+ 960 965 a 960 965 a
+SDict begin 13 H.A end
+ 960 965 a 960 965
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4529) cvn H.B /DEST pdfmark
+end
+ 960 965 a Fl(none/init/update/check)22 b FC(\227)f(The)f(def)o(ault)f
+(action)h(\(def)o(ault)f(is)i(none\).)-2 1145 y
+SDict begin H.S end
+ -2 1145
+a -2 1145 a
+SDict begin 13 H.A end
+ -2 1145 a -2 1145 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4530) cvn H.B /DEST pdfmark
+end
+ -2 1145 a -2 1145 a
+SDict begin H.S end
+ -2
+1145 a -2 1145 a
+SDict begin 13 H.A end
+ -2 1145 a -2 1145 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4531) cvn H.B /DEST pdfmark
+end
+ -2 1145 a 396 1239
+a Fy(SetPr)o(elinkP)o(ath=)982 1239 y
+SDict begin H.S end
+ 982 1239 a 982
+1239 a
+SDict begin 13 H.A end
+ 982 1239 a 982 1239 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4532) cvn H.B /DEST pdfmark
+end
+ 982 1239 a Fl(path)f FC(\227)h(The)f(path)
+f(to)i(the)f(prelink)f(binary)g(\(def)o(ault)g(is)2650
+1239 y
+SDict begin H.S end
+ 2650 1239 a 2650 1239 a
+SDict begin 13 H.A end
+ 2650 1239 a 2650 1239
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4533) cvn H.B /DEST pdfmark
+end
+ 2650 1239 a Fr(/usr/sbin/prelink)p FC(\).)-2 1423 y
+SDict begin H.S end
+
+-2 1423 a -2 1423 a
+SDict begin 13 H.A end
+ -2 1423 a -2 1423 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4534) cvn H.B /DEST pdfmark
+end
+ -2 1423 a -2
+1423 a
+SDict begin H.S end
+ -2 1423 a -2 1423 a
+SDict begin 13 H.A end
+ -2 1423 a -2 1423 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4535) cvn H.B /DEST pdfmark
+end
+ -2 1423
+a 396 1513 a Fy(SetPr)o(elinkChecksum=)1189 1513 y
+SDict begin H.S end
+ 1189
+1513 a 1189 1513 a
+SDict begin 13 H.A end
+ 1189 1513 a 1189 1513 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4536) cvn H.B /DEST pdfmark
+end
+ 1189 1513
+a Fl(checksum)k FC(\227)e(The)f(checksum)f(of)h(the)g(prelink)f(binary)
+-5 b(.)-2 1697 y
+SDict begin H.S end
+ -2 1697 a -2 1697 a
+SDict begin 13 H.A end
+ -2 1697 a -2 1697
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4537) cvn H.B /DEST pdfmark
+end
+ -2 1697 a -2 1697 a
+SDict begin H.S end
+ -2 1697 a -2 1697 a
+SDict begin 13 H.A end
+ -2 1697 a -2
+1697 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4538) cvn H.B /DEST pdfmark
+end
+ -2 1697 a 396 1786 a Fy(SetLogSer)o(v)o(er=)927
+1786 y
+SDict begin H.S end
+ 927 1786 a 927 1786 a
+SDict begin 13 H.A end
+ 927 1786 a 927 1786 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4539) cvn H.B /DEST pdfmark
+end
+ 927
+1786 a Fl(IP)44 b(address)20 b FC(\227)g(The)g(log)g(serv)o(er)-5
+b(.)-2 1971 y
+SDict begin H.S end
+ -2 1971 a -2 1971 a
+SDict begin 13 H.A end
+ -2 1971 a -2 1971 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4540) cvn H.B /DEST pdfmark
+end
+
+-2 1971 a -2 1971 a
+SDict begin H.S end
+ -2 1971 a -2 1971 a
+SDict begin 13 H.A end
+ -2 1971 a -2
+1971 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4541) cvn H.B /DEST pdfmark
+end
+ -2 1971 a 396 2060 a Fy(SetDatabaseP)o(ath=)1049
+2060 y
+SDict begin H.S end
+ 1049 2060 a 1049 2060 a
+SDict begin 13 H.A end
+ 1049 2060 a 1049 2060
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4542) cvn H.B /DEST pdfmark
+end
+ 1049 2060 a Fl(AUTO)42 b(or)j(/path)q FC(\227)20 b(P)o(ath)g(to)g
+(database)g(\(A)-5 b(UT)o(O)19 b(to)i(tack)f(hostname)f(on)h
+(compiled-in)396 2168 y(path\).)-2 2352 y
+SDict begin H.S end
+ -2 2352 a -2
+2352 a
+SDict begin 13 H.A end
+ -2 2352 a -2 2352 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4543) cvn H.B /DEST pdfmark
+end
+ -2 2352 a -2 2352 a
+SDict begin H.S end
+ -2 2352
+a -2 2352 a
+SDict begin 13 H.A end
+ -2 2352 a -2 2352 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4544) cvn H.B /DEST pdfmark
+end
+ -2 2352 a 396 2442 a
+Fy(DigestAlgo=)832 2442 y
+SDict begin H.S end
+ 832 2442 a 832 2442 a
+SDict begin 13 H.A end
+ 832 2442
+a 832 2442 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4545) cvn H.B /DEST pdfmark
+end
+ 832 2442 a Fl(SHA1)43 b(or)i(MD5)21 b FC(\227)g(Use)g
+(SHA1)f(or)g(MD5)g(instead)g(of)g(the)g(TIGER)h(checksum)d(\(def)o
+(ault:)396 2550 y(TIGER192\).)-2 2731 y
+SDict begin H.S end
+ -2 2731 a -2
+2731 a
+SDict begin 13 H.A end
+ -2 2731 a -2 2731 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4546) cvn H.B /DEST pdfmark
+end
+ -2 2731 a -2 2731 a
+SDict begin H.S end
+ -2 2731
+a -2 2731 a
+SDict begin 13 H.A end
+ -2 2731 a -2 2731 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4547) cvn H.B /DEST pdfmark
+end
+ -2 2731 a 396 2824 a
+Fy(RedefReadOnly=)1012 2824 y
+SDict begin H.S end
+ 1012 2824 a 1012 2824 a
+SDict begin 13 H.A end
+
+1012 2824 a 1012 2824 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4548) cvn H.B /DEST pdfmark
+end
+ 1012 2824 a Fl(+XXX)43 b(or)i(-XXX)26
+b FC(\227)21 b(Add)f(or)g(subtract)f(test)i(XXX)g(from)e(the)h
+(ReadOnly)g(polic)o(y)-5 b(.)-2 3008 y
+SDict begin H.S end
+ -2 3008 a -2 3008
+a
+SDict begin 13 H.A end
+ -2 3008 a -2 3008 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4549) cvn H.B /DEST pdfmark
+end
+ -2 3008 a -2 3008 a
+SDict begin H.S end
+ -2 3008 a -2
+3008 a
+SDict begin 13 H.A end
+ -2 3008 a -2 3008 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4550) cvn H.B /DEST pdfmark
+end
+ -2 3008 a 396 3098 a Fy(RedefAttrib)n(utes=)
+1014 3098 y
+SDict begin H.S end
+ 1014 3098 a 1014 3098 a
+SDict begin 13 H.A end
+ 1014 3098 a 1014
+3098 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4551) cvn H.B /DEST pdfmark
+end
+ 1014 3098 a Fl(+XXX)44 b(or)g(-XXX)27 b FC(\227)21
+b(Add)f(or)f(subtract)h(test)h(XXX)g(from)e(the)h(Attrib)n(utes)g
+(polic)o(y)-5 b(.)-2 3282 y
+SDict begin H.S end
+ -2 3282 a -2 3282 a
+SDict begin 13 H.A end
+ -2 3282
+a -2 3282 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4552) cvn H.B /DEST pdfmark
+end
+ -2 3282 a -2 3282 a
+SDict begin H.S end
+ -2 3282 a -2 3282 a
+SDict begin 13 H.A end
+ -2
+3282 a -2 3282 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4553) cvn H.B /DEST pdfmark
+end
+ -2 3282 a 396 3372 a Fy(RedefLogFiles=)956
+3372 y
+SDict begin H.S end
+ 956 3372 a 956 3372 a
+SDict begin 13 H.A end
+ 956 3372 a 956 3372 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4554) cvn H.B /DEST pdfmark
+end
+ 956
+3372 a Fl(+XXX)44 b(or)g(-XXX)27 b FC(\227)21 b(Add)e(or)h(subtract)g
+(test)h(XXX)g(from)e(the)h(LogFiles)g(polic)o(y)-5 b(.)-2
+3556 y
+SDict begin H.S end
+ -2 3556 a -2 3556 a
+SDict begin 13 H.A end
+ -2 3556 a -2 3556 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4555) cvn H.B /DEST pdfmark
+end
+ -2 3556
+a -2 3556 a
+SDict begin H.S end
+ -2 3556 a -2 3556 a
+SDict begin 13 H.A end
+ -2 3556 a -2 3556 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4556) cvn H.B /DEST pdfmark
+end
+ -2
+3556 a 396 3646 a Fy(RedefGr)o(o)o(wingLogFiles=)1269
+3646 y
+SDict begin H.S end
+ 1269 3646 a 1269 3646 a
+SDict begin 13 H.A end
+ 1269 3646 a 1269 3646
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4557) cvn H.B /DEST pdfmark
+end
+ 1269 3646 a Fl(-XXX)42 b(or)i(~XXX)27 b FC(\227)21
+b(Add)f(or)g(subtract)f(test)i(XXX)g(from)e(the)h(Gro)n(wingLogFiles)
+396 3754 y(polic)o(y)-5 b(.)-2 3938 y
+SDict begin H.S end
+ -2 3938 a -2 3938
+a
+SDict begin 13 H.A end
+ -2 3938 a -2 3938 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4558) cvn H.B /DEST pdfmark
+end
+ -2 3938 a -2 3938 a
+SDict begin H.S end
+ -2 3938 a -2
+3938 a
+SDict begin 13 H.A end
+ -2 3938 a -2 3938 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4559) cvn H.B /DEST pdfmark
+end
+ -2 3938 a 396 4028 a Fy(RedefIgnor)o(eAll=)
+992 4028 y
+SDict begin H.S end
+ 992 4028 a 992 4028 a
+SDict begin 13 H.A end
+ 992 4028 a 992 4028
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4560) cvn H.B /DEST pdfmark
+end
+ 992 4028 a Fl(+XXX)43 b(or)i(-XXX)26 b FC(\227)21 b(Add)f(or)g
+(subtract)f(test)i(XXX)g(from)e(the)h(IgnoreAll)f(polic)o(y)-5
+b(.)-2 4212 y
+SDict begin H.S end
+ -2 4212 a -2 4212 a
+SDict begin 13 H.A end
+ -2 4212 a -2 4212 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4561) cvn H.B /DEST pdfmark
+end
+
+-2 4212 a -2 4212 a
+SDict begin H.S end
+ -2 4212 a -2 4212 a
+SDict begin 13 H.A end
+ -2 4212 a -2
+4212 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4562) cvn H.B /DEST pdfmark
+end
+ -2 4212 a 396 4302 a Fy(RedefIgnor)o(eNone=)1071
+4302 y
+SDict begin H.S end
+ 1071 4302 a 1071 4302 a
+SDict begin 13 H.A end
+ 1071 4302 a 1071 4302
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4563) cvn H.B /DEST pdfmark
+end
+ 1071 4302 a Fl(+XXX)42 b(or)j(-XXX)27 b FC(\227)20
+b(Add)g(or)g(subtract)g(test)h(XXX)f(from)f(the)i(IgnoreNone)c(polic)o
+(y)-5 b(.)-2 4486 y
+SDict begin H.S end
+ -2 4486 a -2 4486 a
+SDict begin 13 H.A end
+ -2 4486 a -2
+4486 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4564) cvn H.B /DEST pdfmark
+end
+ -2 4486 a -2 4486 a
+SDict begin H.S end
+ -2 4486 a -2 4486 a
+SDict begin 13 H.A end
+ -2 4486
+a -2 4486 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4565) cvn H.B /DEST pdfmark
+end
+ -2 4486 a 396 4576 a Fy(RedefUser0=)859 4576
+y
+SDict begin H.S end
+ 859 4576 a 859 4576 a
+SDict begin 13 H.A end
+ 859 4576 a 859 4576 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4566) cvn H.B /DEST pdfmark
+end
+ 859 4576
+a Fl(+XXX)44 b(or)g(-XXX)27 b FC(\227)21 b(Add)e(or)h(subtract)g(test)h
+(XXX)g(from)e(the)h(User0)g(polic)o(y)-5 b(.)-2 4760
+y
+SDict begin H.S end
+ -2 4760 a -2 4760 a
+SDict begin 13 H.A end
+ -2 4760 a -2 4760 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4567) cvn H.B /DEST pdfmark
+end
+ -2 4760 a -2
+4760 a
+SDict begin H.S end
+ -2 4760 a -2 4760 a
+SDict begin 13 H.A end
+ -2 4760 a -2 4760 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4568) cvn H.B /DEST pdfmark
+end
+ -2 4760
+a 396 4850 a Fy(RedefUser1=)859 4850 y
+SDict begin H.S end
+ 859 4850 a 859
+4850 a
+SDict begin 13 H.A end
+ 859 4850 a 859 4850 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4569) cvn H.B /DEST pdfmark
+end
+ 859 4850 a Fl(+XXX)44 b(or)g(-XXX)27
+b FC(\227)21 b(Add)e(or)h(subtract)g(test)h(XXX)g(from)e(the)h(User1)g
+(polic)o(y)-5 b(.)-2 5034 y
+SDict begin H.S end
+ -2 5034 a -2 5034 a
+SDict begin 13 H.A end
+ -2 5034
+a -2 5034 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4570) cvn H.B /DEST pdfmark
+end
+ -2 5034 a 396 5124 a FC(The)20 b(follo)n(wing)f(options)g
+(are)h(only)f(rele)n(v)n(ant)g(for)h(the)g(serv)o(er:)p
+Black 3620 5805 a Fx(123)p Black eop end
+%%Page: 124 129
+TeXDict begin 124 128 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.124) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2249 104 a
+Fx(Appendix)18 b(C.)j(List)g(of)g(con\002gur)o(ation)c(\002le)j
+(options)p Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a
+-2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4571) cvn H.B /DEST pdfmark
+end
+ -2 226 a -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a
+-2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4572) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309 a Fy(SetUseSock)o(et=)918 309
+y
+SDict begin H.S end
+ 918 309 a 918 309 a
+SDict begin 13 H.A end
+ 918 309 a 918 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4573) cvn H.B /DEST pdfmark
+end
+ 918 309 a Fl(boolean)g
+FC(\227)h(If)f(unset,)g(do)g(not)g(open)f(the)h(command)e(sock)o(et)i
+(\(serv)o(er)f(only\).)g(This)h(sock)o(et)396 417 y(allo)n(ws)h(to)f
+(advise)g(the)g(serv)o(er)f(to)h(transmit)g(commands)e(to)i(clients)h
+(as)g(soon)e(as)i(the)o(y)e(connect)g(to)h(the)g(serv)o(er)g(ne)o(xt)
+396 525 y(time.)-2 691 y
+SDict begin H.S end
+ -2 691 a -2 691 a
+SDict begin 13 H.A end
+ -2 691 a -2
+691 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4574) cvn H.B /DEST pdfmark
+end
+ -2 691 a -2 691 a
+SDict begin H.S end
+ -2 691 a -2 691 a
+SDict begin 13 H.A end
+ -2 691 a -2
+691 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4575) cvn H.B /DEST pdfmark
+end
+ -2 691 a 396 799 a Fy(SetSock)o(etAllo)o(wUid=)1125
+799 y
+SDict begin H.S end
+ 1125 799 a 1125 799 a
+SDict begin 13 H.A end
+ 1125 799 a 1125 799 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4576) cvn H.B /DEST pdfmark
+end
+ 1125
+799 a Fl(UID)j FC(\227)d(Which)f(user)g(can)f(connect)g(to)h(the)g
+(command)e(sock)o(et.)i(The)f(def)o(ault)h(is)g(0)h(\(root\).)-2
+979 y
+SDict begin H.S end
+ -2 979 a -2 979 a
+SDict begin 13 H.A end
+ -2 979 a -2 979 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4577) cvn H.B /DEST pdfmark
+end
+ -2 979 a -2
+979 a
+SDict begin H.S end
+ -2 979 a -2 979 a
+SDict begin 13 H.A end
+ -2 979 a -2 979 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4578) cvn H.B /DEST pdfmark
+end
+ -2 979 a 396
+1073 a Fy(SetSock)o(etP)o(assw)o(ord=)1129 1073 y
+SDict begin H.S end
+ 1129
+1073 a 1129 1073 a
+SDict begin 13 H.A end
+ 1129 1073 a 1129 1073 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4579) cvn H.B /DEST pdfmark
+end
+ 1129 1073
+a Fl(password)i FC(\227)f(P)o(assw)o(ord)f(\(max.)f(14)h(chars,)f(no)h
+('@'\))g(for)g(passw)o(ord-based)396 1180 y(authentication)e(on)i(the)g
+(command)f(sock)o(et)h(\(only)f(if)h(the)g(OS)h(does)f(not)g(support)f
+(passing)h(credentials)f(via)396 1288 y(sock)o(ets\).)-2
+1469 y
+SDict begin H.S end
+ -2 1469 a -2 1469 a
+SDict begin 13 H.A end
+ -2 1469 a -2 1469 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4580) cvn H.B /DEST pdfmark
+end
+ -2 1469
+a -2 1469 a
+SDict begin H.S end
+ -2 1469 a -2 1469 a
+SDict begin 13 H.A end
+ -2 1469 a -2 1469 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4581) cvn H.B /DEST pdfmark
+end
+ -2
+1469 a 396 1562 a Fy(SetChr)o(ootDir=)928 1562 y
+SDict begin H.S end
+ 928
+1562 a 928 1562 a
+SDict begin 13 H.A end
+ 928 1562 a 928 1562 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4582) cvn H.B /DEST pdfmark
+end
+ 928 1562 a Fl(path)g
+FC(\227)i(If)f(set,)h(chroot)e(to)h(this)h(directory)d(\(serv)o(er)h
+(only\).)-2 1746 y
+SDict begin H.S end
+ -2 1746 a -2 1746 a
+SDict begin 13 H.A end
+ -2 1746 a -2 1746
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4583) cvn H.B /DEST pdfmark
+end
+ -2 1746 a -2 1746 a
+SDict begin H.S end
+ -2 1746 a -2 1746 a
+SDict begin 13 H.A end
+ -2 1746 a -2
+1746 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4584) cvn H.B /DEST pdfmark
+end
+ -2 1746 a 396 1836 a Fy(SetStripDomain=)1016 1836
+y
+SDict begin H.S end
+ 1016 1836 a 1016 1836 a
+SDict begin 13 H.A end
+ 1016 1836 a 1016 1836 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4585) cvn H.B /DEST pdfmark
+end
+ 1016
+1836 a Fl(boolean)h FC(\227)h(Whether)f(to)g(strip)g(the)g(domain)f
+(from)g(the)i(client)f(hostname)f(when)g(logging)396
+1944 y(client)h(messages)h(\(serv)o(er)e(only;)g(def)o(ault:)h(yes\).)
+-2 2128 y
+SDict begin H.S end
+ -2 2128 a -2 2128 a
+SDict begin 13 H.A end
+ -2 2128 a -2 2128 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4586) cvn H.B /DEST pdfmark
+end
+ -2
+2128 a -2 2128 a
+SDict begin H.S end
+ -2 2128 a -2 2128 a
+SDict begin 13 H.A end
+ -2 2128 a -2 2128
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4587) cvn H.B /DEST pdfmark
+end
+ -2 2128 a 396 2218 a Fy(SetClientFr)o(omAccept=)1214
+2218 y
+SDict begin H.S end
+ 1214 2218 a 1214 2218 a
+SDict begin 13 H.A end
+ 1214 2218 a 1214 2218
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4588) cvn H.B /DEST pdfmark
+end
+ 1214 2218 a Fl(boolean)f FC(\227)i(If)f(true,)f(use)i(client)f
+(address)g(as)g(kno)n(wn)f(to)h(the)h(communication)396
+2326 y(layer)-5 b(.)20 b(Else)h(\(def)o(ault\))e(use)h(client)g(name)g
+(as)h(claimed)e(by)h(the)g(client,)g(try)g(to)h(v)o(erify)d(against)i
+(the)g(address)g(kno)n(wn)396 2434 y(to)h(the)f(communication)d(layer)m
+(,)i(and)h(accept)g(\(with)g(a)g(w)o(arning)f(message\))h(e)n(v)o(en)f
+(if)i(this)f(f)o(ails.)-2 2618 y
+SDict begin H.S end
+ -2 2618 a -2 2618 a
+SDict begin 13 H.A end
+
+-2 2618 a -2 2618 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4589) cvn H.B /DEST pdfmark
+end
+ -2 2618 a -2 2618 a
+SDict begin H.S end
+ -2 2618 a -2
+2618 a
+SDict begin 13 H.A end
+ -2 2618 a -2 2618 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4590) cvn H.B /DEST pdfmark
+end
+ -2 2618 a 396 2708 a Fy(UseClientSe)o(v)o
+(erity=)1079 2708 y
+SDict begin H.S end
+ 1079 2708 a 1079 2708 a
+SDict begin 13 H.A end
+ 1079 2708
+a 1079 2708 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4591) cvn H.B /DEST pdfmark
+end
+ 1079 2708 a Fl(boolean)f FC(\227)i(If)f(set)h(to)g
+('yes',)e(don')o(t)g(assign)h(a)h(special)f(se)n(v)o(erity)f
+(\(priority\))f(to)j(client)396 2816 y(messages.)-2 3000
+y
+SDict begin H.S end
+ -2 3000 a -2 3000 a
+SDict begin 13 H.A end
+ -2 3000 a -2 3000 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4592) cvn H.B /DEST pdfmark
+end
+ -2 3000 a -2
+3000 a
+SDict begin H.S end
+ -2 3000 a -2 3000 a
+SDict begin 13 H.A end
+ -2 3000 a -2 3000 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4593) cvn H.B /DEST pdfmark
+end
+ -2 3000
+a 396 3090 a Fy(UseClientClass=)978 3090 y
+SDict begin H.S end
+ 978 3090 a
+978 3090 a
+SDict begin 13 H.A end
+ 978 3090 a 978 3090 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4594) cvn H.B /DEST pdfmark
+end
+ 978 3090 a Fl(boolean)g
+FC(\227)g(If)f(set)h(to)f('yes',)g(don')o(t)e(assign)j(a)f(special)h
+(class)g(to)f(client)g(messages.)-2 3274 y
+SDict begin H.S end
+ -2 3274 a
+-2 3274 a
+SDict begin 13 H.A end
+ -2 3274 a -2 3274 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4595) cvn H.B /DEST pdfmark
+end
+ -2 3274 a -2 3274 a
+SDict begin H.S end
+ -2
+3274 a -2 3274 a
+SDict begin 13 H.A end
+ -2 3274 a -2 3274 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4596) cvn H.B /DEST pdfmark
+end
+ -2 3274 a 396 3364
+a Fy(SetSer)o(v)o(erP)n(ort=)944 3364 y
+SDict begin H.S end
+ 944 3364 a 944
+3364 a
+SDict begin 13 H.A end
+ 944 3364 a 944 3364 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4597) cvn H.B /DEST pdfmark
+end
+ 944 3364 a Fl(port)43 b(number)22
+b FC(\227)d(The)f(port)g(that)h(the)f(serv)o(er)g(should)f(use)i(for)f
+(listening)g(\(def)o(ault)f(is)i(49777\).)-2 3548 y
+SDict begin H.S end
+ -2
+3548 a -2 3548 a
+SDict begin 13 H.A end
+ -2 3548 a -2 3548 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4598) cvn H.B /DEST pdfmark
+end
+ -2 3548 a -2 3548
+a
+SDict begin H.S end
+ -2 3548 a -2 3548 a
+SDict begin 13 H.A end
+ -2 3548 a -2 3548 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4599) cvn H.B /DEST pdfmark
+end
+ -2 3548 a 396
+3638 a Fy(SetSer)o(v)o(erInterface=)1112 3638 y
+SDict begin H.S end
+ 1112
+3638 a 1112 3638 a
+SDict begin 13 H.A end
+ 1112 3638 a 1112 3638 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4600) cvn H.B /DEST pdfmark
+end
+ 1112 3638
+a Fl(IP)43 b(address)20 b FC(\227)h(The)f(IP)g(address)g(\(i.e.)g
+(interf)o(ace)f(on)h(multi-interf)o(ace)e(box\))h(that)h(the)396
+3746 y(serv)o(er)g(should)f(use)h(for)g(listening)g(\(def)o(ault)f(is)i
+(all\).)f(Use)h(IN)m(ADDR_ANY)f(to)g(reset)h(to)f(all.)-2
+3930 y
+SDict begin H.S end
+ -2 3930 a -2 3930 a
+SDict begin 13 H.A end
+ -2 3930 a -2 3930 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4601) cvn H.B /DEST pdfmark
+end
+ -2 3930
+a -2 3930 a
+SDict begin H.S end
+ -2 3930 a -2 3930 a
+SDict begin 13 H.A end
+ -2 3930 a -2 3930 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4602) cvn H.B /DEST pdfmark
+end
+ -2
+3930 a 396 4020 a Fy(Se)o(v)o(erityLookup=)1010 4020
+y
+SDict begin H.S end
+ 1010 4020 a 1010 4020 a
+SDict begin 13 H.A end
+ 1010 4020 a 1010 4020 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4603) cvn H.B /DEST pdfmark
+end
+ 1010
+4020 a Fl(severity)25 b FC(\227)c(Se)n(v)o(erity)e(for)h(name)f(lookup)
+g(errors)g(when)h(v)o(erifying)e(\(on)h(the)h(serv)o(er)g(side\))396
+4128 y(that)h(the)f(sock)o(et)g(peer)f(matches)h(the)g(hostname)f
+(claimed)h(by)g(the)g(client.)g(See)h(the)f(preceding)e(option.)-2
+4312 y
+SDict begin H.S end
+ -2 4312 a -2 4312 a
+SDict begin 13 H.A end
+ -2 4312 a -2 4312 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4604) cvn H.B /DEST pdfmark
+end
+ -2 4312
+a -2 4312 a
+SDict begin H.S end
+ -2 4312 a -2 4312 a
+SDict begin 13 H.A end
+ -2 4312 a -2 4312 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4605) cvn H.B /DEST pdfmark
+end
+ -2
+4312 a 396 4402 a Fy(UseSeparateLogs=)1058 4402 y
+SDict begin H.S end
+ 1058
+4402 a 1058 4402 a
+SDict begin 13 H.A end
+ 1058 4402 a 1058 4402 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4606) cvn H.B /DEST pdfmark
+end
+ 1058 4402
+a Fl(boolean)i FC(\227)g(If)g(true,)g(messages)g(from)f(dif)n(ferent)g
+(clients)i(will)f(be)h(logged)d(to)j(separate)396 4510
+y(log)f(\002les)h(\(the)f(name)g(of)g(the)g(client)g(will)h(be)f
+(appended)e(to)i(the)h(name)e(of)h(the)g(main)g(log)g(\002le)h(to)f
+(construct)f(the)396 4618 y(log\002le)h(name\).)f(Def)o(ault:)h(f)o
+(alse.)-2 4802 y
+SDict begin H.S end
+ -2 4802 a -2 4802 a
+SDict begin 13 H.A end
+ -2 4802 a -2 4802
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4607) cvn H.B /DEST pdfmark
+end
+ -2 4802 a -2 4802 a
+SDict begin H.S end
+ -2 4802 a -2 4802 a
+SDict begin 13 H.A end
+ -2 4802 a -2
+4802 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4608) cvn H.B /DEST pdfmark
+end
+ -2 4802 a 396 4892 a Fy(SetClientT)o(imeLimit=)1152
+4892 y
+SDict begin H.S end
+ 1152 4892 a 1152 4892 a
+SDict begin 13 H.A end
+ 1152 4892 a 1152 4892
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4609) cvn H.B /DEST pdfmark
+end
+ 1152 4892 a Fl(seconds)g FC(\227)h(T)m(ime)f(limit)h(until)f(ne)o(xt)
+f(client)i(message)f(\(serv)o(er)n(-only\).)-2 5076 y
+SDict begin H.S end
+
+-2 5076 a -2 5076 a
+SDict begin 13 H.A end
+ -2 5076 a -2 5076 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4610) cvn H.B /DEST pdfmark
+end
+ -2 5076 a -2
+5076 a
+SDict begin H.S end
+ -2 5076 a -2 5076 a
+SDict begin 13 H.A end
+ -2 5076 a -2 5076 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4611) cvn H.B /DEST pdfmark
+end
+ -2 5076
+a 396 5165 a Fy(SetUDP)-6 b(Acti)o(v)o(e=)944 5165 y
+SDict begin H.S end
+
+944 5165 a 944 5165 a
+SDict begin 13 H.A end
+ 944 5165 a 944 5165 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4612) cvn H.B /DEST pdfmark
+end
+ 944 5165
+a Fl(boolean)20 b FC(\227)g(yule)g(1.2.8+:)f(Listen)h(on)g(514/udp)e
+(\(syslog\).)h(Def)o(ault:)h(f)o(alse.)p Black 3620 5805
+a Fx(124)p Black eop end
+%%Page: 125 130
+TeXDict begin 125 129 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.125) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4659) cvn H.B /DEST pdfmark
+end
+ -2 35 a 2249 104 a Fx(Appendix)18
+b(C.)j(List)g(of)g(con\002gur)o(ation)c(\002le)j(options)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4613) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a FC(Remarks:)g(\(i\))834 309 y
+SDict begin H.S end
+ 834 309
+a 834 309 a
+SDict begin 13 H.A end
+ 834 309 a 834 309 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4614) cvn H.B /DEST pdfmark
+end
+ 834 309 a Fy(r)o(oot)f
+FC(and)h(the)g(ef)n(fecti)n(v)o(e)f(user)h(are)g(al)o(w)o(ays)h
+(trusted.)e(\(ii\))h(If)g(no)g(time)g(serv)o(er)g(is)h(gi)n(v)o(en,)e
+(the)h(local)396 417 y(host)g(clock)g(is)h(used.)f(\(iii\))g(If)g(the)g
+(path)g(of)g(the)g(process)g(image)g(is)h(gi)n(v)o(en,)d(the)j(process)
+e(image)h(will)h(be)396 525 y(checksummed)d(at)j(startup)e(and)h(e)o
+(xit,)g(and)f(both)h(checksums)f(compared.)-2 553 y
+SDict begin H.S end
+ -2
+553 a -2 553 a
+SDict begin 13 H.A end
+ -2 553 a -2 553 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:EXTERNAL) cvn H.B /DEST pdfmark
+end
+ -2 553 a 359 x Fu(C.12.)39
+b(External)949 912 y
+SDict begin H.S end
+ 949 912 a 949 912 a
+SDict begin 22.464 H.A end
+ 949 912 a 949
+912 a
+SDict begin [ /View [/XYZ H.V] /Dest (16.93.1) cvn H.B /DEST pdfmark
+end
+ 949 912 a -2 1080 a
+SDict begin H.S end
+ -2 1080 a -2 1080 a
+SDict begin 13 H.A end
+ -2 1080
+a -2 1080 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4617) cvn H.B /DEST pdfmark
+end
+ -2 1080 a 396 1186 a FC(De\002nition)20 b(of)g(an)g
+(arbitrary)e(number)h(of)h(e)o(xternal)f(programs/scripts)f(\(see)p
+0 TeXcolorgray 2629 1186 a
+SDict begin H.S end
+ 2629 1186 a FC(Chapter)i(7)2955
+1186 y
+SDict begin 13 H.L end
+ 2955 1186 a 2955 1186 a
+SDict begin [ /Subtype /Link /Dest (0:EXTERN) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 2955 1186 a Black -1 w
+FC(>\).)g(Section)g(heading:)-2 1370 y
+SDict begin H.S end
+ -2 1370 a -2 1370
+a
+SDict begin 13 H.A end
+ -2 1370 a -2 1370 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4619) cvn H.B /DEST pdfmark
+end
+ -2 1370 a -2 1370 a
+SDict begin H.S end
+ -2 1370 a -2
+1370 a
+SDict begin 13 H.A end
+ -2 1370 a -2 1370 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4620) cvn H.B /DEST pdfmark
+end
+ -2 1370 a 396 1460 a Fy([Exter)o(nal])-2
+1638 y
+SDict begin H.S end
+ -2 1638 a -2 1638 a
+SDict begin 13 H.A end
+ -2 1638 a -2 1638 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4621) cvn H.B /DEST pdfmark
+end
+ -2 1638
+a 396 1734 a FC(Entries:)-2 1901 y
+SDict begin H.S end
+ -2 1901 a -2 1901
+a
+SDict begin 13 H.A end
+ -2 1901 a -2 1901 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4622) cvn H.B /DEST pdfmark
+end
+ -2 1901 a -2 1901 a
+SDict begin H.S end
+ -2 1901 a -2
+1901 a
+SDict begin 13 H.A end
+ -2 1901 a -2 1901 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4623) cvn H.B /DEST pdfmark
+end
+ -2 1901 a 396 2008 a Fy(OpenCommand=)1011
+2008 y
+SDict begin H.S end
+ 1011 2008 a 1011 2008 a
+SDict begin 13 H.A end
+ 1011 2008 a 1011 2008
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4624) cvn H.B /DEST pdfmark
+end
+ 1011 2008 a Fl(/full/path/to/program)h FC(\227)g(Starts)f(ne)n(w)g
+(command)f(de\002nition.)-2 2191 y
+SDict begin H.S end
+ -2 2191 a -2 2191
+a
+SDict begin 13 H.A end
+ -2 2191 a -2 2191 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4625) cvn H.B /DEST pdfmark
+end
+ -2 2191 a -2 2191 a
+SDict begin H.S end
+ -2 2191 a -2
+2191 a
+SDict begin 13 H.A end
+ -2 2191 a -2 2191 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4626) cvn H.B /DEST pdfmark
+end
+ -2 2191 a 396 2282 a Fy(SetT)-6
+b(ype=)728 2282 y
+SDict begin H.S end
+ 728 2282 a 728 2282 a
+SDict begin 13 H.A end
+ 728 2282 a 728
+2282 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4627) cvn H.B /DEST pdfmark
+end
+ 728 2282 a Fl(log/srv)27 b FC(\227)20 b(T)-7 b(ype/purpose)18
+b(of)i(the)g(program.)-2 2466 y
+SDict begin H.S end
+ -2 2466 a -2 2466 a
+SDict begin 13 H.A end
+ -2
+2466 a -2 2466 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4628) cvn H.B /DEST pdfmark
+end
+ -2 2466 a -2 2466 a
+SDict begin H.S end
+ -2 2466 a -2 2466
+a
+SDict begin 13 H.A end
+ -2 2466 a -2 2466 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4629) cvn H.B /DEST pdfmark
+end
+ -2 2466 a 396 2556 a Fy(SetCommandline=)1057
+2556 y
+SDict begin H.S end
+ 1057 2556 a 1057 2556 a
+SDict begin 13 H.A end
+ 1057 2556 a 1057 2556
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4630) cvn H.B /DEST pdfmark
+end
+ 1057 2556 a Fl(list)g FC(\227)h(The)f(command)e(line.)-2
+2723 y
+SDict begin H.S end
+ -2 2723 a -2 2723 a
+SDict begin 13 H.A end
+ -2 2723 a -2 2723 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4631) cvn H.B /DEST pdfmark
+end
+ -2 2723
+a -2 2723 a
+SDict begin H.S end
+ -2 2723 a -2 2723 a
+SDict begin 13 H.A end
+ -2 2723 a -2 2723 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4632) cvn H.B /DEST pdfmark
+end
+ -2
+2723 a 396 2830 a Fy(SetEn)m(vir)o(on=)841 2830 y
+SDict begin H.S end
+ 841
+2830 a 841 2830 a
+SDict begin 13 H.A end
+ 841 2830 a 841 2830 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4633) cvn H.B /DEST pdfmark
+end
+ 841 2830 a Fl(KEY=value)h
+FC(\227)h(En)m(vironment)d(v)n(ariable)i(\(can)h(be)g(repeated\).)-2
+3014 y
+SDict begin H.S end
+ -2 3014 a -2 3014 a
+SDict begin 13 H.A end
+ -2 3014 a -2 3014 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4634) cvn H.B /DEST pdfmark
+end
+ -2 3014
+a -2 3014 a
+SDict begin H.S end
+ -2 3014 a -2 3014 a
+SDict begin 13 H.A end
+ -2 3014 a -2 3014 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4635) cvn H.B /DEST pdfmark
+end
+ -2
+3014 a 396 3104 a Fy(SetChecksum=)927 3104 y
+SDict begin H.S end
+ 927 3104
+a 927 3104 a
+SDict begin 13 H.A end
+ 927 3104 a 927 3104 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4636) cvn H.B /DEST pdfmark
+end
+ 927 3104 a Fl(TIGER)45
+b(checksum)23 b FC(\227)e(Checksum)e(of)h(the)g(program.)-2
+3288 y
+SDict begin H.S end
+ -2 3288 a -2 3288 a
+SDict begin 13 H.A end
+ -2 3288 a -2 3288 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4637) cvn H.B /DEST pdfmark
+end
+ -2 3288
+a -2 3288 a
+SDict begin H.S end
+ -2 3288 a -2 3288 a
+SDict begin 13 H.A end
+ -2 3288 a -2 3288 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4638) cvn H.B /DEST pdfmark
+end
+ -2
+3288 a 396 3378 a Fy(SetCr)o(edentials=)964 3378 y
+SDict begin H.S end
+ 964
+3378 a 964 3378 a
+SDict begin 13 H.A end
+ 964 3378 a 964 3378 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4639) cvn H.B /DEST pdfmark
+end
+ 964 3378 a Fl(username)f
+FC(\227)i(User)f(whose)g(credentials)f(shall)i(be)f(used.)-2
+3545 y
+SDict begin H.S end
+ -2 3545 a -2 3545 a
+SDict begin 13 H.A end
+ -2 3545 a -2 3545 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4640) cvn H.B /DEST pdfmark
+end
+ -2 3545
+a -2 3545 a
+SDict begin H.S end
+ -2 3545 a -2 3545 a
+SDict begin 13 H.A end
+ -2 3545 a -2 3545 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4641) cvn H.B /DEST pdfmark
+end
+ -2
+3545 a 396 3652 a Fy(SetFilterNot=)883 3652 y
+SDict begin H.S end
+ 883 3652
+a 883 3652 a
+SDict begin 13 H.A end
+ 883 3652 a 883 3652 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4642) cvn H.B /DEST pdfmark
+end
+ 883 3652 a Fl(list)f
+FC(\227)h(W)-7 b(ords)21 b(not)f(allo)n(wed)f(in)i(message.)-2
+3836 y
+SDict begin H.S end
+ -2 3836 a -2 3836 a
+SDict begin 13 H.A end
+ -2 3836 a -2 3836 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4643) cvn H.B /DEST pdfmark
+end
+ -2 3836
+a -2 3836 a
+SDict begin H.S end
+ -2 3836 a -2 3836 a
+SDict begin 13 H.A end
+ -2 3836 a -2 3836 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4644) cvn H.B /DEST pdfmark
+end
+ -2
+3836 a 396 3926 a Fy(SetFilterAnd=)905 3926 y
+SDict begin H.S end
+ 905 3926
+a 905 3926 a
+SDict begin 13 H.A end
+ 905 3926 a 905 3926 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4645) cvn H.B /DEST pdfmark
+end
+ 905 3926 a Fl(list)f
+FC(\227)h(W)-7 b(ords)20 b(required)e(\(ALL\))i(in)g(message.)-2
+4110 y
+SDict begin H.S end
+ -2 4110 a -2 4110 a
+SDict begin 13 H.A end
+ -2 4110 a -2 4110 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4646) cvn H.B /DEST pdfmark
+end
+ -2 4110
+a -2 4110 a
+SDict begin H.S end
+ -2 4110 a -2 4110 a
+SDict begin 13 H.A end
+ -2 4110 a -2 4110 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4647) cvn H.B /DEST pdfmark
+end
+ -2
+4110 a 396 4200 a Fy(SetFilterOr=)855 4200 y
+SDict begin H.S end
+ 855 4200
+a 855 4200 a
+SDict begin 13 H.A end
+ 855 4200 a 855 4200 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4648) cvn H.B /DEST pdfmark
+end
+ 855 4200 a Fl(list)f
+FC(\227)i(W)-7 b(ords)20 b(required)f(\(at)h(least)h(one\))e(in)i
+(message.)-2 4384 y
+SDict begin H.S end
+ -2 4384 a -2 4384 a
+SDict begin 13 H.A end
+ -2 4384 a -2
+4384 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4649) cvn H.B /DEST pdfmark
+end
+ -2 4384 a -2 4384 a
+SDict begin H.S end
+ -2 4384 a -2 4384 a
+SDict begin 13 H.A end
+ -2 4384
+a -2 4384 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4650) cvn H.B /DEST pdfmark
+end
+ -2 4384 a 396 4474 a Fy(SetDeadtime=)896
+4474 y
+SDict begin H.S end
+ 896 4474 a 896 4474 a
+SDict begin 13 H.A end
+ 896 4474 a 896 4474 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4651) cvn H.B /DEST pdfmark
+end
+ 896
+4474 a Fl(seconds)f FC(\227)g(Deadtime)g(between)f(consecuti)n(v)o(e)g
+(calls.)-2 4641 y
+SDict begin H.S end
+ -2 4641 a -2 4641 a
+SDict begin 13 H.A end
+ -2 4641 a -2 4641
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4652) cvn H.B /DEST pdfmark
+end
+ -2 4641 a -2 4641 a
+SDict begin H.S end
+ -2 4641 a -2 4641 a
+SDict begin 13 H.A end
+ -2 4641 a -2
+4641 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4653) cvn H.B /DEST pdfmark
+end
+ -2 4641 a 396 4748 a Fy(SetDefault=)818 4748 y
+SDict begin H.S end
+
+818 4748 a 818 4748 a
+SDict begin 13 H.A end
+ 818 4748 a 818 4748 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4654) cvn H.B /DEST pdfmark
+end
+ 818 4748
+a Fl(boolean)h FC(\227)g(Set)h(def)o(ault)f(en)m(vironment)d(\(HOME)j
+(from)f(/etc/passwd,)h(SHELL=/bin/sh,)396 4856 y(P)-8
+b(A)f(TH=/sbin:/usr/sbin:/bin:/usr/bin\).)-2 4881 y
+SDict begin H.S end
+ -2
+4881 a -2 4881 a
+SDict begin 13 H.A end
+ -2 4881 a -2 4881 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:CONFIGFILE-CLIENTS) cvn H.B
+/DEST pdfmark end
+ -2 4881 a Black
+3620 5805 a Fx(125)p Black eop end
+%%Page: 126 131
+TeXDict begin 126 130 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.126) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2249 104 a
+Fx(Appendix)18 b(C.)j(List)g(of)g(con\002gur)o(ation)c(\002le)j
+(options)p Black -2 330 a Fu(C.13.)39 b(Clients)861 330
+y
+SDict begin H.S end
+ 861 330 a 861 330 a
+SDict begin 22.464 H.A end
+ 861 330 a 861 330 a
+SDict begin [ /View [/XYZ H.V] /Dest (16.94.1) cvn H.B /DEST pdfmark
+end
+ 861 330 a -2
+498 a
+SDict begin H.S end
+ -2 498 a -2 498 a
+SDict begin 13 H.A end
+ -2 498 a -2 498 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4657) cvn H.B /DEST pdfmark
+end
+ -2 498 a 396
+604 a FC(This)21 b(section)f(is)h(rele)n(v)n(ant)e(for)1298
+604 y
+SDict begin H.S end
+ 1298 604 a 1298 604 a
+SDict begin 13 H.A end
+ 1298 604 a 1298 604 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4658) cvn H.B /DEST pdfmark
+end
+ 1298
+604 a FC(yule)h(only)-5 b(.)19 b(Section)h(heading:)396
+878 y Fy([Clients])-2 1057 y
+SDict begin H.S end
+ -2 1057 a -2 1057 a
+SDict begin 13 H.A end
+ -2 1057
+a -2 1057 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4661) cvn H.B /DEST pdfmark
+end
+ -2 1057 a 396 1152 a FC(Entries)g(must)g(be)h(of)e(the)i
+(form:)-2 1319 y
+SDict begin H.S end
+ -2 1319 a -2 1319 a
+SDict begin 13 H.A end
+ -2 1319 a -2 1319
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4662) cvn H.B /DEST pdfmark
+end
+ -2 1319 a -2 1319 a
+SDict begin H.S end
+ -2 1319 a -2 1319 a
+SDict begin 13 H.A end
+ -2 1319 a -2
+1319 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4663) cvn H.B /DEST pdfmark
+end
+ -2 1319 a 396 1426 a Fy(Client=)660 1426 y
+SDict begin H.S end
+ 660
+1426 a 660 1426 a
+SDict begin 13 H.A end
+ 660 1426 a 660 1426 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4664) cvn H.B /DEST pdfmark
+end
+ 660 1426 a Fl
+(hostname@salt@verifier)-2 1594 y
+SDict begin H.S end
+ -2 1594 a -2 1594 a
+SDict begin 13 H.A end
+
+-2 1594 a -2 1594 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4665) cvn H.B /DEST pdfmark
+end
+ -2 1594 a 396 1700 a FC(See)p 0 TeXcolorgray
+537 1700 a
+SDict begin H.S end
+ 537 1700 a FC(Section)f(6.3)912 1700 y
+SDict begin 13 H.L end
+ 912
+1700 a 912 1700 a
+SDict begin [ /Subtype /Link /Dest (0:CLIENTS) cvn /H /I /Border [0
+0 0] /Color [1 0 0] H.B /ANN pdfmark end
+ 912 1700 a Black -2 w FC(>)h(on)f(ho)n(w)f(to)i
+(compute)e(a)h(v)n(alid)g(entry)-5 b(.)-2 1884 y
+SDict begin H.S end
+ -2 1884
+a -2 1884 a
+SDict begin 13 H.A end
+ -2 1884 a -2 1884 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4667) cvn H.B /DEST pdfmark
+end
+ -2 1884 a 396 1974 a
+FC(The)20 b(hostname)f(must)h(be)g(the)h(same)f(name)g(that)g(the)g
+(client)g(retrie)n(v)o(es)g(from)f(the)h(host)g(on)g(which)g(it)g
+(runs.)396 2082 y(Usually)-5 b(,)20 b(this)g(will)h(be)f(a)h(fully)f
+(quali\002ed)f(hostname,)g(no)g(numerical)g(address.)h(Ho)n(we)n(v)o
+(er)m(,)e(there)i(is)h(no)e(method)396 2190 y(that)i(guarantees)d(to)j
+(yield)e(the)i(fully)e(quali\002ed)h(hostname)f(\(it)h(is)h(not)f(e)n
+(v)o(en)f(guaranteed)f(that)j(a)f(host)g(has)h(one)e(...\).)396
+2298 y(The)h(only)f(w)o(ay)i(to)f(kno)n(w)f(for)h(sure)g(is)h(to)f(set)
+h(up)f(the)g(client,)g(and)g(check)f(whether)g(the)i(connection)d(is)j
+(refused)e(by)396 2406 y(the)h(serv)o(er)g(with)g(a)h(message)f(lik)o
+(e)1413 2406 y
+SDict begin H.S end
+ 1413 2406 a 1413 2406 a
+SDict begin 13 H.A end
+ 1413 2406 a 1413
+2406 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4668) cvn H.B /DEST pdfmark
+end
+ 1413 2406 a Fy(Connection)g(attempt)f(fr)o(om)h(unr)o(egister)o
+(ed)f(host)2965 2406 y
+SDict begin H.S end
+ 2965 2406 a 2965 2406 a
+SDict begin 13 H.A end
+ 2965 2406
+a 2965 2406 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4669) cvn H.B /DEST pdfmark
+end
+ 2965 2406 a Fl(hostname)h FC(In)g(that)g(case,)396
+2514 y
+SDict begin H.S end
+ 396 2514 a 396 2514 a
+SDict begin 13 H.A end
+ 396 2514 a 396 2514 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4670) cvn H.B /DEST pdfmark
+end
+ 396
+2514 a Fx(hostname)f FC(is)i(what)g(you)e(should)g(use.)-2
+2532 y
+SDict begin H.S end
+ -2 2532 a -2 2532 a
+SDict begin 11.7 H.A end
+ -2 2532 a -2 2532 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4671) cvn H.B /DEST pdfmark
+end
+ -2 2532
+a 745 2631 2668 17 v 745 3839 17 1208 v 1843 2785 a Fp(CA)-10
+b(VEA)f(T)786 2953 y
+SDict begin H.S end
+ 786 2953 a 786 2953 a
+SDict begin 11.7 H.A end
+ 786 2953 a
+786 2953 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4673) cvn H.B /DEST pdfmark
+end
+ 786 2953 a 95 x Fv(Prob)o(lems)19 b(and)h(oddities)e
+(encountered)f(in)j(client/ser)r(v)n(er)f(setups)h(\(lik)o(e)f(client)
+786 3145 y(messages)i(from)1318 3145 y
+SDict begin H.S end
+ 1318 3145 a 1318
+3145 a
+SDict begin 11.7 H.A end
+ 1318 3145 a 1318 3145 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4674) cvn H.B /DEST pdfmark
+end
+ 1318 3145 a Fq(127.0.0.1)p
+Fv(,)c(ser)r(v)n(er)k(w)o(ar)r(nings)d(about)h(unkno)o(wn/unresolv)n
+(ed)d(peer)l(,)786 3242 y(etc.)k(are)1055 3242 y
+SDict begin H.S end
+ 1055
+3242 a 1055 3242 a
+SDict begin 11.7 H.A end
+ 1055 3242 a 1055 3242 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4675) cvn H.B /DEST pdfmark
+end
+ 1055 3242
+a Fq(alw)o(a)n(ys)h Fv(\(at)e(least)g(so)h(f)n(ar\))f(due)g(to)g
+(incorrect)f(con\002gur)o(ation)f(of)j(the)f(DNS)g(or)h(the)786
+3340 y(/etc/hosts)g(\002le)o(.)786 3507 y
+SDict begin H.S end
+ 786 3507 a
+786 3507 a
+SDict begin 11.7 H.A end
+ 786 3507 a 786 3507 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4676) cvn H.B /DEST pdfmark
+end
+ 786 3507 a 96 x Fv(A)h(sur)r(pr)q
+(isingly)e(large)g(n)o(umber)g(of)h(hosts)h(are)e(not)h(ab)o(le)e(to)j
+(deter)r(mine)c(the)j(o)o(wn)786 3700 y(hostname)o(,)f(or)h(re)n(v)n
+(erse)g(lookup)f(adresses)h(on)g(the)f(o)o(wn)h(local)f(netw)o(or)q(k.)
+h(Don't)f(bother)786 3797 y(asking)h(about)f(such)h(prob)o(lems)f(\227)
+h(\002x)i(y)o(our)e(DNS)o(.)p 3396 3839 17 1208 v 745
+3855 2668 17 v Black 3618 5805 a Fx(126)p Black eop end
+%%Page: 127 132
+TeXDict begin 127 131 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.127) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black Black -2 226
+a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:DATABASE-FIELDS) cvn H.B /DEST
+pdfmark end
+ -2 226 a 125 x
+Fz(Appendix)48 b(D)-5 b(.)48 b(List)g(of)g(database)f(\002elds)2853
+351 y
+SDict begin H.S end
+ 2853 351 a 2853 351 a
+SDict begin 26.957 H.A end
+ 2853 351 a 2853 351 a
+SDict begin [ /View [/XYZ H.V] /Dest (17.0) cvn H.B /DEST pdfmark end
+ 2853
+351 a -2 607 a
+SDict begin H.S end
+ -2 607 a -2 607 a
+SDict begin 13 H.A end
+ -2 607 a -2 607 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4679) cvn H.B /DEST pdfmark
+end
+ -2
+607 a 396 679 a FC(The)20 b(database)g(may)f(hold)h(\(i\))g(internal)f
+(message)h(from)2042 679 y
+SDict begin H.S end
+ 2042 679 a 2042 679 a
+SDict begin 13 H.A end
+ 2042
+679 a 2042 679 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4680) cvn H.B /DEST pdfmark
+end
+ 2042 679 a FC(yule,)g(the)g(log)g(serv)o(er)m(,)f(and)
+g(\(ii\))i(client)f(messages.)g(The)396 787 y(latter)h(result)f(in)878
+787 y
+SDict begin H.S end
+ 878 787 a 878 787 a
+SDict begin 13 H.A end
+ 878 787 a 878 787 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4681) cvn H.B /DEST pdfmark
+end
+ 878 787
+a Fx(two)h FC(ro)n(ws:)f(one)g(for)f(the)h(client)h(message,)e(and)h
+(one)g(for)f(the)i(serv)o(er)e(message)h(recording)e(the)396
+895 y(arri)n(v)n(al)i(of)f(the)i(client)f(message,)g(the)g(originating)
+e(remote)h(host,)h(and)g(the)g(timestamp.)g(The)f(dif)n(ferent)g
+(message)396 1003 y(types)h(can)g(be)g(recognized)e(by)i(the)1438
+1003 y
+SDict begin H.S end
+ 1438 1003 a 1438 1003 a
+SDict begin 13 H.A end
+ 1438 1003 a 1438 1003
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4682) cvn H.B /DEST pdfmark
+end
+ 1438 1003 a Fx(lo)o(g_r)m(ef)32 b FC(\002eld)21 b(\(see)f(belo)n
+(w\).)-2 1187 y
+SDict begin H.S end
+ -2 1187 a -2 1187 a
+SDict begin 13 H.A end
+ -2 1187 a -2 1187
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4683) cvn H.B /DEST pdfmark
+end
+ -2 1187 a 396 1277 a FC(Man)o(y)f(database)h(\002elds)h(record)e
+(details)h(of)g(\002les)h(\(see)1991 1277 y
+SDict begin H.S end
+ 1991 1277
+a 1991 1277 a
+SDict begin 13 H.A end
+ 1991 1277 a 1991 1277 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4684) cvn H.B /DEST pdfmark
+end
+ 1991 1277 a Fy(man)f(stat)p
+FC(\),)f(before)g(\(_old\))g(and)g(after)h(\(_ne)n(w\))f(a)i(detected)
+396 1385 y(modi\002cation.)e(F)o(or)g(some)h(items,)h(both)e(numeric)g
+(\(iXXX\))h(and)g(string)f(v)n(alues)h(are)g(reported,)e(because)i(the)
+396 1493 y(translation)g(between)f(both)g(is)i(host-speci\002c.)f(This)
+g(allo)n(ws)g(to)h(perform)d(updates)h(of)h(the)g(\002le)h(signature)
+396 1601 y(database\(s\))e(on)h(the)g(serv)o(er)g(side.)g(Other)g
+(\002elds)g(are)h(listed)f(belo)n(w)-5 b(.)19 b(Basically)-5
+b(,)20 b(most)h(of)e(the)i(\002elds)f(supply)396 1709
+y(additional)f(information)f(for)1279 1709 y
+SDict begin H.S end
+ 1279 1709
+a 1279 1709 a
+SDict begin 13 H.A end
+ 1279 1709 a 1279 1709 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4685) cvn H.B /DEST pdfmark
+end
+ 1279 1709 a Fx(lo)o(g_msg)i
+FC(if)g(rele)n(v)n(ant.)-2 1725 y
+SDict begin H.S end
+ -2 1725 a -2 1725 a
+SDict begin 13 H.A end
+
+-2 1725 a -2 1725 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:GEN-DB-FIELDS) cvn H.B /DEST
+pdfmark end
+ -2 1725 a 361 x Fu(D)l(.1.)38 b(General)832
+2086 y
+SDict begin H.S end
+ 832 2086 a 832 2086 a
+SDict begin 22.464 H.A end
+ 832 2086 a 832 2086 a
+SDict begin [ /View [/XYZ H.V] /Dest (17.95.1) cvn H.B /DEST pdfmark
+end
+ 832
+2086 a -2 2088 a
+SDict begin H.S end
+ -2 2088 a -2 2088 a
+SDict begin 13 H.A end
+ -2 2088 a -2 2088
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4688) cvn H.B /DEST pdfmark
+end
+ -2 2088 a -2 2212 a
+SDict begin H.S end
+ -2 2212 a -2 2212 a
+SDict begin 13 H.A end
+ -2 2212 a -2
+2212 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4690) cvn H.B /DEST pdfmark
+end
+ -2 2212 a 396 2318 a FC(log_inde)o(x)-2 2336 y
+SDict begin H.S end
+
+-2 2336 a -2 2336 a
+SDict begin 13 H.A end
+ -2 2336 a -2 2336 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4691) cvn H.B /DEST pdfmark
+end
+ -2 2336 a Black
+Black 562 2468 a
+SDict begin H.S end
+ 562 2468 a 562 2468 a
+SDict begin 13 H.A end
+ 562 2468 a 562
+2468 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4692) cvn H.B /DEST pdfmark
+end
+ 562 2468 a FC(Unique)19 b(inde)o(x)g(of)h(the)h(message)f
+(\(primary)e(k)o(e)o(y\).)-2 2569 y
+SDict begin H.S end
+ -2 2569 a -2 2569
+a
+SDict begin 13 H.A end
+ -2 2569 a -2 2569 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4694) cvn H.B /DEST pdfmark
+end
+ -2 2569 a 396 2658 a FC(log_ref)-2
+2676 y
+SDict begin H.S end
+ -2 2676 a -2 2676 a
+SDict begin 13 H.A end
+ -2 2676 a -2 2676 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4695) cvn H.B /DEST pdfmark
+end
+ -2 2676
+a Black Black 562 2808 a
+SDict begin H.S end
+ 562 2808 a 562 2808 a
+SDict begin 13 H.A end
+ 562 2808
+a 562 2808 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4696) cvn H.B /DEST pdfmark
+end
+ 562 2808 a FC(Zero)i(for)f(internal)h(serv)o(er)f
+(messages,)h(NULL)g(for)g(messages)g(recei)n(v)o(ed)f(from)g(a)i
+(client,)562 2916 y(log_inde)o(x\(client_message\))15
+b(for)20 b(serv)o(er)f(timestamp)h(of)g(client)g(message.)-2
+3017 y
+SDict begin H.S end
+ -2 3017 a -2 3017 a
+SDict begin 13 H.A end
+ -2 3017 a -2 3017 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4698) cvn H.B /DEST pdfmark
+end
+ -2 3017
+a 396 3107 a FC(log_host)-2 3125 y
+SDict begin H.S end
+ -2 3125 a -2 3125
+a
+SDict begin 13 H.A end
+ -2 3125 a -2 3125 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4699) cvn H.B /DEST pdfmark
+end
+ -2 3125 a Black Black 562 3256
+a
+SDict begin H.S end
+ 562 3256 a 562 3256 a
+SDict begin 13 H.A end
+ 562 3256 a 562 3256 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4700) cvn H.B /DEST pdfmark
+end
+ 562 3256
+a FC(The)g(host)g(where)g(the)g(message)g(originates.)-2
+3357 y
+SDict begin H.S end
+ -2 3357 a -2 3357 a
+SDict begin 13 H.A end
+ -2 3357 a -2 3357 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4702) cvn H.B /DEST pdfmark
+end
+ -2 3357
+a 396 3447 a FC(log_time)-2 3465 y
+SDict begin H.S end
+ -2 3465 a -2 3465
+a
+SDict begin 13 H.A end
+ -2 3465 a -2 3465 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4703) cvn H.B /DEST pdfmark
+end
+ -2 3465 a Black Black 562 3597
+a
+SDict begin H.S end
+ 562 3597 a 562 3597 a
+SDict begin 13 H.A end
+ 562 3597 a 562 3597 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4704) cvn H.B /DEST pdfmark
+end
+ 562 3597
+a FC(The)g(timestamp)g(of)g(the)g(message.)-2 3698 y
+SDict begin H.S end
+
+-2 3698 a -2 3698 a
+SDict begin 13 H.A end
+ -2 3698 a -2 3698 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4706) cvn H.B /DEST pdfmark
+end
+ -2 3698 a 396
+3788 a FC(log_se)n(v)-2 3806 y
+SDict begin H.S end
+ -2 3806 a -2 3806 a
+SDict begin 13 H.A end
+ -2
+3806 a -2 3806 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4707) cvn H.B /DEST pdfmark
+end
+ -2 3806 a Black Black 562 3937 a
+SDict begin H.S end
+ 562
+3937 a 562 3937 a
+SDict begin 13 H.A end
+ 562 3937 a 562 3937 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4708) cvn H.B /DEST pdfmark
+end
+ 562 3937 a FC(The)g(se)n(v)o
+(erity/priority)e(of)h(the)i(message.)-2 4038 y
+SDict begin H.S end
+ -2 4038
+a -2 4038 a
+SDict begin 13 H.A end
+ -2 4038 a -2 4038 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4710) cvn H.B /DEST pdfmark
+end
+ -2 4038 a 396 4128 a
+FC(log_msg)-2 4146 y
+SDict begin H.S end
+ -2 4146 a -2 4146 a
+SDict begin 13 H.A end
+ -2 4146 a -2
+4146 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4711) cvn H.B /DEST pdfmark
+end
+ -2 4146 a Black Black 562 4277 a
+SDict begin H.S end
+ 562 4277 a 562
+4277 a
+SDict begin 13 H.A end
+ 562 4277 a 562 4277 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4712) cvn H.B /DEST pdfmark
+end
+ 562 4277 a FC(The)f(message)g(itself.)-2
+4378 y
+SDict begin H.S end
+ -2 4378 a -2 4378 a
+SDict begin 13 H.A end
+ -2 4378 a -2 4378 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4714) cvn H.B /DEST pdfmark
+end
+ -2 4378
+a 396 4468 a FC(log_hash)-2 4486 y
+SDict begin H.S end
+ -2 4486 a -2 4486
+a
+SDict begin 13 H.A end
+ -2 4486 a -2 4486 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4715) cvn H.B /DEST pdfmark
+end
+ -2 4486 a Black Black 562 4618
+a
+SDict begin H.S end
+ 562 4618 a 562 4618 a
+SDict begin 13 H.A end
+ 562 4618 a 562 4618 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4716) cvn H.B /DEST pdfmark
+end
+ 562 4618
+a FC(A)h(checksum)e(o)o(v)o(er)g(the)h(union)f(of)h(user)n
+(-de\002neable)e(\002elds.)-2 4702 y
+SDict begin H.S end
+ -2 4702 a -2 4702
+a
+SDict begin 13 H.A end
+ -2 4702 a -2 4702 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4718) cvn H.B /DEST pdfmark
+end
+ -2 4702 a 396 4809 a FC(entry_status)-2
+4827 y
+SDict begin H.S end
+ -2 4827 a -2 4827 a
+SDict begin 13 H.A end
+ -2 4827 a -2 4827 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4719) cvn H.B /DEST pdfmark
+end
+ -2 4827
+a Black Black 562 4958 a
+SDict begin H.S end
+ 562 4958 a 562 4958 a
+SDict begin 13 H.A end
+ 562 4958
+a 562 4958 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4720) cvn H.B /DEST pdfmark
+end
+ 562 4958 a FC(NEW)j(for)f(ne)n(w)g(entries.)f(Used)i(by)f
+(the)1727 4958 y
+SDict begin H.S end
+ 1727 4958 a 1727 4958 a
+SDict begin 13 H.A end
+ 1727 4958 a
+1727 4958 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4721) cvn H.B /DEST pdfmark
+end
+ 1727 4958 a FC(Beltane)g(frontend)e(to)j(track)e(the)i
+(status)f(of)g(a)h(message.)-2 5059 y
+SDict begin H.S end
+ -2 5059 a -2 5059
+a
+SDict begin 13 H.A end
+ -2 5059 a -2 5059 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4723) cvn H.B /DEST pdfmark
+end
+ -2 5059 a 396 5149 a FC(path)-2
+5167 y
+SDict begin H.S end
+ -2 5167 a -2 5167 a
+SDict begin 13 H.A end
+ -2 5167 a -2 5167 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4724) cvn H.B /DEST pdfmark
+end
+ -2 5167
+a Black Black 562 5299 a
+SDict begin H.S end
+ 562 5299 a 562 5299 a
+SDict begin 13 H.A end
+ 562 5299
+a 562 5299 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4725) cvn H.B /DEST pdfmark
+end
+ 562 5299 a FC(P)o(ath)f(of)g(a)h(\002le)g(\(whene)n(v)o
+(er)d(a)i(message)g(refers)g(to)g(a)h(\002le\).)p Black
+-2 5805 a
+SDict begin H.S end
+ -2 5805 a -2 5805 a
+SDict begin 13 H.A end
+ -2 5805 a -2 5805 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4731) cvn H.B /DEST pdfmark
+end
+ -2
+5805 a 3617 5874 a Fx(127)p Black eop end
+%%Page: 128 133
+TeXDict begin 128 132 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.128) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black -2 35 a
+SDict begin H.S end
+ -2
+35 a -2 35 a
+SDict begin 13 H.A end
+ -2 35 a -2 35 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:MOD-DB-FIELDS) cvn H.B /DEST
+pdfmark end
+ -2 35 a 2582 104 a Fx(Appendix)18
+b(D.)j(List)g(of)g(database)d(\002elds)p Black -2 226
+a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4727) cvn H.B /DEST pdfmark
+end
+ -2 226 a 396 309
+a FC(userid)-2 310 y
+SDict begin H.S end
+ -2 310 a -2 310 a
+SDict begin 13 H.A end
+ -2 310 a -2 310
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4728) cvn H.B /DEST pdfmark
+end
+ -2 310 a Black Black 562 458 a
+SDict begin H.S end
+ 562 458 a 562 458 a
+SDict begin 13 H.A end
+
+562 458 a 562 458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4729) cvn H.B /DEST pdfmark
+end
+ 562 458 a FC(UID)j(of)f(the)g(current)f(user)h(if)g
+(rele)n(v)n(ant)f(\(e.g.)g(if)i(access)g(to)f(a)h(\002le)g(f)o(ails\).)
+396 649 y(grp)-2 667 y
+SDict begin H.S end
+ -2 667 a -2 667 a
+SDict begin 13 H.A end
+ -2 667 a -2
+667 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4732) cvn H.B /DEST pdfmark
+end
+ -2 667 a Black Black 562 799 a
+SDict begin H.S end
+ 562 799 a 562 799
+a
+SDict begin 13 H.A end
+ 562 799 a 562 799 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4733) cvn H.B /DEST pdfmark
+end
+ 562 799 a FC(Name)f(of)g(a)h(group)d(\(for)h
+(messages)i(reporting)d(problems)h(with)h(a)h(GID,)f(e.g.)f(no)h(entry)
+f(in)i(/etc/group\).)-2 900 y
+SDict begin H.S end
+ -2 900 a -2 900 a
+SDict begin 13 H.A end
+ -2 900
+a -2 900 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4735) cvn H.B /DEST pdfmark
+end
+ -2 900 a 396 989 a FC(program)-2 1007 y
+SDict begin H.S end
+ -2
+1007 a -2 1007 a
+SDict begin 13 H.A end
+ -2 1007 a -2 1007 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4736) cvn H.B /DEST pdfmark
+end
+ -2 1007 a Black
+Black 562 1139 a
+SDict begin H.S end
+ 562 1139 a 562 1139 a
+SDict begin 13 H.A end
+ 562 1139 a 562
+1139 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4737) cvn H.B /DEST pdfmark
+end
+ 562 1139 a FC(Name)f(of)g(the)g(current)f(process)h(\(startup)f
+(message\).)-2 1240 y
+SDict begin H.S end
+ -2 1240 a -2 1240 a
+SDict begin 13 H.A end
+ -2 1240 a -2
+1240 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4739) cvn H.B /DEST pdfmark
+end
+ -2 1240 a 396 1330 a FC(subroutine)-2 1331 y
+SDict begin H.S end
+ -2
+1331 a -2 1331 a
+SDict begin 13 H.A end
+ -2 1331 a -2 1331 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4740) cvn H.B /DEST pdfmark
+end
+ -2 1331 a Black
+Black 562 1479 a
+SDict begin H.S end
+ 562 1479 a 562 1479 a
+SDict begin 13 H.A end
+ 562 1479 a 562
+1479 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4741) cvn H.B /DEST pdfmark
+end
+ 562 1479 a FC(Name)h(of)g(an)g(internal)g(subroutine)e(\(in)i
+(messages)g(reporting)e(f)o(ailure)i(of)g(a)h(subroutine\).)-2
+1580 y
+SDict begin H.S end
+ -2 1580 a -2 1580 a
+SDict begin 13 H.A end
+ -2 1580 a -2 1580 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4743) cvn H.B /DEST pdfmark
+end
+ -2 1580
+a 396 1670 a FC(status)-2 1671 y
+SDict begin H.S end
+ -2 1671 a -2 1671 a
+SDict begin 13 H.A end
+
+-2 1671 a -2 1671 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4744) cvn H.B /DEST pdfmark
+end
+ -2 1671 a Black Black 562 1820 a
+SDict begin H.S end
+
+562 1820 a 562 1820 a
+SDict begin 13 H.A end
+ 562 1820 a 562 1820 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4745) cvn H.B /DEST pdfmark
+end
+ 562 1820
+a FC(Exit)f(status)h(v)n(alue)f(of)g(samhain.)-2 1904
+y
+SDict begin H.S end
+ -2 1904 a -2 1904 a
+SDict begin 13 H.A end
+ -2 1904 a -2 1904 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4747) cvn H.B /DEST pdfmark
+end
+ -2 1904 a 396
+2011 a FC(hash)-2 2012 y
+SDict begin H.S end
+ -2 2012 a -2 2012 a
+SDict begin 13 H.A end
+ -2 2012
+a -2 2012 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4748) cvn H.B /DEST pdfmark
+end
+ -2 2012 a Black Black 562 2160 a
+SDict begin H.S end
+ 562 2160
+a 562 2160 a
+SDict begin 13 H.A end
+ 562 2160 a 562 2160 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4749) cvn H.B /DEST pdfmark
+end
+ 562 2160 a FC(Checksum)g(of)f
+(con\002guration)f(\002le)j(\(if)f(gpg)f(not)h(used\).)f(Startup)h
+(message.)-2 2261 y
+SDict begin H.S end
+ -2 2261 a -2 2261 a
+SDict begin 13 H.A end
+ -2 2261 a -2
+2261 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4751) cvn H.B /DEST pdfmark
+end
+ -2 2261 a 396 2351 a FC(path_data,)f(hash_data)-2
+2369 y
+SDict begin H.S end
+ -2 2369 a -2 2369 a
+SDict begin 13 H.A end
+ -2 2369 a -2 2369 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4752) cvn H.B /DEST pdfmark
+end
+ -2 2369
+a Black Black 562 2500 a
+SDict begin H.S end
+ 562 2500 a 562 2500 a
+SDict begin 13 H.A end
+ 562 2500
+a 562 2500 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4753) cvn H.B /DEST pdfmark
+end
+ 562 2500 a FC(P)o(ath)h(and)g(checksum)f(of)h(data)g
+(\002le)h(\(if)f(gpg)f(not)h(used\).)f(Startup)h(message.)-2
+2601 y
+SDict begin H.S end
+ -2 2601 a -2 2601 a
+SDict begin 13 H.A end
+ -2 2601 a -2 2601 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4755) cvn H.B /DEST pdfmark
+end
+ -2 2601
+a 396 2691 a FC(k)o(e)o(y_uid,)e(k)o(e)o(y_id)-2 2709
+y
+SDict begin H.S end
+ -2 2709 a -2 2709 a
+SDict begin 13 H.A end
+ -2 2709 a -2 2709 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4756) cvn H.B /DEST pdfmark
+end
+ -2 2709 a Black
+Black 562 2841 a
+SDict begin H.S end
+ 562 2841 a 562 2841 a
+SDict begin 13 H.A end
+ 562 2841 a 562
+2841 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4757) cvn H.B /DEST pdfmark
+end
+ 562 2841 a FC(User)j(ID)f(and)g(k)o(e)o(y)f(id)i(of)f(GPG)g(k)o
+(e)o(y)g(used)g(to)g(sign)g(the)h(con\002guration)c(\002le.)k(Startup)e
+(message.)-2 2942 y
+SDict begin H.S end
+ -2 2942 a -2 2942 a
+SDict begin 13 H.A end
+ -2 2942 a -2
+2942 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4759) cvn H.B /DEST pdfmark
+end
+ -2 2942 a 396 3032 a FC(k)o(e)o(y_uid_data)-2
+3050 y
+SDict begin H.S end
+ -2 3050 a -2 3050 a
+SDict begin 13 H.A end
+ -2 3050 a -2 3050 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4760) cvn H.B /DEST pdfmark
+end
+ -2 3050
+a Black Black 562 3181 a
+SDict begin H.S end
+ 562 3181 a 562 3181 a
+SDict begin 13 H.A end
+ 562 3181
+a 562 3181 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4761) cvn H.B /DEST pdfmark
+end
+ 562 3181 a FC(User)i(ID)f(of)g(GPG)h(k)o(e)o(y)e(used)h
+(to)h(sign)f(the)g(data)g(\002le)h(\(dif)n(ferent)d(k)o(e)o(ys)i(for)g
+(con\002guration)d(and)j(data)g(\002le)562 3289 y(cause)g(program)e
+(abort\).)h(Startup)h(f)o(ailure)f(message.)-2 3390 y
+SDict begin H.S end
+
+-2 3390 a -2 3390 a
+SDict begin 13 H.A end
+ -2 3390 a -2 3390 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4763) cvn H.B /DEST pdfmark
+end
+ -2 3390 a 396
+3480 a FC(peer)-2 3498 y
+SDict begin H.S end
+ -2 3498 a -2 3498 a
+SDict begin 13 H.A end
+ -2 3498
+a -2 3498 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4764) cvn H.B /DEST pdfmark
+end
+ -2 3498 a Black Black 562 3630 a
+SDict begin H.S end
+ 562 3630
+a 562 3630 a
+SDict begin 13 H.A end
+ 562 3630 a 562 3630 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4765) cvn H.B /DEST pdfmark
+end
+ 562 3630 a FC(Address)h(of)g(a)h
+(connecting)d(host.)-2 3731 y
+SDict begin H.S end
+ -2 3731 a -2 3731 a
+SDict begin 13 H.A end
+ -2
+3731 a -2 3731 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4767) cvn H.B /DEST pdfmark
+end
+ -2 3731 a 396 3821 a FC(obj)-2 3839
+y
+SDict begin H.S end
+ -2 3839 a -2 3839 a
+SDict begin 13 H.A end
+ -2 3839 a -2 3839 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4768) cvn H.B /DEST pdfmark
+end
+ -2 3839 a Black
+Black 562 3970 a
+SDict begin H.S end
+ 562 3970 a 562 3970 a
+SDict begin 13 H.A end
+ 562 3970 a 562
+3970 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4769) cvn H.B /DEST pdfmark
+end
+ 562 3970 a FC(Generic)i(\002eld)g(to)h(hold)e(additional)g
+(information.)e(Occasionally)i(used.)-2 4071 y
+SDict begin H.S end
+ -2 4071
+a -2 4071 a
+SDict begin 13 H.A end
+ -2 4071 a -2 4071 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4771) cvn H.B /DEST pdfmark
+end
+ -2 4071 a 396 4161 a
+FC(interf)o(ace)-2 4162 y
+SDict begin H.S end
+ -2 4162 a -2 4162 a
+SDict begin 13 H.A end
+ -2 4162
+a -2 4162 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4772) cvn H.B /DEST pdfmark
+end
+ -2 4162 a Black Black 562 4310 a
+SDict begin H.S end
+ 562 4310
+a 562 4310 a
+SDict begin 13 H.A end
+ 562 4310 a 562 4310 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4773) cvn H.B /DEST pdfmark
+end
+ 562 4310 a FC(Name)h(of)g(a)h
+(library)e(routine/interf)o(ace)f(\(error)g(messages\).)-2
+4411 y
+SDict begin H.S end
+ -2 4411 a -2 4411 a
+SDict begin 13 H.A end
+ -2 4411 a -2 4411 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4775) cvn H.B /DEST pdfmark
+end
+ -2 4411
+a 396 4501 a FC(dir)-2 4502 y
+SDict begin H.S end
+ -2 4502 a -2 4502 a
+SDict begin 13 H.A end
+ -2
+4502 a -2 4502 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4776) cvn H.B /DEST pdfmark
+end
+ -2 4502 a Black Black 562 4651 a
+SDict begin H.S end
+ 562
+4651 a 562 4651 a
+SDict begin 13 H.A end
+ 562 4651 a 562 4651 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4777) cvn H.B /DEST pdfmark
+end
+ 562 4651 a FC(Name)i(of)g(a)h
+(directory)-5 b(,)18 b(if)i(rele)n(v)n(ant.)-2 4752 y
+SDict begin H.S end
+
+-2 4752 a -2 4752 a
+SDict begin 13 H.A end
+ -2 4752 a -2 4752 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4779) cvn H.B /DEST pdfmark
+end
+ -2 4752 a 396
+4842 a FC(link)o(ed_path)-2 4860 y
+SDict begin H.S end
+ -2 4860 a -2 4860
+a
+SDict begin 13 H.A end
+ -2 4860 a -2 4860 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4780) cvn H.B /DEST pdfmark
+end
+ -2 4860 a Black Black 562 4991
+a
+SDict begin H.S end
+ 562 4991 a 562 4991 a
+SDict begin 13 H.A end
+ 562 4991 a 562 4991 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4781) cvn H.B /DEST pdfmark
+end
+ 562 4991
+a FC(In)g(reports)g(about)f(dangling)f(symlinks.)-2 5092
+y
+SDict begin H.S end
+ -2 5092 a -2 5092 a
+SDict begin 13 H.A end
+ -2 5092 a -2 5092 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4783) cvn H.B /DEST pdfmark
+end
+ -2 5092 a 396
+5182 a FC(port)-2 5200 y
+SDict begin H.S end
+ -2 5200 a -2 5200 a
+SDict begin 13 H.A end
+ -2 5200
+a -2 5200 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4784) cvn H.B /DEST pdfmark
+end
+ -2 5200 a Black Black 562 5332 a
+SDict begin H.S end
+ 562 5332
+a 562 5332 a
+SDict begin 13 H.A end
+ 562 5332 a 562 5332 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4785) cvn H.B /DEST pdfmark
+end
+ 562 5332 a FC(Port)i(number)f(\(in)h
+(reports)f(about)g(connections)g(errors\).)p Black 3620
+5805 a Fx(128)p Black eop end
+%%Page: 129 134
+TeXDict begin 129 133 bop -600 -364 a
+SDict begin /product where{pop product(Distiller)search{pop pop pop
+version(.)search{exch pop exch pop(3011)eq{gsave newpath 0 0 moveto
+closepath clip/Courier findfont 10 scalefont setfont 72 72 moveto(.)show
+grestore}if}{pop}ifelse}{pop}ifelse}if end
+ -600 -364 a Black
+0 TeXcolorgray -2 134 a
+SDict begin H.S end
+ -2 134 a 0 TeXcolorgray 0 TeXcolorgray
+-2 134 a
+SDict begin H.R end
+ -2 134 a -2 134 a
+SDict begin [ /View [/XYZ H.V] /Dest (page.129) cvn H.B /DEST pdfmark
+end
+ -2 134 a Black 2582 104 a
+Fx(Appendix)18 b(D.)j(List)g(of)g(database)d(\002elds)p
+Black -2 226 a
+SDict begin H.S end
+ -2 226 a -2 226 a
+SDict begin 13 H.A end
+ -2 226 a -2 226 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4787) cvn H.B /DEST pdfmark
+end
+ -2
+226 a 396 309 a FC(service)-2 310 y
+SDict begin H.S end
+ -2 310 a -2 310 a
+SDict begin 13 H.A end
+
+-2 310 a -2 310 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4788) cvn H.B /DEST pdfmark
+end
+ -2 310 a Black Black 562 458 a
+SDict begin H.S end
+ 562
+458 a 562 458 a
+SDict begin 13 H.A end
+ 562 458 a 562 458 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4789) cvn H.B /DEST pdfmark
+end
+ 562 458 a FC(Logging)g(f)o(acility)
+j(or)e(remote)h(service)g(\(f)o(ailure)f(reports\).)-2
+518 y
+SDict begin H.S end
+ -2 518 a -2 518 a
+SDict begin 13 H.A end
+ -2 518 a -2 518 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:MOD-DB-FIELDS) cvn H.B /DEST
+pdfmark end
+ -2 518 a 359
+x Fu(D)l(.2.)38 b(Modules)880 877 y
+SDict begin H.S end
+ 880 877 a 880 877
+a
+SDict begin 22.464 H.A end
+ 880 877 a 880 877 a
+SDict begin [ /View [/XYZ H.V] /Dest (17.96.1) cvn H.B /DEST pdfmark
+end
+ 880 877 a -2 879 a
+SDict begin H.S end
+ -2 879 a -2
+879 a
+SDict begin 13 H.A end
+ -2 879 a -2 879 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4792) cvn H.B /DEST pdfmark
+end
+ -2 879 a -2 1003 a
+SDict begin H.S end
+ -2 1003 a
+-2 1003 a
+SDict begin 13 H.A end
+ -2 1003 a -2 1003 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4794) cvn H.B /DEST pdfmark
+end
+ -2 1003 a 396 1109 a FC(module)-2
+1110 y
+SDict begin H.S end
+ -2 1110 a -2 1110 a
+SDict begin 13 H.A end
+ -2 1110 a -2 1110 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4795) cvn H.B /DEST pdfmark
+end
+ -2 1110
+a Black Black 562 1259 a
+SDict begin H.S end
+ 562 1259 a 562 1259 a
+SDict begin 13 H.A end
+ 562 1259
+a 562 1259 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4796) cvn H.B /DEST pdfmark
+end
+ 562 1259 a FC(Name)20 b(of)g(a)h(samhain)e(module)g
+(\(e.g.)g(the)i(module)d(to)j(w)o(atch)f(login/logout)e(e)n(v)o
+(ents\).)h(Used)h(in)562 1367 y(initialization/error)e(reports)i(for)f
+(a)i(module.)-2 1468 y
+SDict begin H.S end
+ -2 1468 a -2 1468 a
+SDict begin 13 H.A end
+ -2 1468 a
+-2 1468 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4798) cvn H.B /DEST pdfmark
+end
+ -2 1468 a 396 1558 a FC(return_code)-2 1568
+y
+SDict begin H.S end
+ -2 1568 a -2 1568 a
+SDict begin 13 H.A end
+ -2 1568 a -2 1568 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4799) cvn H.B /DEST pdfmark
+end
+ -2 1568 a Black
+Black 562 1707 a
+SDict begin H.S end
+ 562 1707 a 562 1707 a
+SDict begin 13 H.A end
+ 562 1707 a 562
+1707 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4800) cvn H.B /DEST pdfmark
+end
+ 562 1707 a FC(Return)f(code)g(from)f(a)h(module.)f(Used)h(in)h
+(initialization/error)c(reports)j(for)f(a)i(module.)-2
+1808 y
+SDict begin H.S end
+ -2 1808 a -2 1808 a
+SDict begin 13 H.A end
+ -2 1808 a -2 1808 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4802) cvn H.B /DEST pdfmark
+end
+ -2 1808
+a 396 1898 a FC(syscall)-2 1916 y
+SDict begin H.S end
+ -2 1916 a -2 1916 a
+SDict begin 13 H.A end
+
+-2 1916 a -2 1916 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4803) cvn H.B /DEST pdfmark
+end
+ -2 1916 a Black Black 562 2047 a
+SDict begin H.S end
+
+562 2047 a 562 2047 a
+SDict begin 13 H.A end
+ 562 2047 a 562 2047 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4804) cvn H.B /DEST pdfmark
+end
+ 562 2047
+a FC(ID)g(of)f(bad)f(syscall.)i(K)n(ernel)e(checking)g(module.)-2
+2148 y
+SDict begin H.S end
+ -2 2148 a -2 2148 a
+SDict begin 13 H.A end
+ -2 2148 a -2 2148 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4806) cvn H.B /DEST pdfmark
+end
+ -2 2148
+a 396 2238 a FC(ip)-2 2256 y
+SDict begin H.S end
+ -2 2256 a -2 2256 a
+SDict begin 13 H.A end
+ -2 2256
+a -2 2256 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4807) cvn H.B /DEST pdfmark
+end
+ -2 2256 a Black Black 562 2388 a
+SDict begin H.S end
+ 562 2388
+a 562 2388 a
+SDict begin 13 H.A end
+ 562 2388 a 562 2388 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4808) cvn H.B /DEST pdfmark
+end
+ 562 2388 a FC(IP)i(address.)e
+(Login/logout)f(w)o(atch.)i(Also)g(used)g(in)h(recei)n(v)o(ed)d(syslog)
+i(messages)g(\(see)h(belo)n(w\).)-2 2489 y
+SDict begin H.S end
+ -2 2489 a
+-2 2489 a
+SDict begin 13 H.A end
+ -2 2489 a -2 2489 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4810) cvn H.B /DEST pdfmark
+end
+ -2 2489 a 396 2579 a FC(tty)-2
+2597 y
+SDict begin H.S end
+ -2 2597 a -2 2597 a
+SDict begin 13 H.A end
+ -2 2597 a -2 2597 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4811) cvn H.B /DEST pdfmark
+end
+ -2 2597
+a Black Black 562 2728 a
+SDict begin H.S end
+ 562 2728 a 562 2728 a
+SDict begin 13 H.A end
+ 562 2728
+a 562 2728 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4812) cvn H.B /DEST pdfmark
+end
+ 562 2728 a FC(T)-6 b(erminal)20 b(used.)f(Login/logout)f
+(w)o(atch.)-2 2829 y
+SDict begin H.S end
+ -2 2829 a -2 2829 a
+SDict begin 13 H.A end
+ -2 2829 a -2
+2829 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4814) cvn H.B /DEST pdfmark
+end
+ -2 2829 a 396 2919 a FC(time)-2 2920 y
+SDict begin H.S end
+ -2 2920
+a -2 2920 a
+SDict begin 13 H.A end
+ -2 2920 a -2 2920 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4815) cvn H.B /DEST pdfmark
+end
+ -2 2920 a Black Black
+562 3069 a
+SDict begin H.S end
+ 562 3069 a 562 3069 a
+SDict begin 13 H.A end
+ 562 3069 a 562 3069
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4816) cvn H.B /DEST pdfmark
+end
+ 562 3069 a FC(Login/logout)g(time.)i(Also)g(used)g(in)h(some)f(other)
+f(messages)h(\(e.g.)g(time)g(to)g(complete)f(\002le)i(check\).)-2
+3170 y
+SDict begin H.S end
+ -2 3170 a -2 3170 a
+SDict begin 13 H.A end
+ -2 3170 a -2 3170 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4818) cvn H.B /DEST pdfmark
+end
+ -2 3170
+a 396 3260 a FC(fromhost)-2 3261 y
+SDict begin H.S end
+ -2 3261 a -2 3261
+a
+SDict begin 13 H.A end
+ -2 3261 a -2 3261 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4819) cvn H.B /DEST pdfmark
+end
+ -2 3261 a Black Black 562 3409
+a
+SDict begin H.S end
+ 562 3409 a 562 3409 a
+SDict begin 13 H.A end
+ 562 3409 a 562 3409 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4820) cvn H.B /DEST pdfmark
+end
+ 562 3409
+a FC(Host)g(from)e(which)h(user)g(is)h(logged)e(in.)h(Login/logout)d(w)
+o(atch.)-2 3468 y
+SDict begin H.S end
+ -2 3468 a -2 3468 a
+SDict begin 13 H.A end
+ -2 3468 a -2 3468
+a
+SDict begin [ /View [/XYZ H.V] /Dest (0:SYS-DB-FIELDS) cvn H.B /DEST
+pdfmark end
+ -2 3468 a 360 x Fu(D)l(.3.)38 b(Syslog)768 3828 y
+SDict begin H.S end
+ 768
+3828 a 768 3828 a
+SDict begin 22.464 H.A end
+ 768 3828 a 768 3828 a
+SDict begin [ /View [/XYZ H.V] /Dest (17.97.1) cvn H.B /DEST pdfmark
+end
+ 768 3828 a -2
+3859 a
+SDict begin H.S end
+ -2 3859 a -2 3859 a
+SDict begin 13 H.A end
+ -2 3859 a -2 3859 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4823) cvn H.B /DEST pdfmark
+end
+ -2 3859
+a -2 3984 a
+SDict begin H.S end
+ -2 3984 a -2 3984 a
+SDict begin 13 H.A end
+ -2 3984 a -2 3984 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4825) cvn H.B /DEST pdfmark
+end
+ -2
+3984 a 396 4060 a FC(ip)-2 4078 y
+SDict begin H.S end
+ -2 4078 a -2 4078 a
+SDict begin 13 H.A end
+
+-2 4078 a -2 4078 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4826) cvn H.B /DEST pdfmark
+end
+ -2 4078 a Black Black 562 4209 a
+SDict begin H.S end
+
+562 4209 a 562 4209 a
+SDict begin 13 H.A end
+ 562 4209 a 562 4209 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4827) cvn H.B /DEST pdfmark
+end
+ 562 4209
+a FC(IP)21 b(of)f(remote)f(host)h(recei)n(v)o(ed)f(syslog)h(reports.)f
+(Also)h(used)g(in)h(the)f(login/logout)e(w)o(atch)i(module)f(\(see)562
+4317 y(abo)o(v)o(e\).)-2 4415 y
+SDict begin H.S end
+ -2 4415 a -2 4415 a
+SDict begin 13 H.A end
+ -2
+4415 a -2 4415 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4829) cvn H.B /DEST pdfmark
+end
+ -2 4415 a 396 4508 a FC(f)o(acility)-2
+4526 y
+SDict begin H.S end
+ -2 4526 a -2 4526 a
+SDict begin 13 H.A end
+ -2 4526 a -2 4526 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4830) cvn H.B /DEST pdfmark
+end
+ -2 4526
+a Black Black 562 4658 a
+SDict begin H.S end
+ 562 4658 a 562 4658 a
+SDict begin 13 H.A end
+ 562 4658
+a 562 4658 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4831) cvn H.B /DEST pdfmark
+end
+ 562 4658 a FC(Syslog)h(f)o(acility)g(for)g(recei)n(v)o(ed)
+e(syslog)i(reports.)-2 4759 y
+SDict begin H.S end
+ -2 4759 a -2 4759 a
+SDict begin 13 H.A end
+ -2
+4759 a -2 4759 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4833) cvn H.B /DEST pdfmark
+end
+ -2 4759 a 396 4849 a FC(priority)-2
+4867 y
+SDict begin H.S end
+ -2 4867 a -2 4867 a
+SDict begin 13 H.A end
+ -2 4867 a -2 4867 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4834) cvn H.B /DEST pdfmark
+end
+ -2 4867
+a Black Black 562 4998 a
+SDict begin H.S end
+ 562 4998 a 562 4998 a
+SDict begin 13 H.A end
+ 562 4998
+a 562 4998 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4835) cvn H.B /DEST pdfmark
+end
+ 562 4998 a FC(Syslog)g(priority)f(for)h(recei)n(v)o(ed)e
+(syslog)i(reports.)-2 5099 y
+SDict begin H.S end
+ -2 5099 a -2 5099 a
+SDict begin 13 H.A end
+ -2 5099
+a -2 5099 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4837) cvn H.B /DEST pdfmark
+end
+ -2 5099 a 396 5189 a FC(syslog_msg)-2 5207
+y
+SDict begin H.S end
+ -2 5207 a -2 5207 a
+SDict begin 13 H.A end
+ -2 5207 a -2 5207 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4838) cvn H.B /DEST pdfmark
+end
+ -2 5207 a Black
+Black 562 5339 a
+SDict begin H.S end
+ 562 5339 a 562 5339 a
+SDict begin 13 H.A end
+ 562 5339 a 562
+5339 a
+SDict begin [ /View [/XYZ H.V] /Dest (0:4839) cvn H.B /DEST pdfmark
+end
+ 562 5339 a FC(Syslog)g(message)g(for)g(recei)n(v)o(ed)e(syslog)i
+(reports.)p Black 3620 5805 a Fx(129)p Black eop end
+%%Trailer
+
+userdict /end-hook known{end-hook}if
+%%EOF
Index: trunk/docs/README
===================================================================
--- trunk/docs/README	(revision 591)
+++ trunk/docs/README	(revision 1)
@@ -137,5 +137,5 @@
 
 	NOTE: client and server are __distict__ applications, and must be
-	built separately. By default, installation names and paths are
+	built seperately. By default, installation names and paths are
 	different. Do not blame us if you abuse './configure' options to 
 	cause name clashes, if you install both on the same host.
Index: trunk/docs/README.UPGRADE
===================================================================
--- trunk/docs/README.UPGRADE	(revision 591)
+++ trunk/docs/README.UPGRADE	(revision 1)
@@ -1,94 +1,2 @@
-to 4.0.0 and higher: if you use "ReportCheckflags = yes" (off by default),
-  you need to change the database scheme:
-
-  -- mysql:
-	  ALTER TABLE samhain.log ADD COLUMN checkflags_old BIGINT UNSIGNED;
-	  ALTER TABLE samhain.log ADD COLUMN checkflags_new BIGINT UNSIGNED;
-
-  -- postgres:
-	  ALTER TABLE samhain.log ADD COLUMN checkflags_old NUMERIC(20); 
-	  ALTER TABLE samhain.log ADD COLUMN checkflags_new NUMERIC(20);
-
-  --oracle:
-	  ALTER TABLE samhain.log ADD checkflags_old NUMBER(20); 
-	  ALTER TABLE samhain.log ADD checkflags_new NUMBER(20); 
-
-to 2.8.0 and higher: samhain supports IPv6 now, which means that the
-  size of the 'ip' column in the database must be increased from
-  VARCHAR(16) to VARCHAR(46).
-
-  BE SURE TO MAKE A BACKUP BEFORE THIS!
-
-  -- mysql: alter table samhain.log modify ip VARCHAR(46);
-
-  -- postgresql: alter table samhain.log alter column ip type varchar(46);
-
-  -- oracle: alter table samhain.log modify ip VARCHAR2(46);
-
-  
-to 2.4.4 and higher: it is possible now to store the full content of
-  small files in the baseline database. To support this feature with
-  logging to an RDBMS, the DB schema for Oracle needs to be adjusted
-  by converting the link_old, link_new columns from VARCHAR2 to CLOB:
-
-  -- Oracle:
-      ALTER TABLE samhain.log ADD tmp_name CLOB;
-      UPDATE samhain.log SET tmp_name=link_old;
-      ALTER TABLE samhain.log DROP COLUMN link_old;
-      ALTER TABLE samhain.log RENAME COLUMN tmp_name to link_old;
-
-      ALTER TABLE samhain.log ADD tmp_name CLOB;
-      UPDATE samhain.log SET tmp_name=link_new;
-      ALTER TABLE samhain.log DROP COLUMN link_new;
-      ALTER TABLE samhain.log RENAME COLUMN tmp_name to link_new;
-
-  -- Samhain server (yule): if you are logging to the RDBMS via
-     the server (yule), as recommended, you need to also upgrade the 
-     server, because earlier versions had a too restrictive limit on 
-     the maximum length of an SQL query.
-
-    
-to 2.3.3 and higher: a bug has been fixed that resulted in an additional
-  slash at the beginning of the linked path of symlinks in the root
-  directory (symlinks in other directories were not affected)
-
-  -- this may cause spurious warnings about modified links, if you check
-     against a database created with an earlier version of samhain 
-
-from lower to 2.3.x: the database scheme has changed slightly. 
-  To upgrade, use the following SQL commands in the command-line
-  client of your database:
-
-  -- MySQL:
-	ALTER TABLE samhain.log ADD COLUMN acl_old BLOB;
-	ALTER TABLE samhain.log ADD COLUMN acl_new BLOB;
-
-  -- PostgreSQL:
-	ALTER TABLE samhain.log ADD COLUMN acl_old TEXT;
-	ALTER TABLE samhain.log ADD COLUMN acl_new TEXT;
-
-  -- Oracle:
-	ALTER TABLE samhain.log ADD acl_old VARCHAR2(4000);
-	ALTER TABLE samhain.log ADD acl_new VARCHAR2(4000);
-	DROP TRIGGER trigger_on_log;
- 
-
-
-since 2.2.0: server-to-server relay is possible
-
-  -- this implies that problems will arise if your server is misconfigured
-     to connect to itself (SetExportSeverity is explicitely set
-     to a threshold different from 'none', and the logserver is set to 
-     localhost). The server may deadlock in this case.
-
-
-
-since 2.1.0: update and daemon mode can be combined
-
-  -- this implies that '-t update' will start a daemon process if running as
-     daemon is the default specified in the config file. use '--foreground'
-     to avoid starting a daemon process
-
-
 
 from 1.7.x to 1.8.x: client/server encryption protocol has been enhanced
Index: trunk/docs/README.sstrip
===================================================================
--- trunk/docs/README.sstrip	(revision 1)
+++ trunk/docs/README.sstrip	(revision 1)
@@ -0,0 +1,40 @@
+sstrip is a small utility that removes the contents at the end of an
+ELF file that are not part of the program's memory image.
+
+Most ELF executables are built with both a program header table and a
+section header table. However, only the former is required in order
+for the OS to load, link and execute a program. sstrip attempts to
+extract the ELF header, the program header table, and its contents,
+leaving everything else in the bit bucket. It can only remove parts of
+the file that occur at the end, after the parts to be saved. However,
+this almost always includes the section header table, and occasionally
+a few random sections that are not used when running a program.
+
+It should be noted that the GNU bfd library is (understandably)
+dependent on the section header table as an index to the file's
+contents. Thus, an executable file that has no section header table
+cannot be used with gdb, objdump, or any other program based upon the
+bfd library, at all. In fact, the program will not even recognize the
+file as a valid executable. (This limitation is noted in the source
+code comments for bfd, and is marked "FIXME", so this may change at
+some future date. However, I would imagine that it is a pretty
+low-priority item, as executables without a section header table are
+rare in the extreme.) This probably also explains why strip doesn't
+offer the option to do this.
+
+Shared library files may also have their section header table removed.
+Such a library will still function; however, it will no longer be
+possible for a compiler to link a new program against it.
+
+As an added bonus, sstrip also tries to removes trailing zero bytes
+from the end of the file. (This normally cannot be done with an
+executable that has a section header table.)
+
+sstrip is a very simplistic program. It depends upon the common
+practice of putting the parts of the file that contribute to the
+memory image at the front, and the remaining material at the end. This
+permits it to discard the latter material without affecting file
+offsets and memory addresses in what remains. However, the ELF
+standard permits files to be organized in almost any order. So
+although this procedure usually works in practice, it is not meant to
+be taken too seriously.
Index: trunk/docs/TODO
===================================================================
--- trunk/docs/TODO	(revision 1)
+++ trunk/docs/TODO	(revision 1)
@@ -0,0 +1,6 @@
+
+Wishlist:
+
+ - yule -> yule relay
+ - partial checksum of growing logfiles
+ 
Index: trunk/dsys/comBUILD
===================================================================
--- trunk/dsys/comBUILD	(revision 591)
+++ trunk/dsys/comBUILD	(revision 1)
@@ -4,22 +4,4 @@
 #
 #########################################################################
-#
-# Copyright Rainer Wichmann (2005)
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
 
 commandBUILD() {
@@ -70,5 +52,5 @@
     fi
 
-    tmpdir=`eval echo "${temp_dir}/sh_${src_version}_${arch}_${format}_$$"`
+    tmpdir=`eval echo "/tmp/sh_${src_version}_${arch}_${format}_$$"`
 
     #---------------------------------------------------------------------
Index: trunk/dsys/comCHECKSRC
===================================================================
--- trunk/dsys/comCHECKSRC	(revision 591)
+++ trunk/dsys/comCHECKSRC	(revision 1)
@@ -4,22 +4,4 @@
 #
 #########################################################################
-#
-# Copyright Rainer Wichmann (2005)
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
 
 commandCHECKSRC() {
Index: trunk/dsys/comCLEAN
===================================================================
--- trunk/dsys/comCLEAN	(revision 591)
+++ trunk/dsys/comCLEAN	(revision 1)
@@ -4,22 +4,4 @@
 #
 #########################################################################
-#
-# Copyright Rainer Wichmann (2005)
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
 
 commandCLEAN() {
Index: trunk/dsys/comDOWNLOAD
===================================================================
--- trunk/dsys/comDOWNLOAD	(revision 591)
+++ trunk/dsys/comDOWNLOAD	(revision 1)
@@ -4,22 +4,4 @@
 #
 #########################################################################
-#
-# Copyright Rainer Wichmann (2005)
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
 
 commandDOWNLOAD() {
@@ -129,5 +111,5 @@
     if test -z "$command"
     then
-	printFATAL "No wget, curl, lynx, links, lwp-request, fetch, fget in your \$PATH, cannot download"
+	printFATAL "No wget, curl, lynx, links, lwp-request, fetch in your \$PATH, cannot download"
     fi
 
Index: trunk/dsys/comINSTALL
===================================================================
--- trunk/dsys/comINSTALL	(revision 591)
+++ trunk/dsys/comINSTALL	(revision 1)
@@ -4,22 +4,4 @@
 #
 #########################################################################
-#
-# Copyright Rainer Wichmann (2005)
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
 
 commandINSTALL() {
@@ -169,5 +151,5 @@
     #---------------------------------------------------------------------
 
-    tmpdir=`eval echo "${temp_dir}/sh_${src_version}_${arch}_${format}_$$"`
+    tmpdir=`eval echo "/tmp/sh_${src_version}_${arch}_${format}_$$"`
 
     if test x"$simulate" = x0
@@ -255,12 +237,4 @@
 	    printINFO "ssh -x -l root ${host} /bin/sh -c '(cd ${tmpdir} && eval ${is_command} ${tmpdir}/samhain-${src_version}.${realformat} ${tmp_iname})'"
         fi
-    elif test "x$format" = "xsolaris-pkg"
-    then
-        if test x"$simulate" = x0
-        then
-            ssh -x -l "root" "${host}" /bin/sh -c \''(cd "'${tmpdir}'" && PATH="'/usr/local/bin:/usr/bin:/bin:/usr/sbin:/sbin:$PATH'" && export PATH && eval "'${is_command}'" "'samhain-${src_version}.${realformat} all'") >/dev/null '\'
-        else
-	    printINFO "ssh -x -l root ${host} /bin/sh -c '(cd ${tmpdir} && eval ${is_command} samhain-${src_version}.${realformat}) all'"
-        fi
     elif test "x$format" = "xtbz2"
     then
@@ -329,13 +303,6 @@
 	if test "x$mytest_file" = x; then
 	    rcfile_perm=640;
-	    xgid=`(cat /etc/group; ypcat group) 2>/dev/null |\
-              grep "^samhain:" | awk -F: '{ print $3; }'`
-	    if test "x$xgid" = x; then
-	      rcfile_owner=`ls -ld ${yule_data} | awk '{print $3 }'`
-	      rcfile_group=`ls -ld ${yule_data} | awk '{print $4 }'`
-	    else
-	      rcfile_owner=`ls -ld ${yule_data} | awk '{print $3 }'`
-	      rcfile_group=samhain
-	    fi
+	    rcfile_owner=`ls -ld ${yule_data} | awk '{print $3 }'`
+	    rcfile_group=`ls -ld ${yule_data} | awk '{print $4 }'`
 	else
 	    mytest_file=`basename $mytest_file`
@@ -373,24 +340,7 @@
     #---------------------------------------------------------------------
 
-    instlock="${yule_conf}.lockdir";
-    trap "rm -rf ${instlock}" 1 2 13 15
-
-    if test x"$simulate" = x0
-    then
-	#
-	# A lockfile will not work, because 'root' can write anyway.
-	# However, 'mkdir' an existing directory will fail even for root
-	#
-	until (umask 222; mkdir "${instlock}") 2>/dev/null   # test & set
-	do
-	   printINFO "Waiting for lock"
-	   sleep 1
-	done
-    fi
-
     Replace=`"${yule_exec}" -P "${is_passwd}" | sed s%HOSTNAME%${host}%g`
     if test "x$Replace" = x
     then
-	rm -rf "${instlock}"
 	printFATAL "Could not execute ${yule_exec} -P ${is_passwd}."
     fi
@@ -406,9 +356,5 @@
             then
 	        Seen=y
-		echo "$Replace" >>"$tmpF" 
-		if [ $? -ne 0 ]; then
-			rm -rf "${instlock}"
-			printFATAL "Cannot write new server configuration."
-		fi
+		echo "$Replace" >>"$tmpF" || printFATAL "Cannot write new server configuration."
 	    fi
         else
@@ -417,9 +363,5 @@
 		:
 	    else
-		echo "$line" >>"$tmpF"
-		if [ $? -ne 0 ]; then
-			rm -rf "${instlock}"
-			printFATAL "Cannot write new server configuration."
-		fi
+		echo "$line" >>"$tmpF" || printFATAL "Cannot write new server configuration."
             fi
         fi
@@ -438,27 +380,8 @@
     if test x"$simulate" = x0
     then
-        ageFILE "${yule_conf}"
-	if [ $? -ne 0 ]; then
-		rm -rf "${instlock}"
-		printFATAL "Could not backup ${yule_conf}"
-	fi
-
-        rm -f "${yule_conf}" && cp "$tmpF"  "${yule_conf}"
-	if [ $? -ne 0 ]; then
-		rm -rf "${instlock}"
-		printFATAL "Could not write new server config. Backup is ${yule_conf}.1"
-	fi
-
-        chown ${rcfile_owner}:${rcfile_group} "${yule_conf}"
-	if [ $? -ne 0 ]; then
-		rm -rf "${instlock}"
-		printFATAL "Could not chown ${rcfile_owner}:${rcfile_group} ${yule_conf}"
-	fi
-
-        chmod ${rcfile_perm} "${yule_conf}"
-	if [ $? -ne 0 ]; then
-		rm -rf "${instlock}"
-		printFATAL "Could not chmod ${rcfile_perm} ${yule_conf}"
-	fi
+        ageFILE "${yule_conf}" || printFATAL "Could not backup ${yule_conf}."
+        rm -f "${yule_conf}" && { cp "$tmpF"  "${yule_conf}" || printFATAL "Could not write new server config. Backup is ${yule_conf}.1"; }
+        chown ${rcfile_owner}:${rcfile_group} "${yule_conf}" || printFATAL "Could not chown ${rcfile_owner}:${rcfile_group} ${yule_conf}"
+        chmod ${rcfile_perm} "${yule_conf}" || printFATAL "Could not chmod ${rcfile_perm} ${yule_conf}"
     else
         printINFO "Backup and update ${yule_conf}"
@@ -500,5 +423,4 @@
 	sleep 5
 	#
-	rm -rf "${instlock}"
     else
         printINFO "Reloading server configuration."
@@ -506,5 +428,4 @@
 
     printLOG "Server configuration updated and reloaded."
-
 
     #---------------------------------------------------------------------
@@ -553,13 +474,6 @@
 	if test "x$mytest_file" = x; then
 	    rcfile_perm=640;
-	    xgid=`(cat /etc/group; ypcat group) 2>/dev/null |\
-              grep "^samhain:" | awk -F: '{ print $3; }'`
-	    if test "x$xgid" = x; then
-	      rcfile_owner=`ls -ld ${yule_data} | awk '{print $3 }'`
-	      rcfile_group=`ls -ld ${yule_data} | awk '{print $4 }'`
-	    else
-	      rcfile_owner=`ls -ld ${yule_data} | awk '{print $3 }'`
-	      rcfile_group=samhain
-	    fi
+	    rcfile_owner=`ls -ld ${yule_data} | awk '{print $3 }'`
+	    rcfile_group=`ls -ld ${yule_data} | awk '{print $4 }'`
 	else
 	    mytest_file=`basename $mytest_file`
Index: trunk/dsys/comUNINSTALL
===================================================================
--- trunk/dsys/comUNINSTALL	(revision 591)
+++ trunk/dsys/comUNINSTALL	(revision 1)
@@ -4,22 +4,4 @@
 #
 #########################################################################
-#
-# Copyright Rainer Wichmann (2005)
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
 
 commandUNINSTALL() {
@@ -79,5 +61,5 @@
     #---------------------------------------------------------------------
 
-    tmpdir=`eval echo "${temp_dir}/sh_${src_version}_${arch}_${format}_$$"`
+    tmpdir=`eval echo "/tmp/sh_${src_version}_${arch}_${format}_$$"`
 
     if test x"$simulate" = x0
Index: trunk/dsys/funcBUILD
===================================================================
--- trunk/dsys/funcBUILD	(revision 591)
+++ trunk/dsys/funcBUILD	(revision 1)
@@ -4,22 +4,4 @@
 #
 #########################################################################
-#
-# Copyright Rainer Wichmann (2005)
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
 
 #------------------------------------------------------------------------
Index: trunk/dsys/funcDB
===================================================================
--- trunk/dsys/funcDB	(revision 591)
+++ trunk/dsys/funcDB	(revision 1)
@@ -4,22 +4,4 @@
 #
 #########################################################################
-#
-# Copyright Rainer Wichmann (2005)
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
 
 DBFTEST=0
Index: trunk/dsys/funcDIALOG
===================================================================
--- trunk/dsys/funcDIALOG	(revision 591)
+++ trunk/dsys/funcDIALOG	(revision 1)
@@ -4,22 +4,4 @@
 #
 #########################################################################
-#
-# Copyright Rainer Wichmann (2005)
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
 
 # print without newline
Index: trunk/dsys/funcEXE
===================================================================
--- trunk/dsys/funcEXE	(revision 591)
+++ trunk/dsys/funcEXE	(revision 1)
@@ -4,22 +4,4 @@
 #
 #########################################################################
-#
-# Copyright Rainer Wichmann (2005)
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
 
 findEXE() {
Index: trunk/dsys/funcINSTALL
===================================================================
--- trunk/dsys/funcINSTALL	(revision 591)
+++ trunk/dsys/funcINSTALL	(revision 1)
@@ -4,22 +4,4 @@
 #
 #########################################################################
-#
-# Copyright Rainer Wichmann (2005)
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
 
 getconfopts () {
@@ -62,5 +44,4 @@
     echo "  "
     echo "    ${host}"
-    echo "    ${hostgroup}"
     echo "    ${arch}"
     echo "    ${install_entry}"
@@ -110,18 +91,4 @@
         DATABASE="${basedir}/${defdatabase}"
     fi
-
-    updlock="${DATABASE}.lockdir"
-    trap "rm -rf ${updlock}" 1 2 13 15
-
-    #
-    # A lockfile will not work, because 'root' can write anyway.
-    # However, 'mkdir' an existing directory will fail even for root
-    #
-    until (umask 222; mkdir "${updlock}") 2>/dev/null   # test & set
-    do
-       printINFO "Waiting for lock"
-       sleep 1
-    done
-
 
     IDATE=`date +"%Y-%m-%d %H:%M:%S"`
@@ -173,10 +140,6 @@
 		if test "x$?" = "x1"
 		then
-		    #
-		    # Write the full entry when client_os_machine is found
-		    #
 		    case "$line" in
 		    *\*\)
-		    echo "    ${hostgroup}"           >>"${tmpF}"
 		    echo "    ${arch}"           >>"${tmpF}"
 		    echo "    ${install_entry}"    >>"${tmpF}"
@@ -187,25 +150,26 @@
 		    ;;
 
-		    *\*\)
+		    *\*\)
+                    # echo "    ${install_entry}"    >>"${tmpF}"
 		    :
 		    ;;
-			
-		    *\*\)
-		    :
-		    ;;
 
 		    *\*\)
+                    # echo "    ${IDATE}"         >>"${tmpF}"
 		    :
 	            ;;
 
 		    *\*\)
+                    # echo "    ${SH_NAME}"       >>"${tmpF}"
 		    :
 		    ;;
 
 		    *\*\)
+                    # echo "    ${SH_PREFIX}" >>"${tmpF}"
 		    :
 		    ;;
 
 		    *\*\)
+                    # echo "    ${src_version}.${realformat}" >>"${tmpF}"
 		    :
 		    ;;
@@ -251,5 +215,5 @@
      printINFO "Write ${DATABASE} from scratch"
      echo '' >"${tmpF}"
-     echo '' \
+     echo '' \
 	  >>"${tmpF}"
      echo ""   >>"${tmpF}"
@@ -259,16 +223,7 @@
     fi
 
-    chown ${rcfile_owner}:${rcfile_group} "${DATABASE}"
-    if [ $? -ne 0 ]; then
-    	rm -rf "${updlock}"
-    	printFATAL "Could not chown ${rcfile_owner}:${rcfile_group} ${DATABASE}"
-    fi
-    chmod ${rcfile_perm} "${DATABASE}"
-    if [ $? -ne 0 ]; then
-    	rm -rf "${updlock}"
-    	printFATAL "Could not chmod ${rcfile_perm} ${DATABASE}"
-    fi
-
-    rm -rf "${updlock}"
+    chown ${rcfile_owner}:${rcfile_group} "${DATABASE}" || printFATAL "Could not chown ${rcfile_owner}:${rcfile_group} ${DATABASE}"
+    chmod ${rcfile_perm} "${DATABASE}" || printFATAL "Could not chmod ${rcfile_perm} ${DATABASE}"
+
 }
 
@@ -400,8 +355,4 @@
 	   command="$command other"
 	fi
-        if test $n -eq 0
-        then
-            printFATAL "No binary packages built yet !"
-        fi
 	    
 	eval ${command}
Index: trunk/dsys/funcPRINT
===================================================================
--- trunk/dsys/funcPRINT	(revision 591)
+++ trunk/dsys/funcPRINT	(revision 1)
@@ -4,22 +4,4 @@
 #
 #########################################################################
-#
-# Copyright Rainer Wichmann (2005)
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
 
 # Fatal error
Index: trunk/dsys/funcSETUP
===================================================================
--- trunk/dsys/funcSETUP	(revision 591)
+++ trunk/dsys/funcSETUP	(revision 1)
@@ -4,22 +4,4 @@
 #
 #########################################################################
-#
-# Copyright Rainer Wichmann (2005)
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
 
 # test setup
Index: trunk/dsys/initscript
===================================================================
--- trunk/dsys/initscript	(revision 591)
+++ trunk/dsys/initscript	(revision 1)
@@ -1,22 +1,3 @@
 #! /bin/sh
-
-#
-# Copyright Rainer Wichmann (2005)
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
 
 startup=no
Index: trunk/dsys/postinstall
===================================================================
--- trunk/dsys/postinstall	(revision 591)
+++ trunk/dsys/postinstall	(revision 1)
@@ -1,22 +1,3 @@
 #! /bin/sh
-
-#
-# Copyright Rainer Wichmann (2005)
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
 
 name=`./samhain-install.sh --print-config name`
Index: trunk/dsys/preinstall
===================================================================
--- trunk/dsys/preinstall	(revision 591)
+++ trunk/dsys/preinstall	(revision 1)
@@ -1,21 +1,3 @@
 #! /bin/sh
-#
-# Copyright Rainer Wichmann (2005)
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
 
 name=`./samhain-install.sh --print-config name`
Index: trunk/hp_ux.psf.in
===================================================================
--- trunk/hp_ux.psf.in	(revision 591)
+++ trunk/hp_ux.psf.in	(revision 1)
@@ -15,7 +15,4 @@
   directory      /
   is_locatable   false
-
-# Dummy for configure warning
-# datarootdir = @datarootdir@
 
 # Specify a checkremove script that executes during the 
Index: trunk/include/CuTest.h
===================================================================
--- trunk/include/CuTest.h	(revision 591)
+++ 	(revision )
@@ -1,138 +1,0 @@
-/*******************
-
-LICENSE
-
-Copyright (c) 2003 Asim Jalis
-
-This software is provided 'as-is', without any express or implied
-warranty. In no event will the authors be held liable for any damages
-arising from the use of this software.
-
-Permission is granted to anyone to use this software for any purpose,
-including commercial applications, and to alter it and redistribute it
-freely, subject to the following restrictions:
-
-1. The origin of this software must not be misrepresented; you must not
-claim that you wrote the original software. If you use this software in
-a product, an acknowledgment in the product documentation would be
-appreciated but is not required.
-
-2. Altered source versions must be plainly marked as such, and must not
-be misrepresented as being the original software.
-
-3. This notice may not be removed or altered from any source
-distribution.
-
-**********************/
-
-#ifndef CU_TEST_H
-#define CU_TEST_H
-
-#include 
-#include 
-
-/* CuString */
-
-char* CuStrAlloc(int size);
-char* CuStrCopy(const char* old);
-
-#define CU_ALLOC(TYPE)		((TYPE*) malloc(sizeof(TYPE)))
-
-#define HUGE_STRING_LEN	8192
-#define STRING_MAX		256
-#define STRING_INC		256
-
-typedef struct
-{
-	int length;
-	int size;
-	char* buffer;
-} CuString;
-
-void CuStringInit(CuString* str);
-CuString* CuStringNew(void);
-void CuStringRead(CuString* str, const char* path);
-void CuStringAppend(CuString* str, const char* text);
-void CuStringAppendChar(CuString* str, char ch);
-void CuStringAppendFormat(CuString* str, const char* format, ...);
-void CuStringInsert(CuString* str, const char* text, int pos);
-void CuStringResize(CuString* str, int newSize);
-
-/* CuTest */
-
-typedef struct CuTest CuTest;
-
-typedef void (*TestFunction)(CuTest *);
-
-struct CuTest
-{
-	const char* name;
-	TestFunction function;
-	int failed;
-	int ran;
-	const char* message;
-	jmp_buf *jumpBuf;
-};
-
-void CuTestInit(CuTest* t, const char* name, TestFunction function);
-CuTest* CuTestNew(const char* name, TestFunction function);
-void CuTestRun(CuTest* tc);
-
-/* Internal versions of assert functions -- use the public versions */
-void CuFail_Line(CuTest* tc, const char* file, int line, const char* message2, const char* message);
-void CuAssert_Line(CuTest* tc, const char* file, int line, const char* message, int condition);
-void CuAssertStrEquals_LineMsg(CuTest* tc, 
-	const char* file, int line, const char* message, 
-	const char* expected, const char* actual);
-void CuAssertIntEquals_LineMsg(CuTest* tc, 
-	const char* file, int line, const char* message, 
-	int expected, int actual);
-void CuAssertDblEquals_LineMsg(CuTest* tc, 
-	const char* file, int line, const char* message, 
-	double expected, double actual, double delta);
-void CuAssertPtrEquals_LineMsg(CuTest* tc, 
-	const char* file, int line, const char* message, 
-	void* expected, void* actual);
-
-/* public assert functions */
-
-#define CuFail(tc, ms)                        CuFail_Line(  (tc), __FILE__, __LINE__, NULL, (ms))
-#define CuAssert(tc, ms, cond)                CuAssert_Line((tc), __FILE__, __LINE__, (ms), (cond))
-#define CuAssertTrue(tc, cond)                CuAssert_Line((tc), __FILE__, __LINE__, "assert failed", (cond))
-
-#define CuAssertStrEquals(tc,ex,ac)           CuAssertStrEquals_LineMsg((tc),__FILE__,__LINE__,NULL,(ex),(ac))
-#define CuAssertStrEquals_Msg(tc,ms,ex,ac)    CuAssertStrEquals_LineMsg((tc),__FILE__,__LINE__,(ms),(ex),(ac))
-#define CuAssertIntEquals(tc,ex,ac)           CuAssertIntEquals_LineMsg((tc),__FILE__,__LINE__,NULL,(ex),(ac))
-#define CuAssertIntEquals_Msg(tc,ms,ex,ac)    CuAssertIntEquals_LineMsg((tc),__FILE__,__LINE__,(ms),(ex),(ac))
-#define CuAssertDblEquals(tc,ex,ac,dl)        CuAssertDblEquals_LineMsg((tc),__FILE__,__LINE__,NULL,(ex),(ac),(dl))
-#define CuAssertDblEquals_Msg(tc,ms,ex,ac,dl) CuAssertDblEquals_LineMsg((tc),__FILE__,__LINE__,(ms),(ex),(ac),(dl))
-#define CuAssertPtrEquals(tc,ex,ac)           CuAssertPtrEquals_LineMsg((tc),__FILE__,__LINE__,NULL,(ex),(ac))
-#define CuAssertPtrEquals_Msg(tc,ms,ex,ac)    CuAssertPtrEquals_LineMsg((tc),__FILE__,__LINE__,(ms),(ex),(ac))
-
-#define CuAssertPtrNotNull(tc,p)        CuAssert_Line((tc),__FILE__,__LINE__,"null pointer unexpected",(p != NULL))
-#define CuAssertPtrNotNullMsg(tc,msg,p) CuAssert_Line((tc),__FILE__,__LINE__,(msg),(p != NULL))
-
-/* CuSuite */
-
-#define MAX_TEST_CASES	1024
-
-#define SUITE_ADD_TEST(SUITE,TEST)	CuSuiteAdd(SUITE, CuTestNew(#TEST, TEST))
-
-typedef struct
-{
-	int count;
-	CuTest* list[MAX_TEST_CASES];
-	int failCount;
-
-} CuSuite;
-
-
-void CuSuiteInit(CuSuite* testSuite);
-CuSuite* CuSuiteNew(void);
-void CuSuiteAdd(CuSuite* testSuite, CuTest *testCase);
-void CuSuiteAddSuite(CuSuite* testSuite, CuSuite* testSuite2);
-void CuSuiteRun(CuSuite* testSuite);
-void CuSuiteSummary(CuSuite* testSuite, CuString* summary);
-void CuSuiteDetails(CuSuite* testSuite, CuString* details);
-
-#endif /* CU_TEST_H */
Index: trunk/include/kern_head.h
===================================================================
--- trunk/include/kern_head.h	(revision 1)
+++ trunk/include/kern_head.h	(revision 1)
@@ -0,0 +1,1382 @@
+
+
+/* i386 sys_call_table for kernel 2.4.x
+ */
+char * callz_2p4[] = {
+    "sys_ni_syscall",    /* 0 - old setup() system call*/
+    "sys_exit",
+    "sys_fork",
+    "sys_read",
+    "sys_write",
+    "sys_open",        /* 5 */
+    "sys_close",
+    "sys_waitpid",
+    "sys_creat",
+    "sys_link",
+    "sys_unlink",        /* 10 */
+    "sys_execve",
+    "sys_chdir",
+    "sys_time",
+    "sys_mknod",
+    "sys_chmod",        /* 15 */
+    "sys_lchown16",
+    "sys_ni_syscall",                /* old break syscall holder */
+    "sys_stat",
+    "sys_lseek",
+    "sys_getpid",        /* 20 */
+    "sys_mount",
+    "sys_oldumount",
+    "sys_setuid16",
+    "sys_getuid16",
+    "sys_stime",        /* 25 */
+    "sys_ptrace",
+    "sys_alarm",
+    "sys_fstat",
+    "sys_pause",
+    "sys_utime",        /* 30 */
+    "sys_ni_syscall",                /* old stty syscall holder */
+    "sys_ni_syscall",                /* old gtty syscall holder */
+    "sys_access",
+    "sys_nice",
+    "sys_ni_syscall",    /* 35 */        /* old ftime syscall holder */
+    "sys_sync",
+    "sys_kill",
+    "sys_rename",
+    "sys_mkdir",
+    "sys_rmdir",        /* 40 */
+    "sys_dup",
+    "sys_pipe",
+    "sys_times",
+    "sys_ni_syscall",                /* old prof syscall holder */
+    "sys_brk",        /* 45 */
+    "sys_setgid16",
+    "sys_getgid16",
+    "sys_signal",
+    "sys_geteuid16",
+    "sys_getegid16",    /* 50 */
+    "sys_acct",
+    "sys_umount",                    /* recycled never used  phys() */
+    "sys_ni_syscall",                /* old lock syscall holder */
+    "sys_ioctl",
+    "sys_fcntl",        /* 55 */
+    "sys_ni_syscall",                /* old mpx syscall holder */
+    "sys_setpgid",
+    "sys_ni_syscall",                /* old ulimit syscall holder */
+    "sys_olduname",
+    "sys_umask",        /* 60 */
+    "sys_chroot",
+    "sys_ustat",
+    "sys_dup2",
+    "sys_getppid",
+    "sys_getpgrp",        /* 65 */
+    "sys_setsid",
+    "sys_sigaction",
+    "sys_sgetmask",
+    "sys_ssetmask",
+    "sys_setreuid16",    /* 70 */
+    "sys_setregid16",
+    "sys_sigsuspend",
+    "sys_sigpending",
+    "sys_sethostname",
+    "sys_setrlimit",    /* 75 */
+    "sys_old_getrlimit",
+    "sys_getrusage",
+    "sys_gettimeofday",
+    "sys_settimeofday",
+    "sys_getgroups16",    /* 80 */
+    "sys_setgroups16",
+    "old_select",
+    "sys_symlink",
+    "sys_lstat",
+    "sys_readlink",        /* 85 */
+    "sys_uselib",
+    "sys_swapon",
+    "sys_reboot",
+    "old_readdir",
+    "old_mmap",        /* 90 */
+    "sys_munmap",
+    "sys_truncate",
+    "sys_ftruncate",
+    "sys_fchmod",
+    "sys_fchown16",        /* 95 */
+    "sys_getpriority",
+    "sys_setpriority",
+    "sys_ni_syscall",                /* old profil syscall holder */
+    "sys_statfs",
+    "sys_fstatfs",        /* 100 */
+    "sys_ioperm",
+    "sys_socketcall",
+    "sys_syslog",
+    "sys_setitimer",
+    "sys_getitimer",    /* 105 */
+    "sys_newstat",
+    "sys_newlstat",
+    "sys_newfstat",
+    "sys_uname",
+    "sys_iopl",        /* 110 */
+    "sys_vhangup",
+    "sys_ni_syscall",    /* old idle system call */
+    "sys_vm86old",
+    "sys_wait4",
+    "sys_swapoff",        /* 115 */
+    "sys_sysinfo",
+    "sys_ipc",
+    "sys_fsync",
+    "sys_sigreturn",
+    "sys_clone",        /* 120 */
+    "sys_setdomainname",
+    "sys_newuname",
+    "sys_modify_ldt",
+    "sys_adjtimex",
+    "sys_mprotect",        /* 125 */
+    "sys_sigprocmask",
+    "sys_create_module",
+    "sys_init_module",
+    "sys_delete_module",
+    "sys_get_kernel_syms",    /* 130 */
+    "sys_quotactl",
+    "sys_getpgid",
+    "sys_fchdir",
+    "sys_bdflush",
+    "sys_sysfs",        /* 135 */
+    "sys_personality",
+    "sys_ni_syscall",    /* for afs_syscall */
+    "sys_setfsuid16",
+    "sys_setfsgid16",
+    "sys_llseek",        /* 140 */
+    "sys_getdents",
+    "sys_select",
+    "sys_flock",
+    "sys_msync",
+    "sys_readv",        /* 145 */
+    "sys_writev",
+    "sys_getsid",
+    "sys_fdatasync",
+    "sys_sysctl",
+    "sys_mlock",        /* 150 */
+    "sys_munlock",
+    "sys_mlockall",
+    "sys_munlockall",
+    "sys_sched_setparam",
+    "sys_sched_getparam",  /* 155 */
+    "sys_sched_setscheduler",
+    "sys_sched_getscheduler",
+    "sys_sched_yield",
+    "sys_sched_get_priority_max",
+    "sys_sched_get_priority_min", /* 160 */
+    "sys_sched_rr_get_interval",
+    "sys_nanosleep",
+    "sys_mremap",
+    "sys_setresuid16",
+    "sys_getresuid16",    /* 165 */
+    "sys_vm86",
+    "sys_query_module",
+    "sys_poll",
+    "sys_nfsservctl",
+    "sys_setresgid16",    /* 170 */
+    "sys_getresgid16",
+    "sys_prctl",
+    "sys_rt_sigreturn",
+    "sys_rt_sigaction",
+    "sys_rt_sigprocmask",    /* 175 */
+    "sys_rt_sigpending",
+    "sys_rt_sigtimedwait",
+    "sys_rt_sigqueueinfo",
+    "sys_rt_sigsuspend",
+    "sys_pread",        /* 180 */
+    "sys_pwrite",
+    "sys_chown16",
+    "sys_getcwd",
+    "sys_capget",
+    "sys_capset",      /* 185 */
+    "sys_sigaltstack",
+    "sys_sendfile",
+    "sys_getpmsg",        /* streams1 */
+    "sys_putpmsg",        /* streams2 */
+    "sys_vfork",      /* 190 */
+    "sys_getrlimit",
+    "sys_mmap2",
+    "sys_truncate64",
+    "sys_ftruncate64",
+    "sys_stat64",        /* 195 */
+    "sys_lstat64",
+    "sys_fstat64",
+    "sys_lchown",
+    "sys_getuid",
+    "sys_getgid",        /* 200 */
+    "sys_geteuid",
+    "sys_getegid",
+    "sys_setreuid",
+    "sys_setregid",
+    "sys_getgroups",    /* 205 */
+    "sys_setgroups",
+    "sys_fchown",
+    "sys_setresuid",
+    "sys_getresuid",
+    "sys_setresgid",    /* 210 */
+    "sys_getresgid",
+    "sys_chown",
+    "sys_setuid",
+    "sys_setgid",
+    "sys_setfsuid",        /* 215 */
+    "sys_setfsgid",
+    "sys_pivot_root",
+    "sys_mincore",
+    "sys_madvise",
+    "sys_getdents64",    /* 220 */
+    "sys_fcntl64",
+    "sys_tux",     /* reserved for TUX */
+    "sys_security",
+    "sys_gettid",
+    "sys_readahead",     /* 225 */
+    "sys_setxattr",
+    "sys_lsetxattr",
+    "sys_fsetxattr",
+    "sys_getxattr",
+    "sys_lgetxattr",     /* 230 */
+    "sys_fgetxattr",
+    "sys_listxattr",
+    "sys_llistxattr",
+    "sys_flistxattr",
+    "sys_removexattr",   /* 235 */
+    "sys_lremovexattr",
+    "sys_fremovexattr",
+    "sys_tkill",
+    "sys_sendfile64",
+    "sys_futex",         /* 240 */
+    "sys_sched_setaffinity",
+    "sys_sched_getaffinity",
+    "sys_set_thread_area",
+    "sys_get_thread_area",   
+    "sys_io_setup",           /* 245 */
+    "sys_io_destroy",         
+    "sys_io_getevents",       
+    "sys_io_submit",          
+    "sys_io_cancel",          
+    "sys_alloc_hugepages",    /* 250 */
+    "sys_free_hugepages",     
+    "sys_exit_group",         
+    "sys_lookup_dcookie",     /* 2.6 */
+    "sys_epoll_create",
+    "sys_epoll_ctl",          /* 255 */
+    "sys_epoll_wait",
+    "sys_remap_file_pages",
+    "sys_set_tid_address",
+    "sys_timer_create",
+    "sys_timer_settime",      /* 260 */
+    "sys_timer_gettime",
+    "sys_timer_getoverrun",
+    "sys_timer_delete",
+    "sys_clock_settime",
+    "sys_clock_gettime",      /* 265 */
+    "sys_clock_getres",
+    "sys_clock_nanosleep",
+    "sys_statfs64",
+    "sys_fstatfs64",
+    "sys_tgkill",             /* 270 */
+    "sys_utimes",
+    "sys_fadvise64_64",
+    "sys_vserver",
+    NULL
+};
+
+
+
+/* i386 sys_call_table for kernel 2.2.x
+ */
+char * callz_2p2[]={
+  "sys_ni_syscall",        /* 0 */
+  "sys_exit",
+  "sys_fork",
+  "sys_read",
+  "sys_write",
+  "sys_open",              /* 5 */
+  "sys_close",
+  "sys_waitpid", 
+  "sys_creat",
+  "sys_link",
+  "sys_unlink",              /* 10 */
+  "sys_execve",
+  "sys_chdir",
+  "sys_time",
+  "sys_mknod",
+  "sys_chmod",              /* 15 */
+  "sys_lchown",
+  "sys_ni_syscall",
+  "sys_stat",
+  "sys_lseek",
+  "sys_getpid",              /* 20 */
+  "sys_mount",
+  "sys_oldumount", 
+  "sys_setuid",
+  "sys_getuid",
+  "sys_stime",              /* 25 */
+  "sys_ptrace",
+  "sys_alarm",
+  "sys_fstat",
+  "sys_pause",
+  "sys_utime",              /* 30 */
+  "sys_ni_syscall",
+  "sys_ni_syscall",
+  "sys_access",
+  "sys_nice",
+  "sys_ni_syscall",              /* 35 */
+  "sys_sync",
+  "sys_kill",
+  "sys_rename",
+  "sys_mkdir",
+  "sys_rmdir",              /* 40 */
+  "sys_dup",
+  "sys_pipe",
+  "sys_times",
+  "sys_ni_syscall",
+  "sys_brk",              /* 45 */
+  "sys_setgid",
+  "sys_getgid",
+  "sys_signal",
+  "sys_geteuid",
+  "sys_getegid",              /* 50 */
+  "sys_acct",
+  "sys_umount",
+  "sys_ni_syscall",
+  "sys_ioctl",
+  "sys_fcntl",              /* 55 */
+  "sys_ni_syscall",
+  "sys_setpgid",
+  "sys_ni_syscall",
+  "sys_olduname",
+  "sys_umask",              /* 60 */
+  "sys_chroot",
+  "sys_ustat",
+  "sys_dup2",
+  "sys_getppid",
+  "sys_getpgrp",              /* 65 */
+  "sys_setsid",
+  "sys_sigaction",
+  "sys_sgetmask",
+  "sys_ssetmask",
+  "sys_setreuid",              /* 70 */
+  "sys_setregid",
+  "sys_sigsuspend",
+  "sys_sigpending",
+  "sys_sethostname",
+  "sys_setrlimit",              /* 75 */
+  "sys_getrlimit",
+  "sys_getrusage",
+  "sys_gettimeofday",
+  "sys_settimeofday",
+  "sys_getgroups",              /* 80 */
+  "sys_setgroups",
+  "old_select",
+  "sys_symlink",
+  "sys_lstat",
+  "sys_readlink",              /* 85 */
+  "sys_uselib",
+  "sys_swapon",
+  "sys_reboot",
+  "old_readdir",
+  "old_mmap",              /* 90 */
+  "sys_munmap",
+  "sys_truncate",
+  "sys_ftruncate",
+  "sys_fchmod",
+  "sys_fchown",              /* 95 */
+  "sys_getpriority",
+  "sys_setpriority",
+  "sys_ni_syscall",
+  "sys_statfs",
+  "sys_fstatfs",              /* 100 */
+  "sys_ioperm",
+  "sys_socketcall",
+  "sys_syslog",
+  "sys_setitimer",
+  "sys_getitimer",              /* 105 */
+  "sys_newstat",
+  "sys_newlstat",
+  "sys_newfstat",
+  "sys_uname",
+  "sys_iopl",              /* 110 */
+  "sys_vhangup",
+  "sys_idle",
+  "sys_vm86old",
+  "sys_wait4",
+  "sys_swapoff",              /* 115 */
+  "sys_sysinfo",
+  "sys_ipc",
+  "sys_fsync",
+  "sys_sigreturn",
+  "sys_clone",              /* 120 */
+  "sys_setdomainname",
+  "sys_newuname",
+  "sys_modify_ldt",
+  "sys_adjtimex",
+  "sys_mprotect",              /* 125 */
+  "sys_sigprocmask",
+  "sys_create_module",
+  "sys_init_module",
+  "sys_delete_module",
+  "sys_get_kernel_syms", /* 130 */
+  "sys_quotactl",
+  "sys_getpgid",
+  "sys_fchdir",
+  "sys_bdflush",
+  "sys_sysfs",              /* 135 */
+  "sys_personality",
+  "sys_ni_syscall",
+  "sys_setfsuid",
+  "sys_setfsgid",
+  "sys_llseek",              /* 140 */
+  "sys_getdents",
+  "sys_select",
+  "sys_flock",
+  "sys_msync",
+  "sys_readv",              /* 145 */
+  "sys_writev",
+  "sys_getsid",
+  "sys_fdatasync",
+  "sys_sysctl",
+  "sys_mlock",              /* 150 */
+  "sys_munlock",
+  "sys_mlockall",
+  "sys_munlockall",
+  "sys_sched_setparam", 
+  "sys_sched_getparam",  /* 155 */
+  "sys_sched_setscheduler",
+  "sys_sched_getscheduler",
+  "sys_sched_yield",
+  "sys_sched_get_priority_max",
+  "sys_sched_get_priority_min", /* 160 */
+  "sys_sched_rr_get_interval",
+  "sys_nanosleep",
+  "sys_mremap",
+  "sys_setresuid",
+  "sys_getresuid",              /* 165 */
+  "sys_vm86",
+  "sys_query_module",
+  "sys_poll",
+  "sys_nfsservctl", 
+  "sys_setresgid",              /* 170 */
+  "sys_getresgid",
+  "sys_prctl",
+  "sys_rt_sigreturn",
+  "sys_rt_sigaction",
+  "sys_rt_sigprocmask", /* 175 */
+  "sys_rt_sigpending",
+  "sys_rt_sigtimedwait",
+  "sys_rt_sigqueueinfo",
+  "sys_rt_sigsuspend",
+  "sys_pread",              /* 180 */
+  "sys_pwrite",
+  "sys_chown",
+  "sys_getcwd",
+  "sys_capget",
+  "sys_capset",              /* 185 */
+  "sys_sigaltstack",
+  "sys_sendfile",
+  "sys_ni_syscall",
+  "sys_ni_syscall",
+  "sys_vfork",              /* 190 */
+  NULL
+};
+
+#if 0
+/* i386 sys_call_table for freebsd
+ */
+char * callz_fbsd[]={
+  "_sysent",          /*   0 */
+  "sys_exit",
+  "_fork",
+  "_read",
+  "_write",
+  "_open",            /*   5 */
+  "_close",
+  "_link",
+  "_unlink",
+  "_chdir",
+  "_fchdir",          /*  10 */
+  "_mknod",
+  "_chmod",
+  "_chown",
+  "_getpid",       
+  "_mount",           /*  15 */
+  "_unmount",
+  "_setuid",
+  "_getuid",
+  "_geteuid",
+  "_ioctl",           /*  20 */
+  "_fcntl",
+  "_setsockopt",
+  "_getsockopt",
+  "_getdirentries",
+  "_getdents",        /*  25 */
+  "_seteuid",
+  "_setegid",
+  "_modstat",
+  "_fstat",
+  "_modfind",         /*  30 */
+  "_getsid",
+  "_setsid",
+  "_kldload",
+  "_kldunload",
+  "_kldfind",         /*  35 */
+  "_kldnext",
+  "_kldstat",
+  "_kldfirstmod",
+  "_kldsym",
+  "___sysctl",	      /*  40 */
+  NULL
+};
+#endif
+
+
+/* i386 sys_call_table for freebsd
+ */
+char * callz_fbsd[]={
+  "_syscall",  /*	 0 */
+  "sys_exit",  /*	 1 */
+  "_fork",     /*	 2 */
+  "_read",     /*	 3 */
+  "_write",    /*	 4 */
+  "_open",     /*	 5 */
+  "_close",    /*	 6 */
+  "_wait4",    /*	 7 */
+  "_nosys",			/* 8 is old creat */
+  "_link",     /*	 9 */
+  "_unlink",   /*	10 */
+  "_nosys",			/* 11 is obsolete execv */
+  "_chdir",    /*	12 */
+  "_fchdir",   /*	13 */
+  "_mknod",    /*	14 */
+  "_chmod",    /*	15 */
+  "_chown",    /*	16 */
+  "_break",    /*	17 */
+  "_getfsstat",/*	18 */
+  "_nosys",	        	/* 19 is old lseek */
+  "_getpid",   /*	20 */
+  "_mount",    /*	21 */
+  "_unmount",  /*	22 */
+  "_setuid",   /*	23 */
+  "_getuid",   /*	24 */
+  "_geteuid",  /*	25 */
+  "_ptrace",   /*	26 */
+  "_recvmsg",  /*	27 */
+  "_sendmsg",  /*	28 */
+  "_recvfrom", /*	29 */
+  "_accept",   /*	30 */
+  "_getpeername", /*	31 */
+  "_getsockname", /*	32 */
+  "_access",   /*	33 */
+  "_chflags",  /*	34 */
+  "_fchflags", /*	35 */
+  "_sync",     /*	36 */
+  "_kill",     /*	37 */
+  "_nosys",			/* 38 is old stat */
+  "_getppid",  /*	39 */
+  "_nosys",		        /* 40 is old lstat */
+  "_dup",      /*	41 */
+  "_pipe",     /*	42 */
+  "_getegid",  /*	43 */
+  "_profil",   /*	44 */
+  "_ktrace",   /*	45 */
+  "_nosys",			/* 46 is old sigaction */
+  "_getgid",   /*	47 */
+  "_nosys",			/* 48 is old sigprocmask */
+  "_getlogin", /*	49 */
+  "_setlogin", /*	50 */
+  "_acct",     /*	51 */
+  "_nosys",			/* 52 is old sigpending */
+  "_sigaltstack", /*	53 */
+  "_ioctl",    /*	54 */
+  "_reboot",   /*	55 */
+  "_revoke",   /*	56 */
+  "_symlink",  /*	57 */
+  "_readlink", /*	58 */
+  "_execve",   /*	59 */
+  "_umask",    /*	60 */
+  "_chroot",   /*	61 */
+  "_nosys",			/* 62 is old fstat */
+  "_nosys",			/* 63 is old getkerninfo */
+  "_nosys",			/* 64 is old getpagesize */
+  "_msync",    /*	65 */
+  "_vfork",    /*	66 */
+  "_nosys",			/* 67 is obsolete vread */
+  "_nosys",			/* 68 is obsolete vwrite */
+  "_sbrk",     /*	69 */
+  "_sstk",     /*	70 */
+  "_nosys",			/* 71 is old mmap */
+  "_vadvise",  /*	72 */
+  "_munmap",   /*	73 */
+  "_mprotect", /*	74 */
+  "_madvise",  /*	75 */
+  "_nosys",			/* 76 is obsolete vhangup */
+  "_nosys",			/* 77 is obsolete vlimit */
+  "_mincore",  /*	78 */
+  "_getgroups",/*	79 */
+  "_setgroups",/*	80 */
+  "_getpgrp",  /*	81 */
+  "_setpgid",  /*	82 */
+  "_setitimer",/*	83 */
+  "_nosys",			/* 84 is old wait */
+  "_swapon",   /*	85 */
+  "_getitimer",/*	86 */
+  "_nosys",			/* 87 is old gethostname */
+  "_nosys",			/* 88 is old sethostname */
+  "_getdtablesize", /*	89 */
+  "_dup2",     /*	90 */
+  "_nosys",			/* 91 is ??? */
+  "_fcntl",    /*	92 */
+  "_select",   /*	93 */
+  "_nosys",			/* 94 is ??? */
+  "_fsync",    /*	95 */
+  "_setpriority", /*	96 */
+  "_socket",   /*	97 */
+  "_connect",  /*	98 */
+  "_nosys",			/* 99 is old accept */
+  "_getpriority", /*	100 */
+  "_nosys",			/* 101 is old send */
+  "_nosys",			/* 102 is old recv */
+  "_nosys",			/* 103 is old sigreturn */
+  "_bind",    /*	104 */
+  "_setsockopt", /*	105 */
+  "_listen",  /*	106 */
+  "_nosys",			/* 107 is obsolete vtimes */
+  "_nosys",			/* 108 is old sigvec */
+  "_nosys",			/* 109 is old sigblock */
+  "_nosys",			/* 110 is old sigsetmask */
+  "_nosys",			/* 111 is old sigsuspend */
+  "_nosys",			/* 112 is old sigstack */
+  "_nosys",			/* 113 is old recvmsg */
+  "_nosys",			/* 114 is old sendmsg */
+  "_nosys",			/* 115 is obsolete vtrace */
+  "_gettimeofday", /*	116 */ 
+  "_getrusage",    /*	117 */
+  "_getsockopt",   /*	118 */
+  "_nosys",			/* 119 is ??? */
+  "_readv",        /*	120 */
+  "_writev",       /*	121 */
+  "_settimeofday", /*	122 */
+  "_fchown",       /*	123 */
+  "_fchmod",       /*	124 */
+  "_nosys",			/* 125 is old recvfrom */
+  "_setreuid",     /*	126 */
+  "_setregid",     /*	127 */
+  "_rename",       /*	128 */
+  "_nosys",			/* 129 is old truncate */
+  "_nosys",			/* 130 is old ftruncate */
+  "_flock",        /*	131 */
+  "_mkfifo",       /*	132 */
+  "_sendto",       /*	133 */
+  "_shutdown",     /*	134 */
+  "_socketpair",   /*	135 */
+  "_mkdir",        /*	136 */
+  "_rmdir",        /*	137 */
+  "_utimes",       /*	138 */
+  "_nosys",			/* 139 is obsolete 4.2 sigreturn */
+  "_adjtime",      /*	140 */
+  "_nosys",			/* 141 is old getpeername */
+  "_nosys",			/* 142 is old gethostid */
+  "_nosys",			/* 143 is old sethostid */
+  "_nosys",			/* 144 is old getrlimit */
+  "_nosys",			/* 145 is old setrlimit */
+  "_nosys",			/* 146 is old killpg */
+  "_setsid",       /*	147 */
+  "_quotactl",     /*	148 */
+  "_nosys",			/* 149 is old quota */
+  "_nosys",			/* 150 is old getsockname */
+  "_nosys",			/* 151 is ??? */
+  "_nosys",			/* 152 is ??? */
+  "_nosys",			/* 153 is ??? */
+  "_nosys",			/* 154 is ??? */
+  "_nfssvc",       /*	155 */
+  "_nosys",		        /* 156 is old getdirentries */
+  "_statfs",       /*	157 */
+  "_fstatfs",      /*	158 */
+  "_nosys",			/* 159 is ??? */
+  "_nosys",			/* 160 is ??? */
+  "_getfh",        /*	161 */
+  "_getdomainname", /*	162 */
+  "_setdomainname", /*	163 */
+  "_uname",        /*	164 */
+  "_sysarch",      /*	165 */
+  "_rtprio",       /*	166 */
+  "_nosys",			/* 167 is ??? */
+  "_nosys",			/* 168 is ??? */
+  "_semsys",       /*	169 */
+  "_msgsys",       /*	170 */
+  "_shmsys",       /*	171 */
+  "_nosys",			/* 172 is ??? */
+  "_pread",        /*	173 */
+  "_pwrite",       /*	174 */
+  "_nosys",			/* 175 is ??? */
+  "_ntp_adjtime",  /*	176 */
+  "_nosys",			/* 177 is ??? */
+  "_nosys",			/* 178 is ??? */
+  "_nosys",			/* 179 is ??? */
+  "_nosys",			/* 180 is ??? */
+  "_setgid",       /*	181 */
+  "_setegid",      /*	182 */
+  "_seteuid",      /*	183 */
+  "_nosys",			/* 184 is ??? */
+  "_nosys",			/* 185 is ??? */
+  "_nosys",			/* 186 is ??? */
+  "_nosys",			/* 187 is ??? */
+  "_stat",         /*	188 */
+  "_fstat",        /*	189 */
+  "_lstat",        /*	190 */
+  "_pathconf",     /*	191 */
+  "_fpathconf",    /*	192 */
+  "_nosys",			/* 193 is ??? */
+  "_getrlimit",    /*	194 */
+  "_setrlimit",    /*	195 */
+  "_getdirentries", /*	196 */
+  "_mmap",         /*	197 */
+  "___syscall",    /*	198 */
+  "_lseek",        /*	199 */
+  "_truncate",     /*	200 */
+  "_ftruncate",    /*	201 */
+  "___sysctl",     /*	202 */
+  "_mlock",        /*	203 */
+  "_munlock",      /*	204 */
+  "_undelete",     /*	205 */
+  "_futimes",      /*	206 */
+  "_getpgid",      /*	207 */
+  "_nosys",			/* 208 is ??? */
+  "_poll",         /*	209 */
+  "_nosys",			/* 210 is ??? */
+  "_nosys",			/* 211 is ??? */
+  "_nosys",			/* 212 is ??? */
+  "_nosys",			/* 213 is ??? */
+  "_nosys",			/* 214 is ??? */
+  "_nosys",			/* 215 is ??? */
+  "_nosys",			/* 216 is ??? */
+  "_nosys",			/* 217 is ??? */
+  "_nosys",			/* 218 is ??? */
+  "_nosys",			/* 219 is ??? */
+  "___semctl",     /*	220 */
+  "_semget",       /*	221 */
+  "_semop",        /*	222 */
+  "_nosys",			/* 223 is ??? */
+  "_msgctl",       /*	224 */
+  "_msgget",       /*	225 */
+  "_msgsnd",       /*	226 */
+  "_msgrcv",       /*	227 */
+  "_shmat",        /*	228 */
+  "_shmctl",       /*	229 */
+  "_shmdt",        /*	230 */
+  "_shmget",       /*	231 */
+  "_clock_gettime", /*	232 */
+  "_clock_settime", /*	233 */
+  "_clock_getres", /*	234 */
+  "_nosys",			/* 235 is ??? */
+  "_nosys",			/* 236 is ??? */
+  "_nosys",			/* 237 is ??? */
+  "_nosys",			/* 238 is ??? */
+  "_nosys",			/* 239 is ??? */
+  "_nanosleep",    /*	240 */
+  "_nosys",			/* 241 is ??? */
+  "_nosys",			/* 242 is ??? */
+  "_nosys",			/* 243 is ??? */
+  "_nosys",			/* 244 is ??? */
+  "_nosys",			/* 245 is ??? */
+  "_nosys",			/* 246 is ??? */
+  "_nosys",			/* 247 is ??? */
+  "_nosys",			/* 248 is ??? */
+  "_nosys",			/* 249 is ??? */
+  "_minherit",     /*	250 */
+  "_rfork",        /*	251 */
+  "_openbsd_poll", /*	252 */
+  "_issetugid",    /*	253 */
+  "_lchown",       /*	254 */
+  "_nosys",			/* 255 is ??? */
+  "_nosys",			/* 256 is ??? */
+  "_nosys",			/* 257 is ??? */
+  "_nosys",			/* 258 is ??? */
+  "_nosys",			/* 259 is ??? */
+  "_nosys",			/* 260 is ??? */
+  "_nosys",			/* 261 is ??? */
+  "_nosys",			/* 262 is ??? */
+  "_nosys",			/* 263 is ??? */
+  "_nosys",			/* 264 is ??? */
+  "_nosys",			/* 265 is ??? */
+  "_nosys",			/* 266 is ??? */
+  "_nosys",			/* 267 is ??? */
+  "_nosys",			/* 268 is ??? */
+  "_nosys",			/* 269 is ??? */
+  "_nosys",			/* 270 is ??? */
+  "_nosys",			/* 271 is ??? */
+  "_getdents",     /*	272 */
+  "_nosys",			/* 273 is ??? */
+  "_lchmod",       /*	274 */
+  "_netbsd_lchown", /*	275 */
+  "_lutimes",      /*	276 */
+  "_netbsd_msync", /*	277 */
+  "_nstat",        /*	278 */
+  "_nfstat",       /*	279 */
+  "_nlstat",       /*	280 */
+  "_nosys",			/* 281 is ??? */
+  "_nosys",			/* 282 is ??? */
+  "_nosys",			/* 283 is ??? */
+  "_nosys",			/* 284 is ??? */
+  "_nosys",			/* 285 is ??? */
+  "_nosys",			/* 286 is ??? */
+  "_nosys",			/* 287 is ??? */
+  "_nosys",			/* 288 is ??? */
+  "_nosys",			/* 289 is ??? */
+  "_nosys",			/* 290 is ??? */
+  "_nosys",			/* 291 is ??? */
+  "_nosys",			/* 292 is ??? */
+  "_nosys",			/* 293 is ??? */
+  "_nosys",			/* 294 is ??? */
+  "_nosys",			/* 295 is ??? */
+  "_nosys",			/* 296 is ??? */
+  "_fhstatfs",     /*	297 */
+  "_fhopen",       /*	298 */
+  "_fhstat",       /*	299 */
+  "_modnext",      /*	300 */
+  "_modstat",      /*	301 */
+  "_modfnext",     /*	302 */
+  "_modfind",      /*	303 */
+  "_kldload",      /*	304 */
+  "_kldunload",    /*	305 */
+  "_kldfind",      /*	306 */
+  "_kldnext",      /*	307 */
+  "_kldstat",      /*	308 */
+  "_kldfirstmod",  /*	309 */
+  "_getsid",       /*	310 */
+  "_setresuid",    /*	311 */
+  "_setresgid",    /*	312 */
+  "_nosys",			/* 313 is obsolete signanosleep */
+  "_aio_return",   /*	314 */
+  "_aio_suspend",  /*	315 */
+  "_aio_cancel",   /*	316 */
+  "_aio_error",    /*	317 */
+  "_aio_read",     /*	318 */
+  "_aio_write",    /*	319 */
+  "_lio_listio",   /*	320 */
+  "_yield",        /*	321 */
+  "_thr_sleep",    /*	322 */
+  "_thr_wakeup",   /*	323 */
+  "_mlockall",     /*	324 */
+  "_munlockall",   /*	325 */
+  "___getcwd",     /*	326 */
+  "_sched_setparam", /*	327 */
+  "_sched_getparam", /*	328 */
+  "_sched_setscheduler", /*	329 */
+  "_sched_getscheduler", /*	330 */
+  "_sched_yield",  /*	331 */
+  "_sched_get_priority_max", /*	332 */
+  "_sched_get_priority_min", /*	333 */
+  "_sched_rr_get_interval", /*	334 */
+  "_utrace",       /*	335 */
+  "_sendfile",     /*	336 */
+  "_kldsym",       /*	337 */
+  "_jail",         /*	338 */
+  "_nosys",			/* 339 is ??? */
+  "_sigprocmask",  /*	340 */
+  "_sigsuspend",   /*	341 */
+  "_sigaction",    /*	342 */
+  "_sigpending",   /*	343 */
+  "_sigreturn",    /*	344 */
+  "_nosys",			/* 345 is ??? */
+  "_nosys",			/* 346 is ??? */
+  "___acl_get_file", /*	347 */
+  "___acl_set_file", /*	348 */
+  "___acl_get_fd", /*	349 */
+  "___acl_set_fd", /*	350 */
+  "___acl_delete_file", /*	351 */
+  "___acl_delete_fd",   /*	352 */
+  "___acl_aclcheck_file", /*	353 */
+  "___acl_aclcheck_fd", /*	354 */
+  "_extattrctl",   /*	355 */
+  "_extattr_set_file", /*	356 */
+  "_extattr_get_file", /*	357 */
+  "_extattr_delete_file", /*	358 */
+  "_aio_waitcomplete", /*	359 */
+  "_getresuid",    /*	360 */
+  "_getresgid",    /*	361 */
+  "_kqueue",       /*	362 */
+  "_kevent",       /*	363 */
+  "_nosys",			/* 364 is ??? */
+  "_nosys",			/* 365 is ??? */
+  "_nosys",			/* 366 is ??? */
+  "_nosys",			/* 367 is ??? */
+  "_nosys",			/* 368 is ??? */
+  "_nosys",			/* 369 is ??? */
+  "_nosys",			/* 370 is ??? */
+  "_nosys",			/* 371 is ??? */
+  "_nosys",			/* 372 is ??? */
+  "_nosys",			/* 373 is ??? */
+  "_nosys",			/* 374 is ??? */
+  "_nosys",			/* 375 is ??? */
+  "_nosys",			/* 376 is ??? */
+  "_nosys",			/* 377 is ??? */
+  "_nosys",			/* 378 is ??? */
+  "_nosys",			/* 379 is ??? */
+  "_nosys",			/* 380 is ??? */
+  "_nosys",			/* 381 is ??? */
+  "_nosys",			/* 382 is ??? */
+  "_nosys",			/* 383 is ??? */
+  "_nosys",			/* 384 is ??? */
+  "_nosys",			/* 385 is ??? */
+  "_nosys",			/* 386 is ??? */
+  "_nosys",			/* 387 is ??? */
+  "_nosys",			/* 388 is ??? */
+  "_nosys",			/* 389 is ??? */
+  "_nosys",			/* 390 is ??? */
+  "_nosys",			/* 391 is ??? */
+  "_nosys",			/* 392 is ??? */
+  "_sendfile",	/* 393 */
+  NULL
+};
+
+/* i386 sys_call_table for freebsd
+ */
+char * callz_fbsd5[]={
+  "_syscall",  /*	 0 */
+  "sys_exit",  /*	 1 */
+  "_fork",     /*	 2 */
+  "_read",     /*	 3 */
+  "_write",    /*	 4 */
+  "_open",     /*	 5 */
+  "_close",    /*	 6 */
+  "_wait4",    /*	 7 */
+  "_nosys",			/* 8 is old creat */
+  "_link",     /*	 9 */
+  "_unlink",   /*	10 */
+  "_nosys",			/* 11 is obsolete execv */
+  "_chdir",    /*	12 */
+  "_fchdir",   /*	13 */
+  "_mknod",    /*	14 */
+  "_chmod",    /*	15 */
+  "_chown",    /*	16 */
+  "_break",    /*	17 */
+  "_nosys",                     /* 18 is old getfsstat */
+  "_nosys",	        	/* 19 is old lseek */
+  "_getpid",   /*	20 */
+  "_mount",    /*	21 */
+  "_unmount",  /*	22 */
+  "_setuid",   /*	23 */
+  "_getuid",   /*	24 */
+  "_geteuid",  /*	25 */
+  "_ptrace",   /*	26 */
+  "_recvmsg",  /*	27 */
+  "_sendmsg",  /*	28 */
+  "_recvfrom", /*	29 */
+  "_accept",   /*	30 */
+  "_getpeername", /*	31 */
+  "_getsockname", /*	32 */
+  "_access",   /*	33 */
+  "_chflags",  /*	34 */
+  "_fchflags", /*	35 */
+  "_sync",     /*	36 */
+  "_kill",     /*	37 */
+  "_nosys",			/* 38 is old stat */
+  "_getppid",  /*	39 */
+  "_nosys",		        /* 40 is old lstat */
+  "_dup",      /*	41 */
+  "_pipe",     /*	42 */
+  "_getegid",  /*	43 */
+  "_profil",   /*	44 */
+  "_ktrace",   /*	45 */
+  "_nosys",			/* 46 is old sigaction */
+  "_getgid",   /*	47 */
+  "_nosys",			/* 48 is old sigprocmask */
+  "_getlogin", /*	49 */
+  "_setlogin", /*	50 */
+  "_acct",     /*	51 */
+  "_nosys",			/* 52 is old sigpending */
+  "_sigaltstack", /*	53 */
+  "_ioctl",    /*	54 */
+  "_reboot",   /*	55 */
+  "_revoke",   /*	56 */
+  "_symlink",  /*	57 */
+  "_readlink", /*	58 */
+  "_execve",   /*	59 */
+  "_umask",    /*	60 */
+  "_chroot",   /*	61 */
+  "_nosys",			/* 62 is old fstat */
+  "_nosys",			/* 63 is old getkerninfo */
+  "_nosys",			/* 64 is old getpagesize */
+  "_msync",    /*	65 */
+  "_vfork",    /*	66 */
+  "_nosys",			/* 67 is obsolete vread */
+  "_nosys",			/* 68 is obsolete vwrite */
+  "_sbrk",     /*	69 */
+  "_sstk",     /*	70 */
+  "_nosys",			/* 71 is old mmap */
+  "_vadvise",  /*	72 */
+  "_munmap",   /*	73 */
+  "_mprotect", /*	74 */
+  "_madvise",  /*	75 */
+  "_nosys",			/* 76 is obsolete vhangup */
+  "_nosys",			/* 77 is obsolete vlimit */
+  "_mincore",  /*	78 */
+  "_getgroups",/*	79 */
+  "_setgroups",/*	80 */
+  "_getpgrp",  /*	81 */
+  "_setpgid",  /*	82 */
+  "_setitimer",/*	83 */
+  "_nosys",			/* 84 is old wait */
+  "_swapon",   /*	85 */
+  "_getitimer",/*	86 */
+  "_nosys",			/* 87 is old gethostname */
+  "_nosys",			/* 88 is old sethostname */
+  "_getdtablesize", /*	89 */
+  "_dup2",     /*	90 */
+  "_nosys",			/* 91 is ??? */
+  "_fcntl",    /*	92 */
+  "_select",   /*	93 */
+  "_nosys",			/* 94 is ??? */
+  "_fsync",    /*	95 */
+  "_setpriority", /*	96 */
+  "_socket",   /*	97 */
+  "_connect",  /*	98 */
+  "_nosys",			/* 99 is old accept */
+  "_getpriority", /*	100 */
+  "_nosys",			/* 101 is old send */
+  "_nosys",			/* 102 is old recv */
+  "_nosys",			/* 103 is old sigreturn */
+  "_bind",    /*	104 */
+  "_setsockopt", /*	105 */
+  "_listen",  /*	106 */
+  "_nosys",			/* 107 is obsolete vtimes */
+  "_nosys",			/* 108 is old sigvec */
+  "_nosys",			/* 109 is old sigblock */
+  "_nosys",			/* 110 is old sigsetmask */
+  "_nosys",			/* 111 is old sigsuspend */
+  "_nosys",			/* 112 is old sigstack */
+  "_nosys",			/* 113 is old recvmsg */
+  "_nosys",			/* 114 is old sendmsg */
+  "_nosys",			/* 115 is obsolete vtrace */
+  "_gettimeofday", /*	116 */ 
+  "_getrusage",    /*	117 */
+  "_getsockopt",   /*	118 */
+  "_nosys",			/* 119 is ??? */
+  "_readv",        /*	120 */
+  "_writev",       /*	121 */
+  "_settimeofday", /*	122 */
+  "_fchown",       /*	123 */
+  "_fchmod",       /*	124 */
+  "_nosys",			/* 125 is old recvfrom */
+  "_setreuid",     /*	126 */
+  "_setregid",     /*	127 */
+  "_rename",       /*	128 */
+  "_nosys",			/* 129 is old truncate */
+  "_nosys",			/* 130 is old ftruncate */
+  "_flock",        /*	131 */
+  "_mkfifo",       /*	132 */
+  "_sendto",       /*	133 */
+  "_shutdown",     /*	134 */
+  "_socketpair",   /*	135 */
+  "_mkdir",        /*	136 */
+  "_rmdir",        /*	137 */
+  "_utimes",       /*	138 */
+  "_nosys",			/* 139 is obsolete 4.2 sigreturn */
+  "_adjtime",      /*	140 */
+  "_nosys",			/* 141 is old getpeername */
+  "_nosys",			/* 142 is old gethostid */
+  "_nosys",			/* 143 is old sethostid */
+  "_nosys",			/* 144 is old getrlimit */
+  "_nosys",			/* 145 is old setrlimit */
+  "_nosys",			/* 146 is old killpg */
+  "_setsid",       /*	147 */
+  "_quotactl",     /*	148 */
+  "_nosys",			/* 149 is old quota */
+  "_nosys",			/* 150 is old getsockname */
+  "_nosys",			/* 151 is ??? */
+  "_nosys",			/* 152 is ??? */
+  "_nosys",			/* 153 is ??? */
+  "_nosys",			/* 154 is ??? */
+  "_nfssvc",       /*	155 */
+  "_nosys",		        /* 156 is old getdirentries */
+  "_nosys",                     /* 157 is old statfs */
+  "_nosys",                     /* 158 is old fstatfs */
+  "_nosys",			/* 159 is ??? */
+  "_lgetfh",       /*   160 */
+  "_getfh",        /*	161 */
+  "_getdomainname", /*	162 */
+  "_setdomainname", /*	163 */
+  "_uname",        /*	164 */
+  "_sysarch",      /*	165 */
+  "_rtprio",       /*	166 */
+  "_nosys",			/* 167 is ??? */
+  "_nosys",			/* 168 is ??? */
+  "_semsys",       /*	169 */
+  "_msgsys",       /*	170 */
+  "_shmsys",       /*	171 */
+  "_nosys",			/* 172 is ??? */
+  "_pread",        /*	173 */
+  "_pwrite",       /*	174 */
+  "_nosys",			/* 175 is ??? */
+  "_ntp_adjtime",  /*	176 */
+  "_nosys",			/* 177 is ??? */
+  "_nosys",			/* 178 is ??? */
+  "_nosys",			/* 179 is ??? */
+  "_nosys",			/* 180 is ??? */
+  "_setgid",       /*	181 */
+  "_setegid",      /*	182 */
+  "_seteuid",      /*	183 */
+  "_nosys",			/* 184 is ??? */
+  "_nosys",			/* 185 is ??? */
+  "_nosys",			/* 186 is ??? */
+  "_nosys",			/* 187 is ??? */
+  "_stat",         /*	188 */
+  "_fstat",        /*	189 */
+  "_lstat",        /*	190 */
+  "_pathconf",     /*	191 */
+  "_fpathconf",    /*	192 */
+  "_nosys",			/* 193 is ??? */
+  "_getrlimit",    /*	194 */
+  "_setrlimit",    /*	195 */
+  "_getdirentries", /*	196 */
+  "_mmap",         /*	197 */
+  "___syscall",    /*	198 */
+  "_lseek",        /*	199 */
+  "_truncate",     /*	200 */
+  "_ftruncate",    /*	201 */
+  "___sysctl",     /*	202 */
+  "_mlock",        /*	203 */
+  "_munlock",      /*	204 */
+  "_undelete",     /*	205 */
+  "_futimes",      /*	206 */
+  "_getpgid",      /*	207 */
+  "_nosys",			/* 208 is ??? */
+  "_poll",         /*	209 */
+  "_nosys",			/* 210 is ??? */
+  "_nosys",			/* 211 is ??? */
+  "_nosys",			/* 212 is ??? */
+  "_nosys",			/* 213 is ??? */
+  "_nosys",			/* 214 is ??? */
+  "_nosys",			/* 215 is ??? */
+  "_nosys",			/* 216 is ??? */
+  "_nosys",			/* 217 is ??? */
+  "_nosys",			/* 218 is ??? */
+  "_nosys",			/* 219 is ??? */
+  "___semctl",     /*	220 */
+  "_semget",       /*	221 */
+  "_semop",        /*	222 */
+  "_nosys",			/* 223 is ??? */
+  "_msgctl",       /*	224 */
+  "_msgget",       /*	225 */
+  "_msgsnd",       /*	226 */
+  "_msgrcv",       /*	227 */
+  "_shmat",        /*	228 */
+  "_shmctl",       /*	229 */
+  "_shmdt",        /*	230 */
+  "_shmget",       /*	231 */
+  "_clock_gettime", /*	232 */
+  "_clock_settime", /*	233 */
+  "_clock_getres", /*	234 */
+  "_nosys",			/* 235 is ??? */
+  "_nosys",			/* 236 is ??? */
+  "_nosys",			/* 237 is ??? */
+  "_nosys",			/* 238 is ??? */
+  "_nosys",			/* 239 is ??? */
+  "_nanosleep",    /*	240 */
+  "_nosys",			/* 241 is ??? */
+  "_nosys",			/* 242 is ??? */
+  "_nosys",			/* 243 is ??? */
+  "_nosys",			/* 244 is ??? */
+  "_nosys",			/* 245 is ??? */
+  "_nosys",			/* 246 is ??? */
+  "_nosys",			/* 247 is ??? */
+  "_nosys",			/* 248 is ??? */
+  "_nosys",			/* 249 is ??? */
+  "_minherit",     /*	250 */
+  "_rfork",        /*	251 */
+  "_openbsd_poll", /*	252 */
+  "_issetugid",    /*	253 */
+  "_lchown",       /*	254 */
+  "_nosys",			/* 255 is ??? */
+  "_nosys",			/* 256 is ??? */
+  "_nosys",			/* 257 is ??? */
+  "_nosys",			/* 258 is ??? */
+  "_nosys",			/* 259 is ??? */
+  "_nosys",			/* 260 is ??? */
+  "_nosys",			/* 261 is ??? */
+  "_nosys",			/* 262 is ??? */
+  "_nosys",			/* 263 is ??? */
+  "_nosys",			/* 264 is ??? */
+  "_nosys",			/* 265 is ??? */
+  "_nosys",			/* 266 is ??? */
+  "_nosys",			/* 267 is ??? */
+  "_nosys",			/* 268 is ??? */
+  "_nosys",			/* 269 is ??? */
+  "_nosys",			/* 270 is ??? */
+  "_nosys",			/* 271 is ??? */
+  "_getdents",     /*	272 */
+  "_nosys",			/* 273 is ??? */
+  "_lchmod",       /*	274 */
+  "_netbsd_lchown", /*	275 */
+  "_lutimes",      /*	276 */
+  "_netbsd_msync", /*	277 */
+  "_nstat",        /*	278 */
+  "_nfstat",       /*	279 */
+  "_nlstat",       /*	280 */
+  "_nosys",			/* 281 is ??? */
+  "_nosys",			/* 282 is ??? */
+  "_nosys",			/* 283 is ??? */
+  "_nosys",			/* 284 is ??? */
+  "_nosys",			/* 285 is ??? */
+  "_nosys",			/* 286 is ??? */
+  "_nosys",			/* 287 is ??? */
+  "_nosys",			/* 288 is ??? */
+  "_nosys",			/* 289 is ??? */
+  "_nosys",			/* 290 is ??? */
+  "_nosys",			/* 291 is ??? */
+  "_nosys",			/* 292 is ??? */
+  "_nosys",			/* 293 is ??? */
+  "_nosys",			/* 294 is ??? */
+  "_nosys",			/* 295 is ??? */
+  "_nosys",			/* 296 is ??? */
+  "_nosys",                     /* 297 is old fhstatfs */
+  "_fhopen",       /*	298 */
+  "_fhstat",       /*	299 */
+  "_modnext",      /*	300 */
+  "_modstat",      /*	301 */
+  "_modfnext",     /*	302 */
+  "_modfind",      /*	303 */
+  "_kldload",      /*	304 */
+  "_kldunload",    /*	305 */
+  "_kldfind",      /*	306 */
+  "_kldnext",      /*	307 */
+  "_kldstat",      /*	308 */
+  "_kldfirstmod",  /*	309 */
+  "_getsid",       /*	310 */
+  "_setresuid",    /*	311 */
+  "_setresgid",    /*	312 */
+  "_nosys",			/* 313 is obsolete signanosleep */
+  "_aio_return",   /*	314 */
+  "_aio_suspend",  /*	315 */
+  "_aio_cancel",   /*	316 */
+  "_aio_error",    /*	317 */
+  "_aio_read",     /*	318 */
+  "_aio_write",    /*	319 */
+  "_lio_listio",   /*	320 */
+  "_yield",        /*	321 */
+  "_thr_sleep",    /*	322 */
+  "_thr_wakeup",   /*	323 */
+  "_mlockall",     /*	324 */
+  "_munlockall",   /*	325 */
+  "___getcwd",     /*	326 */
+  "_sched_setparam", /*	327 */
+  "_sched_getparam", /*	328 */
+  "_sched_setscheduler", /*	329 */
+  "_sched_getscheduler", /*	330 */
+  "_sched_yield",  /*	331 */
+  "_sched_get_priority_max", /*	332 */
+  "_sched_get_priority_min", /*	333 */
+  "_sched_rr_get_interval", /*	334 */
+  "_utrace",       /*	335 */
+  "_nosys",                  /* 336 is old sendfile */
+  "_kldsym",       /*	337 */
+  "_jail",         /*	338 */
+  "_nosys",			/* 339 is ??? */
+  "_sigprocmask",  /*	340 */
+  "_sigsuspend",   /*	341 */
+  "_nosys",                     /* 342 is old sigaction */
+  "_sigpending",   /*	343 */
+  "_nosys",                     /* 344 is old sigreturn */
+  "_sigtimedwait", /*   345 */
+  "_sigwaitinfo",  /*   346 */
+  "___acl_get_file", /*	347 */
+  "___acl_set_file", /*	348 */
+  "___acl_get_fd", /*	349 */
+  "___acl_set_fd", /*	350 */
+  "___acl_delete_file", /*	351 */
+  "___acl_delete_fd",   /*	352 */
+  "___acl_aclcheck_file", /*	353 */
+  "___acl_aclcheck_fd", /*	354 */
+  "_extattrctl",   /*	355 */
+  "_extattr_set_file", /*	356 */
+  "_extattr_get_file", /*	357 */
+  "_extattr_delete_file", /*	358 */
+  "_aio_waitcomplete", /*	359 */
+  "_getresuid",    /*	360 */
+  "_getresgid",    /*	361 */
+  "_kqueue",       /*	362 */
+  "_kevent",       /*	363 */
+  "_nosys",			/* 364 is ??? */
+  "_nosys",			/* 365 is ??? */
+  "_nosys",			/* 366 is ??? */
+  "_nosys",			/* 367 is ??? */
+  "_nosys",			/* 368 is ??? */
+  "_nosys",			/* 369 is ??? */
+  "_nosys",			/* 370 is ??? */
+  "_extattr_set_fd",            /* 371 */
+  "_extattr_get_fd",            /* 372 */
+  "_extattr_delete_fd",         /* 373 */
+  "___setugid",                 /* 374 */
+  "_nfsclnt",                   /* 375 */
+  "_eaccess",                   /* 376 */
+  "_nosys",			/* 377 is ??? */
+  "_nmount",                    /* 378 */
+  "_kse_exit",                  /* 379 */
+  "_kse_wakeup",                /* 380 */
+  "_kse_create",                /* 381 */
+  "_kse_thr_interrupt",         /* 382 */
+  "_kse_release",               /* 383 */
+  "___mac_get_proc",            /* 384 */
+  "___mac_set_proc",            /* 385 */
+  "___mac_get_fd",              /* 386 */
+  "___mac_get_file",            /* 387 */
+  "___mac_set_fd",              /* 388 */
+  "___mac_set_file",            /* 389 */
+  "_kenv",			/* 390 */
+  "_lchflags",                  /* 391 */
+  "_uuidgen",                   /* 392 */
+  "_sendfile",	  /* 393 */
+  "_mac_syscall",	  /* 394 */
+  "_getfsstat",	  /* 395 */
+  "_statfs",	  /* 396 */
+  "_fstatfs",	  /* 397 */
+  "_fhstatfs",	  /* 398 */
+  "_nosys",	  /* 399 */
+  "_ksem_close",  /* 400 */
+  "_ksem_post",	  /* 401 */
+  "_ksem_wait",	  /* 402 */
+  "_ksem_trywait",	  /* 403 */
+  "_ksem_init",	  /* 404 */
+  "_ksem_open",	  /* 405 */
+  "_ksem_unlink",	  /* 406 */
+  "_ksem_getvalue",	  /* 407 */
+  "_ksem_destroy",	  /* 408 */
+  "___mac_get_pid",	  /* 409 */
+  "___mac_get_link",	  /* 410 */
+  "___mac_set_link",	  /* 411 */
+  "_extattr_set_link",	  /* 412 */
+  "_extattr_get_link",	  /* 413 */
+  "_extattr_delete_link",	  /* 414 */
+  "___mac_execve",	  /* 415 */
+  "_sigaction",	  /* 416 */
+  "_sigreturn",	  /* 417 */
+  "_nosys",	  /* 418 */
+  "_nosys",	  /* 419 */
+  "_nosys",	  /* 420 */
+  "_getcontext",	  /* 421 */
+  "_setcontext",	  /* 422 */
+  "_swapcontext",	  /* 423 */
+  "_swapoff",	  /* 424 */
+  "___acl_get_link",	  /* 425 */
+  "___acl_set_link",	  /* 426 */
+  "___acl_delete_link",	  /* 427 */
+  "___acl_aclcheck_link",	  /* 428 */
+  "_sigwait",	  /* 429 */
+  "_thr_create",	  /* 430 */
+  "_thr_exit",	  /* 431 */
+  "_thr_self",	  /* 432 */
+  "_thr_kill",	  /* 433 */
+  "__umtx_lock",	  /* 434 */
+  "__umtx_unlock",	  /* 435 */
+  "_jail_attach",	  /* 436 */
+  "_extattr_list_fd",	  /* 437 */
+  "_extattr_list_file",	  /* 438 */
+  "_extattr_list_link",	  /* 439 */
+  "_kse_switchin",        /* 440 */
+  "_ksem_timedwait",      /* 441 */
+  "_thr_suspend",         /* 442 */
+  "_thr_wake",            /* 443 */
+  "_kldunloadf",          /* 444 */
+  NULL
+};
+
Index: trunk/include/rijndael-alg-fst.h
===================================================================
--- trunk/include/rijndael-alg-fst.h	(revision 591)
+++ trunk/include/rijndael-alg-fst.h	(revision 1)
@@ -1,44 +1,41 @@
-/*	$NetBSD: rijndael-alg-fst.h,v 1.4 2005/12/11 12:20:52 christos Exp $	*/
-/*	$KAME: rijndael-alg-fst.h,v 1.5 2003/07/15 10:47:16 itojun Exp $	*/
-/**
- * rijndael-alg-fst.h
+/*
+ * rijndael-alg-fst.h   v2.3   April '2000
  *
- * @version 3.0 (December 2000)
+ * Optimised ANSI C code
  *
- * Optimised ANSI C code for the Rijndael cipher (now AES)
- *
- * @author Vincent Rijmen 
- * @author Antoon Bosselaers 
- * @author Paulo Barreto 
- *
- * This code is hereby placed in the public domain.
- *
- * THIS SOFTWARE IS PROVIDED BY THE AUTHORS ''AS IS'' AND ANY EXPRESS
- * OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
- * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHORS OR CONTRIBUTORS BE
- * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
- * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
- * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
- * BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
- * WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
- * OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE,
- * EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
  */
+
+/*@-fixedformalarray@*/
+
 #ifndef __RIJNDAEL_ALG_FST_H
 #define __RIJNDAEL_ALG_FST_H
 
-#define RIJNDAEL_MAXKC	(256/32)
-#define RIJNDAEL_MAXKB	(256/8)
-#define RIJNDAEL_MAXNR	14
+#define MAXKC			(256/32)
+#define MAXROUNDS		14
+
+/* USUAL_TYPES */
+#ifndef USUAL_TYPES
+#define USUAL_TYPES
+typedef unsigned char	byte;
+typedef unsigned char	word8;	
+typedef unsigned short	word16;	
+typedef unsigned int	word32;
+#endif 
 
 #ifdef SH_ENCRYPT
 
-int rijndaelKeySetupEnc(u32 rk[/*4*(Nr + 1)*/], const u8 cipherKey[], int keyBits);
-int rijndaelKeySetupDec(u32 rk[/*4*(Nr + 1)*/], const u8 cipherKey[], int keyBits);
-void rijndaelEncrypt(const u32 rk[/*4*(Nr + 1)*/], int Nr, const u8 pt[16], u8 ct[16]);
-void rijndaelDecrypt(const u32 rk[/*4*(Nr + 1)*/], int Nr, const u8 ct[16], u8 pt[16]);
+int rijndaelKeySched(word8 k[MAXKC][4], word8 rk[MAXROUNDS+1][4][4], int ROUNDS);
+
+int rijndaelKeyEncToDec(word8 W[MAXROUNDS+1][4][4], int ROUNDS);
+
+int rijndaelEncrypt(word8 a[16], word8 b[16], word8 rk[MAXROUNDS+1][4][4], int ROUNDS);
+
+
+int rijndaelDecrypt(word8 a[16], word8 b[16], word8 rk[MAXROUNDS+1][4][4], int ROUNDS);
 
 /* SH_ENCRYPT */
 #endif
-#endif /* __RIJNDAEL_ALG_FST_H */
+
+/* __RIJNDAEL_ALG_FST_H */
+#endif 
+
Index: trunk/include/rijndael-api-fst.h
===================================================================
--- trunk/include/rijndael-api-fst.h	(revision 591)
+++ trunk/include/rijndael-api-fst.h	(revision 1)
@@ -1,39 +1,7 @@
-/*	$NetBSD: rijndael-api-fst.h,v 1.8 2007/01/21 23:00:08 cbiere Exp $	*/
-
-/**
- * rijndael-api-fst.h
+/*
+ * rijndael-api-fst.h   v2.3   April '2000
  *
- * @version 2.9 (December 2000)
+ * Optimised ANSI C code
  *
- * Optimised ANSI C code for the Rijndael cipher (now AES)
- *
- * @author Vincent Rijmen 
- * @author Antoon Bosselaers 
- * @author Paulo Barreto 
- *
- * This code is hereby placed in the public domain.
- *
- * THIS SOFTWARE IS PROVIDED BY THE AUTHORS ''AS IS'' AND ANY EXPRESS
- * OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
- * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHORS OR CONTRIBUTORS BE
- * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
- * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
- * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
- * BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
- * WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
- * OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE,
- * EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
- *
- * Acknowledgements:
- *
- * We are deeply indebted to the following people for their bug reports,
- * fixes, and improvement suggestions to this implementation. Though we
- * tried to list all contributions, we apologise in advance for any
- * missing reference.
- *
- * Andrew Bales 
- * Markus Friedl 
- * John Skodon 
  */
 
@@ -41,30 +9,15 @@
 #define __RIJNDAEL_API_FST_H
 
-/* Blocksize: 16 * 8 = 128; 128 * 1 = 128 */
-#define     B_SIZ    16
-#define     BNUM      1
+#include "rijndael-alg-fst.h"
+
+/*  Defines:
+    Add any additional defines you need
+*/
+
+#define     BNUM                  1
+#define     B_SIZ                 16
+#define     STRICT_ALIGN          1 /*  For safety          */
 
 
-#if defined(UINT32)
-typedef unsigned char u8;
-typedef UINT32 u32;
-#else
-
-typedef unsigned char u8;
-#if defined(HAVE_INT_32)
-typedef unsigned int u32;
-#elif defined(HAVE_LONG_32)
-typedef unsigned long u32;
-#elif defined(HAVE_SHORT_32)
-typedef unsigned short u32;
-#else
-#error "No 32 bit integer type found"
-#endif
-
-#endif
-
-#include "rijndael-alg-fst.h"
-
-/*  Generic Defines  */
 #define     DIR_ENCRYPT           0 /*  Are we encrpyting?  */
 #define     DIR_DECRYPT           1 /*  Are we decrpyting?  */
@@ -72,13 +25,10 @@
 #define     MODE_CBC              2 /*  Are we ciphering in CBC mode?   */
 #define     MODE_CFB1             3 /*  Are we ciphering in 1-bit CFB mode? */
-#ifndef     TRUE
 #define     TRUE                  1
-#endif
-#ifndef     FALSE
 #define     FALSE                 0
-#endif
 #define     BITSPERBLOCK        128 /* Default number of bits in a cipher block */
 
-/*  Error Codes  */
+/*  Error Codes - CHANGE POSSIBLE: inclusion of additional error codes  */
+
 #define     BAD_KEY_DIR          -1 /*  Key direction is invalid, e.g., unknown value */
 #define     BAD_KEY_MAT          -2 /*  Key material not of correct length */
@@ -91,46 +41,59 @@
 #define     BAD_OTHER            -9 /*  Unknown error */
 
-/*  Algorithm-specific Defines  */
-#define     RIJNDAEL_MAX_KEY_SIZE         64 /* # of ASCII char's needed to represent a key */
-#define     RIJNDAEL_MAX_IV_SIZE          16 /* # bytes needed to represent an IV  */
+/*  CHANGE POSSIBLE:  inclusion of algorithm specific defines  */
+#define     MAX_KEY_SIZE         64 /* # of ASCII char's needed to represent a key */
+#define     MAX_IV_SIZE          16 /* # bytes needed to represent an IV  */
 
 #ifdef SH_ENCRYPT
 
-/*  Typedefs  */
+/*  Typedefs:
 
-typedef unsigned char   BYTE;
+	Typedef'ed data storage elements.  Add any algorithm specific 
+parameters at the bottom of the structs as appropriate.
+*/
+
+typedef unsigned char   RIJ_BYTE;
 
 /*  The structure for key information */
 typedef struct {
-  u32   rk[4*(RIJNDAEL_MAXNR + 1)];        /* key schedule */
-  u32   ek[4*(RIJNDAEL_MAXNR + 1)];        /* CFB1 key schedule (encryption only) */
-  BYTE  direction;                /* Key used for encrypting or decrypting? */
-  int   keyLen;                   /* Length of the key  */
-  char  keyMaterial[RIJNDAEL_MAX_KEY_SIZE+1];  /* Raw key data in ASCII, e.g., user input or KAT values */
-  int   Nr;                       /* key-length-dependent number of rounds */
+    RIJ_BYTE  direction;                /* Key used for encrypting or decrypting? */
+    int   keyLen;                   /* Length of the key  */
+    char  keyMaterial[MAX_KEY_SIZE+1];  /* Raw key data in ASCII, e.g., user input or KAT values */
+        /*  The following parameters are algorithm dependent, replace or add as necessary  */
+	int   ROUNDS;                   /* key-length-dependent number of rounds */
+    int   blockLen;                 /* block length */
+    word8 keySched[MAXROUNDS+1][4][4];	/* key schedule		*/
 } keyInstance;
 
 /*  The structure for cipher information */
 typedef struct {                    /* changed order of the components */
-    u32  IV[RIJNDAEL_MAX_IV_SIZE / sizeof(u32)];
-			/* A possible Initialization Vector for ciphering */
-    BYTE  mode;                     /* MODE_ECB, MODE_CBC, or MODE_CFB1 */
+    RIJ_BYTE  mode;                     /* MODE_ECB, MODE_CBC, or MODE_CFB1 */
+    RIJ_BYTE  IV[MAX_IV_SIZE];          /* A possible Initialization Vector for ciphering */
+        /*  Add any algorithm specific parameters needed here  */
+    int   blockLen;                 /* Sample: Handles non-128 bit block sizes (if available) */
 } cipherInstance;
 
 /*  Function prototypes  */
+/*  CHANGED: nothing
+	TODO: implement the following extensions to setup 192-bit and 256-bit block lengths:
+        makeKeyEx():    parameter blockLen added
+                        -- this parameter is absolutely necessary if you want to
+                        setup the round keys in a variable block length setting 
+	    cipherInitEx(): parameter blockLen added (for obvious reasons)		
+ */
 
-int rijndael_makeKey(keyInstance *, BYTE, int, const char *);
+int makeKey(keyInstance *key, RIJ_BYTE direction, int keyLen, char *keyMaterial);
 
-int rijndael_cipherInit(cipherInstance *, BYTE, const char *);
+int cipherInit(cipherInstance *cipher, RIJ_BYTE mode, char *IV);
 
-int rijndael_blockEncrypt(cipherInstance *, keyInstance *, const BYTE *, int, BYTE *);
+int blockEncrypt(cipherInstance *cipher, keyInstance *key,
+		 RIJ_BYTE *input, int inputLen, RIJ_BYTE *outBuffer);
 
-int rijndael_padEncrypt(cipherInstance *, keyInstance *, const BYTE *, int, BYTE *);
-
-int rijndael_blockDecrypt(cipherInstance *, keyInstance *, const BYTE *, int, BYTE *);
-
-int rijndael_padDecrypt(cipherInstance *, keyInstance *, const BYTE *, int, BYTE *);
+int blockDecrypt(cipherInstance *cipher, keyInstance *key,
+		 RIJ_BYTE *input, int inputLen, RIJ_BYTE *outBuffer);
 
 /* SH_ENCRYPT */
 #endif
-#endif /* __RIJNDAEL_API_FST_H */
+
+/*  __RIJNDAEL_API_FST_H */
+#endif 
Index: trunk/include/rijndael-boxes-fst.h
===================================================================
--- trunk/include/rijndael-boxes-fst.h	(revision 1)
+++ trunk/include/rijndael-boxes-fst.h	(revision 1)
@@ -0,0 +1,914 @@
+word8 S[256] = {
+ 99, 124, 119, 123, 242, 107, 111, 197,  48,   1, 103,  43, 254, 215, 171, 118, 
+202, 130, 201, 125, 250,  89,  71, 240, 173, 212, 162, 175, 156, 164, 114, 192, 
+183, 253, 147,  38,  54,  63, 247, 204,  52, 165, 229, 241, 113, 216,  49,  21, 
+  4, 199,  35, 195,  24, 150,   5, 154,   7,  18, 128, 226, 235,  39, 178, 117, 
+  9, 131,  44,  26,  27, 110,  90, 160,  82,  59, 214, 179,  41, 227,  47, 132, 
+ 83, 209,   0, 237,  32, 252, 177,  91, 106, 203, 190,  57,  74,  76,  88, 207, 
+208, 239, 170, 251,  67,  77,  51, 133,  69, 249,   2, 127,  80,  60, 159, 168, 
+ 81, 163,  64, 143, 146, 157,  56, 245, 188, 182, 218,  33,  16, 255, 243, 210, 
+205,  12,  19, 236,  95, 151,  68,  23, 196, 167, 126,  61, 100,  93,  25, 115, 
+ 96, 129,  79, 220,  34,  42, 144, 136,  70, 238, 184,  20, 222,  94,  11, 219, 
+224,  50,  58,  10,  73,   6,  36,  92, 194, 211, 172,  98, 145, 149, 228, 121, 
+231, 200,  55, 109, 141, 213,  78, 169, 108,  86, 244, 234, 101, 122, 174,   8, 
+186, 120,  37,  46,  28, 166, 180, 198, 232, 221, 116,  31,  75, 189, 139, 138, 
+112,  62, 181, 102,  72,   3, 246,  14,  97,  53,  87, 185, 134, 193,  29, 158, 
+225, 248, 152,  17, 105, 217, 142, 148, 155,  30, 135, 233, 206,  85,  40, 223, 
+140, 161, 137,  13, 191, 230,  66, 104,  65, 153,  45,  15, 176,  84, 187,  22
+};
+
+#ifdef INTERMEDIATE_VALUE_KAT
+word8 Si[256] = {
+ 82,   9, 106, 213,  48,  54, 165,  56, 191,  64, 163, 158, 129, 243, 215, 251, 
+124, 227,  57, 130, 155,  47, 255, 135,  52, 142,  67,  68, 196, 222, 233, 203, 
+ 84, 123, 148,  50, 166, 194,  35,  61, 238,  76, 149,  11,  66, 250, 195,  78, 
+  8,  46, 161, 102,  40, 217,  36, 178, 118,  91, 162,  73, 109, 139, 209,  37, 
+114, 248, 246, 100, 134, 104, 152,  22, 212, 164,  92, 204,  93, 101, 182, 146, 
+108, 112,  72,  80, 253, 237, 185, 218,  94,  21,  70,  87, 167, 141, 157, 132, 
+144, 216, 171,   0, 140, 188, 211,  10, 247, 228,  88,   5, 184, 179,  69,   6, 
+208,  44,  30, 143, 202,  63,  15,   2, 193, 175, 189,   3,   1,  19, 138, 107, 
+ 58, 145,  17,  65,  79, 103, 220, 234, 151, 242, 207, 206, 240, 180, 230, 115, 
+150, 172, 116,  34, 231, 173,  53, 133, 226, 249,  55, 232,  28, 117, 223, 110, 
+ 71, 241,  26, 113,  29,  41, 197, 137, 111, 183,  98,  14, 170,  24, 190,  27, 
+252,  86,  62,  75, 198, 210, 121,  32, 154, 219, 192, 254, 120, 205,  90, 244, 
+ 31, 221, 168,  51, 136,   7, 199,  49, 177,  18,  16,  89,  39, 128, 236,  95, 
+ 96,  81, 127, 169,  25, 181,  74,  13,  45, 229, 122, 159, 147, 201, 156, 239, 
+160, 224,  59,  77, 174,  42, 245, 176, 200, 235, 187,  60, 131,  83, 153,  97, 
+ 23,  43,   4, 126, 186, 119, 214,  38, 225, 105,  20,  99,  85,  33,  12, 125
+};
+#endif /* INTERMEDIATE_VALUE_KAT */
+
+word8 T1[256][4] = {
+{ 0xc6,0x63,0x63,0xa5},{  0xf8,0x7c,0x7c,0x84},{  0xee,0x77,0x77,0x99},{  0xf6,0x7b,0x7b,0x8d}, 
+{ 0xff,0xf2,0xf2,0x0d},{  0xd6,0x6b,0x6b,0xbd},{  0xde,0x6f,0x6f,0xb1},{  0x91,0xc5,0xc5,0x54}, 
+{ 0x60,0x30,0x30,0x50},{  0x02,0x01,0x01,0x03},{  0xce,0x67,0x67,0xa9},{  0x56,0x2b,0x2b,0x7d}, 
+{ 0xe7,0xfe,0xfe,0x19},{  0xb5,0xd7,0xd7,0x62},{  0x4d,0xab,0xab,0xe6},{  0xec,0x76,0x76,0x9a}, 
+{ 0x8f,0xca,0xca,0x45},{  0x1f,0x82,0x82,0x9d},{  0x89,0xc9,0xc9,0x40},{  0xfa,0x7d,0x7d,0x87}, 
+{ 0xef,0xfa,0xfa,0x15},{  0xb2,0x59,0x59,0xeb},{  0x8e,0x47,0x47,0xc9},{  0xfb,0xf0,0xf0,0x0b}, 
+{ 0x41,0xad,0xad,0xec},{  0xb3,0xd4,0xd4,0x67},{  0x5f,0xa2,0xa2,0xfd},{  0x45,0xaf,0xaf,0xea}, 
+{ 0x23,0x9c,0x9c,0xbf},{  0x53,0xa4,0xa4,0xf7},{  0xe4,0x72,0x72,0x96},{  0x9b,0xc0,0xc0,0x5b}, 
+{ 0x75,0xb7,0xb7,0xc2},{  0xe1,0xfd,0xfd,0x1c},{  0x3d,0x93,0x93,0xae},{  0x4c,0x26,0x26,0x6a}, 
+{ 0x6c,0x36,0x36,0x5a},{  0x7e,0x3f,0x3f,0x41},{  0xf5,0xf7,0xf7,0x02},{  0x83,0xcc,0xcc,0x4f}, 
+{ 0x68,0x34,0x34,0x5c},{  0x51,0xa5,0xa5,0xf4},{  0xd1,0xe5,0xe5,0x34},{  0xf9,0xf1,0xf1,0x08}, 
+{ 0xe2,0x71,0x71,0x93},{  0xab,0xd8,0xd8,0x73},{  0x62,0x31,0x31,0x53},{  0x2a,0x15,0x15,0x3f}, 
+{ 0x08,0x04,0x04,0x0c},{  0x95,0xc7,0xc7,0x52},{  0x46,0x23,0x23,0x65},{  0x9d,0xc3,0xc3,0x5e}, 
+{ 0x30,0x18,0x18,0x28},{  0x37,0x96,0x96,0xa1},{  0x0a,0x05,0x05,0x0f},{  0x2f,0x9a,0x9a,0xb5}, 
+{ 0x0e,0x07,0x07,0x09},{  0x24,0x12,0x12,0x36},{  0x1b,0x80,0x80,0x9b},{  0xdf,0xe2,0xe2,0x3d}, 
+{ 0xcd,0xeb,0xeb,0x26},{  0x4e,0x27,0x27,0x69},{  0x7f,0xb2,0xb2,0xcd},{  0xea,0x75,0x75,0x9f}, 
+{ 0x12,0x09,0x09,0x1b},{  0x1d,0x83,0x83,0x9e},{  0x58,0x2c,0x2c,0x74},{  0x34,0x1a,0x1a,0x2e}, 
+{ 0x36,0x1b,0x1b,0x2d},{  0xdc,0x6e,0x6e,0xb2},{  0xb4,0x5a,0x5a,0xee},{  0x5b,0xa0,0xa0,0xfb}, 
+{ 0xa4,0x52,0x52,0xf6},{  0x76,0x3b,0x3b,0x4d},{  0xb7,0xd6,0xd6,0x61},{  0x7d,0xb3,0xb3,0xce}, 
+{ 0x52,0x29,0x29,0x7b},{  0xdd,0xe3,0xe3,0x3e},{  0x5e,0x2f,0x2f,0x71},{  0x13,0x84,0x84,0x97}, 
+{ 0xa6,0x53,0x53,0xf5},{  0xb9,0xd1,0xd1,0x68},{  0x00,0x00,0x00,0x00},{  0xc1,0xed,0xed,0x2c}, 
+{ 0x40,0x20,0x20,0x60},{  0xe3,0xfc,0xfc,0x1f},{  0x79,0xb1,0xb1,0xc8},{  0xb6,0x5b,0x5b,0xed}, 
+{ 0xd4,0x6a,0x6a,0xbe},{  0x8d,0xcb,0xcb,0x46},{  0x67,0xbe,0xbe,0xd9},{  0x72,0x39,0x39,0x4b}, 
+{ 0x94,0x4a,0x4a,0xde},{  0x98,0x4c,0x4c,0xd4},{  0xb0,0x58,0x58,0xe8},{  0x85,0xcf,0xcf,0x4a}, 
+{ 0xbb,0xd0,0xd0,0x6b},{  0xc5,0xef,0xef,0x2a},{  0x4f,0xaa,0xaa,0xe5},{  0xed,0xfb,0xfb,0x16}, 
+{ 0x86,0x43,0x43,0xc5},{  0x9a,0x4d,0x4d,0xd7},{  0x66,0x33,0x33,0x55},{  0x11,0x85,0x85,0x94}, 
+{ 0x8a,0x45,0x45,0xcf},{  0xe9,0xf9,0xf9,0x10},{  0x04,0x02,0x02,0x06},{  0xfe,0x7f,0x7f,0x81}, 
+{ 0xa0,0x50,0x50,0xf0},{  0x78,0x3c,0x3c,0x44},{  0x25,0x9f,0x9f,0xba},{  0x4b,0xa8,0xa8,0xe3}, 
+{ 0xa2,0x51,0x51,0xf3},{  0x5d,0xa3,0xa3,0xfe},{  0x80,0x40,0x40,0xc0},{  0x05,0x8f,0x8f,0x8a}, 
+{ 0x3f,0x92,0x92,0xad},{  0x21,0x9d,0x9d,0xbc},{  0x70,0x38,0x38,0x48},{  0xf1,0xf5,0xf5,0x04}, 
+{ 0x63,0xbc,0xbc,0xdf},{  0x77,0xb6,0xb6,0xc1},{  0xaf,0xda,0xda,0x75},{  0x42,0x21,0x21,0x63}, 
+{ 0x20,0x10,0x10,0x30},{  0xe5,0xff,0xff,0x1a},{  0xfd,0xf3,0xf3,0x0e},{  0xbf,0xd2,0xd2,0x6d}, 
+{ 0x81,0xcd,0xcd,0x4c},{  0x18,0x0c,0x0c,0x14},{  0x26,0x13,0x13,0x35},{  0xc3,0xec,0xec,0x2f}, 
+{ 0xbe,0x5f,0x5f,0xe1},{  0x35,0x97,0x97,0xa2},{  0x88,0x44,0x44,0xcc},{  0x2e,0x17,0x17,0x39}, 
+{ 0x93,0xc4,0xc4,0x57},{  0x55,0xa7,0xa7,0xf2},{  0xfc,0x7e,0x7e,0x82},{  0x7a,0x3d,0x3d,0x47}, 
+{ 0xc8,0x64,0x64,0xac},{  0xba,0x5d,0x5d,0xe7},{  0x32,0x19,0x19,0x2b},{  0xe6,0x73,0x73,0x95}, 
+{ 0xc0,0x60,0x60,0xa0},{  0x19,0x81,0x81,0x98},{  0x9e,0x4f,0x4f,0xd1},{  0xa3,0xdc,0xdc,0x7f}, 
+{ 0x44,0x22,0x22,0x66},{  0x54,0x2a,0x2a,0x7e},{  0x3b,0x90,0x90,0xab},{  0x0b,0x88,0x88,0x83}, 
+{ 0x8c,0x46,0x46,0xca},{  0xc7,0xee,0xee,0x29},{  0x6b,0xb8,0xb8,0xd3},{  0x28,0x14,0x14,0x3c}, 
+{ 0xa7,0xde,0xde,0x79},{  0xbc,0x5e,0x5e,0xe2},{  0x16,0x0b,0x0b,0x1d},{  0xad,0xdb,0xdb,0x76}, 
+{ 0xdb,0xe0,0xe0,0x3b},{  0x64,0x32,0x32,0x56},{  0x74,0x3a,0x3a,0x4e},{  0x14,0x0a,0x0a,0x1e}, 
+{ 0x92,0x49,0x49,0xdb},{  0x0c,0x06,0x06,0x0a},{  0x48,0x24,0x24,0x6c},{  0xb8,0x5c,0x5c,0xe4}, 
+{ 0x9f,0xc2,0xc2,0x5d},{  0xbd,0xd3,0xd3,0x6e},{  0x43,0xac,0xac,0xef},{  0xc4,0x62,0x62,0xa6}, 
+{ 0x39,0x91,0x91,0xa8},{  0x31,0x95,0x95,0xa4},{  0xd3,0xe4,0xe4,0x37},{  0xf2,0x79,0x79,0x8b}, 
+{ 0xd5,0xe7,0xe7,0x32},{  0x8b,0xc8,0xc8,0x43},{  0x6e,0x37,0x37,0x59},{  0xda,0x6d,0x6d,0xb7}, 
+{ 0x01,0x8d,0x8d,0x8c},{  0xb1,0xd5,0xd5,0x64},{  0x9c,0x4e,0x4e,0xd2},{  0x49,0xa9,0xa9,0xe0}, 
+{ 0xd8,0x6c,0x6c,0xb4},{  0xac,0x56,0x56,0xfa},{  0xf3,0xf4,0xf4,0x07},{  0xcf,0xea,0xea,0x25}, 
+{ 0xca,0x65,0x65,0xaf},{  0xf4,0x7a,0x7a,0x8e},{  0x47,0xae,0xae,0xe9},{  0x10,0x08,0x08,0x18}, 
+{ 0x6f,0xba,0xba,0xd5},{  0xf0,0x78,0x78,0x88},{  0x4a,0x25,0x25,0x6f},{  0x5c,0x2e,0x2e,0x72}, 
+{ 0x38,0x1c,0x1c,0x24},{  0x57,0xa6,0xa6,0xf1},{  0x73,0xb4,0xb4,0xc7},{  0x97,0xc6,0xc6,0x51}, 
+{ 0xcb,0xe8,0xe8,0x23},{  0xa1,0xdd,0xdd,0x7c},{  0xe8,0x74,0x74,0x9c},{  0x3e,0x1f,0x1f,0x21}, 
+{ 0x96,0x4b,0x4b,0xdd},{  0x61,0xbd,0xbd,0xdc},{  0x0d,0x8b,0x8b,0x86},{  0x0f,0x8a,0x8a,0x85}, 
+{ 0xe0,0x70,0x70,0x90},{  0x7c,0x3e,0x3e,0x42},{  0x71,0xb5,0xb5,0xc4},{  0xcc,0x66,0x66,0xaa}, 
+{ 0x90,0x48,0x48,0xd8},{  0x06,0x03,0x03,0x05},{  0xf7,0xf6,0xf6,0x01},{  0x1c,0x0e,0x0e,0x12}, 
+{ 0xc2,0x61,0x61,0xa3},{  0x6a,0x35,0x35,0x5f},{  0xae,0x57,0x57,0xf9},{  0x69,0xb9,0xb9,0xd0}, 
+{ 0x17,0x86,0x86,0x91},{  0x99,0xc1,0xc1,0x58},{  0x3a,0x1d,0x1d,0x27},{  0x27,0x9e,0x9e,0xb9}, 
+{ 0xd9,0xe1,0xe1,0x38},{  0xeb,0xf8,0xf8,0x13},{  0x2b,0x98,0x98,0xb3},{  0x22,0x11,0x11,0x33}, 
+{ 0xd2,0x69,0x69,0xbb},{  0xa9,0xd9,0xd9,0x70},{  0x07,0x8e,0x8e,0x89},{  0x33,0x94,0x94,0xa7}, 
+{ 0x2d,0x9b,0x9b,0xb6},{  0x3c,0x1e,0x1e,0x22},{  0x15,0x87,0x87,0x92},{  0xc9,0xe9,0xe9,0x20}, 
+{ 0x87,0xce,0xce,0x49},{  0xaa,0x55,0x55,0xff},{  0x50,0x28,0x28,0x78},{  0xa5,0xdf,0xdf,0x7a}, 
+{ 0x03,0x8c,0x8c,0x8f},{  0x59,0xa1,0xa1,0xf8},{  0x09,0x89,0x89,0x80},{  0x1a,0x0d,0x0d,0x17}, 
+{ 0x65,0xbf,0xbf,0xda},{  0xd7,0xe6,0xe6,0x31},{  0x84,0x42,0x42,0xc6},{  0xd0,0x68,0x68,0xb8}, 
+{ 0x82,0x41,0x41,0xc3},{  0x29,0x99,0x99,0xb0},{  0x5a,0x2d,0x2d,0x77},{  0x1e,0x0f,0x0f,0x11}, 
+{ 0x7b,0xb0,0xb0,0xcb},{  0xa8,0x54,0x54,0xfc},{  0x6d,0xbb,0xbb,0xd6},{  0x2c,0x16,0x16,0x3a } 
+};
+
+word8 T2[256][4] = {
+{ 0xa5,0xc6,0x63,0x63},{  0x84,0xf8,0x7c,0x7c},{  0x99,0xee,0x77,0x77},{  0x8d,0xf6,0x7b,0x7b}, 
+{ 0x0d,0xff,0xf2,0xf2},{  0xbd,0xd6,0x6b,0x6b},{  0xb1,0xde,0x6f,0x6f},{  0x54,0x91,0xc5,0xc5}, 
+{ 0x50,0x60,0x30,0x30},{  0x03,0x02,0x01,0x01},{  0xa9,0xce,0x67,0x67},{  0x7d,0x56,0x2b,0x2b}, 
+{ 0x19,0xe7,0xfe,0xfe},{  0x62,0xb5,0xd7,0xd7},{  0xe6,0x4d,0xab,0xab},{  0x9a,0xec,0x76,0x76}, 
+{ 0x45,0x8f,0xca,0xca},{  0x9d,0x1f,0x82,0x82},{  0x40,0x89,0xc9,0xc9},{  0x87,0xfa,0x7d,0x7d}, 
+{ 0x15,0xef,0xfa,0xfa},{  0xeb,0xb2,0x59,0x59},{  0xc9,0x8e,0x47,0x47},{  0x0b,0xfb,0xf0,0xf0}, 
+{ 0xec,0x41,0xad,0xad},{  0x67,0xb3,0xd4,0xd4},{  0xfd,0x5f,0xa2,0xa2},{  0xea,0x45,0xaf,0xaf}, 
+{ 0xbf,0x23,0x9c,0x9c},{  0xf7,0x53,0xa4,0xa4},{  0x96,0xe4,0x72,0x72},{  0x5b,0x9b,0xc0,0xc0}, 
+{ 0xc2,0x75,0xb7,0xb7},{  0x1c,0xe1,0xfd,0xfd},{  0xae,0x3d,0x93,0x93},{  0x6a,0x4c,0x26,0x26}, 
+{ 0x5a,0x6c,0x36,0x36},{  0x41,0x7e,0x3f,0x3f},{  0x02,0xf5,0xf7,0xf7},{  0x4f,0x83,0xcc,0xcc}, 
+{ 0x5c,0x68,0x34,0x34},{  0xf4,0x51,0xa5,0xa5},{  0x34,0xd1,0xe5,0xe5},{  0x08,0xf9,0xf1,0xf1}, 
+{ 0x93,0xe2,0x71,0x71},{  0x73,0xab,0xd8,0xd8},{  0x53,0x62,0x31,0x31},{  0x3f,0x2a,0x15,0x15}, 
+{ 0x0c,0x08,0x04,0x04},{  0x52,0x95,0xc7,0xc7},{  0x65,0x46,0x23,0x23},{  0x5e,0x9d,0xc3,0xc3}, 
+{ 0x28,0x30,0x18,0x18},{  0xa1,0x37,0x96,0x96},{  0x0f,0x0a,0x05,0x05},{  0xb5,0x2f,0x9a,0x9a}, 
+{ 0x09,0x0e,0x07,0x07},{  0x36,0x24,0x12,0x12},{  0x9b,0x1b,0x80,0x80},{  0x3d,0xdf,0xe2,0xe2}, 
+{ 0x26,0xcd,0xeb,0xeb},{  0x69,0x4e,0x27,0x27},{  0xcd,0x7f,0xb2,0xb2},{  0x9f,0xea,0x75,0x75}, 
+{ 0x1b,0x12,0x09,0x09},{  0x9e,0x1d,0x83,0x83},{  0x74,0x58,0x2c,0x2c},{  0x2e,0x34,0x1a,0x1a}, 
+{ 0x2d,0x36,0x1b,0x1b},{  0xb2,0xdc,0x6e,0x6e},{  0xee,0xb4,0x5a,0x5a},{  0xfb,0x5b,0xa0,0xa0}, 
+{ 0xf6,0xa4,0x52,0x52},{  0x4d,0x76,0x3b,0x3b},{  0x61,0xb7,0xd6,0xd6},{  0xce,0x7d,0xb3,0xb3}, 
+{ 0x7b,0x52,0x29,0x29},{  0x3e,0xdd,0xe3,0xe3},{  0x71,0x5e,0x2f,0x2f},{  0x97,0x13,0x84,0x84}, 
+{ 0xf5,0xa6,0x53,0x53},{  0x68,0xb9,0xd1,0xd1},{  0x00,0x00,0x00,0x00},{  0x2c,0xc1,0xed,0xed}, 
+{ 0x60,0x40,0x20,0x20},{  0x1f,0xe3,0xfc,0xfc},{  0xc8,0x79,0xb1,0xb1},{  0xed,0xb6,0x5b,0x5b}, 
+{ 0xbe,0xd4,0x6a,0x6a},{  0x46,0x8d,0xcb,0xcb},{  0xd9,0x67,0xbe,0xbe},{  0x4b,0x72,0x39,0x39}, 
+{ 0xde,0x94,0x4a,0x4a},{  0xd4,0x98,0x4c,0x4c},{  0xe8,0xb0,0x58,0x58},{  0x4a,0x85,0xcf,0xcf}, 
+{ 0x6b,0xbb,0xd0,0xd0},{  0x2a,0xc5,0xef,0xef},{  0xe5,0x4f,0xaa,0xaa},{  0x16,0xed,0xfb,0xfb}, 
+{ 0xc5,0x86,0x43,0x43},{  0xd7,0x9a,0x4d,0x4d},{  0x55,0x66,0x33,0x33},{  0x94,0x11,0x85,0x85}, 
+{ 0xcf,0x8a,0x45,0x45},{  0x10,0xe9,0xf9,0xf9},{  0x06,0x04,0x02,0x02},{  0x81,0xfe,0x7f,0x7f}, 
+{ 0xf0,0xa0,0x50,0x50},{  0x44,0x78,0x3c,0x3c},{  0xba,0x25,0x9f,0x9f},{  0xe3,0x4b,0xa8,0xa8}, 
+{ 0xf3,0xa2,0x51,0x51},{  0xfe,0x5d,0xa3,0xa3},{  0xc0,0x80,0x40,0x40},{  0x8a,0x05,0x8f,0x8f}, 
+{ 0xad,0x3f,0x92,0x92},{  0xbc,0x21,0x9d,0x9d},{  0x48,0x70,0x38,0x38},{  0x04,0xf1,0xf5,0xf5}, 
+{ 0xdf,0x63,0xbc,0xbc},{  0xc1,0x77,0xb6,0xb6},{  0x75,0xaf,0xda,0xda},{  0x63,0x42,0x21,0x21}, 
+{ 0x30,0x20,0x10,0x10},{  0x1a,0xe5,0xff,0xff},{  0x0e,0xfd,0xf3,0xf3},{  0x6d,0xbf,0xd2,0xd2}, 
+{ 0x4c,0x81,0xcd,0xcd},{  0x14,0x18,0x0c,0x0c},{  0x35,0x26,0x13,0x13},{  0x2f,0xc3,0xec,0xec}, 
+{ 0xe1,0xbe,0x5f,0x5f},{  0xa2,0x35,0x97,0x97},{  0xcc,0x88,0x44,0x44},{  0x39,0x2e,0x17,0x17}, 
+{ 0x57,0x93,0xc4,0xc4},{  0xf2,0x55,0xa7,0xa7},{  0x82,0xfc,0x7e,0x7e},{  0x47,0x7a,0x3d,0x3d}, 
+{ 0xac,0xc8,0x64,0x64},{  0xe7,0xba,0x5d,0x5d},{  0x2b,0x32,0x19,0x19},{  0x95,0xe6,0x73,0x73}, 
+{ 0xa0,0xc0,0x60,0x60},{  0x98,0x19,0x81,0x81},{  0xd1,0x9e,0x4f,0x4f},{  0x7f,0xa3,0xdc,0xdc}, 
+{ 0x66,0x44,0x22,0x22},{  0x7e,0x54,0x2a,0x2a},{  0xab,0x3b,0x90,0x90},{  0x83,0x0b,0x88,0x88}, 
+{ 0xca,0x8c,0x46,0x46},{  0x29,0xc7,0xee,0xee},{  0xd3,0x6b,0xb8,0xb8},{  0x3c,0x28,0x14,0x14}, 
+{ 0x79,0xa7,0xde,0xde},{  0xe2,0xbc,0x5e,0x5e},{  0x1d,0x16,0x0b,0x0b},{  0x76,0xad,0xdb,0xdb}, 
+{ 0x3b,0xdb,0xe0,0xe0},{  0x56,0x64,0x32,0x32},{  0x4e,0x74,0x3a,0x3a},{  0x1e,0x14,0x0a,0x0a}, 
+{ 0xdb,0x92,0x49,0x49},{  0x0a,0x0c,0x06,0x06},{  0x6c,0x48,0x24,0x24},{  0xe4,0xb8,0x5c,0x5c}, 
+{ 0x5d,0x9f,0xc2,0xc2},{  0x6e,0xbd,0xd3,0xd3},{  0xef,0x43,0xac,0xac},{  0xa6,0xc4,0x62,0x62}, 
+{ 0xa8,0x39,0x91,0x91},{  0xa4,0x31,0x95,0x95},{  0x37,0xd3,0xe4,0xe4},{  0x8b,0xf2,0x79,0x79}, 
+{ 0x32,0xd5,0xe7,0xe7},{  0x43,0x8b,0xc8,0xc8},{  0x59,0x6e,0x37,0x37},{  0xb7,0xda,0x6d,0x6d}, 
+{ 0x8c,0x01,0x8d,0x8d},{  0x64,0xb1,0xd5,0xd5},{  0xd2,0x9c,0x4e,0x4e},{  0xe0,0x49,0xa9,0xa9}, 
+{ 0xb4,0xd8,0x6c,0x6c},{  0xfa,0xac,0x56,0x56},{  0x07,0xf3,0xf4,0xf4},{  0x25,0xcf,0xea,0xea}, 
+{ 0xaf,0xca,0x65,0x65},{  0x8e,0xf4,0x7a,0x7a},{  0xe9,0x47,0xae,0xae},{  0x18,0x10,0x08,0x08}, 
+{ 0xd5,0x6f,0xba,0xba},{  0x88,0xf0,0x78,0x78},{  0x6f,0x4a,0x25,0x25},{  0x72,0x5c,0x2e,0x2e}, 
+{ 0x24,0x38,0x1c,0x1c},{  0xf1,0x57,0xa6,0xa6},{  0xc7,0x73,0xb4,0xb4},{  0x51,0x97,0xc6,0xc6}, 
+{ 0x23,0xcb,0xe8,0xe8},{  0x7c,0xa1,0xdd,0xdd},{  0x9c,0xe8,0x74,0x74},{  0x21,0x3e,0x1f,0x1f}, 
+{ 0xdd,0x96,0x4b,0x4b},{  0xdc,0x61,0xbd,0xbd},{  0x86,0x0d,0x8b,0x8b},{  0x85,0x0f,0x8a,0x8a}, 
+{ 0x90,0xe0,0x70,0x70},{  0x42,0x7c,0x3e,0x3e},{  0xc4,0x71,0xb5,0xb5},{  0xaa,0xcc,0x66,0x66}, 
+{ 0xd8,0x90,0x48,0x48},{  0x05,0x06,0x03,0x03},{  0x01,0xf7,0xf6,0xf6},{  0x12,0x1c,0x0e,0x0e}, 
+{ 0xa3,0xc2,0x61,0x61},{  0x5f,0x6a,0x35,0x35},{  0xf9,0xae,0x57,0x57},{  0xd0,0x69,0xb9,0xb9}, 
+{ 0x91,0x17,0x86,0x86},{  0x58,0x99,0xc1,0xc1},{  0x27,0x3a,0x1d,0x1d},{  0xb9,0x27,0x9e,0x9e}, 
+{ 0x38,0xd9,0xe1,0xe1},{  0x13,0xeb,0xf8,0xf8},{  0xb3,0x2b,0x98,0x98},{  0x33,0x22,0x11,0x11}, 
+{ 0xbb,0xd2,0x69,0x69},{  0x70,0xa9,0xd9,0xd9},{  0x89,0x07,0x8e,0x8e},{  0xa7,0x33,0x94,0x94}, 
+{ 0xb6,0x2d,0x9b,0x9b},{  0x22,0x3c,0x1e,0x1e},{  0x92,0x15,0x87,0x87},{  0x20,0xc9,0xe9,0xe9}, 
+{ 0x49,0x87,0xce,0xce},{  0xff,0xaa,0x55,0x55},{  0x78,0x50,0x28,0x28},{  0x7a,0xa5,0xdf,0xdf}, 
+{ 0x8f,0x03,0x8c,0x8c},{  0xf8,0x59,0xa1,0xa1},{  0x80,0x09,0x89,0x89},{  0x17,0x1a,0x0d,0x0d}, 
+{ 0xda,0x65,0xbf,0xbf},{  0x31,0xd7,0xe6,0xe6},{  0xc6,0x84,0x42,0x42},{  0xb8,0xd0,0x68,0x68}, 
+{ 0xc3,0x82,0x41,0x41},{  0xb0,0x29,0x99,0x99},{  0x77,0x5a,0x2d,0x2d},{  0x11,0x1e,0x0f,0x0f}, 
+{ 0xcb,0x7b,0xb0,0xb0},{  0xfc,0xa8,0x54,0x54},{  0xd6,0x6d,0xbb,0xbb},{  0x3a,0x2c,0x16,0x16 } 
+};
+
+word8 T3[256][4] = {
+{ 0x63,0xa5,0xc6,0x63},{  0x7c,0x84,0xf8,0x7c},{  0x77,0x99,0xee,0x77},{  0x7b,0x8d,0xf6,0x7b}, 
+{ 0xf2,0x0d,0xff,0xf2},{  0x6b,0xbd,0xd6,0x6b},{  0x6f,0xb1,0xde,0x6f},{  0xc5,0x54,0x91,0xc5}, 
+{ 0x30,0x50,0x60,0x30},{  0x01,0x03,0x02,0x01},{  0x67,0xa9,0xce,0x67},{  0x2b,0x7d,0x56,0x2b}, 
+{ 0xfe,0x19,0xe7,0xfe},{  0xd7,0x62,0xb5,0xd7},{  0xab,0xe6,0x4d,0xab},{  0x76,0x9a,0xec,0x76}, 
+{ 0xca,0x45,0x8f,0xca},{  0x82,0x9d,0x1f,0x82},{  0xc9,0x40,0x89,0xc9},{  0x7d,0x87,0xfa,0x7d}, 
+{ 0xfa,0x15,0xef,0xfa},{  0x59,0xeb,0xb2,0x59},{  0x47,0xc9,0x8e,0x47},{  0xf0,0x0b,0xfb,0xf0}, 
+{ 0xad,0xec,0x41,0xad},{  0xd4,0x67,0xb3,0xd4},{  0xa2,0xfd,0x5f,0xa2},{  0xaf,0xea,0x45,0xaf}, 
+{ 0x9c,0xbf,0x23,0x9c},{  0xa4,0xf7,0x53,0xa4},{  0x72,0x96,0xe4,0x72},{  0xc0,0x5b,0x9b,0xc0}, 
+{ 0xb7,0xc2,0x75,0xb7},{  0xfd,0x1c,0xe1,0xfd},{  0x93,0xae,0x3d,0x93},{  0x26,0x6a,0x4c,0x26}, 
+{ 0x36,0x5a,0x6c,0x36},{  0x3f,0x41,0x7e,0x3f},{  0xf7,0x02,0xf5,0xf7},{  0xcc,0x4f,0x83,0xcc}, 
+{ 0x34,0x5c,0x68,0x34},{  0xa5,0xf4,0x51,0xa5},{  0xe5,0x34,0xd1,0xe5},{  0xf1,0x08,0xf9,0xf1}, 
+{ 0x71,0x93,0xe2,0x71},{  0xd8,0x73,0xab,0xd8},{  0x31,0x53,0x62,0x31},{  0x15,0x3f,0x2a,0x15}, 
+{ 0x04,0x0c,0x08,0x04},{  0xc7,0x52,0x95,0xc7},{  0x23,0x65,0x46,0x23},{  0xc3,0x5e,0x9d,0xc3}, 
+{ 0x18,0x28,0x30,0x18},{  0x96,0xa1,0x37,0x96},{  0x05,0x0f,0x0a,0x05},{  0x9a,0xb5,0x2f,0x9a}, 
+{ 0x07,0x09,0x0e,0x07},{  0x12,0x36,0x24,0x12},{  0x80,0x9b,0x1b,0x80},{  0xe2,0x3d,0xdf,0xe2}, 
+{ 0xeb,0x26,0xcd,0xeb},{  0x27,0x69,0x4e,0x27},{  0xb2,0xcd,0x7f,0xb2},{  0x75,0x9f,0xea,0x75}, 
+{ 0x09,0x1b,0x12,0x09},{  0x83,0x9e,0x1d,0x83},{  0x2c,0x74,0x58,0x2c},{  0x1a,0x2e,0x34,0x1a}, 
+{ 0x1b,0x2d,0x36,0x1b},{  0x6e,0xb2,0xdc,0x6e},{  0x5a,0xee,0xb4,0x5a},{  0xa0,0xfb,0x5b,0xa0}, 
+{ 0x52,0xf6,0xa4,0x52},{  0x3b,0x4d,0x76,0x3b},{  0xd6,0x61,0xb7,0xd6},{  0xb3,0xce,0x7d,0xb3}, 
+{ 0x29,0x7b,0x52,0x29},{  0xe3,0x3e,0xdd,0xe3},{  0x2f,0x71,0x5e,0x2f},{  0x84,0x97,0x13,0x84}, 
+{ 0x53,0xf5,0xa6,0x53},{  0xd1,0x68,0xb9,0xd1},{  0x00,0x00,0x00,0x00},{  0xed,0x2c,0xc1,0xed}, 
+{ 0x20,0x60,0x40,0x20},{  0xfc,0x1f,0xe3,0xfc},{  0xb1,0xc8,0x79,0xb1},{  0x5b,0xed,0xb6,0x5b}, 
+{ 0x6a,0xbe,0xd4,0x6a},{  0xcb,0x46,0x8d,0xcb},{  0xbe,0xd9,0x67,0xbe},{  0x39,0x4b,0x72,0x39}, 
+{ 0x4a,0xde,0x94,0x4a},{  0x4c,0xd4,0x98,0x4c},{  0x58,0xe8,0xb0,0x58},{  0xcf,0x4a,0x85,0xcf}, 
+{ 0xd0,0x6b,0xbb,0xd0},{  0xef,0x2a,0xc5,0xef},{  0xaa,0xe5,0x4f,0xaa},{  0xfb,0x16,0xed,0xfb}, 
+{ 0x43,0xc5,0x86,0x43},{  0x4d,0xd7,0x9a,0x4d},{  0x33,0x55,0x66,0x33},{  0x85,0x94,0x11,0x85}, 
+{ 0x45,0xcf,0x8a,0x45},{  0xf9,0x10,0xe9,0xf9},{  0x02,0x06,0x04,0x02},{  0x7f,0x81,0xfe,0x7f}, 
+{ 0x50,0xf0,0xa0,0x50},{  0x3c,0x44,0x78,0x3c},{  0x9f,0xba,0x25,0x9f},{  0xa8,0xe3,0x4b,0xa8}, 
+{ 0x51,0xf3,0xa2,0x51},{  0xa3,0xfe,0x5d,0xa3},{  0x40,0xc0,0x80,0x40},{  0x8f,0x8a,0x05,0x8f}, 
+{ 0x92,0xad,0x3f,0x92},{  0x9d,0xbc,0x21,0x9d},{  0x38,0x48,0x70,0x38},{  0xf5,0x04,0xf1,0xf5}, 
+{ 0xbc,0xdf,0x63,0xbc},{  0xb6,0xc1,0x77,0xb6},{  0xda,0x75,0xaf,0xda},{  0x21,0x63,0x42,0x21}, 
+{ 0x10,0x30,0x20,0x10},{  0xff,0x1a,0xe5,0xff},{  0xf3,0x0e,0xfd,0xf3},{  0xd2,0x6d,0xbf,0xd2}, 
+{ 0xcd,0x4c,0x81,0xcd},{  0x0c,0x14,0x18,0x0c},{  0x13,0x35,0x26,0x13},{  0xec,0x2f,0xc3,0xec}, 
+{ 0x5f,0xe1,0xbe,0x5f},{  0x97,0xa2,0x35,0x97},{  0x44,0xcc,0x88,0x44},{  0x17,0x39,0x2e,0x17}, 
+{ 0xc4,0x57,0x93,0xc4},{  0xa7,0xf2,0x55,0xa7},{  0x7e,0x82,0xfc,0x7e},{  0x3d,0x47,0x7a,0x3d}, 
+{ 0x64,0xac,0xc8,0x64},{  0x5d,0xe7,0xba,0x5d},{  0x19,0x2b,0x32,0x19},{  0x73,0x95,0xe6,0x73}, 
+{ 0x60,0xa0,0xc0,0x60},{  0x81,0x98,0x19,0x81},{  0x4f,0xd1,0x9e,0x4f},{  0xdc,0x7f,0xa3,0xdc}, 
+{ 0x22,0x66,0x44,0x22},{  0x2a,0x7e,0x54,0x2a},{  0x90,0xab,0x3b,0x90},{  0x88,0x83,0x0b,0x88}, 
+{ 0x46,0xca,0x8c,0x46},{  0xee,0x29,0xc7,0xee},{  0xb8,0xd3,0x6b,0xb8},{  0x14,0x3c,0x28,0x14}, 
+{ 0xde,0x79,0xa7,0xde},{  0x5e,0xe2,0xbc,0x5e},{  0x0b,0x1d,0x16,0x0b},{  0xdb,0x76,0xad,0xdb}, 
+{ 0xe0,0x3b,0xdb,0xe0},{  0x32,0x56,0x64,0x32},{  0x3a,0x4e,0x74,0x3a},{  0x0a,0x1e,0x14,0x0a}, 
+{ 0x49,0xdb,0x92,0x49},{  0x06,0x0a,0x0c,0x06},{  0x24,0x6c,0x48,0x24},{  0x5c,0xe4,0xb8,0x5c}, 
+{ 0xc2,0x5d,0x9f,0xc2},{  0xd3,0x6e,0xbd,0xd3},{  0xac,0xef,0x43,0xac},{  0x62,0xa6,0xc4,0x62}, 
+{ 0x91,0xa8,0x39,0x91},{  0x95,0xa4,0x31,0x95},{  0xe4,0x37,0xd3,0xe4},{  0x79,0x8b,0xf2,0x79}, 
+{ 0xe7,0x32,0xd5,0xe7},{  0xc8,0x43,0x8b,0xc8},{  0x37,0x59,0x6e,0x37},{  0x6d,0xb7,0xda,0x6d}, 
+{ 0x8d,0x8c,0x01,0x8d},{  0xd5,0x64,0xb1,0xd5},{  0x4e,0xd2,0x9c,0x4e},{  0xa9,0xe0,0x49,0xa9}, 
+{ 0x6c,0xb4,0xd8,0x6c},{  0x56,0xfa,0xac,0x56},{  0xf4,0x07,0xf3,0xf4},{  0xea,0x25,0xcf,0xea}, 
+{ 0x65,0xaf,0xca,0x65},{  0x7a,0x8e,0xf4,0x7a},{  0xae,0xe9,0x47,0xae},{  0x08,0x18,0x10,0x08}, 
+{ 0xba,0xd5,0x6f,0xba},{  0x78,0x88,0xf0,0x78},{  0x25,0x6f,0x4a,0x25},{  0x2e,0x72,0x5c,0x2e}, 
+{ 0x1c,0x24,0x38,0x1c},{  0xa6,0xf1,0x57,0xa6},{  0xb4,0xc7,0x73,0xb4},{  0xc6,0x51,0x97,0xc6}, 
+{ 0xe8,0x23,0xcb,0xe8},{  0xdd,0x7c,0xa1,0xdd},{  0x74,0x9c,0xe8,0x74},{  0x1f,0x21,0x3e,0x1f}, 
+{ 0x4b,0xdd,0x96,0x4b},{  0xbd,0xdc,0x61,0xbd},{  0x8b,0x86,0x0d,0x8b},{  0x8a,0x85,0x0f,0x8a}, 
+{ 0x70,0x90,0xe0,0x70},{  0x3e,0x42,0x7c,0x3e},{  0xb5,0xc4,0x71,0xb5},{  0x66,0xaa,0xcc,0x66}, 
+{ 0x48,0xd8,0x90,0x48},{  0x03,0x05,0x06,0x03},{  0xf6,0x01,0xf7,0xf6},{  0x0e,0x12,0x1c,0x0e}, 
+{ 0x61,0xa3,0xc2,0x61},{  0x35,0x5f,0x6a,0x35},{  0x57,0xf9,0xae,0x57},{  0xb9,0xd0,0x69,0xb9}, 
+{ 0x86,0x91,0x17,0x86},{  0xc1,0x58,0x99,0xc1},{  0x1d,0x27,0x3a,0x1d},{  0x9e,0xb9,0x27,0x9e}, 
+{ 0xe1,0x38,0xd9,0xe1},{  0xf8,0x13,0xeb,0xf8},{  0x98,0xb3,0x2b,0x98},{  0x11,0x33,0x22,0x11}, 
+{ 0x69,0xbb,0xd2,0x69},{  0xd9,0x70,0xa9,0xd9},{  0x8e,0x89,0x07,0x8e},{  0x94,0xa7,0x33,0x94}, 
+{ 0x9b,0xb6,0x2d,0x9b},{  0x1e,0x22,0x3c,0x1e},{  0x87,0x92,0x15,0x87},{  0xe9,0x20,0xc9,0xe9}, 
+{ 0xce,0x49,0x87,0xce},{  0x55,0xff,0xaa,0x55},{  0x28,0x78,0x50,0x28},{  0xdf,0x7a,0xa5,0xdf}, 
+{ 0x8c,0x8f,0x03,0x8c},{  0xa1,0xf8,0x59,0xa1},{  0x89,0x80,0x09,0x89},{  0x0d,0x17,0x1a,0x0d}, 
+{ 0xbf,0xda,0x65,0xbf},{  0xe6,0x31,0xd7,0xe6},{  0x42,0xc6,0x84,0x42},{  0x68,0xb8,0xd0,0x68}, 
+{ 0x41,0xc3,0x82,0x41},{  0x99,0xb0,0x29,0x99},{  0x2d,0x77,0x5a,0x2d},{  0x0f,0x11,0x1e,0x0f}, 
+{ 0xb0,0xcb,0x7b,0xb0},{  0x54,0xfc,0xa8,0x54},{  0xbb,0xd6,0x6d,0xbb},{  0x16,0x3a,0x2c,0x16 } 
+};
+
+word8 T4[256][4] = {
+{ 0x63,0x63,0xa5,0xc6},{  0x7c,0x7c,0x84,0xf8},{  0x77,0x77,0x99,0xee},{  0x7b,0x7b,0x8d,0xf6}, 
+{ 0xf2,0xf2,0x0d,0xff},{  0x6b,0x6b,0xbd,0xd6},{  0x6f,0x6f,0xb1,0xde},{  0xc5,0xc5,0x54,0x91}, 
+{ 0x30,0x30,0x50,0x60},{  0x01,0x01,0x03,0x02},{  0x67,0x67,0xa9,0xce},{  0x2b,0x2b,0x7d,0x56}, 
+{ 0xfe,0xfe,0x19,0xe7},{  0xd7,0xd7,0x62,0xb5},{  0xab,0xab,0xe6,0x4d},{  0x76,0x76,0x9a,0xec}, 
+{ 0xca,0xca,0x45,0x8f},{  0x82,0x82,0x9d,0x1f},{  0xc9,0xc9,0x40,0x89},{  0x7d,0x7d,0x87,0xfa}, 
+{ 0xfa,0xfa,0x15,0xef},{  0x59,0x59,0xeb,0xb2},{  0x47,0x47,0xc9,0x8e},{  0xf0,0xf0,0x0b,0xfb}, 
+{ 0xad,0xad,0xec,0x41},{  0xd4,0xd4,0x67,0xb3},{  0xa2,0xa2,0xfd,0x5f},{  0xaf,0xaf,0xea,0x45}, 
+{ 0x9c,0x9c,0xbf,0x23},{  0xa4,0xa4,0xf7,0x53},{  0x72,0x72,0x96,0xe4},{  0xc0,0xc0,0x5b,0x9b}, 
+{ 0xb7,0xb7,0xc2,0x75},{  0xfd,0xfd,0x1c,0xe1},{  0x93,0x93,0xae,0x3d},{  0x26,0x26,0x6a,0x4c}, 
+{ 0x36,0x36,0x5a,0x6c},{  0x3f,0x3f,0x41,0x7e},{  0xf7,0xf7,0x02,0xf5},{  0xcc,0xcc,0x4f,0x83}, 
+{ 0x34,0x34,0x5c,0x68},{  0xa5,0xa5,0xf4,0x51},{  0xe5,0xe5,0x34,0xd1},{  0xf1,0xf1,0x08,0xf9}, 
+{ 0x71,0x71,0x93,0xe2},{  0xd8,0xd8,0x73,0xab},{  0x31,0x31,0x53,0x62},{  0x15,0x15,0x3f,0x2a}, 
+{ 0x04,0x04,0x0c,0x08},{  0xc7,0xc7,0x52,0x95},{  0x23,0x23,0x65,0x46},{  0xc3,0xc3,0x5e,0x9d}, 
+{ 0x18,0x18,0x28,0x30},{  0x96,0x96,0xa1,0x37},{  0x05,0x05,0x0f,0x0a},{  0x9a,0x9a,0xb5,0x2f}, 
+{ 0x07,0x07,0x09,0x0e},{  0x12,0x12,0x36,0x24},{  0x80,0x80,0x9b,0x1b},{  0xe2,0xe2,0x3d,0xdf}, 
+{ 0xeb,0xeb,0x26,0xcd},{  0x27,0x27,0x69,0x4e},{  0xb2,0xb2,0xcd,0x7f},{  0x75,0x75,0x9f,0xea}, 
+{ 0x09,0x09,0x1b,0x12},{  0x83,0x83,0x9e,0x1d},{  0x2c,0x2c,0x74,0x58},{  0x1a,0x1a,0x2e,0x34}, 
+{ 0x1b,0x1b,0x2d,0x36},{  0x6e,0x6e,0xb2,0xdc},{  0x5a,0x5a,0xee,0xb4},{  0xa0,0xa0,0xfb,0x5b}, 
+{ 0x52,0x52,0xf6,0xa4},{  0x3b,0x3b,0x4d,0x76},{  0xd6,0xd6,0x61,0xb7},{  0xb3,0xb3,0xce,0x7d}, 
+{ 0x29,0x29,0x7b,0x52},{  0xe3,0xe3,0x3e,0xdd},{  0x2f,0x2f,0x71,0x5e},{  0x84,0x84,0x97,0x13}, 
+{ 0x53,0x53,0xf5,0xa6},{  0xd1,0xd1,0x68,0xb9},{  0x00,0x00,0x00,0x00},{  0xed,0xed,0x2c,0xc1}, 
+{ 0x20,0x20,0x60,0x40},{  0xfc,0xfc,0x1f,0xe3},{  0xb1,0xb1,0xc8,0x79},{  0x5b,0x5b,0xed,0xb6}, 
+{ 0x6a,0x6a,0xbe,0xd4},{  0xcb,0xcb,0x46,0x8d},{  0xbe,0xbe,0xd9,0x67},{  0x39,0x39,0x4b,0x72}, 
+{ 0x4a,0x4a,0xde,0x94},{  0x4c,0x4c,0xd4,0x98},{  0x58,0x58,0xe8,0xb0},{  0xcf,0xcf,0x4a,0x85}, 
+{ 0xd0,0xd0,0x6b,0xbb},{  0xef,0xef,0x2a,0xc5},{  0xaa,0xaa,0xe5,0x4f},{  0xfb,0xfb,0x16,0xed}, 
+{ 0x43,0x43,0xc5,0x86},{  0x4d,0x4d,0xd7,0x9a},{  0x33,0x33,0x55,0x66},{  0x85,0x85,0x94,0x11}, 
+{ 0x45,0x45,0xcf,0x8a},{  0xf9,0xf9,0x10,0xe9},{  0x02,0x02,0x06,0x04},{  0x7f,0x7f,0x81,0xfe}, 
+{ 0x50,0x50,0xf0,0xa0},{  0x3c,0x3c,0x44,0x78},{  0x9f,0x9f,0xba,0x25},{  0xa8,0xa8,0xe3,0x4b}, 
+{ 0x51,0x51,0xf3,0xa2},{  0xa3,0xa3,0xfe,0x5d},{  0x40,0x40,0xc0,0x80},{  0x8f,0x8f,0x8a,0x05}, 
+{ 0x92,0x92,0xad,0x3f},{  0x9d,0x9d,0xbc,0x21},{  0x38,0x38,0x48,0x70},{  0xf5,0xf5,0x04,0xf1}, 
+{ 0xbc,0xbc,0xdf,0x63},{  0xb6,0xb6,0xc1,0x77},{  0xda,0xda,0x75,0xaf},{  0x21,0x21,0x63,0x42}, 
+{ 0x10,0x10,0x30,0x20},{  0xff,0xff,0x1a,0xe5},{  0xf3,0xf3,0x0e,0xfd},{  0xd2,0xd2,0x6d,0xbf}, 
+{ 0xcd,0xcd,0x4c,0x81},{  0x0c,0x0c,0x14,0x18},{  0x13,0x13,0x35,0x26},{  0xec,0xec,0x2f,0xc3}, 
+{ 0x5f,0x5f,0xe1,0xbe},{  0x97,0x97,0xa2,0x35},{  0x44,0x44,0xcc,0x88},{  0x17,0x17,0x39,0x2e}, 
+{ 0xc4,0xc4,0x57,0x93},{  0xa7,0xa7,0xf2,0x55},{  0x7e,0x7e,0x82,0xfc},{  0x3d,0x3d,0x47,0x7a}, 
+{ 0x64,0x64,0xac,0xc8},{  0x5d,0x5d,0xe7,0xba},{  0x19,0x19,0x2b,0x32},{  0x73,0x73,0x95,0xe6}, 
+{ 0x60,0x60,0xa0,0xc0},{  0x81,0x81,0x98,0x19},{  0x4f,0x4f,0xd1,0x9e},{  0xdc,0xdc,0x7f,0xa3}, 
+{ 0x22,0x22,0x66,0x44},{  0x2a,0x2a,0x7e,0x54},{  0x90,0x90,0xab,0x3b},{  0x88,0x88,0x83,0x0b}, 
+{ 0x46,0x46,0xca,0x8c},{  0xee,0xee,0x29,0xc7},{  0xb8,0xb8,0xd3,0x6b},{  0x14,0x14,0x3c,0x28}, 
+{ 0xde,0xde,0x79,0xa7},{  0x5e,0x5e,0xe2,0xbc},{  0x0b,0x0b,0x1d,0x16},{  0xdb,0xdb,0x76,0xad}, 
+{ 0xe0,0xe0,0x3b,0xdb},{  0x32,0x32,0x56,0x64},{  0x3a,0x3a,0x4e,0x74},{  0x0a,0x0a,0x1e,0x14}, 
+{ 0x49,0x49,0xdb,0x92},{  0x06,0x06,0x0a,0x0c},{  0x24,0x24,0x6c,0x48},{  0x5c,0x5c,0xe4,0xb8}, 
+{ 0xc2,0xc2,0x5d,0x9f},{  0xd3,0xd3,0x6e,0xbd},{  0xac,0xac,0xef,0x43},{  0x62,0x62,0xa6,0xc4}, 
+{ 0x91,0x91,0xa8,0x39},{  0x95,0x95,0xa4,0x31},{  0xe4,0xe4,0x37,0xd3},{  0x79,0x79,0x8b,0xf2}, 
+{ 0xe7,0xe7,0x32,0xd5},{  0xc8,0xc8,0x43,0x8b},{  0x37,0x37,0x59,0x6e},{  0x6d,0x6d,0xb7,0xda}, 
+{ 0x8d,0x8d,0x8c,0x01},{  0xd5,0xd5,0x64,0xb1},{  0x4e,0x4e,0xd2,0x9c},{  0xa9,0xa9,0xe0,0x49}, 
+{ 0x6c,0x6c,0xb4,0xd8},{  0x56,0x56,0xfa,0xac},{  0xf4,0xf4,0x07,0xf3},{  0xea,0xea,0x25,0xcf}, 
+{ 0x65,0x65,0xaf,0xca},{  0x7a,0x7a,0x8e,0xf4},{  0xae,0xae,0xe9,0x47},{  0x08,0x08,0x18,0x10}, 
+{ 0xba,0xba,0xd5,0x6f},{  0x78,0x78,0x88,0xf0},{  0x25,0x25,0x6f,0x4a},{  0x2e,0x2e,0x72,0x5c}, 
+{ 0x1c,0x1c,0x24,0x38},{  0xa6,0xa6,0xf1,0x57},{  0xb4,0xb4,0xc7,0x73},{  0xc6,0xc6,0x51,0x97}, 
+{ 0xe8,0xe8,0x23,0xcb},{  0xdd,0xdd,0x7c,0xa1},{  0x74,0x74,0x9c,0xe8},{  0x1f,0x1f,0x21,0x3e}, 
+{ 0x4b,0x4b,0xdd,0x96},{  0xbd,0xbd,0xdc,0x61},{  0x8b,0x8b,0x86,0x0d},{  0x8a,0x8a,0x85,0x0f}, 
+{ 0x70,0x70,0x90,0xe0},{  0x3e,0x3e,0x42,0x7c},{  0xb5,0xb5,0xc4,0x71},{  0x66,0x66,0xaa,0xcc}, 
+{ 0x48,0x48,0xd8,0x90},{  0x03,0x03,0x05,0x06},{  0xf6,0xf6,0x01,0xf7},{  0x0e,0x0e,0x12,0x1c}, 
+{ 0x61,0x61,0xa3,0xc2},{  0x35,0x35,0x5f,0x6a},{  0x57,0x57,0xf9,0xae},{  0xb9,0xb9,0xd0,0x69}, 
+{ 0x86,0x86,0x91,0x17},{  0xc1,0xc1,0x58,0x99},{  0x1d,0x1d,0x27,0x3a},{  0x9e,0x9e,0xb9,0x27}, 
+{ 0xe1,0xe1,0x38,0xd9},{  0xf8,0xf8,0x13,0xeb},{  0x98,0x98,0xb3,0x2b},{  0x11,0x11,0x33,0x22}, 
+{ 0x69,0x69,0xbb,0xd2},{  0xd9,0xd9,0x70,0xa9},{  0x8e,0x8e,0x89,0x07},{  0x94,0x94,0xa7,0x33}, 
+{ 0x9b,0x9b,0xb6,0x2d},{  0x1e,0x1e,0x22,0x3c},{  0x87,0x87,0x92,0x15},{  0xe9,0xe9,0x20,0xc9}, 
+{ 0xce,0xce,0x49,0x87},{  0x55,0x55,0xff,0xaa},{  0x28,0x28,0x78,0x50},{  0xdf,0xdf,0x7a,0xa5}, 
+{ 0x8c,0x8c,0x8f,0x03},{  0xa1,0xa1,0xf8,0x59},{  0x89,0x89,0x80,0x09},{  0x0d,0x0d,0x17,0x1a}, 
+{ 0xbf,0xbf,0xda,0x65},{  0xe6,0xe6,0x31,0xd7},{  0x42,0x42,0xc6,0x84},{  0x68,0x68,0xb8,0xd0}, 
+{ 0x41,0x41,0xc3,0x82},{  0x99,0x99,0xb0,0x29},{  0x2d,0x2d,0x77,0x5a},{  0x0f,0x0f,0x11,0x1e}, 
+{ 0xb0,0xb0,0xcb,0x7b},{  0x54,0x54,0xfc,0xa8},{  0xbb,0xbb,0xd6,0x6d},{  0x16,0x16,0x3a,0x2c } 
+};
+
+word8 T5[256][4] = {
+{ 0x51,0xf4,0xa7,0x50},{  0x7e,0x41,0x65,0x53},{  0x1a,0x17,0xa4,0xc3},{  0x3a,0x27,0x5e,0x96}, 
+{ 0x3b,0xab,0x6b,0xcb},{  0x1f,0x9d,0x45,0xf1},{  0xac,0xfa,0x58,0xab},{  0x4b,0xe3,0x03,0x93}, 
+{ 0x20,0x30,0xfa,0x55},{  0xad,0x76,0x6d,0xf6},{  0x88,0xcc,0x76,0x91},{  0xf5,0x02,0x4c,0x25}, 
+{ 0x4f,0xe5,0xd7,0xfc},{  0xc5,0x2a,0xcb,0xd7},{  0x26,0x35,0x44,0x80},{  0xb5,0x62,0xa3,0x8f}, 
+{ 0xde,0xb1,0x5a,0x49},{  0x25,0xba,0x1b,0x67},{  0x45,0xea,0x0e,0x98},{  0x5d,0xfe,0xc0,0xe1}, 
+{ 0xc3,0x2f,0x75,0x02},{  0x81,0x4c,0xf0,0x12},{  0x8d,0x46,0x97,0xa3},{  0x6b,0xd3,0xf9,0xc6}, 
+{ 0x03,0x8f,0x5f,0xe7},{  0x15,0x92,0x9c,0x95},{  0xbf,0x6d,0x7a,0xeb},{  0x95,0x52,0x59,0xda}, 
+{ 0xd4,0xbe,0x83,0x2d},{  0x58,0x74,0x21,0xd3},{  0x49,0xe0,0x69,0x29},{  0x8e,0xc9,0xc8,0x44}, 
+{ 0x75,0xc2,0x89,0x6a},{  0xf4,0x8e,0x79,0x78},{  0x99,0x58,0x3e,0x6b},{  0x27,0xb9,0x71,0xdd}, 
+{ 0xbe,0xe1,0x4f,0xb6},{  0xf0,0x88,0xad,0x17},{  0xc9,0x20,0xac,0x66},{  0x7d,0xce,0x3a,0xb4}, 
+{ 0x63,0xdf,0x4a,0x18},{  0xe5,0x1a,0x31,0x82},{  0x97,0x51,0x33,0x60},{  0x62,0x53,0x7f,0x45}, 
+{ 0xb1,0x64,0x77,0xe0},{  0xbb,0x6b,0xae,0x84},{  0xfe,0x81,0xa0,0x1c},{  0xf9,0x08,0x2b,0x94}, 
+{ 0x70,0x48,0x68,0x58},{  0x8f,0x45,0xfd,0x19},{  0x94,0xde,0x6c,0x87},{  0x52,0x7b,0xf8,0xb7}, 
+{ 0xab,0x73,0xd3,0x23},{  0x72,0x4b,0x02,0xe2},{  0xe3,0x1f,0x8f,0x57},{  0x66,0x55,0xab,0x2a}, 
+{ 0xb2,0xeb,0x28,0x07},{  0x2f,0xb5,0xc2,0x03},{  0x86,0xc5,0x7b,0x9a},{  0xd3,0x37,0x08,0xa5}, 
+{ 0x30,0x28,0x87,0xf2},{  0x23,0xbf,0xa5,0xb2},{  0x02,0x03,0x6a,0xba},{  0xed,0x16,0x82,0x5c}, 
+{ 0x8a,0xcf,0x1c,0x2b},{  0xa7,0x79,0xb4,0x92},{  0xf3,0x07,0xf2,0xf0},{  0x4e,0x69,0xe2,0xa1}, 
+{ 0x65,0xda,0xf4,0xcd},{  0x06,0x05,0xbe,0xd5},{  0xd1,0x34,0x62,0x1f},{  0xc4,0xa6,0xfe,0x8a}, 
+{ 0x34,0x2e,0x53,0x9d},{  0xa2,0xf3,0x55,0xa0},{  0x05,0x8a,0xe1,0x32},{  0xa4,0xf6,0xeb,0x75}, 
+{ 0x0b,0x83,0xec,0x39},{  0x40,0x60,0xef,0xaa},{  0x5e,0x71,0x9f,0x06},{  0xbd,0x6e,0x10,0x51}, 
+{ 0x3e,0x21,0x8a,0xf9},{  0x96,0xdd,0x06,0x3d},{  0xdd,0x3e,0x05,0xae},{  0x4d,0xe6,0xbd,0x46}, 
+{ 0x91,0x54,0x8d,0xb5},{  0x71,0xc4,0x5d,0x05},{  0x04,0x06,0xd4,0x6f},{  0x60,0x50,0x15,0xff}, 
+{ 0x19,0x98,0xfb,0x24},{  0xd6,0xbd,0xe9,0x97},{  0x89,0x40,0x43,0xcc},{  0x67,0xd9,0x9e,0x77}, 
+{ 0xb0,0xe8,0x42,0xbd},{  0x07,0x89,0x8b,0x88},{  0xe7,0x19,0x5b,0x38},{  0x79,0xc8,0xee,0xdb}, 
+{ 0xa1,0x7c,0x0a,0x47},{  0x7c,0x42,0x0f,0xe9},{  0xf8,0x84,0x1e,0xc9},{  0x00,0x00,0x00,0x00}, 
+{ 0x09,0x80,0x86,0x83},{  0x32,0x2b,0xed,0x48},{  0x1e,0x11,0x70,0xac},{  0x6c,0x5a,0x72,0x4e}, 
+{ 0xfd,0x0e,0xff,0xfb},{  0x0f,0x85,0x38,0x56},{  0x3d,0xae,0xd5,0x1e},{  0x36,0x2d,0x39,0x27}, 
+{ 0x0a,0x0f,0xd9,0x64},{  0x68,0x5c,0xa6,0x21},{  0x9b,0x5b,0x54,0xd1},{  0x24,0x36,0x2e,0x3a}, 
+{ 0x0c,0x0a,0x67,0xb1},{  0x93,0x57,0xe7,0x0f},{  0xb4,0xee,0x96,0xd2},{  0x1b,0x9b,0x91,0x9e}, 
+{ 0x80,0xc0,0xc5,0x4f},{  0x61,0xdc,0x20,0xa2},{  0x5a,0x77,0x4b,0x69},{  0x1c,0x12,0x1a,0x16}, 
+{ 0xe2,0x93,0xba,0x0a},{  0xc0,0xa0,0x2a,0xe5},{  0x3c,0x22,0xe0,0x43},{  0x12,0x1b,0x17,0x1d}, 
+{ 0x0e,0x09,0x0d,0x0b},{  0xf2,0x8b,0xc7,0xad},{  0x2d,0xb6,0xa8,0xb9},{  0x14,0x1e,0xa9,0xc8}, 
+{ 0x57,0xf1,0x19,0x85},{  0xaf,0x75,0x07,0x4c},{  0xee,0x99,0xdd,0xbb},{  0xa3,0x7f,0x60,0xfd}, 
+{ 0xf7,0x01,0x26,0x9f},{  0x5c,0x72,0xf5,0xbc},{  0x44,0x66,0x3b,0xc5},{  0x5b,0xfb,0x7e,0x34}, 
+{ 0x8b,0x43,0x29,0x76},{  0xcb,0x23,0xc6,0xdc},{  0xb6,0xed,0xfc,0x68},{  0xb8,0xe4,0xf1,0x63}, 
+{ 0xd7,0x31,0xdc,0xca},{  0x42,0x63,0x85,0x10},{  0x13,0x97,0x22,0x40},{  0x84,0xc6,0x11,0x20}, 
+{ 0x85,0x4a,0x24,0x7d},{  0xd2,0xbb,0x3d,0xf8},{  0xae,0xf9,0x32,0x11},{  0xc7,0x29,0xa1,0x6d}, 
+{ 0x1d,0x9e,0x2f,0x4b},{  0xdc,0xb2,0x30,0xf3},{  0x0d,0x86,0x52,0xec},{  0x77,0xc1,0xe3,0xd0}, 
+{ 0x2b,0xb3,0x16,0x6c},{  0xa9,0x70,0xb9,0x99},{  0x11,0x94,0x48,0xfa},{  0x47,0xe9,0x64,0x22}, 
+{ 0xa8,0xfc,0x8c,0xc4},{  0xa0,0xf0,0x3f,0x1a},{  0x56,0x7d,0x2c,0xd8},{  0x22,0x33,0x90,0xef}, 
+{ 0x87,0x49,0x4e,0xc7},{  0xd9,0x38,0xd1,0xc1},{  0x8c,0xca,0xa2,0xfe},{  0x98,0xd4,0x0b,0x36}, 
+{ 0xa6,0xf5,0x81,0xcf},{  0xa5,0x7a,0xde,0x28},{  0xda,0xb7,0x8e,0x26},{  0x3f,0xad,0xbf,0xa4}, 
+{ 0x2c,0x3a,0x9d,0xe4},{  0x50,0x78,0x92,0x0d},{  0x6a,0x5f,0xcc,0x9b},{  0x54,0x7e,0x46,0x62}, 
+{ 0xf6,0x8d,0x13,0xc2},{  0x90,0xd8,0xb8,0xe8},{  0x2e,0x39,0xf7,0x5e},{  0x82,0xc3,0xaf,0xf5}, 
+{ 0x9f,0x5d,0x80,0xbe},{  0x69,0xd0,0x93,0x7c},{  0x6f,0xd5,0x2d,0xa9},{  0xcf,0x25,0x12,0xb3}, 
+{ 0xc8,0xac,0x99,0x3b},{  0x10,0x18,0x7d,0xa7},{  0xe8,0x9c,0x63,0x6e},{  0xdb,0x3b,0xbb,0x7b}, 
+{ 0xcd,0x26,0x78,0x09},{  0x6e,0x59,0x18,0xf4},{  0xec,0x9a,0xb7,0x01},{  0x83,0x4f,0x9a,0xa8}, 
+{ 0xe6,0x95,0x6e,0x65},{  0xaa,0xff,0xe6,0x7e},{  0x21,0xbc,0xcf,0x08},{  0xef,0x15,0xe8,0xe6}, 
+{ 0xba,0xe7,0x9b,0xd9},{  0x4a,0x6f,0x36,0xce},{  0xea,0x9f,0x09,0xd4},{  0x29,0xb0,0x7c,0xd6}, 
+{ 0x31,0xa4,0xb2,0xaf},{  0x2a,0x3f,0x23,0x31},{  0xc6,0xa5,0x94,0x30},{  0x35,0xa2,0x66,0xc0}, 
+{ 0x74,0x4e,0xbc,0x37},{  0xfc,0x82,0xca,0xa6},{  0xe0,0x90,0xd0,0xb0},{  0x33,0xa7,0xd8,0x15}, 
+{ 0xf1,0x04,0x98,0x4a},{  0x41,0xec,0xda,0xf7},{  0x7f,0xcd,0x50,0x0e},{  0x17,0x91,0xf6,0x2f}, 
+{ 0x76,0x4d,0xd6,0x8d},{  0x43,0xef,0xb0,0x4d},{  0xcc,0xaa,0x4d,0x54},{  0xe4,0x96,0x04,0xdf}, 
+{ 0x9e,0xd1,0xb5,0xe3},{  0x4c,0x6a,0x88,0x1b},{  0xc1,0x2c,0x1f,0xb8},{  0x46,0x65,0x51,0x7f}, 
+{ 0x9d,0x5e,0xea,0x04},{  0x01,0x8c,0x35,0x5d},{  0xfa,0x87,0x74,0x73},{  0xfb,0x0b,0x41,0x2e}, 
+{ 0xb3,0x67,0x1d,0x5a},{  0x92,0xdb,0xd2,0x52},{  0xe9,0x10,0x56,0x33},{  0x6d,0xd6,0x47,0x13}, 
+{ 0x9a,0xd7,0x61,0x8c},{  0x37,0xa1,0x0c,0x7a},{  0x59,0xf8,0x14,0x8e},{  0xeb,0x13,0x3c,0x89}, 
+{ 0xce,0xa9,0x27,0xee},{  0xb7,0x61,0xc9,0x35},{  0xe1,0x1c,0xe5,0xed},{  0x7a,0x47,0xb1,0x3c}, 
+{ 0x9c,0xd2,0xdf,0x59},{  0x55,0xf2,0x73,0x3f},{  0x18,0x14,0xce,0x79},{  0x73,0xc7,0x37,0xbf}, 
+{ 0x53,0xf7,0xcd,0xea},{  0x5f,0xfd,0xaa,0x5b},{  0xdf,0x3d,0x6f,0x14},{  0x78,0x44,0xdb,0x86}, 
+{ 0xca,0xaf,0xf3,0x81},{  0xb9,0x68,0xc4,0x3e},{  0x38,0x24,0x34,0x2c},{  0xc2,0xa3,0x40,0x5f}, 
+{ 0x16,0x1d,0xc3,0x72},{  0xbc,0xe2,0x25,0x0c},{  0x28,0x3c,0x49,0x8b},{  0xff,0x0d,0x95,0x41}, 
+{ 0x39,0xa8,0x01,0x71},{  0x08,0x0c,0xb3,0xde},{  0xd8,0xb4,0xe4,0x9c},{  0x64,0x56,0xc1,0x90}, 
+{ 0x7b,0xcb,0x84,0x61},{  0xd5,0x32,0xb6,0x70},{  0x48,0x6c,0x5c,0x74},{  0xd0,0xb8,0x57,0x42 } 
+};
+
+word8 T6[256][4] = {
+{ 0x50,0x51,0xf4,0xa7},{  0x53,0x7e,0x41,0x65},{  0xc3,0x1a,0x17,0xa4},{  0x96,0x3a,0x27,0x5e}, 
+{ 0xcb,0x3b,0xab,0x6b},{  0xf1,0x1f,0x9d,0x45},{  0xab,0xac,0xfa,0x58},{  0x93,0x4b,0xe3,0x03}, 
+{ 0x55,0x20,0x30,0xfa},{  0xf6,0xad,0x76,0x6d},{  0x91,0x88,0xcc,0x76},{  0x25,0xf5,0x02,0x4c}, 
+{ 0xfc,0x4f,0xe5,0xd7},{  0xd7,0xc5,0x2a,0xcb},{  0x80,0x26,0x35,0x44},{  0x8f,0xb5,0x62,0xa3}, 
+{ 0x49,0xde,0xb1,0x5a},{  0x67,0x25,0xba,0x1b},{  0x98,0x45,0xea,0x0e},{  0xe1,0x5d,0xfe,0xc0}, 
+{ 0x02,0xc3,0x2f,0x75},{  0x12,0x81,0x4c,0xf0},{  0xa3,0x8d,0x46,0x97},{  0xc6,0x6b,0xd3,0xf9}, 
+{ 0xe7,0x03,0x8f,0x5f},{  0x95,0x15,0x92,0x9c},{  0xeb,0xbf,0x6d,0x7a},{  0xda,0x95,0x52,0x59}, 
+{ 0x2d,0xd4,0xbe,0x83},{  0xd3,0x58,0x74,0x21},{  0x29,0x49,0xe0,0x69},{  0x44,0x8e,0xc9,0xc8}, 
+{ 0x6a,0x75,0xc2,0x89},{  0x78,0xf4,0x8e,0x79},{  0x6b,0x99,0x58,0x3e},{  0xdd,0x27,0xb9,0x71}, 
+{ 0xb6,0xbe,0xe1,0x4f},{  0x17,0xf0,0x88,0xad},{  0x66,0xc9,0x20,0xac},{  0xb4,0x7d,0xce,0x3a}, 
+{ 0x18,0x63,0xdf,0x4a},{  0x82,0xe5,0x1a,0x31},{  0x60,0x97,0x51,0x33},{  0x45,0x62,0x53,0x7f}, 
+{ 0xe0,0xb1,0x64,0x77},{  0x84,0xbb,0x6b,0xae},{  0x1c,0xfe,0x81,0xa0},{  0x94,0xf9,0x08,0x2b}, 
+{ 0x58,0x70,0x48,0x68},{  0x19,0x8f,0x45,0xfd},{  0x87,0x94,0xde,0x6c},{  0xb7,0x52,0x7b,0xf8}, 
+{ 0x23,0xab,0x73,0xd3},{  0xe2,0x72,0x4b,0x02},{  0x57,0xe3,0x1f,0x8f},{  0x2a,0x66,0x55,0xab}, 
+{ 0x07,0xb2,0xeb,0x28},{  0x03,0x2f,0xb5,0xc2},{  0x9a,0x86,0xc5,0x7b},{  0xa5,0xd3,0x37,0x08}, 
+{ 0xf2,0x30,0x28,0x87},{  0xb2,0x23,0xbf,0xa5},{  0xba,0x02,0x03,0x6a},{  0x5c,0xed,0x16,0x82}, 
+{ 0x2b,0x8a,0xcf,0x1c},{  0x92,0xa7,0x79,0xb4},{  0xf0,0xf3,0x07,0xf2},{  0xa1,0x4e,0x69,0xe2}, 
+{ 0xcd,0x65,0xda,0xf4},{  0xd5,0x06,0x05,0xbe},{  0x1f,0xd1,0x34,0x62},{  0x8a,0xc4,0xa6,0xfe}, 
+{ 0x9d,0x34,0x2e,0x53},{  0xa0,0xa2,0xf3,0x55},{  0x32,0x05,0x8a,0xe1},{  0x75,0xa4,0xf6,0xeb}, 
+{ 0x39,0x0b,0x83,0xec},{  0xaa,0x40,0x60,0xef},{  0x06,0x5e,0x71,0x9f},{  0x51,0xbd,0x6e,0x10}, 
+{ 0xf9,0x3e,0x21,0x8a},{  0x3d,0x96,0xdd,0x06},{  0xae,0xdd,0x3e,0x05},{  0x46,0x4d,0xe6,0xbd}, 
+{ 0xb5,0x91,0x54,0x8d},{  0x05,0x71,0xc4,0x5d},{  0x6f,0x04,0x06,0xd4},{  0xff,0x60,0x50,0x15}, 
+{ 0x24,0x19,0x98,0xfb},{  0x97,0xd6,0xbd,0xe9},{  0xcc,0x89,0x40,0x43},{  0x77,0x67,0xd9,0x9e}, 
+{ 0xbd,0xb0,0xe8,0x42},{  0x88,0x07,0x89,0x8b},{  0x38,0xe7,0x19,0x5b},{  0xdb,0x79,0xc8,0xee}, 
+{ 0x47,0xa1,0x7c,0x0a},{  0xe9,0x7c,0x42,0x0f},{  0xc9,0xf8,0x84,0x1e},{  0x00,0x00,0x00,0x00}, 
+{ 0x83,0x09,0x80,0x86},{  0x48,0x32,0x2b,0xed},{  0xac,0x1e,0x11,0x70},{  0x4e,0x6c,0x5a,0x72}, 
+{ 0xfb,0xfd,0x0e,0xff},{  0x56,0x0f,0x85,0x38},{  0x1e,0x3d,0xae,0xd5},{  0x27,0x36,0x2d,0x39}, 
+{ 0x64,0x0a,0x0f,0xd9},{  0x21,0x68,0x5c,0xa6},{  0xd1,0x9b,0x5b,0x54},{  0x3a,0x24,0x36,0x2e}, 
+{ 0xb1,0x0c,0x0a,0x67},{  0x0f,0x93,0x57,0xe7},{  0xd2,0xb4,0xee,0x96},{  0x9e,0x1b,0x9b,0x91}, 
+{ 0x4f,0x80,0xc0,0xc5},{  0xa2,0x61,0xdc,0x20},{  0x69,0x5a,0x77,0x4b},{  0x16,0x1c,0x12,0x1a}, 
+{ 0x0a,0xe2,0x93,0xba},{  0xe5,0xc0,0xa0,0x2a},{  0x43,0x3c,0x22,0xe0},{  0x1d,0x12,0x1b,0x17}, 
+{ 0x0b,0x0e,0x09,0x0d},{  0xad,0xf2,0x8b,0xc7},{  0xb9,0x2d,0xb6,0xa8},{  0xc8,0x14,0x1e,0xa9}, 
+{ 0x85,0x57,0xf1,0x19},{  0x4c,0xaf,0x75,0x07},{  0xbb,0xee,0x99,0xdd},{  0xfd,0xa3,0x7f,0x60}, 
+{ 0x9f,0xf7,0x01,0x26},{  0xbc,0x5c,0x72,0xf5},{  0xc5,0x44,0x66,0x3b},{  0x34,0x5b,0xfb,0x7e}, 
+{ 0x76,0x8b,0x43,0x29},{  0xdc,0xcb,0x23,0xc6},{  0x68,0xb6,0xed,0xfc},{  0x63,0xb8,0xe4,0xf1}, 
+{ 0xca,0xd7,0x31,0xdc},{  0x10,0x42,0x63,0x85},{  0x40,0x13,0x97,0x22},{  0x20,0x84,0xc6,0x11}, 
+{ 0x7d,0x85,0x4a,0x24},{  0xf8,0xd2,0xbb,0x3d},{  0x11,0xae,0xf9,0x32},{  0x6d,0xc7,0x29,0xa1}, 
+{ 0x4b,0x1d,0x9e,0x2f},{  0xf3,0xdc,0xb2,0x30},{  0xec,0x0d,0x86,0x52},{  0xd0,0x77,0xc1,0xe3}, 
+{ 0x6c,0x2b,0xb3,0x16},{  0x99,0xa9,0x70,0xb9},{  0xfa,0x11,0x94,0x48},{  0x22,0x47,0xe9,0x64}, 
+{ 0xc4,0xa8,0xfc,0x8c},{  0x1a,0xa0,0xf0,0x3f},{  0xd8,0x56,0x7d,0x2c},{  0xef,0x22,0x33,0x90}, 
+{ 0xc7,0x87,0x49,0x4e},{  0xc1,0xd9,0x38,0xd1},{  0xfe,0x8c,0xca,0xa2},{  0x36,0x98,0xd4,0x0b}, 
+{ 0xcf,0xa6,0xf5,0x81},{  0x28,0xa5,0x7a,0xde},{  0x26,0xda,0xb7,0x8e},{  0xa4,0x3f,0xad,0xbf}, 
+{ 0xe4,0x2c,0x3a,0x9d},{  0x0d,0x50,0x78,0x92},{  0x9b,0x6a,0x5f,0xcc},{  0x62,0x54,0x7e,0x46}, 
+{ 0xc2,0xf6,0x8d,0x13},{  0xe8,0x90,0xd8,0xb8},{  0x5e,0x2e,0x39,0xf7},{  0xf5,0x82,0xc3,0xaf}, 
+{ 0xbe,0x9f,0x5d,0x80},{  0x7c,0x69,0xd0,0x93},{  0xa9,0x6f,0xd5,0x2d},{  0xb3,0xcf,0x25,0x12}, 
+{ 0x3b,0xc8,0xac,0x99},{  0xa7,0x10,0x18,0x7d},{  0x6e,0xe8,0x9c,0x63},{  0x7b,0xdb,0x3b,0xbb}, 
+{ 0x09,0xcd,0x26,0x78},{  0xf4,0x6e,0x59,0x18},{  0x01,0xec,0x9a,0xb7},{  0xa8,0x83,0x4f,0x9a}, 
+{ 0x65,0xe6,0x95,0x6e},{  0x7e,0xaa,0xff,0xe6},{  0x08,0x21,0xbc,0xcf},{  0xe6,0xef,0x15,0xe8}, 
+{ 0xd9,0xba,0xe7,0x9b},{  0xce,0x4a,0x6f,0x36},{  0xd4,0xea,0x9f,0x09},{  0xd6,0x29,0xb0,0x7c}, 
+{ 0xaf,0x31,0xa4,0xb2},{  0x31,0x2a,0x3f,0x23},{  0x30,0xc6,0xa5,0x94},{  0xc0,0x35,0xa2,0x66}, 
+{ 0x37,0x74,0x4e,0xbc},{  0xa6,0xfc,0x82,0xca},{  0xb0,0xe0,0x90,0xd0},{  0x15,0x33,0xa7,0xd8}, 
+{ 0x4a,0xf1,0x04,0x98},{  0xf7,0x41,0xec,0xda},{  0x0e,0x7f,0xcd,0x50},{  0x2f,0x17,0x91,0xf6}, 
+{ 0x8d,0x76,0x4d,0xd6},{  0x4d,0x43,0xef,0xb0},{  0x54,0xcc,0xaa,0x4d},{  0xdf,0xe4,0x96,0x04}, 
+{ 0xe3,0x9e,0xd1,0xb5},{  0x1b,0x4c,0x6a,0x88},{  0xb8,0xc1,0x2c,0x1f},{  0x7f,0x46,0x65,0x51}, 
+{ 0x04,0x9d,0x5e,0xea},{  0x5d,0x01,0x8c,0x35},{  0x73,0xfa,0x87,0x74},{  0x2e,0xfb,0x0b,0x41}, 
+{ 0x5a,0xb3,0x67,0x1d},{  0x52,0x92,0xdb,0xd2},{  0x33,0xe9,0x10,0x56},{  0x13,0x6d,0xd6,0x47}, 
+{ 0x8c,0x9a,0xd7,0x61},{  0x7a,0x37,0xa1,0x0c},{  0x8e,0x59,0xf8,0x14},{  0x89,0xeb,0x13,0x3c}, 
+{ 0xee,0xce,0xa9,0x27},{  0x35,0xb7,0x61,0xc9},{  0xed,0xe1,0x1c,0xe5},{  0x3c,0x7a,0x47,0xb1}, 
+{ 0x59,0x9c,0xd2,0xdf},{  0x3f,0x55,0xf2,0x73},{  0x79,0x18,0x14,0xce},{  0xbf,0x73,0xc7,0x37}, 
+{ 0xea,0x53,0xf7,0xcd},{  0x5b,0x5f,0xfd,0xaa},{  0x14,0xdf,0x3d,0x6f},{  0x86,0x78,0x44,0xdb}, 
+{ 0x81,0xca,0xaf,0xf3},{  0x3e,0xb9,0x68,0xc4},{  0x2c,0x38,0x24,0x34},{  0x5f,0xc2,0xa3,0x40}, 
+{ 0x72,0x16,0x1d,0xc3},{  0x0c,0xbc,0xe2,0x25},{  0x8b,0x28,0x3c,0x49},{  0x41,0xff,0x0d,0x95}, 
+{ 0x71,0x39,0xa8,0x01},{  0xde,0x08,0x0c,0xb3},{  0x9c,0xd8,0xb4,0xe4},{  0x90,0x64,0x56,0xc1}, 
+{ 0x61,0x7b,0xcb,0x84},{  0x70,0xd5,0x32,0xb6},{  0x74,0x48,0x6c,0x5c},{  0x42,0xd0,0xb8,0x57 } 
+};
+
+word8 T7[256][4] = {
+{ 0xa7,0x50,0x51,0xf4},{  0x65,0x53,0x7e,0x41},{  0xa4,0xc3,0x1a,0x17},{  0x5e,0x96,0x3a,0x27}, 
+{ 0x6b,0xcb,0x3b,0xab},{  0x45,0xf1,0x1f,0x9d},{  0x58,0xab,0xac,0xfa},{  0x03,0x93,0x4b,0xe3}, 
+{ 0xfa,0x55,0x20,0x30},{  0x6d,0xf6,0xad,0x76},{  0x76,0x91,0x88,0xcc},{  0x4c,0x25,0xf5,0x02}, 
+{ 0xd7,0xfc,0x4f,0xe5},{  0xcb,0xd7,0xc5,0x2a},{  0x44,0x80,0x26,0x35},{  0xa3,0x8f,0xb5,0x62}, 
+{ 0x5a,0x49,0xde,0xb1},{  0x1b,0x67,0x25,0xba},{  0x0e,0x98,0x45,0xea},{  0xc0,0xe1,0x5d,0xfe}, 
+{ 0x75,0x02,0xc3,0x2f},{  0xf0,0x12,0x81,0x4c},{  0x97,0xa3,0x8d,0x46},{  0xf9,0xc6,0x6b,0xd3}, 
+{ 0x5f,0xe7,0x03,0x8f},{  0x9c,0x95,0x15,0x92},{  0x7a,0xeb,0xbf,0x6d},{  0x59,0xda,0x95,0x52}, 
+{ 0x83,0x2d,0xd4,0xbe},{  0x21,0xd3,0x58,0x74},{  0x69,0x29,0x49,0xe0},{  0xc8,0x44,0x8e,0xc9}, 
+{ 0x89,0x6a,0x75,0xc2},{  0x79,0x78,0xf4,0x8e},{  0x3e,0x6b,0x99,0x58},{  0x71,0xdd,0x27,0xb9}, 
+{ 0x4f,0xb6,0xbe,0xe1},{  0xad,0x17,0xf0,0x88},{  0xac,0x66,0xc9,0x20},{  0x3a,0xb4,0x7d,0xce}, 
+{ 0x4a,0x18,0x63,0xdf},{  0x31,0x82,0xe5,0x1a},{  0x33,0x60,0x97,0x51},{  0x7f,0x45,0x62,0x53}, 
+{ 0x77,0xe0,0xb1,0x64},{  0xae,0x84,0xbb,0x6b},{  0xa0,0x1c,0xfe,0x81},{  0x2b,0x94,0xf9,0x08}, 
+{ 0x68,0x58,0x70,0x48},{  0xfd,0x19,0x8f,0x45},{  0x6c,0x87,0x94,0xde},{  0xf8,0xb7,0x52,0x7b}, 
+{ 0xd3,0x23,0xab,0x73},{  0x02,0xe2,0x72,0x4b},{  0x8f,0x57,0xe3,0x1f},{  0xab,0x2a,0x66,0x55}, 
+{ 0x28,0x07,0xb2,0xeb},{  0xc2,0x03,0x2f,0xb5},{  0x7b,0x9a,0x86,0xc5},{  0x08,0xa5,0xd3,0x37}, 
+{ 0x87,0xf2,0x30,0x28},{  0xa5,0xb2,0x23,0xbf},{  0x6a,0xba,0x02,0x03},{  0x82,0x5c,0xed,0x16}, 
+{ 0x1c,0x2b,0x8a,0xcf},{  0xb4,0x92,0xa7,0x79},{  0xf2,0xf0,0xf3,0x07},{  0xe2,0xa1,0x4e,0x69}, 
+{ 0xf4,0xcd,0x65,0xda},{  0xbe,0xd5,0x06,0x05},{  0x62,0x1f,0xd1,0x34},{  0xfe,0x8a,0xc4,0xa6}, 
+{ 0x53,0x9d,0x34,0x2e},{  0x55,0xa0,0xa2,0xf3},{  0xe1,0x32,0x05,0x8a},{  0xeb,0x75,0xa4,0xf6}, 
+{ 0xec,0x39,0x0b,0x83},{  0xef,0xaa,0x40,0x60},{  0x9f,0x06,0x5e,0x71},{  0x10,0x51,0xbd,0x6e}, 
+{ 0x8a,0xf9,0x3e,0x21},{  0x06,0x3d,0x96,0xdd},{  0x05,0xae,0xdd,0x3e},{  0xbd,0x46,0x4d,0xe6}, 
+{ 0x8d,0xb5,0x91,0x54},{  0x5d,0x05,0x71,0xc4},{  0xd4,0x6f,0x04,0x06},{  0x15,0xff,0x60,0x50}, 
+{ 0xfb,0x24,0x19,0x98},{  0xe9,0x97,0xd6,0xbd},{  0x43,0xcc,0x89,0x40},{  0x9e,0x77,0x67,0xd9}, 
+{ 0x42,0xbd,0xb0,0xe8},{  0x8b,0x88,0x07,0x89},{  0x5b,0x38,0xe7,0x19},{  0xee,0xdb,0x79,0xc8}, 
+{ 0x0a,0x47,0xa1,0x7c},{  0x0f,0xe9,0x7c,0x42},{  0x1e,0xc9,0xf8,0x84},{  0x00,0x00,0x00,0x00}, 
+{ 0x86,0x83,0x09,0x80},{  0xed,0x48,0x32,0x2b},{  0x70,0xac,0x1e,0x11},{  0x72,0x4e,0x6c,0x5a}, 
+{ 0xff,0xfb,0xfd,0x0e},{  0x38,0x56,0x0f,0x85},{  0xd5,0x1e,0x3d,0xae},{  0x39,0x27,0x36,0x2d}, 
+{ 0xd9,0x64,0x0a,0x0f},{  0xa6,0x21,0x68,0x5c},{  0x54,0xd1,0x9b,0x5b},{  0x2e,0x3a,0x24,0x36}, 
+{ 0x67,0xb1,0x0c,0x0a},{  0xe7,0x0f,0x93,0x57},{  0x96,0xd2,0xb4,0xee},{  0x91,0x9e,0x1b,0x9b}, 
+{ 0xc5,0x4f,0x80,0xc0},{  0x20,0xa2,0x61,0xdc},{  0x4b,0x69,0x5a,0x77},{  0x1a,0x16,0x1c,0x12}, 
+{ 0xba,0x0a,0xe2,0x93},{  0x2a,0xe5,0xc0,0xa0},{  0xe0,0x43,0x3c,0x22},{  0x17,0x1d,0x12,0x1b}, 
+{ 0x0d,0x0b,0x0e,0x09},{  0xc7,0xad,0xf2,0x8b},{  0xa8,0xb9,0x2d,0xb6},{  0xa9,0xc8,0x14,0x1e}, 
+{ 0x19,0x85,0x57,0xf1},{  0x07,0x4c,0xaf,0x75},{  0xdd,0xbb,0xee,0x99},{  0x60,0xfd,0xa3,0x7f}, 
+{ 0x26,0x9f,0xf7,0x01},{  0xf5,0xbc,0x5c,0x72},{  0x3b,0xc5,0x44,0x66},{  0x7e,0x34,0x5b,0xfb}, 
+{ 0x29,0x76,0x8b,0x43},{  0xc6,0xdc,0xcb,0x23},{  0xfc,0x68,0xb6,0xed},{  0xf1,0x63,0xb8,0xe4}, 
+{ 0xdc,0xca,0xd7,0x31},{  0x85,0x10,0x42,0x63},{  0x22,0x40,0x13,0x97},{  0x11,0x20,0x84,0xc6}, 
+{ 0x24,0x7d,0x85,0x4a},{  0x3d,0xf8,0xd2,0xbb},{  0x32,0x11,0xae,0xf9},{  0xa1,0x6d,0xc7,0x29}, 
+{ 0x2f,0x4b,0x1d,0x9e},{  0x30,0xf3,0xdc,0xb2},{  0x52,0xec,0x0d,0x86},{  0xe3,0xd0,0x77,0xc1}, 
+{ 0x16,0x6c,0x2b,0xb3},{  0xb9,0x99,0xa9,0x70},{  0x48,0xfa,0x11,0x94},{  0x64,0x22,0x47,0xe9}, 
+{ 0x8c,0xc4,0xa8,0xfc},{  0x3f,0x1a,0xa0,0xf0},{  0x2c,0xd8,0x56,0x7d},{  0x90,0xef,0x22,0x33}, 
+{ 0x4e,0xc7,0x87,0x49},{  0xd1,0xc1,0xd9,0x38},{  0xa2,0xfe,0x8c,0xca},{  0x0b,0x36,0x98,0xd4}, 
+{ 0x81,0xcf,0xa6,0xf5},{  0xde,0x28,0xa5,0x7a},{  0x8e,0x26,0xda,0xb7},{  0xbf,0xa4,0x3f,0xad}, 
+{ 0x9d,0xe4,0x2c,0x3a},{  0x92,0x0d,0x50,0x78},{  0xcc,0x9b,0x6a,0x5f},{  0x46,0x62,0x54,0x7e}, 
+{ 0x13,0xc2,0xf6,0x8d},{  0xb8,0xe8,0x90,0xd8},{  0xf7,0x5e,0x2e,0x39},{  0xaf,0xf5,0x82,0xc3}, 
+{ 0x80,0xbe,0x9f,0x5d},{  0x93,0x7c,0x69,0xd0},{  0x2d,0xa9,0x6f,0xd5},{  0x12,0xb3,0xcf,0x25}, 
+{ 0x99,0x3b,0xc8,0xac},{  0x7d,0xa7,0x10,0x18},{  0x63,0x6e,0xe8,0x9c},{  0xbb,0x7b,0xdb,0x3b}, 
+{ 0x78,0x09,0xcd,0x26},{  0x18,0xf4,0x6e,0x59},{  0xb7,0x01,0xec,0x9a},{  0x9a,0xa8,0x83,0x4f}, 
+{ 0x6e,0x65,0xe6,0x95},{  0xe6,0x7e,0xaa,0xff},{  0xcf,0x08,0x21,0xbc},{  0xe8,0xe6,0xef,0x15}, 
+{ 0x9b,0xd9,0xba,0xe7},{  0x36,0xce,0x4a,0x6f},{  0x09,0xd4,0xea,0x9f},{  0x7c,0xd6,0x29,0xb0}, 
+{ 0xb2,0xaf,0x31,0xa4},{  0x23,0x31,0x2a,0x3f},{  0x94,0x30,0xc6,0xa5},{  0x66,0xc0,0x35,0xa2}, 
+{ 0xbc,0x37,0x74,0x4e},{  0xca,0xa6,0xfc,0x82},{  0xd0,0xb0,0xe0,0x90},{  0xd8,0x15,0x33,0xa7}, 
+{ 0x98,0x4a,0xf1,0x04},{  0xda,0xf7,0x41,0xec},{  0x50,0x0e,0x7f,0xcd},{  0xf6,0x2f,0x17,0x91}, 
+{ 0xd6,0x8d,0x76,0x4d},{  0xb0,0x4d,0x43,0xef},{  0x4d,0x54,0xcc,0xaa},{  0x04,0xdf,0xe4,0x96}, 
+{ 0xb5,0xe3,0x9e,0xd1},{  0x88,0x1b,0x4c,0x6a},{  0x1f,0xb8,0xc1,0x2c},{  0x51,0x7f,0x46,0x65}, 
+{ 0xea,0x04,0x9d,0x5e},{  0x35,0x5d,0x01,0x8c},{  0x74,0x73,0xfa,0x87},{  0x41,0x2e,0xfb,0x0b}, 
+{ 0x1d,0x5a,0xb3,0x67},{  0xd2,0x52,0x92,0xdb},{  0x56,0x33,0xe9,0x10},{  0x47,0x13,0x6d,0xd6}, 
+{ 0x61,0x8c,0x9a,0xd7},{  0x0c,0x7a,0x37,0xa1},{  0x14,0x8e,0x59,0xf8},{  0x3c,0x89,0xeb,0x13}, 
+{ 0x27,0xee,0xce,0xa9},{  0xc9,0x35,0xb7,0x61},{  0xe5,0xed,0xe1,0x1c},{  0xb1,0x3c,0x7a,0x47}, 
+{ 0xdf,0x59,0x9c,0xd2},{  0x73,0x3f,0x55,0xf2},{  0xce,0x79,0x18,0x14},{  0x37,0xbf,0x73,0xc7}, 
+{ 0xcd,0xea,0x53,0xf7},{  0xaa,0x5b,0x5f,0xfd},{  0x6f,0x14,0xdf,0x3d},{  0xdb,0x86,0x78,0x44}, 
+{ 0xf3,0x81,0xca,0xaf},{  0xc4,0x3e,0xb9,0x68},{  0x34,0x2c,0x38,0x24},{  0x40,0x5f,0xc2,0xa3}, 
+{ 0xc3,0x72,0x16,0x1d},{  0x25,0x0c,0xbc,0xe2},{  0x49,0x8b,0x28,0x3c},{  0x95,0x41,0xff,0x0d}, 
+{ 0x01,0x71,0x39,0xa8},{  0xb3,0xde,0x08,0x0c},{  0xe4,0x9c,0xd8,0xb4},{  0xc1,0x90,0x64,0x56}, 
+{ 0x84,0x61,0x7b,0xcb},{  0xb6,0x70,0xd5,0x32},{  0x5c,0x74,0x48,0x6c},{  0x57,0x42,0xd0,0xb8 } 
+};
+
+word8 T8[256][4] = {
+{ 0xf4,0xa7,0x50,0x51},{  0x41,0x65,0x53,0x7e},{  0x17,0xa4,0xc3,0x1a},{  0x27,0x5e,0x96,0x3a}, 
+{ 0xab,0x6b,0xcb,0x3b},{  0x9d,0x45,0xf1,0x1f},{  0xfa,0x58,0xab,0xac},{  0xe3,0x03,0x93,0x4b}, 
+{ 0x30,0xfa,0x55,0x20},{  0x76,0x6d,0xf6,0xad},{  0xcc,0x76,0x91,0x88},{  0x02,0x4c,0x25,0xf5}, 
+{ 0xe5,0xd7,0xfc,0x4f},{  0x2a,0xcb,0xd7,0xc5},{  0x35,0x44,0x80,0x26},{  0x62,0xa3,0x8f,0xb5}, 
+{ 0xb1,0x5a,0x49,0xde},{  0xba,0x1b,0x67,0x25},{  0xea,0x0e,0x98,0x45},{  0xfe,0xc0,0xe1,0x5d}, 
+{ 0x2f,0x75,0x02,0xc3},{  0x4c,0xf0,0x12,0x81},{  0x46,0x97,0xa3,0x8d},{  0xd3,0xf9,0xc6,0x6b}, 
+{ 0x8f,0x5f,0xe7,0x03},{  0x92,0x9c,0x95,0x15},{  0x6d,0x7a,0xeb,0xbf},{  0x52,0x59,0xda,0x95}, 
+{ 0xbe,0x83,0x2d,0xd4},{  0x74,0x21,0xd3,0x58},{  0xe0,0x69,0x29,0x49},{  0xc9,0xc8,0x44,0x8e}, 
+{ 0xc2,0x89,0x6a,0x75},{  0x8e,0x79,0x78,0xf4},{  0x58,0x3e,0x6b,0x99},{  0xb9,0x71,0xdd,0x27}, 
+{ 0xe1,0x4f,0xb6,0xbe},{  0x88,0xad,0x17,0xf0},{  0x20,0xac,0x66,0xc9},{  0xce,0x3a,0xb4,0x7d}, 
+{ 0xdf,0x4a,0x18,0x63},{  0x1a,0x31,0x82,0xe5},{  0x51,0x33,0x60,0x97},{  0x53,0x7f,0x45,0x62}, 
+{ 0x64,0x77,0xe0,0xb1},{  0x6b,0xae,0x84,0xbb},{  0x81,0xa0,0x1c,0xfe},{  0x08,0x2b,0x94,0xf9}, 
+{ 0x48,0x68,0x58,0x70},{  0x45,0xfd,0x19,0x8f},{  0xde,0x6c,0x87,0x94},{  0x7b,0xf8,0xb7,0x52}, 
+{ 0x73,0xd3,0x23,0xab},{  0x4b,0x02,0xe2,0x72},{  0x1f,0x8f,0x57,0xe3},{  0x55,0xab,0x2a,0x66}, 
+{ 0xeb,0x28,0x07,0xb2},{  0xb5,0xc2,0x03,0x2f},{  0xc5,0x7b,0x9a,0x86},{  0x37,0x08,0xa5,0xd3}, 
+{ 0x28,0x87,0xf2,0x30},{  0xbf,0xa5,0xb2,0x23},{  0x03,0x6a,0xba,0x02},{  0x16,0x82,0x5c,0xed}, 
+{ 0xcf,0x1c,0x2b,0x8a},{  0x79,0xb4,0x92,0xa7},{  0x07,0xf2,0xf0,0xf3},{  0x69,0xe2,0xa1,0x4e}, 
+{ 0xda,0xf4,0xcd,0x65},{  0x05,0xbe,0xd5,0x06},{  0x34,0x62,0x1f,0xd1},{  0xa6,0xfe,0x8a,0xc4}, 
+{ 0x2e,0x53,0x9d,0x34},{  0xf3,0x55,0xa0,0xa2},{  0x8a,0xe1,0x32,0x05},{  0xf6,0xeb,0x75,0xa4}, 
+{ 0x83,0xec,0x39,0x0b},{  0x60,0xef,0xaa,0x40},{  0x71,0x9f,0x06,0x5e},{  0x6e,0x10,0x51,0xbd}, 
+{ 0x21,0x8a,0xf9,0x3e},{  0xdd,0x06,0x3d,0x96},{  0x3e,0x05,0xae,0xdd},{  0xe6,0xbd,0x46,0x4d}, 
+{ 0x54,0x8d,0xb5,0x91},{  0xc4,0x5d,0x05,0x71},{  0x06,0xd4,0x6f,0x04},{  0x50,0x15,0xff,0x60}, 
+{ 0x98,0xfb,0x24,0x19},{  0xbd,0xe9,0x97,0xd6},{  0x40,0x43,0xcc,0x89},{  0xd9,0x9e,0x77,0x67}, 
+{ 0xe8,0x42,0xbd,0xb0},{  0x89,0x8b,0x88,0x07},{  0x19,0x5b,0x38,0xe7},{  0xc8,0xee,0xdb,0x79}, 
+{ 0x7c,0x0a,0x47,0xa1},{  0x42,0x0f,0xe9,0x7c},{  0x84,0x1e,0xc9,0xf8},{  0x00,0x00,0x00,0x00}, 
+{ 0x80,0x86,0x83,0x09},{  0x2b,0xed,0x48,0x32},{  0x11,0x70,0xac,0x1e},{  0x5a,0x72,0x4e,0x6c}, 
+{ 0x0e,0xff,0xfb,0xfd},{  0x85,0x38,0x56,0x0f},{  0xae,0xd5,0x1e,0x3d},{  0x2d,0x39,0x27,0x36}, 
+{ 0x0f,0xd9,0x64,0x0a},{  0x5c,0xa6,0x21,0x68},{  0x5b,0x54,0xd1,0x9b},{  0x36,0x2e,0x3a,0x24}, 
+{ 0x0a,0x67,0xb1,0x0c},{  0x57,0xe7,0x0f,0x93},{  0xee,0x96,0xd2,0xb4},{  0x9b,0x91,0x9e,0x1b}, 
+{ 0xc0,0xc5,0x4f,0x80},{  0xdc,0x20,0xa2,0x61},{  0x77,0x4b,0x69,0x5a},{  0x12,0x1a,0x16,0x1c}, 
+{ 0x93,0xba,0x0a,0xe2},{  0xa0,0x2a,0xe5,0xc0},{  0x22,0xe0,0x43,0x3c},{  0x1b,0x17,0x1d,0x12}, 
+{ 0x09,0x0d,0x0b,0x0e},{  0x8b,0xc7,0xad,0xf2},{  0xb6,0xa8,0xb9,0x2d},{  0x1e,0xa9,0xc8,0x14}, 
+{ 0xf1,0x19,0x85,0x57},{  0x75,0x07,0x4c,0xaf},{  0x99,0xdd,0xbb,0xee},{  0x7f,0x60,0xfd,0xa3}, 
+{ 0x01,0x26,0x9f,0xf7},{  0x72,0xf5,0xbc,0x5c},{  0x66,0x3b,0xc5,0x44},{  0xfb,0x7e,0x34,0x5b}, 
+{ 0x43,0x29,0x76,0x8b},{  0x23,0xc6,0xdc,0xcb},{  0xed,0xfc,0x68,0xb6},{  0xe4,0xf1,0x63,0xb8}, 
+{ 0x31,0xdc,0xca,0xd7},{  0x63,0x85,0x10,0x42},{  0x97,0x22,0x40,0x13},{  0xc6,0x11,0x20,0x84}, 
+{ 0x4a,0x24,0x7d,0x85},{  0xbb,0x3d,0xf8,0xd2},{  0xf9,0x32,0x11,0xae},{  0x29,0xa1,0x6d,0xc7}, 
+{ 0x9e,0x2f,0x4b,0x1d},{  0xb2,0x30,0xf3,0xdc},{  0x86,0x52,0xec,0x0d},{  0xc1,0xe3,0xd0,0x77}, 
+{ 0xb3,0x16,0x6c,0x2b},{  0x70,0xb9,0x99,0xa9},{  0x94,0x48,0xfa,0x11},{  0xe9,0x64,0x22,0x47}, 
+{ 0xfc,0x8c,0xc4,0xa8},{  0xf0,0x3f,0x1a,0xa0},{  0x7d,0x2c,0xd8,0x56},{  0x33,0x90,0xef,0x22}, 
+{ 0x49,0x4e,0xc7,0x87},{  0x38,0xd1,0xc1,0xd9},{  0xca,0xa2,0xfe,0x8c},{  0xd4,0x0b,0x36,0x98}, 
+{ 0xf5,0x81,0xcf,0xa6},{  0x7a,0xde,0x28,0xa5},{  0xb7,0x8e,0x26,0xda},{  0xad,0xbf,0xa4,0x3f}, 
+{ 0x3a,0x9d,0xe4,0x2c},{  0x78,0x92,0x0d,0x50},{  0x5f,0xcc,0x9b,0x6a},{  0x7e,0x46,0x62,0x54}, 
+{ 0x8d,0x13,0xc2,0xf6},{  0xd8,0xb8,0xe8,0x90},{  0x39,0xf7,0x5e,0x2e},{  0xc3,0xaf,0xf5,0x82}, 
+{ 0x5d,0x80,0xbe,0x9f},{  0xd0,0x93,0x7c,0x69},{  0xd5,0x2d,0xa9,0x6f},{  0x25,0x12,0xb3,0xcf}, 
+{ 0xac,0x99,0x3b,0xc8},{  0x18,0x7d,0xa7,0x10},{  0x9c,0x63,0x6e,0xe8},{  0x3b,0xbb,0x7b,0xdb}, 
+{ 0x26,0x78,0x09,0xcd},{  0x59,0x18,0xf4,0x6e},{  0x9a,0xb7,0x01,0xec},{  0x4f,0x9a,0xa8,0x83}, 
+{ 0x95,0x6e,0x65,0xe6},{  0xff,0xe6,0x7e,0xaa},{  0xbc,0xcf,0x08,0x21},{  0x15,0xe8,0xe6,0xef}, 
+{ 0xe7,0x9b,0xd9,0xba},{  0x6f,0x36,0xce,0x4a},{  0x9f,0x09,0xd4,0xea},{  0xb0,0x7c,0xd6,0x29}, 
+{ 0xa4,0xb2,0xaf,0x31},{  0x3f,0x23,0x31,0x2a},{  0xa5,0x94,0x30,0xc6},{  0xa2,0x66,0xc0,0x35}, 
+{ 0x4e,0xbc,0x37,0x74},{  0x82,0xca,0xa6,0xfc},{  0x90,0xd0,0xb0,0xe0},{  0xa7,0xd8,0x15,0x33}, 
+{ 0x04,0x98,0x4a,0xf1},{  0xec,0xda,0xf7,0x41},{  0xcd,0x50,0x0e,0x7f},{  0x91,0xf6,0x2f,0x17}, 
+{ 0x4d,0xd6,0x8d,0x76},{  0xef,0xb0,0x4d,0x43},{  0xaa,0x4d,0x54,0xcc},{  0x96,0x04,0xdf,0xe4}, 
+{ 0xd1,0xb5,0xe3,0x9e},{  0x6a,0x88,0x1b,0x4c},{  0x2c,0x1f,0xb8,0xc1},{  0x65,0x51,0x7f,0x46}, 
+{ 0x5e,0xea,0x04,0x9d},{  0x8c,0x35,0x5d,0x01},{  0x87,0x74,0x73,0xfa},{  0x0b,0x41,0x2e,0xfb}, 
+{ 0x67,0x1d,0x5a,0xb3},{  0xdb,0xd2,0x52,0x92},{  0x10,0x56,0x33,0xe9},{  0xd6,0x47,0x13,0x6d}, 
+{ 0xd7,0x61,0x8c,0x9a},{  0xa1,0x0c,0x7a,0x37},{  0xf8,0x14,0x8e,0x59},{  0x13,0x3c,0x89,0xeb}, 
+{ 0xa9,0x27,0xee,0xce},{  0x61,0xc9,0x35,0xb7},{  0x1c,0xe5,0xed,0xe1},{  0x47,0xb1,0x3c,0x7a}, 
+{ 0xd2,0xdf,0x59,0x9c},{  0xf2,0x73,0x3f,0x55},{  0x14,0xce,0x79,0x18},{  0xc7,0x37,0xbf,0x73}, 
+{ 0xf7,0xcd,0xea,0x53},{  0xfd,0xaa,0x5b,0x5f},{  0x3d,0x6f,0x14,0xdf},{  0x44,0xdb,0x86,0x78}, 
+{ 0xaf,0xf3,0x81,0xca},{  0x68,0xc4,0x3e,0xb9},{  0x24,0x34,0x2c,0x38},{  0xa3,0x40,0x5f,0xc2}, 
+{ 0x1d,0xc3,0x72,0x16},{  0xe2,0x25,0x0c,0xbc},{  0x3c,0x49,0x8b,0x28},{  0x0d,0x95,0x41,0xff}, 
+{ 0xa8,0x01,0x71,0x39},{  0x0c,0xb3,0xde,0x08},{  0xb4,0xe4,0x9c,0xd8},{  0x56,0xc1,0x90,0x64}, 
+{ 0xcb,0x84,0x61,0x7b},{  0x32,0xb6,0x70,0xd5},{  0x6c,0x5c,0x74,0x48},{  0xb8,0x57,0x42,0xd0 } 
+};
+
+word8 S5[256] = {
+0x52,0x09,0x6a,0xd5,
+0x30,0x36,0xa5,0x38,
+0xbf,0x40,0xa3,0x9e,
+0x81,0xf3,0xd7,0xfb,
+0x7c,0xe3,0x39,0x82,
+0x9b,0x2f,0xff,0x87,
+0x34,0x8e,0x43,0x44,
+0xc4,0xde,0xe9,0xcb,
+0x54,0x7b,0x94,0x32,
+0xa6,0xc2,0x23,0x3d,
+0xee,0x4c,0x95,0x0b,
+0x42,0xfa,0xc3,0x4e,
+0x08,0x2e,0xa1,0x66,
+0x28,0xd9,0x24,0xb2,
+0x76,0x5b,0xa2,0x49,
+0x6d,0x8b,0xd1,0x25,
+0x72,0xf8,0xf6,0x64,
+0x86,0x68,0x98,0x16,
+0xd4,0xa4,0x5c,0xcc,
+0x5d,0x65,0xb6,0x92,
+0x6c,0x70,0x48,0x50,
+0xfd,0xed,0xb9,0xda,
+0x5e,0x15,0x46,0x57,
+0xa7,0x8d,0x9d,0x84,
+0x90,0xd8,0xab,0x00,
+0x8c,0xbc,0xd3,0x0a,
+0xf7,0xe4,0x58,0x05,
+0xb8,0xb3,0x45,0x06,
+0xd0,0x2c,0x1e,0x8f,
+0xca,0x3f,0x0f,0x02,
+0xc1,0xaf,0xbd,0x03,
+0x01,0x13,0x8a,0x6b,
+0x3a,0x91,0x11,0x41,
+0x4f,0x67,0xdc,0xea,
+0x97,0xf2,0xcf,0xce,
+0xf0,0xb4,0xe6,0x73,
+0x96,0xac,0x74,0x22,
+0xe7,0xad,0x35,0x85,
+0xe2,0xf9,0x37,0xe8,
+0x1c,0x75,0xdf,0x6e,
+0x47,0xf1,0x1a,0x71,
+0x1d,0x29,0xc5,0x89,
+0x6f,0xb7,0x62,0x0e,
+0xaa,0x18,0xbe,0x1b,
+0xfc,0x56,0x3e,0x4b,
+0xc6,0xd2,0x79,0x20,
+0x9a,0xdb,0xc0,0xfe,
+0x78,0xcd,0x5a,0xf4,
+0x1f,0xdd,0xa8,0x33,
+0x88,0x07,0xc7,0x31,
+0xb1,0x12,0x10,0x59,
+0x27,0x80,0xec,0x5f,
+0x60,0x51,0x7f,0xa9,
+0x19,0xb5,0x4a,0x0d,
+0x2d,0xe5,0x7a,0x9f,
+0x93,0xc9,0x9c,0xef,
+0xa0,0xe0,0x3b,0x4d,
+0xae,0x2a,0xf5,0xb0,
+0xc8,0xeb,0xbb,0x3c,
+0x83,0x53,0x99,0x61,
+0x17,0x2b,0x04,0x7e,
+0xba,0x77,0xd6,0x26,
+0xe1,0x69,0x14,0x63,
+0x55,0x21,0x0c,0x7d
+};
+
+word8 U1[256][4] = {
+{ 0x00,0x00,0x00,0x00},{  0x0e,0x09,0x0d,0x0b},{  0x1c,0x12,0x1a,0x16},{  0x12,0x1b,0x17,0x1d}, 
+{ 0x38,0x24,0x34,0x2c},{  0x36,0x2d,0x39,0x27},{  0x24,0x36,0x2e,0x3a},{  0x2a,0x3f,0x23,0x31}, 
+{ 0x70,0x48,0x68,0x58},{  0x7e,0x41,0x65,0x53},{  0x6c,0x5a,0x72,0x4e},{  0x62,0x53,0x7f,0x45}, 
+{ 0x48,0x6c,0x5c,0x74},{  0x46,0x65,0x51,0x7f},{  0x54,0x7e,0x46,0x62},{  0x5a,0x77,0x4b,0x69}, 
+{ 0xe0,0x90,0xd0,0xb0},{  0xee,0x99,0xdd,0xbb},{  0xfc,0x82,0xca,0xa6},{  0xf2,0x8b,0xc7,0xad}, 
+{ 0xd8,0xb4,0xe4,0x9c},{  0xd6,0xbd,0xe9,0x97},{  0xc4,0xa6,0xfe,0x8a},{  0xca,0xaf,0xf3,0x81}, 
+{ 0x90,0xd8,0xb8,0xe8},{  0x9e,0xd1,0xb5,0xe3},{  0x8c,0xca,0xa2,0xfe},{  0x82,0xc3,0xaf,0xf5}, 
+{ 0xa8,0xfc,0x8c,0xc4},{  0xa6,0xf5,0x81,0xcf},{  0xb4,0xee,0x96,0xd2},{  0xba,0xe7,0x9b,0xd9}, 
+{ 0xdb,0x3b,0xbb,0x7b},{  0xd5,0x32,0xb6,0x70},{  0xc7,0x29,0xa1,0x6d},{  0xc9,0x20,0xac,0x66}, 
+{ 0xe3,0x1f,0x8f,0x57},{  0xed,0x16,0x82,0x5c},{  0xff,0x0d,0x95,0x41},{  0xf1,0x04,0x98,0x4a}, 
+{ 0xab,0x73,0xd3,0x23},{  0xa5,0x7a,0xde,0x28},{  0xb7,0x61,0xc9,0x35},{  0xb9,0x68,0xc4,0x3e}, 
+{ 0x93,0x57,0xe7,0x0f},{  0x9d,0x5e,0xea,0x04},{  0x8f,0x45,0xfd,0x19},{  0x81,0x4c,0xf0,0x12}, 
+{ 0x3b,0xab,0x6b,0xcb},{  0x35,0xa2,0x66,0xc0},{  0x27,0xb9,0x71,0xdd},{  0x29,0xb0,0x7c,0xd6}, 
+{ 0x03,0x8f,0x5f,0xe7},{  0x0d,0x86,0x52,0xec},{  0x1f,0x9d,0x45,0xf1},{  0x11,0x94,0x48,0xfa}, 
+{ 0x4b,0xe3,0x03,0x93},{  0x45,0xea,0x0e,0x98},{  0x57,0xf1,0x19,0x85},{  0x59,0xf8,0x14,0x8e}, 
+{ 0x73,0xc7,0x37,0xbf},{  0x7d,0xce,0x3a,0xb4},{  0x6f,0xd5,0x2d,0xa9},{  0x61,0xdc,0x20,0xa2}, 
+{ 0xad,0x76,0x6d,0xf6},{  0xa3,0x7f,0x60,0xfd},{  0xb1,0x64,0x77,0xe0},{  0xbf,0x6d,0x7a,0xeb}, 
+{ 0x95,0x52,0x59,0xda},{  0x9b,0x5b,0x54,0xd1},{  0x89,0x40,0x43,0xcc},{  0x87,0x49,0x4e,0xc7}, 
+{ 0xdd,0x3e,0x05,0xae},{  0xd3,0x37,0x08,0xa5},{  0xc1,0x2c,0x1f,0xb8},{  0xcf,0x25,0x12,0xb3}, 
+{ 0xe5,0x1a,0x31,0x82},{  0xeb,0x13,0x3c,0x89},{  0xf9,0x08,0x2b,0x94},{  0xf7,0x01,0x26,0x9f}, 
+{ 0x4d,0xe6,0xbd,0x46},{  0x43,0xef,0xb0,0x4d},{  0x51,0xf4,0xa7,0x50},{  0x5f,0xfd,0xaa,0x5b}, 
+{ 0x75,0xc2,0x89,0x6a},{  0x7b,0xcb,0x84,0x61},{  0x69,0xd0,0x93,0x7c},{  0x67,0xd9,0x9e,0x77}, 
+{ 0x3d,0xae,0xd5,0x1e},{  0x33,0xa7,0xd8,0x15},{  0x21,0xbc,0xcf,0x08},{  0x2f,0xb5,0xc2,0x03}, 
+{ 0x05,0x8a,0xe1,0x32},{  0x0b,0x83,0xec,0x39},{  0x19,0x98,0xfb,0x24},{  0x17,0x91,0xf6,0x2f}, 
+{ 0x76,0x4d,0xd6,0x8d},{  0x78,0x44,0xdb,0x86},{  0x6a,0x5f,0xcc,0x9b},{  0x64,0x56,0xc1,0x90}, 
+{ 0x4e,0x69,0xe2,0xa1},{  0x40,0x60,0xef,0xaa},{  0x52,0x7b,0xf8,0xb7},{  0x5c,0x72,0xf5,0xbc}, 
+{ 0x06,0x05,0xbe,0xd5},{  0x08,0x0c,0xb3,0xde},{  0x1a,0x17,0xa4,0xc3},{  0x14,0x1e,0xa9,0xc8}, 
+{ 0x3e,0x21,0x8a,0xf9},{  0x30,0x28,0x87,0xf2},{  0x22,0x33,0x90,0xef},{  0x2c,0x3a,0x9d,0xe4}, 
+{ 0x96,0xdd,0x06,0x3d},{  0x98,0xd4,0x0b,0x36},{  0x8a,0xcf,0x1c,0x2b},{  0x84,0xc6,0x11,0x20}, 
+{ 0xae,0xf9,0x32,0x11},{  0xa0,0xf0,0x3f,0x1a},{  0xb2,0xeb,0x28,0x07},{  0xbc,0xe2,0x25,0x0c}, 
+{ 0xe6,0x95,0x6e,0x65},{  0xe8,0x9c,0x63,0x6e},{  0xfa,0x87,0x74,0x73},{  0xf4,0x8e,0x79,0x78}, 
+{ 0xde,0xb1,0x5a,0x49},{  0xd0,0xb8,0x57,0x42},{  0xc2,0xa3,0x40,0x5f},{  0xcc,0xaa,0x4d,0x54}, 
+{ 0x41,0xec,0xda,0xf7},{  0x4f,0xe5,0xd7,0xfc},{  0x5d,0xfe,0xc0,0xe1},{  0x53,0xf7,0xcd,0xea}, 
+{ 0x79,0xc8,0xee,0xdb},{  0x77,0xc1,0xe3,0xd0},{  0x65,0xda,0xf4,0xcd},{  0x6b,0xd3,0xf9,0xc6}, 
+{ 0x31,0xa4,0xb2,0xaf},{  0x3f,0xad,0xbf,0xa4},{  0x2d,0xb6,0xa8,0xb9},{  0x23,0xbf,0xa5,0xb2}, 
+{ 0x09,0x80,0x86,0x83},{  0x07,0x89,0x8b,0x88},{  0x15,0x92,0x9c,0x95},{  0x1b,0x9b,0x91,0x9e}, 
+{ 0xa1,0x7c,0x0a,0x47},{  0xaf,0x75,0x07,0x4c},{  0xbd,0x6e,0x10,0x51},{  0xb3,0x67,0x1d,0x5a}, 
+{ 0x99,0x58,0x3e,0x6b},{  0x97,0x51,0x33,0x60},{  0x85,0x4a,0x24,0x7d},{  0x8b,0x43,0x29,0x76}, 
+{ 0xd1,0x34,0x62,0x1f},{  0xdf,0x3d,0x6f,0x14},{  0xcd,0x26,0x78,0x09},{  0xc3,0x2f,0x75,0x02}, 
+{ 0xe9,0x10,0x56,0x33},{  0xe7,0x19,0x5b,0x38},{  0xf5,0x02,0x4c,0x25},{  0xfb,0x0b,0x41,0x2e}, 
+{ 0x9a,0xd7,0x61,0x8c},{  0x94,0xde,0x6c,0x87},{  0x86,0xc5,0x7b,0x9a},{  0x88,0xcc,0x76,0x91}, 
+{ 0xa2,0xf3,0x55,0xa0},{  0xac,0xfa,0x58,0xab},{  0xbe,0xe1,0x4f,0xb6},{  0xb0,0xe8,0x42,0xbd}, 
+{ 0xea,0x9f,0x09,0xd4},{  0xe4,0x96,0x04,0xdf},{  0xf6,0x8d,0x13,0xc2},{  0xf8,0x84,0x1e,0xc9}, 
+{ 0xd2,0xbb,0x3d,0xf8},{  0xdc,0xb2,0x30,0xf3},{  0xce,0xa9,0x27,0xee},{  0xc0,0xa0,0x2a,0xe5}, 
+{ 0x7a,0x47,0xb1,0x3c},{  0x74,0x4e,0xbc,0x37},{  0x66,0x55,0xab,0x2a},{  0x68,0x5c,0xa6,0x21}, 
+{ 0x42,0x63,0x85,0x10},{  0x4c,0x6a,0x88,0x1b},{  0x5e,0x71,0x9f,0x06},{  0x50,0x78,0x92,0x0d}, 
+{ 0x0a,0x0f,0xd9,0x64},{  0x04,0x06,0xd4,0x6f},{  0x16,0x1d,0xc3,0x72},{  0x18,0x14,0xce,0x79}, 
+{ 0x32,0x2b,0xed,0x48},{  0x3c,0x22,0xe0,0x43},{  0x2e,0x39,0xf7,0x5e},{  0x20,0x30,0xfa,0x55}, 
+{ 0xec,0x9a,0xb7,0x01},{  0xe2,0x93,0xba,0x0a},{  0xf0,0x88,0xad,0x17},{  0xfe,0x81,0xa0,0x1c}, 
+{ 0xd4,0xbe,0x83,0x2d},{  0xda,0xb7,0x8e,0x26},{  0xc8,0xac,0x99,0x3b},{  0xc6,0xa5,0x94,0x30}, 
+{ 0x9c,0xd2,0xdf,0x59},{  0x92,0xdb,0xd2,0x52},{  0x80,0xc0,0xc5,0x4f},{  0x8e,0xc9,0xc8,0x44}, 
+{ 0xa4,0xf6,0xeb,0x75},{  0xaa,0xff,0xe6,0x7e},{  0xb8,0xe4,0xf1,0x63},{  0xb6,0xed,0xfc,0x68}, 
+{ 0x0c,0x0a,0x67,0xb1},{  0x02,0x03,0x6a,0xba},{  0x10,0x18,0x7d,0xa7},{  0x1e,0x11,0x70,0xac}, 
+{ 0x34,0x2e,0x53,0x9d},{  0x3a,0x27,0x5e,0x96},{  0x28,0x3c,0x49,0x8b},{  0x26,0x35,0x44,0x80}, 
+{ 0x7c,0x42,0x0f,0xe9},{  0x72,0x4b,0x02,0xe2},{  0x60,0x50,0x15,0xff},{  0x6e,0x59,0x18,0xf4}, 
+{ 0x44,0x66,0x3b,0xc5},{  0x4a,0x6f,0x36,0xce},{  0x58,0x74,0x21,0xd3},{  0x56,0x7d,0x2c,0xd8}, 
+{ 0x37,0xa1,0x0c,0x7a},{  0x39,0xa8,0x01,0x71},{  0x2b,0xb3,0x16,0x6c},{  0x25,0xba,0x1b,0x67}, 
+{ 0x0f,0x85,0x38,0x56},{  0x01,0x8c,0x35,0x5d},{  0x13,0x97,0x22,0x40},{  0x1d,0x9e,0x2f,0x4b}, 
+{ 0x47,0xe9,0x64,0x22},{  0x49,0xe0,0x69,0x29},{  0x5b,0xfb,0x7e,0x34},{  0x55,0xf2,0x73,0x3f}, 
+{ 0x7f,0xcd,0x50,0x0e},{  0x71,0xc4,0x5d,0x05},{  0x63,0xdf,0x4a,0x18},{  0x6d,0xd6,0x47,0x13}, 
+{ 0xd7,0x31,0xdc,0xca},{  0xd9,0x38,0xd1,0xc1},{  0xcb,0x23,0xc6,0xdc},{  0xc5,0x2a,0xcb,0xd7}, 
+{ 0xef,0x15,0xe8,0xe6},{  0xe1,0x1c,0xe5,0xed},{  0xf3,0x07,0xf2,0xf0},{  0xfd,0x0e,0xff,0xfb}, 
+{ 0xa7,0x79,0xb4,0x92},{  0xa9,0x70,0xb9,0x99},{  0xbb,0x6b,0xae,0x84},{  0xb5,0x62,0xa3,0x8f}, 
+{ 0x9f,0x5d,0x80,0xbe},{  0x91,0x54,0x8d,0xb5},{  0x83,0x4f,0x9a,0xa8},{  0x8d,0x46,0x97,0xa3 } 
+};
+
+word8 U2[256][4] = {
+{ 0x00,0x00,0x00,0x00},{  0x0b,0x0e,0x09,0x0d},{  0x16,0x1c,0x12,0x1a},{  0x1d,0x12,0x1b,0x17}, 
+{ 0x2c,0x38,0x24,0x34},{  0x27,0x36,0x2d,0x39},{  0x3a,0x24,0x36,0x2e},{  0x31,0x2a,0x3f,0x23}, 
+{ 0x58,0x70,0x48,0x68},{  0x53,0x7e,0x41,0x65},{  0x4e,0x6c,0x5a,0x72},{  0x45,0x62,0x53,0x7f}, 
+{ 0x74,0x48,0x6c,0x5c},{  0x7f,0x46,0x65,0x51},{  0x62,0x54,0x7e,0x46},{  0x69,0x5a,0x77,0x4b}, 
+{ 0xb0,0xe0,0x90,0xd0},{  0xbb,0xee,0x99,0xdd},{  0xa6,0xfc,0x82,0xca},{  0xad,0xf2,0x8b,0xc7}, 
+{ 0x9c,0xd8,0xb4,0xe4},{  0x97,0xd6,0xbd,0xe9},{  0x8a,0xc4,0xa6,0xfe},{  0x81,0xca,0xaf,0xf3}, 
+{ 0xe8,0x90,0xd8,0xb8},{  0xe3,0x9e,0xd1,0xb5},{  0xfe,0x8c,0xca,0xa2},{  0xf5,0x82,0xc3,0xaf}, 
+{ 0xc4,0xa8,0xfc,0x8c},{  0xcf,0xa6,0xf5,0x81},{  0xd2,0xb4,0xee,0x96},{  0xd9,0xba,0xe7,0x9b}, 
+{ 0x7b,0xdb,0x3b,0xbb},{  0x70,0xd5,0x32,0xb6},{  0x6d,0xc7,0x29,0xa1},{  0x66,0xc9,0x20,0xac}, 
+{ 0x57,0xe3,0x1f,0x8f},{  0x5c,0xed,0x16,0x82},{  0x41,0xff,0x0d,0x95},{  0x4a,0xf1,0x04,0x98}, 
+{ 0x23,0xab,0x73,0xd3},{  0x28,0xa5,0x7a,0xde},{  0x35,0xb7,0x61,0xc9},{  0x3e,0xb9,0x68,0xc4}, 
+{ 0x0f,0x93,0x57,0xe7},{  0x04,0x9d,0x5e,0xea},{  0x19,0x8f,0x45,0xfd},{  0x12,0x81,0x4c,0xf0}, 
+{ 0xcb,0x3b,0xab,0x6b},{  0xc0,0x35,0xa2,0x66},{  0xdd,0x27,0xb9,0x71},{  0xd6,0x29,0xb0,0x7c}, 
+{ 0xe7,0x03,0x8f,0x5f},{  0xec,0x0d,0x86,0x52},{  0xf1,0x1f,0x9d,0x45},{  0xfa,0x11,0x94,0x48}, 
+{ 0x93,0x4b,0xe3,0x03},{  0x98,0x45,0xea,0x0e},{  0x85,0x57,0xf1,0x19},{  0x8e,0x59,0xf8,0x14}, 
+{ 0xbf,0x73,0xc7,0x37},{  0xb4,0x7d,0xce,0x3a},{  0xa9,0x6f,0xd5,0x2d},{  0xa2,0x61,0xdc,0x20}, 
+{ 0xf6,0xad,0x76,0x6d},{  0xfd,0xa3,0x7f,0x60},{  0xe0,0xb1,0x64,0x77},{  0xeb,0xbf,0x6d,0x7a}, 
+{ 0xda,0x95,0x52,0x59},{  0xd1,0x9b,0x5b,0x54},{  0xcc,0x89,0x40,0x43},{  0xc7,0x87,0x49,0x4e}, 
+{ 0xae,0xdd,0x3e,0x05},{  0xa5,0xd3,0x37,0x08},{  0xb8,0xc1,0x2c,0x1f},{  0xb3,0xcf,0x25,0x12}, 
+{ 0x82,0xe5,0x1a,0x31},{  0x89,0xeb,0x13,0x3c},{  0x94,0xf9,0x08,0x2b},{  0x9f,0xf7,0x01,0x26}, 
+{ 0x46,0x4d,0xe6,0xbd},{  0x4d,0x43,0xef,0xb0},{  0x50,0x51,0xf4,0xa7},{  0x5b,0x5f,0xfd,0xaa}, 
+{ 0x6a,0x75,0xc2,0x89},{  0x61,0x7b,0xcb,0x84},{  0x7c,0x69,0xd0,0x93},{  0x77,0x67,0xd9,0x9e}, 
+{ 0x1e,0x3d,0xae,0xd5},{  0x15,0x33,0xa7,0xd8},{  0x08,0x21,0xbc,0xcf},{  0x03,0x2f,0xb5,0xc2}, 
+{ 0x32,0x05,0x8a,0xe1},{  0x39,0x0b,0x83,0xec},{  0x24,0x19,0x98,0xfb},{  0x2f,0x17,0x91,0xf6}, 
+{ 0x8d,0x76,0x4d,0xd6},{  0x86,0x78,0x44,0xdb},{  0x9b,0x6a,0x5f,0xcc},{  0x90,0x64,0x56,0xc1}, 
+{ 0xa1,0x4e,0x69,0xe2},{  0xaa,0x40,0x60,0xef},{  0xb7,0x52,0x7b,0xf8},{  0xbc,0x5c,0x72,0xf5}, 
+{ 0xd5,0x06,0x05,0xbe},{  0xde,0x08,0x0c,0xb3},{  0xc3,0x1a,0x17,0xa4},{  0xc8,0x14,0x1e,0xa9}, 
+{ 0xf9,0x3e,0x21,0x8a},{  0xf2,0x30,0x28,0x87},{  0xef,0x22,0x33,0x90},{  0xe4,0x2c,0x3a,0x9d}, 
+{ 0x3d,0x96,0xdd,0x06},{  0x36,0x98,0xd4,0x0b},{  0x2b,0x8a,0xcf,0x1c},{  0x20,0x84,0xc6,0x11}, 
+{ 0x11,0xae,0xf9,0x32},{  0x1a,0xa0,0xf0,0x3f},{  0x07,0xb2,0xeb,0x28},{  0x0c,0xbc,0xe2,0x25}, 
+{ 0x65,0xe6,0x95,0x6e},{  0x6e,0xe8,0x9c,0x63},{  0x73,0xfa,0x87,0x74},{  0x78,0xf4,0x8e,0x79}, 
+{ 0x49,0xde,0xb1,0x5a},{  0x42,0xd0,0xb8,0x57},{  0x5f,0xc2,0xa3,0x40},{  0x54,0xcc,0xaa,0x4d}, 
+{ 0xf7,0x41,0xec,0xda},{  0xfc,0x4f,0xe5,0xd7},{  0xe1,0x5d,0xfe,0xc0},{  0xea,0x53,0xf7,0xcd}, 
+{ 0xdb,0x79,0xc8,0xee},{  0xd0,0x77,0xc1,0xe3},{  0xcd,0x65,0xda,0xf4},{  0xc6,0x6b,0xd3,0xf9}, 
+{ 0xaf,0x31,0xa4,0xb2},{  0xa4,0x3f,0xad,0xbf},{  0xb9,0x2d,0xb6,0xa8},{  0xb2,0x23,0xbf,0xa5}, 
+{ 0x83,0x09,0x80,0x86},{  0x88,0x07,0x89,0x8b},{  0x95,0x15,0x92,0x9c},{  0x9e,0x1b,0x9b,0x91}, 
+{ 0x47,0xa1,0x7c,0x0a},{  0x4c,0xaf,0x75,0x07},{  0x51,0xbd,0x6e,0x10},{  0x5a,0xb3,0x67,0x1d}, 
+{ 0x6b,0x99,0x58,0x3e},{  0x60,0x97,0x51,0x33},{  0x7d,0x85,0x4a,0x24},{  0x76,0x8b,0x43,0x29}, 
+{ 0x1f,0xd1,0x34,0x62},{  0x14,0xdf,0x3d,0x6f},{  0x09,0xcd,0x26,0x78},{  0x02,0xc3,0x2f,0x75}, 
+{ 0x33,0xe9,0x10,0x56},{  0x38,0xe7,0x19,0x5b},{  0x25,0xf5,0x02,0x4c},{  0x2e,0xfb,0x0b,0x41}, 
+{ 0x8c,0x9a,0xd7,0x61},{  0x87,0x94,0xde,0x6c},{  0x9a,0x86,0xc5,0x7b},{  0x91,0x88,0xcc,0x76}, 
+{ 0xa0,0xa2,0xf3,0x55},{  0xab,0xac,0xfa,0x58},{  0xb6,0xbe,0xe1,0x4f},{  0xbd,0xb0,0xe8,0x42}, 
+{ 0xd4,0xea,0x9f,0x09},{  0xdf,0xe4,0x96,0x04},{  0xc2,0xf6,0x8d,0x13},{  0xc9,0xf8,0x84,0x1e}, 
+{ 0xf8,0xd2,0xbb,0x3d},{  0xf3,0xdc,0xb2,0x30},{  0xee,0xce,0xa9,0x27},{  0xe5,0xc0,0xa0,0x2a}, 
+{ 0x3c,0x7a,0x47,0xb1},{  0x37,0x74,0x4e,0xbc},{  0x2a,0x66,0x55,0xab},{  0x21,0x68,0x5c,0xa6}, 
+{ 0x10,0x42,0x63,0x85},{  0x1b,0x4c,0x6a,0x88},{  0x06,0x5e,0x71,0x9f},{  0x0d,0x50,0x78,0x92}, 
+{ 0x64,0x0a,0x0f,0xd9},{  0x6f,0x04,0x06,0xd4},{  0x72,0x16,0x1d,0xc3},{  0x79,0x18,0x14,0xce}, 
+{ 0x48,0x32,0x2b,0xed},{  0x43,0x3c,0x22,0xe0},{  0x5e,0x2e,0x39,0xf7},{  0x55,0x20,0x30,0xfa}, 
+{ 0x01,0xec,0x9a,0xb7},{  0x0a,0xe2,0x93,0xba},{  0x17,0xf0,0x88,0xad},{  0x1c,0xfe,0x81,0xa0}, 
+{ 0x2d,0xd4,0xbe,0x83},{  0x26,0xda,0xb7,0x8e},{  0x3b,0xc8,0xac,0x99},{  0x30,0xc6,0xa5,0x94}, 
+{ 0x59,0x9c,0xd2,0xdf},{  0x52,0x92,0xdb,0xd2},{  0x4f,0x80,0xc0,0xc5},{  0x44,0x8e,0xc9,0xc8}, 
+{ 0x75,0xa4,0xf6,0xeb},{  0x7e,0xaa,0xff,0xe6},{  0x63,0xb8,0xe4,0xf1},{  0x68,0xb6,0xed,0xfc}, 
+{ 0xb1,0x0c,0x0a,0x67},{  0xba,0x02,0x03,0x6a},{  0xa7,0x10,0x18,0x7d},{  0xac,0x1e,0x11,0x70}, 
+{ 0x9d,0x34,0x2e,0x53},{  0x96,0x3a,0x27,0x5e},{  0x8b,0x28,0x3c,0x49},{  0x80,0x26,0x35,0x44}, 
+{ 0xe9,0x7c,0x42,0x0f},{  0xe2,0x72,0x4b,0x02},{  0xff,0x60,0x50,0x15},{  0xf4,0x6e,0x59,0x18}, 
+{ 0xc5,0x44,0x66,0x3b},{  0xce,0x4a,0x6f,0x36},{  0xd3,0x58,0x74,0x21},{  0xd8,0x56,0x7d,0x2c}, 
+{ 0x7a,0x37,0xa1,0x0c},{  0x71,0x39,0xa8,0x01},{  0x6c,0x2b,0xb3,0x16},{  0x67,0x25,0xba,0x1b}, 
+{ 0x56,0x0f,0x85,0x38},{  0x5d,0x01,0x8c,0x35},{  0x40,0x13,0x97,0x22},{  0x4b,0x1d,0x9e,0x2f}, 
+{ 0x22,0x47,0xe9,0x64},{  0x29,0x49,0xe0,0x69},{  0x34,0x5b,0xfb,0x7e},{  0x3f,0x55,0xf2,0x73}, 
+{ 0x0e,0x7f,0xcd,0x50},{  0x05,0x71,0xc4,0x5d},{  0x18,0x63,0xdf,0x4a},{  0x13,0x6d,0xd6,0x47}, 
+{ 0xca,0xd7,0x31,0xdc},{  0xc1,0xd9,0x38,0xd1},{  0xdc,0xcb,0x23,0xc6},{  0xd7,0xc5,0x2a,0xcb}, 
+{ 0xe6,0xef,0x15,0xe8},{  0xed,0xe1,0x1c,0xe5},{  0xf0,0xf3,0x07,0xf2},{  0xfb,0xfd,0x0e,0xff}, 
+{ 0x92,0xa7,0x79,0xb4},{  0x99,0xa9,0x70,0xb9},{  0x84,0xbb,0x6b,0xae},{  0x8f,0xb5,0x62,0xa3}, 
+{ 0xbe,0x9f,0x5d,0x80},{  0xb5,0x91,0x54,0x8d},{  0xa8,0x83,0x4f,0x9a},{  0xa3,0x8d,0x46,0x97 } 
+};
+
+word8 U3[256][4] = {
+{ 0x00,0x00,0x00,0x00},{  0x0d,0x0b,0x0e,0x09},{  0x1a,0x16,0x1c,0x12},{  0x17,0x1d,0x12,0x1b}, 
+{ 0x34,0x2c,0x38,0x24},{  0x39,0x27,0x36,0x2d},{  0x2e,0x3a,0x24,0x36},{  0x23,0x31,0x2a,0x3f}, 
+{ 0x68,0x58,0x70,0x48},{  0x65,0x53,0x7e,0x41},{  0x72,0x4e,0x6c,0x5a},{  0x7f,0x45,0x62,0x53}, 
+{ 0x5c,0x74,0x48,0x6c},{  0x51,0x7f,0x46,0x65},{  0x46,0x62,0x54,0x7e},{  0x4b,0x69,0x5a,0x77}, 
+{ 0xd0,0xb0,0xe0,0x90},{  0xdd,0xbb,0xee,0x99},{  0xca,0xa6,0xfc,0x82},{  0xc7,0xad,0xf2,0x8b}, 
+{ 0xe4,0x9c,0xd8,0xb4},{  0xe9,0x97,0xd6,0xbd},{  0xfe,0x8a,0xc4,0xa6},{  0xf3,0x81,0xca,0xaf}, 
+{ 0xb8,0xe8,0x90,0xd8},{  0xb5,0xe3,0x9e,0xd1},{  0xa2,0xfe,0x8c,0xca},{  0xaf,0xf5,0x82,0xc3}, 
+{ 0x8c,0xc4,0xa8,0xfc},{  0x81,0xcf,0xa6,0xf5},{  0x96,0xd2,0xb4,0xee},{  0x9b,0xd9,0xba,0xe7}, 
+{ 0xbb,0x7b,0xdb,0x3b},{  0xb6,0x70,0xd5,0x32},{  0xa1,0x6d,0xc7,0x29},{  0xac,0x66,0xc9,0x20}, 
+{ 0x8f,0x57,0xe3,0x1f},{  0x82,0x5c,0xed,0x16},{  0x95,0x41,0xff,0x0d},{  0x98,0x4a,0xf1,0x04}, 
+{ 0xd3,0x23,0xab,0x73},{  0xde,0x28,0xa5,0x7a},{  0xc9,0x35,0xb7,0x61},{  0xc4,0x3e,0xb9,0x68}, 
+{ 0xe7,0x0f,0x93,0x57},{  0xea,0x04,0x9d,0x5e},{  0xfd,0x19,0x8f,0x45},{  0xf0,0x12,0x81,0x4c}, 
+{ 0x6b,0xcb,0x3b,0xab},{  0x66,0xc0,0x35,0xa2},{  0x71,0xdd,0x27,0xb9},{  0x7c,0xd6,0x29,0xb0}, 
+{ 0x5f,0xe7,0x03,0x8f},{  0x52,0xec,0x0d,0x86},{  0x45,0xf1,0x1f,0x9d},{  0x48,0xfa,0x11,0x94}, 
+{ 0x03,0x93,0x4b,0xe3},{  0x0e,0x98,0x45,0xea},{  0x19,0x85,0x57,0xf1},{  0x14,0x8e,0x59,0xf8}, 
+{ 0x37,0xbf,0x73,0xc7},{  0x3a,0xb4,0x7d,0xce},{  0x2d,0xa9,0x6f,0xd5},{  0x20,0xa2,0x61,0xdc}, 
+{ 0x6d,0xf6,0xad,0x76},{  0x60,0xfd,0xa3,0x7f},{  0x77,0xe0,0xb1,0x64},{  0x7a,0xeb,0xbf,0x6d}, 
+{ 0x59,0xda,0x95,0x52},{  0x54,0xd1,0x9b,0x5b},{  0x43,0xcc,0x89,0x40},{  0x4e,0xc7,0x87,0x49}, 
+{ 0x05,0xae,0xdd,0x3e},{  0x08,0xa5,0xd3,0x37},{  0x1f,0xb8,0xc1,0x2c},{  0x12,0xb3,0xcf,0x25}, 
+{ 0x31,0x82,0xe5,0x1a},{  0x3c,0x89,0xeb,0x13},{  0x2b,0x94,0xf9,0x08},{  0x26,0x9f,0xf7,0x01}, 
+{ 0xbd,0x46,0x4d,0xe6},{  0xb0,0x4d,0x43,0xef},{  0xa7,0x50,0x51,0xf4},{  0xaa,0x5b,0x5f,0xfd}, 
+{ 0x89,0x6a,0x75,0xc2},{  0x84,0x61,0x7b,0xcb},{  0x93,0x7c,0x69,0xd0},{  0x9e,0x77,0x67,0xd9}, 
+{ 0xd5,0x1e,0x3d,0xae},{  0xd8,0x15,0x33,0xa7},{  0xcf,0x08,0x21,0xbc},{  0xc2,0x03,0x2f,0xb5}, 
+{ 0xe1,0x32,0x05,0x8a},{  0xec,0x39,0x0b,0x83},{  0xfb,0x24,0x19,0x98},{  0xf6,0x2f,0x17,0x91}, 
+{ 0xd6,0x8d,0x76,0x4d},{  0xdb,0x86,0x78,0x44},{  0xcc,0x9b,0x6a,0x5f},{  0xc1,0x90,0x64,0x56}, 
+{ 0xe2,0xa1,0x4e,0x69},{  0xef,0xaa,0x40,0x60},{  0xf8,0xb7,0x52,0x7b},{  0xf5,0xbc,0x5c,0x72}, 
+{ 0xbe,0xd5,0x06,0x05},{  0xb3,0xde,0x08,0x0c},{  0xa4,0xc3,0x1a,0x17},{  0xa9,0xc8,0x14,0x1e}, 
+{ 0x8a,0xf9,0x3e,0x21},{  0x87,0xf2,0x30,0x28},{  0x90,0xef,0x22,0x33},{  0x9d,0xe4,0x2c,0x3a}, 
+{ 0x06,0x3d,0x96,0xdd},{  0x0b,0x36,0x98,0xd4},{  0x1c,0x2b,0x8a,0xcf},{  0x11,0x20,0x84,0xc6}, 
+{ 0x32,0x11,0xae,0xf9},{  0x3f,0x1a,0xa0,0xf0},{  0x28,0x07,0xb2,0xeb},{  0x25,0x0c,0xbc,0xe2}, 
+{ 0x6e,0x65,0xe6,0x95},{  0x63,0x6e,0xe8,0x9c},{  0x74,0x73,0xfa,0x87},{  0x79,0x78,0xf4,0x8e}, 
+{ 0x5a,0x49,0xde,0xb1},{  0x57,0x42,0xd0,0xb8},{  0x40,0x5f,0xc2,0xa3},{  0x4d,0x54,0xcc,0xaa}, 
+{ 0xda,0xf7,0x41,0xec},{  0xd7,0xfc,0x4f,0xe5},{  0xc0,0xe1,0x5d,0xfe},{  0xcd,0xea,0x53,0xf7}, 
+{ 0xee,0xdb,0x79,0xc8},{  0xe3,0xd0,0x77,0xc1},{  0xf4,0xcd,0x65,0xda},{  0xf9,0xc6,0x6b,0xd3}, 
+{ 0xb2,0xaf,0x31,0xa4},{  0xbf,0xa4,0x3f,0xad},{  0xa8,0xb9,0x2d,0xb6},{  0xa5,0xb2,0x23,0xbf}, 
+{ 0x86,0x83,0x09,0x80},{  0x8b,0x88,0x07,0x89},{  0x9c,0x95,0x15,0x92},{  0x91,0x9e,0x1b,0x9b}, 
+{ 0x0a,0x47,0xa1,0x7c},{  0x07,0x4c,0xaf,0x75},{  0x10,0x51,0xbd,0x6e},{  0x1d,0x5a,0xb3,0x67}, 
+{ 0x3e,0x6b,0x99,0x58},{  0x33,0x60,0x97,0x51},{  0x24,0x7d,0x85,0x4a},{  0x29,0x76,0x8b,0x43}, 
+{ 0x62,0x1f,0xd1,0x34},{  0x6f,0x14,0xdf,0x3d},{  0x78,0x09,0xcd,0x26},{  0x75,0x02,0xc3,0x2f}, 
+{ 0x56,0x33,0xe9,0x10},{  0x5b,0x38,0xe7,0x19},{  0x4c,0x25,0xf5,0x02},{  0x41,0x2e,0xfb,0x0b}, 
+{ 0x61,0x8c,0x9a,0xd7},{  0x6c,0x87,0x94,0xde},{  0x7b,0x9a,0x86,0xc5},{  0x76,0x91,0x88,0xcc}, 
+{ 0x55,0xa0,0xa2,0xf3},{  0x58,0xab,0xac,0xfa},{  0x4f,0xb6,0xbe,0xe1},{  0x42,0xbd,0xb0,0xe8}, 
+{ 0x09,0xd4,0xea,0x9f},{  0x04,0xdf,0xe4,0x96},{  0x13,0xc2,0xf6,0x8d},{  0x1e,0xc9,0xf8,0x84}, 
+{ 0x3d,0xf8,0xd2,0xbb},{  0x30,0xf3,0xdc,0xb2},{  0x27,0xee,0xce,0xa9},{  0x2a,0xe5,0xc0,0xa0}, 
+{ 0xb1,0x3c,0x7a,0x47},{  0xbc,0x37,0x74,0x4e},{  0xab,0x2a,0x66,0x55},{  0xa6,0x21,0x68,0x5c}, 
+{ 0x85,0x10,0x42,0x63},{  0x88,0x1b,0x4c,0x6a},{  0x9f,0x06,0x5e,0x71},{  0x92,0x0d,0x50,0x78}, 
+{ 0xd9,0x64,0x0a,0x0f},{  0xd4,0x6f,0x04,0x06},{  0xc3,0x72,0x16,0x1d},{  0xce,0x79,0x18,0x14}, 
+{ 0xed,0x48,0x32,0x2b},{  0xe0,0x43,0x3c,0x22},{  0xf7,0x5e,0x2e,0x39},{  0xfa,0x55,0x20,0x30}, 
+{ 0xb7,0x01,0xec,0x9a},{  0xba,0x0a,0xe2,0x93},{  0xad,0x17,0xf0,0x88},{  0xa0,0x1c,0xfe,0x81}, 
+{ 0x83,0x2d,0xd4,0xbe},{  0x8e,0x26,0xda,0xb7},{  0x99,0x3b,0xc8,0xac},{  0x94,0x30,0xc6,0xa5}, 
+{ 0xdf,0x59,0x9c,0xd2},{  0xd2,0x52,0x92,0xdb},{  0xc5,0x4f,0x80,0xc0},{  0xc8,0x44,0x8e,0xc9}, 
+{ 0xeb,0x75,0xa4,0xf6},{  0xe6,0x7e,0xaa,0xff},{  0xf1,0x63,0xb8,0xe4},{  0xfc,0x68,0xb6,0xed}, 
+{ 0x67,0xb1,0x0c,0x0a},{  0x6a,0xba,0x02,0x03},{  0x7d,0xa7,0x10,0x18},{  0x70,0xac,0x1e,0x11}, 
+{ 0x53,0x9d,0x34,0x2e},{  0x5e,0x96,0x3a,0x27},{  0x49,0x8b,0x28,0x3c},{  0x44,0x80,0x26,0x35}, 
+{ 0x0f,0xe9,0x7c,0x42},{  0x02,0xe2,0x72,0x4b},{  0x15,0xff,0x60,0x50},{  0x18,0xf4,0x6e,0x59}, 
+{ 0x3b,0xc5,0x44,0x66},{  0x36,0xce,0x4a,0x6f},{  0x21,0xd3,0x58,0x74},{  0x2c,0xd8,0x56,0x7d}, 
+{ 0x0c,0x7a,0x37,0xa1},{  0x01,0x71,0x39,0xa8},{  0x16,0x6c,0x2b,0xb3},{  0x1b,0x67,0x25,0xba}, 
+{ 0x38,0x56,0x0f,0x85},{  0x35,0x5d,0x01,0x8c},{  0x22,0x40,0x13,0x97},{  0x2f,0x4b,0x1d,0x9e}, 
+{ 0x64,0x22,0x47,0xe9},{  0x69,0x29,0x49,0xe0},{  0x7e,0x34,0x5b,0xfb},{  0x73,0x3f,0x55,0xf2}, 
+{ 0x50,0x0e,0x7f,0xcd},{  0x5d,0x05,0x71,0xc4},{  0x4a,0x18,0x63,0xdf},{  0x47,0x13,0x6d,0xd6}, 
+{ 0xdc,0xca,0xd7,0x31},{  0xd1,0xc1,0xd9,0x38},{  0xc6,0xdc,0xcb,0x23},{  0xcb,0xd7,0xc5,0x2a}, 
+{ 0xe8,0xe6,0xef,0x15},{  0xe5,0xed,0xe1,0x1c},{  0xf2,0xf0,0xf3,0x07},{  0xff,0xfb,0xfd,0x0e}, 
+{ 0xb4,0x92,0xa7,0x79},{  0xb9,0x99,0xa9,0x70},{  0xae,0x84,0xbb,0x6b},{  0xa3,0x8f,0xb5,0x62}, 
+{ 0x80,0xbe,0x9f,0x5d},{  0x8d,0xb5,0x91,0x54},{  0x9a,0xa8,0x83,0x4f},{  0x97,0xa3,0x8d,0x46 } 
+};
+
+word8 U4[256][4] = {
+{ 0x00,0x00,0x00,0x00},{  0x09,0x0d,0x0b,0x0e},{  0x12,0x1a,0x16,0x1c},{  0x1b,0x17,0x1d,0x12}, 
+{ 0x24,0x34,0x2c,0x38},{  0x2d,0x39,0x27,0x36},{  0x36,0x2e,0x3a,0x24},{  0x3f,0x23,0x31,0x2a}, 
+{ 0x48,0x68,0x58,0x70},{  0x41,0x65,0x53,0x7e},{  0x5a,0x72,0x4e,0x6c},{  0x53,0x7f,0x45,0x62}, 
+{ 0x6c,0x5c,0x74,0x48},{  0x65,0x51,0x7f,0x46},{  0x7e,0x46,0x62,0x54},{  0x77,0x4b,0x69,0x5a}, 
+{ 0x90,0xd0,0xb0,0xe0},{  0x99,0xdd,0xbb,0xee},{  0x82,0xca,0xa6,0xfc},{  0x8b,0xc7,0xad,0xf2}, 
+{ 0xb4,0xe4,0x9c,0xd8},{  0xbd,0xe9,0x97,0xd6},{  0xa6,0xfe,0x8a,0xc4},{  0xaf,0xf3,0x81,0xca}, 
+{ 0xd8,0xb8,0xe8,0x90},{  0xd1,0xb5,0xe3,0x9e},{  0xca,0xa2,0xfe,0x8c},{  0xc3,0xaf,0xf5,0x82}, 
+{ 0xfc,0x8c,0xc4,0xa8},{  0xf5,0x81,0xcf,0xa6},{  0xee,0x96,0xd2,0xb4},{  0xe7,0x9b,0xd9,0xba}, 
+{ 0x3b,0xbb,0x7b,0xdb},{  0x32,0xb6,0x70,0xd5},{  0x29,0xa1,0x6d,0xc7},{  0x20,0xac,0x66,0xc9}, 
+{ 0x1f,0x8f,0x57,0xe3},{  0x16,0x82,0x5c,0xed},{  0x0d,0x95,0x41,0xff},{  0x04,0x98,0x4a,0xf1}, 
+{ 0x73,0xd3,0x23,0xab},{  0x7a,0xde,0x28,0xa5},{  0x61,0xc9,0x35,0xb7},{  0x68,0xc4,0x3e,0xb9}, 
+{ 0x57,0xe7,0x0f,0x93},{  0x5e,0xea,0x04,0x9d},{  0x45,0xfd,0x19,0x8f},{  0x4c,0xf0,0x12,0x81}, 
+{ 0xab,0x6b,0xcb,0x3b},{  0xa2,0x66,0xc0,0x35},{  0xb9,0x71,0xdd,0x27},{  0xb0,0x7c,0xd6,0x29}, 
+{ 0x8f,0x5f,0xe7,0x03},{  0x86,0x52,0xec,0x0d},{  0x9d,0x45,0xf1,0x1f},{  0x94,0x48,0xfa,0x11}, 
+{ 0xe3,0x03,0x93,0x4b},{  0xea,0x0e,0x98,0x45},{  0xf1,0x19,0x85,0x57},{  0xf8,0x14,0x8e,0x59}, 
+{ 0xc7,0x37,0xbf,0x73},{  0xce,0x3a,0xb4,0x7d},{  0xd5,0x2d,0xa9,0x6f},{  0xdc,0x20,0xa2,0x61}, 
+{ 0x76,0x6d,0xf6,0xad},{  0x7f,0x60,0xfd,0xa3},{  0x64,0x77,0xe0,0xb1},{  0x6d,0x7a,0xeb,0xbf}, 
+{ 0x52,0x59,0xda,0x95},{  0x5b,0x54,0xd1,0x9b},{  0x40,0x43,0xcc,0x89},{  0x49,0x4e,0xc7,0x87}, 
+{ 0x3e,0x05,0xae,0xdd},{  0x37,0x08,0xa5,0xd3},{  0x2c,0x1f,0xb8,0xc1},{  0x25,0x12,0xb3,0xcf}, 
+{ 0x1a,0x31,0x82,0xe5},{  0x13,0x3c,0x89,0xeb},{  0x08,0x2b,0x94,0xf9},{  0x01,0x26,0x9f,0xf7}, 
+{ 0xe6,0xbd,0x46,0x4d},{  0xef,0xb0,0x4d,0x43},{  0xf4,0xa7,0x50,0x51},{  0xfd,0xaa,0x5b,0x5f}, 
+{ 0xc2,0x89,0x6a,0x75},{  0xcb,0x84,0x61,0x7b},{  0xd0,0x93,0x7c,0x69},{  0xd9,0x9e,0x77,0x67}, 
+{ 0xae,0xd5,0x1e,0x3d},{  0xa7,0xd8,0x15,0x33},{  0xbc,0xcf,0x08,0x21},{  0xb5,0xc2,0x03,0x2f}, 
+{ 0x8a,0xe1,0x32,0x05},{  0x83,0xec,0x39,0x0b},{  0x98,0xfb,0x24,0x19},{  0x91,0xf6,0x2f,0x17}, 
+{ 0x4d,0xd6,0x8d,0x76},{  0x44,0xdb,0x86,0x78},{  0x5f,0xcc,0x9b,0x6a},{  0x56,0xc1,0x90,0x64}, 
+{ 0x69,0xe2,0xa1,0x4e},{  0x60,0xef,0xaa,0x40},{  0x7b,0xf8,0xb7,0x52},{  0x72,0xf5,0xbc,0x5c}, 
+{ 0x05,0xbe,0xd5,0x06},{  0x0c,0xb3,0xde,0x08},{  0x17,0xa4,0xc3,0x1a},{  0x1e,0xa9,0xc8,0x14}, 
+{ 0x21,0x8a,0xf9,0x3e},{  0x28,0x87,0xf2,0x30},{  0x33,0x90,0xef,0x22},{  0x3a,0x9d,0xe4,0x2c}, 
+{ 0xdd,0x06,0x3d,0x96},{  0xd4,0x0b,0x36,0x98},{  0xcf,0x1c,0x2b,0x8a},{  0xc6,0x11,0x20,0x84}, 
+{ 0xf9,0x32,0x11,0xae},{  0xf0,0x3f,0x1a,0xa0},{  0xeb,0x28,0x07,0xb2},{  0xe2,0x25,0x0c,0xbc}, 
+{ 0x95,0x6e,0x65,0xe6},{  0x9c,0x63,0x6e,0xe8},{  0x87,0x74,0x73,0xfa},{  0x8e,0x79,0x78,0xf4}, 
+{ 0xb1,0x5a,0x49,0xde},{  0xb8,0x57,0x42,0xd0},{  0xa3,0x40,0x5f,0xc2},{  0xaa,0x4d,0x54,0xcc}, 
+{ 0xec,0xda,0xf7,0x41},{  0xe5,0xd7,0xfc,0x4f},{  0xfe,0xc0,0xe1,0x5d},{  0xf7,0xcd,0xea,0x53}, 
+{ 0xc8,0xee,0xdb,0x79},{  0xc1,0xe3,0xd0,0x77},{  0xda,0xf4,0xcd,0x65},{  0xd3,0xf9,0xc6,0x6b}, 
+{ 0xa4,0xb2,0xaf,0x31},{  0xad,0xbf,0xa4,0x3f},{  0xb6,0xa8,0xb9,0x2d},{  0xbf,0xa5,0xb2,0x23}, 
+{ 0x80,0x86,0x83,0x09},{  0x89,0x8b,0x88,0x07},{  0x92,0x9c,0x95,0x15},{  0x9b,0x91,0x9e,0x1b}, 
+{ 0x7c,0x0a,0x47,0xa1},{  0x75,0x07,0x4c,0xaf},{  0x6e,0x10,0x51,0xbd},{  0x67,0x1d,0x5a,0xb3}, 
+{ 0x58,0x3e,0x6b,0x99},{  0x51,0x33,0x60,0x97},{  0x4a,0x24,0x7d,0x85},{  0x43,0x29,0x76,0x8b}, 
+{ 0x34,0x62,0x1f,0xd1},{  0x3d,0x6f,0x14,0xdf},{  0x26,0x78,0x09,0xcd},{  0x2f,0x75,0x02,0xc3}, 
+{ 0x10,0x56,0x33,0xe9},{  0x19,0x5b,0x38,0xe7},{  0x02,0x4c,0x25,0xf5},{  0x0b,0x41,0x2e,0xfb}, 
+{ 0xd7,0x61,0x8c,0x9a},{  0xde,0x6c,0x87,0x94},{  0xc5,0x7b,0x9a,0x86},{  0xcc,0x76,0x91,0x88}, 
+{ 0xf3,0x55,0xa0,0xa2},{  0xfa,0x58,0xab,0xac},{  0xe1,0x4f,0xb6,0xbe},{  0xe8,0x42,0xbd,0xb0}, 
+{ 0x9f,0x09,0xd4,0xea},{  0x96,0x04,0xdf,0xe4},{  0x8d,0x13,0xc2,0xf6},{  0x84,0x1e,0xc9,0xf8}, 
+{ 0xbb,0x3d,0xf8,0xd2},{  0xb2,0x30,0xf3,0xdc},{  0xa9,0x27,0xee,0xce},{  0xa0,0x2a,0xe5,0xc0}, 
+{ 0x47,0xb1,0x3c,0x7a},{  0x4e,0xbc,0x37,0x74},{  0x55,0xab,0x2a,0x66},{  0x5c,0xa6,0x21,0x68}, 
+{ 0x63,0x85,0x10,0x42},{  0x6a,0x88,0x1b,0x4c},{  0x71,0x9f,0x06,0x5e},{  0x78,0x92,0x0d,0x50}, 
+{ 0x0f,0xd9,0x64,0x0a},{  0x06,0xd4,0x6f,0x04},{  0x1d,0xc3,0x72,0x16},{  0x14,0xce,0x79,0x18}, 
+{ 0x2b,0xed,0x48,0x32},{  0x22,0xe0,0x43,0x3c},{  0x39,0xf7,0x5e,0x2e},{  0x30,0xfa,0x55,0x20}, 
+{ 0x9a,0xb7,0x01,0xec},{  0x93,0xba,0x0a,0xe2},{  0x88,0xad,0x17,0xf0},{  0x81,0xa0,0x1c,0xfe}, 
+{ 0xbe,0x83,0x2d,0xd4},{  0xb7,0x8e,0x26,0xda},{  0xac,0x99,0x3b,0xc8},{  0xa5,0x94,0x30,0xc6}, 
+{ 0xd2,0xdf,0x59,0x9c},{  0xdb,0xd2,0x52,0x92},{  0xc0,0xc5,0x4f,0x80},{  0xc9,0xc8,0x44,0x8e}, 
+{ 0xf6,0xeb,0x75,0xa4},{  0xff,0xe6,0x7e,0xaa},{  0xe4,0xf1,0x63,0xb8},{  0xed,0xfc,0x68,0xb6}, 
+{ 0x0a,0x67,0xb1,0x0c},{  0x03,0x6a,0xba,0x02},{  0x18,0x7d,0xa7,0x10},{  0x11,0x70,0xac,0x1e}, 
+{ 0x2e,0x53,0x9d,0x34},{  0x27,0x5e,0x96,0x3a},{  0x3c,0x49,0x8b,0x28},{  0x35,0x44,0x80,0x26}, 
+{ 0x42,0x0f,0xe9,0x7c},{  0x4b,0x02,0xe2,0x72},{  0x50,0x15,0xff,0x60},{  0x59,0x18,0xf4,0x6e}, 
+{ 0x66,0x3b,0xc5,0x44},{  0x6f,0x36,0xce,0x4a},{  0x74,0x21,0xd3,0x58},{  0x7d,0x2c,0xd8,0x56}, 
+{ 0xa1,0x0c,0x7a,0x37},{  0xa8,0x01,0x71,0x39},{  0xb3,0x16,0x6c,0x2b},{  0xba,0x1b,0x67,0x25}, 
+{ 0x85,0x38,0x56,0x0f},{  0x8c,0x35,0x5d,0x01},{  0x97,0x22,0x40,0x13},{  0x9e,0x2f,0x4b,0x1d}, 
+{ 0xe9,0x64,0x22,0x47},{  0xe0,0x69,0x29,0x49},{  0xfb,0x7e,0x34,0x5b},{  0xf2,0x73,0x3f,0x55}, 
+{ 0xcd,0x50,0x0e,0x7f},{  0xc4,0x5d,0x05,0x71},{  0xdf,0x4a,0x18,0x63},{  0xd6,0x47,0x13,0x6d}, 
+{ 0x31,0xdc,0xca,0xd7},{  0x38,0xd1,0xc1,0xd9},{  0x23,0xc6,0xdc,0xcb},{  0x2a,0xcb,0xd7,0xc5}, 
+{ 0x15,0xe8,0xe6,0xef},{  0x1c,0xe5,0xed,0xe1},{  0x07,0xf2,0xf0,0xf3},{  0x0e,0xff,0xfb,0xfd}, 
+{ 0x79,0xb4,0x92,0xa7},{  0x70,0xb9,0x99,0xa9},{  0x6b,0xae,0x84,0xbb},{  0x62,0xa3,0x8f,0xb5},  
+{ 0x5d,0x80,0xbe,0x9f},{  0x54,0x8d,0xb5,0x91},{  0x4f,0x9a,0xa8,0x83},{  0x46,0x97,0xa3,0x8d }
+};
+
+word32 rcon[30] = { 
+  0x01,0x02, 0x04, 0x08, 0x10, 0x20, 0x40, 0x80, 0x1b, 0x36, 0x6c, 0xd8, 0xab, 0x4d, 0x9a, 0x2f, 0x5e, 0xbc, 0x63, 0xc6, 0x97, 0x35, 0x6a, 0xd4, 0xb3, 0x7d, 0xfa, 0xef, 0xc5, 0x91
+};
Index: trunk/include/samhain.h
===================================================================
--- trunk/include/samhain.h	(revision 591)
+++ trunk/include/samhain.h	(revision 1)
@@ -28,30 +28,4 @@
 #endif
 
-#if defined(__GNUC__) && (__GNUC__ >= 4)
-#define SH_GNUC_SENTINEL __attribute__((__sentinel__))
-#else
-#define SH_GNUC_SENTINEL
-#endif
-
-#if defined(__GNUC__) && (__GNUC__ >= 3)
-#undef  SH_GNUC_PURE
-#define SH_GNUC_PURE     __attribute__((pure))
-#undef  SH_GNUC_CONST
-#define SH_GNUC_CONST	 __attribute__((const))
-#undef  SH_GNUC_NORETURN
-#define SH_GNUC_NORETURN __attribute__((noreturn))
-#undef  SH_GNUC_MALLOC
-#define SH_GNUC_MALLOC   __attribute__((malloc))
-#else
-#undef  SH_GNUC_PURE
-#define SH_GNUC_PURE
-#undef  SH_GNUC_CONST
-#define SH_GNUC_CONST
-#undef  SH_GNUC_NORETURN
-#define SH_GNUC_NORETURN
-#undef  SH_GNUC_MALLOC
-#define SH_GNUC_MALLOC
-#endif
-
 /**************************************************
  *
@@ -60,55 +34,18 @@
  **************************************************/
 
-/* IPv6 */
-#if defined(HAVE_GETNAMEINFO) && defined(HAVE_GETADDRINFO)
-
-#if defined(SH_COMPILE_STATIC) && defined(__linux__)
-#undef USE_IPVX
-#define SH_SOCKMAX 1
-#else
-
-#if defined(USE_IPV4)
-#undef USE_IPVX
-#else
-#define USE_IPVX 1
-#endif
-
-#define SH_SOCKMAX 8
-#endif
-
-#else
-#undef USE_IPVX
-#define SH_SOCKMAX 1
-#endif
-
-/* end IPv6 */
-
-/* Standard buffer sizes. 
- * IPv6 is 8 groups of 4 hex digits seperated by colons.
- */
-#define SH_IP_BUF        48
+#define REPLACE_OLD
+
+/* Standard buffer sizes.
+ */
 #define SH_MINIBUF       64
 #define SH_BUFSIZE     1024
 #define SH_MAXBUF      4096
 #define SH_PATHBUF      256
-#define SH_MSG_BUF    64512
-
-#define SH_ERRBUF_SIZE   64
-
-/* MAX_PATH_STORE must be >= KEY_LEN
- */
-#define MAX_PATH_STORE 12287
 
 /* Sizes for arrays (user, group, timestamp).
  */
-#define SOCKPASS_MAX 14
-#define USER_MAX     20
-#define GROUP_MAX    20
-#define TIM_MAX      32
-
-#define CMODE_SIZE   11
-
-#define ATTRBUF_SIZE 16
-#define ATTRBUF_USED 12
+#define USER_MAX  20
+#define GROUP_MAX 20
+#define TIM_MAX   32
 
 /* The number of bytes in a key,  
@@ -119,5 +56,4 @@
 #define KEY_LEN   48
 #define KEY_BLOCK 24
-#define KEYBUF_SIZE (KEY_LEN+1)
 
 /* The length of the compiled-in password.
@@ -125,32 +61,20 @@
 #define PW_LEN     8
 
+/* Buffer for privileged content.
+ */
+#define PRIV_MAX  4096   
+
+#undef  GOOD
+#define GOOD  1
+#undef  BAD
+#define BAD   0
+#undef  ON
+#define ON    1
+#undef  OFF
+#define OFF   0
 #undef  S_TRUE
 #define S_TRUE    1
 #undef  S_FALSE
 #define S_FALSE   0
-
-#undef  GOOD
-#define GOOD  S_TRUE
-#undef  BAD
-#define BAD   S_FALSE
-
-#define SH_SILENT_FULL 2
-#define SH_SILENT_STD  1
-
-
-#ifdef HAVE_INTTYPES_H
-#include 
-#endif
-#ifdef HAVE_STDINT_H
-#include 
-#endif
-
-#if !defined(HAVE_UINT16_T)
-#define UINT16 unsigned short
-#else
-#define UINT16 uint16_t
-#endif
-
-#if !defined(HAVE_UINT32_T)
 
 /* An unsigned integer guaranteed to be 32 bit.
@@ -165,15 +89,15 @@
 #define UINT32 unsigned short
 #define SINT32 short
-#else
-#error "No 32 bit integer type found"
-#endif
-
-#else
-#define UINT32 uint32_t
-#define SINT32 int32_t
-
-#endif
-
-#if !defined(HAVE_UINT64_T)
+#endif
+
+#ifdef HAVE_INTTYPES_H
+#include 
+#else
+#ifdef HAVE_STDINT_H
+#include 
+#endif
+#endif
+
+#if !defined(HAVE_INTTYPES_H) && !defined(HAVE_STDINT_H)
 
 #ifdef HAVE_LONG_LONG_64
@@ -183,5 +107,6 @@
 #define  UINT64 unsigned long
 #else
-#error "no 64bit type found"
+#define UINT64_IS_32
+#define  UINT64 unsigned long
 #endif
 #endif
@@ -194,11 +119,4 @@
 
 #define UBYTE unsigned char
-
-enum {
-  SH_TIGER192    = 0, 
-  SH_SHA1        = 1,
-  SH_MD5         = 2,
-  SH_SHA256      = 3
-};
 
 
@@ -208,51 +126,4 @@
   SH_CHECK_CHECK   = 2
 };
-
-#define SH_MOD_THREAD  1
-#define SH_MOD_ACTIVE  0
-#define SH_MOD_FAILED -1
-#define SH_MOD_OFFSET 10
-
-/* Flags for file status
- */
-#define SH_FFLAG_ALLIGNORE (1<<0)
-#define SH_FFLAG_VISITED   (1<<1)
-#define SH_FFLAG_CHECKED   (1<<3)
-#define SH_FFLAG_REPORTED  (1<<3)
-#define SH_FFLAG_SUIDCHK   (1<<4)
-#define SH_FFLAG_ENOENT    (1<<5)
-
-#define SH_FFLAG_ALLIGNORE_SET(a)   (((a) & SH_FFLAG_ALLIGNORE) != 0)
-#define SET_SH_FFLAG_ALLIGNORE(a)   ((a) |= SH_FFLAG_ALLIGNORE)
-#define CLEAR_SH_FFLAG_ALLIGNORE(a) ((a) &= ~SH_FFLAG_ALLIGNORE)
-
-#define SH_FFLAG_VISITED_SET(a)     (((a) & SH_FFLAG_VISITED) != 0)
-#define SET_SH_FFLAG_VISITED(a)     ((a) |= SH_FFLAG_VISITED)
-#define CLEAR_SH_FFLAG_VISITED(a)   ((a) &= ~SH_FFLAG_VISITED)
-
-#define SH_FFLAG_CHECKED_SET(a)     (((a) & SH_FFLAG_VISITED) != 0)
-#define SET_SH_FFLAG_CHECKED(a)     ((a) |= SH_FFLAG_VISITED)
-#define CLEAR_SH_FFLAG_CHECKED(a)   ((a) &= ~SH_FFLAG_VISITED)
-
-#define SH_FFLAG_REPORTED_SET(a)    (((a) & SH_FFLAG_REPORTED) != 0)
-#define SET_SH_FFLAG_REPORTED(a)    ((a) |= SH_FFLAG_REPORTED)
-#define CLEAR_SH_FFLAG_REPORTED(a)  ((a) &= ~SH_FFLAG_REPORTED)
-
-#define SH_FFLAG_SUIDCHK_SET(a)     (((a) & SH_FFLAG_SUIDCHK) != 0)
-#define SET_SH_FFLAG_SUIDCHK(a)     ((a) |= SH_FFLAG_SUIDCHK)
-#define CLEAR_SH_FFLAG_SUIDCHK(a)   ((a) &= ~SH_FFLAG_SUIDCHK)
-
-#define SH_FFLAG_ENOENT_SET(a)      (((a) & SH_FFLAG_ENOENT) != 0)
-#define SET_SH_FFLAG_ENOENT(a)      ((a) |= SH_FFLAG_ENOENT)
-#define CLEAR_SH_FFLAG_ENOENT(a)    ((a) &= ~SH_FFLAG_ENOENT)
-
-/* Flags for inotify
- */
-#define SH_INOTIFY_USE      (1<<0)
-#define SH_INOTIFY_DOSCAN   (1<<1)
-#define SH_INOTIFY_NEEDINIT (1<<2)
-#define SH_INOTIFY_INSCAN   (1<<3)
-#define SH_INOTIFY_IFUSED(a)   if ((sh.flag.inotify & SH_INOTIFY_USE) != 0) { a }
-
 
 /**************************************************
@@ -271,8 +142,5 @@
   SH_LEVEL_USER0       = 7,
   SH_LEVEL_USER1       = 8,
-  SH_LEVEL_USER2       = 9,
-  SH_LEVEL_USER3       = 10,
-  SH_LEVEL_USER4       = 11,
-  SH_LEVEL_PRELINK     = 12
+  SH_LEVEL_PRELINK     = 9
 };
 
@@ -316,7 +184,4 @@
   unsigned long   dirs_checked;  /* #dirs     last check */
   unsigned long   files_checked; /* #files    last check */
-  unsigned long   files_report;  /* #file reports        */
-  unsigned long   files_error;   /* #file access error   */
-  unsigned long   files_nodir;   /* #file not a directory*/
 } sh_sh_stat;
 
@@ -326,5 +191,4 @@
   int    update;                   /* update db                       */
   int    opts;                     /* reading cl options              */
-  int    started;                  /* finished with startup stuff     */
   int    isdaemon;                 /* daemon or not                   */
   int    loop;                     /* go in loop even if not daemon   */
@@ -338,8 +202,7 @@
   int    client_severity;          /* TRUE if client severity used    */
   int    client_class;             /* TRUE if client class used       */
-  int    hidefile;                 /* TRUE if file not shown in log   */
-  int    inotify;                  /* Flags for inotify               */
   int    audit;
   unsigned long aud_mask;
+  int    hidefile;                 /* TRUE if file not reveled in log */
 } sh_sh_flag;
 
@@ -347,6 +210,4 @@
 
   char   prg_name[8];
-
-  UINT64 pid;  
  
   sh_sh_df     exec;
@@ -379,12 +240,4 @@
   int    looptime;                 /* timing for main loop            */
   /*@null@*//*@out@*/ char   * timezone;
-
-  int delayload;
-
-#ifdef SCREW_IT_UP
-  int sigtrap_max_duration;
-#endif
-
-  char * outpath;
 } sh_struct;
 
@@ -394,25 +247,18 @@
 extern volatile  int      sig_debug_switch;       /* SIGUSR1 */
 extern volatile  int      sig_suspend_switch;     /* SIGUSR2 */
-extern volatile  int      sh_global_suspend_flag;
+extern volatile  int      sh_global_suspend_flag; /* SIGUSR2 */
 extern volatile  int      sig_fresh_trail;        /* SIGIOT  */
-extern volatile  int      sh_thread_pause_flag;
 extern volatile  int      sig_config_read_again;  /* SIGHUP  */
 extern volatile  int      sig_terminate;          /* SIGQUIT */
 extern volatile  int      sig_termfast;           /* SIGTERM */
 extern volatile  int      sig_force_check;        /* SIGTTOU */
-extern volatile  int      sig_force_silent;       /* SIGTSTP */
-extern volatile  int      sh_global_check_silent;
-extern volatile  int      sh_load_delta_flag;
 
 extern long int eintr__result;
 
-extern int     sh_argc_store;
-extern char ** sh_argv_store;
-
 #include "sh_calls.h"
 
 
 typedef struct {
-  char   sh_sockpass[2*SOCKPASS_MAX+2];
+  char   sh_sockpass[32];
   char   sigkey_old[KEY_LEN+1];
   char   sigkey_new[KEY_LEN+1];
@@ -434,6 +280,4 @@
   UINT32 rng2[3];
 
-  UINT32 res_vec[6];
-
   UINT32 ErrFlag[2];
 
@@ -447,61 +291,11 @@
 /*@null@*/ extern sh_key_t  *skey; 
 
-/**************************************************
- *
- * macros
- *
- **************************************************/
-
-#if defined(SH_ABORT_ON_ERROR)
-#define SH_ABORT abort()
-#else
-#define SH_ABORT 
-#endif
-
-
-
-/* The semantics of the built-in are that it is expected that expr == const
- * for __builtin_expect ((expr), const)
- */
-#if defined(__GNUC__) && (__GNUC__ > 2) && defined(__OPTIMIZE__)
-#define SH_LIKELY(expr)   (__builtin_expect((expr), 1))
-#define SH_UNLIKELY(expr) (__builtin_expect((expr), 0))
-#else
-#define SH_LIKELY(expr) (expr)
-#define SH_UNLIKELY(expr) (expr)
-#endif
-
-/* signal-safe log function
- */
-int  safe_logger (int thesignal, int method, char * details);
-void safe_fatal  (const char * details, const char *f, int l);
-
-#define SH_VALIDATE_EQ(a,b) \
-     do { \
-         if ((a) != (b)) safe_fatal(#a " != " #b, FIL__, __LINE__);\
-     } while (0)
-
-#define SH_VALIDATE_NE(a,b) \
-     do { \
-         if ((a) == (b)) safe_fatal(#a " == " #b, FIL__, __LINE__);\
-     } while (0)
-
-#define SH_VALIDATE_GE(a,b) \
-     do { \
-         if ((a) < (b)) safe_fatal(#a " < " #b, FIL__, __LINE__);\
-     } while (0)
 
 #if defined(HAVE_MLOCK) && !defined(HAVE_BROKEN_MLOCK)
-#ifdef USE_SUID
 #define MLOCK(a, b) \
-      if ((skey != NULL) && skey->mlock_failed == S_FALSE){ \
+      if ((skey != NULL) && skey->mlock_failed == SL_FALSE){ \
         (void) sl_set_suid(); \
-	if (sh_unix_mlock(FIL__, __LINE__, a, b) < 0) skey->mlock_failed = S_TRUE; \
-        (void) sl_unset_suid(); }
-#else
-#define MLOCK(a, b) \
-      if ((skey != NULL) && skey->mlock_failed == S_FALSE){ \
-        if (sh_unix_mlock(FIL__, __LINE__, a, b) < 0) skey->mlock_failed = S_TRUE; }
-#endif 
+	if (sh_unix_mlock( a, b) < 0) skey->mlock_failed = SL_TRUE; \
+        (void) sl_unset_suid(); } 
 #else
 #define MLOCK(a, b) \
@@ -510,15 +304,9 @@
 
 #if defined(HAVE_MLOCK) && !defined(HAVE_BROKEN_MLOCK)
-#ifdef USE_SUID
 #define MUNLOCK(a, b) \
-      if ((skey != NULL) && skey->mlock_failed == S_FALSE){ \
+      if ((skey != NULL) && skey->mlock_failed == SL_FALSE){ \
         (void) sl_set_suid(); \
 	(void) sh_unix_munlock( a, b );\
-        (void) sl_unset_suid(); }
-#else
-#define MUNLOCK(a, b) \
-      if ((skey != NULL) && skey->mlock_failed == S_FALSE){ \
-        (void) sh_unix_munlock( a, b ); }
-#endif 
+        (void) sl_unset_suid(); } 
 #else
 #define MUNLOCK(a, b) \
Index: trunk/include/sh_calls.h
===================================================================
--- trunk/include/sh_calls.h	(revision 591)
+++ trunk/include/sh_calls.h	(revision 1)
@@ -31,74 +31,57 @@
 /*@-fixedformalarray@*/
 
-#include "config_xor.h"
-#if defined(__GNUC__) && (__GNUC__ >= 3)
-#undef  SH_GNUC_NORETURN
-#define SH_GNUC_NORETURN __attribute__((noreturn))
-#else
-#undef  SH_GNUC_NORETURN
-#define SH_GNUC_NORETURN
-#endif
+/* Set aud functions
+ */
+int sh_aud_set_functions(char * str_s);
 
 
-/* Set aud functions
- */
-int sh_aud_set_functions(const char * str_s);
-
-#ifdef SH_IPVX_H
-long int retry_accept(const char * file, int line, 
-		      int fd, struct sh_sockaddr *serv_addr, int * addrlen);
-#endif
-
-void sh_calls_enable_sub();
-int  sh_calls_set_sub (const char * str);
-
-long int retry_stat (const char * file, int line, 
+long int retry_accept(char * file, int line, 
+		      int fd, struct sockaddr *serv_addr, int * addrlen);
+long int retry_stat (char * file, int line, 
 		     const char *file_name, struct stat *buf);
-long int retry_fstat(const char * file, int line, 
+long int retry_fstat(char * file, int line, 
 		     int filed,             struct stat *buf);
-long int retry_lstat_ns(const char * file, int line, 
-			const char *file_name, struct stat *buf);
-long int retry_lstat(const char * file, int line, 
+long int retry_lstat(char * file, int line, 
 		     const char *file_name, struct stat *buf);
-long int retry_fcntl(const char * file, int line, 
+long int retry_fcntl(char * file, int line, 
 		     int fd, int cmd, long arg);
 
 long int retry_msleep (int sec, int millisec);
 
-long int retry_sigaction(const char * file, int line, 
+long int retry_sigaction(char * file, int line, 
 			 int signum,  const  struct  sigaction  *act,
 			 struct sigaction *oldact);
 
-int      sh_calls_set_bind_addr (const char *);
-long int retry_connect(const char * file, int line,
+int      sh_calls_set_bind_addr (char *);
+long int retry_connect(char * file, int line,
 		       int fd, struct sockaddr *serv_addr, int addrlen);
 
-long int retry_aud_dup2    (const char * file, int line, int fd, int fd2);
-long int retry_aud_execve  (const char * file, int line, 
-			    const  char *dateiname, char *const argv[],
-			    char *const envp[]);
-long int retry_aud_dup     (const char * file, int line, 
+long int retry_aud_dup2    (char * file, int line, int fd, int fd2);
+long int retry_aud_execve  (char * file, int line, 
+			    const  char *dateiname, char * argv[],
+			    char *envp[]);
+long int retry_aud_dup     (char * file, int line, 
 			    int fd);
-long int retry_aud_chdir   (const char * file, int line, 
+long int retry_aud_chdir   (char * file, int line, 
 			    const char *path);
-long int retry_aud_unlink  (const char * file, int line, 
+long int retry_aud_unlink  (char * file, int line, 
 			    char * path);
-long int retry_aud_utime   (const char * file, int line, 
+long int retry_aud_utime   (char * file, int line, 
 			    char * path, struct utimbuf *buf);
 
-long int aud_open           (const char * file, int line, int privs,
+long int aud_open           (char * file, int line, int privs,
 			     const char *pathname, int flags, mode_t mode);
-long int aud_open_noatime   (const char * file, int line, int privs,
+long int aud_open_noatime   (char * file, int line, int privs,
 			     const char *pathname, int flags, mode_t mode,
 			     int * o_noatime);
 /*@noreturn@*/
-void     aud_exit   (const char * file, int line, int fd) SH_GNUC_NORETURN;
+void     aud_exit   (char * file, int line, int fd);
 /*@noreturn@*/
-void     aud__exit  (const char * file, int line, int fd) SH_GNUC_NORETURN;
-pid_t    aud_fork   (const char * file, int line);
-int      aud_pipe   (const char * file, int line, int modus[2]);
-int      aud_setuid (const char * file, int line, uid_t uid);
-int      aud_setgid (const char * file, int line, gid_t gid);
-long int aud_kill   (const char * file, int line, pid_t pid, int sig);
+void     aud__exit  (char * file, int line, int fd);
+pid_t    aud_fork   (char * file, int line);
+int      aud_pipe   (char * file, int line, int modus[2]);
+int      aud_setuid (char * file, int line, uid_t uid);
+int      aud_setgid (char * file, int line, gid_t gid);
+long int aud_kill   (char * file, int line, pid_t pid, int sig);
 
 #endif 
Index: trunk/include/sh_cat.h
===================================================================
--- trunk/include/sh_cat.h	(revision 591)
+++ trunk/include/sh_cat.h	(revision 1)
@@ -7,10 +7,10 @@
   unsigned long priority;
   unsigned long class;
-  const char *        format;
+  char *        format;
 } cat_entry;
 
 extern cat_entry msg_cat[];
 
-extern const char * class_cat[];
+extern char * class_cat[];
 
 #define  AUD      0
@@ -75,13 +75,10 @@
  MSG_CHECK_0,     
  MSG_CHECK_1,     
- MSG_CHECK_2,     
- MSG_STAMP,
- MSG_DCLOSE,
+ MSG_STAMP,       
  		  
  MSG_D_START,     
  MSG_D_DSTART,    
  MSG_D_FAIL,      
- MSG_D_DELTAOK,
- MSG_D_DELTAFAIL,
+
 
 #ifndef HAVE_URANDOM 
@@ -103,4 +100,16 @@
 #endif
 
+#ifdef SH_USE_KERN
+ /* FreeBSD */
+ MSG_KERN_POLICY,    
+ MSG_KERN_POL_CO,
+
+ /* Linux */
+ MSG_KERN_SYSCALL,
+ MSG_KERN_PROC,
+ MSG_KERN_IDT,
+ MSG_KERN_GATE,
+#endif
+
 #ifdef SH_USE_UTMP
  MSG_UT_CHECK,
@@ -121,23 +130,4 @@
  MSG_UT_ROT,      
 
- MSG_UT_BAD,
- MSG_UT_FIRST,
- MSG_UT_OUTLIER,
-#endif
-
-#ifdef SH_USE_PROCESSCHECK
- MSG_PCK_CHECK,  
- MSG_PCK_OK,     
- MSG_PCK_P_HIDDEN, 
- MSG_PCK_HIDDEN, 
- MSG_PCK_FAKE,   
- MSG_PCK_MISS,   
-#endif
-
-#ifdef SH_USE_PORTCHECK
- MSG_PORT_MISS,
- MSG_PORT_NEW,
- MSG_PORT_RESTART,
- MSG_PORT_NEWPORT,
 #endif
 
@@ -151,23 +141,4 @@
 #ifdef SH_USE_USERFILES
  MSG_USERFILES_SUMMARY,
-#endif
-
-#ifdef USE_LOGFILE_MONITOR
- MSG_LOGMON_CHKS,
- MSG_LOGMON_CHKE,
- MSG_LOGMON_MISS,
- MSG_LOGMON_EOPEN,
- MSG_LOGMON_EREAD,
- MSG_LOGMON_REP,
- MSG_LOGMON_SUM,
- MSG_LOGMON_COR,
- MSG_LOGMON_MARK,
- MSG_LOGMON_BURST,
-#endif
-
-#ifdef USE_REGISTRY_CHECK
- MSG_REG_MISS,
- MSG_REG_NEW,
- MSG_REG_CHANGE,
 #endif
 
@@ -190,5 +161,5 @@
  MSG_FI_NOGRP,    
  MSG_FI_NOUSR,    
- MSG_FI_STAT,    
+ MSG_FI_LSTAT,    
  MSG_FI_OBSC,     
  MSG_FI_OBSC2,    
@@ -229,6 +200,5 @@
  MSG_TCP_EBGN,    
  		  
- MSG_TCP_CREG,
- MSG_TCP_AREG,
+ MSG_TCP_CREG,    
  MSG_TCP_FAUTH,   
  MSG_TCP_TIMOUT,  
@@ -281,6 +251,5 @@
  MSG_E_HASH,      
  MSG_E_ACCESS,    
- MSG_E_READ,
- MSG_E_NOTREG,
+ MSG_E_READ,      
  MSG_E_TIMEOUT,
  MSG_NODEV,       
Index: trunk/include/sh_checksum.h
===================================================================
--- trunk/include/sh_checksum.h	(revision 591)
+++ 	(revision )
@@ -1,27 +1,0 @@
-#ifndef SH_CHECKSUM_H
-#define SH_CHECKSUM_H
-
-typedef unsigned char sha2_byte  ;
-typedef UINT32        sha2_word32;
-typedef UINT64        sha2_word64;
-
-
-#define SHA256_BLOCK_LENGTH             64
-#define SHA256_SHORT_BLOCK_LENGTH       (SHA256_BLOCK_LENGTH - 8)
-#define SHA256_DIGEST_LENGTH            32
-#define SHA256_DIGEST_STRING_LENGTH     (SHA256_DIGEST_LENGTH * 2 + 1)
-
-typedef struct _SHA256_CTX {
-        sha2_word32     state[8];
-        sha2_word64     bitcount;
-        sha2_byte       buffer[SHA256_BLOCK_LENGTH];
-} SHA256_CTX;
-
-void SHA256_Init(SHA256_CTX *);
-void SHA256_Update(SHA256_CTX*, const sha2_byte*, size_t);
-void SHA256_Final(sha2_byte[SHA256_DIGEST_LENGTH], SHA256_CTX*);
-char* SHA256_End(SHA256_CTX*, char[KEYBUF_SIZE]);
-char* SHA256_Data(const sha2_byte*, size_t, char[KEYBUF_SIZE]);
-char* SHA256_Base2Hex(char * b64digest, char * hexdigest); 
-char * SHA256_ReplaceBaseByHex(const char * str, char * before, char after);
-#endif
Index: trunk/include/sh_database.h
===================================================================
--- trunk/include/sh_database.h	(revision 591)
+++ trunk/include/sh_database.h	(revision 1)
@@ -2,15 +2,15 @@
 #define SH_DATABASE_H
 
-void sh_database_reset(void);
+void sh_database_reset();
 int sh_database_insert (char * message);
 
-int sh_database_use_persistent (const char * str);
+int sh_database_use_persistent (char * str);
 
-int sh_database_set_database (const char * str);
-int sh_database_set_table (const char * str);
-int sh_database_set_host (const char * str);
-int sh_database_set_user (const char * str);
-int sh_database_set_password (const char * str);
-int sh_database_add_to_hash  (const char * str);
-int set_enter_wrapper (const char * str);
+int sh_database_set_database (char * str);
+int sh_database_set_table (char * str);
+int sh_database_set_host (char * str);
+int sh_database_set_user (char * str);
+int sh_database_set_password (char * str);
+int sh_database_add_to_hash  (char * str);
+int set_enter_wrapper (char * str);
 #endif
Index: trunk/include/sh_dbCheck.h
===================================================================
--- trunk/include/sh_dbCheck.h	(revision 591)
+++ 	(revision )
@@ -1,26 +1,0 @@
-/* SAMHAIN file system integrity testing                                   */
-/* Copyright (C) 2015 Rainer Wichmann                                      */
-/*                                                                         */
-/*  This program is free software; you can redistribute it                 */
-/*  and/or modify                                                          */
-/*  it under the terms of the GNU General Public License as                */
-/*  published by                                                           */
-/*  the Free Software Foundation; either version 2 of the License, or      */
-/*  (at your option) any later version.                                    */
-/*                                                                         */
-/*  This program is distributed in the hope that it will be useful,        */
-/*  but WITHOUT ANY WARRANTY; without even the implied warranty of         */
-/*  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          */
-/*  GNU General Public License for more details.                           */
-/*                                                                         */
-/*  You should have received a copy of the GNU General Public License      */
-/*  along with this program; if not, write to the Free Software            */
-/*  Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.              */
-
-
-#ifndef SH_DBCHECK_H
-#define SH_DBCHECK_H
-
-int sh_dbCheck_verify (const char * db_file);
-
-#endif
Index: trunk/include/sh_dbCreate.h
===================================================================
--- trunk/include/sh_dbCreate.h	(revision 591)
+++ 	(revision )
@@ -1,26 +1,0 @@
-/* SAMHAIN file system integrity testing                                   */
-/* Copyright (C) 2015 Rainer Wichmann                                      */
-/*                                                                         */
-/*  This program is free software; you can redistribute it                 */
-/*  and/or modify                                                          */
-/*  it under the terms of the GNU General Public License as                */
-/*  published by                                                           */
-/*  the Free Software Foundation; either version 2 of the License, or      */
-/*  (at your option) any later version.                                    */
-/*                                                                         */
-/*  This program is distributed in the hope that it will be useful,        */
-/*  but WITHOUT ANY WARRANTY; without even the implied warranty of         */
-/*  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          */
-/*  GNU General Public License for more details.                           */
-/*                                                                         */
-/*  You should have received a copy of the GNU General Public License      */
-/*  along with this program; if not, write to the Free Software            */
-/*  Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.              */
-
-
-#ifndef SH_DBCREATE_H
-#define SH_DBCREATE_H
-
-int sh_dbCreate (const char * path);
-
-#endif
Index: trunk/include/sh_dbIO.h
===================================================================
--- trunk/include/sh_dbIO.h	(revision 591)
+++ 	(revision )
@@ -1,69 +1,0 @@
-/* SAMHAIN file system integrity testing                                   */
-/* Copyright (C) 2015 Rainer Wichmann                                      */
-/*                                                                         */
-/*  This program is free software; you can redistribute it                 */
-/*  and/or modify                                                          */
-/*  it under the terms of the GNU General Public License as                */
-/*  published by                                                           */
-/*  the Free Software Foundation; either version 2 of the License, or      */
-/*  (at your option) any later version.                                    */
-/*                                                                         */
-/*  This program is distributed in the hope that it will be useful,        */
-/*  but WITHOUT ANY WARRANTY; without even the implied warranty of         */
-/*  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          */
-/*  GNU General Public License for more details.                           */
-/*                                                                         */
-/*  You should have received a copy of the GNU General Public License      */
-/*  along with this program; if not, write to the Free Software            */
-/*  Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.              */
-
-
-#ifndef SH_DBIO_H
-#define SH_DBIO_H
-
-
-
-/* Read one line, trim newline. Return char count, or -1 on error or eof.
- */
-int sh_dbIO_getline (FILE * fd, char * line, const size_t sizeofline);
-
-/* Read given database file for listing
- */
-int sh_dbIO_list_db (const char * db_file);
-
-/* Write single record to database
- */
-void sh_dbIO_data_write (file_type * buf, char * fileHash);
-
-/* Write whole default database
- */
-int sh_dbIO_writeout_update ();
-
-/* write database to given path
- */
-int sh_dbIO_writeout_to_path(const char * path);
-
-/* write database to stdout
- */
-int sh_dbIO_writeout_stdout (const char * str);
-
-/* version string for database
- */
-int sh_dbIO_version_string(const char * str);
-
-/* Load a delta database
- */
-int sh_dbIO_load_delta();
-
-int sh_dbIO_list_binary (const char * c);
-int sh_dbIO_list_filter (const char * c);
-
-/* alternative rootfs */
-
-int sh_dbIO_init_rootfs (const char * rootfs);
-size_t sh_dbIO_get_rootfs_len();
-char * sh_dbIO_rootfs_prepend(char * path);
-char * sh_dbIO_rootfs_strip(char * path);
-char * sh_dbIO_rootfs_strip_link(char * path);
-
-#endif
Index: trunk/include/sh_dbIO_int.h
===================================================================
--- trunk/include/sh_dbIO_int.h	(revision 591)
+++ 	(revision )
@@ -1,157 +1,0 @@
-/* SAMHAIN file system integrity testing                                   */
-/* Copyright (C) 2015 Rainer Wichmann                                      */
-/*                                                                         */
-/*  This program is free software; you can redistribute it                 */
-/*  and/or modify                                                          */
-/*  it under the terms of the GNU General Public License as                */
-/*  published by                                                           */
-/*  the Free Software Foundation; either version 2 of the License, or      */
-/*  (at your option) any later version.                                    */
-/*                                                                         */
-/*  This program is distributed in the hope that it will be useful,        */
-/*  but WITHOUT ANY WARRANTY; without even the implied warranty of         */
-/*  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          */
-/*  GNU General Public License for more details.                           */
-/*                                                                         */
-/*  You should have received a copy of the GNU General Public License      */
-/*  along with this program; if not, write to the Free Software            */
-/*  Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.              */
-
-
-#ifndef SH_DBIO_INT_H
-#define SH_DBIO_INT_H
-
-#define SH_DEADFILE 65535
-
-typedef struct store_info_old {
-
-  UINT32           mode;
-  UINT32           linkmode;
-
-  UINT64           dev;
-  UINT64           rdev;
-
-  UINT32           hardlinks;
-  UINT32           ino;
-
-  UINT64           size;
-  UINT64           atime;
-  UINT64           mtime;
-  UINT64           ctime;
-
-  UINT32           owner;
-  UINT32           group;
-
-  UINT32           attributes;
-
-  char             c_attributes[ATTRBUF_SIZE]; /* 16 = 2*UINT64 */
-
-  unsigned short   mark;
-  char             c_owner[USER_MAX+2];
-  char             c_group[GROUP_MAX+2];
-  char             c_mode[CMODE_SIZE];
-  char             checksum[KEY_LEN+1];
-  
-} sh_filestore_old_t;
-
-typedef struct store_info {
-
-  UINT32           mode;
-  UINT32           linkmode;
-
-  UINT64           dev;
-  UINT64           rdev;
-
-  UINT32           hardlinks;
-  UINT32           ino;
-
-  UINT64           size;
-  UINT64           atime;
-  UINT64           mtime;
-  UINT64           ctime;
-
-  UINT32           owner;
-  UINT32           group;
-
-  UINT32           attributes;
-
-  char             c_attributes[ATTRBUF_SIZE]; /* 16 = 2*UINT64 */
-
-  unsigned short   mark;
-  char             c_owner[USER_MAX+2];
-  char             c_group[GROUP_MAX+2];
-  char             c_mode[CMODE_SIZE];
-  char             checksum[KEY_LEN+1];
-  
-  /* If 'checkflags' is elsewhere, the compiler would still use
-   * a 6-byte padding to align the whole struct to an 8-byte boundary.
-   * ipad, opad: make explicit what the compiler does on a 64-byte system.
-   */
-  char             ipad[2];
-  UINT32           checkflags;
-  char             opad[4];
-
-} sh_filestore_t;
-  
-typedef struct file_info {
-  sh_filestore_t   theFile;
-  char           * fullpath;
-  char           * linkpath;
-  char           * attr_string;
-  int              fflags;
-  unsigned long    modi_mask;
-  struct           file_info * next;
-} sh_file_t;
-
-//* must fit an int              */
-#define TABSIZE 65536
-
-/* must fit an unsigned short   */
-/* changed for V0.8, as the     */
-/* database format has changed  */
-/* changed again for V0.9       */
-/* #define REC_MAGIC 19         */
-/* changed again for V1.3       */
-/* #define REC_MAGIC 20         */
-/* changed again for V1.4       */
-/* #define REC_MAGIC 21         */
-#define OLD_REC_MAGIC 21 
-/* changed again for V3.2       */
-#define REC_MAGIC 22
-
-#define REC_FLAGS_ATTR (1<<8)
-#define REC_FLAGS_MASK 0xFF00
-
-/* Insert into database table
- */
-void hashinsert (sh_file_t * tab[TABSIZE], sh_file_t * s); 
-
-/* Internal conversion function
- */
-file_type * sh_hash_create_ft (const sh_file_t * p, char * fileHash);
-
-/* Print what's in the link path
- */
-int sh_hash_printcontent(char * linkpath);
-
-/* List database entry
- */
-void sh_hash_list_db_entry (sh_file_t * p);
-
-/* get the location of the default/main database table
- */
-sh_file_t ** get_default_data_table();
-
-/* Write whole database
- */
-int sh_dbIO_writeout(sh_file_t * mtab[TABSIZE], const char * outpath, int truncate);
-
-/* Load from the default source into hash table 'tab'
- */
-int sh_dbIO_load_db(sh_file_t * tab[TABSIZE]);
-
-/* Load from the file 'filepath' into hash table 'tab'
- */
-int sh_dbIO_load_db_file(sh_file_t * tab[TABSIZE], const char * filepath);
-
-#endif
Index: trunk/include/sh_error.h
===================================================================
--- trunk/include/sh_error.h	(revision 591)
+++ trunk/include/sh_error.h	(revision 1)
@@ -30,5 +30,5 @@
   SH_ERR_T_START  = 0,
 
-  /* 1-13 = SH_LEVEL_XXX */
+  /* 1-9 = SH_LEVEL_XXX */
 
   SH_ERR_T_RO      = SH_LEVEL_READONLY,
@@ -40,14 +40,11 @@
   SH_ERR_T_USER0   = SH_LEVEL_USER0,  
   SH_ERR_T_USER1   = SH_LEVEL_USER1,  
-  SH_ERR_T_USER2   = SH_LEVEL_USER2,  
-  SH_ERR_T_USER3   = SH_LEVEL_USER3,  
-  SH_ERR_T_USER4   = SH_LEVEL_USER4,  
   SH_ERR_T_PRELINK = SH_LEVEL_PRELINK,  
 
-  SH_ERR_T_DIR    = 13,
-  SH_ERR_T_FILE   = 14,
-  SH_ERR_T_NAME   = 15,
+  SH_ERR_T_DIR    = 10,
+  SH_ERR_T_FILE   = 11,
+  SH_ERR_T_NAME   = 12,
 
-  SH_ERR_T_END    = 16
+  SH_ERR_T_END    = 13
 };
 
@@ -84,32 +81,32 @@
 /* set mask for message class
  */
-int sh_error_log_mask (const char * c);
-int sh_error_print_mask (const char * c);
-int sh_error_mail_mask (const char * c);
-int sh_error_export_mask (const char * c);
-int sh_error_syslog_mask (const char * c);
-int sh_error_external_mask (const char * c);
-int sh_error_database_mask (const char * c);
-int sh_error_prelude_mask (const char * c);
+int sh_error_log_mask (char * c);
+int sh_error_print_mask (char * c);
+int sh_error_mail_mask (char * c);
+int sh_error_export_mask (char * c);
+int sh_error_syslog_mask (char * c);
+int sh_error_external_mask (char * c);
+int sh_error_database_mask (char * c);
+int sh_error_prelude_mask (char * c);
 
 
-int sh_error_verify (const char * s);
-int sh_error_logverify_mod (const char * s); /* just list, don't verify */
-int sh_error_logverify (const char * s);
+int sh_error_verify (char * s);
+int sh_error_logverify_mod (char * s); /* just list, don't verify */
+int sh_error_logverify (char * s);
 
 void sh_error_dbg_switch(void);
 
 #ifdef SH_WITH_SERVER
-
 void sh_error_set_peer(const char * str);
-#ifdef HAVE_LIBPRELUDE
-void sh_error_set_peer_ip(const char * str);
-#endif
-int  set_flag_sep_log (const char * str);
+int  set_flag_sep_log (char * str);
 #endif
 
 /* init or re-init log facilities that need it
  */
-void sh_error_fixup(void);
+void sh_error_fixup();
+
+/* convert a string to a numeric priority
+ */ 
+int sh_error_convert_level (char * str_s);
 
 /* only to stderr (GOOD/BAD)
@@ -117,64 +114,60 @@
 void sh_error_only_stderr (int flag);
 
-/* facilities unsafe for closeall()
- */
-void sh_error_enable_unsafe (int flag);
-
 /* set syslog facility 
  */
-int  sh_log_set_facility (const char * c);
-
-/* map heartbeat messages 
- */
-int sh_log_set_stamp_priority (const char * c);
+int  sh_log_set_facility (char * c);
 
 /* define message header
  */
-int sh_error_ehead (/*@null@*/const char * s);
+int sh_error_ehead (/*@null@*/char * s);
 
 /* set level for error logging 
  */
-int sh_error_setlog(const char * str_s);
+int sh_error_setlog(char * str_s);
 
 /* set severity levels
  */
-int sh_error_set_iv (int iv, const char *  severity_s);
+int sh_error_set_iv (int iv, char *  severity_s);
 
 /* set priorities
  */
-int sh_error_set_level(const char * str_s, int *facility);
+int sh_error_set_level(char * str_s, int *facility);
 
 /* set level for TCP export
  */
-int sh_error_setexport(const char *  str_s);
+int sh_error_setexport(char *  str_s);
 
 /* set level for syslog
  */
-int sh_error_set_syslog (const char * flag_s);
+int sh_error_set_syslog (char * flag_s);
 
 /* set level for printing
  */
-int sh_error_setprint(const char *  flag_s);
+int sh_error_setprint(char *  flag_s);
 
 /* set severity for external
  */
-int sh_error_set_external (const char * str_s);
+int sh_error_set_external (char * str_s);
 
 /* set severity for external
  */
-int sh_error_set_database (const char * str_s);
+int sh_error_set_database (char * str_s);
 
 /* set severity for external
  */
-int sh_error_set_prelude (const char * str_s);
+int sh_error_set_prelude (char * str_s);
 
 
 /* set level for mailing
  */
-int sh_error_setseverity (const char * flag);
+int sh_error_setseverity (char * flag);
 
 /* set debug level
  */
 int sh_error_setdebug (char * debug_s);
+
+/* error messages
+ */
+/*@owned@*/char * sh_error_message (int tellme);
 
 /* switch on/off log to file temporarily
@@ -183,23 +176,17 @@
 void sh_error_logrestore(void);
 
-/* short errfile
- */
-void sh_efile_report();
-int sh_efile_path(const char * str);
-int sh_efile_group(const char * str);
-
 /* (re)set the console device(s)
  */
-int sh_log_set_console (const char * address);
+int sh_log_set_console (char * address);
 void reset_count_dev_console(void);
 
-/* close the message queue [no-op if !defined(WITH_MESSAGE_QUEUE)]
+#ifdef WITH_MESSAGE_QUEUE
+/* close the message queue
  */
 void close_ipc (void);
 
-#ifdef WITH_MESSAGE_QUEUE
 /* enable message queue
  */
-int enable_msgq(const char * foo);
+int enable_msgq(char * foo);
 #endif
  
Index: trunk/include/sh_error_min.h
===================================================================
--- trunk/include/sh_error_min.h	(revision 591)
+++ trunk/include/sh_error_min.h	(revision 1)
@@ -22,20 +22,6 @@
 /* this function should be called to report an error
  */
-void sh_error_handle (int flag, const char * file, long line, 
+void sh_error_handle (int flag, char * file, long line, 
 		      long errnum, unsigned long  msg_index, ...);
 
-/* this function should be called to (only) send mail
- */
-void sh_error_mail (const char * alias, int sev, 
-		    const char * file, long line, 
-		    long status, unsigned long msg_id, ...);
-
-/* convert a string to a numeric priority
- */ 
-int sh_error_convert_level (const char * str_s);
-
-/* error messages
- */
-char * sh_error_message (int tellme, char * str, size_t len);
-
 #endif
Index: trunk/include/sh_extern.h
===================================================================
--- trunk/include/sh_extern.h	(revision 591)
+++ trunk/include/sh_extern.h	(revision 1)
@@ -1,6 +1,4 @@
 #ifndef SH_EXTERN_H
 #define SH_EXTERN_H
-
-#include 
 
 typedef struct 
@@ -12,7 +10,6 @@
   char   *  envv[32];
   char      checksum[KEY_LEN + 1];
-#if 0
+
   uid_t     trusted_users[32];
-#endif
   uid_t     run_user_uid;
   gid_t     run_user_gid;
@@ -39,20 +36,4 @@
 
 /*
- * -- generic simple safe popen; returns 0 on success, -1 otherwise,
- *    executes shell command
- */
-int sh_ext_popen_init (sh_tas_t * task, const char * command, char * argv0, ...) SH_GNUC_SENTINEL;
-
-/*
- * -- Execute command, return first line of output
- */
-int sh_ext_system (char * command, char * argv0, ...) SH_GNUC_SENTINEL;
-
-/*
- * -- Execute command, return first line of output
- */
-char * sh_ext_popen_str (const char * command);
-
-/*
  * -- close the pipe, clear and return task->exit_status
  */
@@ -62,5 +43,5 @@
  * -- add CL argument, return # of arguments
  */
-int sh_ext_tas_add_argv(sh_tas_t * tas, const char * val);
+int sh_ext_tas_add_argv(sh_tas_t * tas, char * val);
 /*
  * -- remove last CL argument
@@ -70,9 +51,9 @@
  * -- add environment variable, return # of variables
  */
-int sh_ext_tas_add_envv(sh_tas_t * tas, const char * key, const char * val);
+int sh_ext_tas_add_envv(sh_tas_t * tas, char * key, char * val);
 /*
  * -- set command
  */
-void sh_ext_tas_command(sh_tas_t * tas, const char * command);
+void sh_ext_tas_command(sh_tas_t * tas, char * command);
 /*
  * -- initialize task structure
@@ -90,10 +71,5 @@
  * -- start a new external command, and add it to the list
  */ 
-int sh_ext_setcommand(const char * cmd);
-
-/*
- * -- explicitely close a command
- */
-int sh_ext_close_command (const char * str);
+int sh_ext_setcommand(char * cmd);
 
 /* 
@@ -105,50 +81,50 @@
  * -- set deadtime
  */
-int sh_ext_deadtime (const char * str);
+int sh_ext_deadtime (char * str);
 
 /*
  * -- add keywords to the OR filter
  */
-int sh_ext_add_or (const char * str);
+int sh_ext_add_or (char * str);
 
 /*
  * -- add keywords to the AND filter
  */
-int sh_ext_add_and (const char * str);
+int sh_ext_add_and (char * str);
 
 /*
  * -- add keywords to the NOT filter
  */
-int sh_ext_add_not (const char * str);
+int sh_ext_add_not (char * str);
 
 /*
  * -- add keywords to the CL argument list
  */
-int sh_ext_add_argv (const char * str);
+int sh_ext_add_argv (char * str);
 
 /*
  * -- add a path to the environment
  */
-int sh_ext_add_default (const char * str);
+int sh_ext_add_default (char * str);
 
 /*
  * -- add an environment variable
  */
-int sh_ext_add_environ (const char * str);
+int sh_ext_add_environ (char * str);
 
 /*
  * -- define type
  */
-int sh_ext_type (const char * str);
+int sh_ext_type (char * str);
 
 /*
  * -- define checksum
  */
-int sh_ext_checksum (const char * str);
+int sh_ext_checksum (char * str);
 
 /*
  * -- choose privileges
  */
-int sh_ext_priv (const char * c);
+int sh_ext_priv (char * c);
 
 /*
Index: trunk/include/sh_fInotify.h
===================================================================
--- trunk/include/sh_fInotify.h	(revision 591)
+++ 	(revision )
@@ -1,13 +1,0 @@
-
-#ifndef SH_F_INOTIFY_H
-#define SH_F_INOTIFY_H
-
-int sh_fInotify_init(struct mod_type * arg);
-int sh_fInotify_timer(time_t tcurrent);
-int sh_fInotify_run(void);
-int sh_fInotify_reconf(void);
-int sh_fInotify_cleanup(void);
-
-extern sh_rconf sh_fInotify_table[];
-
-#endif
Index: trunk/include/sh_fifo.h
===================================================================
--- trunk/include/sh_fifo.h	(revision 591)
+++ trunk/include/sh_fifo.h	(revision 1)
@@ -10,5 +10,5 @@
  *****************************************************/
 
-#define SH_FIFO_MAX 16384
+#define SH_FIFO_MAX 128
 
 /*****************************************************
@@ -21,7 +21,4 @@
   struct dlist * next;
   char         * data;
-  char         * s_xtra;
-  int            i_xtra;
-  int            transact;
   struct dlist * prev;
 };
@@ -32,6 +29,4 @@
   int            fifo_cts;
 } SH_FIFO;
-
-#define SH_FIFO_INITIALIZER { NULL, NULL, 0 }
 
 /*****************************************************
@@ -44,6 +39,6 @@
  *
  */
-#define fifo_init(fifo_p) { (fifo_p)->fifo_cts = 0; (fifo_p)->head_ptr = NULL; \
-    (fifo_p)->tail_ptr = NULL; }
+#define fifo_init(fifo_p) { fifo_p->fifo_cts = 0; fifo_p->head_ptr = NULL; \
+ fifo_p->tail_ptr = NULL; }
 
 
@@ -52,6 +47,5 @@
  * Returns: -1 if the list is full, 0 on success 
  */
-int push_list (SH_FIFO * fifo, const char * indat, int in_i, const char * in_str);
-#define sh_fifo_push(a, b) push_list((a), (b), 0, NULL)
+int push_list (SH_FIFO * fifo, char * indat);
 
 /* Push an item on the tail of the list.
@@ -59,6 +53,5 @@
  * Returns: -1 if the list is full, 0 on success 
  */
-int push_tail_list (SH_FIFO * fifo, const char * indat, int in_i, const char * in_str);
-#define sh_fifo_push_tail(a, b) push_tail_list((a), (b), 0, NULL)
+int push_tail_list (SH_FIFO * fifo, char * indat);
 
 /* pop an item from the tail of the list
@@ -68,28 +61,4 @@
  */
 char * pop_list (SH_FIFO * fifo);
-#define sh_fifo_pop(a) pop_list((a))
-
-/* ----  Special functions -------------------------------------------------*/
-
-/* This is for eMail where different recipients may be eligible for         *
- * different subsets of messages. We need to delete all that were sent      *
- * to all intended recipients, and keep all with at least one failure.      */
-
-/* Iterate over list and check for each if it is valid for 'tag';
- * i.e. (item->s_extra == tag). If yes, add to the returned string.
- * If (okNull == False) then item->s_xtra must be defined
- */
-sh_string * tag_list (SH_FIFO * fifo, char * tag,
-		      int(*check)(int, const char*, const char*, const void*),
-		      const void * info, int okNull);
-
-/* Flag all tagged as candidate to keep */
-void rollback_list (SH_FIFO * fifo);
-/* Flag all tagged as candidate to delete */
-void mark_list (SH_FIFO * fifo);
-/* Remove all flags */
-void reset_list (SH_FIFO * fifo);
-/* Delete all marked for delete that are not flagged for keep */
-int commit_list (SH_FIFO * fifo);
 
 #endif
Index: trunk/include/sh_files.h
===================================================================
--- trunk/include/sh_files.h	(revision 591)
+++ trunk/include/sh_files.h	(revision 1)
@@ -21,53 +21,7 @@
 #define SH_FILES_H
 
-void sh_audit_mark (const char * file);
-void sh_audit_commit ();
-void sh_audit_delete_all ();
-int  sh_audit_set_flags(const char * str);
-char * sh_audit_fetch (char * file, time_t mtime, time_t ctime, time_t atime, char * result, size_t rsize);
-
-struct sh_dirent {
-  char             * sh_d_name;
-  struct sh_dirent * next;
-};
-
-/* Fix the check flags
- */
-void sh_files_fixup_mask (int class, unsigned long * check_flags);
-
-/* Dequote a filename in the config file
- */
-char * sh_files_parse_input(const char * str_s, size_t * len);
-
-/* Check whether a file is in the config 
- */
-char * sh_files_findfile(const char * path);
-
-/* Find the most specific directory in the config
- */
-char * sh_files_find_mostspecific_dir(const char * path);
-
-/* free a directory listing
- */
-void kill_sh_dirlist (struct sh_dirent * dirlist);
-
-#ifdef NEED_ADD_DIRENT
-/* add an entry to a directory listing
- */
-struct sh_dirent * addto_sh_dirlist (struct dirent * thisEntry, 
-				     struct sh_dirent * dirlist);
-#endif
-
 /* register exceptions to hardlink check
  */
-int sh_files_hle_reg (const char * str);
-
-/* Check for new files/dirs matching configured glob patterns.
- */
-void sh_files_check_globPatterns();
-
-/* Check for new files (only) matching configured glob patterns.
- */
-void sh_files_check_globFilePatterns();
+int sh_files_hle_reg (char * str);
 
 /* check the setup
@@ -81,9 +35,5 @@
 /* activate hardlink check
  */
-int sh_files_check_hardlinks (const char * opt);
-
-/* check  rsrc fork (Mac OS X)
- */
-int sh_files_use_rsrc(const char * str);
+int sh_files_check_hardlinks (char * opt);
 
 /* set recursion depth
@@ -93,9 +43,9 @@
 /* report only once
  */
-int sh_files_reportonce(const char * c);
+int sh_files_reportonce(char * c);
 
 /* report full details
  */
-int sh_files_fulldetail(const char * c);
+int sh_files_fulldetail(char * c);
 
 /* reset the 'checked' flag
@@ -109,5 +59,5 @@
 /* set maximum recursion level
  */
-int sh_files_setrecursion (const char * flag_s);
+int sh_files_setrecursion (char * flag_s);
 
 /* select a directory stack 2=Two, else One (standard)
@@ -117,98 +67,74 @@
 /* push a directory on the stack USER0
  */
-int  sh_files_pushdir_user0 (const char * dirName);
+int  sh_files_pushdir_user0 (char * dirName);
 
 /* push a directory on the stack USER1
  */
-int  sh_files_pushdir_user1 (const char * dirName);
-
-/* push a directory on the stack USER2
- */
-int  sh_files_pushdir_user2 (const char * dirName);
-
-/* push a directory on the stack USER3
- */
-int  sh_files_pushdir_user3 (const char * dirName);
-
-/* push a directory on the stack USER4
- */
-int  sh_files_pushdir_user4 (const char * dirName);
+int  sh_files_pushdir_user1 (char * dirName);
 
 /* push a directory on the stack PRELINK
  */
-int  sh_files_pushdir_prelink (const char * dirName);
+int  sh_files_pushdir_prelink (char * dirName);
 
 /* push a directory on the stack ATTR
  */
-int  sh_files_pushdir_attr (const char * dirName);
+int  sh_files_pushdir_attr (char * dirName);
 
 /* push a directory on the stack READONLY
  */
-int  sh_files_pushdir_ro (const char * dirName);
+int  sh_files_pushdir_ro (char * dirName);
 
 /* push a directory on the stack LOGFILE
  */
-int  sh_files_pushdir_log (const char * dirName);
+int  sh_files_pushdir_log (char * dirName);
 
 /* push a directory on the stack GROWING LOGFILE
  */
-int  sh_files_pushdir_glog (const char * dirName);
+int  sh_files_pushdir_glog (char * dirName);
 
 /* push a directory on the stack IGNORE NONE
  */
-int  sh_files_pushdir_noig (const char * dirName);
+int  sh_files_pushdir_noig (char * dirName);
 
 /* push a directory on the stack IGNORE ALL 
  */
-int  sh_files_pushdir_allig (const char * dirName);
+int  sh_files_pushdir_allig (char * dirName);
 
 
 /* push a file on the stack USER0
  */
-int  sh_files_pushfile_user0 (const char * dirName);
+int  sh_files_pushfile_user0 (char * dirName);
 
 /* push a file on the stack USER1
  */
-int  sh_files_pushfile_user1 (const char * dirName);
-
-/* push a file on the stack USER2
- */
-int  sh_files_pushfile_user2 (const char * dirName);
-
-/* push a file on the stack USER3
- */
-int  sh_files_pushfile_user3 (const char * dirName);
-
-/* push a file on the stack USER4
- */
-int  sh_files_pushfile_user4 (const char * dirName);
+int  sh_files_pushfile_user1 (char * dirName);
 
 /* push a file on the stack PRELINK
  */
-int  sh_files_pushfile_prelink (const char * dirName);
+int  sh_files_pushfile_prelink (char * dirName);
 
 /* push a file on the stack ATTR
  */
-int  sh_files_pushfile_attr (const char * dirName);
+int  sh_files_pushfile_attr (char * dirName);
 
 /* push a file on the stack READONLY
  */
-int  sh_files_pushfile_ro (const char * dirName);
+int  sh_files_pushfile_ro (char * dirName);
 
 /* push a file on the stack LOGFILE
  */
-int  sh_files_pushfile_log (const char * dirName);
+int  sh_files_pushfile_log (char * dirName);
 
 /* push a file on the stack GROWING LOGFILE
  */
-int  sh_files_pushfile_glog (const char * dirName);
+int  sh_files_pushfile_glog (char * dirName);
 
 /* push a file on the stack IGNORE NONE
  */
-int  sh_files_pushfile_noig (const char * dirName);
+int  sh_files_pushfile_noig (char * dirName);
 
 /* push a file on the stack IGNORE ALL
  */
-int  sh_files_pushfile_allig (const char * dirName);
+int  sh_files_pushfile_allig (char * dirName);
 
 
@@ -221,6 +147,4 @@
 unsigned long sh_files_chk       (void);
 
-int sh_files_delglobstack (void);
-
 int sh_files_deldirstack (void);
 
@@ -229,34 +153,14 @@
 /* redefine policies
  */
-int sh_files_redef_user0(const char * str);
-int sh_files_redef_user1(const char * str);
-int sh_files_redef_user2(const char * str);
-int sh_files_redef_user3(const char * str);
-int sh_files_redef_user4(const char * str);
-int sh_files_redef_prelink(const char * str);
-int sh_files_redef_readonly(const char * str);
-int sh_files_redef_loggrow(const char * str);
-int sh_files_redef_logfiles(const char * str);
-int sh_files_redef_attributes(const char * str);
-int sh_files_redef_noignore(const char * str);
-int sh_files_redef_allignore(const char * str);
+int sh_files_redef_user0(char * str);
+int sh_files_redef_user1(char * str);
+int sh_files_redef_prelink(char * str);
+int sh_files_redef_readonly(char * str);
+int sh_files_redef_loggrow(char * str);
+int sh_files_redef_logfiles(char * str);
+int sh_files_redef_attributes(char * str);
+int sh_files_redef_noignore(char * str);
+int sh_files_redef_allignore(char * str);
 
-ShFileType sh_files_filecheck (int class, unsigned long check_flags,
-			       const char * dirName, 
-			       const char * infileName,
-			       int * reported, 
-			       int rsrcflag);
-
-int sh_files_checkdir (int iclass, unsigned long check_flags, 
-		       int idepth, char * iname, 
-		       char * relativeName);
-
-int sh_files_search_file(char * name, int * class, 
-			 unsigned long *check_flags, int * reported);
-int sh_files_search_dir(char * name, int * class, 
-			unsigned long *check_flags, int *reported,
-			int * rdepth);
-void sh_files_set_file_reported(const char * name);
-void sh_files_clear_file_reported(const char * name);
 
 #endif
Index: trunk/include/sh_filter.h
===================================================================
--- trunk/include/sh_filter.h	(revision 591)
+++ 	(revision )
@@ -1,35 +1,0 @@
-#ifndef SH_FILTER_H
-#define SH_FILTER_H
-
-/* Filtering
- */
-
-#define SH_FILT_NUM 32
-#define SH_FILT_OR  0
-#define SH_FILT_AND 1
-#define SH_FILT_NOT 2
-#define SH_FILT_INIT { 0, { NULL }, 0, { NULL }, 0, { NULL }}
-
-/* Pattern storage is of type void since it may be a char*
- * or a regex_t*
- */
-typedef struct _sh_filter_type
-{
-  int      for_c;
-  void   * for_v[SH_FILT_NUM];
-  int      fand_c;
-  void   * fand_v[SH_FILT_NUM];
-  int      fnot_c;
-  void   * fnot_v[SH_FILT_NUM];
-
-} sh_filter_type;
-
-int  sh_filter_add (const char * str, sh_filter_type * filter, int type);
-
-void sh_filter_free (sh_filter_type * filter);
-
-int  sh_filter_filter (const char * message, sh_filter_type * filter);
-
-sh_filter_type * sh_filter_alloc(void);
-
-#endif
Index: trunk/include/sh_forward.h
===================================================================
--- trunk/include/sh_forward.h	(revision 1)
+++ trunk/include/sh_forward.h	(revision 1)
@@ -0,0 +1,111 @@
+/* SAMHAIN file system integrity testing                                   */
+/* Copyright (C) 1999 Rainer Wichmann                                      */
+/*                                                                         */
+/*  This program is free software; you can redistribute it                 */
+/*  and/or modify                                                          */
+/*  it under the terms of the GNU General Public License as                */
+/*  published by                                                           */
+/*  the Free Software Foundation; either version 2 of the License, or      */
+/*  (at your option) any later version.                                    */
+/*                                                                         */
+/*  This program is distributed in the hope that it will be useful,        */
+/*  but WITHOUT ANY WARRANTY; without even the implied warranty of         */
+/*  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          */
+/*  GNU General Public License for more details.                           */
+/*                                                                         */
+/*  You should have received a copy of the GNU General Public License      */
+/*  along with this program; if not, write to the Free Software            */
+/*  Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.              */
+
+#ifndef SH_FORWARD_H
+#define SH_FORWARD_H
+
+#ifndef SH_STANDALONE
+int sh_forward_set_strip (char * str);
+
+#endif
+
+/* generate a random password
+ */
+int sh_forward_create_password (char * dummy);
+
+/* set time limit
+ */
+int sh_forward_set_time_limit(char * str);
+
+/* error level for lookup failure
+ */
+int sh_forward_lookup_level (char * c);
+
+/* create client entry for given password
+ */
+int sh_forward_make_client (char * str);
+
+#ifdef SH_WITH_SERVER
+
+#ifdef INET_SYSLOG
+int set_syslog_active(char * c);
+#endif
+
+/* create socket and start listening
+ */
+void create_server_tcp_socket ();
+
+/* whether to use client address as known to the communication layer
+ * and set by accept()
+ */
+int set_socket_peer (char * c);
+
+/* whether to use client severity
+ */
+int sh_forward_use_clt_sev (char * c);
+
+/* whether to use client class
+ */
+int sh_forward_use_clt_class (char * c);
+
+/* server port
+ */
+int sh_forward_set_port(char * c);
+
+/* server interface
+ */
+int sh_forward_set_interface(char * c);
+
+/* a wrapper function
+ */
+void sh_forward_html_write(void);
+
+/* register a client
+ */
+int sh_forward_register_client (char * str);
+
+/* start server
+ */
+void sh_receive(void);
+
+/* free() everything
+ */
+void sh_forward_free_all (void);
+
+#endif
+
+#ifdef SH_WITH_CLIENT
+/* talk to server
+ */
+long  sh_forward (char * errmsg);
+
+
+/* request file from server. file may be "CONF" or "DATA".
+ */
+long sh_forward_req_file (char * file);
+
+/* set log server
+ */
+int sh_forward_setlogserver (char * address);
+void reset_count_dev_server(void);
+
+#endif
+
+#endif
+
Index: trunk/include/sh_gpg.h
===================================================================
--- trunk/include/sh_gpg.h	(revision 1)
+++ trunk/include/sh_gpg.h	(revision 1)
@@ -0,0 +1,46 @@
+/* SAMHAIN file system integrity testing                                   */
+/* Copyright (C) 1999 Rainer Wichmann                                      */
+/*                                                                         */
+/*  This program is free software; you can redistribute it                 */
+/*  and/or modify                                                          */
+/*  it under the terms of the GNU General Public License as                */
+/*  published by                                                           */
+/*  the Free Software Foundation; either version 2 of the License, or      */
+/*  (at your option) any later version.                                    */
+/*                                                                         */
+/*  This program is distributed in the hope that it will be useful,        */
+/*  but WITHOUT ANY WARRANTY; without even the implied warranty of         */
+/*  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          */
+/*  GNU General Public License for more details.                           */
+/*                                                                         */
+/*  You should have received a copy of the GNU General Public License      */
+/*  along with this program; if not, write to the Free Software            */
+/*  Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.              */
+
+#if (defined(WITH_GPG) || defined(WITH_PGP))
+
+#ifndef SH_GPG_H
+#define SH_GPG_H
+/* this function exits if configuration file
+ * and/or database cannot be verified; otherwise returns 0
+ */
+int sh_gpg_check_sign (long file_1, long file_2, int what);
+
+#endif
+
+/* #ifdef WITH_GPG */
+#endif
+
+
+
+
+
+
+
+
+
+
+
+
+
+
Index: trunk/include/sh_gpg_chksum.h
===================================================================
--- trunk/include/sh_gpg_chksum.h	(revision 1)
+++ trunk/include/sh_gpg_chksum.h	(revision 1)
@@ -0,0 +1,53 @@
+#ifndef CHKSUM_H
+#define CHKSUM_H
+char gpgchk[50];
+gpgchk[0] = '4';
+gpgchk[1] = '0';
+gpgchk[2] = '7';
+gpgchk[3] = '8';
+gpgchk[4] = '4';
+gpgchk[5] = '6';
+gpgchk[6] = '0';
+gpgchk[7] = '1';
+gpgchk[8] = '7';
+gpgchk[9] = '5';
+gpgchk[10] = 'D';
+gpgchk[11] = '0';
+gpgchk[12] = '1';
+gpgchk[13] = 'B';
+gpgchk[14] = '4';
+gpgchk[15] = '4';
+gpgchk[16] = 'B';
+gpgchk[17] = '5';
+gpgchk[18] = 'E';
+gpgchk[19] = '3';
+gpgchk[20] = 'A';
+gpgchk[21] = '4';
+gpgchk[22] = '0';
+gpgchk[23] = 'E';
+gpgchk[24] = '4';
+gpgchk[25] = '4';
+gpgchk[26] = '0';
+gpgchk[27] = '1';
+gpgchk[28] = '6';
+gpgchk[29] = '3';
+gpgchk[30] = '3';
+gpgchk[31] = '3';
+gpgchk[32] = 'C';
+gpgchk[33] = 'F';
+gpgchk[34] = '3';
+gpgchk[35] = 'C';
+gpgchk[36] = '5';
+gpgchk[37] = '6';
+gpgchk[38] = 'A';
+gpgchk[39] = '7';
+gpgchk[40] = 'A';
+gpgchk[41] = 'B';
+gpgchk[42] = 'D';
+gpgchk[43] = '9';
+gpgchk[44] = '1';
+gpgchk[45] = '9';
+gpgchk[46] = '6';
+gpgchk[47] = '6';
+gpgchk[48] = '\0';
+#endif
Index: trunk/include/sh_guid.h
===================================================================
--- trunk/include/sh_guid.h	(revision 591)
+++ 	(revision )
@@ -1,34 +1,0 @@
-/* SAMHAIN file system integrity testing                                   */
-/* Copyright (C) 2015 Rainer Wichmann                                      */
-/*                                                                         */
-/*  This program is free software; you can redistribute it                 */
-/*  and/or modify                                                          */
-/*  it under the terms of the GNU General Public License as                */
-/*  published by                                                           */
-/*  the Free Software Foundation; either version 2 of the License, or      */
-/*  (at your option) any later version.                                    */
-/*                                                                         */
-/*  This program is distributed in the hope that it will be useful,        */
-/*  but WITHOUT ANY WARRANTY; without even the implied warranty of         */
-/*  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          */
-/*  GNU General Public License for more details.                           */
-/*                                                                         */
-/*  You should have received a copy of the GNU General Public License      */
-/*  along with this program; if not, write to the Free Software            */
-/*  Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.              */
-
-
-#ifndef SH_GUID_H
-#define SH_GUID_H
-
-
-#define SH_UUID_BUF 37
-
-char * sh_uuid_generate_random(char * out, size_t len);
-
-/* return 0 if it looks like a uuid
- */
-int sh_uuid_check(const char * in);
-
-#endif
-
Index: trunk/include/sh_hash.h
===================================================================
--- trunk/include/sh_hash.h	(revision 591)
+++ trunk/include/sh_hash.h	(revision 1)
@@ -28,19 +28,7 @@
 #include "sh_error.h"
 
-/* the report_checkflags flag
- */
-int get_report_checkflags();
-
-/* whether to report checkflags
- */
-int set_report_checkflags(const char * c);
-
-/* convert to policy string
- */
-const char * sh_hash_getpolicy(int class);
-
 /* format a uint64
  */
-char * sh_hash_size_format(void);
+char * sh_hash_size_format();
 
 /* report on a missing file
@@ -48,41 +36,23 @@
 int hashreport_missing( char *fullpath, int level);
 
-/* remove internal db record for a file (checks for some flags).
+/* write database to stdout
  */
-void sh_hash_remove (const char * path);
+int sh_hash_pushdata_stdout (char * str);
 
-/* remove internal db record for a file
+/* version string for database
  */
-void sh_hash_remove_unconditional (const char * path);
+int sh_hash_version_string(char * str);
 
-/* Insert a "null" record in-memory (representing a missing file).
+/* List database content
  */
-void sh_hash_insert_null(char * str);
-
-#ifdef SH_DBIO_INT_H
-/* Check for "null" record
- */
-int sh_hash_is_null_record(sh_filestore_t * theFile);
-#endif
-
-/* Dont report on ctm/mtm change for directories
- */
-int sh_hash_loosedircheck(const char * str);
-
-/* List database content for a single file
- */
-int set_list_file (const char * c);
-
-/* Set the path of that file
- */
-char * get_list_file();
+int sh_hash_list_db (char * db_file);
 
 /* List database content with full detail
  */
-int set_full_detail (const char * c);
+int set_full_detail (char * c);
 
 /* List database content with full detail, comma delimited
  */
-int set_list_delimited (const char * c);
+int set_list_delimited (char * c);
 
 /* Read the database from disk.
@@ -90,24 +60,11 @@
 void sh_hash_init (void);
 
-/* Check init status
- */
-int sh_hash_get_initialized();
-
-/* Read the database from disk and fill sh.data.hash with checksum.
- */
-void sh_hash_init_and_checksum();
-
-/* Set status to 'database is read in'.
- */
-void sh_hash_set_initialized();
-
 /* Check whether a file is present in the database.
  */
-int sh_hash_have_it (const char * newname);
+int sh_hash_have_it (char * newname);
 
 /* Get a file if it is present in the database.
- * If fileHash != NULL also return checksum.
  */
-int sh_hash_get_it (const char * newname, file_type * tmpFile, char * fileHash);
+int sh_hash_get_it (char * newname, file_type * tmpFile);
 
 /* Delete the database from memory.
@@ -121,25 +78,9 @@
 /* reset sh_hash_pushdata to use 'update' in daemon mode
  */
-void sh_hash_pushdata_reset (void);
+void sh_hash_pushdata_reset ();
 
 /* Insert a file into the in-memory database.
  */ 
 void sh_hash_pushdata_memory (file_type * theFile, char * fileHash);
-
-/* Get file flags from in-memory database
- */
-int sh_hash_getflags (char * filename);
-
-/* Set file flags in in-memory database
- */
-int sh_hash_setflags (char * filename, int flags);
-
-/* Set a file flag in in-memory database
- */
-void sh_hash_set_flag  (char * filename, int flag);
-
-/* Unset a file flag in in-memory database
- */
-void sh_hash_clear_flag (char * filename, int flag_to_set);
 
 /* Compare a file with its status in the database.
@@ -151,8 +92,4 @@
  */
 void sh_hash_unvisited (ShErrLevel level);
-
-/* Search for unvisited entries in the database, custom error handler.
- */
-void sh_hash_unvisited_custom (char prefix, void(*handler)(const char * key));
 
 /* Set a file's status to 'visited'. This is required for
@@ -178,28 +115,18 @@
 int hash_full_tree (void); 
 
-/* Insert data.
- * 'key' -> path
- * 'str' -> binary with size 'size'
+/* Insert data
  */
-struct store2db {
-  UINT64 val0;
-  UINT64 val1;
-  UINT64 val2;
-  UINT64 val3;
-  char   checksum[KEY_LEN+1];
-  unsigned char * str;
-  int size;
-};
-
-void sh_hash_push2db (const char * key, struct store2db * save);
-
+void sh_hash_push2db (char * key, unsigned long val1, 
+		      unsigned long val2, unsigned long val3,
+		      unsigned char * str, int size);
 
 /* Retrieve data
  */
-char * sh_hash_db2pop (const char * key,  struct store2db * get);
-
+char * sh_hash_db2pop (char * key, unsigned long * val1, 
+		       unsigned long * val2, unsigned long * val3,
+		       int * size);
 
 /* Write out database
  */
-int sh_hash_writeout(void);
+int sh_hash_writeout();
 #endif
Index: trunk/include/sh_html.h
===================================================================
--- trunk/include/sh_html.h	(revision 591)
+++ trunk/include/sh_html.h	(revision 1)
@@ -53,5 +53,4 @@
   int                     encf_flag;
   int                     ency_flag;
-  int                     ivst_flag;
   int                     status_now;
   int                     status_arr[CLT_MAX];
Index: trunk/include/sh_ignore.h
===================================================================
--- trunk/include/sh_ignore.h	(revision 591)
+++ trunk/include/sh_ignore.h	(revision 1)
@@ -2,13 +2,11 @@
 #define SH_IGNORE_H
 
-int sh_ignore_add_del (const char * addpath);
-int sh_ignore_add_new (const char * addpath);
-int sh_ignore_add_mod (const char * addpath);
+int sh_ignore_add_del (char * addpath);
+int sh_ignore_add_new (char * addpath);
 
 int sh_ignore_chk_del (const char * chkpath);
 int sh_ignore_chk_new (const char * chkpath);
-int sh_ignore_chk_mod (const char * chkpath);
 
-int sh_ignore_clean (void);
+int sh_ignore_clean ();
 
 #endif
Index: trunk/include/sh_inotify.h
===================================================================
--- trunk/include/sh_inotify.h	(revision 591)
+++ 	(revision )
@@ -1,58 +1,0 @@
-#ifndef SH_INOTIFY_H
-#define SH_INOTIFY_H
-
-#define SH_INOTIFY_MAX 128
-
-typedef struct 
-{
-  void * list_of_watches;
-  void * dormant_watches;
-
-  /*
-  int    watch[SH_INOTIFY_MAX];
-  int    flag[SH_INOTIFY_MAX];
-  char * file[SH_INOTIFY_MAX];
-  */
-
-  int     count;
-  int  max_count;
-} sh_watches;
-
-/* #define SH_INOTIFY_INITIALIZER { { 0 }, { 0 }, { NULL}, 0, 0 } */
-
-#define SH_INOTIFY_INITIALIZER { NULL, NULL, 0, 0 }
-
-#define SH_INOTIFY_FILE 0
-#define SH_INOTIFY_DIR  1
-
-int sh_inotify_wait_for_change(char * filename, sh_watches * watches, 
-			       int  * errnum,   int waitsec);
-
-int sh_inotify_rm_watch (sh_watches * watches, sh_watches * save, int wd);
-
-int sh_inotify_add_watch(char * filename, sh_watches * watches, int  * errnum,
-			 int class, unsigned long check_flags, int type, int rdepth);
-
-int sh_inotify_add_watch_later(const char * filename, sh_watches * watches, 
-			       int  * errnum,
-			       int class, unsigned long check_flags, 
-			       int type, int rdepth);
-
-char * sh_inotify_pop_dormant(sh_watches * watches, int * class, 
-			      unsigned long * check_flags, int * type, int * rdepth);
-
-void sh_inotify_purge_dormant(sh_watches * watches);
-void sh_inotify_remove(sh_watches * watches);
-void sh_inotify_init(sh_watches * watches);
-void sh_inotify_close();
-
-char * sh_inotify_search_item(sh_watches * watches, int watch, 
-			      int * class, unsigned long * check_flags, 
-			      int * type, int * rdepth);
-ssize_t sh_inotify_read(char * buffer, size_t count);
-ssize_t sh_inotify_read_timeout(char * buffer, size_t count, int timeout);
-int sh_inotify_recheck_watches (sh_watches * watches, sh_watches * save);
-
-#define SH_INOTIFY_ERROR(a) (a != 0)
-
-#endif
Index: trunk/include/sh_ipvx.h
===================================================================
--- trunk/include/sh_ipvx.h	(revision 591)
+++ 	(revision )
@@ -1,83 +1,0 @@
-#ifndef SH_IPVX_H
-#define SH_IPVX_H
-
-#include 
-#include 
-#include 
-#include 
-#include 
-
-#if defined(USE_IPVX)
-#define SH_SSP_LEN(a) ((a)->ss_family == AF_INET) ? \
-	sizeof(struct sockaddr_in) : \
-	sizeof(struct sockaddr_in6)
-
-#define SH_SS_LEN(a) ((a).ss_family == AF_INET) ? \
-	sizeof(struct sockaddr_in) : \
-	sizeof(struct sockaddr_in6)
-#else
-#define SH_SSP_LEN(a) sizeof(struct sockaddr_in)
-#define SH_SS_LEN(a)  sizeof(struct sockaddr_in)
-#endif
-
-struct sh_sockaddr {
-  int ss_family;
-
-  struct sockaddr_in  sin;
-#if defined(USE_IPVX)
-  struct sockaddr_in6 sin6;
-#endif
-};
-
-/* Cast a sockaddress
- */
-struct sockaddr * sh_ipvx_sockaddr_cast (struct sh_sockaddr * ss);
-
-/* Compare with any_address
- */
-int sh_ipvx_isany (struct sh_sockaddr * a);
-
-/* Compare two addresses
- */
-int sh_ipvx_cmp(struct sh_sockaddr * a, struct sh_sockaddr * b);
-
-/* Set the port
- */
-int sh_ipvx_set_port(struct sh_sockaddr * ss, int port);
-
-/* Get the port
- */
-int sh_ipvx_get_port(struct sh_sockaddr * ss);
-
-/* Save a sockaddress
- */
-void sh_ipvx_save(struct sh_sockaddr * ss, int sa_family, struct sockaddr * sa);
-
-/* Ascii numerical sockaddress
- */
-char * sh_ipvx_print_sockaddr (struct sockaddr * sa, int sa_family);
-
-/* Determine whether the given address is numeric
- */
-int sh_ipvx_is_numeric (const char * addr);
-
-/* Convert a network address to an ascii numeric address
- */
-int sh_ipvx_ntoa (char * name, size_t name_size, struct sh_sockaddr * ss);
-
-/* Convert an ascii numeric address to a network address
- */
-int sh_ipvx_aton (const char * name, struct sh_sockaddr * ss);
-
-/* Try to find canonical hostname
- */
-char * sh_ipvx_canonical(const char * hostname, char * numeric, size_t nlen);
-
-/* Convert address to hostname
- */
-char * sh_ipvx_addrtoname(struct sh_sockaddr * ss);
-
-/* Try a reverse lookup
- */
-int sh_ipvx_reverse_check_ok (char * peer, int port, struct sh_sockaddr * ss);
-#endif
Index: trunk/include/sh_kern.h
===================================================================
--- trunk/include/sh_kern.h	(revision 1)
+++ trunk/include/sh_kern.h	(revision 1)
@@ -0,0 +1,30 @@
+
+#ifndef SH_KERN_H
+#define SH_KERN_H
+
+#include "sh_modules.h"
+
+#ifdef SH_USE_KERN
+int sh_kern_init  (void);
+int sh_kern_timer (time_t tcurrent);
+int sh_kern_check (void);
+int sh_kern_end   (void);
+int sh_kern_null  (void);
+
+int sh_kern_set_activate (char * c);
+int sh_kern_set_severity (char * c);
+int sh_kern_set_timer    (char * c);
+int sh_kern_set_idt      (char * c);
+
+/* FIXME: document these */
+int sh_kern_set_sct_addr (char * c);
+int sh_kern_set_sc_addr  (char * c);
+int sh_kern_set_proc_root (char * c);
+int sh_kern_set_proc_root_lookup (char * c);
+int sh_kern_set_proc_root_iops (char * c);
+
+extern sh_rconf sh_kern_table[];
+#endif
+
+/* #ifndef SH_UTMP_H */
+#endif
Index: trunk/include/sh_log_check.h
===================================================================
--- trunk/include/sh_log_check.h	(revision 591)
+++ 	(revision )
@@ -1,138 +1,0 @@
-#ifndef SH_LOGCHECK_H
-#define SH_LOGCHECK_H
-
-#include 
-#include 
-
-/* Convert a struct tm to unix timestamp with caching 
- */
-time_t conv_timestamp (struct tm * btime, 
-		       struct tm * old_tm, time_t * old_time);
-
-/* Definition of a log record entry, to be returned from parsing function.
- */
-#define PID_INVALID 0
-struct sh_logrecord 
-{
-  char      * filename;
-  sh_string * host;
-  sh_string * timestr;
-  pid_t       pid;
-  time_t      timestamp;
-  sh_string * message;
-};
-
-#define SH_LOGFILE_MOVED  (1<<0)
-#define SH_LOGFILE_REWIND (1<<1)
-#define SH_LOGFILE_PIPE   (1<<2)
-#define SH_LOGFILE_NOFILE (1<<3)
-
-struct sh_logfile 
-{
-  FILE * fp;
-  int    flags;
-  char * filename;
-  dev_t  device_id;
-  ino_t  inode;
-  fpos_t offset;
-
-  /* Info for the parser, e.g. a regular expression
-   */
-  void * fileinfo;
-
-  /* Callback function to read the next record
-   */
-  sh_string *           (*get_record)  (sh_string * record, 
-					struct sh_logfile * logfile);
-
-  /* Callback function to parse the record into standard format
-   */
-  struct sh_logrecord * (*parse_record)(sh_string * logline, void * fileinfo);
-
-  struct sh_logfile * next;
-};
-
-/* Generic callback function to parse fileinfo. 
- */
-void * sh_eval_fileinfo_generic(char * str);
-
-/* Generic parser info. 
- */
-struct sh_logrecord * sh_parse_generic (sh_string * logline, void * fileinfo);
-
-
-/****************************************************************
- **
- ** Parsing and reading functions
- **/
-
-/* Open file, position at stored offset. */
-int sh_open_for_reader (struct sh_logfile * logfile);
-
-/* Simple line reader for executed shell command   */ 
-sh_string * sh_command_reader (sh_string * record, 
-			       struct sh_logfile * logfile);
-
-/* Wrapper for sh_command_reader */
-sh_string * sh_read_shell (sh_string * record, struct sh_logfile * logfile);
-
-/* Parses a shell command reply. */
-struct sh_logrecord * sh_parse_shell (sh_string * logline, void * fileinfo);
-
-/* Simple line reader.   */ 
-sh_string * sh_default_reader (sh_string * record, 
-			       struct sh_logfile * logfile);
-
-/* Continued line reader.   */ 
-sh_string * sh_cont_reader (sh_string * record, 
-			    struct sh_logfile * logfile, char * cont);
-
-/* Binary reader */
-sh_string * sh_binary_reader (void * s, size_t size, struct sh_logfile * logfile);
-
-/* Parses a syslog-style line. */
-struct sh_logrecord * sh_parse_syslog (sh_string * logline, void * fileinfo);
-
-/* Format info for apache log. */
-void * sh_eval_fileinfo_apache(char * str);
-
-/* Parses a apache-style line. */
-struct sh_logrecord * sh_parse_apache (sh_string * logline, void * fileinfo);
-
-/* Get a pacct record */
-sh_string * sh_read_pacct (sh_string * record, struct sh_logfile * logfile);
-
-/* Parses a pacct record. */
-struct sh_logrecord * sh_parse_pacct (sh_string * logline, void * fileinfo);
-
-/* Get a samba record */
-sh_string * sh_read_samba (sh_string * record, struct sh_logfile * logfile);
-
-/* Parses a samba record. */
-struct sh_logrecord * sh_parse_samba (sh_string * logline, void * fileinfo);
-
-
-/**
-*****************************************************************/
-
-int sh_get_hidepid();
-int sh_set_hidepid(const char *s);
-
-#define SH_MAX_LCODE_SIZE 16
-
-struct sh_logfile_type 
-{
-  char code[SH_MAX_LCODE_SIZE];
-
-  /* read callback */
-  /*@null@*/sh_string * (*get_record)  (sh_string * record,
-					struct sh_logfile * logfile);
-  /* parsing callback */
-  struct sh_logrecord * (*parse_record)(sh_string * logline, void * fileinfo);
-
-  /* evaluate fileinfo */
-  void * (*eval_fileinfo)(char * str); 
-};
-
-
-#endif
Index: trunk/include/sh_log_correlate.h
===================================================================
--- trunk/include/sh_log_correlate.h	(revision 591)
+++ 	(revision )
@@ -1,28 +1,0 @@
-#ifndef SH_LOG_CORRELATE_H
-#define SH_LOG_CORRELATE_H
-
-/* Clean up everything.
- */
-void sh_keep_destroy();
-
-/* Add an event 
- */
-int sh_keep_add(sh_string * label, unsigned long delay, time_t last);
-
-/* Add an event sequence matching rule 
- */
-int sh_keep_match_add(const char * str, const char * queue, const char * pattern);
-
-/* Delete the list of event sequence matching rules
- */
-void sh_keep_match_del();
-
-/* Try to find correlated events
- */
-void sh_keep_match();
-
-/* Deadtime for a correlation rule
- */
-int sh_keep_deadtime (const char * str);
-
-#endif
Index: trunk/include/sh_log_evalrule.h
===================================================================
--- trunk/include/sh_log_evalrule.h	(revision 591)
+++ 	(revision )
@@ -1,61 +1,0 @@
-#ifndef SH_EVALRULE_H
-#define SH_EVALRULE_H
-
-/* Clean up everything.
- */
-void sh_eval_cleanup();
-
-/* Define a new reporting queue, str := label:interval:(report|sum):severity
- */
-int sh_eval_qadd (const char * str);
-
-/* Add a new rule, str := queue:regex
- * If there is an open group, add it to its rules.
- * ..else, add it to the currently open host (open the
- * default host, if there is no open one)
- */
-int sh_eval_radd (const char * str);
-
-/* Open a new host group definition.
- */
-int sh_eval_hadd (const char * str);
-/*
- * End the host definition
- */
-int sh_eval_hend (const char * str);
-
-
-/* Open a new group definition. If a host is currently open, 
- * the new group will automatically be added to that host.
- */
-int sh_eval_gadd (const char * str);
-/*
- * End the group definition
- */
-int sh_eval_gend (const char * str);
-
-/* Process a single log record
- */
-int sh_eval_process_msg(struct sh_logrecord * record);
-
-enum policies {
-  EVAL_REPORT,
-  EVAL_SUM
-};
-
-struct sh_qeval  /* Queue with definitions */
-{
-  sh_string       * label;
-  enum policies     policy;
-  int               severity;
-  sh_string       * alias;
-  time_t            interval;        /* if EVAL_SUM, interval   */ 
-  struct sh_qeval * next;
-};
-
-struct sh_qeval * sh_log_find_queue(const char * str);
-
-int sh_log_lookup_severity(const char * str);
-sh_string * sh_log_lookup_alias(const char * str);
-
-#endif
Index: trunk/include/sh_log_mark.h
===================================================================
--- trunk/include/sh_log_mark.h	(revision 591)
+++ 	(revision )
@@ -1,14 +1,0 @@
-#ifndef SH_LOG_MARK_H
-#define SH_LOG_MARK_H
-
-void sh_log_mark_destroy();
-
-int sh_log_mark_add (const char * label, time_t interval, const char * qlabel);
-
-void sh_log_mark_update (sh_string * label, time_t timestamp);
-
-void sh_log_mark_check();
-
-int sh_log_set_mark_severity (const char * str);
-
-#endif
Index: trunk/include/sh_log_repeat.h
===================================================================
--- trunk/include/sh_log_repeat.h	(revision 591)
+++ 	(revision )
@@ -1,14 +1,0 @@
-#ifndef SH_LOG_REPEAT_H
-#define SH_LOG_REPEAT_H
-
-int sh_repeat_set_trigger (const char * str);
-
-int sh_repeat_set_queue (const char * str);
-
-int sh_repeat_set_cron (const char * str);
-
-int sh_repeat_message_check (const sh_string * host, 
-			     const sh_string * msg, 
-			     time_t ltime);
-
-#endif
Index: trunk/include/sh_logmon.h
===================================================================
--- trunk/include/sh_logmon.h	(revision 591)
+++ 	(revision )
@@ -1,12 +1,0 @@
-#ifndef SH_LOGMON_H
-#define SH_LOGMON_H
-
-extern sh_rconf sh_log_check_table[];
-
-int sh_log_check_init (struct mod_type * arg);
-int sh_log_check_timer(time_t tcurrent);
-int sh_log_check_check(void);
-int sh_log_check_reconf(void); 
-int sh_log_check_cleanup(void);
-
-#endif
Index: trunk/include/sh_mail.h
===================================================================
--- trunk/include/sh_mail.h	(revision 591)
+++ trunk/include/sh_mail.h	(revision 1)
@@ -26,17 +26,17 @@
 /* set a relay server
  */
-int sh_mail_set_relay (const char * str_s);
+int sh_mail_set_relay (char * str_s);
 
 /* send to all recpts. in one mail
  */
-int sh_mail_setFlag (const char * str);
+int sh_mail_setFlag (char * str);
 
 /* set the subject string 
  */
-int set_mail_subject (const char * str);
+int set_mail_subject (char * str);
 
 /* test mailbox
  */
-int sh_mail_sigverify (const char * s);
+int sh_mail_sigverify (char * s);
 
 /* maximum number of mail attempts
@@ -44,21 +44,25 @@
 #define SH_MAX_FAIL    48
 
-int sh_mail_setNum (const char * str);
+int sh_mail_setNum (char * str);
 
-int sh_mail_setaddress (const char * address);
+int sh_mail_setaddress (char * address);
 void reset_count_dev_mail(void);
-int sh_mail_setaddress_int (const char * address);
+int sh_mail_setaddress_int (char * address);
 
 /* call if not urgent
  */
-int sh_mail_pushstack (int severity, const char * msg, const char * alias);
+int sh_mail_pushstack (/*@null@*/char * msg);
 
-/* Set the port to use (default 25)
+/* call if mail immediate
  */
-int sh_mail_set_port (const char * str);
+int sh_mail_msg (/*@null@*/char * message);
 
 /* set sender of mail
  */
-int sh_mail_set_sender (const char *str);
+int sh_mail_set_sender (char *str);
+
+int sh_mail_add_or  (char * str);
+int sh_mail_add_and (char * str);
+int sh_mail_add_not (char * str);
 
 #endif
Index: trunk/include/sh_mail_int.h
===================================================================
--- trunk/include/sh_mail_int.h	(revision 591)
+++ 	(revision )
@@ -1,48 +1,0 @@
-#ifndef SH_MAIL_INT_H
-#define SH_MAIL_INT_H
-
-extern int sh_mail_all_in_one;
-
-/* MX Resolver Struct
- */
-typedef struct mx_ {
-  int    pref;
-  char * address;
-} mx;
-
-typedef struct dnsrep_ {
-  int    count;
-  mx   * reply;
-} dnsrep;
-
-int free_mx (dnsrep * answers);
-
-/* adress struct
- */
-struct alias {
-  sh_string        * recipient;
-  struct alias     * recipient_list;
-  dnsrep           * mx_list;
-  int                severity;
-  short              send_mail;
-  short              isAlias;
-  sh_filter_type   * mail_filter;
-  struct alias     * next;
-  struct alias     * all_next;
-};
-
-extern struct alias * all_recipients;
-
-int sh_mail_msg (const char * message);
-
-/* Per recipient mail key
- */
-
-int sh_nmail_get_mailkey (const char * alias, char * buf, size_t bufsiz,
-			  time_t * id_audit);
-
-SH_MUTEX_EXTERN(mutex_listall);
-SH_MUTEX_EXTERN(mutex_fifo_mail);
-extern SH_FIFO * fifo_mail;
-
-#endif
Index: trunk/include/sh_mem.h
===================================================================
--- trunk/include/sh_mem.h	(revision 591)
+++ trunk/include/sh_mem.h	(revision 1)
@@ -35,24 +35,13 @@
 #define SH_FREE(a)   sh_mem_free((a), FIL__, __LINE__)
 #define SH_ALLOC(a)  sh_mem_malloc((a), FIL__, __LINE__) 
-#define SH_OALLOC(a,b,c)  sh_mem_malloc((a), (b), (c)) 
 
 #else
 
-#if defined(__GNUC__) && (__GNUC__ >= 3)
-#undef  SH_GNUC_MALLOC
-#define SH_GNUC_MALLOC   __attribute__((malloc))
-#else
-#undef  SH_GNUC_MALLOC
-#define SH_GNUC_MALLOC
-#endif
 
 void   sh_mem_free (/*@only@*//*@out@*//*@null@*/ void * a);
-/*@only@*//*@notnull@*/void * sh_mem_malloc (size_t size) SH_GNUC_MALLOC;
+/*@only@*//*@notnull@*/void * sh_mem_malloc (size_t size);
 
 #define SH_FREE(a)   sh_mem_free(a)
 #define SH_ALLOC(a)  sh_mem_malloc(a)
-#define SH_OALLOC(a,b,c)  ((void) (b),		 \
-			   (void) (c),		 \
-			   sh_mem_malloc(a))	 \
 
 #endif
Index: trunk/include/sh_modules.h
===================================================================
--- trunk/include/sh_modules.h	(revision 591)
+++ trunk/include/sh_modules.h	(revision 1)
@@ -2,13 +2,4 @@
 #ifndef SH_MODULE_H
 #define SH_MODULE_H
-
-#include "sh_pthread.h"
-
-enum
-  {
-    SH_MODFL_NOTIMER    = (1 << 0),
-    SH_MODFL_NEEDPAUSED = (1 << 1),
-    SH_MODFL_ISPAUSED   = (1 << 2)
-  };
 
 
@@ -16,5 +7,5 @@
 {
   char * the_opt;
-  int (*func)(const char * opt);
+  int (*func)(char * opt);
 } sh_rconf;
 
@@ -27,9 +18,6 @@
   int    initval; 
 
-  /* Flags: SH_MOD_NOTIMER                                     */
-  int    flags; 
-
   /* The initialization function. Return 0 on success.         */
-  int (* mod_init)    (struct mod_type * arg);  
+  int (* mod_init)    (void);  
                              
   /* The timer function. Return 0 if NOT time to check.        */
@@ -37,5 +25,4 @@
 
   /* The check function. Return 0 on success.                  */
-  /* Return nonzero on fatal error or if module is disabled.   */
   int (* mod_check)   (void); 
 
@@ -52,6 +39,4 @@
   sh_rconf * conf_table; 
 
-  SH_MUTEX(mod_mutex);
-
 } sh_mtype;
 
Index: trunk/include/sh_mounts.h
===================================================================
--- trunk/include/sh_mounts.h	(revision 591)
+++ trunk/include/sh_mounts.h	(revision 1)
@@ -11,5 +11,5 @@
 
 #ifdef SH_USE_MOUNTS
-int sh_mounts_init  (struct mod_type * arg);
+int sh_mounts_init  (void);
 int sh_mounts_timer (time_t tcurrent);
 int sh_mounts_check (void);
Index: trunk/include/sh_nmail.h
===================================================================
--- trunk/include/sh_nmail.h	(revision 591)
+++ 	(revision )
@@ -1,20 +1,0 @@
-#ifndef SH_NMAIL_H
-#define SH_NMAIL_H
-
-int sh_nmail_pushstack (int level, const char * message, 
-			const char * alias);
-int sh_nmail_msg (int level, const char * message, 
-		  const char * alias);
-int sh_nmail_flush ();
-void sh_nmail_free();
-
-int sh_nmail_set_severity (const char * str);
-int sh_nmail_add_not (const char * str);
-int sh_nmail_add_and (const char * str);
-int sh_nmail_add_or  (const char * str);
-
-int sh_nmail_close_recipient(const char * str);
-int sh_nmail_add_compiled_recipient(const char * str);
-int sh_nmail_add_recipient(const char * str);
-int sh_nmail_add_alias(const char * str);
-#endif
Index: trunk/include/sh_portcheck.h
===================================================================
--- trunk/include/sh_portcheck.h	(revision 591)
+++ 	(revision )
@@ -1,13 +1,0 @@
-
-#ifndef SH_PORTCHECK_H
-#define SH_PORTCHECK_H
-
-int sh_portchk_init(struct mod_type * arg);
-int sh_portchk_timer(time_t tcurrent);
-int sh_portchk_check(void);
-int sh_portchk_reconf(void);
-int sh_portchk_cleanup(void);
-
-extern sh_rconf sh_portchk_table[];
-
-#endif
Index: trunk/include/sh_prelink.h
===================================================================
--- trunk/include/sh_prelink.h	(revision 591)
+++ trunk/include/sh_prelink.h	(revision 1)
@@ -6,13 +6,13 @@
  * alert_timeout: timeout for read
  */
-int sh_prelink_run (char * path, char * file_hash, int alert_timeout, unsigned long mask);
+int sh_prelink_run (char * path, char * file_hash, int alert_timeout);
 
 /* return S_TRUE if ELF file, S_FALSE otherwise
  */
-int sh_prelink_iself (SL_TICKET fd, off_t size, int alert_timeout, char * path);
+int sh_prelink_iself (SL_TICKET fd, off_t size, int alert_timeout);
 
 /* configuration
  */
-int sh_prelink_set_path (const char * str);
-int sh_prelink_set_hash (const char * str);
+int sh_prelink_set_path (char * str);
+int sh_prelink_set_hash (char * str);
 #endif
Index: trunk/include/sh_prelude.h
===================================================================
--- trunk/include/sh_prelude.h	(revision 591)
+++ trunk/include/sh_prelude.h	(revision 1)
@@ -2,19 +2,19 @@
 #define SH_PRELUDE_H
 
-void sh_prelude_reset(void);
-void sh_prelude_stop(void);
-int  sh_prelude_init(void);
+void sh_prelude_reset();
+void sh_prelude_stop();
+int  sh_prelude_init();
 
-int sh_prelude_set_profile(const char *arg);
+int sh_prelude_set_profile(char *arg);
 
 int sh_prelude_alert (int priority, int class, char * message,
-		      long msgflags, unsigned long msgid, char * inet_peer_ip);
+		      long msgflags, unsigned long msgid);
 
 /* map severity levels
  */
-int sh_prelude_map_info (const char * str);
-int sh_prelude_map_low (const char * str);
-int sh_prelude_map_medium (const char * str);
-int sh_prelude_map_high (const char * str);
+int sh_prelude_map_info (char * str);
+int sh_prelude_map_low (char * str);
+int sh_prelude_map_medium (char * str);
+int sh_prelude_map_high (char * str);
 
 #endif
Index: trunk/include/sh_processcheck.h
===================================================================
--- trunk/include/sh_processcheck.h	(revision 591)
+++ 	(revision )
@@ -1,13 +1,0 @@
-
-#ifndef SH_PROCESSCHECK_H
-#define SH_PROCESSCHECK_H
-
-int sh_prochk_init(struct mod_type * arg);
-int sh_prochk_timer(time_t tcurrent);
-int sh_prochk_check(void);
-int sh_prochk_reconf(void);
-int sh_prochk_cleanup(void);
-
-extern sh_rconf sh_prochk_table[];
-
-#endif
Index: trunk/include/sh_pthread.h
===================================================================
--- trunk/include/sh_pthread.h	(revision 591)
+++ 	(revision )
@@ -1,180 +1,0 @@
-#ifndef SH_PTHREAD_H
-#define SH_PTHREAD_H
-
-#ifdef HAVE_PTHREAD
-
-#include 
-
-#define SH_MUTEX(M)				pthread_mutex_t M
-#define SH_MUTEX_INIT(M,I)			pthread_mutex_t M = I
-#define SH_MUTEX_STATIC(M,I)			static pthread_mutex_t M = I
-#define SH_MUTEX_EXTERN(M)			extern pthread_mutex_t M
-
-#define SH_SETSIGMASK(A, B, C)                  sh_pthread_setsigmask(A,B,C)
-
-int sh_pthread_setsigmask(int how, const void *set, void *oldset);
-
-/* pthread_mutex_unlock() has the wrong type (returns int), so
- * we need to wrap it in this function.
- */
-extern void sh_pthread_mutex_unlock (void *arg);
-
-#define SH_MUTEX_LOCK(M)						   \
-	do {                                                               \
-                int oldtype;                                               \
-		int executeStack = 1;                                      \
-		pthread_setcanceltype(PTHREAD_CANCEL_DEFERRED, &oldtype);  \
-                pthread_cleanup_push(sh_pthread_mutex_unlock, (void*)&(M));\
-                pthread_mutex_lock(&(M))
-
-#define SH_MUTEX_TRYLOCK(M)						   \
-	do {                                                               \
-                int oldtype;                                               \
-		volatile int executeStack = 0;                             \
-		pthread_setcanceltype(PTHREAD_CANCEL_DEFERRED, &oldtype);  \
-                pthread_cleanup_push(sh_pthread_mutex_unlock, (void*)&(M));\
-                if (0 == pthread_mutex_trylock(&(M))) {		           \
-		  executeStack = 1
-
-#define SH_MUTEX_TRYLOCK_UNLOCK(M)					   \
-                }                                                          \
-		pthread_cleanup_pop(executeStack);                         \
-                pthread_setcanceltype(oldtype, NULL);                      \
-	} while (0)
-
-#define SH_MUTEX_UNLOCK(M)						   \
-		pthread_cleanup_pop(executeStack);                         \
-                pthread_setcanceltype(oldtype, NULL);                      \
-	} while (0)
-
-#define SH_MUTEX_LOCK_UNSAFE(M) pthread_mutex_lock(&(M))
-#define SH_MUTEX_TRYLOCK_UNSAFE(M) pthread_mutex_trylock(&(M))
-#define SH_MUTEX_UNLOCK_UNSAFE(M) pthread_mutex_unlock(&(M))
-
-
-/*
- * ----   Recursive mutex  ----
- */
-#if defined(HAVE_PTHREAD_MUTEX_RECURSIVE)
-
-#define SH_MUTEX_RECURSIVE(M)                                          \
-static pthread_mutex_t M;                                              \
-static void M ## _init (void)                                          \
-{                                                                      \
-  pthread_mutexattr_t   mta;                                           \
-  pthread_mutexattr_init(&mta);                                        \
-  pthread_mutexattr_settype(&mta, PTHREAD_MUTEX_RECURSIVE);            \
-  pthread_mutex_init(&(M), &mta);                                      \
-  pthread_mutexattr_destroy(&mta);                                     \
-  return;                                                              \
-}                                                                      \
-static pthread_once_t  M ## _initialized = PTHREAD_ONCE_INIT
-
-#define SH_MUTEX_RECURSIVE_INIT(M)                                     \
-(void) pthread_once(&(M ## _initialized), (M ## _init))
-
-#define SH_MUTEX_RECURSIVE_LOCK(M)					   \
-	do {                                                               \
-                int oldtype;                                               \
-		pthread_setcanceltype(PTHREAD_CANCEL_DEFERRED, &oldtype);  \
-                pthread_cleanup_push(sh_pthread_mutex_unlock, (void*)&(M));\
-                pthread_mutex_lock(&(M))
-
-#define SH_MUTEX_RECURSIVE_UNLOCK(M)					   \
-		pthread_cleanup_pop(1);                                    \
-                pthread_setcanceltype(oldtype, NULL);                      \
-	} while (0)
-
-#else
-/* !defined(PTHREAD_MUTEX_RECURSIVE) */
- struct sh_RMutex {
-
-  pthread_mutex_t lock;
-  unsigned int    held;
-  unsigned int    waiters;
-  pthread_t       tid;
-  pthread_cond_t  cv;
-};
-
-void sh_RMutexLock(struct sh_RMutex * tok);
-void sh_RMutexUnlock(void * arg);
-void sh_InitRMutex(struct sh_RMutex * tok);
-
-#define SH_MUTEX_RECURSIVE(M)                                          \
-static struct sh_RMutex M;                                             \
-static void M ## _init (void)                                          \
-{                                                                      \
-  sh_InitRMutex(&(M));                                                 \
-  return;                                                              \
-}                                                                      \
-static pthread_once_t  M ## _initialized = PTHREAD_ONCE_INIT
-
-#define SH_MUTEX_RECURSIVE_INIT(M)                                     \
-(void) pthread_once(&(M ## _initialized), (M ## _init))
-
-#define SH_MUTEX_RECURSIVE_LOCK(M)					   \
-	do {                                                               \
-                int oldtype;                                               \
-		pthread_setcanceltype(PTHREAD_CANCEL_DEFERRED, &oldtype);  \
-                pthread_cleanup_push(sh_RMutexUnlock, (void*)&(M));        \
-                sh_RMutexLock(&(M))
-
-#define SH_MUTEX_RECURSIVE_UNLOCK(M)					   \
-		pthread_cleanup_pop(1);                                    \
-                pthread_setcanceltype(oldtype, NULL);                      \
-	} while (0)
-
-#endif
-/* 
- * ----   Global mutexes   ----
- */
-SH_MUTEX_EXTERN(mutex_skey);
-SH_MUTEX_EXTERN(mutex_resolv);
-SH_MUTEX_EXTERN(mutex_pwent);
-SH_MUTEX_EXTERN(mutex_readdir);
-/* Prevent threads from logging while we are in suspend */
-SH_MUTEX_EXTERN(mutex_thread_nolog);
-
-/*
- * ----   Initialize thread-specific conversion area   ----
- */
-extern int sh_g_thread(void);
-
-
-/*
- * ----   Functions for threaded modules   ----
- */
-int sh_pthread_create(void *(*start_routine)(void*), void *arg);
-int sh_pthread_cancel_all(void);
-void sh_threaded_module_reconf(void *arg);
-void * sh_threaded_module_run(void *arg);
-
-#else
-
-#define SH_SETSIGMASK(A, B, C)                  sh_pthread_setsigmask(A,B,C)
-
-int sh_pthread_setsigmask(int how, const void *set, void *oldset);
-
-#define PTHREAD_MUTEX_INITIALIZER               NULL
-#define SH_MUTEX(M)				void *SH_MUTEX_DUMMY_ ## M
-#define SH_MUTEX_INIT(M,I)			extern void *SH_MUTEX_DUMMY_ ## M
-#define SH_MUTEX_STATIC(M,I)			extern void *SH_MUTEX_DUMMY_ ## M
-#define SH_MUTEX_EXTERN(M)			extern void *SH_MUTEX_DUMMY_ ## M
-#define SH_MUTEX_LOCK(M)			((void)0)
-#define SH_MUTEX_TRYLOCK(M)			((void)0)
-#define SH_MUTEX_UNLOCK(M)			((void)0)
-#define SH_MUTEX_TRYLOCK_UNLOCK(M)		((void)0)
-#define SH_MUTEX_LOCK_UNSAFE(M)			((void)0)
-#define SH_MUTEX_TRYLOCK_UNSAFE(M)		(0)
-#define SH_MUTEX_UNLOCK_UNSAFE(M)		((void)0)
-
-#define SH_MUTEX_RECURSIVE(M)                   extern void *SH_MUTEX_DUMMY_ ## M
-#define SH_MUTEX_RECURSIVE_INIT(M)              ((void)0)
-#define SH_MUTEX_RECURSIVE_LOCK(M)		((void)0)
-#define SH_MUTEX_RECURSIVE_UNLOCK(M)		((void)0)
-
-/* #ifdef HAVE_PTHREAD */
-#endif
-
-/* #ifndef SH_PTHREAD_H */
-#endif
Index: trunk/include/sh_registry.h
===================================================================
--- trunk/include/sh_registry.h	(revision 591)
+++ 	(revision )
@@ -1,13 +1,0 @@
-
-#ifndef SH_REGISTRY_H
-#define SH_REGISTRY_H
-
-int sh_reg_check_init(struct mod_type * arg);
-int sh_reg_check_timer(time_t tcurrent);
-int sh_reg_check_run(void);
-int sh_reg_check_reconf(void);
-int sh_reg_check_cleanup(void);
-
-extern sh_rconf sh_reg_check_table[];
-
-#endif
Index: trunk/include/sh_restrict.h
===================================================================
--- trunk/include/sh_restrict.h	(revision 591)
+++ 	(revision )
@@ -1,9 +1,0 @@
-#ifndef SH_RESTRICT_H
-#define SH_RESTRICT_H
-
-int  sh_restrict_define(const char * str);
-void sh_restrict_purge ();
-int  sh_restrict_this(const char * path, UINT64 size, UINT64 perm, SL_TICKET fh);
-int  sh_restrict_add_ftype(const char * str);
-
-#endif
Index: trunk/include/sh_sem.h
===================================================================
--- trunk/include/sh_sem.h	(revision 591)
+++ 	(revision )
@@ -1,14 +1,0 @@
-#ifndef SH_SEM_H
-#define SH_SEM_H
-
-#define SH_SEM_LOCK       -1
-#define SH_SEM_UNLOCK      1
-
-void sh_sem_open();
-void sh_sem_trylock();
-void sh_sem_lock();
-void sh_sem_unlock(long val);
-void sh_sem_close();
-
-int  sh_sem_wait(const char * wait);
-#endif
Index: trunk/include/sh_sig.h
===================================================================
--- trunk/include/sh_sig.h	(revision 591)
+++ 	(revision )
@@ -1,66 +1,0 @@
-/* SAMHAIN file system integrity testing                                   */
-/* Copyright (C) 1999 Rainer Wichmann                                      */
-/*                                                                         */
-/*  This program is free software; you can redistribute it                 */
-/*  and/or modify                                                          */
-/*  it under the terms of the GNU General Public License as                */
-/*  published by                                                           */
-/*  the Free Software Foundation; either version 2 of the License, or      */
-/*  (at your option) any later version.                                    */
-/*                                                                         */
-/*  This program is distributed in the hope that it will be useful,        */
-/*  but WITHOUT ANY WARRANTY; without even the implied warranty of         */
-/*  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          */
-/*  GNU General Public License for more details.                           */
-/*                                                                         */
-/*  You should have received a copy of the GNU General Public License      */
-/*  along with this program; if not, write to the Free Software            */
-/*  Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.              */
-
-#if defined(WITH_SIG) 
-
-#ifndef SH_SIG_H
-#define SH_SIG_H
-
-typedef enum {
-  SIG_CONF,
-  SIG_DATA
-} ShSigFile;
-
-/* Top level function to verify file.
- */
-SL_TICKET sh_sig_extract_signed(SL_TICKET fd);
-SL_TICKET sh_sig_extract_signed_data(SL_TICKET fd);
-
-/* this function exits if configuration file
- * and/or database cannot be verified; otherwise returns 0
- */
-int sh_sig_check_signature (SL_TICKET file, ShSigFile what);
-
-int sh_sig_msg_start(const char * line);
-int sh_sig_msg_startdata(const char * line);
-int sh_sig_msg_end(const char * line);
-int sh_sig_data_end(const char * line);
-
-/* log successful startup
- */
-void sh_sig_log_startup (void);
-
-#endif
-
-/* #ifdef WITH_SIG */
-#endif
-
-
-
-
-
-
-
-
-
-
-
-
-
-
Index: trunk/include/sh_socket.h
===================================================================
--- trunk/include/sh_socket.h	(revision 591)
+++ trunk/include/sh_socket.h	(revision 1)
@@ -8,10 +8,5 @@
 
 #if defined (SH_WITH_CLIENT)
-char * sh_socket_get_uuid(int * errflag, unsigned int * count, time_t * last);
-int    sh_socket_store_uuid(const char * cmd);
-int    sh_socket_return_uuid(const char * uuid, unsigned int count, time_t last);
-void   sh_socket_server_cmd(const char * srvcmd);
-int    set_delta_retry_interval(const char * str);
-int    set_delta_retry_count(const char * str);
+void sh_socket_server_cmd(const char * srvcmd);
 #endif
 
@@ -19,9 +14,10 @@
 
 
-int    sh_socket_open_int (void);
-int    sh_socket_remove (void);
+int    sh_socket_open_int ();
+int    sh_socket_remove ();
 char * sh_socket_check(const char * client_name);
-int    sh_socket_poll(void);
+int    sh_socket_poll();
 void   sh_socket_add2reload (const char * clt);
+
 
 #endif
Index: trunk/include/sh_srp.h
===================================================================
--- trunk/include/sh_srp.h	(revision 591)
+++ trunk/include/sh_srp.h	(revision 1)
@@ -21,5 +21,5 @@
 void sh_srp_x (char * salt, char * password);
 int  sh_srp_make_a (void);
-char * sh_srp_M (char * x1, char * x2, char * x3, char * buf, size_t size);
+char * sh_srp_M (char * x1, char * x2, char * x3);
 
 char * sh_srp_verifier (void);
Index: trunk/include/sh_static.h
===================================================================
--- trunk/include/sh_static.h	(revision 591)
+++ trunk/include/sh_static.h	(revision 1)
@@ -15,19 +15,7 @@
 void  sh_setpwent(void);
 struct group * sh_getgrnam(const char *name);
-int sh_getgrnam_r(const char *name, struct group *gbuf,
-               char *buf, size_t buflen, struct group **gbufp);
-
 struct passwd * sh_getpwnam(const char *name);
-int sh_getpwnam_r(const char *name, struct passwd *pwbuf,
-               char *buf, size_t buflen, struct passwd **pwbufp);
-
 struct group * sh_getgrgid(gid_t gid);
-int sh_getgrgid_r(gid_t gid, struct group *gbuf,
-	       char *buf, size_t buflen, struct group **gbufp);
-
 struct passwd * sh_getpwuid(uid_t uid);
-int sh_getpwuid_r(uid_t uid, struct passwd *pwbuf,
-               char *buf, size_t buflen, struct passwd **pwbufp);
-
 #endif
 
@@ -40,15 +28,9 @@
 
 #define sh_initgroups initgroups
-#define sh_getgrnam   getgrnam
-#define sh_getgrnam_r getgrnam_r
 #define sh_getgrgid   getgrgid
-#define sh_getgrgid_r getgrgid_r
+#define sh_getpwent   getpwent
 #define sh_getpwnam   getpwnam
-#define sh_getpwnam_r getpwnam_r
 #define sh_getpwuid   getpwuid
-#define sh_getpwuid_r getpwuid_r
-#define sh_getpwent   getpwent
 #define sh_endpwent   endpwent
-#define sh_setpwent   setpwent
 
 #define sh_gethostbyaddr gethostbyaddr
Index: trunk/include/sh_string.h
===================================================================
--- trunk/include/sh_string.h	(revision 591)
+++ 	(revision )
@@ -1,112 +1,0 @@
-#ifndef SH_STRING_H
-#define SH_STRING_H
-
-#include 
-
-/* String definition and utility functions.
- */
-typedef struct sh_str_struct
-{
-  char * str; /* always NULL terminated               */
-  size_t len; /* without terminating \0               */
-  size_t siz; /* size of allocated buffer             */
-} sh_string;
-
-sh_string * sh_string_new(size_t size);
-void sh_string_destroy(sh_string ** s);
-#define sh_string_str(a) ((a)->str)
-#define sh_string_len(a) ((a)->len)
-
-/* concat string to sh_string
- */
-sh_string * sh_string_cat_lchar(sh_string * s, const char * str, size_t len);
-
-/* add char array to end of string */
-sh_string * sh_string_add_from_char(sh_string * s, const char * str);
-
-/* set sh_string from string
- */
-sh_string * sh_string_set_from_char(sh_string * s, const char * str);
-
-/* create new sh_string from array of given length
- */
-sh_string * sh_string_new_from_lchar(const char * str, size_t len);
-
-#define sh_string_copy(a)  ((a) ? sh_string_new_from_lchar(((a)->str), ((a)->len)) : NULL)
-#define sh_string_add(a,b) ((a && b) ? sh_string_cat_lchar((a), ((b)->str), ((b)->len)) : NULL)
-
-/* create new sh_string from three arrays of given length
- */
-sh_string * sh_string_new_from_lchar3(const char * str1, size_t len1,
-                                      const char * str2, size_t len2,
-                                      const char * str3, size_t len3);
-
-/* Truncate to desired length.
- */
-sh_string * sh_string_truncate(sh_string * s, size_t len);
-
-/* If requested increase is zero, increase by default amount. 
- */
-sh_string * sh_string_grow(sh_string * s, size_t increase);
-
-/* Read a string from a file, with maxlen. Return 0 on EOF,
- * -1 on error, and -2 if a line exceeds maxlen.
- */
-size_t sh_string_read(sh_string * s, FILE * fp, size_t maxlen);
-
-/* Read a string from a file, with maxlen. Return 0 on EOF,
- * -1 on error, and -2 if a line exceeds maxlen.
- * If 'cont' != NULL, continuation lines starting with a char
- * in 'cont' are concatenated.
- */
-size_t sh_string_read_cont(sh_string * s, FILE * fp, size_t maxlen, char *cont);
-
-/* Split array at delim in at most nfields fields. 
- * Empty fields are returned as empty (zero-length) strings. 
- * Leading and trailing WS are removed from token. 
- * The number of fields is returned in 'nfields', their
- * lengths in 'lengths'.
- * A single delimiter will return two empty fields.
- * The returned array is allocated memory, and its fields
- * are modified parts of the 'line' parameter.
- */
-char ** split_array(char *line, unsigned int * nfields, 
-                    char delim, size_t * lengths);
-
-/* Split array at whitespace in at most nfields fields.
- * Multiple whitespaces are collapsed. 
- * Empty fields are returned as empty (zero-length) strings.
- * The number of fields is returned in nfields.
- * An empty string will return zero fields.
- * If nfields < actual fields, last string will be remainder.
- * The returned array is allocated memory, and its fields
- * are modified parts of the 'line' parameter.
- */
-char ** split_array_ws(char *line, unsigned int * nfields, size_t * lengths);
-
-/* Same as above, but split on [space, tab, comma]
- */ 
-char ** split_array_list(char *line, unsigned int * nfields, size_t * lengths);
-
-/* Same as above, but split on delimiter list (token)
- */ 
-char ** split_array_token (char *line, 
-			   unsigned int * nfields, size_t * lengths,
-			   const char * token);
-
-/* Return a split_array_list() of a list contained in 'PREFIX\s*( list ).*'
- */
-char ** split_array_braced (char *line, const char * prefix,
-			    unsigned int * nfields, size_t * lengths);
-
-/* Replaces fields in s with 'replacement'. Fields are given
- * in the ordered array ovector, comprising ovecnum pairs 
- * ovector[i], ovector[i+1] which list offset of first char
- * of field, offset of first char after field (this is how
- * the pcre library does it).
- */  
-sh_string * sh_string_replace(const sh_string * s, 
-                              const size_t * ovector, int ovecnum, 
-                              const char * replacement, size_t rlen);
-
-#endif
Index: trunk/include/sh_sub.h
===================================================================
--- trunk/include/sh_sub.h	(revision 591)
+++ 	(revision )
@@ -1,8 +1,0 @@
-#ifndef SH_SUB_H
-#define SH_SUB_H
-
-void sh_kill_sub ();
-int sh_sub_stat  (const char *path, struct stat *buf);
-int sh_sub_lstat (const char *path, struct stat *buf);
-
-#endif
Index: trunk/include/sh_subuid.h
===================================================================
--- trunk/include/sh_subuid.h	(revision 591)
+++ 	(revision )
@@ -1,24 +1,0 @@
-/* SAMHAIN file system integrity testing                                   */
-/* Copyright (C) 2018 Rainer Wichmann                                      */
-/*                                                                         */
-/*  This program is free software; you can redistribute it                 */
-/*  and/or modify                                                          */
-/*  it under the terms of the GNU General Public License as                */
-/*  published by                                                           */
-/*  the Free Software Foundation; either version 2 of the License, or      */
-/*  (at your option) any later version.                                    */
-/*                                                                         */
-/*  This program is distributed in the hope that it will be useful,        */
-/*  but WITHOUT ANY WARRANTY; without even the implied warranty of         */
-/*  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          */
-/*  GNU General Public License for more details.                           */
-/*                                                                         */
-/*  You should have received a copy of the GNU General Public License      */
-/*  along with this program; if not, write to the Free Software            */
-/*  Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.              */
-
-/* These functions return NULL if the subuid/subgid is not found;
- * else the user/group name is returned (needs to be copied).
- */
-char * sh_get_subuid (unsigned long subuid);
-char * sh_get_subgid (unsigned long subgid);
Index: trunk/include/sh_suidchk.h
===================================================================
--- trunk/include/sh_suidchk.h	(revision 591)
+++ trunk/include/sh_suidchk.h	(revision 1)
@@ -6,21 +6,20 @@
 
 #ifdef SH_USE_SUIDCHK
-int sh_suidchk_init   (struct mod_type * arg);
-int sh_suidchk_timer  (time_t tcurrent);
-int sh_suidchk_check  (void);
-int sh_suidchk_end    (void);
-int sh_suidchk_reconf (void);
+int sh_suidchk_init  (void);
+int sh_suidchk_timer (time_t tcurrent);
+int sh_suidchk_check (void);
+int sh_suidchk_end   (void);
+int sh_suidchk_free_schedule (void);
 
-int sh_suidchk_set_activate   (const char * c);
-int sh_suidchk_set_severity   (const char * c);
-int sh_suidchk_set_timer      (const char * c);
-int sh_suidchk_set_schedule   (const char * c);
-int sh_suidchk_set_exclude    (const char * c);
-int sh_suidchk_set_fps        (const char * c);
-int sh_suidchk_set_yield      (const char * c);
-int sh_suidchk_set_nosuid     (const char * c);
-int sh_suidchk_set_quarantine (const char * c);
-int sh_suidchk_set_qmethod    (const char * c);
-int sh_suidchk_set_qdelete    (const char * c);
+int sh_suidchk_set_activate   (char * c);
+int sh_suidchk_set_severity   (char * c);
+int sh_suidchk_set_timer      (char * c);
+int sh_suidchk_set_schedule   (char * c);
+int sh_suidchk_set_exclude    (char * c);
+int sh_suidchk_set_fps        (char * c);
+int sh_suidchk_set_yield      (char * c);
+int sh_suidchk_set_quarantine (char * c);
+int sh_suidchk_set_qmethod    (char * c);
+int sh_suidchk_set_qdelete    (char * c);
 
 
Index: trunk/include/sh_tiger.h
===================================================================
--- trunk/include/sh_tiger.h	(revision 591)
+++ trunk/include/sh_tiger.h	(revision 1)
@@ -7,11 +7,4 @@
 #include "samhain.h"
 
-typedef long int TigerType;
-
-#define TIGER_FILE -1
-#define TIGER_DATA -2
-
-/****************
-typedef long int TigerType;
 typedef enum {
   TIGER_FILE,
@@ -19,41 +12,30 @@
   TIGER_DATA
 } TigerType;
-*****************/
 
-#define TIGER_NOLIM ((UINT64)-1)
+extern SL_TICKET tiger_fd;
 
 /* the checksum function
  */
-char * sh_tiger_hash (const char * filename, TigerType what, 
-		      UINT64 Length, char * out, size_t len);
+/*@owned@*/ char * sh_tiger_hash (char * filename, TigerType what, 
+				  unsigned long Length);
 
 /* NEW Thu Oct 18 19:59:08 CEST 2001
  */
-int sh_tiger_hashtype (const char * c);
+int sh_tiger_hashtype (char * c);
 char * sh_tiger_generic_hash (char * filename, TigerType what, 
-			      UINT64 * Length, int timeout, 
-			      char * out, size_t len);
+			      unsigned long Length, int timeout);
 
 UINT32 * sh_tiger_hash_uint32 (char * filename, 
 			       TigerType what, 
-			       UINT64 Length, UINT32 * out, size_t len);
+			       unsigned long Length);
 
 /* get the type of hash function used
  * 0 = tiger192, 1 = sha1, 2 = md5
  */
-int sh_tiger_get_hashtype (void);
+int sh_tiger_get_hashtype ();
 
-/* set the hash fuction in use in the mask
+/* GnuPG-like format
  */
-void sh_tiger_get_mask_hashtype(unsigned long * mask);
-
-
-/* reset the hash function to the one in the mask
- */
-void sh_tiger_set_hashtype_mask(unsigned long mask);
-
-/* GnuPG-like format, returns allocated memory
- */
-/*@owned@*/ char * sh_tiger_hash_gpg (const char * filename, TigerType what, 
-				      UINT64 Length);
+/*@owned@*/ char * sh_tiger_hash_gpg (char * filename, TigerType what, 
+			  unsigned long Length);
 #endif
Index: trunk/include/sh_tools.h
===================================================================
--- trunk/include/sh_tools.h	(revision 591)
+++ trunk/include/sh_tools.h	(revision 1)
@@ -8,27 +8,17 @@
  */
 #define SH_PROTO_SRP (1 << 0)
-#define SH_PROTO_IVA (1 << 1)
 #define SH_PROTO_MSG (1 << 2)
 #define SH_PROTO_BIG (1 << 3)
 #define SH_PROTO_END (1 << 4)
-#define SH_PROTO_EN1 (1 << 5)
+#define SH_PROTO_ENC (1 << 5)
 #define SH_PROTO_EN2 (1 << 6)
-#define SH_PROTO_ENC (SH_PROTO_EN1|SH_PROTO_EN2)
 #define SH_MASK_ENC (SH_PROTO_ENC|SH_PROTO_EN2)
 
 #ifdef SH_ENCRYPT
-/* returns pointer to errbuf
- */
-char * errorExplain (int err_num, char * errbuf, size_t len);
+char * errorExplain (int err_num);
 #endif
 
-/* Returns non-zero if interface exists
- */
-int sh_tools_iface_is_present(char *str);
-
-/* returns allocated buffer
- */
 char * sh_tools_safe_name(const char * str, int flag);
-
+int is_numeric (const char * address);
 int connect_port (char * address, int port, 
 		  char * ecall, int * errnum, char * errmsg, int errsiz);
@@ -36,8 +26,5 @@
 		    char * ecall, int * errnum, char * errmsg, int errsiz);
 void delete_cache(void);
-
-/* returns pointer to errbuf
- */
-char * sh_tools_errmessage (int tellme, char * errbuf, size_t len);
+char * sh_tools_errmessage (int tellme);
 
 
@@ -46,9 +33,7 @@
 #if defined (SH_WITH_SERVER)
 
-unsigned char sh_tools_probe_store(unsigned char protocol, int * probe_flag);
-
 int get_open_max (void);
 
-void put_header (/*@out@*/unsigned char * head, const int protocol, 
+void put_header (/*@out@*/unsigned char * head, int protocol, 
 		 unsigned long * length, char * u);
 
@@ -56,22 +41,11 @@
 int check_request_nerr (char * have, char * need);
 
-/* returns allocated buffer
- */
 char * hash_me (char * key, char * buf,   int buflen);
 int sh_tools_hash_vfy(char * key, char * buf, int buflen);
 
-/* returns allocated buffer
- */
-char * get_client_conf_file (const char * peer, unsigned long * length);
+char * get_client_conf_file (char * peer, unsigned long * length);
+char * get_client_data_file (char * peer, unsigned long * length);
 
-/* returns allocated buffer
- */
-char * get_client_data_file (const char * peer, unsigned long * length);
-
-/* returns allocated buffer
- */
-char * get_client_uuid_file (const char * peer, unsigned long * length, const char * uuid);
 #endif
-
 
 unsigned long read_port (int sockfd, char *buf, unsigned long nbytes, 
@@ -79,7 +53,5 @@
 
 
-#if defined (SH_WITH_CLIENT) || defined(SH_WITH_SERVER)
-
-void sh_tools_probe_reset();
+#if defined (SH_WITH_CLIENT)
 
 unsigned long write_port (int sockfd, char *buf, unsigned long nbytes, 
@@ -93,9 +65,8 @@
 		 unsigned long * length, char * u);
 
-/*
-  SL_TICKET open_tmp (void);
-  int close_tmp (SL_TICKET fd);
-  int rewind_tmp (SL_TICKET fd);
-*/
+
+SL_TICKET open_tmp (void);
+int close_tmp (SL_TICKET fd);
+int rewind_tmp (SL_TICKET fd);
 
 void sh_tools_server_cmd(const char * srvcmd);
@@ -107,9 +78,4 @@
 #endif
 
-#if defined(SH_WITH_CLIENT) || defined(SH_WITH_SERVER) || defined(SH_STEALTH) || defined(WITH_GPG) || defined(WITH_PGP)
-SL_TICKET open_tmp (void);
-int close_tmp (SL_TICKET fd);
-int rewind_tmp (SL_TICKET fd);
-#endif
 
 #endif
Index: trunk/include/sh_trace.h
===================================================================
--- trunk/include/sh_trace.h	(revision 591)
+++ trunk/include/sh_trace.h	(revision 1)
@@ -5,23 +5,11 @@
 /* This file should be included via samhain.h only.
  */
-#ifdef SL_DEBUG
-#define SDG_0RETU _("return.\n")
-#define SDG_TERRO _("ERROR: file=<%s>, line=<%d>, reason=<%s>\n")
-#define SDG_AERRO _("ERROR: file=<%s>, line=<%d>, failed_assertion=<%s>\n")
-#define SDG_AFAIL _("FAILED: file=<%s>, line=<%d>, assertion=<%s>\n")
-#define SDG_ENTER _("enter=<%s>\n")
-#define SDG_RETUR _("return=<%s>.\n")
-#define SDG_ERROR _("error=<%ld>.\n")
-#endif
 
 #ifdef SL_DEBUG
 #define ASSERT(expr, expr1) \
       if (!(expr)) \
-	{ \
-         fprintf(stderr,	    \
+         fprintf(stderr, \
 		 SDG_AERRO, \
-		 FIL__, __LINE__, expr1 ); \
-          abort(); \
-	}
+		 FIL__, __LINE__, expr1 );
 
 
Index: trunk/include/sh_unix.h
===================================================================
--- trunk/include/sh_unix.h	(revision 591)
+++ trunk/include/sh_unix.h	(revision 1)
@@ -23,10 +23,5 @@
 #define SH_UNIX_H
 
-/* For PATH_MAX */
 #include 
-#if !defined(PATH_MAX)
-#define PATH_MAX 1024
-#endif
-
 #include 
 #include "samhain.h"
@@ -54,6 +49,4 @@
   SH_FILE_FIFO,
   SH_FILE_SOCKET,
-  SH_FILE_DOOR,
-  SH_FILE_PORT,
   SH_FILE_UNKNOWN
 } ShFileType;
@@ -68,5 +61,4 @@
 /* inode        */
 #define MODI_INO (1 << 2)
-
 /* user         */
 #define MODI_USR (1 << 3)
@@ -75,5 +67,4 @@
 /* mtime        */
 #define MODI_MTM (1 << 5)
-
 /* ctime        */
 #define MODI_CTM (1 << 6)
@@ -82,42 +73,10 @@
 /* size         */
 #define MODI_SIZ (1 << 8)
-
 /* file mode    */
 #define MODI_MOD (1 << 9)
 /* hardlinks    */
 #define MODI_HLN (1 << 10)
-/* device type   */
+/* device num   */
 #define MODI_RDEV (1 << 11)
-
-/* size may grow   */
-#define MODI_SGROW (1 << 12)
-/* use prelink     */
-#define MODI_PREL (1 << 13)
-/* get content     */
-#define MODI_TXT ((1 << 14)|MODI_CHK)
-#define MODI_TXT_ENABLED(a) (((a)&(1 << 14))!=0)
-
-/* get audit record  */
-#define MODI_AUDIT (1 << 15)
-#define MODI_AUDIT_ENABLED(a) (((a)&(1 << 15))!=0)
-/* do not check  */
-#define MODI_NOCHECK (1 << 16)
-/* do not check  */
-#define MODI_ALLIGNORE (1 << 17)
-
-#define MODI_TIGER192  0x01000000UL
-#define MODI_SHA1      0x02000000UL
-#define MODI_MD5       0x03000000UL
-#define MODI_SHA256    0x04000000UL
-#define MODI_HASHTYPE  0x0F000000UL
-
-#define MODI_INIT 0xD0000000UL
-#define MODI_INITIALIZED(a) (((a) & 0xF0000000UL) == MODI_INIT)
-
-#define MODI_SET(a, b) ((a) |= (b))
-#define MODI_CLEAR(a, b) ((a) &= ~(b))
-#define MODI_ISSET(a, b) (((a) & (b)) != 0)
-
-#define SH_TXT_MAX 9200
 
 #define MASK_ALLIGNORE_  0
@@ -127,5 +86,5 @@
 #define MASK_LOGFILES_   (MASK_ATTRIBUTES_|MODI_HLN|MODI_LNK|MODI_INO)
 extern  unsigned long mask_LOGFILES;
-#define MASK_LOGGROW_    (MASK_LOGFILES_|MODI_SIZ|MODI_SGROW|MODI_CHK) 
+#define MASK_LOGGROW_    (MASK_LOGFILES_|MODI_SIZ) 
 extern  unsigned long mask_LOGGROW;
 #define MASK_READONLY_   (MASK_LOGFILES_|MODI_CHK|MODI_SIZ|MODI_MTM|MODI_CTM)
@@ -136,15 +95,12 @@
 extern  unsigned long mask_USER0;
 extern  unsigned long mask_USER1;
-extern  unsigned long mask_USER2;
-extern  unsigned long mask_USER3;
-extern  unsigned long mask_USER4;
-/* like READONLY, but without MTM,CTM,SIZ,INO, and with PREL)
- */
-#define MASK_PRELINK_   (MASK_ATTRIBUTES_|MODI_HLN|MODI_LNK|MODI_CHK|MODI_PREL)
+/* like READONLY, but without MTM,CTM,SIZ,INO)
+ */
+#define MASK_PRELINK_   (MASK_ATTRIBUTES_|MODI_HLN|MODI_LNK|MODI_CHK)
 extern  unsigned long mask_PRELINK;
 
 typedef struct file_struct {
-  unsigned long    check_flags;
-  int              file_reported;
+  unsigned long    check_mask;
+  int              reported;
   char             fullpath[PATH_MAX];
   ShFileType       type;
@@ -153,9 +109,9 @@
   mode_t           mode;
   nlink_t          hardlinks;
-#if defined(__linux__) || defined(HAVE_STAT_FLAGS)
+#if defined(__linux__)
   unsigned long    attributes;
-  char             c_attributes[ATTRBUF_SIZE];
-#endif
-  char             c_mode[CMODE_SIZE];
+  char             c_attributes[16];
+#endif
+  char             c_mode[11];
   uid_t            owner;
   char             c_owner[USER_MAX+2];
@@ -170,59 +126,28 @@
   time_t           ctime;
 
-  char           * link_path;
+  char             linkpath[PATH_MAX];
   mode_t           linkmode;
   char             link_c_mode[11];
   int              linkisok;
-  char           * attr_string;
 } file_type;
 
-extern int sh_unix_check_selinux;
-extern int sh_unix_check_acl;
-
-/* destroy userid cache 
- */
-void sh_userid_destroy ();
-
-/* --- run a command, securely --- 
- */
-int sh_unix_run_command (const char * str);
-
-/* Ignore SIGPIPE
- */
-void sh_unix_ign_sigpipe();
-
 /* mlock utilities
  */
-int sh_unix_mlock(const char * file, int line, void * addr, size_t len);
+int sh_unix_mlock(void * addr, size_t len);
 int sh_unix_munlock(void * addr, size_t len);
-int sh_unix_count_mlock(void);
-/* public for unit tests */
-int sh_unix_pagesize(void);
-unsigned long sh_unix_lookup_page(void * in_addr, size_t len, int * num_pages);
+int sh_unix_count_mlock();
 
 /* chroot directory
  */
-int sh_unix_set_chroot(const char * str);
+int sh_unix_set_chroot(char * str);
 
 /* whether to use localtime for file timesatams in logs
  */
-int sh_unix_uselocaltime (const char * c);
-
-/* whether to perform selinux/acl checks
- */ 
-#ifdef USE_XATTR
-int sh_unix_setcheckselinux (const char * c);
-#endif
-#ifdef USE_ACL
-int sh_unix_setcheckacl (const char * c);
-#endif
-#if defined(__linux__) || defined(HAVE_STAT_FLAGS)
-int sh_unix_setcheckattributes (const char * c);
-#endif
+int sh_unix_uselocaltime (char * c);
 
 /* set I/O limit
  */
-int  sh_unix_set_io_limit (const char * c);
-void sh_unix_io_pause (void);
+int  sh_unix_set_io_limit (char * c);
+void sh_unix_io_pause ();
 
 /* get file type
@@ -232,9 +157,9 @@
 /* reset masks for policies
  */
-int sh_unix_maskreset(void);
+int sh_unix_maskreset();
 
 /* return true if database is remote
  */
-int file_is_remote (void);
+int file_is_remote ();
 
 /* return the path to the configuration/database file
@@ -248,9 +173,6 @@
 /* close all files >= fd, except possibly one
  */
-void sh_unix_closeall (int fd, int except, int inchild);
-
-/* Check whether directory for pid file exists
- */
-int sh_unix_check_piddir (char * pidpath);
+void sh_unix_closeall (int fd, int except);
+
 
 /* write lock for filename
@@ -264,14 +186,14 @@
 /* write the PID file
  */
-int sh_unix_write_pid_file(void);
+int sh_unix_write_pid_file();
 
 /* rm the PID file
  */
-int sh_unix_rm_pid_file(void);
+int sh_unix_rm_pid_file();
 
 
 /* checksum of own binary
  */
-int sh_unix_self_hash (const char * c);
+int sh_unix_self_hash (char * c);
 
 /* return BAD on failure
@@ -281,9 +203,9 @@
 /* add a trusted user to the list 
  */
-int tf_add_trusted_user(const char *);
+int tf_add_trusted_user(char *);
 
 /* check a file 
  */
-int tf_trust_check (const char * file, int mode);
+int tf_trust_check (char * file, int mode);
 
 /* initialize group vector
@@ -298,5 +220,5 @@
 /* set the timeserver address
  */
-int sh_unix_settimeserver (const char * address);
+int sh_unix_settimeserver (char * address);
 void reset_count_dev_time(void);
 
@@ -307,14 +229,14 @@
 /* deamon mode 
  */
-int sh_unix_setdeamon  (const char * dummy);
-int sh_unix_setnodeamon(const char * dummy);
+int sh_unix_setdeamon  (char * dummy);
+int sh_unix_setnodeamon(char * dummy);
 
 /* Test whether file exists
  */
-int sh_unix_file_exists(char * path);
+int sh_unix_file_stat(char * path);
 
 /* test whether file exists with proper attributes
  */
-int sh_unix_device_readable(int fd);
+int sh_unix_file_exists(int fd);
 
 /* local host
@@ -331,12 +253,7 @@
 /* int sh_unix_is_secure_dir (ShErrLevel level, char * tmp); */
 
-/* check whether there's a rotated log with the correct inode and checksum 
- */
-int sh_check_rotated_log (const char * path,  
-			  UINT64 old_size, UINT64 old_inode, const char * old_hash, unsigned long mask);
-
 /* obtain file info
  */
-int sh_unix_getinfo (int level, const char * filename, file_type * theFile, 
+int sh_unix_getinfo (int level, char * filename, file_type * theFile, 
 		     char * fileHash, int flagrel);
 
@@ -349,11 +266,11 @@
 int  sh_unix_init(int goDaemon);
 
-/* for local time use thetime = 0, returns pointer to buffer 
- */
-char * sh_unix_time (time_t thetime, char * buffer, size_t len);
-
-/* convert to GMT time, returns pointer to buffer
- */
-char * sh_unix_gmttime (time_t thetime, char * buffer, size_t len);
+/* for local time use thetime = 0 
+ */
+/*@owned@*/ char * sh_unix_time (time_t thetime);
+
+/* convert to GMT time
+ */
+char * sh_unix_gmttime (time_t thetime);
 
 /* effective user info
@@ -361,11 +278,8 @@
 int  sh_unix_getUser (void);
 
-/* get home directory, , returns pointer to out
- */
-char *  sh_unix_getUIDdir (int level, uid_t uid, char * out, size_t len);
-
-/* get a group GID 
- */
-long sh_group_to_gid (const char * g, int * fail);
+/* get home directory
+ */
+char *  sh_unix_getUIDdir (int level, uid_t uid);
+
 
 #ifdef HAVE_GETTIMEOFDAY
@@ -389,22 +303,19 @@
 
 void   sh_sigtrap_handler (int signum);
+extern volatile int sh_not_traced;
 
 #ifdef HAVE_GETTIMEOFDAY
+#if TIME_WITH_SYS_TIME
+#include 
+#include 
+#else
 #if HAVE_SYS_TIME_H
 #include 
-#endif
+#else
 #include 
 #endif
-
-struct sh_sigtrap_variables {
-  int not_traced;
-#ifdef HAVE_GETTIMEOFDAY
-  struct timeval save_tv;
-#endif
-};
-
-struct sh_sigtrap_variables * sh_sigtrap_variables_get();
-
-int sh_sigtrap_max_duration_set (const char * str);
+#endif
+extern struct timeval  save_tv;
+#endif
 
 static inline
@@ -425,26 +336,19 @@
 int sh_derr(void)
 {
-  struct sh_sigtrap_variables * sigtrap_variables;
-  sigtrap_variables = sh_sigtrap_variables_get();
-  if (sigtrap_variables == NULL) {
-    /* Perhaps, its better to not die, and to continue using Samhain,
-       even if this part does not work. */
-    return (0);
-  }
-
-  sigtrap_variables->not_traced = 0;
+  sh_not_traced = 0;
 
 #ifdef HAVE_GETTIMEOFDAY
-  gettimeofday(&sigtrap_variables->save_tv, NULL);
-#endif
-
-  /* raise() sends to same thread, like pthread_kill(pthread_self(), sig); 
-   */
+  gettimeofday(&save_tv, NULL);
+#endif
+
+#if defined(__linux__) && defined(__GNUC__) && defined(__i386__)
+  __asm__ __volatile__ ("int $0x03");
+#else
   raise(SIGTRAP);
+#endif
   
-  if (sigtrap_variables->not_traced == 0)
+  if (sh_not_traced == 0)
     _exit(5);
-
-  sigtrap_variables->not_traced = 0;
+  sh_not_traced = 0;
   return (0);
 }
Index: trunk/include/sh_userfiles.h
===================================================================
--- trunk/include/sh_userfiles.h	(revision 591)
+++ trunk/include/sh_userfiles.h	(revision 1)
@@ -9,5 +9,5 @@
 
 #ifdef SH_USE_USERFILES
-int sh_userfiles_init  (struct mod_type * arg);
+int sh_userfiles_init  (void);
 int sh_userfiles_timer (time_t tcurrent);
 int sh_userfiles_check (void);
@@ -16,9 +16,9 @@
 int sh_userfiles_reconf (void);
 
-int sh_userfiles_set_uid (const char * str);
-int sh_userfiles_add_file(const char *c);
-int sh_userfiles_set_interval(const char *c);
-int sh_userfiles_set_active(const char *c);
-int sh_userfiles_check_internal(void);
+int sh_userfiles_set_uid (char * str);
+int sh_userfiles_add_file(char *c);
+int sh_userfiles_set_interval(char *c);
+int sh_userfiles_set_active(char *c);
+int sh_userfiles_check_internal();
 
 extern sh_rconf sh_userfiles_table[];
Index: trunk/include/sh_utils.h
===================================================================
--- trunk/include/sh_utils.h	(revision 591)
+++ trunk/include/sh_utils.h	(revision 1)
@@ -40,9 +40,7 @@
   unsigned long   data_ulong;
   long            data_long;
-  char           *data_str;
+  /*@null@*/char *data_str;
 } st_format;
 
-/* returns allocated string
- */
 char * sh_util_formatted (const char * fmt, st_format * ftab);
 
@@ -58,81 +56,52 @@
  *  generator. 
  */
-UINT32 taus_get            (void);  
+UINT32 taus_get            (void *state1, void *state2, void *state3);  
 double taus_get_double     (void *vstate);  /* fast */
 int    taus_seed           (void);
 
-/* returns allocated memory
- */
-char * sh_util_strdup (const char * str) SH_GNUC_MALLOC;
-char * sh_util_strdup_track (const char * str, 
-			     char * file, int line) SH_GNUC_MALLOC;
-
-/* returns allocated memory
- */
-char * sh_util_strdup_l (const char * str, size_t len) SH_GNUC_MALLOC;
-
-/* returns pointer within str
- */
+char * sh_util_strdup (const char * str);
 char * sh_util_strsep (char **str, const char *delim);
-
-/* compactify verbose acl text, returns allocated memory
- */
-char * sh_util_acl_compact (char * buf, ssize_t len);
 
 /* set signature type HASH-TIGER/HMAC-TIGER
  */
-int sh_util_sigtype (const char * c);
+int sh_util_sigtype (char * c);
 
 /* compute a signature
  */
 char * sh_util_siggen (char * hexkey,  
-		       char * text, size_t textlen, 
-		       char * sigbuf, size_t sigbuflen);
+		       char * text, size_t textlen);
 
 /* eval boolean input
  */
-int sh_util_flagval(const char * c, int * fval);
+int sh_util_flagval(char * c, int * fval);
 
 /* ask if a file should be updated (returns S_TRUE/S_FALSE)
  */
-int sh_util_ask_update(const char * path);
-int sh_util_set_interactive(const char * str);
-int sh_util_update_file (const char * str);
+int sh_util_ask_update(char * path);
+int sh_util_set_interactive(char * str);
 
 /* don't log output files
  */
-int sh_util_hidesetup(const char * c);
-
-/* valif utf-8 string
- */
-int sh_util_valid_utf8 (const unsigned char * str);
-
-/* filenames are utf8
- */
-int sh_util_obscure_utf8 (const char * c);
+int sh_util_hidesetup(char * c);
 
 /* exceptions to obscure name check
  */
-int sh_util_obscure_ok (const char * str);
+int sh_util_obscure_ok (char * str);
 
-/* output a hexchar[2]; i2h must be char[2]
+/* read a hexchar
  */
-char * sh_util_charhex( unsigned char c, char * i2h );
-
-/* read a hexchar, return int value (0-15)
- */
-int sh_util_hexchar( char c ) SH_GNUC_CONST;
+int sh_util_hexchar( char c );
 
 /* change verifier 
  */
-int sh_util_set_newkey (const char * str);
+int sh_util_set_newkey (char * str);
 
 /* server mode 
  */
-int sh_util_setserver (const char * dummy);
+int sh_util_setserver (char * dummy);
 
 /* a simple compressor
  */
-size_t sh_util_compress (char * dest, char * src, size_t dest_size);
+long sh_util_compress (char * dest, char * src, size_t dest_size);
 
 /* an even simpler en-/decoder 
@@ -147,9 +116,9 @@
 /* set timer for main loop
  */
-int sh_util_setlooptime (const char * str);
+int sh_util_setlooptime (char * str);
 
 /* whether init or check the database
  */
-int  sh_util_setchecksum (const char * str);
+int  sh_util_setchecksum (char * str);
 
 /* compare an in_string against a regular expression regex_str
@@ -160,11 +129,11 @@
 
 /* returns freshly allocated memory, return value should be free'd.
- * Argument list must be NULL terminated.
+ * Arhument list must be NULL terminated.
  */
-char * sh_util_strconcat (const char * arg1, ...) SH_GNUC_MALLOC SH_GNUC_SENTINEL;
+char * sh_util_strconcat (const char * arg1, ...);
 
 /* check if string is numeric only
  */
-int sh_util_isnum (const char *str) SH_GNUC_PURE;
+int sh_util_isnum (char *str);
 
 /* init a key w/random string
@@ -175,11 +144,9 @@
 /* returns freshly allocated memory, return value should be free'd
  */
-char * sh_util_dirname(const char * fullpath);
+char * sh_util_filename(char * fullpath);
 
 /* returns freshly allocated memory, return value should be free'd
  */
-char * sh_util_safe_name (const char * name) SH_GNUC_MALLOC;
-
-char * sh_util_safe_name_keepspace (const char * name) SH_GNUC_MALLOC;
+char * sh_util_safe_name (const char * name);
 
 /* check max size of printf result string
@@ -189,30 +156,9 @@
 /* check for obscure filenames
  */
-int sh_util_obscurename (ShErrLevel level, const char * name, int flag);
+int sh_util_obscurename (ShErrLevel level, char * name, int flag);
 
 /* returns freshly allocated memory, return value should be free'd
  */
-char * sh_util_basename(const char * fullpath);
-
-/* required size (including terminating NULL) for string of strlen l
- */
-#define SH_B64_SIZ(l)  (1 + ((((l) + 2) / 3) * 4))
-
-/* return len of encoded string
- */
-size_t sh_util_base64_enc (unsigned char * out, const unsigned char * instr, 
-			   size_t lin);
-
-/* return allocated encoded string in out, return its len
- */
-size_t sh_util_base64_enc_alloc (char **out, const char *in, size_t inlen);
-
-/* return len of decoded string
- */  
-size_t sh_util_base64_dec (unsigned char *out, const unsigned char *in, size_t lin);
-
-/* return allocated decoded string in out, return its len
- */  
-size_t sh_util_base64_dec_alloc (unsigned char **out, const unsigned char *in, size_t lin);
+char * sh_util_basename(char * fullpath);
 
 #endif
Index: trunk/include/sh_utmp.h
===================================================================
--- trunk/include/sh_utmp.h	(revision 591)
+++ trunk/include/sh_utmp.h	(revision 1)
@@ -6,35 +6,17 @@
 
 #ifdef SH_USE_UTMP
-int sh_utmp_init   (struct mod_type * arg);
-int sh_utmp_timer  (time_t tcurrent);
-int sh_utmp_check  (void);
-int sh_utmp_end    (void);
-int sh_utmp_reconf (void);
+int sh_utmp_init  (void);
+int sh_utmp_timer (time_t tcurrent);
+int sh_utmp_check (void);
+int sh_utmp_end (void);
+int sh_utmp_null (void);
 
-int sh_utmp_set_login_activate (const char * c);
-int sh_utmp_set_login_solo     (const char * c);
-int sh_utmp_set_login_multi    (const char * c);
-int sh_utmp_set_logout_good    (const char * c);
-int sh_utmp_set_login_timer    (const char * c);
+int sh_utmp_set_login_activate (char * c);
+int sh_utmp_set_login_solo     (char * c);
+int sh_utmp_set_login_multi    (char * c);
+int sh_utmp_set_logout_good    (char * c);
+int sh_utmp_set_login_timer    (char * c);
 
 extern sh_rconf sh_utmp_table[];
-
-/* >>           Login tracking             << */
-
-/* 'yes', 'no', 'paranoid'                    */
-int sh_login_set_siglevel      (const char * c);
-
-/* 'yes', 'no', 'domain'                      */
-int sh_login_set_checklevel    (const char * c);
-
-/* 'always' 'never' workdays(..) sunday(..)   */
-int sh_login_set_def_allow     (const char * c);
-
-/* user:'always' 'never' workdays(..)         */
-int sh_login_set_user_allow    (const char * c);
-
-/* Reset everything to defaults.              */
-void sh_login_reset (void);
-
 #endif
 
Index: trunk/include/sh_xfer.h
===================================================================
--- trunk/include/sh_xfer.h	(revision 591)
+++ 	(revision )
@@ -1,128 +1,0 @@
-/* SAMHAIN file system integrity testing                                   */
-/* Copyright (C) 1999, 2015 Rainer Wichmann                                */
-/*                                                                         */
-/*  This program is free software; you can redistribute it                 */
-/*  and/or modify                                                          */
-/*  it under the terms of the GNU General Public License as                */
-/*  published by                                                           */
-/*  the Free Software Foundation; either version 2 of the License, or      */
-/*  (at your option) any later version.                                    */
-/*                                                                         */
-/*  This program is distributed in the hope that it will be useful,        */
-/*  but WITHOUT ANY WARRANTY; without even the implied warranty of         */
-/*  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          */
-/*  GNU General Public License for more details.                           */
-/*                                                                         */
-/*  You should have received a copy of the GNU General Public License      */
-/*  along with this program; if not, write to the Free Software            */
-/*  Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.              */
-
-#ifndef SH_XFER_H
-#define SH_XFER_H
-
-#ifndef SH_STANDALONE
-int sh_xfer_set_strip (const char * str);
-#endif
-
-/* generate a random password
- */
-int sh_xfer_create_password (const char * dummy);
-
-/* set timeout for active client connections
- */
-int sh_xfer_set_timeout (const char * c);
-
-/* set time limit after which client is reported dead 
- */
-int sh_xfer_set_time_limit(const char * str);
-
-/* error level for lookup failure
- */
-int sh_xfer_lookup_level (const char * c);
-
-/* create client entry for given password
- */
-int sh_xfer_make_client (const char * str);
-
-/* set port to which we connect
- */
-int sh_xfer_server_port (const char * str);
-
-#ifdef SH_WITH_SERVER
-
-#ifdef INET_SYSLOG
-int set_syslog_active(const char * c);
-#endif
-
-/* create socket and start listening
- */
-void create_server_tcp_socket (void);
-
-/* whether to use client address as known to the communication layer
- * and set by accept()
- */
-int set_socket_peer (const char * c);
-
-/* whether to use client severity
- */
-int sh_xfer_use_clt_sev (const char * c);
-
-/* whether to use client class
- */
-int sh_xfer_use_clt_class (const char * c);
-
-/* server port
- */
-int sh_xfer_set_port(const char * c);
-
-/* server interface
- */
-int sh_xfer_set_interface(const char * c);
-
-/* a wrapper function
- */
-void sh_xfer_html_write(void);
-
-/* register an alias
- */
-int sh_xfer_register_alias (const char * str);
-
-/* register a client
- */
-int sh_xfer_register_client (const char * str);
-
-/* start server
- */
-void sh_xfer_start_server(void);
-
-/* free() everything
- */
-void sh_xfer_free_all (void);
-
-#endif
-
-#if defined(SH_WITH_CLIENT) || defined(SH_WITH_SERVER)
-/* talk to server
- */
-long  sh_xfer_report (char * errmsg);
-
-/* set log server
- */
-int sh_xfer_set_logserver (const char * address);
-void reset_count_dev_server(void);
-#endif
-
-#ifdef SH_WITH_CLIENT
-
-/* Throttle file download
- */
-int sh_xfer_set_throttle_delay (const char * c);
-
-/* request file from server. file may be "CONF" or "DATA" or a UUID.
- */
-long sh_xfer_request_file (const char * file);
-
-#endif
-
-#endif
-
Index: trunk/include/slib.h
===================================================================
--- trunk/include/slib.h	(revision 591)
+++ trunk/include/slib.h	(revision 1)
@@ -24,6 +24,4 @@
 #endif
 
-#include "sh_string.h"
-
 /****************
 
@@ -40,5 +38,4 @@
 *****************/
 
-
 /* --------------------------------------------------------------
  * 
@@ -60,20 +57,8 @@
  * TRUE, FALSE
  */
-#if !defined(S_TRUE)
-#define S_TRUE  1
-#define S_FALSE 0
-#endif
-
-#define SH_GRBUF_SIZE   4096
-#define SH_PWBUF_SIZE  32768
-
-
-#if defined(__GNUC__) && (__GNUC__ >= 3)
-#undef  SL_GNUC_CONST
-#define SL_GNUC_CONST   __attribute__((const))
-#else
-#undef  SL_GNUC_CONST
-#define SL_GNUC_CONST
-#endif
+#define SL_TRUE  1
+#define SL_FALSE 0
+
+
 
 /*
@@ -108,9 +93,7 @@
 #define SL_EWRITE    -1037     /* Write error. Check errno.            */
 #define SL_ESYNC     -1038     /* Write error. Check errno.            */
-#define SL_ECLOSE    -1039     /* Close error. Check errno.            */
 
 #define SL_EBADNAME  -1040     /* Invalid name.                        */
 #define SL_ESTAT     -1041     /* stat of file failed. Check errno.    */
-#define SL_EFSTAT    -1042     /* fstat of file failed. Check errno.   */
 
 #define SL_EBADUID   -1050	/* Owner not trustworthy.              */
@@ -120,20 +103,4 @@
 #define SL_TOOMANY   -1053      /* Too many open files                 */
 #define SL_TIMEOUT   -1054      /* Timeout in read                     */
-
-#define SL_EISDIR    -1055      /* Is a directory                      */
-
-#define SL_EINTERNAL01 -1061    /* Internal error.                      */
-#define SL_EINTERNAL02 -1062    /* Internal error.                      */
-#define SL_EINTERNAL03 -1063    /* Internal error.                      */
-#define SL_EINTERNAL04 -1064    /* Internal error.                      */
-#define SL_EINTERNAL05 -1065    /* Internal error.                      */
-#define SL_EINTERNAL06 -1066    /* Internal error.                      */
-#define SL_EINTERNAL07 -1067    /* Internal error.                      */
-#define SL_EINTERNAL08 -1068    /* Internal error.                      */
-#define SL_EINTERNAL09 -1069    /* Internal error.                      */
-#define SL_EINTERNAL10 -1070    /* Internal error.                      */
-#define SL_EINTERNAL11 -1071    /* Internal error.                      */
-#define SL_EINTERNAL12 -1072    /* Internal error.                      */
-
 /*
  * All int functions return SL_NONE on success.
@@ -144,7 +111,7 @@
 #endif
 
-  int dlog (int flag, const char * file, int line, const char *fmt, ...);
-
-  char * sl_get_errmsg(void);
+  int dlog (int flag, char * file, int line, const char *fmt, ...);
+
+  char * sl_get_errmsg();
 
   /* ---------------------------------------------------------------- 
@@ -154,5 +121,5 @@
    * ---------------------------------------------------------------- */
 
-  int sl_test_heap(void);
+  int sl_test_heap();
 
   /* ---------------------------------------------------------------- 
@@ -164,9 +131,9 @@
   extern int sl_useCaps;
 
-  int sl_drop_cap (void);
-  int sl_drop_cap_sub(void);
-  int sl_get_cap_sub(void);
-  int sl_drop_cap_qdel(void);
-  int sl_get_cap_qdel(void);
+  int sl_drop_cap ();
+  int sl_drop_cap_sub();
+  int sl_get_cap_sub();
+  int sl_drop_cap_qdel();
+  int sl_get_cap_qdel();
 
   /* ---------------------------------------------------------------- 
@@ -180,8 +147,6 @@
    */
   void *sl_memset(void *s, int c, size_t n);
-#if !defined(SH_REAL_SET)
 #undef  memset
 #define memset sl_memset
-#endif
 
   /* 
@@ -224,10 +189,7 @@
 
   /*
-   * robust strn[case]cmp replacement
+   * robust strncmp replacement
    */
   int sl_strncmp(const char * a, const char * b, size_t n);
-  int sl_ts_strncmp(const char * a, const char * b, size_t n);
-
-  int sl_strncasecmp(const char * a, const char * b, size_t n);
 
   /*
@@ -235,9 +197,4 @@
    */
   int sl_strcmp(const char * a, const char * b);
-
-  /*
-   * robust strcasecmp replacement
-   */
-  int sl_strcasecmp(const char * one, const char * two);
 
   /*
@@ -257,5 +214,5 @@
    * UID HANDLING FUNCTIONS.
    */
-  int sl_policy_get_user(const char *username);  /* drop SUID to   */ 
+  int sl_policy_get_user(char *username);  /* drop SUID to   */ 
   int sl_policy_get_real(char *username);  /* drop privs to  */
   int sl_policy_get_root(void);            /* drop SUID to root        */
@@ -274,5 +231,5 @@
    */
   int sl_get_euid(/*@out@*/uid_t * ret);
-  uid_t sl_ret_euid(void);
+  uid_t sl_ret_euid();
 
   /*
@@ -334,80 +291,37 @@
    * ---------------------------------------------------------------- */
 
-#define SL_OFILE_SIZE 32
-
-  char * sl_check_badfd();
-  char * sl_check_stale();
-
-  /* Create a file record for an open file
-   */
-  SL_TICKET sl_make_ticket (const char * ofile, int oline,
-			    int fd, const char * filename, FILE * stream);
- 
-  /* Get the pointer to a stream. If none exists yet, open it
-   */
-  FILE * sl_stream (SL_TICKET ticket, char * mode);
+  SL_TICKET sl_make_ticket (int fd, char * path);
 
   /* Open for writing.
    */
-  SL_TICKET  sl_open_write       (const char * ofile, int oline,
-				  const char * fname, int priviledge_mode);
+  SL_TICKET  sl_open_write       (char * fname, int priviledge_mode);
 
   /* Open for reading.
    */
-  SL_TICKET  sl_open_read        (const char * ofile, int oline,
-				  const char * fname, int priviledge_mode);
-
-  /* Drop from cach when closing
-   */
-  int sl_set_drop_cache(const char * str);
+  SL_TICKET  sl_open_read        (char * fname, int priviledge_mode);
 
   /* Open for reading w/minimum checking.
    */
-  SL_TICKET  sl_open_fastread    (const char * ofile, int oline,
-				  const char * fname, int priviledge_mode);
+  SL_TICKET  sl_open_fastread    (char * fname, int priviledge_mode);
 
   /* Open for read and write.
    */
-  SL_TICKET  sl_open_rdwr        (const char * ofile, int oline,
-				  const char * fname, int priviledge_mode);
+  SL_TICKET  sl_open_rdwr        (char * fname, int priviledge_mode);
 
   /* Open for read and write, fail if file exists.
    */
-  SL_TICKET sl_open_safe_rdwr    (const char * ofile, int oline,
-				  const char * fname, int priv);
+  SL_TICKET sl_open_safe_rdwr    (char * fname, int priv);
 
   /* Open for write, truncate.
    */
-  SL_TICKET  sl_open_write_trunc (const char * ofile, int oline,
-				  const char * fname, int priviledge_mode);
+  SL_TICKET  sl_open_write_trunc (char * fname, int priviledge_mode);
 
   /* Open for read and write, truncate.
    */
-  SL_TICKET  sl_open_rdwr_trunc  (const char * ofile, int oline,
-				  const char * fname, int priviledge_mode);
-
-  /* Initialize the content sh_string.
-   */
-  int sl_init_content (SL_TICKET ticket, size_t size);
-
-  /* Get the (pointer to) the content sh_string.
-   */
-  sh_string * sl_get_content (SL_TICKET ticket);
-
-  /* Lock file (uses fcntl F_SETLK).
-   */
-  int sl_lock (SL_TICKET ticket);
+  SL_TICKET  sl_open_rdwr_trunc  (char * fname, int priviledge_mode);
 
   /* Close file.
    */
   int sl_close (SL_TICKET ticket);
-
-  /* Close file descriptor.
-   */
-  int sl_close_fd (const char * file, int line, int fd);
-
-  /* Close stream.
-   */
-  int sl_fclose (const char * file, int line, FILE * fp);
 
   /* Unlink file.
@@ -435,14 +349,6 @@
   int sl_read (SL_TICKET ticket, void * buf, size_t count);
 
-  int sl_read_timeout_prep (SL_TICKET ticket);
-
-  int sl_read_timeout_fd (int fd, void * buf, 
-			  size_t count, int timeout, int is_nonblocking);
-
-  int sl_read_timeout_fd_once (int fd, void * buf, 
-			       size_t count, int timeout, int is_nonblocking);
-
   int sl_read_timeout (SL_TICKET ticket, void * buf, 
-		       size_t count, int timeout, int is_nonblocking);
+		       size_t count, int timeout);
 
   int sl_read_fast (SL_TICKET ticket, void * buf_in, size_t count);
@@ -450,30 +356,25 @@
   /* Write file.
    */
-  int sl_write (SL_TICKET ticket, const void * msg, long nbytes);
+  int sl_write (SL_TICKET ticket, void * msg, long nbytes);
 
   /* Write file, terminate with newline.
    */
-  int sl_write_line (SL_TICKET ticket, const void * msg, long nbytes);
-
-  /* As above, but only for non-constant strings.
-   */
-  int sl_write_line_fast (SL_TICKET ticket, void * msg, long nbytes);
+  int sl_write_line (SL_TICKET ticket, void * msg, long nbytes);
 
   /* Drop all metadata for file descriptors >= fd.
    */
   int sl_dropall(int fd, int except);
-  int sl_dropall_dirty(int fd, int except); /* don't deallocate */
 
   /* Check whether file is trustworthy.
    */
-  int sl_trustfile(const char * path, uid_t * ok, uid_t * bad);
+  int sl_trustfile(char * path, uid_t * ok, uid_t * bad);
 
   /* Check whether file is trustworthy.
    */
-  int sl_trustfile_euid(const char * filename, uid_t euid);
+  int sl_trustfile_euid(char * filename, uid_t euid);
 
   /* purge list of trusted users
    */
-  int  sl_trust_purge_user (void);
+  int  sl_trust_purge_user ();
 
   /* Add a trusted user.
@@ -488,14 +389,4 @@
    */
   char * sl_trust_errfile(void);
-
-  /* Overflow tests
-   */
-  int sl_ok_muli (int a, int b) SL_GNUC_CONST;
-  int sl_ok_divi (int a, int b) SL_GNUC_CONST;
-  int sl_ok_addi (int a, int b) SL_GNUC_CONST;
-  int sl_ok_subi (int a, int b) SL_GNUC_CONST;
-
-  int sl_ok_muls (size_t a, size_t b) SL_GNUC_CONST;
-  int sl_ok_adds (size_t a, size_t b) SL_GNUC_CONST;
 
 
@@ -509,7 +400,5 @@
 #define SL_NOPRIV  0x34
 
-/* Suitable for Linux
- */
-#define MAXFILENAME	4096
+#define MAXFILENAME	2048
 
 
@@ -533,5 +422,5 @@
     /*@i@*/ if (assertion) ;                           \
     else {                                             \
-        dlog(0, FIL__, __LINE__, _("FAILED: file=<%s>, line=<%d>, assertion=<%s>\n"),            \
+        dlog(0, FIL__, __LINE__, SDG_AFAIL,            \
                  FIL__, __LINE__, astext);             \
         _exit(EXIT_FAILURE);                           \
@@ -603,10 +492,10 @@
 void sl_stack_push(char * c, char * file, int line);
 void sl_stack_pop(char * c, char * file, int line);
-void sl_stack_print(void);
+void sl_stack_print();
 #endif
-void sl_trace_in   (const char * str, const char * file, int line);
-void sl_trace_out  (const char * str, const char * file, int line);
-int  sl_trace_file (const char * str);
-int  sl_trace_use  (const char * str);
+void sl_trace_in   (char * str, char * file, int line);
+void sl_trace_out  (char * str, char * file, int line);
+int  sl_trace_file (char * str);
+int  sl_trace_use  (char * str);
 
 
@@ -621,5 +510,5 @@
 do {                                                                \
    if((long)(x) < 0) {                                              \
-      TPT((0,    FIL__, __LINE__, _("error=<%ld>.\n"), (long)(x)))            \
+      TPT((0,    FIL__, __LINE__, SDG_ERROR, (long)(x)))            \
       sl_errno=(x);                                                 \
     }                                                               \
Index: trunk/include/zAVLTree.h
===================================================================
--- trunk/include/zAVLTree.h	(revision 591)
+++ trunk/include/zAVLTree.h	(revision 1)
@@ -33,11 +33,8 @@
 
 /* typedef the keytype */
-typedef const void * zAVLKey;
+typedef const char * zAVLKey;
 
 /* Comparison function for strings is strcmp(). */
-/* #define zAVLKey_cmp(tree, a, b) (strcmp((a), (b))) */
-
-#define zAVL_KEY_STRING 0
-#define zAVL_KEY_INT    1
+#define zAVLKey_cmp(tree, a, b) (strcmp((a), (b)))
 
 
@@ -56,5 +53,4 @@
   long count;
   zAVLKey (*getkey)(const void *item);
-  int keytype;
 } zAVLTree;
 
@@ -66,5 +62,5 @@
 
 
-extern zAVLTree *zAVLAllocTree (zAVLKey (*getkey)(void const *item), int keytype);
+extern zAVLTree *zAVLAllocTree (zAVLKey (*getkey)(void const *item));
 extern void zAVLFreeTree (zAVLTree *avltree, void (freeitem)(void *item));
 extern int zAVLInsert (zAVLTree *avltree, void *item);
@@ -74,9 +70,3 @@
 extern void *zAVLNext (zAVLCursor *avlcursor);
 
-extern char * zAVL_string_get (zAVLTree * tree, const char * key);
-/* uses strdup to insert a copy */
-extern int zAVL_string_set (zAVLTree ** tree, const char * key); 
-extern void zAVL_string_reset (zAVLTree * tree);
-extern void zAVL_string_del (zAVLTree * tree, const char * key);
-
 #endif
Index: trunk/init/samhain.startFreeBSD.in
===================================================================
--- trunk/init/samhain.startFreeBSD.in	(revision 591)
+++ trunk/init/samhain.startFreeBSD.in	(revision 1)
@@ -1,44 +1,95 @@
-#!/bin/sh
+#! /bin/sh -
+#
+#    initialization/shutdown script for @install_name@ package
 
-# PROVIDE: @install_name@
-# REQUIRE: LOGIN
-# KEYWORD: shutdown
+prefix="@prefix@"
+exec_prefix="@exec_prefix@"
 
-. /etc/rc.subr
+PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
+DAEMON=@sbindir@/@install_name@
+NAME=@install_name@
+pidfile=@mylockfile@
 
-name="@install_name@"
-rcvar=`set_rcvar`
+test -f $DAEMON || exit 0
 
-pidfile="@mylockfile@"
-
-# there are no required_files in general,
-# as they might be downloaded from the server
-#
-# required_files="@myconffile@ @mydatafile@"
-
-extra_commands="reload"
-stop_postcmd="remove_stale_files"
-
-command="@sbindir@/@install_name@"
-
-is_set()
-{
-    eval "[ -n \"\${$1+X}\" ]"
+safe_pidof () {
+    pidval=0
+    if [ -f $pidfile ] ; then
+       pidval=`cat $pidfile | awk '{ print $1 }'`
+       echo "${pidval}" | grep ['[^0123456789]'] >/dev/null 2>&1 && pidval=0
+    fi
+    echo $pidval
+    if [ x"$pidval" = x0 ] ; then
+	return 1
+    else
+	return 0
+    fi
 }
 
-remove_stale_files()
-{
-    if test -f @mylockfile@; then
-	/bin/rm -f @mylockfile@
-    fi
-    /bin/rm -f @mylockdir@/${name}.sock
+log_stat_msg () {
+case "$1" in
+	0)
+	echo "Service $NAME: Running";
+	break;
+	;;
+	1)
+	echo "Service $NAME: Stopped and @mylockfile@ pid file exists";
+	break;
+	;;
+	3)
+	echo "Service $NAME: Stopped";
+	break;
+	;;
+	*)
+	echo "Service $NAME: Status unknown";
+	break;
+	;;
+esac
 }
 
-load_rc_config "$name"
+case "$1" in
+  start)
+	#
+	# Remove a stale lockfile, if found
+	#
+	if test -f @mylockfile@; then
+	    rm -f @mylockfile@
+	fi
+        /bin/rm -f @mylockdir@/${NAME}.sock
+        $DAEMON -D && echo -n " $NAME"
+        ;;
+  stop)
+        PID=`safe_pidof`
+	if test "x$PID" != x0
+	then
+		kill $PID && echo -n " $NAME"
+        fi
+        ;;
+  reload|force-reload)
+        PID=`safe_pidof`
+        if test "x$PID" != x0
+        then
+		echo " Reloading $NAME configuration file."
+                kill -s HUP $PID && echo -n " $NAME"
+	else
+		echo " Cannot determine PID of process $NAME."
+		exit 1
+        fi
+        ;;
+  restart)
+	$0 stop
+        sleep 3
+        $0 start
+        ;;
+    status)
+        $DAEMON  status
+	ERRNUM=$?
+	log_stat_msg ${ERRNUM}
+	exit ${ERRNUM}
+        ;;
+  *)
+        echo " Usage: $0 {start|stop|restart|reload|force-reload}" >&2
+        exit 1
+        ;;
+esac
 
-if ! is_set ${rcvar}; then 
-    eval "${rcvar}=YES"
-fi
-
-run_rc_command "$1"
-
Index: trunk/init/samhain.startGentoo.in
===================================================================
--- trunk/init/samhain.startGentoo.in	(revision 591)
+++ trunk/init/samhain.startGentoo.in	(revision 1)
@@ -11,4 +11,5 @@
 	/sbin/start-stop-daemon --start --quiet  --exec @sbindir@/@install_name@
 	eend $?
+	@sh_insmod_cmd@
 }
 
Index: trunk/init/samhain.startLSB.in
===================================================================
--- trunk/init/samhain.startLSB.in	(revision 591)
+++ trunk/init/samhain.startLSB.in	(revision 1)
@@ -3,6 +3,6 @@
 ### BEGIN INIT INFO
 # Provides: @install_name@
-# Required-Start: $syslog $network $remote_fs
-# Required-Stop: $syslog $network $remote_fs
+# Required-Start: $syslog $network
+# Required-Stop: $syslog $network
 # Default-Start: 2 3 4 5
 # Default-Stop: 0 1 6
Index: trunk/init/samhain.startLinux.in
===================================================================
--- trunk/init/samhain.startLinux.in	(revision 591)
+++ trunk/init/samhain.startLinux.in	(revision 1)
@@ -1,4 +1,3 @@
 #!/bin/bash
-
 # chkconfig: 2345 99 10
 # description: File Integrity Checking Daemon
@@ -10,14 +9,4 @@
 #
 
-### BEGIN INIT INFO
-# Provides: @install_name@
-# Required-Start: $syslog $network $remote_fs
-# Required-Stop: $syslog $network $remote_fs
-# Default-Start: 2 3 4 5
-# Default-Stop: 0 1 6
-# Short-Description: Keep an eye on stuff
-# Description: Keep an eye on stuff
-### END INIT INFO
-
 # For Debian
 #
@@ -40,13 +29,6 @@
 # and the command to run them.
 if [ -f /etc/redhat-release ]; then
-    if [ -f /etc/init.d/functions ]; then
 	. /etc/init.d/functions
 	DISTRO=redhat
-    elif [ -f /etc/rc.d/init.d/functions ]; then
-	. /etc/rc.d/init.d/functions
-	DISTRO=redhat
-    else
-	DISTRO=generic
-    fi
 elif [ -f /etc/mandrake-release ]; then
 	. /etc/init.d/functions
@@ -81,5 +63,5 @@
 fi
 
-debian_end()
+function debian_end ()
 {
 	if [ $RETVAL -eq 0 ];
@@ -121,5 +103,5 @@
 
 # echo OK in green if is success, FAILED in red is failed
-generic_end()
+function generic_end ()
 {
 	if [ $RETVAL -eq 0 ];
@@ -161,18 +143,11 @@
 	debian)
 		echo -n "Starting ${NAME}"
-		( /sbin/start-stop-daemon --start --oknodo --quiet --exec $DAEMON )
+		( /sbin/start-stop-daemon --start --quiet --exec $DAEMON )
 		RETVAL=$?
 		debian_end
 		;;
 	redhat)
-		if [ -f /etc/sysconfig/${NAME} ]; then
-                       . /etc/sysconfig/${NAME}
-                fi
 		echo -n $"Starting ${NAME}: "
-                if [ -n "$OPTIONS" ]; then
-                        daemon $DAEMON $OPTIONS
-                else
-                        daemon $DAEMON
-                fi
+		daemon $DAEMON
 		RETVAL=$?
 		[ $RETVAL -eq 0 ] && touch /var/lock/subsys/${NAME}
@@ -197,4 +172,10 @@
 		;;
 	esac
+	#
+	# The hiding kernel module
+	#
+	if [ $RETVAL -eq 0 ]; then
+		@sh_insmod_cmd@
+	fi
 	exit $RETVAL
 	;;
@@ -204,5 +185,5 @@
 	debian)
 		echo -n "Stopping $NAME"
-        	( /sbin/start-stop-daemon --stop --oknodo --quiet --exec $DAEMON )
+        	( /sbin/start-stop-daemon --stop --quiet --exec $DAEMON )
 		RETVAL=$? 
 		debian_end
Index: trunk/init/samhain.startMACOSX.in
===================================================================
--- trunk/init/samhain.startMACOSX.in	(revision 591)
+++ 	(revision )
@@ -1,27 +1,0 @@
-#!/bin/sh
-
-. /etc/rc.common
-
-StartService() {
-
-	ConsoleMessage "Starting service @install_name@."
-	@sbindir@/@install_name@ start
-
-}
-
-StopService() {
-
-	ConsoleMessage "Stopping service @install_name@."
-	@sbindir@/@install_name@ stop
-
-}
-
-RestartService() {
-
-	ConsoleMessage "Restarting service @install_name@."
-	@sbindir@/@install_name@ restart
-
-}
-
-
-RunService "$1"
Index: trunk/init/samhain.startSolaris.in
===================================================================
--- trunk/init/samhain.startSolaris.in	(revision 591)
+++ trunk/init/samhain.startSolaris.in	(revision 1)
@@ -9,5 +9,5 @@
 
 
-log_stat_msg() {
+log_stat_msg () {
 case "$1" in
 	0)
Index: trunk/init/samhain.startSystemd.in
===================================================================
--- trunk/init/samhain.startSystemd.in	(revision 591)
+++ 	(revision )
@@ -1,16 +1,0 @@
-
-[Unit]
-Description=The @install_name@ Service
-After=network.target remote-fs.target nss-user-lookup.target
-
-[Service]
-Type=forking
-PIDFile=@mylockfile@
-ExecStart=@sbindir@/@install_name@ start
-ExecStop=@sbindir@/@install_name@ stop
-ExecReload=@sbindir@/@install_name@ reload
-Restart=on-abort
-TimeoutStartSec=infinity
-
-[Install]
-WantedBy=multi-user.target
Index: trunk/man/samhain.8
===================================================================
--- trunk/man/samhain.8	(revision 591)
+++ trunk/man/samhain.8	(revision 1)
@@ -1,3 +1,3 @@
-.TH SAMHAIN 8 "26 June 2015" "" "Samhain manual"
+.TH SAMHAIN 8 "07 August 2004" "" "Samhain manual"
 .SH NAME
 samhain \- check file integrity
@@ -14,5 +14,5 @@
 {
 .I \-t update|\-\-set\-checksum\-test=update
-} [\-D | \-\-daemon | \-\-foreground] [\-\-forever] [\-r DEPTH|\-\-recursion=DEPTH] [log-options]
+} [\-r DEPTH|\-\-recursion=DEPTH] [log-options]
 
 .B samhain 
@@ -21,16 +21,4 @@
 } [\-D | \-\-daemon | \-\-foreground] [\-\-forever] [\-r DEPTH,\-\-recursion=DEPTH] [log-options]
 
-.B samhain 
-[ \-p threshold ] {
-.I \-\-verify\-database=database
-} 
-
-.B samhain 
-[ \-p threshold ] {
-.I \-\-create\-database=file\-list
-} 
-
-
-
 .SS "LISTING THE DATABASE"
 .PP
@@ -39,6 +27,4 @@
 [\-a | \-\-full\-detail]
 [\-\-delimited]
-[\-\-binary]
-[\-\-list\-filter=file]
 \-d 
 .IR file | 
@@ -64,7 +50,4 @@
 
 .B samhain
-.RI \-\-server\-port= portnumber
-
-.B samhain
 \-H 
 .I string 
@@ -74,7 +57,4 @@
 .B samhain
 \-c | \-\-copyright
-
-.B samhain
-\-v | \-\-version
 
 .B samhain
@@ -215,27 +195,4 @@
 [\-r DEPTH|\-\-recursion=DEPTH]
 Set the (global) recursion depth.
-.TP
-[\-D|\-\-daemon]
-Run as daemon. File checks are performed as specified by the timing
-options in the configuration file. Updates are saved after each file check.
-.TP
-[\-\-foreground]
-Run in the foreground. This will cause samhain to exit after the update,
-unless the option
-.I "\-\-forever"
-is used.
-.TP
-[\-\-forever]
-If not running as daemon, do not exit after finishing the update, but
-loop forever, and perform checks with corresponding database updates
-according to the timing options in the
-configuration file.
-.TP
-[\-i|\-\-interactive]
-Run update in interactive mode.
-.TP
-[\-\-listfile=PATH]
-Run the update with a list of 'good' filepaths given in file (one path per line).
-
 
 .PP
@@ -266,31 +223,4 @@
 configuration file.
 
-.PP
-.B samhain
-[ \-p\ threshold ]
-.I "\-\-verify\-database=database"
-
-Check the filesystem against the database given as argument,
-and exit with an appropriate exit status. The configuration file
-will 
-.B not
-be read.
-
-.PP
-.B samhain
-[ \-p\ threshold ]
-.I "\-\-create\-database=file\-list"
-
-Initialize a database from the given file list. 
-The configuration file
-will 
-.B not
-be read. The policy used will be
-.I ReadOnly.
-File content will be stored for a file
-if its path in the list is preceded with a 
-.B +
-sign.
-
 .SS "OPTIONS FOR LISTING THE DATABASE"
 .PP
@@ -310,24 +240,8 @@
 [\-a | \-\-full\-detail]
 List all informations for each file, not only those you would get
-with ls \-l. Must precede the \-d option.
+with ls \-l.
 .TP
 [\-\-delimited]
 List all informations for each file, in a comma-separated format.
-Must precede the \-d option.
-.TP
-[\-\-binary]
-List data in the binary format of the database, thus writing another
-database.
-Must precede the \-d option.
-.TP
-.RI [\-\-list\-filter= file ]
-Filter the output of the database listing by a list of files given
-in a text file. Together with \-\-binary this allows to write a
-partial database. Must precede the \-d option.
-.TP
-.RI [\-\-list\-file= file ]
-List the literal content of the given file as stored in the database.
-Content is not stored by default, must be enabled in the runtime
-configuration file. Must precede the \-d option.
 
 .SS "OPTIONS TO VERIFY AN AUDIT TRAIL"
@@ -372,9 +286,4 @@
 
 .B samhain
-.RI \-\-server\-port= portnumber
-
-Choose the port on the server host to which the client will connect.
-
-.B samhain
 \-H 
 .I string 
@@ -392,12 +301,7 @@
 
 .B samhain
-\-v | \-\-version 
-
-Show version and compiled-in options.
-
-.B samhain
 \-h | \-\-help 
 
-Print supported command line options (depending on compilation options).
+Print supported options (depending on compilation options).
 
 .B samhain
Index: trunk/man/samhainrc.5
===================================================================
--- trunk/man/samhainrc.5	(revision 591)
+++ trunk/man/samhainrc.5	(revision 1)
@@ -96,10 +96,4 @@
 .TP
 .I "[User1]"
-.TP
-.I "[User2]"
-.TP
-.I "[User3]"
-.TP
-.I "[User4]"
 These are reserved for user-defined policies.
 .TP
@@ -178,13 +172,7 @@
 .br
 .BI  SeverityUser0= val,
-.br
-.BI  SeverityUser1= val,
-.br
-.BI  SeverityUser2= val,
-.br
-.BI  SeverityUser3= val,
 and
 .br
-.BI  SeverityUser4= val
+.BI  SeverityUser1= val
 define the error levels for failures to verify the integrity of
 files/directories of the respective types. I.e. if such a file shows
@@ -253,4 +241,36 @@
 by same user, and logouts.
 .TP
+.I "[Kernel]"
+Configuration for detecting kernel rootkits.
+.br
+.BI KernelCheckActive= 0|1
+Switch off/on checking of kernel syscalls to detect kernel module rootkits.
+.br
+.BI KernelCheckInterval= val
+Interval (seconds) between checks.
+.br
+.BI SeverityKernel= val
+Severity level for clobbered kernel syscalls.
+.br
+.BI KernelCheckIDT= 0|1
+Whether to check the interrrupt descriptor table.
+.br
+.BI KernelSystemCall= address
+The address of system_call (grep system_call System.map). 
+Required after a kernel update.
+.br
+.BI KernelProcRoot= address
+The address of proc_root (grep ' proc_root$' System.map).
+Required after a kernel update.
+.br
+.BI KernelProcRootIops= address 
+The address of proc_root_inode_operations 
+(grep proc_root_inode_operations System.map).
+Required after a kernel update.
+.br
+.BI KernelProcRootLookup= address 
+The address of proc_root_lookup (grep proc_root_lookup System.map).
+Required after a kernel update.
+.TP
 .I "[SuidCheck]"
 Settings for finding SUID/SGID files on disk.
@@ -271,112 +291,4 @@
 .BI SuidCheckFps= fps 
 Limit files per seconds for SUID check. 
-.br
-.BI SuidCheckNosuid= 0|1 
-Check filesystems mounted as nosuid. Defaults to not.
-.br
-.BI SuidCheckQuarantineFiles= 0|1 
-Whether to quarantine files. Defaults to not.
-.br
-.BI SuidCheckQuarantineMethod= 0|1|2
-Quarantine method. Delete = 1, remove suid/sgid flags = 1, move to quarantine directory = 2. Defaults to 1 (remove suid/sgid flags).
-.br
-.BI 
-.TP
-.I "[Mounts]"
-Configuration for checking mounts.
-.br
-.BI MountCheckActive= 0|1
-Switch off/on this module.
-.br
-.BI MountCheckInterval= seconds
-  The interval between checks (default 300).
-.br
-.BI SeverityMountMissing= severity 
-Severity for reports on missing mounts. 
-.br
-.BI SeverityOptionMissing= severity 
-Severity for reports on missing mount options. 
-.br
-.BI CheckMount= path
-[mount_options]
-.br
-Mount point to check. Mount options must be given as 
-comma-separated list, separated by a blank from the preceding mount point.
-.TP
-.I "[UserFiles]"
-Configuration for checking paths relative to user home directories.
-.br
-.BI UserFilesActive= 0|1
-Switch off/on this module.
-.br
-.BI UserFilesName= filename 
-policy
-.br
-Files to check for under each $HOME. Allowed values for 'policy'
-are: allignore, attributes, logfiles, loggrow, noignore (default), 
-readonly, user0, user1, user2, user3, and user4.
-.br
-.BI UserFilesCheckUids= uid_list
-A list of UIDs where we want to check. The default
-is all. Ranges (e.g. 100-500) are allowed. If there is an open range (e.g.
-1000-), it must be last in the list.
-.TP
-.I "[ProcessCheck]"
-Settings for finding hidden/fake,required processes on the local host.
-.br
-.BI ProcessCheckActive= 0|1 
-Switch off/on the check.
-.br
-.BI ProcessCheckInterval= seconds
-  The interval between checks (default 300).
-.br
-.BI SeverityProcessCheck= severity 
-Severity for events (default crit). 
-.br
-.BI ProcessCheckMinPID= pid
-The minimum PID to check (default 0).
-.br
-.BI ProcessCheckMaxPID= pid
-The maximum PID to check (default 32767).
-.br
-.BI ProcessCheckPSPath= path 
-The path to ps (autodetected at compile time).
-.br
-.BI ProcessCheckPSArg= argument 
-The argument to ps (autodetected at compile time).
-Must yield PID in first column.
-.br
-.BI ProcessCheckExists= regular_expression
-Check for existence of a process matching the given regular expression.
-.TP
-.I "[PortCheck]"
-Settings for checking open ports on the local host.
-.br
-.BI PortCheckActive= 0|1 
-Switch off/on the check.
-.br
-.BI PortCheckInterval= seconds
-  The interval between checks (default 300).
-.br
-.BI PortCheckUDP= yes|no
-Whether to check UPD ports as well (default yes). 
-.br
-.BI SeverityPortCheck= severity 
-Severity for events (default crit). 
-.br
-.BI PortCheckInterface= ip_address 
-Additional interface to check.
-.br
-.BI PortCheckOptional= ip_address:list 
-Ports that may, but need not be open. The ip_address is the one
-of the interface, the list must be
-comma or whitespace separated, each item must be (port|service)/protocol,
-e.g. 22/tcp,nfs/tcp/nfs/udp.
-.br
-.BI PortCheckRequired= ip_address:list 
-Ports that are required to be open. The ip_address is the one
-of the interface, the list must be
-comma or whitespace separated, each item must be (port|service)/protocol,
-e.g. 22/tcp,nfs/tcp/nfs/udp.
 .TP
 .I "[Database]"
@@ -442,8 +354,4 @@
 Must be identical on client and server. 
 .br
-.BI StartupLoadDelay= val
-Defines the interval (in seconds) to wait after startup before
-loading the databse from the server. Default is no wait.
-.br
 .BI SetLoopTime= val
 Defines the interval (in seconds) for timestamps.
@@ -576,7 +484,4 @@
 for all.
 .br
-.BI FilenamesAreUTF8= yes|no
-Whether filenames are UTF-8 encoded (defaults to no). If yes, filenames
-are checked for invalid UTF-8 encoding and for ending in invisible characters.
 .br
 .BI IgnoreAdded= path_regex
@@ -609,7 +514,4 @@
 sets the hostname for the log server. 
 .br
-.BI SetServerPort= portnumber
-sets the port on the server to connect to. 
-.br
 .BI SetDatabasePath= AUTO|/path 
 Path to database (AUTO to tack hostname on compiled-in path). 
@@ -620,5 +522,5 @@
 .BI RedefReadOnly= +/-XXX,+/-YYY,...
 Add or subtract tests XXX from the ReadOnly policy.
-Tests are: CHK (checksum), TXT (store literal content), LNK (link), 
+Tests are: CHK (checksum), LNK (link), 
 HLN (hardlink), INO (inode), USR (user), GRP (group), MTM (mtime),
 ATM (atime), CTM (ctime), SIZ (size), RDEV (device numbers) 
@@ -645,13 +547,4 @@
 .BI RedefUser1= +/-XXX,+/-YYY,...
 Add or subtract tests XXX from the User1 policy.
-.br
-.BI RedefUser2= +/-XXX,+/-YYY,...
-Add or subtract tests XXX from the User2 policy.
-.br
-.BI RedefUser3= +/-XXX,+/-YYY,...
-Add or subtract tests XXX from the User3 policy.
-.br
-.BI RedefUser4= +/-XXX,+/-YYY,...
-Add or subtract tests XXX from the User4 policy.
 .TP
 .B Server Only
Index: trunk/rules.deb-light.in
===================================================================
--- trunk/rules.deb-light.in	(revision 591)
+++ trunk/rules.deb-light.in	(revision 1)
@@ -8,65 +8,88 @@
 #
 
+# Uncomment this to turn on verbose mode.
+#export DH_VERBOSE=1
 
-%:
-	dh $@ --with-autoreconf
+# This is the debhelper compatability version to use.
+export DH_COMPAT=1
+
+package=@install_name@
+
+# CAVEAT: including the --enable-base= option is for packages to be
+#         distributed INTERNALLY on your network, NOT for packages
+#         to be distributed to THIRD PARTIES
+
+build: build-stamp
+build-stamp:
+	dh_testdir
+	@top_srcdir@/configure @mydefargs@
+	$(MAKE) 
+	echo '#!/bin/sh' > ./sstrip
+	echo 'echo "*** SSTRIP DISABLED ***"' >> ./sstrip
+	touch build-stamp
+
+clean:
+	dh_testdir
+	dh_testroot
+	rm -f build-stamp
+	-[ -f Makefile ] && $(MAKE) distclean
+	dh_clean
+
+install: build
+	dh_testdir
+	dh_testroot
+	dh_clean -k
+	dh_installdirs
+
+	$(MAKE) install-light install-boot DESTDIR=`pwd`/debian/tmp
+
+	# However, remove the rc.d links
+	-rm -rf `pwd`/debian/tmp/etc/rc?.d
+
+	# Remove samhain_stealth for light install
+	-rm -f `pwd`/debian/tmp/@sbindir@/@install_name@_stealth
+
+# Build architecture-independent files here.
+binary-indep: build install
+# We have nothing to do by default.
 
 
-override_dh_clean:
-	[ ! -f Makefile ] || $(MAKE) distclean
-	-rm -f samhainrc.install
-	-rm -f build-stamp build-server-stamp build-client-stamp
-	dh_clean
-
-override_dh_auto_configure:
-	@top_srcdir@/configure @mydefargs@
-
-override_dh_auto_build:
-	dh_auto_build
-	if ! test x$(PASSWORD) = x; then \
-		if test -f samhain_setpwd; then \
-			./samhain_setpwd samhain new $(PASSWORD); \
-			rm samhain; \
-			mv samhain.new samhain; \
-		fi; \
-	fi
-
-override_dh_auto_install:
-	$(MAKE) install-light install-boot DESTDIR=`pwd`/debian/@install_name@
+# Build architecture-dependent files here.
+binary-arch: build install
+#	dh_testversion
+	dh_testdir
+	dh_testroot
+	dh_installdebconf	
+	# dh_installdocs
+	dh_installmenu
+	dh_installinit -- defaults 19
+	[ -f debian/postinst.debhelper ] && \
+	        cd debian && \
+		cat postinst.debhelper | \
+		    sed 's%/etc/init.d/@install_name@ start%:%' > postinst.tmp && \
+		    mv postinst.tmp postinst.debhelper
+	[ -f debian/prerm.debhelper ] && \
+		cd debian && \
+		cat prerm.debhelper | \
+		    sed 's%/etc/init.d/@install_name@ stop%/etc/init.d/@install_name@ stop || echo service @install_name@ already stopped%' > prerm.tmp && \
+		    mv prerm.tmp prerm.debhelper
+	# dh_installmanpages
+	# dh_installchangelogs @top_srcdir@/docs/Changelog
+	dh_link
+	# dh_strip
+	dh_compress
+	dh_fixperms
+	dh_installdeb
+	dh_shlibdeps
+	dh_gencontrol
+	dh_md5sums
+	dh_builddeb
 
 
-override_dh_install:
-	# However, remove the rc.d links
-	-rm -rf `pwd`/debian/@install_name@/etc/rc?.d
-	# Remove samhain_stealth for light install
-	-rm -f `pwd`/debian/@install_name@/@sbindir@/@install_name@_stealth
-	# remove samhain_setpwd if not needed
-	if ! test x$(PASSWORD) = x; then \
-		rm -f `pwd`/debian/@install_name@/@sbindir@/@install_name@_setpwd; \
-	fi
+define checkdir
+	test -f debian/rules
+endef
 
-override_dh_installdocs:
-	# do nothing
+binary: binary-indep binary-arch
+.PHONY: build clean binary-indep binary-arch binary install
 
-override_dh_installchangelogs:
-	# do nothing
-
-override_dh_installman:
-	# do nothing
-
-override_dh_installinit:
-	dh_installinit --no-start -- defaults 19
-
-override_dh_usrlocal:
-	# do nothing
-
-override_dh_fixperms:
-	dh_fixperms
-	# Fix the permissions
-	chmod o-rX `pwd`/debian/@install_name@/@mydataroot@ \
-		`pwd`/debian/@install_name@/@myrpmconffile@
-	if ! test "x@mylogdir@" = "x/var/log"; then \
-		chmod o-rX `pwd`/debian/@install_name@/@mylogdir@; \
-	fi
-
-
Index: trunk/rules.deb.in
===================================================================
--- trunk/rules.deb.in	(revision 591)
+++ trunk/rules.deb.in	(revision 1)
@@ -8,59 +8,109 @@
 #
 
-%:
-	dh $@ --with-autoreconf
+# Uncomment this to turn on verbose mode.
+#export DH_VERBOSE=1
 
-override_dh_clean:
-	[ ! -f Makefile ] || $(MAKE) distclean
-	-rm -f samhainrc.install
-	-rm -f build-stamp build-server-stamp build-client-stamp
+# This is the debhelper compatability version to use.
+export DH_COMPAT=1
+
+package=@install_name@
+
+# CAVEAT: including the --enable-base= option is for packages to be
+#         distributed INTERNALLY on your network, NOT for packages
+#         to be distributed to THIRD PARTIES
+
+build: build-stamp
+build-stamp:
+	dh_testdir
+	@top_srcdir@/configure @mydefargs@
+	$(MAKE) 
+	# echo '#!/bin/sh' > ./sstrip
+	# echo 'echo "*** SSTRIP DISABLED ***"' >> ./sstrip
+	touch build-stamp
+
+clean:
+	dh_testdir
+	dh_testroot
+	rm -f build-stamp
+	-[ -f Makefile ] && $(MAKE) distclean
 	dh_clean
 
-override_dh_auto_configure:
-	@top_srcdir@/configure @mydefargs@
+install: build
+	dh_testdir
+	dh_testroot
+	dh_clean -k
+	dh_installdirs
 
-override_dh_auto_build:
-	dh_auto_build
-	if ! test x$(PASSWORD) = x; then \
-		if test -f samhain_setpwd; then \
-			./samhain_setpwd samhain new $(PASSWORD); \
-			rm samhain; \
-			mv samhain.new samhain; \
-		fi; \
-	fi
+	# Fix the permissions
+	#chmod o-rX `pwd`/debian/tmp/var/log/samhain \
+	#	`pwd`/debian/tmp/var/run/samhain \
+	#	`pwd`/debian/tmp/var/state/samhain \
+	#	`pwd`/debian/tmp/etc/samhain
 
-override_dh_auto_install:
-	$(MAKE) install install-boot DESTDIR=`pwd`/debian/@install_name@
+	$(MAKE) install install-boot DESTDIR=`pwd`/debian/tmp
 
-override_dh_install:
 	# However, remove the rc.d links
-	-rm -rf `pwd`/debian/@install_name@/etc/rc?.d
+	-rm -rf `pwd`/debian/tmp/etc/rc?.d
 
-override_dh_installdocs:
-	dh_installdocs
-	[ -f debian/@install_name@/usr/share/doc/@install_name@/MANUAL-2_4.html.tar ] && \
-		cd debian/@install_name@/usr/share/doc/@install_name@ && \
-		tar xf MANUAL-2_4.html.tar && mv MANUAL-2_4 manual.html && \
-		rm -f MANUAL-2_4.html.tar
-	[ -f debian/@install_name@/usr/share/doc/@install_name@/MANUAL-2_4.pdf ] && \
-		cd debian/@install_name@/usr/share/doc/@install_name@ && \
-		mv MANUAL-2_4.pdf manual.pdf
+	# install -m 755 encode `pwd`/debian/tmp/usr/bin/samhain_encode
 
-override_dh_installchangelogs:
-	dh_installchangelogs docs/Changelog
+	# install -m 644 profiles/debianlinux_i386/samhainrc `pwd`/debian/tmp@myconffile@
+	# install -m 644 debian/samhain.logrotate `pwd`/debian/tmp/etc/logrotate.d/samhain
 
-override_dh_installinit:
-	dh_installinit --no-start -- defaults 19
+# Build architecture-independent files here.
+binary-indep: build install
+# We have nothing to do by default.
 
-override_dh_usrlocal:
-	# do nothing
 
-override_dh_fixperms:
+# Build architecture-dependent files here.
+binary-arch: build install
+#	dh_testversion
+	dh_testdir
+	dh_testroot
+	dh_installdebconf	
+	dh_installdocs 
+	[ -f debian/tmp/usr/share/doc/@install_name@/MANUAL-2_0.html.tar ] && \
+		cd debian/tmp/usr/share/doc/@install_name@ && \
+		tar xf MANUAL-2_0.html.tar && mv MANUAL-2_0 manual.html && \
+		rm -f MANUAL-2_0.html.tar
+	dh_installexamples @top_srcdir@/scripts/example_pager.pl \
+		@top_srcdir@/scripts/example_sms.pl \
+		@top_srcdir@/scripts/report.pl \
+		@top_srcdir@/scripts/concat.pl \
+		@top_srcdir@/scripts/samhain.logrotator \
+		@top_srcdir@/scripts/samhainadmin.pl \
+		@top_srcdir@/scripts/check_samhain.pl \
+		@top_srcdir@/yulerc.template \
+		@top_srcdir@/samhainrc.linux
+	dh_installmenu
+	dh_installinit -- defaults 19
+	[ -f debian/postinst.debhelper ] && \
+	        cd debian && \
+		cat postinst.debhelper | \
+		    sed 's%/etc/init.d/@install_name@ start%:%' > postinst.tmp && \
+		    mv postinst.tmp postinst.debhelper
+	[ -f debian/prerm.debhelper ] && \
+		cd debian && \
+		cat prerm.debhelper | \
+		    sed 's%/etc/init.d/@install_name@ stop%/etc/init.d/@install_name@ stop || echo service @install_name@ already stopped%' > prerm.tmp && \
+		    mv prerm.tmp prerm.debhelper
+	# dh_installmanpages
+	dh_installchangelogs @top_srcdir@/docs/Changelog
+	dh_link
+	# dh_strip
+	dh_compress
 	dh_fixperms
-	# Fix the permissions
-	chmod o-rX `pwd`/debian/@install_name@/@mydataroot@ \
-		`pwd`/debian/@install_name@/@myrpmconffile@
-	if ! test "x@mylogdir@" = "x/var/log"; then \
-		chmod o-rX `pwd`/debian/@install_name@/@mylogdir@; \
-	fi
+	dh_installdeb
+	dh_shlibdeps
+	dh_gencontrol
+	dh_md5sums
+	dh_builddeb
 
+
+define checkdir
+	test -f debian/rules
+endef
+
+binary: binary-indep binary-arch
+.PHONY: build clean binary-indep binary-arch binary install
+
Index: trunk/samhain-install.sh.in
===================================================================
--- trunk/samhain-install.sh.in	(revision 591)
+++ trunk/samhain-install.sh.in	(revision 1)
@@ -27,12 +27,6 @@
 myhtmlfile=@myhtmlfile@
 
-datarootdir=@datarootdir@
-
 INSTALL_SHELL="$0 --install-sh -m 700"
 INSTALL_DATA="$0 --install-sh  -m 600"
-
-# systemd exposes service files via API and generates an annoying warning message
-#
-INSTALL_SYSTEMD="$0 --install-sh  -m 644"
 
 mkinstalldirs="$0 --mkinstalldirs"
@@ -69,5 +63,5 @@
     echo 'action = install-boot|install-data|install-user'
     echo '         uninstall|purge|uninstall-boot'
-    echo '         uninstall-data|uninstall-man|uninstall-program'
+    echo '         uninstall-data|uninstall-man|uninstall-program|uninstall-lkm'
     echo 'samhain-install.sh --print-config '
     echo 'item = name | basekey | prefix | exec_prefix | sbin_dir | man_dir'
@@ -518,4 +512,8 @@
 	    break;;
 
+	uninstall-lkm)
+	    act=ulkm
+	    break;;
+
 	uninstall | remove | purge)
 	    opts=
@@ -525,4 +523,6 @@
 	    test x"$DESTDIR" = "x" || opts="$opts --destdir=$DESTDIR"
 	    test x"$1" = "xpurge" && purge=yes
+	    echo "$0 $opts uninstall-lkm"
+	    eval $0 $opts uninstall-lkm
 	    echo "$0 $opts uninstall-program"
 	    eval $0 $opts uninstall-program
@@ -672,5 +672,5 @@
        realname="$user"
        case "$platform" in
-           FreeBSD/* | NetBSD/* | OpenBSD/* )
+           FreeBSD/* | NetBSD/* )
               file=/etc/master.passwd
               entry="${user}:*:${uid}:${gid}::0:0:${realname}:${home}:${shell}"
@@ -678,5 +678,5 @@
               break
 	      ;;
-           Linux/* | GNU/kFreeBSD/* | GNU/* )
+           Linux/* )
                file=/etc/passwd
                entry="${user}:*:${uid}:${gid}:${realname}:${home}:${shell}"
@@ -757,14 +757,4 @@
 
     case "$platform" in
-    Darwin/*)
-	DVER="MACOSX"
-	test -z "$verbose" || echo "MacOS X system detected"
-	rc_main="/Library/StartupItems/${samhain}"
-	${mkinstalldirs} ${rc_main}
-	rc_dirz=
-	rc_inst="(cd /Library/StartupItems/${samhain} && echo '{' >StartupParameters.plist && echo '  Description        = \"@install_name@\";'  >>StartupParameters.plist && echo '  Provides           = (\"@install_name@\");' >>StartupParameters.plist && echo '  Requires           = (\"Network\");'      >>StartupParameters.plist && echo '  OrderPreference     = \"Last\";' >>StartupParameters.plist && echo '}' >>StartupParameters.plist && chmod 644 StartupParameters.plist; )"
-	rc_uinst="rm -rf /Library/StartupItems/@install_name@"
-	;;
-
     IRIX*/*)
         DVER="IRIX"
@@ -782,5 +772,5 @@
 	rc_main=@sbindir@
 	rc_dirz=
-	rc_inst="/usr/sbin/mkitab '@install_name@:2:wait:@sbindir@/@install_name@ start >/dev/console 2>&1'"
+	rc_inst="/usr/sbin/mkitab -i '@install_name@:2:wait:@sbindir@/@install_name@ start >/dev/console 2>&1'"
 	rc_uinst="/usr/sbin/rmitab @install_name@"
 	;;
@@ -795,56 +785,11 @@
 	;;
 
-    OpenBSD/*)
-	test -z "$verbose" || echo "  OpenBSD system detected"
-	grep '^## begin @install_name@' /etc/rc.local >/dev/null 2>&1
-	if [ $? -eq 0 ]; then
-	    RCLOCALTMP=`mktemp /etc/rc.local.XXXXXXXXXX` || exit 1
-	    sed "/^## begin @install_name@/,/^## end @install_name@/d" /etc/rc.local >$RCLOCALTMP || exit 1
-	    cat $RCLOCALTMP >/etc/rc.local || exit 1
-	    rm -f $RCLOCALTMP || exit 1
-	    if test x"$act" = xuboot; then
-		echo "  uninstalling from /etc/rc.local completed"
-	    fi
-	fi
-	if test x"$act" = xboot; then
-	    echo "## begin @install_name@"          >>/etc/rc.local || exit 1
-	    echo "if [ -x @sbindir@/@install_name@ ]; then" >>/etc/rc.local || exit 1
-	    echo "  @sbindir@/@install_name@ start" >>/etc/rc.local || exit 1
-	    echo "fi"                               >>/etc/rc.local || exit 1
-	    echo "## end @install_name@"            >>/etc/rc.local || exit 1
-	    echo "  installing to /etc/rc.local completed"
-	fi
-	exit 0
-	;;
-
-    NetBSD/*)
-	test -z "$verbose" || echo "  NetBSD system detected"
-	if test -f /etc/rc.subr; then
-	    DVER="FreeBSD"
-	    rc_main=${DESTDIR}/etc/rc.d
-	    rc_dirz=
-	    rc_inst="chmod 755 /etc/rc.d/@install_name@"
-	    rc_uinst="rm -f /etc/rc.d/@install_name@"
-	else
-	    echo "${0}: unsupported platform ${platform} (too old)"
-	    exit 1
-	fi
-	;;
-
     FreeBSD/* )
+	DVER="FreeBSD"
 	test -z "$verbose" || echo "  FreeBSD system detected"
-	if test -f /etc/rc.subr; then
-	    DVER="FreeBSD"
-	    rc_main=${DESTDIR}/etc/rc.d
-	    rc_dirz=
-	    rc_inst="chmod 755 /etc/rc.d/@install_name@"
-	    rc_uinst="rm -f /etc/rc.d/@install_name@"
-	else
-	    DVER="Solaris"
-	    rc_main=${DESTDIR}/usr/local/etc/rc.d
-	    rc_dirz=
-	    rc_inst="mv /usr/local/etc/rc.d/@install_name@ /usr/local/etc/rc.d/@install_name@.sh && chmod 755 /usr/local/etc/rc.d/@install_name@.sh"
-	    rc_uinst="rm -f /usr/local/etc/rc.d/@install_name@.sh"
-	fi
+	rc_main=${DESTDIR}/usr/local/etc/rc.d
+	rc_dirz=
+	rc_inst="mv /usr/local/etc/rc.d/@install_name@ /usr/local/etc/rc.d/@install_name@.sh &&  chmod 755 /usr/local/etc/rc.d/@install_name@.sh"
+	rc_uinst="rm -f /usr/local/etc/rc.d/@install_name@.sh; echo You may want to remove ${rc_main} from local_startup in /etc/rc.conf; echo if it is empty"
 	if test x"$act" = xboot
 	then
@@ -852,5 +797,4 @@
 		test x"$act" = xboot && mkdir ${rc_main}
 	    fi
-	    if test "x$DVER" = "xSolaris"; then
 	    (   . /etc/defaults/rc.conf
                 . /etc/rc.conf
@@ -870,11 +814,8 @@
                 fi
             )
-	    fi
-	fi
+       fi
 	;;
-
     SunOS/5.* )
 	DVER="Solaris"
-	DVER_REAL="Solaris"
 	test -z "$verbose" || echo "  Solaris system detected"
 	rc_dirz=
@@ -883,6 +824,5 @@
 	rc_uinst="rm -f ${DESTDIR}/etc/init.d/@install_name@; rm -f ${DESTDIR}/etc/rc0.d/K10@install_name@; rm -f ${DESTDIR}/etc/rc1.d/K10@install_name@; rm -f ${DESTDIR}/etc/rc3.d/S99@install_name@"
 	;;
-
-    Linux/* | GNU/kFreeBSD* | GNU/* )
+    Linux/*)
 	rlv="2 3 4 5"
 	linkopt="-f -s"
@@ -897,5 +837,5 @@
 		rc_dirz=
 		rc_inst="/usr/lib/lsb/install_initd /etc/init.d/@install_name@"
-		rc_uinst="test -f /etc/init.d/@install_name@ && /usr/lib/lsb/remove_initd /etc/init.d/@install_name@"
+		rc_uinst="/usr/lib/lsb/remove_initd /etc/init.d/@install_name@"
 	    else
 		rc_inst=
@@ -1036,13 +976,4 @@
     fi
 
-    rc_systemd=
-    if command -v pkg-config >/dev/null 2>&1
-    then
-	if pkg-config --exists systemd >/dev/null 2>&1
-	then
-	   rc_systemd=`pkg-config --variable=systemdsystemunitdir systemd`
-	fi
-    fi
-	   
     if test x"${act}" = xboot 
     then
@@ -1074,5 +1005,5 @@
 		    ${mkinstalldirs} ${rc_main}
 		    #
-		    if test x"${DVER_REAL}" = xSolaris; then
+		    if test x"$DVER" = xSolaris; then
 			${mkinstalldirs} ${DESTDIR}/etc/rc0.d
 			${mkinstalldirs} ${DESTDIR}/etc/rc1.d
@@ -1119,31 +1050,4 @@
 	   fi
  	fi
-
-	if test x"${rc_systemd}" != x
-	then
-	    if test x"$DESTDIR" = x
-	    then
-		:
-	    else
-		${mkinstalldirs} ${DESTDIR}/${rc_systemd}
-	    fi
-            if test -f init/samhain.startSystemd
-	    then
-		servicescript=init/samhain.startSystemd
-	    elif test -f samhain.startSystemd
-	    then
-		servicescript=samhain.startSystemd
-	    else
-		echo "${0}: cannot find samhain.startSystemd in ./ or ./init"
-            fi
-	    if test -f ${DESTDIR}/${rc_systemd}/${samhain}.service && test x"$force" != xyes
-	    then
-		echo "  ${DESTDIR}/${rc_systemd}/${samhain}.service exists ... not overwritten (or use --force)"
-	    else
-		test -z "$verbose" || echo "  installing ${servicescript} as ${DESTDIR}/${rc_systemd}/${samhain}.service"
-		${INSTALL_SYSTEMD} ${servicescript} "${DESTDIR}/${rc_systemd}/${samhain}.service"
-	    fi
-	fi
-
 	echo "installing init scripts completed"
     fi
@@ -1163,18 +1067,12 @@
 	    do
 	      test -z "$verbose" || echo "  rm -f  ${rc_dirz}${ff}.d/S99${samhain}"
-	      rm -f  "${rc_dirz}${ff}.d/S99${samhain}"
+	      rm -f  ${rc_dirz}${ff}.d/S99${samhain}
 	      test -z "$verbose" || echo "  rm -f  ${rc_dirz}${ff}.d/S99${samhain}"
-	      rm -f  "${rc_dirz}${ff}.d/K10${samhain}"
+	      rm -f  ${rc_dirz}${ff}.d/K10${samhain}
 	    done
         fi
 
 	test -z "$verbose" || echo "  rm -f ${rc_main}/${samhain}"
-	rm -f "${rc_main}/${samhain}"
-
-	if test x"${rc_systemd}" != x
-	then
-	    test -z "$verbose" || echo "  rm -f  ${rc_systemd}/${samhain}.service"
-	    rm -f "${rc_systemd}/${samhain}.service"
-	fi
+	rm -f ${rc_main}/${samhain}
 
 	echo "  uninstalling init scripts completed"
@@ -1185,10 +1083,31 @@
 fi
 
+if test x"${act}" = xulkm
+then
+    RVER=`uname -r`
+    if test "x@sh_lkm@" != "x"; then
+        if test -d /lib/modules/$RVER; then 
+	    MODDIR="/lib/modules/$RVER"
+	elif test -d /lib/modules/misc; then 
+	    MODDIR="/lib/modules/misc"
+	elif test -d /lib/modules; then 
+	    MODDIR="/lib/modules/misc"
+	fi
+        # -- NEW --
+	ALLMODS="@sh_lkm@"
+        for p in $ALLMODS; do
+            test -z "$verbose" || echo "  rm -f ${DESTDIR}${MODDIR}/`echo $p|sed '
+s%samhain%@install_name@%'`"
+            rm -f ${DESTDIR}${MODDIR}/`echo $p|sed 's%samhain%@install_name@%'`
+        done
+    fi
+fi
+
 if test x"${act}" = xuprogram
 then
-    PROGRAMS="@setpwd_prg@ @stegin_prg@ @yulectl_prg@ @sh_main_prg@ @samhainadmin_prg@"
+    PROGRAMS="@setpwd_prg@ @stegin_prg@ @yulectl_prg@ @sh_main_prg@"
     for p in $PROGRAMS; do
-	test -z "$verbose" || echo "  rm -f ${DESTDIR}${sbindir}/`echo $p|sed 's%samhain%@install_name@%'|sed 's%yule%@install_name@%'|sed 's%.*/%%'`"
-	rm -f ${DESTDIR}${sbindir}/`echo $p|sed 's%samhain%@install_name@%'|sed 's%yule%@install_name@%'|sed 's%.*/%%'`
+	test -z "$verbose" || echo "  rm -f ${DESTDIR}${sbindir}/`echo $p|sed 's%samhain%@install_name@%'|sed 's%yule%@install_name@%'`"
+	rm -f ${DESTDIR}${sbindir}/`echo $p|sed 's%samhain%@install_name@%'|sed 's%yule%@install_name@%'`
     done
     test -z "$verbose" || echo $ECHO_N "  ${SH_RMDIR} ${DESTDIR}${sbindir} ... $ECHO_C"
@@ -1281,17 +1200,4 @@
 	else
 	    test -z "$verbose" || echo "${ECHO_T}failed (not empty ?)"
-	fi
-
-	
-	if test -d /etc/logrotate.d; then
-	    if test -f /etc/logrotate.d/@install_name@; then
-		test -z "$verbose" || echo $ECHO_N "  rm -f /etc/logrotate.d/@install_name@ ... $ECHO_C"
-		rm -f /etc/logrotate.d/@install_name@;
-		if test x$? = x0; then
-		     test -z "$verbose" || echo "${ECHO_T}done"
-		else
-		    test -z "$verbose" || echo "${ECHO_T}failed"
-		fi
-	    fi
 	fi
 
@@ -1344,7 +1250,4 @@
 
     GPGPATH=@mygpg@
-    SIGNIFY_PATH=@mysignify@
-    TARGETKEYID=@mykeyid@
-    KEYTAG=@mykeytag@
 
     NTEST=@mytclient@
@@ -1391,5 +1294,5 @@
 	echo "You need to sign the config file now"
 	echo
-	test -z "$verbose" || echo "  ${GPGPATH} -a ${KEYTAG} ${TARGETKEYID} --clearsign $RCFILE"
+	test -z "$verbose" || echo "  ${GPGPATH} -a --clearsign $RCFILE"
 	if test x"${NTEST}" = "x-DSH_WITH_SERVER"
 	then
@@ -1400,10 +1303,10 @@
 		DOT_GNUPG=`eval echo ~${samhain}/.gnupg`
 	        test -z "$verbose" || echo "  using --homedir ${DOT_GNUPG}"
-		${GPGPATH} --homedir ${DOT_GNUPG} -a ${KEYTAG} ${TARGETKEYID} --clearsign $RCFILE
+		${GPGPATH} --homedir ${DOT_GNUPG} -a --clearsign $RCFILE
 	    else
-		${GPGPATH} -a ${KEYTAG} ${TARGETKEYID} --clearsign $RCFILE
-	    fi
-	else
-	    ${GPGPATH} -a ${KEYTAG} ${TARGETKEYID} --clearsign $RCFILE
+		${GPGPATH} -a --clearsign $RCFILE
+	    fi
+	else
+	    ${GPGPATH} -a --clearsign $RCFILE
 	fi
 
@@ -1422,40 +1325,4 @@
 	    cp ${RCFILE} samhainrc.pre
         fi
-    elif test x"${SIGNIFY_PATH}" != x
-    then
-	echo
-	echo "You need to sign the config file now"
-	echo
-	test -z "$verbose" || echo "  ${SIGNIFY_PATH} -Se -s ~/.signify/samhain.sec -m $RCFILE"
-	if test x"${NTEST}" = "x-DSH_WITH_SERVER"
-	then
-	    myident_uid=`(cat /etc/passwd; ypcat passwd) 2>/dev/null |\
-		  grep "^${samhain}:" | awk -F: '{ print $3; }'`
-	    if test x"${myident_uid}" != x
-	    then
-		DOT_SIGNIFY=`eval echo ~${samhain}/.signify`
-	        test -z "$verbose" || echo "  using home directory ${DOT_SIGNIFY}"
-		${SIGNIFY_PATH} -Se -s ${DOT_GNUPG}/samhain.sec $RCFILE
-	    else
-		${SIGNIFY_PATH} -Se -s  ~/.signify/samhain.sec -m $RCFILE
-	    fi
-	else
-	    ${SIGNIFY_PATH} -Se -s  ~/.signify/samhain.sec -m $RCFILE
-	fi
-
-	if test -f ${RCFILE}.sig
-	then
-	    test -z "$verbose" || echo "  mv -f ${RCFILE}.sig samhainrc.pre"
-	    mv -f ${RCFILE}.sig samhainrc.pre
-	else
-	    echo "**********************************************************"
-	    echo
-	    echo "${0}: ERROR: cannot find signed file ${RCFILE}.sig"
-	    echo
-	    echo "   --- You need to sign the configuration file ---"
-	    echo
-	    echo "**********************************************************"
-	    cp ${RCFILE} samhainrc.pre
-        fi
     else
 	test -z "$verbose" || echo "  cp $RCFILE samhainrc.pre"
@@ -1484,25 +1351,20 @@
 	IFS=${OIFS}
 
-	if test -f stealth_template.ps
-	then
-	    PATH=${OPATH}
-	else
-	    if test x"${CONVERT}" = x
-	    then
-		echo "${0}: cannot find ImageMagick convert utility in PATH=${PATH}"
-		exit 1
-            fi
-
-	    PATH=${OPATH}
-
- 	    if test -f stealth_template.jpg
-	    then
-		test -z "$verbose" || echo "  ${CONVERT} +compress stealth_template.jpg stealth_template.ps"
-		"${CONVERT}" +compress stealth_template.jpg stealth_template.ps
-	    else
-		echo "${0}: cannot find file stealth_template.jpg"
-		exit 1
-            fi
-	fi
+	if test x"${CONVERT}" = x
+	then
+	    echo "${0}: cannot find ImageMagick convert utility in PATH=${PATH}"
+	    exit 1
+        fi
+
+	PATH=${OPATH}
+
+ 	if test -f stealth_template.jpg
+	then
+	    test -z "$verbose" || echo "  ${CONVERT} +compress stealth_template.jpg stealth_template.ps"
+	    "${CONVERT}" +compress stealth_template.jpg stealth_template.ps
+	else
+	    echo "${0}: cannot find file stealth_template.jpg"
+	    exit 1
+        fi
 
 
Index: trunk/samhain.spec.in
===================================================================
--- trunk/samhain.spec.in	(revision 591)
+++ trunk/samhain.spec.in	(revision 1)
@@ -14,16 +14,6 @@
 Packager: Andre Oliveira da Costa 
 Provides: %{name}
-%if 0%{?suse_version}
-Requires(pre): shadow
-%else
-Requires(pre): shadow-utils
-%endif
-
-# dummy (fix configure warning)
-# datarootdir = @datarootdir@
 
 # no quotes here - aparently will be expanded literally
-
-%define password %(echo $PASSWORD)
 
 %define withpwd_prg x@clmytclient@
@@ -72,14 +62,7 @@
 ./configure @mydefargs@ 
 make
-%if "%{withpwd_prg}" == "xDSH_WITH_CLIENT"
-%if "%{password}" != ""
-        ./samhain_setpwd samhain new %{password}
-	mv samhain samhain.old
-	mv samhain.new samhain
-%endif
-%endif
-
 
 %install
+
 rm -rf ${RPM_BUILD_ROOT}
 # sstrip shouldn't be used since binaries will be stripped later
@@ -92,5 +75,5 @@
 # after the package is installed
 #
-install -m 700 samhain-install.sh init/samhain.startLinux init/samhain.startLSB init/samhain.startSystemd ${RPM_BUILD_ROOT}@mydataroot@
+install -m 700 samhain-install.sh init/samhain.startLinux init/samhain.startLSB ${RPM_BUILD_ROOT}@mydataroot@
 #
 # file list (helpful advice from Lars Kellogg-Stedman)
@@ -103,23 +86,18 @@
 rm -rf ${RPM_BUILD_ROOT}
 
-%pre
-if test "x@install_name@" = "xyule"
-then
-    getent group samhain >/dev/null || groupadd -r samhain
-    getent passwd yule >/dev/null || \
-	useradd -r -g samhain -d  @mydataroot@ -s /sbin/nologin \
-	-c "samhain server daemon" yule
-
-fi
-exit 0
-
 %post
+if test "x@sh_lkm@" = x; then
+   :
+else
+   if test -f /sbin/depmod; then
+     /sbin/depmod -a
+   fi
+fi
 if [ "$1" -ge 1 ]; then
         # Activate boot-time start up
         cd @mydataroot@
-        /bin/sh ./samhain-install.sh --verbose install-boot
+        ./samhain-install.sh --verbose install-boot
 	rm -f ./samhain.startLSB
 	rm -f ./samhain.startLinux
-	rm -f ./samhain.startSystemd
 	if [ -f @sbindir@/@install_name@_stealth ]; then
 		rm -f samhain-install.sh
@@ -174,5 +152,5 @@
         cd @mydataroot@
         if [ -f ./samhain-install.sh ]; then
-	    /bin/sh ./samhain-install.sh --verbose uninstall-boot
+	    ./samhain-install.sh --verbose uninstall-boot
 	else
 	    if test -f /usr/lib/lsb/remove_initd; then
@@ -183,16 +161,23 @@
 fi
 
+%postun
+if [ "$1" = 0 ]; then
+        # remove any kernel modules that might have been installed
+        RVER=`uname -r`
+	MODFILES=`ls /lib/modules/$RVER/@install_name@* 2>/dev/null`
+	if test "x$MODFILES" = x; then
+		:
+	else
+        	rm -f /lib/modules/$RVER/@install_name@*
+	fi
+fi
 
 
 %files -f sh_file_list
 %defattr(-,root,root)
-%if "@mylockdir@" != "/run" || "@mylockdir@" != "/var/run"
-	%dir @mylockdir@
-%endif
-%if "@mylogdir@" != "/var/log"
-	%dir @mylogdir@
-%endif
-%doc docs/BUGS COPYING docs/Changelog 
-%doc LICENSE docs/FAQ.html docs/HOWTO* docs/MANUAL-2_4.* docs/README*
+%dir @mylockdir@
+%dir @mylogdir@
+%doc docs/BUGS COPYING docs/Changelog docs/TODO
+%doc LICENSE docs/FAQ.html docs/HOWTO* docs/MANUAL-2_0.* docs/README*
 @mydataroot@
 %if "%{withstg_prg}" == "xsamhain_stealth"
@@ -204,36 +189,11 @@
 %if "%{withpwd_prg}" == "xDSH_WITH_SERVER"
         @sbindir@/@install_name@ctl
-	@sbindir@/@install_name@admin-sig.pl
-	@sbindir@/@install_name@admin-gpg.pl
         %exclude @sbindir@/@install_name@_setpwd
 %endif
 %attr(644,root,root) @mandir@/man5/@install_name@*
 %attr(644,root,root) @mandir@/man8/@install_name@*
-%attr(644,root,root) /etc/logrotate.d/@install_name@
-%if "%{name}" == "yule"
-%attr(750,root,samhain) @mydataroot@ 
-%attr(750,yule,samhain) @mylogdir@ 
-%endif
 %config(noreplace) @myrpmconffile@
 
 %changelog
-* Tue Jul 28 2020 Rainer Wichmann
-- fix bogus date
-- fix for recent split into samhainadmin-gpg.pl, samhainadmin-sig.pl
-
-* Wed May 01 2019 Rainer Wichmann
-- remove obsolete part fpr sh_lkm
-- add fixes by Franky Van L. (password, directory ownership)
-
-* Mon Dec 18 2017 Rainer Wichmann
-- patch for SLES12 by Pirmin
-- fix missing yuleadmin.pl file
-
-* Tue Oct 23 2012 Rainer Wichmann
-- fixes for yule installation
-
-* Tue May 16 2006 Rainer Wichmann
-- fix manual version, noticed by Imre Gergely
-
 * Tue Apr 05 2005 Rainer Wichmann
 - disable automatic stripping, use sstrip
@@ -268,5 +228,5 @@
 - Compiled on RedHat Enterprise Linux ES 3
 
-* Wed Mar 26 2003 Rainer Wichmann
+* Thu Mar 26 2003 Rainer Wichmann
 - strip REQ_FROM_SERVER in config file path (%config(noreplace) ...)
 
Index: trunk/samhainrc.freebsd
===================================================================
--- trunk/samhainrc.freebsd	(revision 591)
+++ trunk/samhainrc.freebsd	(revision 1)
@@ -61,160 +61,50 @@
 # RedefUser1=(no default)
 
-#
-# --------- / --------------
-#
-
-[ReadOnly]
-dir = 0/
-
 [Attributes]
-file = /
-file = /proc
-file = /entropy
-file = /tmp
-file = /var
-
-#
-# --------- /dev -----------
-#
-
-[Attributes]
-dir = 99/dev
+##
+## for these files, only changes in permissions and ownership are checked
+##
+
+file=/usr/compat/linux/etc
+file=/usr/compat/linux/etc/ld.so.cache
+
+dir=/var/mail
+dir=/var/spool/lp/tmp
+dir=/var/tmp
+# dir=/var/dt/tmp
+dir=/tmp
+
+
+[LogFiles]
+##
+## for these files, changes in signature, timestamps, and size are ignored 
+##
+
+file=/var/run/utmp
+
+
+[GrowingLogFiles]
+##
+## for these files, changes in signature, timestamps, and increase in size
+##                  are ignored 
+##
+
+file=/var/log/wtmp
+file=/var/log/messages
+file=/var/log/maillog
+file=/var/log/lastlog
+file=/var/log/cron
+file=/var/log/auth.log
+
 
 [IgnoreAll]
-file = /dev/ttyp?
-
-[Misc]
-##
-## pseudo terminals are created/removed as needed
-##
-IgnoreAdded = /dev/(p|t)typ.*
-IgnoreMissing = /dev/(p|t)typ.*
-
-
-#
-# --------- /etc -----------
-#
-
-[ReadOnly]
-##
-## for these files, only access time is ignored
-##
-dir = 99/etc
-
-
-#
-# --------- /boot -----------
-#
-
-[ReadOnly]
-dir = 99/boot
-
-#
-# --------- /bin, /sbin -----------
-#
-
-[ReadOnly]
-dir = 99/bin
-dir = 99/sbin
-
-#
-# --------- /lib -----------
-#
-
-[ReadOnly]
-dir = 99/lib
-
-#
-# --------- /libexec -----------
-#
-
-[ReadOnly]
-dir = 99/libexec
-
-#
-# --------- /rescue -----------
-#
-
-[ReadOnly]
-dir = 99/rescue
-
-#
-# --------- /root -----------
-#
-
-[Attributes]
-##
-## for these files, only changes in permissions and ownership are checked
-##
-dir = 99/root
-
-#
-# --------- /stand -----------
-#
-
-[ReadOnly]
-dir = 99/stand
-
-#
-# --------- /usr -----------
-#
-
-[ReadOnly]
-dir = 99/usr
-
-[Attributes]
-dir = /usr/.snap
-dir = /usr/share/man/cat?
-file = /usr/compat/linux/etc
-file = /usr/compat/linux/etc/ld.so.cache
-
-[IgnoreAll]
-dir = -1/usr/home
-
-#
-# --------- /var -----------
-#
-
-[Attributes]
-
-dir = 0/var
-
-[LogFiles]
-##
-## for these files, changes in signature, timestamps, and size are ignored 
-##
-
-file=/var/run/utmp
-
-[GrowingLogFiles]
-##
-## For these files, changes in signature, timestamps, and increase in size
-## are ignored. Logfile rotation will cause a report because of shrinking
-## size and different inode. 
-##
-dir = 99/var/log
-
-[Attributes]
-#
-# rotated logs will change inode
-#
-file = /var/log/*.[0-9].bz2
-file = /var/log/*.[0-9].log
-file = /var/log/*.[0-9]
-file = /var/log/*.[0-9][0-9]
-file = /var/log/*.old
-
-file = /var/log/sendmail.st
-
-
-[Misc]
-#
-# Various naming schemes for rotated logs
-#
-IgnoreAdded = /var/log/.*\.[0-9]+$
-IgnoreAdded = /var/log/.*\.[0-9]+\.gz$
-IgnoreAdded = /var/log/.*\.[0-9]+\.bz2$
-IgnoreAdded = /var/log/.*\.[0-9]+\.log$
+##
+## for these files, no modifications are reported
+##
+
+dir=/usr/share/man
+dir=/usr/share/games
+dir=/usr/share/misc
+dir=/usr/X11R6/man
 
 
@@ -227,4 +117,21 @@
 
 
+[ReadOnly]
+##
+## for these files, only access time is ignored
+##
+
+dir=/bin
+dir=/boot
+dir=3/etc
+dir=/sbin
+dir=1/stand
+dir=/stand/etc
+dir=/stand/modules
+dir=/usr
+dir=2/var/cron
+
+file=/kernel
+dir=/modules
 
 [User0]
@@ -370,4 +277,21 @@
 # SuidCheckQuarantineDelete = yes
 
+# [Kernel]
+##
+## --- Check for loadable kernel module rootkits (Linux/FreeBSD only) 
+##
+
+## Switch on/off
+#
+# KernelCheckActive = True
+
+## Check interval (seconds); btw., the check is VERY fast
+#
+# KernelCheckInterval = 300
+
+## Severity
+#
+# SeverityKernel = crit
+
 
 # [Utmp]
@@ -529,5 +453,5 @@
 # FileCheckScheduleTwo = NULL
 
-## Report only once on modified files 
+## Report only once on modified fles 
 ## Setting this to 'FALSE' will generate a report for any policy 
 ## violation (old and new ones) each time the daemon checks the file system.
@@ -621,5 +545,5 @@
 ## Path to the PID file
 #
-# SetLockfilePath = (default: compiled-in)
+# SetLockPath = (default: compiled-in)
 
 
Index: trunk/samhainrc.linux
===================================================================
--- trunk/samhainrc.linux	(revision 591)
+++ trunk/samhainrc.linux	(revision 1)
@@ -61,197 +61,82 @@
 # RedefIgnoreAll=(no default)
 # RedefIgnoreNone=(no default)
-
 # RedefUser0=(no default)
 # RedefUser1=(no default)
 
-#
-# --------- / --------------
-#
-
-[ReadOnly]
-dir = 0/
-
 [Attributes]
-file = /tmp
-file = /dev
-file = /media
-file = /proc
-file = /sys
-
-#
-# --------- /etc -----------
-#
-
-[ReadOnly]
-##
-## for these files, only access time is ignored
-##
-dir = 99/etc
-
-[Attributes]
-##
-## check permission and ownership
-##
-file = /etc/mtab
-file = /etc/adjtime
-file = /etc/motd
-file = /etc/lvm/.cache
-
-# On Ubuntu, these are in /var/lib rather than /etc
-file = /etc/cups/certs
-file = /etc/cups/certs/0
-
-# managed by fstab-sync on Fedora Core
-file = /etc/fstab
-
-# modified when booting 
-file = /etc/sysconfig/hwconf
-
+##
+## for these files, only changes in permissions and ownership are checked
+##
+file=/etc/mtab
+file=/etc/ssh_random_seed
+file=/etc/asound.conf
+file=/etc/resolv.conf
+file=/etc/localtime
+file=/etc/ioctl.save
+file=/etc/passwd.backup
+file=/etc/shadow.backup
+
+#
 # There are files in /etc that might change, thus changing the directory
 # timestamps. Put it here as 'file', and in the ReadOnly section as 'dir'.
-
-file = /etc
-
-#
-# --------- /boot -----------
-#
-
-[ReadOnly]
-dir = 99/boot
-
-#
-# --------- /bin, /sbin -----------
-#
-
-[ReadOnly]
-dir = 99/bin
-dir = 99/sbin
-
-#
-# --------- /lib -----------
-#
-
-[ReadOnly]
-dir = 99/lib
-
-#
-# --------- /dev -----------
-#
-
-[Attributes]
-dir = 99/dev
+#
+file=/etc
+
+[LogFiles]
+##
+## for these files, changes in signature, timestamps, and size are ignored 
+##
+file=/var/run/utmp
+file=/etc/motd
+
+
+
+#####################################################################
+#
+# This would be the proper syntax for parts that should only be
+#    included for certain hosts.
+# You may enclose anything in a @HOSTNAME/@end bracket, as long as the
+#    result still has the proper syntax for the config file.
+# You may have any number of @HOSTNAME/@end brackets.
+# HOSTNAME should be the fully qualified 'official' name 
+#    (e.g. 'nixon.watergate.com', not 'nixon'), no aliases. 
+#    No IP number - except if samhain cannot determine the 
+#    fully qualified hostname.
+#
+# @HOSTNAME
+# file=/foo/bar
+# @end
+#
+# These are two examples for conditional inclusion/exclusion
+# of a machine based on the output from 'uname -srm'
+#
+# $Linux:2.*.7:i666
+# file=/foo/bar3
+# $end
+#
+# !$Linux:2.*.7:i686
+# file=/foo/bar2
+# $end
+#
+#####################################################################
+
+[GrowingLogFiles]
+##
+## for these files, changes in signature, timestamps, and increase in size
+##                  are ignored 
+##
+file=/var/log/warn
+file=/var/log/messages
+file=/var/log/wtmp
+file=/var/log/faillog
 
 [IgnoreAll]
 ##
-## pseudo terminals are created/removed as needed
-##
-dir = -1/dev/pts
-
-# dir = -1/dev/.udevdb
-
-file = /dev/ppp
-
-#
-# --------- /usr -----------
-#
-
-[ReadOnly]
-dir = 99/usr
-
-#
-# --------- /var -----------
-#
-
-[ReadOnly]
-dir = 99/var
-
-[IgnoreAll]
-dir = -1/var/cache
-dir = -1/var/backups
-dir = -1/var/games
-dir = -1/var/gdm
-dir = -1/var/lock
-dir = -1/var/mail
-dir = -1/var/run
-dir = -1/var/spool
-dir = -1/var/tmp
-dir = -1/var/lib/texmf
-dir = -1/var/lib/scrollkeeper
-
-
-[Attributes]
-
-dir = /var/lib/nfs
-dir = /var/lib/pcmcia
-
-# /var/lib/rpm changes if packets are installed;
-# /var/lib/rpm/__db.00[123] even more frequently
-file = /var/lib/rpm/__db.00?
-
-file = /var/lib/acpi-support/vbestate
-file = /var/lib/alsa/asound.state
-file = /var/lib/apt/lists/lock
-file = /var/lib/apt/lists/partial
-file = /var/lib/cups/certs
-file = /var/lib/cups/certs/0
-file = /var/lib/dpkg/lock
-file = /var/lib/gdm
-file = /var/lib/gdm/.cookie
-file = /var/lib/gdm/.gdmfifo
-file = /var/lib/gdm/:0.Xauth
-file = /var/lib/gdm/:0.Xservers
-file = /var/lib/logrotate/status
-file = /var/lib/mysql
-file = /var/lib/mysql/ib_logfile0
-file = /var/lib/mysql/ibdata1
-file = /var/lib/slocate
-file = /var/lib/slocate/slocate.db
-file = /var/lib/slocate/slocate.db.tmp
-file = /var/lib/urandom
-file = /var/lib/urandom/random-seed
-file = /var/lib/random-seed
-file = /var/lib/xkb
-
-
-[GrowingLogFiles]
-##
-## For these files, changes in signature, timestamps, and increase in size
-## are ignored. Logfile rotation will cause a report because of shrinking
-## size and different inode. 
-##
-dir = 99/var/log
-
-[Attributes]
-#
-# rotated logs will change inode
-#
-file = /var/log/*.[0-9].gz
-file = /var/log/*.[0-9].log
-file = /var/log/*.[0-9]
-file = /var/log/*.old
-file = /var/log/*/*.[0-9].gz
-file = /var/log/*/*.[0-9][0-9].gz
-file = /var/log/*/*.log.[0-9]
-
-[Misc]
-#
-# Various naming schemes for rotated logs
-#
-IgnoreAdded = /var/log/.*\.[0-9]+$
-IgnoreAdded = /var/log/.*\.[0-9]+\.gz$
-IgnoreAdded = /var/log/.*\.[0-9]+\.log$
-#
-# Subdirectories
-#
-IgnoreAdded = /var/log/[[:alnum:]]+/.*\.[0-9]+$
-IgnoreAdded = /var/log/[[:alnum:]]+/.*\.[0-9]+\.gz$
-IgnoreAdded = /var/log/[[:alnum:]]+/.*\.[0-9]+\.log$
-#
-IgnoreAdded = /var/lib/slocate/slocate.db.tmp
-IgnoreMissing = /var/lib/slocate/slocate.db.tmp
-
-#
-# --------- other policies -----------
-#
+## for these files, no modifications are reported
+##
+## This file might be created or removed by the system sometimes.
+##
+file=/etc/resolv.conf.pcmcia.save
+
 
 [IgnoreNone]
@@ -267,4 +152,33 @@
 ##
 
+
+[ReadOnly]
+##
+## for these files, only access time is ignored
+##
+dir=/usr/bin
+dir=/bin
+dir=/boot
+#
+# SuSE (old) has the boot init scripts in /sbin/init.d/*, 
+# so we go 3 levels deep
+#
+dir=3/sbin
+dir=/usr/sbin
+dir=/lib
+#
+# RedHat and Debian have the bootinit scripts in /etc/init.d/* or /etc/rc.d/*, 
+#        so we go 3 levels deep there too
+#
+dir=3/etc
+
+# Various directories / files that may include / be SUID/SGID binaries
+#
+#
+dir=/usr/X11R6/bin
+dir=/usr/X11R6/lib/X11/xmcd/bin
+file=/usr/lib/pt_chown
+dir=/opt/gnome/bin
+dir=/opt/kde/bin
 
 [User0]
@@ -272,5 +186,4 @@
 ## User0 and User1 are sections for files/dirs with user-definable checking
 ## (see the manual) 
-
 
 
@@ -290,6 +203,11 @@
 # SeverityUser0=crit
 # SeverityUser1=crit
+
+##
+## We have a file in IgnoreAll that might or might not be present.
+## Setting the severity to 'info' prevents messages about deleted/new file.
+##
 # SeverityIgnoreAll=crit
-
+SeverityIgnoreAll=info
 
 ## Files : file access problems
@@ -408,4 +326,21 @@
 # SuidCheckQuarantineDelete = yes
 
+#[Kernel]
+##
+## --- Check for loadable kernel module rootkits (Linux/FreeBSD only) 
+##
+
+## Switch on/off
+#
+# KernelCheckActive = True
+
+## Check interval (seconds); btw., the check is VERY fast
+#
+# KernelCheckInterval = 300
+
+## Severity
+#
+# SeverityKernel = crit
+
 
 # [Utmp]
@@ -536,4 +471,9 @@
 ChecksumTest=check
 
+## whether to drop linux capabilities that are not required
+## - will make a root process a 'mere mortal' in many respects
+#
+# UseCaps = yes
+
 ## Set nice level (-19 to 19, see 'man nice'),
 ## and I/O limit (kilobytes per second; 0 == off)
@@ -565,5 +505,5 @@
 # FileCheckScheduleTwo = NULL
 
-## Report only once on modified files 
+## Report only once on modified fles 
 ## Setting this to 'FALSE' will generate a report for any policy 
 ## violation (old and new ones) each time the daemon checks the file system.
@@ -664,5 +604,5 @@
 ## Path to the PID file
 #
-# SetLockfilePath = (default: compiled-in)
+# SetLockPath = (default: compiled-in)
 
 
Index: trunk/samhainrc.netbsd
===================================================================
--- trunk/samhainrc.netbsd	(revision 591)
+++ 	(revision )
@@ -1,843 +1,0 @@
-#
-# From pkgsrc-wip, Author: Brian Seklecki
-#
-
-[Misc]
-RedefUser0=+INO, +SIZ, +RDEV, +CHK, -MOD, -MTM, -ATM, -CTM, -GRP, -USR
-
-# The new Samhain behavior is to check the checksum up the last-known size of
-# the file, but *yes*, the inode will change when it becomes rotated and the size
-# will get reset to a lesser value (in which case the check should know to passively 
-# fail)
-RedefGrowingLogFiles=-INO, -SIZ, +CHK, -MTM, -ATM, -CTM
-
-#
-# --------- / --------------
-#
-
-[ReadOnly]
-dir = 99/
-
-# This covers the contents of / including: /boot, /bin, /sbin, /lib, /libexec,
-# /rescue, /root, /altroot, /usr, /var, /stand, /mnt, /tmp, /proc, /kern (Even 
-# though /usr and /var will recieve overrides)
-
-[Attributes]
-file = /proc
-file = /kern
-
-[IgnoreAll]
-dir=-1/proc
-dir=-1/kern
-
-#
-# --------- /tmp -----------
-#
-[Attributes]
-file=/tmp
-[IgnoreAll]
-dir=-1/tmp
-
-
-
-#
-# --------- /root --------------
-#
-
-# Per section 5.4.2.1 of the manual, Rule #5, there are lock file written here
-# that changes the mtime/ctime of the dir, so we want to watch perms/ownership,
-# ignore ctime/mtime/size, etc., but still watch the critical files inside.
-# Note: in theory, /root should never change if you use sudo(8) w/o "-H"
-[ReadOnly]
-dir=/root/.gnupg
-[Attributes]
-file=/root/.gnupg
-file=/root/.gnupg/random_seed
-
-#
-# --------- /dev -----------
-#
-
-[Attributes]
-dir = 99/dev
-
-# User0 will be for /dev/tty* and other devices where Owner/Group/Mode can 
-# change but the Inode/Size/Device/Checksum should not change.
-
-[User0]
-file=/dev/tty*
-file=/dev/pty*
-
-#
-# --------- /etc -----------
-#
-
-[ReadOnly]
-##
-## for these files, only access time is ignored
-##
-dir = 99/etc
-
-
-# If you're running dhclient(8), resolv.conf will get re-written at renewal
-# time so pray that he dhcpd(8) on your network doesn't get owned.
-# Crytpo-signed DHCP traffic would be too much to ask from ISC, but maybe
-# not from the OpenBSD hack
-
-[Attributes]
-file=/etc/dhclient.conf
-
-# If you run CUPS, /etc/printcap gets re-written if you have
-# "Browsing On" and "Printcap /etc/printcap" in cupsd.conf(5) 
-[Attributes]
-file=/etc/printcap
-
-
-#
-# --------- /usr -----------
-#
-
-# note about the following two: this reduced the size
-# of the database greatly
-
-#
-# --------- /usr/pkgsrc -----------
-#
-
-# Leave this uncommented if you CVS update your pkgsrc
-# periodically/automatically.  If you do not, comment it
-# out and you should be informed about any unauthorized
-# modifications to pkgsrc (which is an attack vector)
-
-[IgnoreAll]
-dir=-1/usr/pkgsrc
-
-#
-# --------- /usr/src -----------
-#
-
-# Leave this uncommented if you CVS update your src
-# periodically/automatically.  If you do not, comment it
-# out and you should be informed about any unauthorized
-# modifications to src (which is an attack vector)
-
-
-[IgnoreAll]
-dir=-1/usr/src
-
-
-#
-# --------- /usr/home (/home) -----------
-#
-
-
-# /home may be a symlink to /usr/home on a stock system, but most admins cane
-# that shit. [Attributes] could be replaced here by [ReadOnly] if we wanted to
-# know about new users being added (on systems where there are no new users)
-
-[Attributes]
-file = /home
-[IgnoreAll]
-dir = -1/home
-
-# 
-# --------- /usr/compat/linux/etc -----------
-#
-
-# You're basically compromising your system by enabling Linux emulation anyway
-
-[Attributes]
-file = /usr/compat/linux/etc
-file = /usr/compat/linux/etc/ld.so.cache
-
-# 
-# --------- /usr/compat/linux/proc -----------
-#
-
-# Uncomment if you have Linux Emulation/Compat Installed/Setup/Mounted
-[Attributes]
-file=/emul/linux/proc
-[IgnoreAll]
-dir=-1/emul/linux/proc
-
-
-#
-# --------- /var/run -----------
-#
-
-# New PID files may come, and PID files may go (as services on a system change),
-# but then probably a database rebuild will occur.  But at the time of the
-# database init, we should consider everything in here subject to change
-# (checksum, times, size) during a daemon restart, but everything else stays
-# the same.
-
-# If you have periodic scripts that HUP daemons, the PID should be unachanged.
-# However, force-restarts will be a new PID, so consider this
-
-[Attributes]
-dir=99/var/run
-
-[Misc]
-# Ignore sudo(8) TTY/PTY "Tickets" if you use sudo
-IgnoreMissing = /var/run/sudo/[[:alnum:]]{1,9}/(p|t)ty.*$
-IgnoreAdded = /var/run/sudo/[[:alnum:]]{1,9}/(p|t)ty.*$
-
-#
-# --------- /var/(spool|queue|etc.) -----------
-#
-
-[Attributes]
-file=/var/cron/tabs
-file=/var/spool/mqueue
-file=/var/spool/clientmqueue
-file=/var/mail
-file=/var/tmp
-
-#
-# --------- /var/at -----------
-#
-
-# As deep as /var/at/ will be watched by 99/
-
-[Attributes]
-file=/var/at/spool
-file=/var/at/jobs
-
-#
-# --------- /var/db -----------
-#
-
-# Some files are written directly into /var/db
-[Attributes]
-file=/var/db
-
-[Attributes]
-# Updatedb per /etc/periodic.d/weekly/310.locate (FreeBSD) or /etc/weekly (NetBSD)
-file=/var/db/locate.database
-
-[Misc]
-# this file comes and goes with portaudit(1)/portversion(1)/pkg_version(1)
-# Other is ISC DHCLIENT related
-IgnoreAdded=/var/db/(pkgdb.fixme|dhclient.leases.*)
-IgnoreMissing=/var/db/(pkgdb.fixme|dhclient.leases.*)
-
-
-#
-# --------- /var/db/mysql -----------
-#
-
-# The same for MySQL, except it's probably owned by the time you get done
-# installing it.
-
-[Attributes]
-file=/var/db/mysql
-[IgnoreAll]
-dir=-1/var/db/mysql
-
-####################################################################
-# The next three entries depend on your security paranoia policy about
-# SRC and PORTSs trees, etc.  Remember, Ports is the only default attack
-# vector against FreeBSD machines.
-####################################################################
-
-
-#
-# --------- /var/db/pkg -----------
-#
-
-# This database directory gets updated if a cvsup(8)/cvs(8)/sup(8) update 
-# occurs to a Pkgsrc source tree and then "pkgdb(8) -fu" is run.  
-
-[Attributes]
-file=/var/db/pkg
-[IgnoreAll]
-dir=-1/var/db/pkg
-
-
-#
-# --------- /var/db/entropy -----------
-#
-[Attributes]
-file=/var/db/entropy
-[IgnoreAll]
-dir=-1/var/db/entropy
-
-#
-# --------- /var/msgs -----------
-#
-
-[Attributes]
-dir=-1/var/msgs
-
-#
-# --------- /var/backups -----------
-#
-
-# /etc/daily /etc/security write old revisions of system
-# critical files into here daily
-[Attributes]
-dir=-1/var/backups
-
-#
-# --------- /var/log -----------
-#
-
-# Keep this section in sync with:
-# * /etc/newsyslog.conf
-# * /etc/syslogd.conf OR:
-# * /usr/pkg/etc/syslog-ng/syslog-ng.conf
-
-# For these files, changes in signature, timestamps, and increase in size
-# are ignored, however:
-# Per discussion on the forum, this behavior change is needed due to the behavior
-# of newsyslog(8) rotation method File sizes will get smaller, inodes will change
-# as they rotate.
-
-# NOTES ON LOG ROTATION BEHAVIOR:
-# See comments about modifications to [GrowingLogFiles] to ignore INODE changes
-# As newsyslog(8)/newsyslog.conf(5) has the default behavior of:
-# - First move logfile.log to logfile.log.0
-# - then bzip2 -v9 logfile.log.0
-# - then touch(1) logfile.log
-# - then HUP if applicable & reopen the new file (new inode)
-# - Therefore, Ignore Singature, Size (if grow), and Inode changes
-# But also, there's [IgnoreMissing] regexp to account for log file pruing from 
-# the filesystem, and [IgnoreAdded] for the first Nth rotations of the logfile
-# per newsyslog.conf(5)
-
-
-# NetBSD defaults
-[Misc]
-IgnoreAdded = /var/log/(cron|xferlog|messages|maillog|secure|pflog|sendmail\.st|kerberos\.log|authlog|aculog|wtmp|wtmpx)\.[0-9](\.bz2|\.gz)?$
-IgnoreMissing= /var/log/(cron|xferlog|messages|maillog|secure|pflog|sendmail\.st|kerberos\.log|authlog|aculog|wtmp|wtmpx)\.[0-9](\.bz2|\.gz)?$
-
-# Local services you may need to account for
-IgnoreAdded = /var/log/(snmpd\.log|postgresq\.log|samhain\.log|httpd-error\.log|httpd-access\.log|httpd-ssl_request\.log)\.[0-9](\.bz2|\.gz)?$
-IgnoreMissing = /var/log/(snmpd\.log|postgresq\.log|samhain\.log|httpd-error\.log|httpd-access\.log|httpd-ssl_request\.log)\.[0-9](\.bz2|\.gz)?$
-
-[Attributes]
-dir=99/var/log
-
-# NetBSD Stock Defaults
-[GrowingLogFiles]
-File = /var/log/aculog
-File = /var/log/authlog
-File = /var/log/cron
-File = /var/log/kerberos.log
-File = /var/log/lpd-errs
-File = /var/log/maillog
-File = /var/log/messages
-File = /var/log/secure
-File = /var/log/wtmp
-File = /var/log/wtmpx
-File = /var/log/xferlog
-File = /var/log/pflog
-
-[Attributes]
-# A binary-type logfile (Screw sendmail!)
-File = /var/log/sendmail.st
-
-# NetBSD gzip(1)'s by default but newsyslog.conf(5) has bzip2 support
-[Attributes]
-File = /var/log/*.[0-9].gz
-#File = /var/log/*.[0-9].bz2
-
-#
-# --------- makewhatis(8) -----------
-# 
-
-# Account for updated whatis(8) database given manpath.conf(5)/man.conf(5)
-#and manpath(1)
-
-[Attributes]
-file=/usr/pkg/man/whatis.db
-file=/usr/pkg/man
-file=/usr/share/man/whatis.db
-file=/usr/share/man
-
-##############################################
-######## END FILE SECTION ####################
-##############################################
-
-[EventSeverity]
-
-SeverityReadOnly=crit
-SeverityLogFiles=crit
-SeverityGrowingLogs=crit
-SeverityIgnoreNone=crit
-SeverityAttributes=crit
-SeverityUser0=crit
-SeverityUser1=crit
-
-## We have a file in IgnoreAll that might or might not be present.
-## Setting the severity to 'info' prevents messages about deleted/new file.
-##
-# SeverityIgnoreAll=crit
-SeverityIgnoreAll=info
-
-## Files : file access problems
-SeverityFiles=info
-
-## Dirs  : directory access problems
-SeverityDirs=info
-
-## Names : suspect (non-printable) characters in a pathname
-SeverityNames=crit
-
-[Log]
-## Values: debug, info, notice, warn, mark, err, crit, alert, none.
-## 'mark' is used for timestamps.
-##
-## Use 'none' to SWITCH OFF a log facility
-## 
-## By default, everything equal to and above the threshold is logged.
-## The specifiers '*', '!', and '=' are interpreted as  
-## 'all', 'all but', and 'only', respectively (like syslogd(8) does, 
-## at least on Linux). Examples:
-## MailSeverity=*
-## MailSeverity=!warn
-## MailSeverity==crit
-
-## E-mail
-##
-MailSeverity=warn
-
-## Console
-##
-PrintSeverity=notice
-
-## Logfile
-##
-LogSeverity=info
-
-## Syslog
-##
-# Syslog logging is redundant at this time
-#
-#SyslogSeverity=notice
-
-## Remote server (yule)
-##
-# ExportSeverity=none
-
-## External script or program
-##
-# ExternalSeverity = none
-
-## Logging to a database
-##
-# DatabaseSeverity = none
-
-## Logging to a Prelude-IDS
-##
-# PreludeSeverity = crit
-
-
-#####################################################
-#
-# Optional modules
-#
-#####################################################
-
-#[SuidCheck]
-##
-## --- Check the filesystem for SUID/SGID binaries
-## 
-
-## Switch on
-#
-#SuidCheckActive = yes
-
-## Interval for check (seconds)
-#
-#SuidCheckInterval = 5400
-
-## Alternative: crontab-like schedule
-#
-#SuidCheckSchedule = NULL
- 
-## Directory to exclude 
-#
-# SuidCheckExclude = NULL
-
-## Limit on files per second (0 == no limit)
-#
-# SuidCheckFps = 0
-
-## Alternative: yield after every file
-#
-# SuidCheckYield = no
-
-## Severity of a detection
-#
-# SeveritySuidCheck = crit
-
-## Quarantine SUID/SGID files if found
-#
-# SuidCheckQuarantineFiles = yes
-
-## Method for Quarantining files:
-#  0 - Delete the file.
-#  1 - Remove SUID/SGID permissions from file.
-#  2 - Move SUID/SGID file to quarantine dir.
-#
-# SuidCheckQuarantineMethod = 0
-
-## For method 1 and 3, really delete instead of truncating
-# 
-# SuidCheckQuarantineDelete = yes
-
-#[Mounts]
-#MountCheckActive=1
-#MountCheckInterval=7200
-#SeverityMountMissing=crit
-#SeverityOptionMissing=crit
-#
-#checkmount=/
-#checkmount=/dev
-#checkmount=/usr
-#checkmount=/var
-#checkmount=/var/log
-#checkmount=/opt
-#checkmount=/export
-#checkmount=/tmp
-
-
-
- #[Utmp]
-##
-## --- Logging of login/logout events
-##
-
-## Switch on/off
-#
-#LoginCheckActive = True
-
-## Severity for logins, multiple logins, logouts
-# 
-#SeverityLogin=info
-#SeverityLoginMulti=crit
-#SeverityLogout=info
-
-## Interval for login/logout checks
-#
-#LoginCheckInterval = 300
-
-
-# [Database]
-##
-## --- Logging to a relational database
-##
-
-## Database name
-#
-# SetDBName = samhain
-
-## Database table
-#
-# SetDBTable = log
-
-## Database user
-#
-# SetDBUser = samhain
-
-## Database password
-#
-# SetDBPassword = (default: none)
-
-## Database host
-#
-# SetDBHost = localhost
-
-## Log the server timestamp for received messages
-#
-# SetDBServerTstamp = True
-
-## Use a persistent connection
-#
-# UsePersistent = True
-
-
-# [External]
-##
-## Interface to call external scripts/programs for logging
-##
-
-## The absolute path to the command
-## - Each invocation of this directive will end the definition of the
-##   preceding command, and start the definition of 
-##   an additional, new command
-#
-# OpenCommand = (no default)
-
-## Type (log or srv)
-## - log for log messages, srv for messages received by the server
-#
-# SetType = log
-
-## The command (full command line) to execute
-#
-# SetCommandLine = (no default)
-
-## The environment (KEY=value; repeat for more)
-#
-# SetEnviron = TZ=(your timezone)
-
-## The TIGERpkg checksum (optional)
-#
-# SetChecksum = (no default)
-
-## User who runs the command
-#
-# SetCredentials = (default: samhain process uid)
-
-## Words not allowed in message
-#
-# SetFilterNot = (none)
-
-## Words required (ALL of them)
-#
-# SetFilterAnd = (none)
-
-## Words required (at least one)
-#
-# SetFilterOr = (none)
-
-## Deadtime between consecutive calls
-#
-# SetDeadtime = 0
-
-## Add default environment (HOME, PATH, SHELL)
-#
-# SetDefault = no
-
-
-
-#####################################################
-#
-# Miscellaneous configuration options
-#
-#####################################################
-
-[Misc]
-
-## whether to become a daemon process
-## (this is not honoured on database initialisation)
-#
-# Daemon = no
-Daemon = yes
-
-# whether to test signature of files (init/check/none)
-# - if 'none', then we have to decide this on the command line -
-#
-# ChecksumTest = none
-ChecksumTest=check
-
-# Set nice level (-19 to 19, see 'man nice'),
-# and I/O limit (kilobytes per second; 0 == off)
-# to reduce load on host.
-#
-SetNiceLevel = 19
-# SetIOLimit = 0
-
-## The version string to embed in file signature databases
-#
-# VersionString = NULL
-
-## Interval between time stamp messages
-#
-# SetLoopTime = 60
-SetLoopTime = 7200
-
-## Interval between file checks 
-#
-# SetFileCheckTime = 600
-SetFileCheckTime = 43200
-
-## Alternative: crontab-like schedule
-#
-# FileCheckScheduleOne = NULL
-
-## Alternative: crontab-like schedule(2)
-#
-# FileCheckScheduleTwo = NULL
-
-## Report only once on modified files 
-## Setting this to 'FALSE' will generate a report for any policy 
-## violation (old and new ones) each time the daemon checks the file system.
-#
-ReportOnlyOnce = True
-
-## Report in full detail
-#
-ReportFullDetail = True
-
-## Report file timestamps in local time rather than GMT
-#
-UseLocalTime = Yes
-
-## The console device (can also be a file or named pipe)
-## - There are two console devices. Accordingly, you can use
-##   this directive a second time to set the second console device.
-##   If you have not defined the second device at compile time,
-##   and you don't want to use it, then:
-##   setting it to /dev/null is less effective than just leaving
-##   it alone (setting to /dev/null will waste time by opening
-##   /dev/null and writing to it)
-#
-# SetConsole = /dev/console
-
-## Activate the SysV IPC message queue
-#
-# MessageQueueActive = False
-
-
-## If false, skip reverse lookup when connecting to a host known 
-## by name rather than IP address (i.e. trust the DNS)
-#
-SetReverseLookup = True
-
-
-## --- E-Mail ---
-
-# Only highest-level (alert) reports will be mailed immediately,
-# others will be queued. Here you can define, when the queue will
-# be flushed (Note: the queue is automatically flushed after
-# completing a file check).
-#
-# SetMailTime = 86400
-
-## Maximum number of mails to queue
-#
-# SetMailNum = 10
-
-## Recipient (max. 8)
-#
-#SetMailAddress=infosec@noc.myorg.tld
-
-## Mail relay (IP address)
-#
-SetMailRelay = 127.0.0.1
-
-## Custom subject format
-#
-MailSubject = Synchrotone Samhain: %S 
-SetMailSender = samhain@synchrotone.pgh.pub.collaborativefusion.com
-
-## --- end E-Mail ---
-
-
-## Path to the executable. If set, will be checksummed after startup
-## and before exit.
-#
-SamhainPath = /usr/pkg/sbin/samhain
-
-## The IP address of the log server
-#
-# SetLogServer = (default: compiled-in)
-
-## The IP address of the time server
-#
-# SetTimeServer = (default: compiled-in)
-
-## Trusted Users (comma delimited list of user names) 
-#
-# TrustedUser = (no default; this adds to the compiled-in list)
-
-## Path to the file signature database
-#
-SetDatabasePath = /usr/pkg/var/samhain/samhain.db
-
-## Path to the log file
-#
-# SetLogfilePath = (default: compiled-in)
-
-## Path to the PID file
-#
-# SetLockfilePath = (default: compiled-in)
-
-
-## The digest/checksum/hash algorithm (default: TIGER192; others: MD5, SHA1)
-#
-# DigestAlgo = TIGER192
-
-
-## Custom format for message header. 
-## CAREFUL if you use XML logfile format.
-##
-## %S severity
-## %T timestamp
-## %C class
-##
-## %F source file
-## %L source line
-#
-# MessageHeader="%S %T "
-
-
-## Don't log path to config/database file on startup
-#
-# HideSetup = False
-
-## The syslog facility, if you log to syslog
-#
-# SyslogFacility = LOG_AUTHPRIV
-SyslogFacility=LOG_LOCAL2
-
-## The message authentication method
-## - If you change this, you *must* change it
-##   on client *and* server
-#
-# MACType = HMAC-TIGER
-
-
-## The Prelude-IDS profile to use for reporting
-## default value is "samhain"
-#
-# PreludeProfile = samhain
-
-## Map these samhain severities to impact severity 'info' severity
-#
-# PreludeMapToInfo =
-
-## Map these samhain severities to impact severity 'low' severity
-#
-# PreludeMapToLow = debug info
-
-## Map these samhain severities to impact severity 'medium' severity
-#
-# PreludeMapToMedium = notice warn err
-
-## Map these samhain severities to impact severity 'high' severity
-#
-# PreludeMapToHigh = crit alert
-
-# everything below is ignored
-[EOF]
-
-#####################################################################
-# This would be the proper syntax for parts that should only be
-#    included for certain hosts.
-# You may enclose anything in a @HOSTNAME/@end bracket, as long as the
-#    result still has the proper syntax for the config file.
-# You may have any number of @HOSTNAME/@end brackets.
-# HOSTNAME should be the fully qualified 'official' name 
-#    (e.g. 'nixon.watergate.com', not 'nixon'), no aliases. 
-#    No IP number - except if samhain cannot determine the 
-#    fully qualified hostname.
-#
-# @HOSTNAME
-# file=/foo/bar
-# @end
-#
-# These are two examples for conditional inclusion/exclusion
-# of a machine based on the output from 'uname -srm'
-# $Linux:2.*.7:i666
-# file=/foo/bar3
-# $end
-#
-# !$Linux:2.*.7:i686
-# file=/foo/bar2
-# $end
-#
-#####################################################################
Index: trunk/samhainrc.solaris
===================================================================
--- trunk/samhainrc.solaris	(revision 591)
+++ trunk/samhainrc.solaris	(revision 1)
@@ -506,5 +506,5 @@
 # FileCheckScheduleTwo = NULL
 
-## Report only once on modified files 
+## Report only once on modified fles 
 ## Setting this to 'FALSE' will generate a report for any policy 
 ## violation (old and new ones) each time the daemon checks the file system.
@@ -597,5 +597,5 @@
 ## Path to the PID file
 #
-# SetLockfilePath = (default: compiled-in)
+# SetLockPath = (default: compiled-in)
 
 
Index: trunk/scripts/README
===================================================================
--- trunk/scripts/README	(revision 591)
+++ trunk/scripts/README	(revision 1)
@@ -1,5 +1,5 @@
 
 
-This directory contains miscellaneous useful scripts, some of them contributed
+This directory contains miscellaneous useful scripts, mostly contributed
 by various users. Additions and/or improvements are welcome. 
 
@@ -28,14 +28,19 @@
    and database files.
 
-   Run 'samhainadmin.pl -h' for usage instructions.
+   Run 'samhainadmin.pl -h' for usage instaructions.
 
-yuleadmin.pl
-------------
+samhainrc_update.sh
+-------------------
 
-   Perl script (by Riccardo Murri) to list, add, and remove clients 
-   from the yulerc file.
+   If you are using the --with-kcheck option on Linux, after a kernel
+   update you need to change some option (addresses of kernel functions)
+   in the samhainrc configuration file. The correct new addresses must
+   be looked up in the System.map file
 
-   Run 'yuleadmin.pl -h' for usage instructions.
-
+   This script will do this automatically. Run 'samhainrc_update.sh -h'
+   for usage instructions. You may need to change the location of the
+   samhainrc file by editing the line 'SAMHAIN_CFG="/etc/samhainrc"'
+   at the beginning of the script.
+ 
 check_samhain.pl
 ----------------
@@ -97,3 +102,24 @@
 
 
+samhain-scripts/   Administrative scripts by 
+----------------   Simon Bailey  and
+                   Michael Redinger 
+
+		   You may need to adjust some of the variables in the
+		   top lines of these scripts.
+                
+   samhain.table.rotate.pl: Move old entries from mysql log table to a
+   			    backup table
+
+   samhain-admin: Interactive script to (1) clear log entries in SQL database,
+   		  (2) re-initialize file database of remote client, or (3) add
+		  a new host.
+		  This script requires that you are using samhains deploy
+		  system (i.e. the deploy.sh script et al.).
+		  Re-initialize will stop the daemon on the remote host,
+		  create a temp dir for the database, run samhain -t init,
+		  copy the database to the server, and clear the mysql log for
+		  this host.
+		  
+   samhain.clearhost: Helper script for samhain-admin.
 		   
Index: trunk/scripts/check_samhain.pl.in
===================================================================
--- trunk/scripts/check_samhain.pl.in	(revision 591)
+++ trunk/scripts/check_samhain.pl.in	(revision 1)
@@ -4,5 +4,5 @@
 #   by the samhain file integrity checker.
 #
-# Copyright Rainer Wichmann (2004, 2012)
+# Copyright Rainer Wichmann (2004)
 #
 # License Information:
@@ -28,5 +28,5 @@
 use Getopt::Long;
 use vars qw($PROGNAME $SAMHAIN $opt_V $opt_h $opt_v $verbose $opt_w $opt_c $opt_t $status $msg $state $retval);
-use lib  "/usr/local/nagios/libexec" ;
+use lib  utils.pm;
 use utils qw(%ERRORS &print_revision);
 
@@ -49,5 +49,5 @@
 # -----------------------------------------------------------------[ Global ]--
 
-$PROGNAME = "check_@install_name@";
+$PROGNAME = "check_samhain";
 $SAMHAIN = "@sbindir@/@install_name@"; 
 
@@ -99,5 +99,5 @@
     $state = $ERRORS{'WARNING'};
 } else {
-    $msg = "CRITICAL: $status policy violations (threshold c=$opt_c)";
+    $msg = "CRITICAL: $status policy violations (threshold w=$opt_w)";
     $state = $ERRORS{'CRITICAL'};
 }
@@ -143,5 +143,5 @@
     
     if ($opt_V) {
-	print_revision($PROGNAME,'$Revision: 1.1 $ ');
+	print_revision($PROGNAME,'$Revision: 1.0 $ ');
 	exit $ERRORS{'OK'};
     }
@@ -182,6 +182,6 @@
 
 sub print_help () {
-    print_revision($PROGNAME, '1.1');
-    print "Copyright (c) 2004,2012 Rainer Wichmann
+    print_revision($PROGNAME, '$Revision: 1.0 $');
+    print "Copyright (c) 2004 Rainer Wichmann
 
 This plugin checks the number of policy violations reported by the
Index: trunk/scripts/logrotate.in
===================================================================
--- trunk/scripts/logrotate.in	(revision 591)
+++ 	(revision )
@@ -1,24 +1,0 @@
-@mylogfile@ {
-    weekly
-    rotate 52
-    nocreate
-    missingok
-    compress
-
-    prerotate
-        if test -f @mylockfile@; then \
-          PIN=`cat @mylockfile@`; \
-          /bin/kill -TTIN $PIN; \
-          sleep 1; \
-          AA=0; \
-          while test "x$AA" != "x120"; do \
-           AA=$(( AA + 1 )); \
-           if test -f @mylogfile@.lock; then \
-             sleep 1; \
-           else \
-             break; \
-           fi \
-          done; \
-        fi
-    endscript
-}
Index: trunk/scripts/makeself/makeself.sh
===================================================================
--- trunk/scripts/makeself/makeself.sh	(revision 591)
+++ trunk/scripts/makeself/makeself.sh	(revision 1)
@@ -293,6 +293,5 @@
 echo Adding files to archive named \"$archname\"...
 (cd "$archdir"; tar $TAR_ARGS - * | eval "$GZIP_CMD" ) >> "$tmpfile" || { echo Aborting; rm -f "$tmpfile"; exit 1; }
-# The following command seems both superfluous and causing an 'I/O error' message
-# echo >> "$tmpfile" >&- # try to close the archive
+echo >> "$tmpfile" >&- # try to close the archive
 
 fsize=`cat "$tmpfile" | wc -c | tr -d " "`
Index: trunk/scripts/redhat_i386.client.spec.in
===================================================================
--- trunk/scripts/redhat_i386.client.spec.in	(revision 591)
+++ trunk/scripts/redhat_i386.client.spec.in	(revision 1)
@@ -78,6 +78,6 @@
 # after the package is installed
 install -m 700 samhain-install.sh init/samhain.startLinux init/samhain.startLSB ${RPM_BUILD_ROOT}/etc
-install -m 640 -o 0 -g 0 samhain_kmem.ko	${RPM_BUILD_ROOT}/lib/modules/`uname -r`/samhain_kmem.ko
-install -m 640 -o 0 -g 0 samhain_hide.ko        ${RPM_BUILD_ROOT}/lib/modules/`uname -r`/samhain_hide.ko
+install -m 640 -o 0 -g 0 samhain_hide.o		${RPM_BUILD_ROOT}/lib/modules/`uname -r`/samhain_hide.o
+install -m 640 -o 0 -g 0 samhain_erase.o	${RPM_BUILD_ROOT}/lib/modules/`uname -r`/samhain_erase.o
 install -m 700 -o 0 -g 0 samhain_setpwd		${RPM_BUILD_ROOT}/usr/local/sbin/samhain_setpwd
 
@@ -123,4 +123,10 @@
 fi
 
+%postun
+if [ "$1" = 0 ]; then
+        # remove any kernel modules that might have been installed
+        RVER=`uname -r`
+        rm -f /lib/modules/$RVER/samhain*
+fi
 
 
@@ -129,11 +135,10 @@
 %dir /var/run
 %dir /var/log
-#%doc docs/BUGS COPYING docs/Changelog 
-#%doc LICENSE docs/HOWTO* docs/MANUAL-2_4.* docs/README*
+#%doc docs/BUGS COPYING docs/Changelog docs/TODO
+#%doc LICENSE docs/HOWTO* docs/MANUAL-2_0.* docs/README*
 /etc
 /usr/local/sbin/samhain
 /usr/local/sbin/samhain_setpwd
 /lib/modules
-%attr(644,root,root) /etc/logrotate.d/@install_name@
 #%attr(644,root,root) /usr/local/man/man5/samhain*
 #%attr(644,root,root) /usr/local/man/man8/samhain*
Index: trunk/scripts/report.pl
===================================================================
--- trunk/scripts/report.pl	(revision 1)
+++ trunk/scripts/report.pl	(revision 1)
@@ -0,0 +1,239 @@
+#! /usr/bin/perl
+
+
+#
+
+# This tool will help extract the XML log file produced by Samhain
+# Put it into a more readable format that can then be run by CRON
+# and e-mailed to a user.
+#
+# Created: Ben 
+#
+#
+# Updates:
+# JUL 05 ver 1.1: - Updata to add in checkpint subroutine, this checks 
+#                   the scalar length
+#                   that is return from the log file if is is a good size
+#                   the program gets the value, if not value is returned it will not print it
+#                   to the report.
+#
+# JUL 07 ver 1.2: - Update to the Code to handle reporting selection 
+#                   from the command line.
+#                   Users are able to pass in [ReadOnly][LogFiles][Attributes].
+#                   Better support for date
+#
+# Version: 1.2
+
+
+
+
+
+use strict;
+
+use XML::Simple;
+
+use Tie::File;
+
+use POSIX qw(strftime);
+
+my $date=strftime("%a %b %d %H:%M:%S %Y", localtime());
+
+my $tdate = `date +'%m%d%y'`;   # Just to time stamp the files
+
+my $hostname = `hostname`; chomp($hostname);
+
+my $policy = $ARGV[1];
+
+
+
+&main();
+
+
+
+sub main {
+
+
+
+       unless (@ARGV == 2) { printf("Usage: $0 Samhain_report.xml  \n"); exit(0); }
+
+        printf("## Reporting Starting\n");
+
+        &eatfile();
+
+        &extractdata($policy);
+
+        printf("## Report completed\n");
+
+        printf("## Your new report file has been created : Samhain-report-$hostname.$tdate\n");
+
+}
+
+
+
+# This routine will pull the data from the XML file, and sort through it
+
+# and look for the policy for [ReadOnly], once it has bfound that it will detected all the changes
+
+# within the policy
+
+#
+
+sub extractdata {
+
+   my $xmlfile = $ARGV[0];
+
+   my $config = XMLin($xmlfile);
+
+   # Create new report file
+
+   open(RP, ">fmre_report-$hostname.$tdate") || die ("Unable to open new report file, $!\n");
+
+    printf RP ("Samhain CRITICAL REPORT FOR $hostname\n");
+
+    printf RP ("\n");
+
+    printf RP ("This report was created on : $date\n");
+
+    printf RP ("Samhain Reporting Tool version 1.0\n");
+
+    printf RP ("Created: Ben Cuthbert \n");
+
+    printf RP ("\n");
+
+    printf RP ("Report for !! $_[0] Policy !!\n");
+
+    printf RP ("\n");
+
+    # STart getting all of the data from xml file
+
+   foreach my $alert (@{$config->{'LOG'}}) {
+
+         if($alert->{msg} =~ /POLICY \[$_[0]]/) {       # Check we are on the correct policy
+
+          print RP ("File Changed: $alert->{path}\n");
+
+          &checkprint("$alert->{mtime_new}","Time Changed Old:   $alert->{mtime_new}");
+
+          &checkprint("$alert->{mtime_new}","Time Changed New:   $alert->{mtime_old}");
+
+          &checkprint("$alert->{mode_old}","Mode Old:   $alert->{mode_old}");
+
+          &checkprint("$alert->{mode_new}","Mode New:   $alert->{mode_new}");
+
+          &checkprint("$alert->{chksum_old}","CheckSum Old:     $alert->{chksum_old}");
+
+          &checkprint("$alert->{chksum_new}","CheckSum New:     $alert->{chksum_new}");
+
+          &checkprint("$alert->{size_new}","Size New:     $alert->{size_new}");
+
+          &checkprint("$alert->{size_old}","Size Old:     $alert->{size_old}");
+
+          printf RP ("\n");
+
+         }
+
+   }
+
+   printf RP ("Created Using: Samhain XML Reporting tool.\n");
+
+   printf RP ("Created By: Ben Cuthbert ben\@deephouse.co.za.\n");
+
+   close(RP);
+
+}
+
+
+
+# This helps with logs that do not have Entires for Certain modes ie --rwx
+
+# Get the scalar back, check the lenght then print out if the lenght is
+
+# bigger than 1
+
+sub checkprint {
+
+        chomp;
+
+        my $l = length($_[0]);
+
+        if($l gt 1) {
+
+                printf RP ("$_[1]\n");
+
+        }
+
+}
+
+# We need to change the structure of the HRML file from FMRE
+
+# so that we have the following tree structure.
+
+#VAR1 = {
+
+#        'LOG' => [
+
+#                  {
+
+#                       'msg' = 'value'
+
+#
+
+# The reason for this is it makes extraction better.
+
+#
+
+# So we open XML file and enter the following details.
+
+#  please at top of file
+
+#  place at bottom of file
+
+#  remove trails, as we do not require them as
+
+# log files are rotated every day.
+
+# reports will only run on the day.
+
+sub eatfile {
+
+        # Search and reaplce log with LOG, makes it easy
+
+        open(FH, "$ARGV[0]") || die ("Unable to ammend file \n");
+
+        open(FW, ">tmp.xml") || die ("Unable to ammend file \n");
+
+        while () {
+
+         $_ =~ s/^---*//g; $_ =~ s/log/LOG/g; $_ =~ s///g; $_ =~ s/<\/trail>//g; $_ =~ s/Log file printed//g;
+
+         printf FW $_;
+
+        }
+
+        close(FW); close(FH); system("mv tmp.xml $ARGV[0]");
+
+        # Put in  &  at top and bottom
+
+        open(FH, ">>$ARGV[0]") || die ("Unable to ammend file \n");
+
+        seek FH,0,2;
+
+        printf FH "";
+
+        close(FH);
+
+        ## Star the insert at the top and bottom, close the config 
+
+        tie(my @FH1, 'Tie::File', $ARGV[0]) or die("Unable to read file, $!\n");
+
+        unshift @FH1, '';
+
+        untie @FH1;
+
+        printf ("Xml file has been modified to run with this program \n");
+
+}
+
+
+
+
Index: trunk/scripts/samhain-scripts/samhain-admin
===================================================================
--- trunk/scripts/samhain-scripts/samhain-admin	(revision 1)
+++ trunk/scripts/samhain-scripts/samhain-admin	(revision 1)
@@ -0,0 +1,398 @@
+#!/bin/sh
+
+YULERC="/etc/yulerc"
+YULEDIR="/var/lib/yule"
+YULELOG="/var/log/yule/yule_log"
+YULEUSER="yule"
+YULEGROUP="yule"
+YULERESTART="/sbin/service yule restart"
+
+deploybin="/usr/local/sbin/deploy.sh"
+
+# this is used for creating hosts only
+# (to check if this is a valid host)
+# if you uncomment it, this check will not be performed
+FORCEDOMAIN="yourdomain.net"
+
+action_dbclear="/usr/local/sbin/samhain.clearhost"
+
+
+geth() {
+	unset HLIST
+	unset FQHLIST
+	
+	for file in $(ls ${YULEDIR}/file* | egrep -v ".bak$" | egrep -v ".log$" | \
+		egrep -v ".mgmt$" | egrep -v ".old$" | egrep -v ".sav$" ) ;  do
+		# strip path
+		fn=$(basename ${file})
+		# strip leading "file."
+		fqhn=${fn#file.}
+		# strip trailing domain
+		hn=${fqhn%%.*}
+		# write results to two arrays
+		FQHLIST[${#FQHLIST[*]}]=$fqhn
+		HLIST[${#HLIST[*]}]=$hn
+	done
+	
+	# get the length of the two arrays
+	hlistlen=${#HLIST[*]}
+	fqhlistlen=${#FQHLIST[*]}
+
+	# run until a valid selection is made
+	while [ 1 ] ; do
+		clear
+		echo "HOST LIST SELECTION"
+		echo
+		
+		# loop through array, print echo each host
+		arrpos=0
+		while [ ${arrpos} -lt ${hlistlen} ] ; do
+			echo -e "$((${arrpos}+1)).\t${HLIST[${arrpos}]}"
+			arrpos=$((${arrpos}+1))
+		done
+		
+		echo
+		echo -n "Please select a host (q to quit): "
+		 
+		read hostsel
+		
+		if [ "${hostsel}" = "q" ] ; then
+			exit
+		fi
+
+		isnum=$(echo ${hostsel} | egrep "^[[:digit:]]*$")
+		if [ "${isnum}" ] ; then
+			if [ ${hostsel} -gt 0 -a ${hostsel} -lt $((${hlistlen}+1)) ]
+			then
+				hostsel=$((${hostsel}-1))
+				break
+			fi
+		fi
+	done
+}
+
+
+getprof() {
+	unset PLIST
+	for entry in $(find ${YULEDIR}/profiles -type d -maxdepth 1) ; do
+		entry=$(basename ${entry})
+		if [ ! "${entry}" = "src" -a ! "${entry}" = "profiles" ] ; then
+			PLIST[${#PLIST[*]}]=${entry}
+		fi
+	done
+	
+	# array length
+	plistlen=${#PLIST[*]}
+}
+
+
+
+
+cleardb() {
+# clear the SQL database
+	geth
+	(
+		echo "Clearing database for ${HLIST[${hostsel}]}:"
+		${action_dbclear} ${HLIST[${hostsel}]} 2>&1 && \
+			echo "exit 0"
+	) | less
+} 
+
+
+
+# re-init part
+rrinit() {
+
+	geth
+
+	if [ ! -f ${YULEDIR}/file.${FQHLIST[${hostsel}]} ] ;  then
+		echo "File ${YULEDIR}/file.${FQHLIST[${hostsel}]} does not exist. Exiting."
+		exit 42
+	fi
+
+	if [ ! -f ${YULEDIR}/rc.${FQHLIST[${hostsel}]} ] ;  then
+		echo "File ${YULEDIR}/rc.${FQHLIST[${hostsel}]} does not exist. Exiting."
+		exit 42
+	fi
+
+	echo "Please see the yule log if you really want to reinit the samhain database."
+	echo "This is a really ugly XML file. Better get out of here ..."
+	echo -n "Press ENTER to continue. "
+	read forgetthisone
+
+
+	while [ 1 ] ; do
+		grep "remote_host=\"${HLIST[${hostsel}]}\"" ${YULELOG} | less
+	
+		echo -n "Now that you've seen this: do you still want to continue? (y) (q to quit): "
+		read goforit
+
+		if [ "${goforit}" = "q" ] ; then
+			exit
+		fi
+
+		if [ "${goforit}" = "y" ] ; then
+			break
+		fi
+	done
+
+
+	# Clean the database
+	echo "Clearing database for ${HLIST[${hostsel}]}:"
+	${action_dbclear} ${HLIST[${hostsel}]} 2>&1 && echo "exit 0"
+
+
+	# now run remotely
+	# this code is _really_ funny ... :)
+	ssh -x root@${FQHLIST[${hostsel}]} \
+	'if [ ! -d /samhain-deploy ] ; then \
+	        mkdir /samhain-deploy ; \
+	fi ; \
+	if [ -f /samhain-deploy/sh_database ] ; then \
+		rm -f /samhain-deploy/sh_database ; \
+	fi ; \
+	if [ -x /usr/bin/monit -a "$(/usr/bin/monit status | grep samhain)" ] ; then \
+	        monit stop samhain && sleep 5 ; \
+	elif [ -x /etc/init.d/samhain ] ; then \
+	        /etc/init.d/samhain stop ; \
+	elif [ -x /etc/rc.d/init.d/samhain ] ; then \
+	        /etc/rc.d/init.d/samhain stop ;
+	else \
+		kill $(cat /var/run/samhain.pid) ; \
+	fi ; \
+	/sbin/samhain -t init '
+	echo -n -e '\a' ; sleep 1
+	echo -n -e '\a' ; sleep 1
+	echo -n -e '\a' ; sleep 1
+	echo -n -e '\a' ; sleep 1
+	echo -n -e '\a'
+
+	# backup old database
+	cp ${YULEDIR}/file.${FQHLIST[${hostsel}]} ${YULEDIR}/file.${FQHLIST[${hostsel}]}.mgmt
+
+	# get the new database
+	scp root@${FQHLIST[${hostsel}]}:/samhain-deploy/sh_database \
+		${YULEDIR}/file.${FQHLIST[${hostsel}]} && \
+	chown  ${YULEUSER}:${YULEGROUP} ${YULEDIR}/file.${FQHLIST[${hostsel}]} && \
+	chmod 600 ${YULEDIR}/file.${FQHLIST[${hostsel}]}
+	echo -n -e '\a' ; sleep 1
+	echo -n -e '\a' ; sleep 1
+	echo -n -e '\a' ; sleep 1
+	echo -n -e '\a' ; sleep 1
+	echo -n -e '\a'
+
+	while [ 1 ] ; do
+		echo
+		echo -n "Do you want to start the remote samhain client now? (y/n/q) "
+		read remotestart
+		
+		if [ "${remotestart}" = "q" ] ; then
+			exit
+		fi		
+
+		if [ "${remotestart}" = "y" -o "${remotestart}" = "n" ] ; then
+			break
+		fi
+	done
+
+	if [ "${remotestart}" = "y" ] ; then
+		# restart samhain on remote host
+		ssh -x root@${FQHLIST[${hostsel}]} \
+	        'if [ -f /samhain-deploy/sh_database ] ; then \
+	                rm -f /samhain-deploy/sh_database ; \
+	        fi ; \
+		if [ -x /usr/bin/monit -a "$(/usr/bin/monit status | grep samhain)" ] ; then \
+	        monit start samhain ; \
+		elif [ -x /etc/init.d/samhain ] ; then \
+		        /etc/init.d/samhain start ; \
+		elif [ -x /etc/rc.d/init.d/samhain ] ; then \
+		        /etc/rc.d/init.d/samhain start ;
+		else \
+		        echo "Do not know how to start samhain." ; \
+		fi'
+		echo -n -e '\a' ; sleep 1
+		echo -n -e '\a' ; sleep 1
+		echo -n -e '\a' ; sleep 1
+       		echo -n -e '\a' ; sleep 1
+		echo -n -e '\a'
+		
+		echo "done"
+	fi
+}
+
+
+# add a new host
+addnewhost() {
+	getprof
+
+	while [ 1 ] ; do
+	        clear
+	        echo "PROFILE SELECTION"
+	        echo
+	        
+	        # loop through array, print echo each host
+	        arrpos=0
+	        while [ ${arrpos} -lt ${plistlen} ] ; do
+	                echo -e "$((${arrpos}+1)).\t${PLIST[${arrpos}]}"
+	                arrpos=$((${arrpos}+1))
+	        done
+	        
+	        echo
+	        echo -n "Please select a profile (q to quit): "
+	
+	        read psel
+	
+	        if [ "${psel}" = "p" ] ; then
+	                exit
+	        fi
+	
+		if [ ${psel} -gt 0 -a ${psel} -lt $((${plistlen}+1)) ] ; then
+                	psel=$((${psel}-1))
+                	break
+		fi
+	done
+
+	while [ 1 ] ; do
+		echo
+		echo -n "Enter a fully qualified host name: "
+		read newhost
+		foundpoint=$(echo ${newhost} | egrep "\.")
+		if [ "${foundpoint}" ] ; then
+			break
+		else
+			echo "Dude, a FQHN please!"
+			continue
+		fi
+		if [ "${FORCEDOMAIN}" ] ; then
+			if [ "$(echo ${newhost} | egrep \"\.${FORCEDOMAIN}$\")" ] ; then
+				break
+			else
+				echo "Host must be in domain ${FORCEDOMAIN}"
+				continue
+			fi
+		fi
+	done
+
+
+	while [ 1 ] ; do
+		echo "You are going to run the following command:"
+		echo "${deploybin} --remote-host=${newhost} --build-OS=${PLIST[${psel}]} --clients=${YULERC}"
+		echo -n "Continue? (y/n/q) "
+		read pconf
+
+		if [ "${pconf}" = "q" ] ; then
+			exit
+		fi
+
+		if [ "${pconf}" = "y" -o "${pconf}" = "n" ] ; then
+			break
+		fi
+	done
+
+	if [ ${pconf} = "y" ] ; then
+		${deploybin} --remote-host=${newhost} --build-OS=${PLIST[${psel}]} --clients=${YULERC}
+
+
+		chown ${YULEUSER}:${YULEGROUP} ${YULEDIR}/file.${newhost} ${YULEDIR}/rc.${newhost}
+
+		while [ 1 ] ; do
+			echo
+			echo "Yule has to be restarted before the client is started."
+			echo -n "Do you want to restart yule now? (y|n) "
+			read yulerestart
+	
+			if [ "${yulerestart}" = "y" -o "${yulerestart}" = "n" ] ; then
+				break
+			fi
+		done
+	
+		if [ "${yulerestart}" = "y" ] ; then
+			eval ${YULERESTART}
+		fi
+
+
+		while [ 1 ] ; do
+			echo
+			echo -n "Do you want to start the remote samhain client now? (y|n) "
+			read startsam
+			if [ "${startsam}" = "y" -o "${startsam}" = "n" ] ; then
+	                        break
+	                fi
+		done
+
+
+		if [ "${startsam}" = "y" ] ; then
+
+			echo "x${newhost}x"
+
+			ssh -x root@${newhost} \
+			'if [ -f /var/run/samhain.pid ] ; then \
+				if [ -x /usr/bin/monit -a "$(/usr/bin/monit status | grep samhain)" ] ; then \
+					monit stop samhain && sleep 5 ; \
+				elif [ -x /etc/init.d/samhain ] ; then \
+					/etc/init.d/samhain stop ; \
+				elif [ -x /etc/rc.d/init.d/samhain ] ; then \
+					/etc/rc.d/init.d/samhain stop ;
+				else \
+					kill $(cat /var/run/samhain.pid) ; \
+				fi ; \
+			fi ; \
+			if [ -x /usr/bin/monit -a "$(/usr/bin/monit status | grep samhain)" ] ; then \
+				monit start samhain ; \
+			elif [ -x /etc/init.d/samhain ] ; then \
+				/etc/init.d/samhain start ; \
+			elif [ -x /etc/rc.d/init.d/samhain ] ; then \
+				/etc/rc.d/init.d/samhain start ;
+			else \
+				echo "Do not know how to start samhain." ; \
+			fi'
+	                echo -n -e '\a' ; sleep 1
+	                echo -n -e '\a' ; sleep 1
+	                echo -n -e '\a' ; sleep 1
+	                echo -n -e '\a' ; sleep 1
+	                echo -n -e '\a'
+	        fi
+	fi
+
+
+}
+
+
+
+
+# run until a valid selection is made
+while [ 1 ] ; do
+	clear
+	
+	echo "SELECT ACTION"
+	echo
+	
+	echo -e "1.\tOnly clear log entries in SQL database"
+	echo -e "2.\tReinitialize host database"
+	echo -e "3.\tAdd a new host"
+	echo
+	echo -n "Select an action (q to quit): "
+	
+	read action
+	
+	if [ "${action}" = "q" ] ; then
+                exit
+        fi
+
+	if [ "${action}" = "1" ] ; then
+		cleardb
+	fi
+
+	if [ "${action}" = "2" ] ; then
+		rrinit
+	fi
+
+	if [ "${action}" = "3" ] ; then
+		addnewhost
+	fi
+
+done
+
+
+
+
Index: trunk/scripts/samhain-scripts/samhain.clearhost
===================================================================
--- trunk/scripts/samhain-scripts/samhain.clearhost	(revision 1)
+++ trunk/scripts/samhain-scripts/samhain.clearhost	(revision 1)
@@ -0,0 +1,21 @@
+#!/bin/sh
+
+[[ ${#} = 1 ]] || exit 42
+
+SAMHAIN_DB='samhain'
+SAMHAIN_SRV='localhost'
+SAMHAIN_PRT='3306'
+SAMHAIN_USR='samhain'
+SAMHAIN_PWD='*******'
+
+
+mysql -u ${SAMHAIN_USR} --password=${SAMHAIN_PWD} ${SAMHAIN_DB} \
+	-P ${SAMHAIN_PRT} -h ${SAMHAIN_SRV} \
+	-e 'select count(*) from log where log_host="'${1}'";'  || \
+( echo "SELECT FAILED" && exit 42 )
+
+mysql -u ${SAMHAIN_USR} --password=${SAMHAIN_PWD} ${SAMHAIN_DB} \
+	-P ${SAMHAIN_PRT} -h ${SAMHAIN_SRV} \
+	-e 'delete from log where log_host="'${1}'";' || \
+( echo "CLEANUP FAILED" && exit 42 )
+
Index: trunk/scripts/samhain-scripts/samhain.table.rotate.pl
===================================================================
--- trunk/scripts/samhain-scripts/samhain.table.rotate.pl	(revision 1)
+++ trunk/scripts/samhain-scripts/samhain.table.rotate.pl	(revision 1)
@@ -0,0 +1,45 @@
+#!/usr/bin/perl
+#-------------------------------------------------------------------------#
+# Author: Simon Bailey,                          #
+#                                                                         #
+# table rotation script for shifting data from the main table to keep     #
+# yule/samhain/beltane happy and fast.                                    #
+# the main reason for this is that we had 62568 log entries after         #
+# less than a week of real work with yule/samhain/beltane                 #
+# this script takes all data which is older than a day and acknowledged   #
+# and inserts it into a backup table, also in the main database.          #
+#-------------------------------------------------------------------------#
+
+use DBI;
+
+# Configuration Variables
+$SAMHAIN_DB='samhain';
+$SAMHAIN_SRV='localhost';
+$SAMHAIN_PRT='3306';
+$SAMHAIN_USR='samhain';
+$SAMHAIN_PWD='*******';
+
+# GMT Offset -- change this to your GMT Offset.
+# CET = +1
+$GMT_OFFSET = 1;
+
+# get the current date in GMT time, then convert it to yesterday
+($sec,$min,$hr,$day,$mon,$year,$wday,$ytag,$isdst) = gmtime(time);
+
+# year is returned as real year - 1900...
+$realYear = ($year-100+2000);
+$realMonth = ($mon+1); # month is a zero base array
+$realHour = ($hr+$GMT_OFFSET);
+$yesterday = ($day-1);
+
+$dbh = DBI->connect("DBI:mysql:database=$SAMHAIN_DB;host=$SAMHAIN_SRV;port=$SAMHAIN_PRT",$SAMHAIN_USR,$SAMHAIN_PWD);
+
+$sth = $dbh->prepare("INSERT INTO log_backup SELECT * FROM log WHERE ((log_ref IS NULL AND entry_status!=\'NEW\') OR (log_ref IS NOT NULL)) AND log_time < \'$realYear-$realMonth-$yesterday $realHour:00:00\';");
+$sth->execute;
+
+# print "insert done";
+
+$sth = $dbh->prepare("DELETE FROM log WHERE ((log_ref IS NULL AND entry_status!=\'NEW\') OR (log_ref IS NOT NULL)) AND log_time < \'$realYear-$realMonth-$yesterday $realHour:00:00\';");
+$sth->execute;
+
+# print "delete done";
Index: trunk/scripts/samhain.ebuild.in
===================================================================
--- trunk/scripts/samhain.ebuild.in	(revision 591)
+++ trunk/scripts/samhain.ebuild.in	(revision 1)
@@ -69,5 +69,5 @@
 	dodoc docs/BUGS COPYING docs/Changelog LICENSE docs/README \
 	      docs/README.UPGRADE docs/sh_mounts.txt docs/sh_userfiles.txt \
-	      docs/MANUAL-2_4.ps docs/MANUAL-2_4.html.tar
+	      docs/MANUAL-2_0.ps docs/MANUAL-2_0.html.tar
 
 	dohtml docs/HOWTO-client+server.html docs/HOWTO-samhain+GnuPG.html \
Index: trunk/scripts/samhain.spec.in
===================================================================
--- trunk/scripts/samhain.spec.in	(revision 591)
+++ trunk/scripts/samhain.spec.in	(revision 1)
@@ -70,5 +70,5 @@
         # Activate boot-time start up
         cd %{_localstatedir}/lib/%{name}
-        /bin/sh ./samhain-install.sh --verbose install-boot
+        ./samhain-install.sh --verbose install-boot
         if test -f /sbin/chkconfig; then
 		/sbin/chkconfig --add samhain
@@ -100,5 +100,5 @@
         cd %{_localstatedir}/lib/samhain
         if [ -f ./samhain-install.sh ]; then
-	    /bin/sh ./samhain-install.sh --verbose uninstall-boot
+	    ./samhain-install.sh --verbose uninstall-boot
 	else
 	    if [ -f /sbin/chkconfig ]; then
@@ -109,4 +109,11 @@
 fi
 
+%postun
+if [ "$1" = 0 ]; then
+        # remove any kernel modules that might have been installed
+        RVER=`uname -r`
+        rm -f /lib/modules/$RVER/samhain*
+fi
+
 
 %files
@@ -114,11 +121,10 @@
 %dir %{_localstatedir}/run
 %dir %{_localstatedir}/log
-%doc docs/BUGS COPYING docs/Changelog 
-%doc LICENSE docs/HOWTO* docs/MANUAL-2_4.* docs/README*
+%doc docs/BUGS COPYING docs/Changelog docs/TODO
+%doc LICENSE docs/HOWTO* docs/MANUAL-2_0.* docs/README*
 %{_localstatedir}/lib/%{name}
 %{_sbindir}/%{name}
 %attr(644,root,root) %{_mandir}/man5/samhain*
 %attr(644,root,root) %{_mandir}/man8/samhain*
-%attr(644,root,root) /etc/logrotate.d/@install_name@
 %config(noreplace) %{_sysconfdir}/samhainrc
 
Index: trunk/scripts/samhainadmin-gpg.pl.in
===================================================================
--- trunk/scripts/samhainadmin-gpg.pl.in	(revision 591)
+++ 	(revision )
@@ -1,719 +1,0 @@
-#! /usr/bin/perl
-
-# Copyright Rainer Wichmann (2004)
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
-
-use warnings;
-use strict;
-use Getopt::Long;
-use File::Basename;
-use File::Copy;
-use File::stat;
-use File::Temp qw/ tempfile tempdir unlink0 /;
-use IO::Handle;
-use Fcntl qw(:DEFAULT :flock);
-use Tie::File;
-
-# Do I/O to the data file in binary mode (so it 
-# wouldn't complain about invalid UTF-8 characters).
-use bytes;
-
-File::Temp->safe_level( File::Temp::HIGH );
-
-my %opts = ();
-my $action;
-my $file1;
-my $file2;
-my $passphrase;
-my $secretkeyring;
-my $return_from_sign = 0;
-my $no_print_examine = 0;
-my $no_remove_lock   = 0;
-my $base = basename($0);
-
-my $cfgfile  = "@myconffile@";
-my $datafile = "@mydatafile@";
-my $daemon   = "@sbindir@/@install_name@";
-my $gpg      = "@mygpg@";
-
-my $TARGETKEYID = "@mykeyid@";
-my $KEYTAG      = "@mykeytag@";
-
-$cfgfile  =~ s/^REQ_FROM_SERVER//;
-$datafile =~ s/^REQ_FROM_SERVER//;
-
-$gpg = "gpg" if ($gpg eq "");
-
-sub check_gpg_agent() {
-    my  $gpgconf = "$ENV{'HOME'}/.gnupg/gpg.conf";
-
-    if (!-f "$gpgconf") {
-	$gpgconf = "$ENV{'HOME'}/.gnupg/options";
-    }
-
-    if (-f $gpgconf) {
-
-	my @array = ();
-	tie @array, 'Tie::File', $gpgconf or die "Cannot tie ${gpgconf}: $!";
-	my @grep = grep(/^\s*use-agent/, @array);
-	
-	# print "matches = $#grep\n";
-	
-	if ($#grep >= 0)
-	{
-	    if (exists $ENV{'GPG_AGENT_INFO'})
-	    {
-		my $socke = $ENV{'GPG_AGENT_INFO'};
-		$socke =~ s/:.*//;
-		
-		# print "socke = $socke\n";
-		
-		if (! -S $socke)
-		{
-		    print "--------------------------------------------------\n";
-		    print "\n";
-		    print " GPG is set to use gpg-agent, but GPG agent is";
-		    print " not running, though GPG_AGENT_INFO is defined.\n\n";
-		    print " Please restart gpg-agent, or remove the use-agent\n";
-		    print " option from ${gpgconf} and unset GPG_AGENT_INFO\n\n";
-		    print "--------------------------------------------------\n";
-		    print "\n";
-		    exit 1;
-		}
-	    }
-	    else
-	    {
-		print "--------------------------------------------------\n";
-		print "\n";
-		print " GPG is set to use gpg-agent, but ";
-		print " GPG_AGENT_INFO is not defined.\n\n";
-		print " Please start gpg-agent, or remove the use-agent\n";
-		print " option from ${gpgconf}\n\n";
-		print "--------------------------------------------------\n";
-		print "\n";
-		exit 1;
-	    }
-	}
-	untie @array;
-    }
-}
-
-
-sub usage() {
-    print "Usage:\n";
-    print "  $base { -m F | --create-cfgfile }    [options] [in.cfgfile]\n";
-    print "    Sign the configuration file. If in.cfgfile is given, sign it\n";
-    print "    and install it as configuration file.\n\n";
-
-    print "  $base { -m f | --print-cfgfile }     [options] \n";
-    print "    Print the configuration file to stdout. Signatures are removed.\n\n";
-
-    print "  $base { -m D | --create-datafile }   [options] [in.datafile]\n";
-    print "    Sign the database file. If in.datafile is given, sign it\n";
-    print "    and install it as database file.\n\n";
-
-    print "  $base { -m d | --print-datafile }    [options] \n";
-    print "    Print the database file to stdout. Signatures are removed. Use\n";
-    print "    option --list to list files in database rather than printing the raw file.\n\n";
-
-    print "  $base { -m R | --remove-signature }  [options] file1 [file2 ...]\n";
-    print "    Remove cleartext signature from input file(s). The file\n";
-    print "    is replaced by the non-signed file.\n\n";
-
-    print "  $base { -m E | --sign }              [options] file1 [file2 ...]\n";
-    print "    Sign file(s) with a cleartext signature. The file\n";
-    print "    is replaced by the signed file.\n\n";
-
-    print "  $base { -m e | --examine }           [options] file1 [file2 ...]\n";
-    print "    Report signature status of file(s).\n\n";
-
-    print "  $base { -m G | --generate-keys }     [options] \n";
-    print "    Generate a PGP keypair to use for signing.\n\n";
-
-    print "Options:\n";
-    print "  -c cfgfile    --cfgfile cfgfile\n";
-    print "    Select an alternate configuration file.\n\n";
-
-    print "  -d datafile   --datafile datafile\n";
-    print "    Select an alternate database file.\n\n";
-
-    print "  -p passphrase --passphrase passphrase\n";
-    print "    Set the passphrase for gpg. By default, gpg will ask.\n\n";
-
-    print "  -k keyid      --keyid keyid\n";
-    print "   Select the keyid to use for signing.\n\n";
-
-    print "  -l            --list\n";
-    print "    List the files in database rather than printing the raw file.\n\n";
-
-    print "  -v            --verbose\n";
-    print "    Verbose output.\n\n";
-    return;
-}
-
-sub check_gpg_uid () {
-    if (0 != $>) {
-	print "--------------------------------------------------\n";
-	print "\n";
-	print " You are not root. Please remember that samhain/yule\n";
-	print " will use the public keyring of root to verify a signature.\n";
-	print "\n";
-	print "--------------------------------------------------\n";
-    } else {
-	if (!("@yulectl_prg@" =~ //)) {
-	    print "--------------------------------------------------\n";
-	    print "\n";
-	    print " Please remember that yule will drop root after startup. Signature\n";
-	    print " verification on SIGHUP will fail if you do not import the public key\n";
-	    print " into the keyring of the non-root yule user.\n";
-	    print "\n";
-	    print "--------------------------------------------------\n";
-	}
-    }
-}
-    
-sub check_gpg_sign () {
-    if ( defined($secretkeyring)) {
-        if ( (!-d "$secretkeyring")){
-            print "--------------------------------------------------\n";
-            print "\n";
-            print " Secret keyring $secretkeyring not found!\n";
-            print "\n";
-            print " Please check the path/name of the alternate secret keyring.\n";
-            print "\n";
-            print "--------------------------------------------------\n";
-            print "\n";
-            exit;
-        }
-    } else {
-        if ( (!-d "$ENV{'HOME'}/.gnupg") || (!-e "$ENV{'HOME'}/.gnupg/secring.gpg")) {
-	    print "--------------------------------------------------\n";
-	    print "\n";
-	    if (!-d "$ENV{'HOME'}/.gnupg") {
-	        print " Directory \$HOME/.gnupg not found!\n";
-	    } else {
-	        print " Secret keyring \$HOME/.gnupg/secring.gpg not found!\n";
-	    }
-	    print "\n";
-	    print " This indicates that you have never created a \n";
-	    print " public/private keypair, and thus cannot sign.\n";
-	    print " \n";
-	    print " Please use $0 --generate-keys or gpg --gen-key\n";
-	    print " to generate a public/private keypair first.\n";
-	    print "\n";
-	    print "--------------------------------------------------\n";
-	    print "\n";
-	    exit;
-        }
-    }
-}
-
-sub check_gpg_verify () {
-    if ( (!-d "$ENV{'HOME'}/.gnupg") || (!-e "$ENV{'HOME'}/.gnupg/pubring.gpg")) {
-	print "--------------------------------------------------\n";
-	print "\n";
-	if (!-d "$ENV{'HOME'}/.gnupg") {
-	    print " Directory \$HOME/.gnupg not found!\n";
-	} else {
-	    print " Public keyring \$HOME/.gnupg/pubring.gpg not found!\n";
-	}
-	print "\n";
-	print " This indicates that you have never used gpg before \n";
-	print " and/or have no public keys to verify signatures.\n";
-	print " \n";
-	print " Please use 'gpg --export key_id' to export the public\n";
-	print " signing key of the user who is signing the\n";
-	print " configuration/database files.\n\n";
-	print " Then you can use 'gpg --import keyfile' to import the key\n";
-	print " into this user's public keyring.\n";
-	print "\n";
-	print "--------------------------------------------------\n";
-	print "\n";
-	exit;
-    }
-}
-
-
-sub generate () {
-    my $command = "$gpg --homedir $ENV{'HOME'}/.gnupg --gen-key";
-    check_gpg_uid();
-    system ($command) == 0 
-	or die "system $command failed: $?";
-    exit;
-}
-
-sub examine () {
-    my $iscfg = 0;
-    my $have_fp  = 0;
-    my $have_sig = 0;
-    my $message = '';
-    my $retval  = 9;
-    my $fh;
-    my $filename;
-
-    if (!($file1 =~ /^\-$/)) {
-	die ("Cannot open $file1 for read: $!") unless ((-e $file1) && (-r _));
-    }
-    open FIN,  "<$file1" or die "Cannot open $file1 for read: $!";
-
-    my $dir = tempdir( CLEANUP => 1 );
-    $filename = $dir . "/exa_jhfdbilw." . $$;
-    open $fh, ">$filename" or die "Cannot open $filename";
-    autoflush $fh 1;
-
-    while () {
-	print $fh $_;
-	if ($_ =~ /^\s*\[Misc\]/) {
-	    $iscfg = 1;
-	}
-    }
-    if ($iscfg == 1) {
-	$message .=  "File $file1 is a configuration file\n\n";
-    } else {
-	$message .=  "File $file1 is a database file\n\n";
-    }
-
-
-    my $command = "$gpg --homedir $ENV{'HOME'}/.gnupg --status-fd 1 ";
-    $command .= "--verbose " if (defined($opts{'v'}));
-    $command .= "--verify $filename ";
-    if (defined($opts{'v'})) {
-	$command .= "2>&1";
-    } else {
-	$command .= "2>/dev/null";
-    }
-
-    print STDOUT "Using: $command\n\n" if (defined($opts{'v'}));
-    open  GPGIN, "$command |" or die "Cannot fork: $!";
-
-    while () {
-	if ($_ =~ /^\[GNUPG:\] GOODSIG ([0-9A-F]+) (.*)$/) {
-	    $message .= "GOOD signature with key: $1\n";
-	    $message .= "Key owner:               $2\n";
-	    $have_sig = 1;
-	    $retval   = 0;
-	}
-	if ($_ =~ /^\[GNUPG:\] VALIDSIG ([0-9A-F]+) ([0-9\-]+)\s/) {
-	    $message .= "Key fingerprint:         $1\n";
-	    $message .= "Signature generated on:  $2\n\n";
-	    $have_fp = 1;
-	    $message .=  "This file is signed with a valid signature.\n" 
-		if ($have_sig == 1);
-	    $have_sig = 1;
-	    $have_fp = 1;
-	}
-	if ($_ =~ /^\[GNUPG:\] NODATA 1/) {
-	    $message .=  "NO signature found.\n\n";
-	    $message .=  "This file is not signed !!!\n";
-	    $have_sig = 1;
-	    $have_fp = 1;
-	    $retval  = 2;
-	}
-	if ($_ =~ /^\[GNUPG:\] BADSIG ([0-9A-F]+) (.*)$/) {
-	    $message .=  "BAD signature with key: $1\n";
-	    $message .=  "Key owner:              $2\n\n";
-	    $message .=  "This file is signed with an invalid signature !!!\n";
-	    $have_sig = 1;
-	    $have_fp = 1;
-	    $retval = 1;
-	}
-	if ($_ =~ /^\[GNUPG:\] NO_PUBKEY ([0-9A-F]+)/) {
-	    $message .=  "NOT CHECKED signature with key: $1\n\n";
-	    $message .=  "The signature of this file cannot be checked: no public key available !!!\n";
-	    $have_sig = 1;
-	    $have_fp = 1;
-	    $retval  = 1;
-	}
-	print STDOUT $_ if (defined($opts{'v'}));
-    }
-    close (GPGIN);
-    print STDOUT "\n" if (defined($opts{'v'}));
-    if ($have_sig == 0) {
-	$message .=  "NO valid signature found\n";
-    } 
-    elsif ($have_fp == 0) {
-	$message .=  "NO fingerprint found\n";
-    }
-    close (FIN);
-    if ($no_print_examine == 0) {
-	print STDOUT $message;
-    }
-    unlink0( $fh, $filename ) or die "Cannot unlink $filename safely";
-    return $retval;
-}
-
-sub remove () {
-    my $bodystart = 1;
-    my $sigstart  = 0;
-    my $sigend    = 0;
-    my $filename  = "";
-    my $fh;
-    my $stats;
-
-    open FH, "<$file1" or die "Cannot open file $file1 for read: $!";
-    if (!($file1 =~ /^\-$/)) {
-	flock(FH, LOCK_EX) unless ($no_remove_lock == 1);
-	my $dir = tempdir( CLEANUP => 1 ) or die "Tempdir failed";
-	$filename = $dir . "/rem_iqegBCQb." . $$;
-	open $fh, ">$filename" or die "Cannot open $filename";
-	$stats = stat($file1);
-	# ($fh, $filename) = tempfile(UNLINK => 1);
-    } else {
-	open $fh, ">$file1" or die "Cannot open file $file1 for write: $!";
-    }
-    autoflush $fh 1;
-    while () {
-	if ($_ =~ /^-----BEGIN PGP SIGNED MESSAGE-----/) {
-	    $sigstart = 1;
-	    $bodystart = 0;
-	    next;
-	} elsif (($sigstart == 1) && ($_ =~ /^\s+$/)) {
-	    $sigstart = 0;
-	    $bodystart = 1;
-	    next;
-	} elsif ($_ =~ /^-----BEGIN PGP SIGNATURE-----/) {
-	    $bodystart = 0;
-	    $sigend = 1;
-	    next;
-	} elsif (($sigend == 1) && ($_ =~ /^-----END PGP SIGNATURE-----/)) {
-	    $sigend = 0;
-	    $bodystart = 1;
-	    next;
-	}
-	if ($bodystart == 1) {
-	    print $fh $_;
-	}
-    }
-    if (!($file1 =~ /^\-$/)) {
-	copy("$filename", "$file1") 
-	    or die "Copy $filename to $file1 failed: $!";
-	chmod $stats->mode, $file1;
-	chown $stats->uid, $stats->gid, $file1;
-	flock(FH, LOCK_UN) unless ($no_remove_lock == 1);
-	close FH;
-    }
-    unlink0( $fh, $filename ) or die "Cannot unlink $filename safely";
-    return;
-}
-
-sub print_cfgfile () {
-    my $bodystart = 0;
-    my $sigstart  = 0;
-
-    if (!defined($file2)) {
-	$file2 = '-';
-    }
-
-    open FH, "<$file1" or die "Cannot open file $file1 for read: $!";
-    open FO, ">$file2" or die "Cannot open file $file2 for write: $!";
-    while () {
-	if ($_ =~ /^-----BEGIN PGP SIGNED MESSAGE-----/) {
-	    $sigstart = 1;
-	    next;
-	} elsif (($sigstart == 1) && ($_ =~ /^\s+$/)) {
-	    $sigstart = 0;
-	    $bodystart = 1;
-	    next;
-	} elsif ($_ =~ /^-----BEGIN PGP SIGNATURE-----/) {
-	    $bodystart = 0;
-	    exit;
-	}
-	if ($bodystart == 1) {
-	    print FO $_;
-	}
-    }
-    exit;
-}
-sub print_datafile () {
-    die ("Cannot find program $daemon") 
-	unless (-e $daemon);
-    if (defined($opts{'v'})) {
-	open FH, "$daemon --full-detail -d $datafile |" 
-	    or die "Cannot open datafile $datafile for read: $!";
-    } else {
-	open FH, "$daemon -d $datafile |" 
-	    or die "Cannot open datafile $datafile for read: $!";
-    }
-    while () {
-	print $_;
-    }
-    exit;
-}
-
-sub sign_file () {
-
-    my $fileout = '';
-    my $bodystart = 1;
-    my $sigstart  = 0;
-    my $sigend    = 0;
-    my $stats;
-    my $fh1;
-    my $filename1;
-    my $flag1     = 0;
-
-    check_gpg_uid();
-    check_gpg_agent();
-
-    if (!defined($file2)) {
-	$file2 = $file1;
-    }
-
-    if ($file1 =~ /^\-$/) {
-	my $dir = tempdir( CLEANUP => 1 ) or die "Tempdir failed";
-	$filename1 = $dir . "/sig_vs8827sd." . $$;
-	open $fh1, ">$filename1" or die "Cannot open $filename1";
-	$flag1 = 1;
-	# my ($fh1, $filename1) = tempfile(UNLINK => 1);
-
-	while () {
-	  if ($_ =~ /^-----BEGIN PGP SIGNED MESSAGE-----/) {
-	    $sigstart = 1;
-	    $bodystart = 0;
-	    next;
-	  } elsif (($sigstart == 1) && ($_ =~ /^\s+$/)) {
-	    $sigstart = 0;
-	    $bodystart = 1;
-	    next;
-	  } elsif ($_ =~ /^-----BEGIN PGP SIGNATURE-----/) {
-	    $bodystart = 0;
-	    $sigend = 1;
-	    next;
-	  } elsif (($sigend == 1) && ($_ =~ /^-----END PGP SIGNATURE-----/)) {
-	    $sigend = 0;
-	    $bodystart = 1;
-	    next;
-	  }
-	  if ($bodystart == 1) {
-	    print $fh1 $_;
-	  }
-	  #
-	  # print $fh1 $_;
-	  #
-	}
-	$file1 = $filename1;
-	$fileout = '-';
-    } else {
-	open (LOCKFILE, "<$file1") or die "Cannot open $file1: $!";
-	flock(LOCKFILE, LOCK_EX);
-	$no_print_examine = 1;
-	$no_remove_lock   = 1;
-	if (examine() < 2) {
-	    remove();
-	}
-	$fileout = $file1 . ".asc";
-	$stats   = stat($file1)
-	    or die "No file $file1: $!";
-    }
-
-    if (defined($passphrase)) {
-	local $SIG{PIPE} = 'IGNORE';
-	my $command = "$gpg --homedir $ENV{'HOME'}/.gnupg --passphrase-fd 0 -a ${KEYTAG} ${TARGETKEYID} --clearsign -o $fileout --not-dash-escaped ";
-	$command .= "$file1";
-	open (FH, "|$command")  or die "can't fork: $!";
-	print FH "$passphrase"  or die "can't write: $!";
-	close FH                or die "can't close: status=$?";
-    } else {
-	my $command = "$gpg --homedir $ENV{'HOME'}/.gnupg                   -a ${KEYTAG} ${TARGETKEYID} --clearsign -o $fileout --not-dash-escaped ";
-	$command .= "$file1";
-	system("$command") == 0 
-	    or die "system $command failed: $?";
-    }
-
-    if (!($fileout =~ /^\-$/)) {
-	my $st_old = stat($file1) 
-	    or die "No file $file1: $!";
-	my $st_new = stat($fileout) 
-	    or die "No file $fileout: $!";
-	die ("Signed file is smaller than unsigned file") 
-	    unless ($st_new->size > $st_old->size);
-	move("$fileout", "$file2") 
-	    or die "Move $fileout to $file2 failed: $!";
-	chmod $stats->mode, $file2;
-	chown $stats->uid, $stats->gid, $file2;
-	flock(LOCKFILE, LOCK_UN);
-    }
-
-    if ($flag1 == 1) {
-	unlink0( $fh1, $filename1 ) or die "Cannot unlink $filename1 safely";
-    }
-    if ($return_from_sign == 1) {
-	return;
-    }
-    exit;
-}
-
-Getopt::Long::Configure ("posix_default");
-Getopt::Long::Configure ("bundling");
-# Getopt::Long::Configure ("debug");
-
-GetOptions (\%opts, 'm=s', 'h|help', 'v|verbose', 'l|list',
-	    'c|cfgfile=s',
-	    'd|datafile=s',
-	    'p|passphrase=s',
-            'k|keyid=s',
-	    'create-cfgfile',  # -m F
-	    'print-cfgfile',   # -m f
-	    'create-datafile', # -m D
-	    'print-datafile',  # -m d
-	    'remove-signature',# -m R
-	    'sign',            # -m E
-	    'examine',         # -m e
-	    'generate-keys');  # -m G
-
-if (defined ($opts{'h'})) {
-    usage();
-    exit;
-}
-
-if (defined($opts{'k'})) {
-    $TARGETKEYID = $opts{'k'};
-    $KEYTAG = "--default-key";
-}
-if (defined($opts{'c'})) {
-    $cfgfile = $opts{'c'};
-}
-if (defined($opts{'d'})) {
-    $datafile = $opts{'d'};
-}
-if (defined($opts{'p'})) {
-    $passphrase = $opts{'p'};
-}
-if (defined($opts{'s'})) {
-    $secretkeyring = $opts{'s'};
-}
-
-if (defined ($opts{'m'}) && ($opts{'m'} =~ /[FfDdREeG]{1}/) ) {
-    $action = $opts{'m'};
-}
-elsif (defined ($opts{'create-cfgfile'})) {
-    $action = 'F';
-}
-elsif (defined ($opts{'print-cfgfile'})) {
-    $action = 'f';
-}
-elsif (defined ($opts{'create-datafile'})) {
-    $action = 'D';
-}
-elsif (defined ($opts{'print-datafile'})) {
-    $action = 'd';
-}
-elsif (defined ($opts{'remove-signature'})) {
-    $action = 'R';
-}
-elsif (defined ($opts{'sign'})) {
-    $action = 'E';
-}
-elsif (defined ($opts{'examine'})) {
-    $action = 'e';
-}
-elsif (defined ($opts{'generate-keys'})) {
-    $action = 'G';
-}
-else {
-    usage();
-    die ("No valid action specified !");
-}
-
-if (defined($ARGV[0])) {
-    $file1 = $ARGV[0];
-} 
-if (defined($ARGV[1])) {
-    $file2 = $ARGV[1];
-} 
-
-
-if (($action =~ /[REe]{1}/) && !defined($file1)) {
-    usage();
-    die("Option -m $action requires a filename (or '-' for stdio)\n");
-}
-
-if ($action =~ /^F$/) {
-    if (!defined($file1)) {
-	$file1 = $cfgfile;
-    }
-    $file2 = $cfgfile;
-    sign_file ();
-}
-
-if ($action =~ /^D$/) {
-    if (!defined($file1)) {
-	$file1 = $datafile;
-    }
-    $file2 = $datafile;
-    sign_file ();
-}
-
-if ($action =~ /^R$/) {
-    # $file1 defined
-    my $i = 0;
-    while (defined($ARGV[$i])) {
-	$file1 = $ARGV[$i];
-	remove ();
-	++$i;
-    }
-}
-
-if ($action =~ /^E$/) {
-    # $file1 defined
-    # default: $file2 = $file1
-    check_gpg_sign();
-    my $i = 0;
-    while (defined($ARGV[$i])) {
-	$file1 = $ARGV[$i];
-	$file2 = $file1;
-	$return_from_sign = 1;
-	sign_file ();
-	++$i;
-    }
-}
-
-if ($action =~ /^e$/) {
-    # $file1 defined
-    # default: $file2 = stdout
-    check_gpg_verify();
-    my $i = 0;
-    my $ret = 0;
-    while (defined($ARGV[$i])) {
-	print "\n";
-	$file1 = $ARGV[$i];
-	$ret += examine ();
-	++$i;
-	print "\n--------------------------------\n" if (defined($ARGV[$i]));
-    }
-    exit($ret);
-}
-
-if ($action =~ /^f$/) {
-    $file1 = $cfgfile;
-    $file2 = "-";
-    print_cfgfile ();
-}
-
-if ($action =~ /^d$/) {
-    # $file1 irrelevant
-    if (defined($opts{'l'})) {
-	print_datafile ();
-    } else {
-	$file1 = $datafile;
-	$file2 = "-";
-	print_cfgfile ();
-    }
-}
-
-
-
Index: trunk/scripts/samhainadmin-sig.pl.in
===================================================================
--- trunk/scripts/samhainadmin-sig.pl.in	(revision 591)
+++ 	(revision )
@@ -1,636 +1,0 @@
-#! /usr/bin/perl
-
-# Copyright Rainer Wichmann (2004)
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
-
-use warnings;
-use strict;
-use Getopt::Long;
-use File::Basename;
-use File::Copy;
-use File::stat;
-use File::Temp qw/ tempfile tempdir unlink0 /;
-use IO::Handle;
-use Fcntl qw(:DEFAULT :flock);
-use Tie::File;
-
-# Do I/O to the data file in binary mode (so it 
-# wouldn't complain about invalid UTF-8 characters).
-use bytes;
-
-File::Temp->safe_level( File::Temp::HIGH );
-
-my %opts = ();
-my $action;
-my $file1;
-my $file2;
-my $passphrase;
-my $secretkey;
-my $return_from_sign = 0;
-my $no_print_examine = 0;
-my $no_remove_lock   = 0;
-my $base = basename($0);
-
-my $cfgfile  = "@myconffile@";
-my $datafile = "@mydatafile@";
-my $daemon   = "@sbindir@/@install_name@";
-my $signify  = "@mysignify@";
-
-my $SIGDIR   = "$ENV{'HOME'}/.signify";
-my $KEYID    = "@install_name@";
-
-$cfgfile  =~ s/^REQ_FROM_SERVER//;
-$datafile =~ s/^REQ_FROM_SERVER//;
-
-$signify = "signify-openbsd" if ($signify eq "");
-
-sub usage() {
-    print "Usage:\n";
-    print "  $base { -m F | --create-cfgfile }    [options] [in.cfgfile]\n";
-    print "    Sign the configuration file. If in.cfgfile is given, sign it\n";
-    print "    and install it as configuration file.\n\n";
-
-    print "  $base { -m f | --print-cfgfile }     [options] \n";
-    print "    Print the configuration file to stdout. Signatures are removed.\n\n";
-
-    print "  $base { -m D | --create-datafile }   [options] [in.datafile]\n";
-    print "    Sign the database file. If in.datafile is given, sign it\n";
-    print "    and install it as database file.\n\n";
-
-    print "  $base { -m d | --print-datafile }    [options] \n";
-    print "    Print the database file to stdout. Signatures are removed. Use\n";
-    print "    option --list to list files in database rather than printing the raw file.\n\n";
-
-    print "  $base { -m R | --remove-signature }  [options] file1 [file2 ...]\n";
-    print "    Remove cleartext signature from input file(s). The file\n";
-    print "    is replaced by the non-signed file.\n\n";
-
-    print "  $base { -m E | --sign }              [options] file1 [file2 ...]\n";
-    print "    Sign file(s) with a cleartext signature. The file\n";
-    print "    is replaced by the signed file.\n\n";
-
-    print "  $base { -m e | --examine }           [options] file1 [file2 ...]\n";
-    print "    Report signature status of file(s).\n\n";
-
-    print "  $base { -m G | --generate-keys }     [options] \n";
-    print "    Generate a signify keypair to use for signing.\n\n";
-
-    print "Options:\n";
-    print "  -c cfgfile    --cfgfile cfgfile\n";
-    print "    Select an alternate configuration file.\n\n";
-
-    print "  -d datafile   --datafile datafile\n";
-    print "    Select an alternate database file.\n\n";
-
-    print "  -p passphrase --passphrase passphrase\n";
-    print "    Set the passphrase for signify. By default, signify will ask.\n\n";
-
-    print "  -s signify_dir --signify-dir signify_dir\n";
-    print "    Select an alternate directory to locate the secret keyring.\n";
-    print "    Will use '$ENV{'HOME'}/.signify/' by default.\n\n";
-
-    print "  -k keyid      --keyid keyid\n";
-    print "   Select the keyid to use for signing.\n\n";
-
-    print "  -l            --list\n";
-    print "    List the files in database rather than printing the raw file.\n\n";
-
-    print "  -v            --verbose\n";
-    print "    Verbose output.\n\n";
-    return;
-}
-
-sub check_signify_uid () {
-    if (0 != $>) {
-	print "--------------------------------------------------\n";
-	print "\n";
-	print " You are not root. Please remember that samhain/yule\n";
-	print " will use the public key of root to verify a signature.\n";
-	print "\n";
-	print "--------------------------------------------------\n";
-    } else {
-	if (!("@yulectl_prg@" =~ //)) {
-	    print "--------------------------------------------------\n";
-	    print "\n";
-	    print " Please remember that yule will drop root after startup. Signature\n";
-	    print " verification on SIGHUP will fail if you do not import the public key\n";
-	    print " into the ~/.signify/ directory of the non-root yule user.\n";
-	    print "\n";
-	    print "--------------------------------------------------\n";
-	}
-    }
-}
-    
-sub check_signify_sign () {
-    if ( defined($secretkey)) {
-        if ( (!-d "$secretkey")){
-            print "--------------------------------------------------\n";
-            print "\n";
-            print " Secret key $secretkey not found!\n";
-            print "\n";
-            print " Please check the path/name of the alternate secret key.\n";
-            print "\n";
-            print "--------------------------------------------------\n";
-            print "\n";
-            exit;
-        }
-    } else {
-        if ( (!-d "$SIGDIR") || (!-e "${SIGDIR}/${KEYID}.sec")) {
-	    print "--------------------------------------------------\n";
-	    print "\n";
-	    if (!-d "$SIGDIR") {
-	        print " Directory $SIGDIR not found!\n";
-	    } else {
-	        print " Secret key ${SIGDIR}/${KEYID}.sec not found!\n";
-	    }
-	    print "\n";
-	    print " This indicates that you have never created a \n";
-	    print " public/private keypair, and thus cannot sign.\n";
-	    print " \n";
-	    print " Please use $0 --generate-keys or\n";
-	    print " $signify -G -s ${SIGDIR}/${KEYID}.sec -p ${SIGDIR}/${KEYID}.pub\n";
-	    print " to generate a public/private keypair first.\n";
-	    print "\n";
-	    print "--------------------------------------------------\n";
-	    print "\n";
-	    exit;
-        }
-    }
-}
-
-sub check_signify_verify () {
-    if ( (!-d "${SIGDIR}") || (!-e "${SIGDIR}/${KEYID}.pub")) {
-	print "--------------------------------------------------\n";
-	print "\n";
-	if (!-d "$SIGDIR") {
-	    print " Directory $SIGDIR not found!\n";
-	} else {
-	    print " Public key ${SIGDIR}/${KEYID}.pub not found!\n";
-	}
-	print "\n";
-	print " This indicates that you have no public key\n";
-	print " to verify signatures.\n";
-	print " \n";
-	print " Please copy the public key ${KEYID}.pub of\n";
-	print " the user who is signing the configuration/database files\n";
-	print " into the directory $SIGDIR.\n";
-	print "\n";
-	print "--------------------------------------------------\n";
-	print "\n";
-	exit;
-    }
-}
-
-
-sub generate () {
-    my $command = "$signify -G -s ${SIGDIR}/${KEYID}.sec -p ${SIGDIR}/${KEYID}.pub";
-    if (!-d "${SIGDIR}") {
-	unless(mkdir "$SIGDIR", 0750) {
-	    die "Creating directory $SIGDIR failed: $?";
-	}
-    }
-    check_signify_uid();
-    system ($command) == 0 
-	or die "system $command failed: $?";
-    exit;
-}
-
-sub examine () {
-    my $iscfg = 0;
-    my $have_fp  = 0;
-    my $have_sig = 0;
-    my $message = '';
-    my $retval  = 9;
-    my $fh;
-    my $filename;
-
-    if (!($file1 =~ /^\-$/)) {
-	die ("Cannot open $file1 for read: $!") unless ((-e $file1) && (-r _));
-    }
-    open FIN,  "<$file1" or die "Cannot open $file1 for read: $!";
-
-    my $dir = tempdir( CLEANUP => 1 );
-    $filename = $dir . "/exa_jhfdbilw." . $$;
-    open $fh, ">$filename" or die "Cannot open $filename";
-    autoflush $fh 1;
-
-    while () {
-	print $fh $_;
-	if ($_ =~ /^\s*\[Misc\]/) {
-	    $iscfg = 1;
-	}
-    }
-    if ($iscfg == 1) {
-	$message .=  "File $file1 is a configuration file\n\n";
-    } else {
-	$message .=  "File $file1 is a database file\n\n";
-    }
-
-
-    my $command = "$signify -Vem /dev/null -p ${SIGDIR}/${KEYID}.pub ";
-    $command .= "-x $filename ";
-    if (defined($opts{'v'})) {
-	$command .= "2>&1";
-    } else {
-	$command .= "2>/dev/null";
-    }
-
-    print STDOUT "Using: $command\n\n" if (defined($opts{'v'}));
-    open  SIGIN, "$command |" or die "Cannot fork: $!";
-
-    while () {
-	chomp ($_);
-	if ($_ =~ /^Signature Verified$/) {
-	    $message .= "GOOD signature with key: ${SIGDIR}/${KEYID}.pub\n";
-	    $have_sig = 1;
-	    $retval   = 0;
-	}
-	print STDOUT $_ if (defined($opts{'v'}));
-    }
-    close (SIGIN);
-    print STDOUT "\n" if (defined($opts{'v'}));
-    if ($have_sig == 0) {
-	$message .=  "NO valid signature found\n";
-    }
-    close (FIN);
-    if ($no_print_examine == 0) {
-	print STDOUT $message;
-    }
-    unlink0( $fh, $filename ) or die "Cannot unlink $filename safely";
-    return $retval;
-}
-
-sub wstrip ($) {
-    $_ = shift;
-    $_ =~ s/\s+//g;
-    return $_;
-}
-
-sub remove () {
-    my $bodystart = 1;
-    my $sigstart  = 0;
-    my $sigend    = 0;
-    my $filename  = "";
-    my $fh;
-    my $stats;
-
-    open FH, "<$file1" or die "Cannot open file $file1 for read: $!";
-    if (!($file1 =~ /^\-$/)) {
-	flock(FH, LOCK_EX) unless ($no_remove_lock == 1);
-	my $dir = tempdir( CLEANUP => 1 ) or die "Tempdir failed";
-	$filename = $dir . "/rem_iqegBCQb." . $$;
-	open $fh, ">$filename" or die "Cannot open $filename";
-	$stats = stat($file1);
-    } else {
-	open $fh, ">$file1" or die "Cannot open file $file1 for write: $!";
-    }
-    autoflush $fh 1;
-    while () {
-	if ($_ =~ /^untrusted comment: /) {
-	    $sigstart = 1;
-	    $bodystart = 0;
-	    next;
-	} elsif (($sigstart == 1) && (wstrip($_) =~ m{^(?: [A-Za-z0-9+/]{4} )*(?:[A-Za-z0-9+/]{2} [AEIMQUYcgkosw048]=|[A-Za-z0-9+/][AQgw]==)?$}xm )) {
-	    $sigstart = 0;
-	    $bodystart = 1;
-	    next;
-	} elsif (($sigstart == 1) && ($bodystart == 0)) {
-	    # comment NOT followed by signature
-	    $sigstart = 0;
-	    next;
-	}
-
-	if ($bodystart == 1) {
-	    print $fh $_;
-	}
-    }
-    if (!($file1 =~ /^\-$/)) {
-	copy("$filename", "$file1") 
-	    or die "Copy $filename to $file1 failed: $!";
-	chmod $stats->mode, $file1;
-	chown $stats->uid, $stats->gid, $file1;
-	flock(FH, LOCK_UN) unless ($no_remove_lock == 1);
-	close FH;
-    }
-    unlink0( $fh, $filename ) or die "Cannot unlink $filename safely";
-    return;
-}
-
-sub print_cfgfile () {
-    my $bodystart = 0;
-    my $sigstart  = 0;
-
-    if (!defined($file2)) {
-	$file2 = '-';
-    }
-
-    open FH, "<$file1" or die "Cannot open file $file1 for read: $!";
-    open FO, ">$file2" or die "Cannot open file $file2 for write: $!";
-    while () {
-	if ($_ =~ /^untrusted comment: /) {
-	    $sigstart = 1;
-	    $bodystart = 0;
-	    next;
-	} elsif (($sigstart == 1) && (wstrip($_) =~ m{^(?: [A-Za-z0-9+/]{4} )*(?:[A-Za-z0-9+/]{2} [AEIMQUYcgkosw048]=|[A-Za-z0-9+/][AQgw]==)?$}xm )) {
-	    $sigstart = 0;
-	    $bodystart = 1;
-	    next;
-	} elsif (($sigstart == 1) && ($bodystart == 0)) {
-	    # comment NOT followed by signature 
-	    $sigstart = 0;
-	    next;
-	}
-	if ($bodystart == 1) {
-	    print FO $_;
-	}
-    }
-    exit;
-}
-
-sub print_datafile () {
-    die ("Cannot find program $daemon") 
-	unless (-e $daemon);
-    if (defined($opts{'v'})) {
-	open FH, "$daemon --full-detail -d $datafile |" 
-	    or die "Cannot open datafile $datafile for read: $!";
-    } else {
-	open FH, "$daemon -d $datafile |" 
-	    or die "Cannot open datafile $datafile for read: $!";
-    }
-    while () {
-	print $_;
-    }
-    exit;
-}
-
-sub sign_file () {
-
-    my $fileout = '';
-    my $bodystart = 1;
-    my $sigstart  = 0;
-    my $sigend    = 0;
-    my $stats;
-    my $fh1;
-    my $filename1;
-    my $flag1     = 0;
-
-    check_signify_uid();
-
-    if (!defined($file2)) {
-	$file2 = $file1;
-    }
-
-    if ($file1 =~ /^\-$/) {
-	my $dir = tempdir( CLEANUP => 1 ) or die "Tempdir failed";
-	$filename1 = $dir . "/sig_vs8827sd." . $$;
-	open $fh1, ">$filename1" or die "Cannot open $filename1";
-	$flag1 = 1;
-	# my ($fh1, $filename1) = tempfile(UNLINK => 1);
-
-	while () {
-	    if ($_ =~ /^untrusted comment: /) {
-		$sigstart = 1;
-		$bodystart = 0;
-		next;
-	    } elsif (($sigstart == 1) && (wstrip($_) =~ m{^(?: [A-Za-z0-9+/]{4} )*(?:[A-Za-z0-9+/]{2} [AEIMQUYcgkosw048]=|[A-Za-z0-9+/][AQgw]==)?$}xm )) {
-		$sigstart = 0;
-		$bodystart = 1;
-		next;
-	    } elsif (($sigstart == 1) && ($bodystart == 0)) {
-		#comment NOT followed by signature 
-		$sigstart = 0;
-		next;
-	    }
-
-	    if ($bodystart == 1) {
-		print $fh1 $_;
-	    }
-	}
-	$file1 = $filename1;
-	$fileout = '-';
-    } else {
-	open (LOCKFILE, "<$file1") or die "Cannot open $file1: $!";
-	flock(LOCKFILE, LOCK_EX);
-	$no_print_examine = 1;
-	$no_remove_lock   = 1;
-	if (examine() < 2) {
-	    remove();
-	}
-	$fileout = $file1 . ".sig";
-	$stats   = stat($file1)
-	    or die "No file $file1: $!";
-    }
-
-    my $command = "$signify -Se ";
-    $command .= "-s ${SIGDIR}/${KEYID}.sec ";
-    $command .= "-x ${fileout} ";
-    $command .= "-m $file1";
-
-    if (defined($passphrase)) {
-	local $SIG{PIPE} = 'IGNORE';
-	open (FH, "|$command")  or die "can't fork: $!";
-	print FH "$passphrase"  or die "can't write: $!";
-	close FH                or die "can't close: status=$?";
-    } else {
-	system("$command") == 0 
-	    or die "system $command failed: $?";
-    }
-
-    if (!($fileout =~ /^\-$/)) {
-	my $st_old = stat($file1) 
-	    or die "No file $file1: $!";
-	my $st_new = stat($fileout) 
-	    or die "No file $fileout: $!";
-	die ("Signed file is smaller than unsigned file") 
-	    unless ($st_new->size > $st_old->size);
-	move("$fileout", "$file2") 
-	    or die "Move $fileout to $file2 failed: $!";
-	chmod $stats->mode, $file2;
-	chown $stats->uid, $stats->gid, $file2;
-	flock(LOCKFILE, LOCK_UN);
-    }
-
-    if ($flag1 == 1) {
-	unlink0( $fh1, $filename1 ) or die "Cannot unlink $filename1 safely";
-    }
-    if ($return_from_sign == 1) {
-	return;
-    }
-    exit;
-}
-
-Getopt::Long::Configure ("posix_default");
-Getopt::Long::Configure ("bundling");
-# Getopt::Long::Configure ("debug");
-
-GetOptions (\%opts, 'm=s', 'h|help', 'v|verbose', 'l|list',
-	    'c|cfgfile=s',
-	    'd|datafile=s',
-	    'p|passphrase=s',
-	    's|secretkey=s',
-            'k|keyid=s',
-	    'create-cfgfile',  # -m F
-	    'print-cfgfile',   # -m f
-	    'create-datafile', # -m D
-	    'print-datafile',  # -m d
-	    'remove-signature',# -m R
-	    'sign',            # -m E
-	    'examine',         # -m e
-	    'generate-keys');  # -m G
-
-if (defined ($opts{'h'})) {
-    usage();
-    exit;
-}
-
-if (defined($opts{'k'})) {
-    $KEYID = $opts{'k'};
-}
-if (defined($opts{'c'})) {
-    $cfgfile = $opts{'c'};
-}
-if (defined($opts{'d'})) {
-    $datafile = $opts{'d'};
-}
-if (defined($opts{'p'})) {
-    $passphrase = $opts{'p'};
-}
-if (defined($opts{'s'})) {
-    $SIGDIR = $opts{'s'};
-}
-
-if (defined ($opts{'m'}) && ($opts{'m'} =~ /[FfDdREeG]{1}/) ) {
-    $action = $opts{'m'};
-}
-elsif (defined ($opts{'create-cfgfile'})) {
-    $action = 'F';
-}
-elsif (defined ($opts{'print-cfgfile'})) {
-    $action = 'f';
-}
-elsif (defined ($opts{'create-datafile'})) {
-    $action = 'D';
-}
-elsif (defined ($opts{'print-datafile'})) {
-    $action = 'd';
-}
-elsif (defined ($opts{'remove-signature'})) {
-    $action = 'R';
-}
-elsif (defined ($opts{'sign'})) {
-    $action = 'E';
-}
-elsif (defined ($opts{'examine'})) {
-    $action = 'e';
-}
-elsif (defined ($opts{'generate-keys'})) {
-    $action = 'G';
-}
-else {
-    usage();
-    die ("No valid action specified !");
-}
-
-if (defined($ARGV[0])) {
-    $file1 = $ARGV[0];
-} 
-if (defined($ARGV[1])) {
-    $file2 = $ARGV[1];
-} 
-
-
-if (($action =~ /[REe]{1}/) && !defined($file1)) {
-    usage();
-    die("Option -m $action requires a filename (or '-' for stdio)\n");
-}
-
-if ($action =~ /^F$/) {
-    if (!defined($file1)) {
-	$file1 = $cfgfile;
-    }
-    $file2 = $cfgfile;
-    sign_file ();
-}
-
-if ($action =~ /^D$/) {
-    if (!defined($file1)) {
-	$file1 = $datafile;
-    }
-    $file2 = $datafile;
-    sign_file ();
-}
-
-if ($action =~ /^R$/) {
-    # $file1 defined
-    my $i = 0;
-    while (defined($ARGV[$i])) {
-	$file1 = $ARGV[$i];
-	remove ();
-	++$i;
-    }
-}
-
-if ($action =~ /^E$/) {
-    # $file1 defined
-    # default: $file2 = $file1
-    check_signify_sign();
-    my $i = 0;
-    while (defined($ARGV[$i])) {
-	$file1 = $ARGV[$i];
-	$file2 = $file1;
-	$return_from_sign = 1;
-	sign_file ();
-	++$i;
-    }
-}
-
-if ($action =~ /^e$/) {
-    # $file1 defined
-    # default: $file2 = stdout
-    check_signify_verify();
-    my $i = 0;
-    my $ret = 0;
-    while (defined($ARGV[$i])) {
-	print "\n";
-	$file1 = $ARGV[$i];
-	$ret += examine ();
-	++$i;
-	print "\n--------------------------------\n" if (defined($ARGV[$i]));
-    }
-    exit($ret);
-}
-
-if ($action =~ /^f$/) {
-    $file1 = $cfgfile;
-    $file2 = "-";
-    print_cfgfile ();
-}
-
-if ($action =~ /^d$/) {
-    # $file1 irrelevant
-    if (defined($opts{'l'})) {
-	print_datafile ();
-    } else {
-	$file1 = $datafile;
-	$file2 = "-";
-	print_cfgfile ();
-    }
-}
-
-
-
Index: trunk/scripts/samhainadmin.pl.in
===================================================================
--- trunk/scripts/samhainadmin.pl.in	(revision 1)
+++ trunk/scripts/samhainadmin.pl.in	(revision 1)
@@ -0,0 +1,612 @@
+#! /usr/bin/perl
+
+# Copyright Rainer Wichmann (2004)
+#
+# License Information:
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+#
+
+use warnings;
+use strict;
+use Getopt::Long;
+use File::Basename;
+use File::stat;
+use File::Temp qw/ tempfile tempdir unlink0 /;
+use IO::Handle;
+
+File::Temp->safe_level( File::Temp::HIGH );
+
+my %opts = ();
+my $action;
+my $file1;
+my $file2;
+my $passphrase;
+my $return_from_sign = 0;
+my $no_print_examine = 0;
+my $base = basename($0);
+
+my $cfgfile  = "@myconffile@";
+my $datafile = "@mydatafile@";
+my $daemon   = "@sbindir@/@install_name@";
+my $gpg      = "@mygpg@";
+
+$gpg = "gpg" if ($gpg eq "");
+
+sub usage() {
+    print "Usage:\n";
+    print "  $base { -m F | --create-cfgfile }    [options] [in.cfgfile]\n";
+    print "    Sign the configuration file. If in.cfgfile is given, sign it\n";
+    print "    and install it as configuration file.\n\n";
+
+    print "  $base { -m f | --print-cfgfile }     [options] \n";
+    print "    Print the configuration file to stdout. Signatures are removed.\n\n";
+
+    print "  $base { -m D | --create-datafile }   [options] [in.datafile]\n";
+    print "    Sign the database file. If in.datafile is given, sign it\n";
+    print "    and install it as database file.\n\n";
+
+    print "  $base { -m d | --print-datafile }    [options] \n";
+    print "    Print the database file to stdout. Signatures are removed. Use\n";
+    print "    option --list to list files in database rather than printing the raw file.\n\n";
+
+    print "  $base { -m R | --remove-signature }  [options] file1 [file2 ...]\n";
+    print "    Remove cleartext signature from input file(s). The file\n";
+    print "    is replaced by the non-signed file.\n\n";
+
+    print "  $base { -m E | --sign }              [options] file1 [file2 ...]\n";
+    print "    Sign file(s) with a cleartext signature. The file\n";
+    print "    is replaced by the signed file.\n\n";
+
+    print "  $base { -m e | --examine }           [options] file1 [file2 ...]\n";
+    print "    Report signature status of file(s).\n\n";
+
+    print "  $base { -m G | --generate-keys }     [options] \n";
+    print "    Generate a PGP keypair to use for signing.\n\n";
+
+    print "Options:\n";
+    print "  -c cfgfile    --cfgfile cfgfile\n";
+    print "    Select an alternate configuration file.\n\n";
+
+    print "  -d datafile   --datafile datafile\n";
+    print "    Select an alternate database file.\n\n";
+
+    print "  -p passphrase --passphrase passphrase\n";
+    print "    Set the passphrase for gpg. By default, gpg will ask.\n\n";
+
+    print "  -l            --list\n";
+    print "    List the files in database rather than printing the raw file.\n\n";
+
+    print "  -v            --verbose\n";
+    print "    Verbose output.\n\n";
+    return;
+}
+
+sub check_gpg_uid () {
+    if (0 != $>) {
+	print "--------------------------------------------------\n";
+	print "\n";
+	print " You are not root. Please remember that samhain/yule\n";
+	print " will use the public keyring of root to verify a signature.\n";
+	print "\n";
+	print "--------------------------------------------------\n";
+    } else {
+	if (!("@yulectl_prg@" =~ //)) {
+	    print "--------------------------------------------------\n";
+	    print "\n";
+	    print " Please remember that yule will drop root after startup. Signature\n";
+	    print " verification on SIGHUP will fail if you do not import the public key\n";
+	    print " into the keyring of the non-root yule user.\n";
+	    print "\n";
+	    print "--------------------------------------------------\n";
+	}
+    }
+}
+    
+sub check_gpg_sign () {
+    if ( (!-d "$ENV{'HOME'}/.gnupg") || (!-e "$ENV{'HOME'}/.gnupg/secring.gpg")) {
+	print "--------------------------------------------------\n";
+	print "\n";
+	if (!-d "$ENV{'HOME'}/.gnupg") {
+	    print " Directory \$HOME/.gnupg not found!\n";
+	} else {
+	    print " Secret keyring \$HOME/.gnupg/secring.gpg not found!\n";
+	}
+	print "\n";
+	print " This indicates that you have never created a \n";
+	print " public/private keypair, and thus cannot sign.\n";
+	print " \n";
+	print " Please use $0 --generate-keys or gpg --gen-key\n";
+	print " to generate a public/private keypair first.\n";
+	print "\n";
+	print "--------------------------------------------------\n";
+	print "\n";
+	exit;
+    }
+}
+
+sub check_gpg_verify () {
+    if ( (!-d "$ENV{'HOME'}/.gnupg") || (!-e "$ENV{'HOME'}/.gnupg/pubring.gpg")) {
+	print "--------------------------------------------------\n";
+	print "\n";
+	if (!-d "$ENV{'HOME'}/.gnupg") {
+	    print " Directory \$HOME/.gnupg not found!\n";
+	} else {
+	    print " Public keyring \$HOME/.gnupg/pubring.gpg not found!\n";
+	}
+	print "\n";
+	print " This indicates that you have never used gpg before \n";
+	print " and/or have no public keys to verify signatures.\n";
+	print " \n";
+	print " Please use 'gpg --export key_id' to export the public\n";
+	print " signing key of the user who is signing the\n";
+	print " configuration/database files.\n\n";
+	print " Then you can use 'gpg --import keyfile' to import the key\n";
+	print " into this user's public keyring.\n";
+	print "\n";
+	print "--------------------------------------------------\n";
+	print "\n";
+	exit;
+    }
+}
+
+
+sub generate () {
+    my $command = "$gpg --homedir $ENV{'HOME'}/.gnupg --gen-key";
+    check_gpg_uid();
+    system ($command) == 0 
+	or die "system $command failed: $?";
+    exit;
+}
+
+sub examine () {
+    my $iscfg = 0;
+    my $have_fp  = 0;
+    my $have_sig = 0;
+    my $message = '';
+    my $retval  = 9;
+    my $fh;
+    my $filename;
+
+    if (!($file1 =~ /^\-$/)) {
+	die ("Cannot open $file1 for read: $!") unless ((-e $file1) && (-r _));
+    }
+    open FIN,  "<$file1" or die "Cannot open $file1 for read: $!";
+
+    my $dir = tempdir( CLEANUP => 1 );
+    $filename = $dir . "/exa_jhfdbilw";
+    open $fh, ">$filename" or die "Cannot open $filename";
+    autoflush $fh 1;
+
+    while () {
+	print $fh $_;
+	if ($_ =~ /^\s*\[Misc\]/) {
+	    $iscfg = 1;
+	}
+    }
+    if ($iscfg == 1) {
+	$message .=  "File $file1 is a configuration file\n\n";
+    } else {
+	$message .=  "File $file1 is a database file\n\n";
+    }
+
+
+    my $command = "$gpg --homedir $ENV{'HOME'}/.gnupg --status-fd 1 ";
+    $command .= "--verbose " if (defined($opts{'v'}));
+    $command .= "--verify $filename ";
+    if (defined($opts{'v'})) {
+	$command .= "2>&1";
+    } else {
+	$command .= "2>/dev/null";
+    }
+
+    print STDOUT "Using: $command\n\n" if (defined($opts{'v'}));
+    open  GPGIN, "$command |" or die "Cannot fork: $!";
+
+    while () {
+	if ($_ =~ /^\[GNUPG:\] GOODSIG ([0-9A-F]+) (.*)$/) {
+	    $message .= "GOOD signature with key: $1\n";
+	    $message .= "Key owner:               $2\n";
+	    $have_sig = 1;
+	    $retval   = 0;
+	}
+	if ($_ =~ /^\[GNUPG:\] VALIDSIG ([0-9A-F]+) ([0-9\-]+)\s/) {
+	    $message .= "Key fingerprint:         $1\n";
+	    $message .= "Signature generated on:  $2\n\n";
+	    $have_fp = 1;
+	    $message .=  "This file is signed with a valid signature.\n" 
+		if ($have_sig == 1);
+	    $have_sig = 1;
+	    $have_fp = 1;
+	}
+	if ($_ =~ /^\[GNUPG:\] NODATA 1/) {
+	    $message .=  "NO signature found.\n\n";
+	    $message .=  "This file is not signed !!!\n";
+	    $have_sig = 1;
+	    $have_fp = 1;
+	    $retval  = 2;
+	}
+	if ($_ =~ /^\[GNUPG:\] BADSIG ([0-9A-F]+) (.*)$/) {
+	    $message .=  "BAD signature with key: $1\n";
+	    $message .=  "Key owner:              $2\n\n";
+	    $message .=  "This file is signed with an invalid signature !!!\n";
+	    $have_sig = 1;
+	    $have_fp = 1;
+	    $retval = 1;
+	}
+	if ($_ =~ /^\[GNUPG:\] NO_PUBKEY ([0-9A-F]+)/) {
+	    $message .=  "NOT CHECKED signature with key: $1\n\n";
+	    $message .=  "The signature of this file cannot be checked: no public key available !!!\n";
+	    $have_sig = 1;
+	    $have_fp = 1;
+	    $retval  = 1;
+	}
+	print STDOUT $_ if (defined($opts{'v'}));
+    }
+    close (GPGIN);
+    print STDOUT "\n" if (defined($opts{'v'}));
+    if ($have_sig == 0) {
+	$message .=  "NO valid signature found\n";
+    } 
+    elsif ($have_fp == 0) {
+	$message .=  "NO fingerprint found\n";
+    }
+    close (FIN);
+    if ($no_print_examine == 0) {
+	print STDOUT $message;
+    }
+    unlink0( $fh, $filename ) or die "Cannot unlink $filename safely";
+    return $retval;
+}
+
+sub remove () {
+    my $bodystart = 1;
+    my $sigstart  = 0;
+    my $sigend    = 0;
+    my $filename  = "";
+    my $fh;
+    my $stats;
+
+    open FH, "<$file1" or die "Cannot open file $file1 for read: $!";
+    if (!($file1 =~ /^\-$/)) {
+	my $dir = tempdir( CLEANUP => 1 ) or die "Tempdir failed";
+	$filename = $dir . "/rem_iqegBCQb";
+	open $fh, ">$filename" or die "Cannot open $filename";
+	$stats = stat($file1);
+	# ($fh, $filename) = tempfile(UNLINK => 1);
+    } else {
+	open $fh, ">$file1" or die "Cannot open file $file1 for write: $!";
+    }
+    autoflush $fh 1;
+    while () {
+	if ($_ =~ /^-----BEGIN PGP SIGNED MESSAGE-----/) {
+	    $sigstart = 1;
+	    $bodystart = 0;
+	    next;
+	} elsif (($sigstart == 1) && ($_ =~ /^\s+$/)) {
+	    $sigstart = 0;
+	    $bodystart = 1;
+	    next;
+	} elsif ($_ =~ /^-----BEGIN PGP SIGNATURE-----/) {
+	    $bodystart = 0;
+	    $sigend = 1;
+	    next;
+	} elsif (($sigend == 1) && ($_ =~ /^-----END PGP SIGNATURE-----/)) {
+	    $sigend = 0;
+	    $bodystart = 1;
+	    next;
+	}
+	if ($bodystart == 1) {
+	    print $fh $_;
+	}
+    }
+    if (!($file1 =~ /^\-$/)) {
+	my $command = "cp $filename $file1";
+	system ($command) == 0
+	    or die "system $command failed: $?";
+	chmod $stats->mode, $file1;
+	chown $stats->uid, $stats->gid, $file1;
+    }
+    unlink0( $fh, $filename ) or die "Cannot unlink $filename safely";
+    return;
+}
+
+sub print_cfgfile () {
+    my $bodystart = 0;
+    my $sigstart  = 0;
+
+    if (!defined($file2)) {
+	$file2 = '-';
+    }
+
+    open FH, "<$file1" or die "Cannot open file $file1 for read: $!";
+    open FO, ">$file2" or die "Cannot open file $file2 for write: $!";
+    while () {
+	if ($_ =~ /^-----BEGIN PGP SIGNED MESSAGE-----/) {
+	    $sigstart = 1;
+	    next;
+	} elsif (($sigstart == 1) && ($_ =~ /^\s+$/)) {
+	    $sigstart = 0;
+	    $bodystart = 1;
+	    next;
+	} elsif ($_ =~ /^-----BEGIN PGP SIGNATURE-----/) {
+	    $bodystart = 0;
+	    exit;
+	}
+	if ($bodystart == 1) {
+	    print FO $_;
+	}
+    }
+    exit;
+}
+sub print_datafile () {
+    die ("Cannot find program $daemon") 
+	unless (-e $daemon);
+    if (defined($opts{'v'})) {
+	open FH, "$daemon --full-detail -d $datafile |" 
+	    or die "Cannot open datafile $datafile for read: $!";
+    } else {
+	open FH, "$daemon -d $datafile |" 
+	    or die "Cannot open datafile $datafile for read: $!";
+    }
+    while () {
+	print $_;
+    }
+    exit;
+}
+
+sub sign_file () {
+
+    my $fileout = '';
+    my $bodystart = 1;
+    my $sigstart  = 0;
+    my $sigend    = 0;
+    my $stats;
+    my $fh1;
+    my $filename1;
+    my $flag1     = 0;
+
+    check_gpg_uid();
+
+    if (!defined($file2)) {
+	$file2 = $file1;
+    }
+
+    if ($file1 =~ /^\-$/) {
+	my $dir = tempdir( CLEANUP => 1 ) or die "Tempdir failed";
+	$filename1 = $dir . "/sig_vs8827sd";
+	open $fh1, ">$filename1" or die "Cannot open $filename1";
+	$flag1 = 1;
+	# my ($fh1, $filename1) = tempfile(UNLINK => 1);
+
+	while () {
+	  if ($_ =~ /^-----BEGIN PGP SIGNED MESSAGE-----/) {
+	    $sigstart = 1;
+	    $bodystart = 0;
+	    next;
+	  } elsif (($sigstart == 1) && ($_ =~ /^\s+$/)) {
+	    $sigstart = 0;
+	    $bodystart = 1;
+	    next;
+	  } elsif ($_ =~ /^-----BEGIN PGP SIGNATURE-----/) {
+	    $bodystart = 0;
+	    $sigend = 1;
+	    next;
+	  } elsif (($sigend == 1) && ($_ =~ /^-----END PGP SIGNATURE-----/)) {
+	    $sigend = 0;
+	    $bodystart = 1;
+	    next;
+	  }
+	  if ($bodystart == 1) {
+	    print $fh1 $_;
+	  }
+	  #
+	  # print $fh1 $_;
+	  #
+	}
+	$file1 = $filename1;
+	$fileout = '-';
+    } else {
+	$no_print_examine = 1;
+	if (examine() < 2) {
+	    remove();
+	}
+	$fileout = $file1 . ".asc";
+	$stats   = stat($file1);
+    }
+
+    if (defined($passphrase)) {
+	local $SIG{PIPE} = 'IGNORE';
+	my $command = "$gpg --homedir $ENV{'HOME'}/.gnupg --passphrase-fd 0 -a --clearsign -o $fileout --not-dash-escaped $file1";
+	open (FH, "|$command")  or die "can't fork: $!";
+	print FH "$passphrase"  or die "can't write: $!";
+	close FH                or die "can't close: status=$?";
+    } else {
+	my $command = "$gpg --homedir $ENV{'HOME'}/.gnupg                   -a --clearsign -o $fileout --not-dash-escaped $file1";
+	system("$command") == 0 
+	    or die "system $command failed: $?";
+    }
+
+    if (!($fileout =~ /^\-$/)) {
+	my $st_old = stat($file1) 
+	    or die "No file $file1: $!";
+	my $st_new = stat($fileout) 
+	    or die "No file $fileout: $!";
+	die ("Signed file is smaller than unsigned file") 
+	    unless ($st_new->size > $st_old->size);
+	system ("mv $fileout $file2") == 0
+	    or die "system mv $fileout $file2 failed: $?";
+	chmod $stats->mode, $file2;
+	chown $stats->uid, $stats->gid, $file2;
+    }
+
+    if ($flag1 == 1) {
+	unlink0( $fh1, $filename1 ) or die "Cannot unlink $filename1 safely";
+    }
+    if ($return_from_sign == 1) {
+	return;
+    }
+    exit;
+}
+
+Getopt::Long::Configure ("posix_default");
+Getopt::Long::Configure ("bundling");
+# Getopt::Long::Configure ("debug");
+
+GetOptions (\%opts, 'm=s', 'h|help', 'v|verbose', 'l|list',
+	    'c|cfgfile=s',
+	    'd|datafile=s',
+	    'p|passphrase=s',
+	    'create-cfgfile',  # -m F
+	    'print-cfgfile',   # -m f
+	    'create-datafile', # -m D
+	    'print-datafile',  # -m d
+	    'remove-signature',# -m R
+	    'sign',            # -m E
+	    'examine',         # -m e
+	    'generate-keys');  # -m G
+
+if (defined ($opts{'h'})) {
+    usage();
+    exit;
+}
+
+if (defined($opts{'c'})) {
+    $cfgfile = $opts{'c'};
+}
+if (defined($opts{'d'})) {
+    $datafile = $opts{'d'};
+}
+if (defined($opts{'p'})) {
+    $passphrase = $opts{'p'};
+}
+
+if (defined ($opts{'m'}) && ($opts{'m'} =~ /[FfDdREeG]{1}/) ) {
+    $action = $opts{'m'};
+}
+elsif (defined ($opts{'create-cfgfile'})) {
+    $action = 'F';
+}
+elsif (defined ($opts{'print-cfgfile'})) {
+    $action = 'f';
+}
+elsif (defined ($opts{'create-cfgfile'})) {
+    $action = 'D';
+}
+elsif (defined ($opts{'print-cfgfile'})) {
+    $action = 'd';
+}
+elsif (defined ($opts{'remove-signature'})) {
+    $action = 'R';
+}
+elsif (defined ($opts{'sign'})) {
+    $action = 'E';
+}
+elsif (defined ($opts{'examine'})) {
+    $action = 'e';
+}
+elsif (defined ($opts{'generate-keys'})) {
+    $action = 'G';
+}
+else {
+    usage();
+    die ("No valid action specified !");
+}
+
+if (defined($ARGV[0])) {
+    $file1 = $ARGV[0];
+} 
+if (defined($ARGV[1])) {
+    $file2 = $ARGV[1];
+} 
+
+
+if (($action =~ /[REe]{1}/) && !defined($file1)) {
+    usage();
+    die("Option -m $action requires a filename (or '-' for stdio)\n");
+}
+
+if ($action =~ /^F$/) {
+    if (!defined($file1)) {
+	$file1 = $cfgfile;
+    }
+    $file2 = $cfgfile;
+    sign_file ();
+}
+
+if ($action =~ /^D$/) {
+    if (!defined($file1)) {
+	$file1 = $datafile;
+    }
+    $file2 = $datafile;
+    sign_file ();
+}
+
+if ($action =~ /^R$/) {
+    # $file1 defined
+    my $i = 0;
+    while (defined($ARGV[$i])) {
+	$file1 = $ARGV[$i];
+	remove ();
+	++$i;
+    }
+}
+
+if ($action =~ /^E$/) {
+    # $file1 defined
+    # default: $file2 = $file1
+    check_gpg_sign();
+    my $i = 0;
+    while (defined($ARGV[$i])) {
+	$file1 = $ARGV[$i];
+	$file2 = $file1;
+	$return_from_sign = 1;
+	sign_file ();
+	++$i;
+    }
+}
+
+if ($action =~ /^e$/) {
+    # $file1 defined
+    # default: $file2 = stdout
+    check_gpg_verify();
+    my $i = 0;
+    while (defined($ARGV[$i])) {
+	print "\n";
+	$file1 = $ARGV[$i];
+	examine ();
+	++$i;
+	print "\n--------------------------------\n" if (defined($ARGV[$i]));
+    }
+}
+
+if ($action =~ /^f$/) {
+    $file1 = $cfgfile;
+    $file2 = "-";
+    print_cfgfile ();
+}
+
+if ($action =~ /^d$/) {
+    # $file1 irrelevant
+    if (defined($opts{'l'})) {
+	print_datafile ();
+    } else {
+	$file1 = $datafile;
+	$file2 = "-";
+	print_cfgfile ();
+    }
+}
+
+
+
Index: trunk/scripts/samhainrc_update.sh
===================================================================
--- trunk/scripts/samhainrc_update.sh	(revision 1)
+++ trunk/scripts/samhainrc_update.sh	(revision 1)
@@ -0,0 +1,227 @@
+#!/bin/bash
+# ----------------------------------------------------------------------------- 
+# @brief: update the kernel options in the samhain configuration
+#         file, after a new kernel has been compiled
+# @author: marc heisterkamp 
+# ----------------------------------------------------------------------------- 
+
+SAMHAIN_CFG="/etc/samhainrc"
+
+BLUE=""
+CYAN=""
+GREEN=""
+DARK_GREEN=""
+RED=""
+PURPLE=""
+WHITE=""
+DARK_GRAY=""
+LIGHT_GRAY=""
+YELLOW=""
+BROWN=""
+OFF=""
+
+
+SYSTEM_MAP=""
+new_cfg=''
+scriptname="$0"
+
+# global variables for system adresses (extracted from System.map)
+SYS_CALL=''
+SYS_CALL_TABLE=''
+PROC_ROOT=''
+PROC_ROOT_IOPS=''
+PROC_ROOT_LOOKUP=''
+
+# Make sure the user has root permissions
+if [ $UID -ne 0 ] ; then
+  echo "You must be root to run this script. Exiting."
+  exit 1
+fi
+
+
+#------------------------------------------------------------------------------
+# usage 
+#------------------------------------------------------------------------------
+function print_usage() {
+
+  cat >&2 <
+                           [ ${GREEN}--update${OFF} ]     
+
+  OPTIONS
+     ${GREEN}-h${OFF} ${GREEN}--help${OFF}
+        Show help. 
+
+     ${GREEN}--nocolor${OFF}
+        Disable color hilighting for non ANSI-compatible terms.
+
+     ${GREEN}-p${OFF} ${GREEN}--print-only${OFF} 
+        Print the extracted system adresses and do not write them to the 
+        samhain configuration file. 
+
+     ${GREEN}-u${OFF} ${GREEN}--update${OFF} 
+        Update the samhainrc configuration file with new kernel system
+        addresses from the given System.map file 
+
+EOHELP
+ exit 0
+}
+
+
+#------------------------------------------------------------------------------
+# parses the command line options 
+# param in: all parameters given to the script 
+#------------------------------------------------------------------------------
+function parse_cmd_line() {
+
+  # parse the command-line
+  while [ -n "$1" ]; do
+    case "$1" in
+      --help|-h) 
+        print_usage
+        ;;
+      --nocolor|-n)
+        unset DARK_GREEN GREEN RED BROWN LIGHT_GRAY WHITE OFF 
+        ;;
+      --print-only|-p)
+        shift
+        SYSTEM_MAP="$1"
+        get_system_addresses
+        print_system_addresses
+        break
+        ;;
+      --update|-u)
+        shift
+        SYSTEM_MAP="$1"
+        get_system_addresses
+        print_system_addresses
+        replace_system_addresses
+        ;;
+      -*)
+        echo "$scriptname: unknown option $1. Exiting" >&2
+        exit 1
+        ;;
+    esac
+    shift
+  done
+}
+
+
+#------------------------------------------------------------------------------
+# extract system adresses from given System.map file and save to global
+# variables 
+#------------------------------------------------------------------------------
+function get_system_addresses() { 
+
+  if [ -z "$SYSTEM_MAP" ] ; then
+    echo
+    echo "No System.map specified. Exiting" >&2
+    echo
+    exit 1
+  fi
+
+  if [ ! -f "$SYSTEM_MAP" ] ; then
+    echo
+    echo "Could not find System.map: $SYSTEM_MAP. Exiting" >&2
+    echo
+    exit 1
+  fi
+
+  # 1. this is the address of system_call (grep system_call System.map) 
+  #    KernelSystemCall = 0xc0106cf8
+  SYS_CALL="0x`grep system_call $SYSTEM_MAP | cut -d' ' -f1`"
+
+  # 2. this is the address of sys_call_table (grep ' sys_call_table' System.map) 
+  #    KernelSyscallTable = 0xc01efb98
+  SYS_CALL_TABLE="0x`grep sys_call_table $SYSTEM_MAP | cut -d' ' -f1`"
+
+  # 3. this is the address of proc_root (grep ' proc_root$' System.map) 
+  #    KernelProcRoot = 0xc01efb98
+  PROC_ROOT="0x`grep ' proc_root$' $SYSTEM_MAP | cut -d' ' -f1`"
+
+  # 4. this is the address of proc_root_inode_operations 
+  #    (grep proc_root_inode_operations System.map) 
+  #    KernelProcRootIops = 0xc01efb98
+  PROC_ROOT_IOPS="0x`grep proc_root_inode_operations $SYSTEM_MAP | cut -d' ' -f1`"
+
+  # 5. this is the address of proc_root_lookup
+  #    (grep proc_root_lookup System.map) 
+  #    KernelProcRootLookup = 0xc01efb98
+  PROC_ROOT_LOOKUP="0x`grep proc_root_lookup $SYSTEM_MAP | cut -d' ' -f1`"
+}
+
+
+#------------------------------------------------------------------------------
+# extract system adresses from given System.map file and save to global
+# variables 
+#------------------------------------------------------------------------------
+function replace_system_addresses() { 
+
+  if [ -z "$SAMHAIN_CFG" ] ; then
+    echo "Could not find your samhainrc config file: $SAMHAIN_CFG. Exiting" >&2
+    exit 1
+  fi
+
+  echo
+  echo "Replacing current kernel system addresses in: $SAMHAIN_CFG"
+
+  # 1. replace current 'KernelSystemCall' setting
+  new_cfg=`sed -e "s/^\(KernelSystemCall[[:blank:]]*=\)[[:blank:]]*\(.*\)/\1 ${SYS_CALL}/" $SAMHAIN_CFG` 
+
+  # 2. replace current 'KernelSyscallTable' setting
+  new_cfg=`echo "$new_cfg" | sed -e "s/^\(KernelSyscallTable[[:blank:]]*=\)[[:blank:]]*\(.*\)/\1 ${SYS_CALL_TABLE}/"` 
+
+  # 3. replace current 'KernelProcRoot' setting
+  new_cfg=`echo "$new_cfg" | sed -e "s/^\(KernelProcRoot[[:blank:]]*=\)[[:blank:]]*\(.*\)/\1 ${PROC_ROOT}/"` 
+
+  # 4. replace current 'KernelProcRootIops' setting
+  new_cfg=`echo "$new_cfg" | sed -e "s/^\(KernelProcRootIops[[:blank:]]*=\)[[:blank:]]*\(.*\)/\1 ${PROC_ROOT_IOPS}/"` 
+
+  # 5. replace current 'KernelSystemCall' setting
+  new_cfg=`echo "$new_cfg" | sed -e "s/^\(KernelProcRootLookup[[:blank:]]*=\)[[:blank:]]*\(.*\)/\1 ${PROC_ROOT_LOOKUP}/"` 
+
+  echo "Backup old samhainrc $SAMHAIN_CFG to $SAMHAIN_CFG.bak"
+
+  # backup old samhainrc config file 
+  mv "$SAMHAIN_CFG" "$SAMHAIN_CFG.bak"
+
+  # write new samhainrc config file 
+  echo "$new_cfg" > "$SAMHAIN_CFG"
+
+  echo "Successfully updated kernel system addresses."
+  echo
+}
+
+
+#------------------------------------------------------------------------------
+# print samhain required system adresses 
+#------------------------------------------------------------------------------
+function print_system_addresses() {
+
+  echo 
+  echo "your kernel system addresses from: `basename $SYSTEM_MAP`"
+  echo 
+  echo "  KernelSystemCall     = $SYS_CALL"
+  echo "  KernelSyscallTable   = $SYS_CALL_TABLE"
+  echo "  KernelProcRoot       = $PROC_ROOT"
+  echo "  KernelProcRootIops   = $PROC_ROOT_IOPS"
+  echo "  KernelProcRootLookup = $PROC_ROOT_LOOKUP"
+  echo 
+
+}
+
+if [ $# -eq 0 ] ; then
+  print_usage
+fi
+
+parse_cmd_line $*
+
+exit 0
Index: trunk/scripts/yuleadmin.pl.in
===================================================================
--- trunk/scripts/yuleadmin.pl.in	(revision 591)
+++ 	(revision )
@@ -1,303 +1,0 @@
-#! /usr/bin/perl
-
-# Copyright (c) 2007 Riccardo Murri 
-#
-# License Information:
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-#
-
-use warnings;
-use strict;
-use Getopt::Long;
-use File::Basename;
-use File::Copy;
-use File::Temp qw/ tempfile /;
-use IO::File;
-
-# Do I/O to the data file in binary mode (so it 
-# wouldn't complain about invalid UTF-8 characters).
-use bytes;
-
-File::Temp->safe_level( File::Temp::HIGH );
-
-my %opts = ();
-my $outfile;
-my $verbose;
-my $base = basename($0);
-
-my $cfgfile  = "@myconffile@";
-my $yule     = "@sbindir@/@install_name@";
-
-$cfgfile  =~ s/^REQ_FROM_SERVER//;
-
-sub usage() {
-    print <<__END_OF_TEXT__
-Usage:
-  $base { -a | --add } [options] HOSTNAME [PASSWORD]
-    Add client HOSTNAME to configuration file. If PASSWORD is
-    omitted, it is read from stdin.  If HOSTNAME already exists
-    in the configuration file, an error is given.
-
-  $base { -d | --delete } [options] HOSTNAME
-    Remove client HOSTNAME from configuration file.
-
-  $base { -l | --list } [options]
-    List clients in the yule configuration file.
-
-  $base { -r | --replace } [options] HOSTNAME [PASSWORD]
-    Replace password of existing client HOSTNAME in configuration file. 
-    If PASSWORD is omitted, it is read from stdin.  If HOSTNAME does not 
-    already exist in the configuration file, an error is given.
-
-  $base { -u | --update } [options] HOSTNAME [PASSWORD]
-    Add client HOSTNAME to config file or replace its password with a new one.
-    If PASSWORD is omitted, it is read from stdin.  
-
-Options:
-  -c CFGFILE    --cfgfile CFGFILE
-    Select an alternate configuration file. (default: $cfgfile)
-
-  -o OUTFILE    --output OUTFILE
-    Write modified configuration to OUTFILE.  If this option is
-    omitted, $base will rename the original configuration file
-    to '$cfgfile.BAK' and overwrite it with the modified content.
-
-  -Y YULECMD    --yule YULECMD
-    Use command YULECMD to generate the client key from the password.
-    (default: $yule)
-
-  -v            --verbose
-    Verbose output.
-
-__END_OF_TEXT__
-;
-    return;
-}
-
-
-## subroutines
-
-sub read_clients ($) {
-    my $cfgfile = shift || '-';
-    my %clients;
-
-    open INPUT, "<$cfgfile"
-	or die ("Cannot read configuration file '$cfgfile'. Aborting");
-
-    my $section;
-    while () {
-	# skip comment and blank lines
-	next if m{^\s*#};
-        next if m{^\s*$};
-
-	# match section headers
-	$section = $1 if m{^\s*\[([a-z0-9 ]+)\]}i;
-
-	# ok, list matching lines
-	if ($section =~ m/Clients/) {
-	    if (m{^\s*Client=}i) {
-		chomp;
-		s{^\s*Client=}{}i;
-		my ($client, $key) = split /@/,$_,2;
-
-		$clients{lc($client)} = $key;
-	    }
-	}
-    }
-    
-    close INPUT;
-    return \%clients;
-}
-
-
-sub write_clients ($$$) {
-    my $cfgfile_in = shift || '-';
-    my $cfgfile_out = shift || $cfgfile_in;
-    my $clients = shift;
-
-    my @lines;
-    my $in_clients_section;
-
-    # copy-pass input file
-    my $section = '';
-    open INPUT, "<$cfgfile_in"
-	or die ("Cannot read configuration file '$cfgfile_in'. Aborting");
-    while () {
-	# match section headers
-	if (m{^\s*\[([a-z0-9 ]+)\]}i) {
-	    if ($in_clients_section and ($section ne $1)) {
-		# exiting [Clients] section, output remaining ones
-		foreach my $hostname (keys %{$clients}) {
-		    push @lines, 
-		        'Client=' . $hostname . '@' 
-			. $clients->{lc($hostname)} . "\n";
-		    delete $clients->{lc($hostname)};
-		}
-	    }
-	    # update section title
-	    $section = $1;
-	    if ($section =~ m/Clients/i) {
-		$in_clients_section = 1;
-	    } else {
-		$in_clients_section = 0;
-	    }
-	}
-
-	# process entries in [Clients] section
-	if ($in_clients_section) {
-	    if (m{^\s*Client=}i) {
-		my ($hostname, undef) = split /@/,$_,2;
-		$hostname =~ s{^\s*Client=}{}i;
-		if (defined($clients->{lc($hostname)})) {
-		    # output (possibly) modified key
-		    $_ = 'Client=' . $hostname . '@' . $clients->{lc($hostname)} . "\n";
-		    delete $clients->{lc($hostname)};
-		}
-		else {
-		    # client deleted, skip this line from output
-		    $_ = '';
-		}
-	    }
-	}
-
-	# copy input to output
-	push @lines, $_;
-    }
-    close INPUT;
-    
-    # if end-of-file reached within [Clients] section, output remaining ones
-    if ($in_clients_section) {
-	foreach my $hostname (keys %{$clients}) {
-	    push @lines, 'Client=' . $hostname . '@' 
-		. $clients->{lc($hostname)} . "\n";
-	}
-    }
-
-    # if necessary, replace input file with output file
-    if ($cfgfile_in eq $cfgfile_out) {
-	copy($cfgfile_in, $cfgfile_in . '.BAK')
-	    or die("Cannot backup config file '$cfgfile_in'. Aborting");
-    }
-    open OUTPUT, ">$cfgfile_out"
-	or die ("Cannot write to file '$cfgfile_out'. Aborting");
-    # overwrite config file line by line
-    foreach my $line (@lines) { print OUTPUT $line; }
-    close OUTPUT;
-}
-
-
-sub new_client_key ($) {
-    my $password = shift;
-    my $yulecmd = shift || $yule;
-
-    my (undef, $key) = split /@/, `$yulecmd -P $password`, 2;
-    chomp $key;
-    return $key;
-}
-
-
-## main
-
-Getopt::Long::Configure ("posix_default");
-Getopt::Long::Configure ("bundling");
-# Getopt::Long::Configure ("debug");
-
-GetOptions (\%opts, 
-	    'Y|yule=s',
-	    'a|add',
-	    'c|cfgfile=s',
-	    'd|delete',
-	    'h|help', 
-	    'l|list',
-	    'o|output=s',
-	    'r|replace',
-	    'u|update',
-	    'v|verbose', 
-	    );
-
-if (defined ($opts{'h'})) {
-    usage();
-    exit;
-}
-
-if (defined($opts{'c'})) {
-    $cfgfile = $opts{'c'};
-    $outfile = $cfgfile unless defined($outfile);
-}
-if (defined($opts{'Y'})) {
-    $yule = $opts{'Y'};
-}
-if (defined($opts{'v'})) {
-    $verbose = 1;
-}
-if (defined($opts{'o'})) {
-    $outfile = $opts{'o'};
-}
-
-if (defined($opts{'l'})) {
-    # list contents
-    my $clients = read_clients($cfgfile);
-    
-    foreach my $client (keys %{$clients}) {
-	print "$client";
-	print " ${$clients}{$client}" if $verbose;
-	print "\n";
-    }
-}
-elsif (defined($opts{'a'}) 
-       or defined($opts{'u'})
-       or defined($opts{'r'})) {
-    # add HOSTNAME
-    my $hostname = $ARGV[0]
-	or die("Actions --add/--replace/--update require at least argument HOSTNAME. Aborting");
-
-    my $password;
-    if (defined($ARGV[1])) {
-	$password = uc($ARGV[1]);
-    } else {
-	$password = uc();
-	# remove leading and trailing space
-	$password =~ s{\s*}{}g;
-    }
-    # sanity check
-    die ("Argument PASSWORD must be a 16-digit hexadecimal string. Aborting")
-	unless ($password =~ m/[[:xdigit:]]{16}/);
-
-    my $add = defined($opts{'a'});
-    my $replace = defined($opts{'r'});
-
-    my $clients = read_clients($cfgfile);
-    die ("Client '$hostname' already present in config file - cannot add. Aborting")
-	if ($add and defined(${$clients}{$hostname}));
-    die ("Client '$hostname' not already present in config file - cannot replace. Aborting")
-	if ($replace and not defined(${$clients}{$hostname}));
-
-    $clients->{$hostname} = new_client_key($password)
-      or die ("Cannot get key for the given password. Aborting");
-    write_clients($cfgfile, $outfile, $clients);
-}
-elsif (defined($opts{'d'})) {
-    # remove HOSTNAME
-    my $hostname = $ARGV[0]
-	or die("Action --delete requires one argument HOSTNAME. Aborting");
-
-    my $clients = read_clients($cfgfile);
-    delete ${$clients}{$hostname};
-    write_clients($cfgfile, $outfile, $clients);
-}
-else {
-    usage();
-    die ("You must specify one of --list, --add or --remove options. Aborting");
-}
Index: trunk/sql_init/samhain.mysql.init
===================================================================
--- trunk/sql_init/samhain.mysql.init	(revision 591)
+++ trunk/sql_init/samhain.mysql.init	(revision 1)
@@ -1,3 +1,5 @@
 CREATE DATABASE samhain;
+USE mysql;
+INSERT INTO db (Host,Db,User,Select_priv,Insert_priv,Update_priv,Delete_priv,Create_priv,Drop_priv) VALUES ('localhost','samhain','','N','Y','N','N','N','N');
 USE samhain;
 CREATE TABLE    samhain.log (
@@ -31,5 +33,5 @@
   	return_code   INTEGER,
   	syscall       VARCHAR(16),
-  	ip            VARCHAR(46),
+  	ip            VARCHAR(16),
   	tty           VARCHAR(16),
         peer          VARCHAR(64),
@@ -68,27 +70,23 @@
         link_new      BLOB,
 	
-        size_old      BIGINT UNSIGNED,
-        size_new      BIGINT UNSIGNED,
-        hardlinks_old BIGINT UNSIGNED,
-        hardlinks_new BIGINT UNSIGNED,
-        inode_old     BIGINT UNSIGNED,
-        inode_new     BIGINT UNSIGNED,
+        size_old      BIGINT,
+        size_new      BIGINT,
+        hardlinks_old BIGINT,
+        hardlinks_new BIGINT,
+        inode_old     BIGINT,
+        inode_new     BIGINT,
 
-	imode_old     BIGINT UNSIGNED,
-	imode_new     BIGINT UNSIGNED,
-	iattr_old     BIGINT UNSIGNED,
-	iattr_new     BIGINT UNSIGNED,
-	idevice_old   BIGINT UNSIGNED,
-	idevice_new   BIGINT UNSIGNED,
-	iowner_old    BIGINT UNSIGNED,
-	iowner_new    BIGINT UNSIGNED,
-	igroup_old    BIGINT UNSIGNED,
-	igroup_new    BIGINT UNSIGNED,
-	checkflags_old    BIGINT UNSIGNED,
-	checkflags_new    BIGINT UNSIGNED,
+	imode_old     BIGINT,
+	imode_new     BIGINT,
+	iattr_old     BIGINT,
+	iattr_new     BIGINT,
+	idevice_old   BIGINT,
+	idevice_new   BIGINT,
+	iowner_old    BIGINT,
+	iowner_new    BIGINT,
+	igroup_old    BIGINT,
+	igroup_new    BIGINT
 	
 
-        acl_old       BLOB,
-        acl_new       BLOB
                  
         );
Index: trunk/sql_init/samhain.oracle.init
===================================================================
--- trunk/sql_init/samhain.oracle.init	(revision 591)
+++ trunk/sql_init/samhain.oracle.init	(revision 1)
@@ -9,5 +9,5 @@
         log_hash  VARCHAR2(32),
         entry_status  VARCHAR2(16) DEFAULT 'NEW' NOT NULL,
-        path          CLOB,         
+        path          VARCHAR2(4000),         
         userid        VARCHAR2(8),
         grp           VARCHAR2(8),
@@ -24,13 +24,13 @@
         return_code   INTEGER,
         syscall       VARCHAR2(16),
-        ip            VARCHAR2(46),
+        ip            VARCHAR2(16),
         tty           VARCHAR2(16),
         peer          VARCHAR2(64),
         fromhost      VARCHAR2(64),
-        obj           VARCHAR2(4000),
+        obj           VARCHAR2(128),
         interface     VARCHAR2(64),
         time          VARCHAR2(64),
-        dir           CLOB,
-        linked_path   CLOB,
+        dir           VARCHAR2(4000),
+        linked_path   VARCHAR2(4000),
         port          INTEGER,
         service       VARCHAR2(64),
@@ -56,6 +56,6 @@
         chksum_old    VARCHAR2(50),
         chksum_new    VARCHAR2(50),
-        link_old      CLOB,
-        link_new      CLOB,
+        link_old      VARCHAR2(4000),
+        link_new      VARCHAR2(4000),
         size_old      NUMBER(20),
         size_new      NUMBER(20),
@@ -73,10 +73,17 @@
         iowner_new    NUMBER(20),
         igroup_old    NUMBER(20),
-        igroup_new    NUMBER(20),
-        checkflags_old    NUMBER(20),
-        checkflags_new    NUMBER(20),
-        acl_old       VARCHAR2(4000),
-        acl_new       VARCHAR2(4000)
+        igroup_new    NUMBER(20)
         );
+
+CREATE OR REPLACE TRIGGER trigger_on_log
+before insert on log
+for each row
+declare
+log_index integer;
+begin
+select log_log_index_seq.NEXTVAL into :new.log_index from dual;
+end trigger_on_log;
+.
+run;
 
 CREATE UNIQUE INDEX log_log_index_key on log (log_index);
Index: trunk/sql_init/samhain.postgres.init
===================================================================
--- trunk/sql_init/samhain.postgres.init	(revision 591)
+++ trunk/sql_init/samhain.postgres.init	(revision 1)
@@ -1,5 +1,5 @@
 CREATE SEQUENCE log_log_index_seq START 1;
 CREATE TABLE    log (
-	log_index INTEGER NOT NULL,
+	log_index INTEGER NOT NULL DEFAULT NEXTVAL('log_log_index_seq'),
 	log_ref   BIGINT NULL,
 	log_host  VARCHAR(64)   NOT NULL DEFAULT 'localhost',
@@ -27,5 +27,5 @@
   	return_code   INTEGER,
   	syscall       VARCHAR(16),
-  	ip            VARCHAR(46),
+  	ip            VARCHAR(16),
   	tty           VARCHAR(16),
         peer          VARCHAR(64),
@@ -64,26 +64,22 @@
         link_new      TEXT,
 	
-        size_old      NUMERIC(20),
-        size_new      NUMERIC(20),
-        hardlinks_old NUMERIC(20),
-        hardlinks_new NUMERIC(20),
-        inode_old     NUMERIC(20),
-        inode_new     NUMERIC(20),
+        size_old      BIGINT,
+        size_new      BIGINT,
+        hardlinks_old BIGINT,
+        hardlinks_new BIGINT,
+        inode_old     BIGINT,
+        inode_new     BIGINT,
 
-	imode_old     NUMERIC(20),
-	imode_new     NUMERIC(20),
-	iattr_old     NUMERIC(20),
-	iattr_new     NUMERIC(20),
-	idevice_old   NUMERIC(20),
-	idevice_new   NUMERIC(20),
-	iowner_old    NUMERIC(20),
-	iowner_new    NUMERIC(20),
-	igroup_old    NUMERIC(20),
-	igroup_new    NUMERIC(20),
-	checkflags_old    NUMERIC(20),
-	checkflags_new    NUMERIC(20),
+	imode_old     BIGINT,
+	imode_new     BIGINT,
+	iattr_old     BIGINT,
+	iattr_new     BIGINT,
+	idevice_old   BIGINT,
+	idevice_new   BIGINT,
+	iowner_old    BIGINT,
+	iowner_new    BIGINT,
+	igroup_old    BIGINT,
+	igroup_new    BIGINT
                  
-        acl_old       TEXT,
-        acl_new       TEXT
         );
 
Index: trunk/src/CuTest.c
===================================================================
--- trunk/src/CuTest.c	(revision 591)
+++ 	(revision )
@@ -1,350 +1,0 @@
-/*******************
-
-LICENSE
-
-Copyright (c) 2003 Asim Jalis
-
-This software is provided 'as-is', without any express or implied
-warranty. In no event will the authors be held liable for any damages
-arising from the use of this software.
-
-Permission is granted to anyone to use this software for any purpose,
-including commercial applications, and to alter it and redistribute it
-freely, subject to the following restrictions:
-
-1. The origin of this software must not be misrepresented; you must not
-claim that you wrote the original software. If you use this software in
-a product, an acknowledgment in the product documentation would be
-appreciated but is not required.
-
-2. Altered source versions must be plainly marked as such, and must not
-be misrepresented as being the original software.
-
-3. This notice may not be removed or altered from any source
-distribution.
-
-**********************/
-
-#include 
-#include 
-#include 
-#include 
-#include 
-#include 
-#include 
-
-#include "CuTest.h"
-
-/*-------------------------------------------------------------------------*
- * CuStr
- *-------------------------------------------------------------------------*/
-
-char* CuStrAlloc(int size)
-{
-	char* newStr = (char*) malloc( sizeof(char) * (size) );
-	return newStr;
-}
-
-char* CuStrCopy(const char* old)
-{
-	int len = strlen(old);
-	char* newStr = CuStrAlloc(len + 1);
-	strcpy(newStr, old);
-	return newStr;
-}
-
-/*-------------------------------------------------------------------------*
- * CuString
- *-------------------------------------------------------------------------*/
-
-void CuStringInit(CuString* str)
-{
-	str->length = 0;
-	str->size = STRING_MAX;
-	str->buffer = (char*) malloc(sizeof(char) * str->size);
-	if (str->buffer)
-	  str->buffer[0] = '\0';
-	else
-	  {
-	    perror("CuStringInit");
-	    _exit (EXIT_FAILURE);
-	  }
-}
-
-CuString* CuStringNew(void)
-{
-	CuString* str = (CuString*) malloc(sizeof(CuString));
-	str->length = 0;
-	str->size = STRING_MAX;
-	str->buffer = (char*) malloc(sizeof(char) * str->size);
-	if (str->buffer)
-	  str->buffer[0] = '\0';
-	else
-	  {
-	    perror("CuStringNew");
-	    _exit (EXIT_FAILURE);
-	  }
-	return str;
-}
-
-void CuStringResize(CuString* str, int newSize)
-{
-	str->buffer = (char*) realloc(str->buffer, sizeof(char) * newSize);
-	str->size = newSize;
-}
-
-void CuStringAppend(CuString* str, const char* text)
-{
-	int length;
-
-	if (text == NULL) {
-		text = "NULL";
-	}
-
-	length = strlen(text);
-	if (str->length + length + 1 >= str->size)
-		CuStringResize(str, str->length + length + 1 + STRING_INC);
-	str->length += length;
-	strcat(str->buffer, text);
-}
-
-void CuStringAppendChar(CuString* str, char ch)
-{
-	char text[2];
-	text[0] = ch;
-	text[1] = '\0';
-	CuStringAppend(str, text);
-}
-
-void CuStringAppendFormat(CuString* str, const char* format, ...)
-{
-	va_list argp;
-	char buf[2048];
-	va_start(argp, format);
-	vsnprintf(buf, sizeof(buf), format, argp);
-	va_end(argp);
-	CuStringAppend(str, buf);
-}
-
-void CuStringInsert(CuString* str, const char* text, int pos)
-{
-	int length = strlen(text);
-	if (pos > str->length)
-		pos = str->length;
-	if (str->length + length + 1 >= str->size)
-		CuStringResize(str, str->length + length + 1 + STRING_INC);
-	memmove(str->buffer + pos + length, str->buffer + pos, (str->length - pos) + 1);
-	str->length += length;
-	memcpy(str->buffer + pos, text, length);
-}
-
-/*-------------------------------------------------------------------------*
- * CuTest
- *-------------------------------------------------------------------------*/
-
-void CuTestInit(CuTest* t, const char* name, TestFunction function)
-{
-	t->name = CuStrCopy(name);
-	t->failed = 0;
-	t->ran = 0;
-	t->message = NULL;
-	t->function = function;
-	t->jumpBuf = NULL;
-}
-
-CuTest* CuTestNew(const char* name, TestFunction function)
-{
-	CuTest* tc = CU_ALLOC(CuTest);
-	CuTestInit(tc, name, function);
-	return tc;
-}
-
-void CuTestRun(CuTest* tc)
-{
-	jmp_buf buf;
-	tc->jumpBuf = &buf;
-	if (setjmp(buf) == 0)
-	{
-		tc->ran = 1;
-		(tc->function)(tc);
-	}
-	tc->jumpBuf = 0;
-}
-
-static void CuFailInternal(CuTest* tc, const char* file, int line, CuString* string)
-{
-	char buf[256];
-
-	snprintf(buf, sizeof(buf), "%s:%d: ", file, line);
-	CuStringInsert(string, buf, 0);
-
-	tc->failed = 1;
-	tc->message = string->buffer;
-	if (tc->jumpBuf != 0) longjmp(*(tc->jumpBuf), 0);
-}
-
-void CuFail_Line(CuTest* tc, const char* file, int line, const char* message2, const char* message)
-{
-	CuString string;
-
-	CuStringInit(&string);
-	if (message2 != NULL) 
-	{
-		CuStringAppend(&string, message2);
-		CuStringAppend(&string, ": ");
-	}
-	CuStringAppend(&string, message);
-	CuFailInternal(tc, file, line, &string);
-}
-
-void CuAssert_Line(CuTest* tc, const char* file, int line, const char* message, int condition)
-{
-	if (condition) return;
-	CuFail_Line(tc, file, line, NULL, message);
-}
-
-void CuAssertStrEquals_LineMsg(CuTest* tc, const char* file, int line, const char* message, 
-	const char* expected, const char* actual)
-{
-	CuString string;
-	if ((expected == NULL && actual == NULL) ||
-	    (expected != NULL && actual != NULL &&
-	     strcmp(expected, actual) == 0))
-	{
-		return;
-	}
-
-	CuStringInit(&string);
-	if (message != NULL) 
-	{
-		CuStringAppend(&string, message);
-		CuStringAppend(&string, ": ");
-	}
-	CuStringAppend(&string, "expected <");
-	CuStringAppend(&string, expected);
-	CuStringAppend(&string, "> but was <");
-	CuStringAppend(&string, actual);
-	CuStringAppend(&string, ">");
-	CuFailInternal(tc, file, line, &string);
-}
-
-void CuAssertIntEquals_LineMsg(CuTest* tc, const char* file, int line, const char* message, 
-	int expected, int actual)
-{
-	char buf[STRING_MAX];
-	if (expected == actual) return;
-	sprintf(buf, "expected <%d> but was <%d>", expected, actual);
-	CuFail_Line(tc, file, line, message, buf);
-}
-
-void CuAssertDblEquals_LineMsg(CuTest* tc, const char* file, int line, const char* message, 
-	double expected, double actual, double delta)
-{
-	char buf[STRING_MAX];
-#define SH_FABS(a) (((a) < 0) ? -(a) : (a))
-        if (SH_FABS(expected - actual) <= delta) return;
-	sprintf(buf, "expected <%lf> but was <%lf>", expected, actual);
-	CuFail_Line(tc, file, line, message, buf);
-}
-
-void CuAssertPtrEquals_LineMsg(CuTest* tc, const char* file, int line, const char* message, 
-	void* expected, void* actual)
-{
-	char buf[STRING_MAX];
-	if (expected == actual) return;
-	sprintf(buf, "expected pointer <0x%p> but was <0x%p>", expected, actual);
-	CuFail_Line(tc, file, line, message, buf);
-}
-
-
-/*-------------------------------------------------------------------------*
- * CuSuite
- *-------------------------------------------------------------------------*/
-
-void CuSuiteInit(CuSuite* testSuite)
-{
-	testSuite->count = 0;
-	testSuite->failCount = 0;
-}
-
-CuSuite* CuSuiteNew(void)
-{
-	CuSuite* testSuite = CU_ALLOC(CuSuite);
-	CuSuiteInit(testSuite);
-	return testSuite;
-}
-
-void CuSuiteAdd(CuSuite* testSuite, CuTest *testCase)
-{
-	assert(testSuite->count < MAX_TEST_CASES);
-	testSuite->list[testSuite->count] = testCase;
-	testSuite->count++;
-}
-
-void CuSuiteAddSuite(CuSuite* testSuite, CuSuite* testSuite2)
-{
-	int i;
-	for (i = 0 ; i < testSuite2->count ; ++i)
-	{
-		CuTest* testCase = testSuite2->list[i];
-		CuSuiteAdd(testSuite, testCase);
-	}
-}
-
-void CuSuiteRun(CuSuite* testSuite)
-{
-	int i;
-	for (i = 0 ; i < testSuite->count ; ++i)
-	{
-		CuTest* testCase = testSuite->list[i];
-		CuTestRun(testCase);
-		if (testCase->failed) { testSuite->failCount += 1; }
-	}
-}
-
-void CuSuiteSummary(CuSuite* testSuite, CuString* summary)
-{
-	int i;
-	for (i = 0 ; i < testSuite->count ; ++i)
-	{
-		CuTest* testCase = testSuite->list[i];
-		CuStringAppend(summary, testCase->failed ? "F" : ".");
-	}
-	CuStringAppend(summary, "\n\n");
-}
-
-void CuSuiteDetails(CuSuite* testSuite, CuString* details)
-{
-	int i;
-	int failCount = 0;
-
-	if (testSuite->failCount == 0)
-	{
-		int passCount = testSuite->count - testSuite->failCount;
-		const char* testWord = passCount == 1 ? "test" : "tests";
-		CuStringAppendFormat(details, "OK (%d %s)\n", passCount, testWord);
-	}
-	else
-	{
-		if (testSuite->failCount == 1)
-			CuStringAppend(details, "There was 1 failure:\n");
-		else
-			CuStringAppendFormat(details, "There were %d failures:\n", testSuite->failCount);
-
-		for (i = 0 ; i < testSuite->count ; ++i)
-		{
-			CuTest* testCase = testSuite->list[i];
-			if (testCase->failed)
-			{
-				failCount++;
-				CuStringAppendFormat(details, "%d) %s: %s\n",
-					failCount, testCase->name, testCase->message);
-			}
-		}
-		CuStringAppend(details, "\n!!!FAILURES!!!\n");
-
-		CuStringAppendFormat(details, "Runs: %d ",   testSuite->count);
-		CuStringAppendFormat(details, "Passes: %d ", testSuite->count - testSuite->failCount);
-		CuStringAppendFormat(details, "Fails: %d\n",  testSuite->failCount);
-	}
-}
Index: trunk/src/bignum.c
===================================================================
--- trunk/src/bignum.c	(revision 591)
+++ trunk/src/bignum.c	(revision 1)
@@ -64,4 +64,9 @@
 #define ulong unsigned long
 
+/*
+extern void *malloc(size_t size);
+extern void free();
+*/
+
 char *last_string    = NULL;
 char *big_end_string = NULL;
@@ -175,5 +180,5 @@
     for (base = 2; base <= 36; base++)
     {
-	tmp = ((1U << (DIGIT_BITS - 1)) / base);
+	tmp = ((1 << (DIGIT_BITS - 1)) / base);
 	maxdigit = tmp * 2;
 	curdigit = 1;
@@ -209,7 +214,7 @@
   if (!dp) 
     return;
-  (void) count;
   free((char *)dp);
   dp = NULL;
+  count = 0;
 }
 #endif
@@ -227,5 +232,5 @@
     dgs_alloc += alloclen;
 #endif
-    digit_ptr = calloc(alloclen, sizeof(DIGIT));
+    digit_ptr = (DIGIT *) malloc(alloclen * sizeof(DIGIT));
     if (digit_ptr == NULL)
     {
@@ -425,5 +430,4 @@
 {
     DIGIT *a_ptr, *b_ptr;
-    int retval = 0;
 
     if (a->dgs_used  == b->dgs_used)
@@ -438,12 +442,10 @@
 	if (a_ptr < a->dp)
 	{
-	    return retval;
+	    return 0;
 	}
 	else
 	{
-	    if (retval == 0)
-	        retval = (*a_ptr > *b_ptr) ? 1 : -1;
-	}
-	return retval;
+	    return (*a_ptr > *b_ptr) ? 1 : -1;
+	}
     }
     return (a->dgs_used > b->dgs_used) ? 1 : -1;
@@ -623,5 +625,5 @@
     big_set_long((long)1, &big_one);
     length_last_string = 10;
-    if ((last_string = calloc(1,length_last_string)) == NULL)
+    if ((last_string = malloc(length_last_string)) == NULL)
     {
 	big_errno = BIG_MEMERR;
@@ -924,5 +926,5 @@
     if (a->sign == BIG_SIGN_MINUS)
     {
-      *n = -*n;
+	*n = -*n;;
     }
     return FALSE;
@@ -953,5 +955,5 @@
 	if (last_string != NULL)
 	  free(last_string);
-	if ((last_string = calloc(1,str_length)) == NULL)
+	if ((last_string = malloc(str_length)) == NULL)
 	{
 	    big_errno = BIG_MEMERR;
Index: trunk/src/caps.ac
===================================================================
--- trunk/src/caps.ac	(revision 1)
+++ trunk/src/caps.ac	(revision 1)
@@ -0,0 +1,23 @@
+        case "$host_os" in
+        *linux*)
+        if test x"${sh_use_lcaps}" = xyes
+        then
+            echo
+            echo "Using Linux capabilities to drop unnecessary root capabilities."
+            echo "Please make sure that directories used for writing have write permission"
+            echo "for root, because root will be a mere mortal in that respect:"
+            echo "  Baseline database in: ${mydataroot}"
+            echo "  Logfile in:           ${localstatedir}/log"
+            echo "  PID file in:          ${localstatedir}/run"
+            echo "(directories not existent yet will be created upon installation, root-owned"
+            echo "if make install is executed by root.)"
+            echo
+        fi
+        if test x"${sh_use_lcaps}" = xno
+        then
+            echo
+            echo "Not using Linux capabilities (capability.h or libcap not found)"
+            echo
+        fi
+        ;;
+        esac
Index: trunk/src/cutest_sh_hash.c
===================================================================
--- trunk/src/cutest_sh_hash.c	(revision 591)
+++ 	(revision )
@@ -1,121 +1,0 @@
-
-#include "config_xor.h"
-
-#include 
-#include "CuTest.h"
-
-extern char * quote_string   (const char * str, size_t len);
-extern char * unquote_string (const char * str, size_t len);
-
-void Test_quote_string_ok (CuTest *tc) {
-
-#if defined(SH_WITH_CLIENT) || defined(SH_STANDALONE)
-  char * ret = 0;
-
-  char   inp1[] = "foo\nba=r\ntest";
-  char   out1[] = "foo=0Aba=3Dr=0Atest";
-
-  char   inp2[] = "\n=foo\nba=r\ntest=\n";
-  char   out2[] = "=0A=3Dfoo=0Aba=3Dr=0Atest=3D=0A";
-
-  ret = quote_string(inp1, strlen(inp1));
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, out1, ret);
-
-  ret = quote_string(inp2,strlen(inp2));
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, out2, ret);
-#else
-  (void) tc; /* fix compiler warning */
-#endif
-  return;
-}
-
-void Test_unquote_string_ok (CuTest *tc) {
-#if defined(SH_WITH_CLIENT) || defined(SH_STANDALONE)
-  char * ret = 0;
-
-  char   out1[] = "foo\nba=r\ntes[t";
-  char   inp1[] = "foo=0Aba=3Dr=0Ates=5Bt";
-
-  char   out2[] = "\n=foo\nba=r\ntest=\n";
-  char   inp2[] = "=0A=3Dfoo=0Aba=3Dr=0Atest=3D=0A";
-
-  char   out3[] = ""; /* encoded '\0' at start */
-  char   inp3[] = "=00=3Dfoo=0Aba=3Dr=0Atest=3D=0A";
-
-  ret = unquote_string(inp1, strlen(inp1));
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, out1, ret);
-
-  ret = unquote_string(inp2, strlen(inp2));
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, out2, ret);
-
-  ret = unquote_string(inp3, strlen(inp3));
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, out3, ret);
-#else
-  (void) tc; /* fix compiler warning */
-#endif
-  return;
-}
-
-
-void Test_csv_escape_ok (CuTest *tc) {
-#if defined(SH_WITH_CLIENT) || defined(SH_STANDALONE)
-
-  extern char * csv_escape(const char * str);
-
-  char   test0[80];
-  char   expec[80];
-  char  *ret;
-
-  strcpy(test0, "foobar");
-  strcpy(expec, "\"foobar\"");
-  ret = csv_escape(test0);
-  CuAssertStrEquals(tc, expec, ret);
-
-  strcpy(test0, "\"foobar\"");
-  strcpy(expec, "\"\"\"foobar\"\"\"");
-  ret = csv_escape(test0);
-  CuAssertStrEquals(tc, expec, ret);
-
-  strcpy(test0, "foo,bar");
-  strcpy(expec, "\"foo,bar\"");
-  ret = csv_escape(test0);
-  CuAssertStrEquals(tc, expec, ret);
-
-  strcpy(test0, "foob,\"a\"r");
-  strcpy(expec, "\"foob,\"\"a\"\"r\"");
-  ret = csv_escape(test0);
-  CuAssertStrEquals(tc, expec, ret);
-
-  strcpy(test0, "\",\"foobar\",\"");
-  strcpy(expec, "\"\"\",\"\"foobar\"\",\"\"\"");
-  ret = csv_escape(test0);
-  CuAssertStrEquals(tc, expec, ret);
-
-  strcpy(test0, "");
-  strcpy(expec, "");
-  ret = csv_escape(test0);
-  CuAssertStrEquals(tc, expec, ret);
-
-  strcpy(test0, "a");
-  strcpy(expec, "\"a\"");
-  ret = csv_escape(test0);
-  CuAssertStrEquals(tc, expec, ret);
-
-  strcpy(test0, "foo\"bar");
-  strcpy(expec, "\"foo\"\"bar\"");
-  ret = csv_escape(test0);
-  CuAssertStrEquals(tc, expec, ret);
-
-#else
-  (void) tc; /* fix compiler warning */
-#endif
-  return;
-}
-
-
-
Index: trunk/src/cutest_sh_tiger0.c
===================================================================
--- trunk/src/cutest_sh_tiger0.c	(revision 591)
+++ 	(revision )
@@ -1,460 +1,0 @@
-
-#include "config_xor.h"
-
-#include 
-#include 
-#include 
-#include "CuTest.h"
-
-#include "sh_tiger.h"
-#include "sh_checksum.h"
-
-#if defined(HAVE_PTHREAD) && defined(SH_STEALTH)
-extern void sh_g_init(void);
-#endif
-
-
-static void init(void) {
-
-  extern unsigned char TcpFlag[8][PW_LEN+1];
-  extern UINT32  ErrFlag[2];
-  unsigned char * dez = NULL;
-  int i;
-
-#if defined(HAVE_PTHREAD) && defined(SH_STEALTH)
-  sh_g_init();
-#endif
-  skey = (sh_key_t *) malloc (sizeof(sh_key_t));
-  if (skey != NULL) 
-    {
-      skey->mlock_failed = S_FALSE;
-      skey->rngI         = BAD;
-      /* properly initialized later 
-       */
-      skey->rng0[0] = 0x03; skey->rng0[1] = 0x09; skey->rng0[2] = 0x17;
-      skey->rng1[0] = 0x03; skey->rng1[1] = 0x09; skey->rng1[2] = 0x17;
-      skey->rng2[0] = 0x03; skey->rng2[1] = 0x09; skey->rng2[2] = 0x17;
-      
-      for (i = 0; i < KEY_BYT; ++i)
-	skey->poolv[i] = '\0';
-      
-      skey->poolc        = 0;
-      
-      skey->ErrFlag[0]   = ErrFlag[0];
-      ErrFlag[0]         = 0;
-      skey->ErrFlag[1]   = ErrFlag[1];
-      ErrFlag[1]         = 0;
-      
-      dez = &(TcpFlag[POS_TF-1][0]);
-      for (i = 0; i < PW_LEN; ++i)
-	{ 
-	  skey->pw[i] = (char) (*dez); 
-	  (*dez)      = '\0';
-	  ++dez; 
-	}
-      
-      skey->sh_sockpass[0]  = '\0';
-      skey->sigkey_old[0]   = '\0';
-      skey->sigkey_new[0]   = '\0';
-      skey->mailkey_old[0]  = '\0';
-      skey->mailkey_new[0]  = '\0';
-      skey->crypt[0]        = '\0';
-      skey->session[0]      = '\0';
-      skey->vernam[0]       = '\0';
-    }
-  else
-    {
-      perror(_("sh_init"));
-      _exit (EXIT_FAILURE);
-    }
-
-}
-  
-void Test_tiger(CuTest *tc) {
-
-  char * input;
-  char * actual;
-  char * expected;
-  char hashbuf[KEYBUF_SIZE];
-
-#if defined(HAVE_PTHREAD) && defined(SH_STEALTH)
-  sh_g_init();
-#endif
-
-  input  = "";
-  actual = sh_tiger_hash(input, TIGER_DATA, strlen(input), hashbuf, sizeof(hashbuf));
-  expected = "24F0130C63AC933216166E76B1BB925FF373DE2D49584E7A";
-  CuAssertStrEquals(tc, expected, actual);
-
-  input  = "abc";
-  actual = sh_tiger_hash(input, TIGER_DATA, strlen(input), hashbuf, sizeof(hashbuf));
-  expected = "F258C1E88414AB2A527AB541FFC5B8BF935F7B951C132951";
-  CuAssertStrEquals(tc, expected, actual);
-  
-  input  = "Tiger";
-  actual = sh_tiger_hash(input, TIGER_DATA, strlen(input), hashbuf, sizeof(hashbuf));
-  expected = "9F00F599072300DD276ABB38C8EB6DEC37790C116F9D2BDF";
-  CuAssertStrEquals(tc, expected, actual);
-  
-  input  = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+-";
-  actual = sh_tiger_hash(input, TIGER_DATA, strlen(input), hashbuf, sizeof(hashbuf));
-  expected = "87FB2A9083851CF7470D2CF810E6DF9EB586445034A5A386";
-  CuAssertStrEquals(tc, expected, actual);
-  
-  input  = "ABCDEFGHIJKLMNOPQRSTUVWXYZ=abcdefghijklmnopqrstuvwxyz+0123456789";
-  actual = sh_tiger_hash(input, TIGER_DATA, strlen(input), hashbuf, sizeof(hashbuf));
-  expected = "467DB80863EBCE488DF1CD1261655DE957896565975F9197";
-  CuAssertStrEquals(tc, expected, actual);
-  
-  input  = "Tiger - A Fast New Hash Function, by Ross Anderson and Eli Biham";
-  actual = sh_tiger_hash(input, TIGER_DATA, strlen(input), hashbuf, sizeof(hashbuf));
-  expected = "0C410A042968868A1671DA5A3FD29A725EC1E457D3CDB303";
-  CuAssertStrEquals(tc, expected, actual);
-  
-  input  = "Tiger - A Fast New Hash Function, by Ross Anderson and Eli Biham, proceedings of Fast Software Encryption 3, Cambridge.";
-  actual = sh_tiger_hash(input, TIGER_DATA, strlen(input), hashbuf, sizeof(hashbuf));
-  expected = "EBF591D5AFA655CE7F22894FF87F54AC89C811B6B0DA3193";
-  CuAssertStrEquals(tc, expected, actual);
-  
-  input  = "Tiger - A Fast New Hash Function, by Ross Anderson and Eli Biham, proceedings of Fast Software Encryption 3, Cambridge, 1996.";
-  actual = sh_tiger_hash(input, TIGER_DATA, strlen(input), hashbuf, sizeof(hashbuf));
-  expected = "3D9AEB03D1BD1A6357B2774DFD6D5B24DD68151D503974FC";
-  CuAssertStrEquals(tc, expected, actual);
-  
-  input  = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+-ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+-";
-  actual = sh_tiger_hash(input, TIGER_DATA, strlen(input), hashbuf, sizeof(hashbuf));
-  expected = "00B83EB4E53440C576AC6AAEE0A7485825FD15E70A59FFE4";
-  CuAssertStrEquals(tc, expected, actual);
-}
-
-void Test_tiger_file(CuTest *tc) {
-
-  SL_TICKET     rval_open;
-  FILE * fp;
-  int result;
-  char * actual;
-  char * expected;
-  char hashbuf[KEYBUF_SIZE];
-  char hexdigest[SHA256_DIGEST_STRING_LENGTH];
-  UINT64  length;
-
-  init();
-
-  fp = fopen("cutest_foo", "w");
-  CuAssertPtrNotNull(tc, fp);
-
-  result = fprintf(fp, "%s\n", 
-		   "ABCDEFGHIJKLMNOPQRSTUVWXYZ=abcdefghijklmnopqrstuvwxyz+0123456789");
-  CuAssertTrue(tc, result >= 0);
-
-  result = fclose(fp);
-  CuAssertTrue(tc, result == 0);
-  
-  result = sh_tiger_hashtype("TIGER192");
-  CuAssertTrue(tc, result == 0);
-
-  /* same result as GnuPG 1.0.6 (gpg --load-extension tiger --print-md TIGER192) 
-   */
-  length = TIGER_NOLIM;
-  actual = sh_tiger_generic_hash("cutest_foo", TIGER_FILE, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "0E9321614C966A33608C2A15F156E0435CACFD1213B9F095";
-  CuAssertStrEquals(tc, expected, actual);
-
-  rval_open = sl_open_fastread (__FILE__, __LINE__, "cutest_foo", SL_YESPRIV);
-  CuAssertTrue(tc, rval_open >= 0);
-
-  length = TIGER_NOLIM;
-  actual = sh_tiger_generic_hash("cutest_foo", rval_open, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "0E9321614C966A33608C2A15F156E0435CACFD1213B9F095";
-  CuAssertStrEquals(tc, expected, actual);
-
-  result = sl_close(rval_open);
-  CuAssertTrue(tc, result == 0);
-
-  result = sh_tiger_hashtype("MD5");
-  CuAssertTrue(tc, result == 0);
-
-  rval_open = sl_open_fastread (__FILE__, __LINE__, "cutest_foo", SL_YESPRIV);
-  CuAssertTrue(tc, rval_open >= 0);
-
-  /* same result as GNU md5sum 
-   */
-  length = TIGER_NOLIM;
-  actual = sh_tiger_generic_hash("cutest_foo", rval_open, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "AEEC4DDA496BCFBA691F4E8863BA84C00000000000000000";
-  CuAssertStrEquals(tc, expected, actual);
-
-  result = sl_close(rval_open);
-  CuAssertTrue(tc, result == 0);
-
-  result = sh_tiger_hashtype("SHA1");
-  CuAssertTrue(tc, result == 0);
-
-  rval_open = sl_open_fastread (__FILE__, __LINE__, "cutest_foo", SL_YESPRIV);
-  CuAssertTrue(tc, rval_open >= 0);
-
-  /* same result as gpg --print-md SHA1 
-   */
-  length = TIGER_NOLIM;
-  actual = sh_tiger_generic_hash("cutest_foo", rval_open, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "2FE65D1D995B8F8BC8B13F798C07E7E935A787ED00000000";
-  CuAssertStrEquals(tc, expected, actual);
-
-  result = sl_close(rval_open);
-  CuAssertTrue(tc, result == 0);
-
-  result = sh_tiger_hashtype("SHA256");
-  CuAssertTrue(tc, result == 0);
-
-  rval_open = sl_open_fastread (__FILE__, __LINE__, "cutest_foo", SL_YESPRIV);
-  CuAssertTrue(tc, rval_open >= 0);
-
-  /* same result as gpg --print-md SHA256
-   */
-  length = TIGER_NOLIM;
-  {
-    char * tmp = sh_tiger_generic_hash("cutest_foo", rval_open, &length, 0, hashbuf, sizeof(hashbuf));
-    actual = SHA256_Base2Hex(tmp, hexdigest);
-  }
-  expected = "235790848f95e96b2c627f1bf58a2b8c05c535ada8c0a3326aac34ce1391ad40";
-  CuAssertStrEquals(tc, expected, actual);
-
-  result = sl_close(rval_open);
-  CuAssertTrue(tc, result == 0);
-
-  result = remove("cutest_foo");
-  CuAssertTrue(tc, result == 0);
-
-  /* --------------------------------------------------- */
-
-  fp = fopen("cutest_foo", "w");
-  CuAssertPtrNotNull(tc, fp);
-
-  result = fprintf(fp, "\n");
-  CuAssertTrue(tc, result >= 0);
-
-  result = fclose(fp);
-  CuAssertTrue(tc, result == 0);
-  
-  result = sh_tiger_hashtype("TIGER192");
-  CuAssertTrue(tc, result == 0);
-
-  /* same result as GnuPG 1.0.6 (gpg --load-extension tiger --print-md TIGER192) 
-   */
-  length = TIGER_NOLIM;
-  actual = sh_tiger_generic_hash("cutest_foo", TIGER_FILE, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "F987845A0EA784367BF9E4DB09014995810F27C99C891734";
-  CuAssertStrEquals(tc, expected, actual);
-
-  result = remove("cutest_foo");
-  CuAssertTrue(tc, result == 0);
-
-  /* --------------------------------------------------- */
-
-  fp = fopen("cutest_foo", "w");
-  CuAssertPtrNotNull(tc, fp);
-
-  result = fprintf(fp, "Tiger - A Fast New Hash Function, by Ross Anderson and Eli Biham, proceedings of Fast Software Encryption 3, Cambridge, 1996.\n");
-  CuAssertTrue(tc, result >= 0);
-
-  result = fclose(fp);
-  CuAssertTrue(tc, result == 0);
-  
-  result = sh_tiger_hashtype("TIGER192");
-  CuAssertTrue(tc, result == 0);
-
-  /* same result as GnuPG 1.0.6 (gpg --load-extension tiger --print-md TIGER192) 
-   */
-  length = TIGER_NOLIM;
-  actual = sh_tiger_generic_hash("cutest_foo", TIGER_FILE, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "75B98A7AE257A230189828A40792E30B4038D286479CC7B8";
-  CuAssertStrEquals(tc, expected, actual);
-
-  result = remove("cutest_foo");
-  CuAssertTrue(tc, result == 0);
-
-}  
-
-/* test checksum of file upto some given length
- */
-void Test_tiger_file_with_length(CuTest *tc) {
-
-  SL_TICKET     rval_open;
-  FILE * fp;
-  int result;
-  char * actual;
-  char * expected;
-  char hashbuf[KEYBUF_SIZE];
-  UINT64  length;
-
-  char * teststring = "Tiger - A Fast New Hash Function, by Ross Anderson and Eli Biham, proceedings of Fast Software Encryption 3, Cambridge, 1996.\n";
-  size_t    testlen = strlen(teststring);
-
-  init();
-
-  fp = fopen("cutest_foo", "w");
-  CuAssertPtrNotNull(tc, fp);
-
-  result = fprintf(fp, "%s", teststring);
-  CuAssertTrue(tc, result >= 0);
-  result = fprintf(fp, "%s", teststring);
-  CuAssertTrue(tc, result >= 0);
-
-  result = fclose(fp);
-  CuAssertTrue(tc, result == 0);
-  
-  result = sh_tiger_hashtype("TIGER192");
-  CuAssertTrue(tc, result == 0);
-
-  /* same as GnuPG 1.0.6 (gpg --load-extension tiger --print-md TIGER192) 
-   */
-  length = 0;
-  actual = sh_tiger_generic_hash("cutest_foo", TIGER_FILE, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "24F0130C63AC933216166E76B1BB925FF373DE2D49584E7A";
-  CuAssertStrEquals(tc, expected, actual);
-  CuAssertTrue(tc, 0 == length);
-
-  length = testlen;
-  actual = sh_tiger_generic_hash("cutest_foo", TIGER_FILE, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "75B98A7AE257A230189828A40792E30B4038D286479CC7B8";
-  CuAssertStrEquals(tc, expected, actual);
-  CuAssertTrue(tc, testlen == length);
-
-  length = 2*testlen;
-  actual = sh_tiger_generic_hash("cutest_foo", TIGER_FILE, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "B5B4FB97B01ADB58794D87A6A01B2368852FA764BD93AB90";
-  CuAssertStrEquals(tc, expected, actual);
-  CuAssertTrue(tc, 2*testlen == length);
-
-  length = TIGER_NOLIM;
-  actual = sh_tiger_generic_hash("cutest_foo", TIGER_FILE, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "B5B4FB97B01ADB58794D87A6A01B2368852FA764BD93AB90";
-  CuAssertStrEquals(tc, expected, actual);
-  CuAssertTrue(tc, 2*testlen == length);
-
-  fp = fopen("cutest_foo", "a");
-  CuAssertPtrNotNull(tc, fp);
-  result = fprintf(fp, "%s", teststring);
-  CuAssertTrue(tc, result >= 0);
-  result = fclose(fp);
-  CuAssertTrue(tc, result == 0);
-
-  length = testlen;
-  actual = sh_tiger_generic_hash("cutest_foo", TIGER_FILE, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "75B98A7AE257A230189828A40792E30B4038D286479CC7B8";
-  CuAssertStrEquals(tc, expected, actual);
-  CuAssertTrue(tc, testlen == length);
-
-  length = 2*testlen;
-  actual = sh_tiger_generic_hash("cutest_foo", TIGER_FILE, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "B5B4FB97B01ADB58794D87A6A01B2368852FA764BD93AB90";
-  CuAssertStrEquals(tc, expected, actual);
-  CuAssertTrue(tc, 2*testlen == length);
-
-  length = 3*testlen;
-  actual = sh_tiger_generic_hash("cutest_foo", TIGER_FILE, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "D0EE1A9956CAB22D84B51A5E0C093B724828C6A1F9CBDB7F";
-  CuAssertStrEquals(tc, expected, actual);
-  CuAssertTrue(tc, 3*testlen == length);
-
-  length = TIGER_NOLIM;
-  actual = sh_tiger_generic_hash("cutest_foo", TIGER_FILE, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "D0EE1A9956CAB22D84B51A5E0C093B724828C6A1F9CBDB7F";
-  CuAssertStrEquals(tc, expected, actual);
-  CuAssertTrue(tc, 3*testlen == length);
-
-  length = 5;
-  actual = sh_tiger_generic_hash("cutest_foo", TIGER_FILE, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "9F00F599072300DD276ABB38C8EB6DEC37790C116F9D2BDF";
-  CuAssertStrEquals(tc, expected, actual);
-  CuAssertTrue(tc, 5 == length);
-
-  /* same results as GNU md5sum */
-
-  result = sh_tiger_hashtype("MD5");
-  CuAssertTrue(tc, result == 0);
-
-  rval_open = sl_open_fastread (__FILE__, __LINE__, "cutest_foo", SL_YESPRIV);
-  CuAssertTrue(tc, rval_open >= 0);
-
-  length = testlen;
-  actual = sh_tiger_generic_hash("cutest_foo", rval_open, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "11E7E7EA486136273606BEE57C71F34B0000000000000000";
-  CuAssertStrEquals(tc, expected, actual);
-  CuAssertTrue(tc, testlen == length);
-
-  result = sl_rewind(rval_open);
-  CuAssertTrue(tc, rval_open >= 0);
-
-  length = 2*testlen;
-  actual = sh_tiger_generic_hash("cutest_foo", rval_open, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "D49DAD474095D467E2E5EFCB2DC23A770000000000000000";
-  CuAssertStrEquals(tc, expected, actual);
-  CuAssertTrue(tc, 2*testlen == length);
-
-  result = sl_rewind(rval_open);
-  CuAssertTrue(tc, rval_open >= 0);
-
-  length = 3*testlen;
-  actual = sh_tiger_generic_hash("cutest_foo", rval_open, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "00A1F1C5EDDCCFC430D3862FDA94593E0000000000000000";
-  CuAssertStrEquals(tc, expected, actual);
-  CuAssertTrue(tc, 3*testlen == length);
-
-  result = sl_rewind(rval_open);
-  CuAssertTrue(tc, rval_open >= 0);
-
-  length = TIGER_NOLIM;
-  actual = sh_tiger_generic_hash("cutest_foo", rval_open, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "00A1F1C5EDDCCFC430D3862FDA94593E0000000000000000";
-  CuAssertStrEquals(tc, expected, actual);
-  CuAssertTrue(tc, 3*testlen == length);
-
-  /* same result as gpg --print-md SHA1 
-   */
-
-  result = sh_tiger_hashtype("SHA1");
-  CuAssertTrue(tc, result == 0);
-
-  result = sl_rewind(rval_open);
-  CuAssertTrue(tc, rval_open >= 0);
-
-  length = testlen;
-  actual = sh_tiger_generic_hash("cutest_foo", rval_open, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "F37DB4344CCD140EE315179E9A27512FB4704F0F00000000";
-  CuAssertStrEquals(tc, expected, actual);
-  CuAssertTrue(tc, testlen == length);
-
-  result = sl_rewind(rval_open);
-  CuAssertTrue(tc, rval_open >= 0);
-
-  length = 2*testlen;
-  actual = sh_tiger_generic_hash("cutest_foo", rval_open, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "D2AD5FC366452D81400BAC31F96269DEEF314BC200000000";
-  CuAssertStrEquals(tc, expected, actual);
-  CuAssertTrue(tc, 2*testlen == length);
-
-  result = sl_rewind(rval_open);
-  CuAssertTrue(tc, rval_open >= 0);
-
-  length = 3*testlen;
-  actual = sh_tiger_generic_hash("cutest_foo", rval_open, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "FAA937EF3389C7E786EB0F1006D049D7AEA7B7B600000000";
-  CuAssertStrEquals(tc, expected, actual);
-  CuAssertTrue(tc, 3*testlen == length);
-
-  result = sl_rewind(rval_open);
-  CuAssertTrue(tc, rval_open >= 0);
-
-  length = TIGER_NOLIM;
-  actual = sh_tiger_generic_hash("cutest_foo", rval_open, &length, 0, hashbuf, sizeof(hashbuf));
-  expected = "FAA937EF3389C7E786EB0F1006D049D7AEA7B7B600000000";
-  CuAssertStrEquals(tc, expected, actual);
-  CuAssertTrue(tc, 3*testlen == length);
-
-  result = sl_close(rval_open);
-  CuAssertTrue(tc, result == 0);
-
-  result = remove("cutest_foo");
-  CuAssertTrue(tc, result == 0);
-}
Index: trunk/src/cutest_sh_tools.c
===================================================================
--- trunk/src/cutest_sh_tools.c	(revision 591)
+++ 	(revision )
@@ -1,138 +1,0 @@
-
-#include "config_xor.h"
-
-#include 
-#include "CuTest.h"
-#include "samhain.h"
-#include "sh_tools.h"
-#include "sh_ipvx.h"
-
-void Test_sh_tools_safe_name_01(CuTest *tc) {
-  /* xml specific */
-  char* input = strdup("hellorld\"foo&");
-  char* actual = sh_tools_safe_name(input, 1);
-#ifdef SH_USE_XML
-  char* expected = "hello=3cwo=3erld=22foo=26";
-#else
-  char* expected = "hellorld\"foo&";
-#endif
-  CuAssertStrEquals(tc, expected, actual);
-}
-
-void Test_sh_tools_safe_name_02(CuTest *tc) {
-  /* html entities */
-  char* input = strdup("hello&"><");
-  char* actual = sh_tools_safe_name(input, 0);
-  char* expected = "hello=26=22=3e=3c";
-  CuAssertStrEquals(tc, expected, actual);
-}
-
-void Test_sh_tools_safe_name_03(CuTest *tc) {
-  char* input = strdup("\\\'hello\\");
-  char* actual = sh_tools_safe_name(input, 0);
-  char* expected = "=27hello";
-  CuAssertStrEquals(tc, expected, actual);
-
-  input = strdup("hello \"world\\\"");
-  actual = sh_tools_safe_name(input, 0);
-  expected = "hello \"world=22";
-  CuAssertStrEquals(tc, expected, actual);
-
-  input = strdup("hello\\\\");
-  actual = sh_tools_safe_name(input, 0);
-  expected = "hello=5c";
-  CuAssertStrEquals(tc, expected, actual);
-
-  input = strdup("hello\\n");
-  actual = sh_tools_safe_name(input, 0);
-  expected = "hello=0a";
-  CuAssertStrEquals(tc, expected, actual);
-}
-
-void Test_sh_tools_safe_name_04(CuTest *tc) {
-  /* invalid and valid octal code */
-  char* input = strdup("hello\\\n");
-  char* actual = sh_tools_safe_name(input, 0);
-  char* expected = "hello";
-  CuAssertStrEquals(tc, expected, actual);
-
-  input = strdup("hello\\100");
-  actual = sh_tools_safe_name(input, 0);
-  expected = "hello=40";
-  CuAssertStrEquals(tc, expected, actual);
-
-  input = strdup("h\\\"ello\\100a");
-  actual = sh_tools_safe_name(input, 0);
-  expected = "h=22ello=40a";
-  CuAssertStrEquals(tc, expected, actual);
-}
-
-void Test_sh_tools_safe_name_05(CuTest *tc) {
-  /* encoding of '=' */
-  char* input = strdup("he=llo=\"foo\"");
-  char* actual = sh_tools_safe_name(input, 0);
-  char* expected = "he=3dllo=\"foo\"";
-  CuAssertStrEquals(tc, expected, actual);
-
-  input = strdup("he=llo=");
-  actual = sh_tools_safe_name(input, 0);
-  expected = "he=3dllo=";
-  CuAssertStrEquals(tc, expected, actual);
-}
-
-void Test_sh_tools_safe_name_06(CuTest *tc) {
-  /* line break removal */
-  char* input = strdup("hello\nworld");
-  char* actual = sh_tools_safe_name(input, 0);
-  char* expected = "hello world";
-  CuAssertStrEquals(tc, expected, actual);
-}
-
-void Test_sh_tools_safe_name_07(CuTest *tc) {
-  /* non-printable chars */
-  char* input = strdup("hello world");
-  char* actual;
-  char* expected;
-
-  input[0]  = 0x01;
-  input[5]  = 0xFF;
-  input[10] = 0xF0;
-
-  actual   = sh_tools_safe_name(input, 0);
-  expected = "=01ello=ffworl=f0";
-  CuAssertStrEquals(tc, expected, actual);
-}
-
-void Test_is_numeric_01(CuTest *tc) {
-  char* input  = strdup("hello world");
-
-  CuAssertTrue(tc, !sh_ipvx_is_numeric(input));
-
-  input  = strdup("127.0.0.1");
-  CuAssertTrue(tc, sh_ipvx_is_numeric(input));
-  input  = strdup("127.0.0.de");
-  CuAssertTrue(tc, !sh_ipvx_is_numeric(input));
-  input  = strdup("127");
-  CuAssertTrue(tc, !sh_ipvx_is_numeric(input));
-#if defined(USE_IPVX)
-  input  = strdup("::1");
-  CuAssertTrue(tc, sh_ipvx_is_numeric(input));
-  input  = strdup("2002:c0a8:101::42");
-  CuAssertTrue(tc, sh_ipvx_is_numeric(input));
-  input  = strdup("2003:dead:beef:4dad:23:46:bb:101");
-  CuAssertTrue(tc, sh_ipvx_is_numeric(input));
-  input  = strdup("::192:168:0:1::");
-  CuAssertTrue(tc, sh_ipvx_is_numeric(input));
-  input  = strdup("1:1:192:168:0:1:1:1");
-  CuAssertTrue(tc, sh_ipvx_is_numeric(input));
-  input  = strdup("1:1:192:168:0:1:1:1:0");
-  CuAssertTrue(tc, !sh_ipvx_is_numeric(input));
-  input  = strdup("2001:0db8:85a3:0000:0000:8a2e:0370:7334");
-  CuAssertTrue(tc, sh_ipvx_is_numeric(input));
-  input  = strdup("2001:db8:85a3:0:0:8a2e:370:7334");
-  CuAssertTrue(tc, sh_ipvx_is_numeric(input));
-  input  = strdup("2001:db8:85a3::8a2e:370:7334");
-  CuAssertTrue(tc, sh_ipvx_is_numeric(input));
-#endif
-}
-
Index: trunk/src/cutest_sh_unix.c
===================================================================
--- trunk/src/cutest_sh_unix.c	(revision 591)
+++ 	(revision )
@@ -1,201 +1,0 @@
-
-#include "config_xor.h"
-
-#include 
-#include "CuTest.h"
-#include "samhain.h"
-#include "sh_unix.h"
-
-int malloc_count = 0;
-
-void Test_dnmalloc (CuTest *tc) {
-
-  const int nalloc = 64 /* original dnmalloc 1.0-beta5 fails for >= 45 */;
-  int j, i;
-  int sum;
-#ifndef USE_SYSTEM_MALLOC
-  int i_malloc =  malloc_count;
-#endif
-
-  char * buf;
-  char * area[256];
-
-#if !defined(USE_SYSTEM_MALLOC) && !defined(__clang__)
-  /* test reuse of last freed chunk */
-  buf = malloc(1024);
-  CuAssertPtrNotNull(tc, buf);
-  free(buf);
-  area[0] = malloc(1024);
-  CuAssertTrue(tc, buf == area[0]);
-  free(area[0]);
-#endif
-  
-  /* test realloc */
-  buf = malloc(16);
-  CuAssertPtrNotNull(tc, buf);
-  strcpy(buf, "testing realloc");
-  buf = realloc(buf, 32);
-  strcat(buf, "testing realloc");
-  CuAssertStrEquals(tc, "testing realloctesting realloc", buf);
-
-#ifndef USE_SYSTEM_MALLOC
-  i_malloc = malloc_count;
-#endif
-
-  for (j = 0; j < 64; ++j)
-    {
-      buf = malloc((j+1) * 1024);
-      CuAssertPtrNotNull(tc, buf);
-#ifndef USE_SYSTEM_MALLOC
-#ifndef __clang__
-      CuAssertIntEquals (tc, malloc_count, (i_malloc + 1));
-#endif
-#endif
-      free(buf);
-#ifndef USE_SYSTEM_MALLOC
-      CuAssertIntEquals (tc, malloc_count, i_malloc);
-#endif
-    }
-
-  /* test realloc */
-  buf = malloc(16);
-  CuAssertPtrNotNull(tc, buf);
-  strcpy(buf, "testing realloc");
-  buf = realloc(buf, 32);
-  strcat(buf, "testing realloc");
-  CuAssertStrEquals(tc, "testing realloctesting realloc", buf);
-
-#ifndef USE_SYSTEM_MALLOC
-  i_malloc = malloc_count;
-#endif
-
-  for (j = 0; j < 64; ++j)
-    {
-      buf = calloc(1, (j+1) * 1024);
-      CuAssertPtrNotNull(tc, buf);
-#ifndef USE_SYSTEM_MALLOC
-      CuAssertIntEquals (tc, malloc_count, (i_malloc + 1));
-#endif
-      sum = 0;
-      for (i = 0; i < ((j+1) * 1024); ++i)
-	sum += buf[i];
-      CuAssertIntEquals (tc, 0, sum);
-      free(buf);
-#ifndef USE_SYSTEM_MALLOC
-      CuAssertIntEquals (tc, malloc_count, i_malloc);
-#endif
-    }
-
-  /* test realloc */
-  buf = malloc(16);
-  CuAssertPtrNotNull(tc, buf);
-  strcpy(buf, "testing realloc");
-  buf = realloc(buf, 32);
-  strcat(buf, "testing realloc");
-  CuAssertStrEquals(tc, "testing realloctesting realloc", buf);
-
-  for (j = 0; j < nalloc; ++j)
-    {
-      area[j] = malloc((j+1) * 1024);
-      CuAssertPtrNotNull(tc, area[j]);
-#ifndef USE_SYSTEM_MALLOC
-      /* CuAssertIntEquals (tc, malloc_count, (i_malloc + (j+1))); */
-#endif
-      memset(area[j], (unsigned char) ('a'+1), (j+1) * 1024);
-    }
-
-#ifndef USE_SYSTEM_MALLOC
-  i_malloc =  malloc_count;
-#endif
-
-  for (j = 0; j < nalloc; ++j)
-    {
-      sum = 0;
-      for (i = 0; i < ((j+1) * 1024); ++i)
-	sum +=  area[j][i];
-      CuAssertIntEquals (tc, sum, ((j+1) * 1024 * ((unsigned char) ('a'+1))));
-      free(area[j]);
-#ifndef USE_SYSTEM_MALLOC
-      CuAssertIntEquals (tc, malloc_count, i_malloc - (j+1));
-#endif
-    }
-
-  /* test realloc */
-  buf = malloc(16);
-  CuAssertPtrNotNull(tc, buf);
-  strcpy(buf, "testing realloc");
-  buf = realloc(buf, 32);
-  strcat(buf, "testing realloc");
-  CuAssertStrEquals(tc, "testing realloctesting realloc", buf);
-
-
-  for (j = 0; j < 32; ++j)
-    {
-#ifndef USE_SYSTEM_MALLOC
-      i_malloc =  malloc_count;
-#endif
-      buf = malloc((j+1) * 1024 * 1024);
-      CuAssertPtrNotNull(tc, buf);
-      for (i = 0; i < 32; ++i)
-	{
-	  area[i] = malloc((i+1) * 1024);
-	  CuAssertPtrNotNull(tc, area[i]);
-	}
-      free(buf);
-      for (i = 0; i < 32; ++i)
-	{
-	  free(area[i]);
-	}
-#ifndef USE_SYSTEM_MALLOC
-      CuAssertIntEquals (tc, malloc_count, i_malloc);
-#endif
-    }
-
-  /* test realloc */
-  buf = malloc(16);
-  CuAssertPtrNotNull(tc, buf);
-  strcpy(buf, "testing realloc");
-  buf = realloc(buf, 32);
-  strcat(buf, "testing realloc");
-  CuAssertStrEquals(tc, "testing realloctesting realloc", buf);
-}
-
-  
-void Test_sh_unix_lookup_page (CuTest *tc) {
-
-  long pagesize = sh_unix_pagesize();
-  
-  unsigned long base;
-  int          num_pages;
-
-  CuAssert (tc, "pagesize > 0", (pagesize > 0));
-
-  /* base = sh_unix_lookup_page(in_addr, len, *num_pages); */
-
-  base = sh_unix_lookup_page(0, pagesize, &num_pages);
-  CuAssert (tc, "base == 0", (base == 0));
-  CuAssertIntEquals (tc, num_pages, 1);
-
-  base = sh_unix_lookup_page(0, pagesize+1, &num_pages);
-  CuAssert (tc, "base == 0", (base == 0));
-  CuAssertIntEquals (tc, num_pages, 2);
-
-  base = sh_unix_lookup_page((void*)pagesize, pagesize, &num_pages);
-  CuAssert (tc, "base == 0", (base == (unsigned int)pagesize));
-  CuAssertIntEquals (tc, num_pages, 1);
-
-  base = sh_unix_lookup_page((void*)pagesize, pagesize+1, &num_pages);
-  CuAssert (tc, "base == 0", (base == (unsigned int)pagesize));
-  CuAssertIntEquals (tc, num_pages, 2);
-
-  base = sh_unix_lookup_page((void*)(pagesize-1), pagesize+1, &num_pages);
-  CuAssert (tc, "base == 0", (base == 0));
-  CuAssertIntEquals (tc, num_pages, 2);
-
-  base = sh_unix_lookup_page((void*)(pagesize-1), pagesize+2, &num_pages);
-  CuAssert (tc, "base == 0", (base == 0));
-  CuAssertIntEquals (tc, num_pages, 3);
-
-}
-
-  
Index: trunk/src/cutest_sh_utils.c
===================================================================
--- trunk/src/cutest_sh_utils.c	(revision 591)
+++ 	(revision )
@@ -1,532 +1,0 @@
-
-#include "config_xor.h"
-
-#include 
-#include "CuTest.h"
-#include "samhain.h"
-#include "sh_utils.h"
-
-void Test_sl_strlcpy (CuTest *tc) {
-  int ret;
-  char out[] = "aaaaaa";
-  char in[]  = "bbb";
-
-  ret = sl_strlcpy (NULL, NULL, 0);
-  CuAssertIntEquals(tc, ret, SL_ENONE);
-
-  ret = sl_strlcpy (NULL, in, 0);
-  CuAssertIntEquals(tc, ret, SL_ENULL);
-
-  ret = sl_strlcpy (out, NULL, 0);
-  CuAssertIntEquals(tc, ret, SL_ENONE);
-
-  ret = sl_strlcpy (out, in, 0);
-  CuAssertIntEquals(tc, ret, SL_ENONE);
-
-  ret = sl_strlcpy (out, NULL, 7);
-  CuAssertIntEquals(tc, ret, SL_ENONE);
-  CuAssertStrEquals(tc, "", out);
-
-  out[0] = 'a';
-  ret = sl_strlcpy (out, in, 4);
-  CuAssertIntEquals(tc, ret, SL_ENONE);
-  CuAssertStrEquals(tc, "bbb", out);
-  CuAssertStrEquals(tc, "aa", &out[4]);
-  
-  return;
-}
-
-void Test_sl_strlcat (CuTest *tc) {
-  int ret;
-  char out[16] = "aaaaaa";
-  char in[16]  = "bbb";
-
-  ret = sl_strlcat (NULL, NULL, 0);
-  CuAssertIntEquals(tc, ret, SL_ENONE);
-
-  ret = sl_strlcat (NULL, in, 0);
-  CuAssertIntEquals(tc, ret, SL_ENONE);
-
-  ret = sl_strlcat (out, NULL, 0);
-  CuAssertIntEquals(tc, ret, SL_ENONE);
-
-  ret = sl_strlcat (out, in, 0);
-  CuAssertIntEquals(tc, ret, SL_ENONE);
-
-  ret = sl_strlcat (out, NULL, sizeof(out));
-  CuAssertIntEquals(tc, ret, SL_ENONE);
-  CuAssertStrEquals(tc, "aaaaaa", out);
-
-  ret = sl_strlcat (out, in, 7);
-  CuAssertIntEquals(tc, ret, SL_ETRUNC);
-  CuAssertStrEquals(tc, "aaaaaa", out);
-
-  ret = sl_strlcat (out, in, 8);
-  CuAssertIntEquals(tc, ret, SL_ETRUNC);
-  CuAssertStrEquals(tc, "aaaaaab", out);
-
-  ret = sl_strlcat (out, in, sizeof(out));
-  CuAssertIntEquals(tc, ret, SL_ENONE);
-  CuAssertStrEquals(tc, "aaaaaabbbb", out);
-
-  CuAssertStrEquals(tc, "bbb", in);
-
-  return;
-}
-
-void Test_sh_util_acl_compact (CuTest *tc) {
-  char * ret = 0;
-  char   inp1[] = "user::r--\nuser:lisa:rwx\t\t#effective: r--\ngroup::r--\ngroup:toolies:rw-  #effective: r--\nmask::r--\nother::r--\n";
-  char   inp2[] = "use\n\nuser:lisa:rwx\t\t#effective: r--\ngroup::r--\ngroup:toolies:rw-  #effective: r--\nmask::r--\nother::r--\n";
-  char   inp3[] = "user:\177\145\177\122:r--\nuser:lisa:rwx\t\t#effective: r--\ngroup::r--\ngroup:toolies:rw-  #effective: r--\nmask::r--\nother::r--\n";
-  
-  ret = sh_util_acl_compact (inp1, strlen(inp1));
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, "u::r--,u:lisa:rwx,g::r--,g:toolies:rw-,m::r--,o::r--",
-		    ret); 
-
-  ret = sh_util_acl_compact (inp2, strlen(inp2));
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, "use,u:lisa:rwx,g::r--,g:toolies:rw-,m::r--,o::r--",
-		    ret); 
-
-  ret = sh_util_acl_compact (inp3, strlen(inp3));
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, "u:eR:r--,u:lisa:rwx,g::r--,g:toolies:rw-,m::r--,o::r--",
-		    ret); 
-
-  return;
-}
-
-void Test_sh_util_strdup_ok (CuTest *tc) {
-  char * ret = 0;
-  char   inp[] = "foobar";
-
-  ret = sh_util_strdup(inp);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssert(tc, "expected inp != ret, but inp == ret", (inp != ret)); 
-  CuAssertStrEquals(tc, "foobar", ret);
-  return;
-}
-
-void Test_sh_util_strconcat_ok (CuTest *tc) {
-  char * ret = 0;
-
-  ret = sh_util_strconcat("foo", NULL);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, "foo", ret);
-
-  ret = sh_util_strconcat("foo", "bar", NULL);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, "foobar", ret);
-
-  ret = sh_util_strconcat("/", "foo", "/", "bar", NULL);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, "/foo/bar", ret);
-
-  return;
-}
-
-void Test_sh_util_base64_enc_ok (CuTest *tc) {
-  unsigned char   out[64];
-  unsigned char   ou2[64];
-  int    ret;
-  unsigned char   inp0[64] = "";
-  unsigned char   inp1[64] = "A";
-  unsigned char   inp2[64] = "AB";
-  unsigned char   inp3[64] = "ABC";
-  unsigned char   inp4[64] = "ABCD";
-
-  ret = sh_util_base64_enc (out, inp0, strlen((char*)inp0));
-  CuAssertIntEquals(tc, 0, ret);
-  CuAssertStrEquals(tc, "", (char*)out);
-  ret = sh_util_base64_dec (ou2, out, strlen((char*)out));
-  CuAssertIntEquals(tc, ret, 0);
-  CuAssertStrEquals(tc, (char*)inp0, (char*)ou2);
-
-  ret = sh_util_base64_enc (out, inp1, strlen((char*)inp1));
-  CuAssertIntEquals(tc, ret, 4);
-  CuAssertStrEquals(tc, "QQ??", (char*)out);
-  ret = sh_util_base64_dec (ou2, out, strlen((char*)out));
-  CuAssertStrEquals(tc, (char*)inp1, (char*)ou2);
-  CuAssertIntEquals(tc, 1, ret);
-
-  ret = sh_util_base64_enc (out, inp2, strlen((char*)inp2));
-  CuAssertIntEquals(tc, ret, 4);
-  CuAssertStrEquals(tc, "QUI?", (char*)out);
-  ret = sh_util_base64_dec (ou2, out, strlen((char*)out));
-  CuAssertStrEquals(tc, (char*)inp2, (char*)ou2);
-  CuAssertIntEquals(tc, 2, ret);
-
-  ret = sh_util_base64_enc (out, inp3, strlen((char*)inp3));
-  CuAssertIntEquals(tc, ret, 4);
-  CuAssertStrEquals(tc, "QUJD", (char*)out);
-  ret = sh_util_base64_dec (ou2, out, strlen((char*)out));
-  CuAssertStrEquals(tc, (char*)inp3, (char*)ou2);
-  CuAssertIntEquals(tc, 3, ret);
-
-  ret = sh_util_base64_enc (out, inp4, strlen((char*)inp4));
-  CuAssertIntEquals(tc, ret, 8);
-  CuAssertStrEquals(tc, "QUJDRA??", (char*)out);
-  ret = sh_util_base64_dec (ou2, out, strlen((char*)out));
-  CuAssertStrEquals(tc, (char*)inp4, (char*)ou2);
-  CuAssertIntEquals(tc, 4, ret);
-
-
-  return;
-}
-
-void Test_sh_util_dirname_ok (CuTest *tc) {
-  char * ret = 0;
-
-  char input0[] = "/foo/bar";
-  char res0[] = "/foo";
-
-  char input1[] = "/foo/bar/";
-  char res1[] = "/foo";
-
-  char input2[] = "/foo";
-  char res2[] = "/";
-
-  char input3[] = "/";
-  char res3[] = "/";
-
-  char input4[] = "///foo//bar";
-  char res4[] = "///foo";
-
-  char input5[] = "//foo///bar///";
-  char res5[] = "//foo";
-
-  char input6[] = "///";
-  char res6[] = "///";
-
-  char input7[] = "//f///b///";
-  char res7[] = "//f";
-
-  char input8[] = "/f/b/";
-  char res8[] = "/f";
-
-  char input9[] = "/e/b";
-  char res9[] = "/e";
-
-  ret = sh_util_dirname(input0);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, res0, ret);
-
-  ret = sh_util_dirname(input1);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, res1, ret);
-
-  ret = sh_util_dirname(input2);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, res2, ret);
-
-  ret = sh_util_dirname(input3);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, res3, ret);
-
-  ret = sh_util_dirname(input4);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, res4, ret);
-
-  ret = sh_util_dirname(input5);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, res5, ret);
-
-  ret = sh_util_dirname(input6);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, res6, ret);
-
-  ret = sh_util_dirname(input7);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, res7, ret);
-
-  ret = sh_util_dirname(input8);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, res8, ret);
-
-  ret = sh_util_dirname(input9);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, res9, ret);
-  return;
-}
-
-void Test_sh_util_basename_ok (CuTest *tc) {
-  char * ret = 0;
-
-  char input0[] = "/foo/bar";
-  char res0[] = "bar";
-
-  char input1[] = "/foo/";
-  char res1[] = "foo";
-
-  char input2[] = "/foo";
-  char res2[] = "foo";
-
-  char input3[] = "/";
-  char res3[] = "/";
-
-  char input4[] = "/foo/bar/";
-  char res4[] = "bar";
-
-  char input5[] = "/foo///bar///";
-  char res5[] = "bar";
-
-  char input6[] = "//foo";
-  char res6[] = "foo";
-
-  ret = sh_util_basename(input0);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, res0, ret);
-
-  ret = sh_util_basename(input1);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, res1, ret);
-
-  ret = sh_util_basename(input2);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, res2, ret);
-
-  ret = sh_util_basename(input3);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, res3, ret);
-
-  ret = sh_util_basename(input4);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, res4, ret);
-
-  ret = sh_util_basename(input5);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, res5, ret);
-
-  ret = sh_util_basename(input6);
-  CuAssertPtrNotNull(tc, ret);
-  CuAssertStrEquals(tc, res6, ret);
-
-  return;
-}
-
-void Test_sh_util_utf8_ok (CuTest *tc) {
-  int ret = 0;
-#if defined(SH_WITH_CLIENT) || defined(SH_STANDALONE)
-  unsigned char seq[16];
-  unsigned char input[16] = "foobar";
-
-  seq[0] = 0x00;
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_TRUE);
-
-  seq[0] = 0xd7; seq[1] = 0x90; seq[2] = 0x00;
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_TRUE);
-
-  seq[0] = 0xed; seq[1] = 0x9f; seq[2] = 0xbf; seq[3] = 0x00;
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_TRUE);
-
-  seq[0] = 0xee; seq[1] = 0x80; seq[2] = 0x80; seq[3] = 0x00;
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_TRUE);
-
-  seq[0] = 0xef; seq[1] = 0xbf; seq[2] = 0xbd; seq[3] = 0x00;
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_TRUE);
-
-  seq[0] = 0xf4; seq[1] = 0x8f; seq[2] = 0xbf; seq[3] = 0xbf; seq[4] = 0x00;
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_TRUE);
-
-  seq[0] = 0xf4; seq[1] = 0x90; seq[2] = 0x80; seq[3] = 0x80; seq[4] = 0x00;
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_TRUE);
-
-  seq[0] = 0xd7; seq[1] = 0x90; seq[2] = 0xd7; seq[3] = 0x90; seq[4] = 0x00;
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_TRUE);
-
-  /* cont. char */
-
-  seq[0] = 0x80; seq[1] = 0x00; 
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_FALSE);
-
-  seq[0] = 0xbf; seq[1] = 0x00; 
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_FALSE);
-
-  /* overlong */
-
-  seq[0] = 0xc0; seq[1] = 0xaf; seq[2] = 0x00;  
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_FALSE);
-
-  seq[0] = 0xe0; seq[1] = 0x8f; seq[2] = 0xaf;  seq[3] = 0x00;  
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_FALSE);
-
-  seq[0] = 0xf0; seq[1] = 0x80; seq[2] = 0x80;  seq[3] = 0xaf; seq[4] = 0x00;  
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_FALSE);
-
-  /* overlong */
-
-  seq[0] = 0xc1; seq[1] = 0xbf; seq[2] = 0x00;  
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_FALSE);
-
-  seq[0] = 0xe0; seq[1] = 0x9f; seq[2] = 0xbf;  seq[3] = 0x00;  
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_FALSE);
-
-  seq[0] = 0xf0; seq[1] = 0x8f; seq[2] = 0xbf;  seq[3] = 0xbf; seq[4] = 0x00;  
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_FALSE);
-
-  /* overlong */
-
-  seq[0] = 0xc0; seq[1] = 0x80; seq[2] = 0x00;  
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_FALSE);
-
-  seq[0] = 0xe0; seq[1] = 0x80; seq[2] = 0x80;  seq[3] = 0x00;  
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_FALSE);
-
-  seq[0] = 0xf0; seq[1] = 0x80; seq[2] = 0x80;  seq[3] = 0x80; seq[4] = 0x00;  
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_FALSE);
-
-  /* cont missing */
-
-  seq[0] = 0xd7; seq[1] = 0x20; seq[3] = 0x00;
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_FALSE);
-
-  seq[0] = 0xee; seq[1] = 0x80; seq[2] = 0x20; seq[3] = 0x00;
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_FALSE);
-
-  seq[0] = 0xf4; seq[1] = 0x8f; seq[2] = 0xbf; seq[3] = 0x20; seq[4] = 0x00;
-  ret = sh_util_valid_utf8(seq);
-  CuAssertIntEquals(tc, ret, S_FALSE);
-
-  /* switch on utf8 checking for sh_util_obscurename() */
-
-  ret = sh_util_obscure_utf8("Y");
-  CuAssertIntEquals(tc, ret, 0);
-
-  ret = sh_util_obscure_ok ("0x01,0x02,0x03");
-  CuAssertIntEquals(tc, ret, 0);
-
-  ret = sh_util_valid_utf8 (input);
-  CuAssertIntEquals(tc, ret, S_TRUE);
-  ret = sh_util_obscurename (0, (char *)input, S_FALSE /* no log message */);
-  CuAssertIntEquals(tc, ret, 0);
-
-  input[0] = '\t';
-  ret = sh_util_valid_utf8 (input);
-  CuAssertIntEquals(tc, ret, S_FALSE);
-  ret = sh_util_obscurename (0, (char *)input, S_FALSE /* no log message */);
-  CuAssertIntEquals(tc, ret, -1);
-
-  input[0] = 0x01;
-  ret = sh_util_valid_utf8 (input);
-  CuAssertIntEquals(tc, ret, S_TRUE);
-  ret = sh_util_obscurename (0, (char *)input, S_FALSE /* no log message */);
-  CuAssertIntEquals(tc, ret, 0);
-
-  input[0] = 0x02;
-  ret = sh_util_valid_utf8 (input);
-  CuAssertIntEquals(tc, ret, S_TRUE);
-  ret = sh_util_obscurename (0, (char *)input, S_FALSE /* no log message */);
-  CuAssertIntEquals(tc, ret, 0);
-
-  input[0] = 0x03;
-  ret = sh_util_valid_utf8 (input);
-  CuAssertIntEquals(tc, ret, S_TRUE);
-  ret = sh_util_obscurename (0, (char *)input, S_FALSE /* no log message */);
-  CuAssertIntEquals(tc, ret, 0);
-
-  input[0] = 0x04;
-  ret = sh_util_valid_utf8 (input);
-  CuAssertIntEquals(tc, ret, S_FALSE);
-  ret = sh_util_obscurename (0, (char *)input, S_FALSE /* no log message */);
-  CuAssertIntEquals(tc, ret, -1);
-
-  input[0] = 'f';
-  ret = sh_util_valid_utf8 (input);
-  CuAssertIntEquals(tc, ret, S_TRUE);
-  ret = sh_util_obscurename (0, (char *)input, S_FALSE /* no log message */);
-  CuAssertIntEquals(tc, ret, 0);
-
-  input[5] = ' ';
-  ret = sh_util_valid_utf8 (input);
-  CuAssertIntEquals(tc, ret, S_FALSE);
-  ret = sh_util_obscurename (0, (char *)input, S_FALSE /* no log message */);
-  CuAssertIntEquals(tc, ret, -1);
-
-  input[5] = 'r'; input[3] = ' ';
-  ret = sh_util_valid_utf8 (input);
-  CuAssertIntEquals(tc, ret, S_TRUE);
-  ret = sh_util_obscurename (0, (char *)input, S_FALSE /* no log message */);
-  CuAssertIntEquals(tc, ret, 0);
-
-
-#else
-  CuAssertIntEquals(tc, ret, 0);
-#endif
-}
-
-void Test_sh_util_obscure_ok (CuTest *tc) {
-
-  int ret = 0;
-#if defined(SH_WITH_CLIENT) || defined(SH_STANDALONE)
-  char input[16] = "foobar";
-
-  /* switch off utf8 checking for sh_util_obscurename() */
-
-  ret = sh_util_obscure_utf8("N");
-  CuAssertIntEquals(tc, ret, 0);
-
-  ret = sh_util_obscure_ok ("0xA1,0xA2,0xA3");
-  CuAssertIntEquals(tc, ret, 0);
-
-  ret = sh_util_obscurename (0, input, S_FALSE /* no log message */);
-  CuAssertIntEquals(tc, ret, 0);
-
-  input[0] = '\t';
-  ret = sh_util_obscurename (0, input, S_FALSE /* no log message */);
-  CuAssertIntEquals(tc, ret, -1);
-
-  input[0] = 0xA1;
-  ret = sh_util_obscurename (0, input, S_FALSE /* no log message */);
-  CuAssertIntEquals(tc, ret, 0);
-
-  input[0] = 0xA2;
-  ret = sh_util_obscurename (0, input, S_FALSE /* no log message */);
-  CuAssertIntEquals(tc, ret, 0);
-
-  input[0] = 0xA3;
-  ret = sh_util_obscurename (0, input, S_FALSE /* no log message */);
-  CuAssertIntEquals(tc, ret, 0);
-
-  input[0] = 0xA4;
-  ret = sh_util_obscurename (0, input, S_FALSE /* no log message */);
-  CuAssertIntEquals(tc, ret, -1);
-
-  input[0] = 'f';
-  ret = sh_util_obscurename (0, input, S_FALSE /* no log message */);
-  CuAssertIntEquals(tc, ret, 0);
-
-  input[5] = ' ';
-  ret = sh_util_obscurename (0, input, S_FALSE /* no log message */);
-  CuAssertIntEquals(tc, ret, -1);
-
-  input[5] = 'r'; input[3] = ' ';
-  ret = sh_util_obscurename (0, input, S_FALSE /* no log message */);
-  CuAssertIntEquals(tc, ret, 0);
-#else
-  CuAssertIntEquals(tc, ret, 0);
-#endif
-}
-
Index: trunk/src/cutest_slib.c
===================================================================
--- trunk/src/cutest_slib.c	(revision 591)
+++ 	(revision )
@@ -1,135 +1,0 @@
-
-#include "config_xor.h"
-
-#include 
-#include "CuTest.h"
-#include "samhain.h"
-
-void Test_sl_stale (CuTest *tc) {
-
-  extern int get_the_fd (SL_TICKET ticket);
-
-  int       fd1, fd2, ret, line, val;
-  SL_TICKET tfd1, tfd2;
-  char *    err1;
-  char      err2[128];
-
-  line = __LINE__; tfd1 = sl_open_read(__FILE__, __LINE__, "/etc/group", SL_NOPRIV);
-  CuAssertTrue(tc, tfd1 > 0);
-
-  fd1 = get_the_fd(tfd1);
-  CuAssertTrue(tc, fd1 >= 0);
-
-  ret = close(fd1);
-  CuAssertTrue(tc, ret == 0);
-
-  tfd2 = sl_open_read(__FILE__, __LINE__, "/etc/group", SL_NOPRIV);
-  CuAssertTrue(tc, tfd2 > 0);
-  CuAssertTrue(tc, tfd2 != tfd1);
-
-  fd2 = get_the_fd(tfd2);
-  CuAssertIntEquals(tc, fd1, fd2);
-
-  err1 = sl_check_stale();
-  CuAssertTrue(tc, err1 != NULL);
-
-  sl_snprintf(err2, sizeof(err2), 
-	      "stale handle, %s, %d", __FILE__, line);
-  val = strcmp(err1, err2);
-  CuAssertIntEquals(tc, 0, val);
-}
-
-void Test_sl_snprintf (CuTest *tc) {
-
-  int ret = 0;
-  char input[16];
-
-  memset (&input, 'X', 16);
-  ret = sl_snprintf(input, 10, "%s\n", "01234567890123456789");
-  CuAssertIntEquals(tc, ret, 0);
-  CuAssertTrue(tc, input[9]  == '\0');
-  CuAssertTrue(tc, input[10] == 'X');
-
-  memset (&input, 'X', 16);
-  ret = sl_snprintf(input, 4, "%d\n", "012345");
-  CuAssertIntEquals(tc, ret, 0);
-  CuAssertTrue(tc, input[3] == '\0');
-  CuAssertTrue(tc, input[4] == 'X');
-}
-
-void Test_sl_ts_strncmp (CuTest *tc) {
-  char one[64], two[64];
-  int  res;
-
-  strcpy(one, "foo");
-  strcpy(two, "foo");
-  res = sl_ts_strncmp(one, two, 3);
-  CuAssertIntEquals(tc, 0, res);
-
-  strcpy(one, "fox");
-  strcpy(two, "foo");
-  res = sl_ts_strncmp(one, two, 2);
-  CuAssertIntEquals(tc, 0, res);
-  
-  strcpy(one, "f9o");
-  strcpy(two, "foo");
-  res = sl_ts_strncmp(one, two, 3);
-  CuAssertTrue(tc, 0 != res);
-
-}
-
-void Test_sl_strcasecmp (CuTest *tc) {
-  char one[64], two[64];
-  int  res;
-
-  strcpy(one, "foo");
-  strcpy(two, "foo");
-  res = sl_strcasecmp(one, two);
-  CuAssertIntEquals(tc, 0, res);
-
-  strcpy(one, "fo");
-  strcpy(two, "foo");
-  res = sl_strcasecmp(one, two);
-  CuAssertIntEquals(tc, -1, res);
-
-  strcpy(one, "foo");
-  strcpy(two, "fo");
-  res = sl_strcasecmp(one, two);
-  CuAssertIntEquals(tc, 1, res);
-
-  strcpy(one, "1234");
-  strcpy(two, "2345");
-  res = sl_strcasecmp(one, two);
-  CuAssertIntEquals(tc, -1, res);
-
-  strcpy(one, "234");
-  strcpy(two, "123");
-  res = sl_strcasecmp(one, two);
-  CuAssertIntEquals(tc, 1, res);
-
-  strcpy(one, "");
-  strcpy(two, "123");
-  res = sl_strcasecmp(one, two);
-  CuAssertIntEquals(tc, -1, res);
-
-  strcpy(one, "234");
-  strcpy(two, "");
-  res = sl_strcasecmp(one, two);
-  CuAssertIntEquals(tc, 1, res);
-
-  strcpy(one, "");
-  strcpy(two, "");
-  res = sl_strcasecmp(one, two);
-  CuAssertTrue(tc, res == 0);
-
-#ifndef SL_FAIL_ON_ERROR
-  res = sl_strcasecmp(NULL, two);
-  CuAssertIntEquals(tc, -1, res);
-
-  res = sl_strcasecmp(one, NULL);
-  CuAssertIntEquals(tc, 1, res);
-
-  res = sl_strcasecmp(NULL, NULL);
-  CuAssertTrue(tc, res != 0);
-#endif
-}
Index: trunk/src/cutest_zAVLTree.c
===================================================================
--- trunk/src/cutest_zAVLTree.c	(revision 591)
+++ 	(revision )
@@ -1,523 +1,0 @@
-
-#include "config_xor.h"
-
-#include 
-#include "CuTest.h"
-#include "zAVLTree.h"
-
-struct ztest {
-  char name[32];
-  int  iname;
-};
-
-static zAVLTree * ztest_tree   = NULL;
-
-static zAVLKey ztest_key (void const * arg)
-{
-  const struct ztest * sa = (const struct ztest *) arg;
-  return (zAVLKey) sa->name;
-}
-
-static zAVLKey ztest_intkey(void const *item)
-{
-  return (&((const struct ztest *)item)->iname);
-}
-
-
-static void free_node (void * inptr)
-{
-  struct ztest * ptr = (struct ztest *) inptr;
-  ptr->name[0] = '\0';
-  ptr->iname   = 0;
-}
-
-void Test_zAVLTree(CuTest *tc) {
-  zAVLCursor    cursor;
-
-  int result;
-  int counter = 0;
-
-  char * str;
-
-  struct ztest z1 = { "abc"  , 1 };
-  struct ztest z2 = { "aac"  , 2 };
-  struct ztest z3 = { "aaa1" , 3 };
-  struct ztest z4 = { "aaa3" , 4 };
-  struct ztest z5 = { "aaa2" , 5 };
-  struct ztest z6 = { "aaa6" , 6 };
-  struct ztest z7 = { "aaa5" , 7 };
-  struct ztest z8 = { "aaa4" , 8 };
-
-  struct ztest iz1 = { "aaa1" , 8 };
-  struct ztest iz2 = { "aaa2" , 7 };
-  struct ztest iz3 = { "aaa3" , 1 };
-  struct ztest iz4 = { "aaa4" , 3 };
-  struct ztest iz5 = { "aaa5" , 2 };
-  struct ztest iz6 = { "aaa5" , 6 };
-  struct ztest iz7 = { "aaa7" , 5 };
-  struct ztest iz8 = { "aaa8" , 4 };
-
-  struct ztest * ptr;
-
-  ptr = zAVLFirst(&cursor, ztest_tree);
-  CuAssertTrue(tc, NULL == ptr);
-
-  ztest_tree = zAVLAllocTree (ztest_key, zAVL_KEY_STRING);
-  CuAssertPtrNotNull(tc, ztest_tree);
-
-  do {
-
-  ++counter;
-
-  result = zAVLInsert(ztest_tree, &z1);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &z2);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &z3);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &z4);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &z5);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &z6);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &z7);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &z8);
-  CuAssertTrue(tc, 0 == result);
-
-  ptr = zAVLFirst(&cursor, ztest_tree);
-  CuAssertStrEquals(tc, ptr->name, z3.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z5.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z4.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z8.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z7.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z6.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z2.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z1.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLInsert(ztest_tree, &z8);
-  CuAssertTrue(tc, 0 != result);
-  result = zAVLInsert(ztest_tree, &z7);
-  CuAssertTrue(tc, 0 != result);
-  result = zAVLInsert(ztest_tree, &z6);
-  CuAssertTrue(tc, 0 != result);
-  result = zAVLInsert(ztest_tree, &z5);
-  CuAssertTrue(tc, 0 != result);
-
-  ptr = zAVLSearch(ztest_tree, z1.name);
-  CuAssertStrEquals(tc, ptr->name, z1.name);
-  ptr = zAVLSearch(ztest_tree, z2.name);
-  CuAssertStrEquals(tc, ptr->name, z2.name);
-  ptr = zAVLSearch(ztest_tree, z3.name);
-  CuAssertStrEquals(tc, ptr->name, z3.name);
-  ptr = zAVLSearch(ztest_tree, z4.name);
-  CuAssertStrEquals(tc, ptr->name, z4.name);
-
-  ptr = zAVLFirst(&cursor, ztest_tree);
-  CuAssertStrEquals(tc, ptr->name, z3.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z5.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z4.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z8.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z7.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z6.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z2.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z1.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertTrue(tc, NULL == ptr);
-
-
-  ptr = zAVLSearch(ztest_tree, z5.name);
-  CuAssertStrEquals(tc, ptr->name, z5.name);
-  ptr = zAVLSearch(ztest_tree, z6.name);
-  CuAssertStrEquals(tc, ptr->name, z6.name);
-  ptr = zAVLSearch(ztest_tree, z7.name);
-  CuAssertStrEquals(tc, ptr->name, z7.name);
-  ptr = zAVLSearch(ztest_tree, z8.name);
-  CuAssertStrEquals(tc, ptr->name, z8.name);
-  ptr = zAVLSearch(ztest_tree, "foobar");
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, z8.name);
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, z8.name);
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, z3.name);
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, z3.name);
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, z1.name);
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, z1.name);
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLInsert(ztest_tree, &z1);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &z8);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &z3);
-  CuAssertTrue(tc, 0 == result);
-
-  ptr = zAVLFirst(&cursor, ztest_tree);
-  CuAssertStrEquals(tc, ptr->name, z3.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z5.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z4.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z8.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z7.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z6.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z2.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, z1.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, z1.name);
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, z1.name);
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, z2.name);
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, z2.name);
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, z3.name);
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, z3.name);
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, z4.name);
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, z4.name);
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, z5.name);
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, z5.name);
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, z6.name);
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, z6.name);
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, z7.name);
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, z7.name);
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, z8.name);
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, z8.name);
-  CuAssertTrue(tc, NULL == ptr);
-
-} while (counter < 100);
-
-  result = zAVLInsert(ztest_tree, &z1);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &z2);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &z3);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &z4);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &z5);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &z6);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &z7);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &z8);
-  CuAssertTrue(tc, 0 == result);
-
-  zAVLFreeTree (ztest_tree, free_node);
-  CuAssertTrue (tc, z1.name[0] == '\0');
-  CuAssertTrue (tc, z2.name[0] == '\0');
-  CuAssertTrue (tc, z3.name[0] == '\0');
-  CuAssertTrue (tc, z4.name[0] == '\0');
-  CuAssertTrue (tc, z5.name[0] == '\0');
-  CuAssertTrue (tc, z6.name[0] == '\0');
-  CuAssertTrue (tc, z7.name[0] == '\0');
-  CuAssertTrue (tc, z8.name[0] == '\0');
-
-
-  /* Numeric key here */
-
-  counter    = 0;
-  ztest_tree = NULL;
-
-  ptr = zAVLFirst(&cursor, ztest_tree);
-  CuAssertTrue(tc, NULL == ptr);
-
-  ztest_tree = zAVLAllocTree (ztest_intkey, zAVL_KEY_INT);
-  CuAssertPtrNotNull(tc, ztest_tree);
-
-  do {
-
-  ++counter;
-
-  result = zAVLInsert(ztest_tree, &iz1);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &iz2);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &iz3);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &iz4);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &iz5);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &iz6);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &iz7);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &iz8);
-  CuAssertTrue(tc, 0 == result);
-
-  ptr = zAVLFirst(&cursor, ztest_tree);
-  CuAssertStrEquals(tc, ptr->name, iz3.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz5.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz4.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz8.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz7.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz6.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz2.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz1.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLInsert(ztest_tree, &iz8);
-  CuAssertTrue(tc, 0 != result);
-  result = zAVLInsert(ztest_tree, &iz7);
-  CuAssertTrue(tc, 0 != result);
-  result = zAVLInsert(ztest_tree, &iz6);
-  CuAssertTrue(tc, 0 != result);
-  result = zAVLInsert(ztest_tree, &iz5);
-  CuAssertTrue(tc, 0 != result);
-
-  ptr = zAVLSearch(ztest_tree, &(iz1.iname));
-  CuAssertIntEquals(tc, ptr->iname, iz1.iname);
-  ptr = zAVLSearch(ztest_tree, &(iz2.iname));
-  CuAssertIntEquals(tc, ptr->iname, iz2.iname);
-  ptr = zAVLSearch(ztest_tree, &(iz3.iname));
-  CuAssertIntEquals(tc, ptr->iname, iz3.iname);
-  ptr = zAVLSearch(ztest_tree, &(iz6.iname));
-  CuAssertIntEquals(tc, ptr->iname, iz6.iname);
-  ptr = zAVLSearch(ztest_tree, &(iz4.iname));
-  CuAssertIntEquals(tc, ptr->iname, iz4.iname);
-
-  ptr = zAVLSearch(ztest_tree, &(iz2.iname));
-  CuAssertIntEquals(tc, ptr->iname, iz2.iname);
-  ptr = zAVLSearch(ztest_tree, &(iz3.iname));
-  CuAssertIntEquals(tc, ptr->iname, iz3.iname);
-  ptr = zAVLSearch(ztest_tree, &(iz7.iname));
-  CuAssertIntEquals(tc, ptr->iname, iz7.iname);
-
-  ptr = zAVLFirst(&cursor, ztest_tree);
-  CuAssertStrEquals(tc, ptr->name, iz3.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz5.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz4.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz8.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz7.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz6.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz2.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz1.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertTrue(tc, NULL == ptr);
-
-
-  ptr = zAVLSearch(ztest_tree, &(iz5.iname));
-  CuAssertStrEquals(tc, ptr->name, iz5.name);
-  ptr = zAVLSearch(ztest_tree, &(iz6.iname));
-  CuAssertStrEquals(tc, ptr->name, iz6.name);
-  ptr = zAVLSearch(ztest_tree, &(iz7.iname));
-  CuAssertStrEquals(tc, ptr->name, iz7.name);
-  ptr = zAVLSearch(ztest_tree, &(iz8.iname));
-  CuAssertStrEquals(tc, ptr->name, iz8.name);
-  ptr = zAVLSearch(ztest_tree, &(z1.iname)); /* been set to 0 */
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, &(iz8.iname));
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, &(iz8.iname));
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, &(iz3.iname));
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, &(iz3.iname));
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, &(iz1.iname));
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, &(iz1.iname));
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLInsert(ztest_tree, &iz1);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &iz8);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &iz3);
-  CuAssertTrue(tc, 0 == result);
-
-  ptr = zAVLFirst(&cursor, ztest_tree);
-  CuAssertIntEquals(tc, ptr->iname, iz3.iname);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz5.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz4.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertIntEquals(tc, ptr->iname, iz8.iname);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz7.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz6.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertIntEquals(tc, ptr->iname, iz2.iname);
-  ptr = zAVLNext(&cursor);
-  CuAssertStrEquals(tc, ptr->name, iz1.name);
-  ptr = zAVLNext(&cursor);
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, &(iz1.iname));
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, &(iz1.iname));
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, &(iz2.iname));
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, &(iz2.iname));
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, &(iz3.iname));
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, &(iz3.iname));
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, &(iz4.iname));
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, &(iz4.iname));
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, &(iz5.iname));
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, &(iz5.iname));
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, &(iz6.iname));
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, &(iz6.iname));
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, &(iz7.iname));
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, &(iz7.iname));
-  CuAssertTrue(tc, NULL == ptr);
-
-  result = zAVLDelete(ztest_tree, &(iz8.iname));
-  CuAssertTrue(tc, 0 == result);
-  ptr = zAVLSearch(ztest_tree, &(iz8.iname));
-  CuAssertTrue(tc, NULL == ptr);
-
-} while (counter < 100);
-
-  result = zAVLInsert(ztest_tree, &iz1);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &iz2);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &iz3);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &iz4);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &iz5);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &iz6);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &iz7);
-  CuAssertTrue(tc, 0 == result);
-  result = zAVLInsert(ztest_tree, &iz8);
-  CuAssertTrue(tc, 0 == result);
-
-  zAVLFreeTree (ztest_tree, free_node);
-  CuAssertTrue (tc, iz1.iname == 0);
-  CuAssertTrue (tc, iz2.iname == 0);
-  CuAssertTrue (tc, iz3.iname == 0);
-  CuAssertTrue (tc, iz4.iname == 0);
-  CuAssertTrue (tc, iz5.iname == 0);
-  CuAssertTrue (tc, iz6.iname == 0);
-  CuAssertTrue (tc, iz7.iname == 0);
-  CuAssertTrue (tc, iz8.iname == 0);
-
-  ztest_tree = NULL;
-  str = strdup("foo");
-  result = zAVL_string_set(&ztest_tree, str);
-  CuAssertTrue(tc, 0 == result);
-  CuAssertPtrNotNull(tc, ztest_tree);
-  CuAssertStrEquals(tc, "foo", zAVL_string_get(ztest_tree, "foo")); 
-
-  str = strdup("bar");
-  result = zAVL_string_set(&ztest_tree, str);
-  CuAssertTrue(tc, 0 == result);
-  CuAssertStrEquals(tc, "foo", zAVL_string_get(ztest_tree, "foo")); 
-  CuAssertStrEquals(tc, "bar", zAVL_string_get(ztest_tree, "bar")); 
-
-  str = strdup("balloon");
-  result = zAVL_string_set(&ztest_tree, str);
-  CuAssertTrue(tc, 0 == result);
-  CuAssertStrEquals(tc, "foo", zAVL_string_get(ztest_tree, "foo")); 
-  CuAssertStrEquals(tc, "bar", zAVL_string_get(ztest_tree, "bar")); 
-  CuAssertStrEquals(tc, "balloon", zAVL_string_get(ztest_tree, "balloon")); 
-
-  str = zAVL_string_get(ztest_tree, "foobar");
-  CuAssertTrue(tc, str == NULL);
-  str = zAVL_string_get(ztest_tree, "");
-  CuAssertTrue(tc, str == NULL);
-  str = zAVL_string_get(ztest_tree, NULL);
-  CuAssertTrue(tc, str == NULL);
-
-  zAVL_string_reset(ztest_tree);
-  ztest_tree = NULL;
-  str = zAVL_string_get(ztest_tree, "foo");
-  CuAssertTrue(tc, str == NULL);
-  str = zAVL_string_get(ztest_tree, "bar");
-  CuAssertTrue(tc, str == NULL);
-  str = zAVL_string_get(ztest_tree, "balloon");
-  CuAssertTrue(tc, str == NULL);
-
-}
Index: trunk/src/depend-gen.c
===================================================================
--- trunk/src/depend-gen.c	(revision 591)
+++ trunk/src/depend-gen.c	(revision 1)
@@ -197,8 +197,6 @@
   p = strrchr(name, '/');
   if (p)
-    {
-      ++p;
-      len = strlen(p);
-    }
+    ++p;
+  len = strlen(p);
 
   /* skip other dependencies
@@ -208,5 +206,5 @@
       if (NULL == fgets(line, 1023, fout))
 	break;
-      if (p && 0 == strncmp(line, p, len))
+      if (0 == strncmp(line, p, len))
 	break;
       fprintf(ftmp, "%s", line);
@@ -245,5 +243,5 @@
 	   *
 	   **************************************************/
-	  if (0 == strcmp(p, "sh_sig_chksum.h") ||
+	  if (0 == strcmp(p, "sh_gpg_chksum.h") ||
 	      0 == strcmp(p, "sh_gpg_fp.h"))
 	    {
Index: trunk/src/dnmalloc.c
===================================================================
--- trunk/src/dnmalloc.c	(revision 591)
+++ 	(revision )
@@ -1,5622 +1,0 @@
-/* DistriNet malloc (dnmalloc): a more secure memory allocator. 
-   Copyright (C) 2005, Yves Younan, Wouter Joosen, Frank Piessens 
-   and Rainer Wichmann
-
-   The authors can be contacted by:
-      Email: dnmalloc@fort-knox.org
-      Address:
-#if defined(WITH_TPT) 
-      	     Yves Younan
-      	     Celestijnenlaan 200A
-      	     B-3001 Heverlee
-      	     Belgium
-   
-   This library is free software; you can redistribute it and/or
-   modify it under the terms of the GNU Lesser General Public
-   License as published by the Free Software Foundation; either
-   version 2.1 of the License, or (at your option) any later version.
-
-   This library is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
-   Lesser General Public License for more details.
-
-   You should have received a copy of the GNU Lesser General Public
-   License along with this library; if not, write to the Free Software
-   Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
-   
-*/
-
-/* Current version: dnmalloc 1.0 */
-/* Includes arc4random from OpenBSD, which is under the BDS license     */
-
-/* Versions:
-   0.1-0.5:
-   Proof of concept implementation by Hans Van den Eynden and Yves Younan
-   0.6-0.7:
-   Bug fixes by Yves Younan
-   0.8-1.0.beta4:
-   Reimplementation from scratch by Yves Younan
-   1.0.beta4:
-   Public release
-   1.0.beta5:
-   Prev_chunkinfo speeded up, was really slow because of the way we did lookups
-   A freechunkinfo region is now freed when it is completely empty and 
-   not the current one
-
-   1.0 (Rainer Wichmann [support at la dash samhna dot org]):
-   ---------------------
-
-   Compiler warnings fixed
-   Define REALLOC_ZERO_BYTES_FREES because it's what GNU libc does
-       (and what the standard says)
-   Removed unused code
-   Fix       assert(aligned_OK(chunk(newp)));
-         ->  assert(aligned_OK(chunk(oldp)));
-   Fix statistics in sYSMALLOc
-   Fix overwrite of av->top in sYSMALLOc
-   Provide own assert(), glibc assert() doesn't work (calls malloc)
-   Fix bug in mEMALIGn(), put remainder in hashtable before calling fREe
-   Remove cfree, independent_cmalloc, independent_comalloc (untested
-       public functions not covered by any standard)
-   Provide posix_memalign (that one is in the standard)
-   Move the malloc_state struct to mmapped memory protected by guard pages 
-   Add arc4random function to initialize random canary on startup
-   Implement random canary at end of (re|m)alloced/memaligned buffer,
-       check at free/realloc
-   Remove code conditional on !HAVE_MMAP, since mmap is required anyway.
-   Use standard HAVE_foo macros (as generated by autoconf) instead of LACKS_foo
-
-   Profiling: Reorder branches in hashtable_add, next_chunkinfo, 
-                  prev_chunkinfo, hashtable_insert, mALLOc, fREe, request2size,
-	          checked_request2size (gcc predicts if{} branch to be taken).
-	      Use UNLIKELY macro (gcc __builtin_expect()) where branch
-                  reordering would make the code awkward.
-
-   Portability: Hashtable always covers full 32bit address space to
-                avoid assumptions about memory layout.
-   Portability: Try hard to enforce mapping of mmapped memory into
-                32bit address space, even on 64bit systems.
-   Portability: Provide a dnmalloc_pthread_init() function, since
-                pthread locking on HP-UX only works if initialized
-		after the application has entered main().
-   Portability: On *BSD, pthread_mutex_lock is unusable since it
-                calls malloc, use spinlocks instead.
-   Portability: Dynamically detect whether the heap is within
-                32bit address range (e.g. on Linux x86_64, it isn't).
-		Don't use sbrk() if the heap is mapped to an address 
-		outside the 32bit range, since this doesn't work with 
-		the hashtable. New macro morecore32bit.
-                
-   Success on: HP-UX 11.11/pthread, Linux/pthread (32/64 bit),
-               FreeBSD/pthread, and Solaris 10 i386/pthread.
-   Fail    on: OpenBSD/pthread (in  _thread_machdep_save_float_state),
-               might be related to OpenBSD pthread internals (??).
-	       Non-treaded version (#undef USE_MALLOC_LOCK) 
-	       works on OpenBSD.
-   
-   further to 1.0:
-   Valgrind client requests inserted (#define USE_VALGRIND)
-   Fix: malloc_consolidate (nextchunk->fd, nextchunk->bck may be NULL)
-   Portability: minsize = 32 bit on 64bit architecture
-   Minor cleanups
-   Fix: eliminate prototypes for memset, memcpy (they're in string.h)
-   Fix: one more malloc_consolidate segfault
-
-   There may be some bugs left in this version. please use with caution.
-*/
-
-
-
-/* Please read the following papers for documentation: 
-
-   Yves Younan, Wouter Joosen, and Frank Piessens, A Methodology for Designing
-   Countermeasures against Current and Future Code Injection Attacks,
-   Proceedings of the Third IEEE International Information Assurance
-   Workshop 2005 (IWIA2005), College Park, Maryland, U.S.A., March 2005,
-   IEEE, IEEE Press.
-   http://www.fort-knox.org/younany_countermeasures.pdf
-   
-   Yves Younan, Wouter Joosen and Frank Piessens and Hans Van den
-   Eynden. Security of Memory Allocators for C and C++. Technical Report
-   CW419, Departement Computerwetenschappen, Katholieke Universiteit
-   Leuven, July 2005. http://www.fort-knox.org/CW419.pdf
- 
- */
-
-/* Compile:
-   gcc -fPIC -rdynamic -c -Wall dnmalloc-portable.c
-   "Link": 
-   Dynamic:
-   gcc -shared -Wl,-soname,libdnmalloc.so.0 -o libdnmalloc.so.0.0 dnmalloc-portable.o -lc
-   Static:
-   ar -rv libdnmalloc.a dnmalloc-portable.o
-   
-*/
-
-/* 
-   dnmalloc is based on dlmalloc 2.7.2 (by Doug Lea (dl@cs.oswego.edu))
-   dlmalloc was released as public domain and contained the following license:
-   
-   "This is a version (aka dlmalloc) of malloc/free/realloc written by
-   Doug Lea and released to the public domain.  Use, modify, and
-   redistribute this code without permission or acknowledgement in any
-   way you wish.  Send questions, comments, complaints, performance
-   data, etc to dl@cs.oswego.edu
-   
-   * VERSION 2.7.2 Sat Aug 17 09:07:30 2002  Doug Lea  (dl at gee)
-   
-   Note: There may be an updated version of this malloc obtainable at
-   ftp://gee.cs.oswego.edu/pub/misc/malloc.c
-   Check before installing!"
-   
-*/
-
-/* The following preprocessor macros are tested, 
- *   and hence should have #define directives:
- *
- *   HAVE_CONFIG_H    Define to #include "config.h" (autoconf-generated)
- *
- *   HAVE_UNISTD_H    Define to #include 
- *
- *   HAVE_SYS_UIO_H   Define to #include  (for writev)
- *   HAVE_WRITEV      Define if the 'writev' function is available
- *
- *   HAVE_SYS_PARAM_H Define to #include  (for pagesize)
- *
- *   HAVE_MALLOC_H    Define to #include  (for struct mallinfo2)
- *
- *   HAVE_FCNTL_H     Define to #include 
- *
- *   HAVE_SYS_MMAN_H  Define to #include 
- *   HAVE_MMAP        Define if the 'mmap' function is available.
- *
- *   HAVE_SCHED_H     Define to #include 
- *   HAVE_SCHED_YIELD Define id the 'sched_yield' function is available
- */
-
-
-/*
-  __STD_C should be nonzero if using ANSI-standard C compiler, a C++
-  compiler, or a C compiler sufficiently close to ANSI to get away
-  with it.
-*/
-
-#ifdef HAVE_CONFIG_H
-#include "config.h"
-#endif
-
-#ifdef USE_VALGRIND
-#include 
-#else
-#define VALGRIND_FREELIKE_BLOCK(a,b)       ((void)0)
-#define VALGRIND_MALLOCLIKE_BLOCK(a,b,c,d) ((void)0)
-#define VALGRIND_CREATE_MEMPOOL(a,b,c)     ((void)0)
-#define VALGRIND_MEMPOOL_ALLOC(a,b,c)      ((void)0)
-#define VALGRIND_MEMPOOL_FREE(a,b)         ((void)0)
-#define VALGRIND_DESTROY_MEMPOOL(a)        ((void)0)
-#define VALGRIND_MAKE_MEM_DEFINED(a,b)     ((void)0)
-#define VALGRIND_MAKE_MEM_UNDEFINED(a,b)   ((void)0)
-#define VALGRIND_MAKE_MEM_NOACCESS(a,b)    ((void)0)
-#endif
-
-#if defined (__GNUC__) && __GNUC__ > 2
-# define LIKELY(expression) (__builtin_expect(!!(expression), 1))
-# define UNLIKELY(expression) (__builtin_expect(!!(expression), 0))
-# define __attribute_malloc__ __attribute__ ((__malloc__))
-#else
-# define LIKELY(x)       (x)
-# define UNLIKELY(x)     (x)
-# define __attribute_malloc__ /* Ignore */
-#endif
-
-/*
-  Define HAVE_MREMAP to make realloc() use mremap() to re-allocate
-  large blocks.  This is currently only possible on Linux with
-  kernel versions newer than 1.3.77.
-*/
-
-#ifndef HAVE_MREMAP
-#ifdef linux
-#define HAVE_MREMAP 1
-#define _GNU_SOURCE 1
-#else
-#define HAVE_MREMAP 0
-#endif
-#endif /* HAVE_MREMAP */
-
-
-
-#ifndef __STD_C
-#if defined(__STDC__) || defined(_cplusplus)
-#define __STD_C     1
-#else
-#define __STD_C     0
-#endif 
-#endif /*__STD_C*/
-
-
-/*
-  Void_t* is the pointer type that malloc should say it returns
-*/
-
-#ifndef Void_t
-#if (__STD_C || defined(WIN32))
-#define Void_t      void
-#else
-#define Void_t      char
-#endif
-#endif /*Void_t*/
-
-#if __STD_C
-#include    /* for size_t */
-#else
-#include 
-#endif
-
-#if !defined(USE_SYSTEM_MALLOC)
-
-#ifdef __cplusplus
-extern "C" {
-#endif
-
-/* define HAVE_UNISTD_H if your system has a . */
-
-#ifdef HAVE_UNISTD_H
-#include 
-#endif
-
-#ifdef HAVE_SYS_UIO_H
-#include 
-#endif
-
-#include     /* needed for malloc_stats */
-#include     /* needed for optional MALLOC_FAILURE_ACTION */
-
-#include 
-#include 
-
-#include 
-
-extern int errno;
-
-  /* 0: lazy, 
-   * 1: medium (assertions compiled in), 
-   * 2: high (guard pages at end of hash table and ciregions) 
-   * 3: paranoid (guards at end of each allocated chunk, check at free) 
-   */
-#ifndef PARANOIA
-#define PARANOIA 9
-#endif
-
-  /* Using assert() with multithreading will cause the code 
-   * to deadlock since glibc __assert_fail will call malloc().
-   * We need our very own assert().
-   */
-typedef void assert_handler_tp(const char * error, const char *file, int line);
-
-#if  PARANOIA > 0
-
-#ifdef NDEBUG
-#undef NDEBUG
-#endif
-
-static void default_assert_handler(const char *error, 
-				   const char *file, int line)
-{
-#ifdef HAVE_WRITEV
-  struct iovec iov[5];
-  char * i1 = "assertion failed (";
-  char * i3 = "): ";
-  char * i5 = "\n";
-  int    res = 0;
-  char   ifile[128];
-  char   ierr[128];
-
-  strncpy(ifile, file, sizeof(ifile)); ifile[sizeof(ifile)-1] = '\0';
-  strncpy(ierr, error, sizeof(ierr));  ierr[sizeof(ierr)-1]   = '\0';
-
-  iov[0].iov_base = i1;     iov[0].iov_len = strlen(i1); 
-  iov[1].iov_base = ifile;  iov[1].iov_len = strlen(ifile); 
-  iov[2].iov_base = i3;     iov[2].iov_len = strlen(i3); 
-  iov[3].iov_base = ierr;   iov[3].iov_len = strlen(ierr); 
-  iov[4].iov_base = i5;     iov[4].iov_len = strlen(i5);
-  do {
-    res = writev(STDERR_FILENO, iov, 5);
-  } while (res < 0 && errno == EINTR);  
-#else
-  fputs("assertion failed (", stderr);
-  fputs(file, stderr);
-  fputs("): ", stderr);
-  fputs(error, stderr);
-  fputc('\n', stderr);
-#endif
-  (void) line;
-  abort();
-}
-static assert_handler_tp *assert_handler = default_assert_handler;
-
-
-#define assert(x)                               \
-  do {		                                \
-    if (UNLIKELY(!(x))) {			\
-      assert_handler(#x, __FILE__, __LINE__);	\
-    }                                           \
-  } while (0)
-
-#else
-
-static assert_handler_tp *assert_handler = NULL;
-#ifndef NDEBUG
-#define NDEBUG
-#endif
-#define assert(x) ((void)0)
-
-#endif
-
-assert_handler_tp *dnmalloc_set_handler(assert_handler_tp *new)
-{
-  assert_handler_tp *old = assert_handler;
-  assert_handler = new;
-  return old;
-}
-
-
-#include 
-
-  /* define for debugging */
-  /* #define DNMALLOC_DEBUG */ 
-
-  /* Do some extra checks? if not, covered by assrt()s */
-  /* #define DNMALLOC_CHECKS */
-
-  /*
-    The unsigned integer type used for comparing any two chunk sizes.
-    This should be at least as wide as size_t, but should not be signed.
-  */
-
-#ifndef CHUNK_SIZE_T
-#define CHUNK_SIZE_T unsigned long
-#endif
-
-/* 
-  The unsigned integer type used to hold addresses when they are are
-  manipulated as integers. Except that it is not defined on all
-  systems, intptr_t would suffice.
-*/
-#ifndef PTR_UINT
-#define PTR_UINT unsigned long
-#endif
-
-
-/*
-  INTERNAL_SIZE_T is the word-size used for internal bookkeeping
-  of chunk sizes.
-
-  The default version is the same as size_t.
-
-  While not strictly necessary, it is best to define this as an
-  unsigned type, even if size_t is a signed type. This may avoid some
-  artificial size limitations on some systems.
-
-  On a 64-bit machine, you may be able to reduce malloc overhead by
-  defining INTERNAL_SIZE_T to be a 32 bit `unsigned int' at the
-  expense of not being able to handle more than 2^32 of malloced
-  space. If this limitation is acceptable, you are encouraged to set
-  this unless you are on a platform requiring 16byte alignments. In
-  this case the alignment requirements turn out to negate any
-  potential advantages of decreasing size_t word size.
-
-  Implementors: Beware of the possible combinations of:
-     - INTERNAL_SIZE_T might be signed or unsigned, might be 32 or 64 bits,
-       and might be the same width as int or as long
-     - size_t might have different width and signedness as INTERNAL_SIZE_T
-     - int and long might be 32 or 64 bits, and might be the same width
-  To deal with this, most comparisons and difference computations
-  among INTERNAL_SIZE_Ts should cast them to CHUNK_SIZE_T, being
-  aware of the fact that casting an unsigned int to a wider long does
-  not sign-extend. (This also makes checking for negative numbers
-  awkward.) Some of these casts result in harmless compiler warnings
-  on some systems.
-*/
-
-#ifndef INTERNAL_SIZE_T
-#define INTERNAL_SIZE_T size_t
-#endif
-
-/* The corresponding word size */
-#define SIZE_SZ                (sizeof(INTERNAL_SIZE_T))
-
-
-
-/*
-  MALLOC_ALIGNMENT is the minimum alignment for malloc'ed chunks.
-  It must be a power of two at least 2 * SIZE_SZ, even on machines
-  for which smaller alignments would suffice. It may be defined as
-  larger than this though. Note however that code and data structures
-  are optimized for the case of 8-byte alignment.
-*/
-
-
-#ifndef MALLOC_ALIGNMENT
-#define MALLOC_ALIGNMENT       (2 * SIZE_SZ)
-#endif
-
-/* The corresponding bit mask value */
-#define MALLOC_ALIGN_MASK      (MALLOC_ALIGNMENT - 1)
-
-
-
-/*
-  REALLOC_ZERO_BYTES_FREES should be set if a call to
-  realloc with zero bytes should be the same as a call to free.
-  Some people think it should. Otherwise, since this malloc
-  returns a unique pointer for malloc(0), so does realloc(p, 0).
-*/
-
-#define REALLOC_ZERO_BYTES_FREES
-
-/*
-  TRIM_FASTBINS controls whether free() of a very small chunk can
-  immediately lead to trimming. Setting to true (1) can reduce memory
-  footprint, but will almost always slow down programs that use a lot
-  of small chunks.
-
-  Define this only if you are willing to give up some speed to more
-  aggressively reduce system-level memory footprint when releasing
-  memory in programs that use many small chunks.  You can get
-  essentially the same effect by setting MXFAST to 0, but this can
-  lead to even greater slowdowns in programs using many small chunks.
-  TRIM_FASTBINS is an in-between compile-time option, that disables
-  only those chunks bordering topmost memory from being placed in
-  fastbins.
-*/
-
-#ifndef TRIM_FASTBINS
-#define TRIM_FASTBINS  0
-#endif
-
-
-/*
-  USE_DL_PREFIX will prefix all public routines with the string 'dl'.
-  This is necessary when you only want to use this malloc in one part 
-  of a program, using your regular system malloc elsewhere.
-*/
-
-/* #define USE_DL_PREFIX */
-
-
-/*
-  USE_MALLOC_LOCK causes wrapper functions to surround each
-  callable routine with pthread mutex lock/unlock.
-
-  USE_MALLOC_LOCK forces USE_PUBLIC_MALLOC_WRAPPERS to be defined
-*/
-
-/* #define USE_MALLOC_LOCK */
-
-
-/*
-  If USE_PUBLIC_MALLOC_WRAPPERS is defined, every public routine is
-  actually a wrapper function that first calls MALLOC_PREACTION, then
-  calls the internal routine, and follows it with
-  MALLOC_POSTACTION. This is needed for locking, but you can also use
-  this, without USE_MALLOC_LOCK, for purposes of interception,
-  instrumentation, etc. It is a sad fact that using wrappers often
-  noticeably degrades performance of malloc-intensive programs.
-*/
-
-
-#ifdef USE_MALLOC_LOCK
-#define USE_PUBLIC_MALLOC_WRAPPERS
-#else
-/* #define USE_PUBLIC_MALLOC_WRAPPERS */
-#endif
-
-
-/* 
-   Two-phase name translation.
-   All of the actual routines are given mangled names.
-   When wrappers are used, they become the public callable versions.
-   When DL_PREFIX is used, the callable names are prefixed.
-*/
-
-#ifndef USE_PUBLIC_MALLOC_WRAPPERS
-#define cALLOc      public_cALLOc
-#define fREe        public_fREe
-#define mALLOc      public_mALLOc
-#define mEMALIGn    public_mEMALIGn
-#define posix_mEMALIGn    public_posix_mEMALIGn
-#define rEALLOc     public_rEALLOc
-#define vALLOc      public_vALLOc
-#define pVALLOc     public_pVALLOc
-#define mALLINFo2   public_mALLINFo2
-#define mALLOPt     public_mALLOPt
-#define mTRIm       public_mTRIm
-#define mSTATs      public_mSTATs
-#define mUSABLe     public_mUSABLe
-#endif
-
-#ifdef USE_DL_PREFIX
-#define public_cALLOc    dlcalloc
-#define public_fREe      dlfree
-#define public_mALLOc    dlmalloc
-#define public_mEMALIGn  dlmemalign
-#define public_posix_mEMALIGn  dlposix_memalign
-#define public_rEALLOc   dlrealloc
-#define public_vALLOc    dlvalloc
-#define public_pVALLOc   dlpvalloc
-#define public_mALLINFo2 dlmallinfo2
-#define public_mALLOPt   dlmallopt
-#define public_mTRIm     dlmalloc_trim
-#define public_mSTATs    dlmalloc_stats
-#define public_mUSABLe   dlmalloc_usable_size
-#else /* USE_DL_PREFIX */
-#define public_cALLOc    calloc
-#define public_fREe      free
-#define public_mALLOc    malloc
-#define public_mEMALIGn  memalign
-#define public_posix_mEMALIGn  posix_memalign
-#define public_rEALLOc   realloc
-#define public_vALLOc    valloc
-#define public_pVALLOc   pvalloc
-#define public_mALLINFo2 mallinfo2
-#define public_mALLOPt   mallopt
-#define public_mTRIm     malloc_trim
-#define public_mSTATs    malloc_stats
-#define public_mUSABLe   malloc_usable_size
-#endif /* USE_DL_PREFIX */
-
-
-/*
-  HAVE_MEMCPY should be defined if you are not otherwise using
-  ANSI STD C, but still have memcpy and memset in your C library
-  and want to use them in calloc and realloc. Otherwise simple
-  macro versions are defined below.
-
-  USE_MEMCPY should be defined as 1 if you actually want to
-  have memset and memcpy called. People report that the macro
-  versions are faster than libc versions on some systems.
-  
-  Even if USE_MEMCPY is set to 1, loops to copy/clear small chunks
-  (of <= 36 bytes) are manually unrolled in realloc and calloc.
-*/
-
-#ifndef HAVE_MEMCPY
-#define HAVE_MEMCPY
-#endif
-
-#ifndef USE_MEMCPY
-#ifdef HAVE_MEMCPY
-#define USE_MEMCPY 1
-#else
-#define USE_MEMCPY 0
-#endif
-#endif
-
-
-#if (__STD_C || defined(HAVE_MEMCPY))
-
-#ifdef WIN32
-  /* On Win32 memset and memcpy are already declared in windows.h */
-#else
-#if __STD_C
-  /* Defined in string.h */
-#else
-Void_t* memset();
-Void_t* memcpy();
-#endif
-#endif
-#endif
-
-/*
-  MALLOC_FAILURE_ACTION is the action to take before "return 0" when
-  malloc fails to be able to return memory, either because memory is
-  exhausted or because of illegal arguments.
-  
-  By default, sets errno if running on STD_C platform, else does nothing.  
-*/
-
-#ifndef MALLOC_FAILURE_ACTION
-#if __STD_C
-#define MALLOC_FAILURE_ACTION \
-   errno = ENOMEM;
-
-#else
-#define MALLOC_FAILURE_ACTION
-#endif
-#endif
-
-/*
-  MORECORE-related declarations. By default, rely on sbrk
-*/
-
-
-#if !defined(HAVE_UNISTD_H)
-#if !defined(__FreeBSD__) && !defined(__OpenBSD__) && !defined(__NetBSD__)
-#if __STD_C
-extern Void_t*     sbrk(ptrdiff_t);
-#else
-extern Void_t*     sbrk();
-#endif
-#endif
-#endif
-
-/*
-  MORECORE_FAILURE is the value returned upon failure of MORECORE
-  as well as mmap. Since it cannot be an otherwise valid memory address,
-  and must reflect values of standard sys calls, you probably ought not
-  try to redefine it.
-*/
-
-#ifndef MORECORE_FAILURE
-#define MORECORE_FAILURE ((void*)(-1UL))
-#endif
-
-/*
-  MORECORE is the name of the routine to call to obtain more memory
-  from the system.  See below for general guidance on writing
-  alternative MORECORE functions, as well as a version for WIN32 and a
-  sample version for pre-OSX macos.
-*/
-
-#ifndef MORECORE
-#define MORECORE sbrk
-#endif
-
-
-/*
-  If MORECORE_CONTIGUOUS is true, take advantage of fact that
-  consecutive calls to MORECORE with positive arguments always return
-  contiguous increasing addresses.  This is true of unix sbrk.  Even
-  if not defined, when regions happen to be contiguous, malloc will
-  permit allocations spanning regions obtained from different
-  calls. But defining this when applicable enables some stronger
-  consistency checks and space efficiencies. 
-*/
-
-#ifndef MORECORE_CONTIGUOUS
-#define MORECORE_CONTIGUOUS 1
-#endif
-
-/*
-  Define MORECORE_CANNOT_TRIM if your version of MORECORE
-  cannot release space back to the system when given negative
-  arguments. This is generally necessary only if you are using
-  a hand-crafted MORECORE function that cannot handle negative arguments.
-*/
-
-/* #define MORECORE_CANNOT_TRIM */
-
-
-/*
-  This malloc requires mmap for heap management data. It is an error
-  if mmap is not available.
-
-  Additionally, mmap will be used to satisfy large requests.
-*/
-
-#ifndef HAVE_MMAP
-#  error HAVE_MMAP not defined, has your operating system mmap?
-#endif
-
-/* 
-   Standard unix mmap using /dev/zero clears memory so calloc doesn't
-   need to.
-*/
-
-#ifndef MMAP_CLEARS
-#define MMAP_CLEARS 1
-#endif
-
-
-/* 
-   MMAP_AS_MORECORE_SIZE is the minimum mmap size argument to use if
-   sbrk fails, and mmap is used as a backup (which is done only if
-   HAVE_MMAP).  The value must be a multiple of page size.  This
-   backup strategy generally applies only when systems have "holes" in
-   address space, so sbrk cannot perform contiguous expansion, but
-   there is still space available on system.  On systems for which
-   this is known to be useful (i.e. most linux kernels), this occurs
-   only when programs allocate huge amounts of memory.  Between this,
-   and the fact that mmap regions tend to be limited, the size should
-   be large, to avoid too many mmap calls and thus avoid running out
-   of kernel resources.
-*/
-
-#ifndef MMAP_AS_MORECORE_SIZE
-#define MMAP_AS_MORECORE_SIZE (1024 * 1024)
-#endif
-
-
-/*
-  The system page size. To the extent possible, this malloc manages
-  memory from the system in page-size units.  Note that this value is
-  cached during initialization into a field of malloc_state. So even
-  if malloc_getpagesize is a function, it is only called once.
-
-  The following mechanics for getpagesize were adapted from bsd/gnu
-  getpagesize.h. If none of the system-probes here apply, a value of
-  4096 is used, which should be OK: If they don't apply, then using
-  the actual value probably doesn't impact performance.
-*/
-
-
-#ifndef malloc_getpagesize
-
-#  ifdef _SC_PAGESIZE         /* some SVR4 systems omit an underscore */
-#    ifndef _SC_PAGE_SIZE
-#      define _SC_PAGE_SIZE _SC_PAGESIZE
-#    endif
-#  endif
-
-#  ifdef _SC_PAGE_SIZE
-#    define malloc_getpagesize sysconf(_SC_PAGE_SIZE)
-#  else
-#    if defined(BSD) || defined(DGUX) || defined(HAVE_GETPAGESIZE)
-       extern size_t getpagesize();
-#      define malloc_getpagesize getpagesize()
-#    else
-#      ifdef WIN32 /* use supplied emulation of getpagesize */
-#        define malloc_getpagesize getpagesize() 
-#      else
-#        if defined(HAVE_SYS_PARAM_H)
-#          include 
-#        endif
-#        ifdef EXEC_PAGESIZE
-#          define malloc_getpagesize EXEC_PAGESIZE
-#        else
-#          ifdef NBPG
-#            ifndef CLSIZE
-#              define malloc_getpagesize NBPG
-#            else
-#              define malloc_getpagesize (NBPG * CLSIZE)
-#            endif
-#          else
-#            ifdef NBPC
-#              define malloc_getpagesize NBPC
-#            else
-#              ifdef PAGESIZE
-#                define malloc_getpagesize PAGESIZE
-#              else /* just guess */
-#                define malloc_getpagesize (4096) 
-#              endif
-#            endif
-#          endif
-#        endif
-#      endif
-#    endif
-#  endif
-#endif
-
-/*
-  This version of malloc supports the standard SVID/XPG mallinfo2
-  routine that returns a struct containing usage properties and
-  statistics. It should work on any SVID/XPG compliant system that has
-  a /usr/include/malloc.h defining struct mallinfo2. (If you'd like to
-  install such a thing yourself, cut out the preliminary declarations
-  as described above and below and save them in a malloc.h file. But
-  there's no compelling reason to bother to do this.)
-
-  The main declaration needed is the mallinfo2 struct that is returned
-  (by-copy) by mallinfo2().  The SVID/XPG malloinfo2 struct contains a
-  bunch of fields that are not even meaningful in this version of
-  malloc.  These fields are are instead filled by mallinfo2() with
-  other numbers that might be of interest.
-
-  HAVE_MALLOC_H should be set if you have a
-  /usr/include/malloc.h file that includes a declaration of struct
-  mallinfo2.  If so, it is included; else an SVID2/XPG2 compliant
-  version is declared below.  These must be precisely the same for
-  mallinfo2() to work.  The original SVID version of this struct,
-  defined on most systems with mallinfo2, declares all fields as
-  size_2. But some others define as unsigned long. If your system
-  defines the fields using a type of different width than listed here,
-  you must #include your system version and #define
-  HAVE_MALLOC_H.
-*/
-
-/* #define HAVE_MALLOC_H */
-
-/* On *BSD, malloc.h is deprecated, and on some *BSD including 
- * it may actually raise an error.
- */
-#if defined(HAVE_MALLOC_H) && !defined(__OpenBSD__) && !defined(__FreeBSD__) && !defined(__NetBSD__) && defined(__GLIBC_PREREQ) && __GLIBC_PREREQ(2, 33)
-#include 
-#else
-
-/* SVID2/XPG mallinfo2 structure */
-
-struct mallinfo2 {
-  size_t arena;    /* non-mmapped space allocated from system */
-  size_t ordblks;  /* number of free chunks */
-  size_t smblks;   /* number of fastbin blocks */
-  size_t hblks;    /* number of mmapped regions */
-  size_t hblkhd;   /* space in mmapped regions */
-  size_t usmblks;  /* maximum total allocated space */
-  size_t fsmblks;  /* space available in freed fastbin blocks */
-  size_t uordblks; /* total allocated space */
-  size_t fordblks; /* total free space */
-  size_t keepcost; /* top-most, releasable (via malloc_trim) space */
-};
-
-/*
-  SVID/XPG defines four standard parameter numbers for mallopt,
-  normally defined in malloc.h.  Only one of these (M_MXFAST) is used
-  in this malloc. The others (M_NLBLKS, M_GRAIN, M_KEEP) don't apply,
-  so setting them has no effect. But this malloc also supports other
-  options in mallopt described below.
-*/
-#endif
-
-
-/* ---------- description of public routines ------------ */
-
-/*
-  malloc(size_t n)
-  Returns a pointer to a newly allocated chunk of at least n bytes, or null
-  if no space is available. Additionally, on failure, errno is
-  set to ENOMEM on ANSI C systems.
-
-  If n is zero, malloc returns a minumum-sized chunk. (The minimum
-  size is 16 bytes on most 32bit systems, and 24 or 32 bytes on 64bit
-  systems.)  On most systems, size_t is an unsigned type, so calls
-  with negative arguments are interpreted as requests for huge amounts
-  of space, which will often fail. The maximum supported value of n
-  differs across systems, but is in all cases less than the maximum
-  representable value of a size_t.
-*/
-#if __STD_C
-Void_t*  public_mALLOc(size_t) __attribute_malloc__;
-#else
-Void_t*  public_mALLOc();
-#endif
-
-/*
-  free(Void_t* p)
-  Releases the chunk of memory pointed to by p, that had been previously
-  allocated using malloc or a related routine such as realloc.
-  It has no effect if p is null. It can have arbitrary (i.e., bad!)
-  effects if p has already been freed.
-
-  Unless disabled (using mallopt), freeing very large spaces will
-  when possible, automatically trigger operations that give
-  back unused memory to the system, thus reducing program footprint.
-*/
-#if __STD_C
-void     public_fREe(Void_t*);
-#else
-void     public_fREe();
-#endif
-
-/*
-  calloc(size_t n_elements, size_t element_size);
-  Returns a pointer to n_elements * element_size bytes, with all locations
-  set to zero.
-*/
-#if __STD_C
-Void_t*  public_cALLOc(size_t, size_t) __attribute_malloc__;
-#else
-Void_t*  public_cALLOc();
-#endif
-
-/*
-  realloc(Void_t* p, size_t n)
-  Returns a pointer to a chunk of size n that contains the same data
-  as does chunk p up to the minimum of (n, p's size) bytes, or null
-  if no space is available. 
-
-  The returned pointer may or may not be the same as p. The algorithm
-  prefers extending p when possible, otherwise it employs the
-  equivalent of a malloc-copy-free sequence.
-
-  If p is null, realloc is equivalent to malloc.  
-
-  If space is not available, realloc returns null, errno is set (if on
-  ANSI) and p is NOT freed.
-
-  if n is for fewer bytes than already held by p, the newly unused
-  space is lopped off and freed if possible.  Unless the #define
-  REALLOC_ZERO_BYTES_FREES is set, realloc with a size argument of
-  zero (re)allocates a minimum-sized chunk.
-
-  Large chunks that were internally obtained via mmap will always
-  be reallocated using malloc-copy-free sequences unless
-  the system supports MREMAP (currently only linux).
-
-  The old unix realloc convention of allowing the last-free'd chunk
-  to be used as an argument to realloc is not supported.
-*/
-#if __STD_C
-Void_t*  public_rEALLOc(Void_t*, size_t) __attribute_malloc__;
-#else
-Void_t*  public_rEALLOc();
-#endif
-
-/*
-  memalign(size_t alignment, size_t n);
-  Returns a pointer to a newly allocated chunk of n bytes, aligned
-  in accord with the alignment argument.
-
-  The alignment argument should be a power of two. If the argument is
-  not a power of two, the nearest greater power is used.
-  8-byte alignment is guaranteed by normal malloc calls, so don't
-  bother calling memalign with an argument of 8 or less.
-
-  Overreliance on memalign is a sure way to fragment space.
-*/
-#if __STD_C
-Void_t*  public_mEMALIGn(size_t, size_t) __attribute_malloc__;
-#else
-Void_t*  public_mEMALIGn();
-#endif
-
-/*
-  posix_memalign(void** memptr, size_t alignment, size_t n);
-  Sets *memptr to the address of a newly allocated chunk of n bytes, aligned
-  in accord with the alignment argument. Returns 0 on success, otherwise
-  an error (EINVAL for incorrect alignment, ENOMEM for out of memory).
-
-  The alignment must be a power of two, and a multiple of sizeof(void *).
-*/
-#if __STD_C
-int public_posix_mEMALIGn(Void_t**, size_t, size_t);
-#else
-int public_posix_mEMALIGn();
-#endif
-
-/*
-  valloc(size_t n);
-  Equivalent to memalign(pagesize, n), where pagesize is the page
-  size of the system. If the pagesize is unknown, 4096 is used.
-*/
-#if __STD_C
-Void_t*  public_vALLOc(size_t) __attribute_malloc__;
-#else
-Void_t*  public_vALLOc();
-#endif
-
-
-
-/*
-  mallopt(int parameter_number, int parameter_value)
-  Sets tunable parameters The format is to provide a
-  (parameter-number, parameter-value) pair.  mallopt then sets the
-  corresponding parameter to the argument value if it can (i.e., so
-  long as the value is meaningful), and returns 1 if successful else
-  0.  SVID/XPG/ANSI defines four standard param numbers for mallopt,
-  normally defined in malloc.h.  Only one of these (M_MXFAST) is used
-  in this malloc. The others (M_NLBLKS, M_GRAIN, M_KEEP) don't apply,
-  so setting them has no effect. But this malloc also supports four
-  other options in mallopt. See below for details.  Briefly, supported
-  parameters are as follows (listed defaults are for "typical"
-  configurations).
-
-  Symbol            param #   default    allowed param values
-  M_MXFAST          1         64         0-80  (0 disables fastbins)
-  M_TRIM_THRESHOLD -1         256*1024   any   (-1U disables trimming)
-  M_TOP_PAD        -2         0          any  
-  M_MMAP_THRESHOLD -3         256*1024   any   (or 0 if no MMAP support)
-  M_MMAP_MAX       -4         65536      any   (0 disables use of mmap)
-*/
-#if __STD_C
-int      public_mALLOPt(int, int);
-#else
-int      public_mALLOPt();
-#endif
-
-
-/*
-  mallinfo2()
-  Returns (by copy) a struct containing various summary statistics:
-
-  arena:     current total non-mmapped bytes allocated from system 
-  ordblks:   the number of free chunks 
-  smblks:    the number of fastbin blocks (i.e., small chunks that
-               have been freed but not use resused or consolidated)
-  hblks:     current number of mmapped regions 
-  hblkhd:    total bytes held in mmapped regions 
-  usmblks:   the maximum total allocated space. This will be greater
-                than current total if trimming has occurred.
-  fsmblks:   total bytes held in fastbin blocks 
-  uordblks:  current total allocated space (normal or mmapped)
-  fordblks:  total free space 
-  keepcost:  the maximum number of bytes that could ideally be released
-               back to system via malloc_trim. ("ideally" means that
-               it ignores page restrictions etc.)
-
-  Because these fields are ints, but internal bookkeeping may
-  be kept as longs, the reported values may wrap around zero and 
-  thus be inaccurate.
-*/
-#if __STD_C
-struct mallinfo2 public_mALLINFo2(void);
-#else
-struct mallinfo2 public_mALLINFo2();
-#endif
-
-/*
-  pvalloc(size_t n);
-  Equivalent to valloc(minimum-page-that-holds(n)), that is,
-  round up n to nearest pagesize.
- */
-#if __STD_C
-Void_t*  public_pVALLOc(size_t) __attribute_malloc__;
-#else
-Void_t*  public_pVALLOc();
-#endif
-
-/*
-  malloc_trim(size_t pad);
-
-  If possible, gives memory back to the system (via negative
-  arguments to sbrk) if there is unused memory at the `high' end of
-  the malloc pool. You can call this after freeing large blocks of
-  memory to potentially reduce the system-level memory requirements
-  of a program. However, it cannot guarantee to reduce memory. Under
-  some allocation patterns, some large free blocks of memory will be
-  locked between two used chunks, so they cannot be given back to
-  the system.
-  
-  The `pad' argument to malloc_trim represents the amount of free
-  trailing space to leave untrimmed. If this argument is zero,
-  only the minimum amount of memory to maintain internal data
-  structures will be left (one page or less). Non-zero arguments
-  can be supplied to maintain enough trailing space to service
-  future expected allocations without having to re-obtain memory
-  from the system.
-  
-  Malloc_trim returns 1 if it actually released any memory, else 0.
-  On systems that do not support "negative sbrks", it will always
-  rreturn 0.
-*/
-#if __STD_C
-int      public_mTRIm(size_t);
-#else
-int      public_mTRIm();
-#endif
-
-/*
-  malloc_usable_size(Void_t* p);
-
-  Returns the number of bytes you can actually use in
-  an allocated chunk, which may be more than you requested (although
-  often not) due to alignment and minimum size constraints.
-  You can use this many bytes without worrying about
-  overwriting other allocated objects. This is not a particularly great
-  programming practice. malloc_usable_size can be more useful in
-  debugging and assertions, for example:
-
-  p = malloc(n);
-  assert(malloc_usable_size(p) >= 256);
-
-*/
-#if __STD_C
-size_t   public_mUSABLe(Void_t*);
-#else
-size_t   public_mUSABLe();
-#endif
-
-/*
-  malloc_stats();
-  Prints on stderr the amount of space obtained from the system (both
-  via sbrk and mmap), the maximum amount (which may be more than
-  current if malloc_trim and/or munmap got called), and the current
-  number of bytes allocated via malloc (or realloc, etc) but not yet
-  freed. Note that this is the number of bytes allocated, not the
-  number requested. It will be larger than the number requested
-  because of alignment and bookkeeping overhead. Because it includes
-  alignment wastage as being in use, this figure may be greater than
-  zero even when no user-level chunks are allocated.
-
-  The reported current and maximum system memory can be inaccurate if
-  a program makes other calls to system memory allocation functions
-  (normally sbrk) outside of malloc.
-
-  malloc_stats prints only the most commonly interesting statistics.
-  More information can be obtained by calling mallinfo2.
-
-*/
-#if __STD_C
-void     public_mSTATs();
-#else
-void     public_mSTATs();
-#endif
-
-/* mallopt tuning options */
-
-/*
-  M_MXFAST is the maximum request size used for "fastbins", special bins
-  that hold returned chunks without consolidating their spaces. This
-  enables future requests for chunks of the same size to be handled
-  very quickly, but can increase fragmentation, and thus increase the
-  overall memory footprint of a program.
-
-  This malloc manages fastbins very conservatively yet still
-  efficiently, so fragmentation is rarely a problem for values less
-  than or equal to the default.  The maximum supported value of MXFAST
-  is 80. You wouldn't want it any higher than this anyway.  Fastbins
-  are designed especially for use with many small structs, objects or
-  strings -- the default handles structs/objects/arrays with sizes up
-  to 16 4byte fields, or small strings representing words, tokens,
-  etc. Using fastbins for larger objects normally worsens
-  fragmentation without improving speed.
-
-  M_MXFAST is set in REQUEST size units. It is internally used in
-  chunksize units, which adds padding and alignment.  You can reduce
-  M_MXFAST to 0 to disable all use of fastbins.  This causes the malloc
-  algorithm to be a closer approximation of fifo-best-fit in all cases,
-  not just for larger requests, but will generally cause it to be
-  slower.
-*/
-
-
-/* M_MXFAST is a standard SVID/XPG tuning option, usually listed in malloc.h */
-#ifndef M_MXFAST
-#define M_MXFAST            1    
-#endif
-
-#ifndef DEFAULT_MXFAST
-#define DEFAULT_MXFAST     64
-#endif
-
-
-/*
-  M_TRIM_THRESHOLD is the maximum amount of unused top-most memory
-  to keep before releasing via malloc_trim in free().
-
-  Automatic trimming is mainly useful in long-lived programs.
-  Because trimming via sbrk can be slow on some systems, and can
-  sometimes be wasteful (in cases where programs immediately
-  afterward allocate more large chunks) the value should be high
-  enough so that your overall system performance would improve by
-  releasing this much memory.
-
-  The trim threshold and the mmap control parameters (see below)
-  can be traded off with one another. Trimming and mmapping are
-  two different ways of releasing unused memory back to the
-  system. Between these two, it is often possible to keep
-  system-level demands of a long-lived program down to a bare
-  minimum. For example, in one test suite of sessions measuring
-  the XF86 X server on Linux, using a trim threshold of 128K and a
-  mmap threshold of 192K led to near-minimal long term resource
-  consumption.
-
-  If you are using this malloc in a long-lived program, it should
-  pay to experiment with these values.  As a rough guide, you
-  might set to a value close to the average size of a process
-  (program) running on your system.  Releasing this much memory
-  would allow such a process to run in memory.  Generally, it's
-  worth it to tune for trimming rather tham memory mapping when a
-  program undergoes phases where several large chunks are
-  allocated and released in ways that can reuse each other's
-  storage, perhaps mixed with phases where there are no such
-  chunks at all.  And in well-behaved long-lived programs,
-  controlling release of large blocks via trimming versus mapping
-  is usually faster.
-
-  However, in most programs, these parameters serve mainly as
-  protection against the system-level effects of carrying around
-  massive amounts of unneeded memory. Since frequent calls to
-  sbrk, mmap, and munmap otherwise degrade performance, the default
-  parameters are set to relatively high values that serve only as
-  safeguards.
-
-  The trim value must be greater than page size to have any useful
-  effect.  To disable trimming completely, you can set to 
-  (unsigned long)(-1)
-
-  Trim settings interact with fastbin (MXFAST) settings: Unless
-  TRIM_FASTBINS is defined, automatic trimming never takes place upon
-  freeing a chunk with size less than or equal to MXFAST. Trimming is
-  instead delayed until subsequent freeing of larger chunks. However,
-  you can still force an attempted trim by calling malloc_trim.
-
-  Also, trimming is not generally possible in cases where
-  the main arena is obtained via mmap.
-
-  Note that the trick some people use of mallocing a huge space and
-  then freeing it at program startup, in an attempt to reserve system
-  memory, doesn't have the intended effect under automatic trimming,
-  since that memory will immediately be returned to the system.
-*/
-
-#define M_TRIM_THRESHOLD       -1
-
-#ifndef DEFAULT_TRIM_THRESHOLD
-#define DEFAULT_TRIM_THRESHOLD (256 * 1024)
-#endif
-
-/*
-  M_TOP_PAD is the amount of extra `padding' space to allocate or
-  retain whenever sbrk is called. It is used in two ways internally:
-
-  * When sbrk is called to extend the top of the arena to satisfy
-  a new malloc request, this much padding is added to the sbrk
-  request.
-
-  * When malloc_trim is called automatically from free(),
-  it is used as the `pad' argument.
-
-  In both cases, the actual amount of padding is rounded
-  so that the end of the arena is always a system page boundary.
-
-  The main reason for using padding is to avoid calling sbrk so
-  often. Having even a small pad greatly reduces the likelihood
-  that nearly every malloc request during program start-up (or
-  after trimming) will invoke sbrk, which needlessly wastes
-  time.
-
-  Automatic rounding-up to page-size units is normally sufficient
-  to avoid measurable overhead, so the default is 0.  However, in
-  systems where sbrk is relatively slow, it can pay to increase
-  this value, at the expense of carrying around more memory than
-  the program needs.
-*/
-
-#define M_TOP_PAD              -2
-
-#ifndef DEFAULT_TOP_PAD
-#define DEFAULT_TOP_PAD        (0)
-#endif
-
-/*
-  M_MMAP_THRESHOLD is the request size threshold for using mmap()
-  to service a request. Requests of at least this size that cannot
-  be allocated using already-existing space will be serviced via mmap.
-  (If enough normal freed space already exists it is used instead.)
-
-  Using mmap segregates relatively large chunks of memory so that
-  they can be individually obtained and released from the host
-  system. A request serviced through mmap is never reused by any
-  other request (at least not directly; the system may just so
-  happen to remap successive requests to the same locations).
-
-  Segregating space in this way has the benefits that:
-
-   1. Mmapped space can ALWAYS be individually released back 
-      to the system, which helps keep the system level memory 
-      demands of a long-lived program low. 
-   2. Mapped memory can never become `locked' between
-      other chunks, as can happen with normally allocated chunks, which
-      means that even trimming via malloc_trim would not release them.
-   3. On some systems with "holes" in address spaces, mmap can obtain
-      memory that sbrk cannot.
-
-  However, it has the disadvantages that:
-
-   1. The space cannot be reclaimed, consolidated, and then
-      used to service later requests, as happens with normal chunks.
-   2. It can lead to more wastage because of mmap page alignment
-      requirements
-   3. It causes malloc performance to be more dependent on host
-      system memory management support routines which may vary in
-      implementation quality and may impose arbitrary
-      limitations. Generally, servicing a request via normal
-      malloc steps is faster than going through a system's mmap.
-
-  The advantages of mmap nearly always outweigh disadvantages for
-  "large" chunks, but the value of "large" varies across systems.  The
-  default is an empirically derived value that works well in most
-  systems.
-*/
-
-#define M_MMAP_THRESHOLD      -3
-
-#ifndef DEFAULT_MMAP_THRESHOLD
-#define DEFAULT_MMAP_THRESHOLD (256 * 1024)
-#endif
-
-/*
-  M_MMAP_MAX is the maximum number of requests to simultaneously
-  service using mmap. This parameter exists because
-. Some systems have a limited number of internal tables for
-  use by mmap, and using more than a few of them may degrade
-  performance.
-
-  The default is set to a value that serves only as a safeguard.
-  Setting to 0 disables use of mmap for servicing large requests.  If
-  HAVE_MMAP is not set, the default value is 0, and attempts to set it
-  to non-zero values in mallopt will fail.
-*/
-
-#define M_MMAP_MAX             -4
-
-#ifndef DEFAULT_MMAP_MAX
-#define DEFAULT_MMAP_MAX       (65536)
-#endif
-
-#ifdef __cplusplus
-};  /* end of extern "C" */
-#endif
-
-/* 
-  ========================================================================
-  To make a fully customizable malloc.h header file, cut everything
-  above this line, put into file malloc.h, edit to suit, and #include it 
-  on the next line, as well as in programs that use this malloc.
-  ========================================================================
-*/
-
-/* #include "malloc.h" */
-
-/* --------------------- public wrappers ---------------------- */
-
-#ifdef USE_PUBLIC_MALLOC_WRAPPERS
-
-/* DL_STATIC used to make functions (deep down) consistent
- * with prototypes (otherwise the prototypes are static
- * with USE_PUBLIC_MALLOC_WRAPPERS, but the functions aren't).
- * The gcc compiler doesn't care, but the HP-UX compiler does.
- */
-#define DL_STATIC static
-
-/* Declare all routines as internal */
-#if __STD_C
-static Void_t*  mALLOc(size_t) __attribute_malloc__;
-static void     fREe(Void_t*);
-static Void_t*  rEALLOc(Void_t*, size_t) __attribute_malloc__;
-static Void_t*  mEMALIGn(size_t, size_t) __attribute_malloc__;
-static int      posix_mEMALIGn(Void_t**, size_t, size_t);
-static Void_t*  vALLOc(size_t) __attribute_malloc__;
-static Void_t*  pVALLOc(size_t) __attribute_malloc__;
-static Void_t*  cALLOc(size_t, size_t) __attribute_malloc__;
-static int      mTRIm(size_t);
-static size_t   mUSABLe(Void_t*);
-static void     mSTATs();
-static int      mALLOPt(int, int);
-static struct mallinfo2 mALLINFo2(void);
-#else
-static Void_t*  mALLOc();
-static void     fREe();
-static Void_t*  rEALLOc();
-static Void_t*  mEMALIGn();
-static int      posix_mEMALIGn();
-static Void_t*  vALLOc();
-static Void_t*  pVALLOc();
-static Void_t*  cALLOc();
-static int      mTRIm();
-static size_t   mUSABLe();
-static void     mSTATs();
-static int      mALLOPt();
-static struct mallinfo2 mALLINFo2();
-#endif
-
-/*
-  MALLOC_PREACTION and MALLOC_POSTACTION should be
-  defined to return 0 on success, and nonzero on failure.
-  The return value of MALLOC_POSTACTION is currently ignored
-  in wrapper functions since there is no reasonable default
-  action to take on failure.
-*/
-
-
-#ifdef USE_MALLOC_LOCK
-
-# ifdef WIN32
-
-static int mALLOC_MUTEx;
-#define MALLOC_PREACTION   slwait(&mALLOC_MUTEx)
-#define MALLOC_POSTACTION  slrelease(&mALLOC_MUTEx)
-int dnmalloc_pthread_init(void) { return 0; }
-
-# elif defined(__NetBSD__) || defined(__OpenBSD__) || defined(__FreeBSD__)
-
-#   if defined(__NetBSD__)
-#include 
-extern int __isthreaded;
-static mutex_t thread_lock = MUTEX_INITIALIZER;
-#define _MALLOC_LOCK()   if (__isthreaded) mutex_lock(&thread_lock)
-#define _MALLOC_UNLOCK() if (__isthreaded) mutex_unlock(&thread_lock)
-void _malloc_prefork(void) {  _MALLOC_LOCK(); }
-void _malloc_postfork(void) { _MALLOC_UNLOCK(); }
-#   endif
-
-#   if defined(__OpenBSD__)
-extern int  __isthreaded;
-void   _thread_malloc_lock(void);
-void   _thread_malloc_unlock(void);
-#define _MALLOC_LOCK()           if (__isthreaded) _thread_malloc_lock()
-#define _MALLOC_UNLOCK()         if (__isthreaded) _thread_malloc_unlock()
-#   endif
-
-#   if defined(__FreeBSD__)
-extern int      __isthreaded;
-struct _spinlock {
-	volatile long	access_lock;
-	volatile long	lock_owner;
-	volatile char	*fname;
-	volatile int	lineno;
-};
-typedef struct _spinlock spinlock_t;
-#define	_SPINLOCK_INITIALIZER	{ 0, 0, 0, 0 }
-void	_spinlock(spinlock_t *);
-void	_spinunlock(spinlock_t *);
-/* # include "/usr/src/lib/libc/include/spinlock.h" */
-static spinlock_t thread_lock   = _SPINLOCK_INITIALIZER;
-spinlock_t *__malloc_lock       = &thread_lock;
-#define _MALLOC_LOCK()           if (__isthreaded) _spinlock(&thread_lock)
-#define _MALLOC_UNLOCK()         if (__isthreaded) _spinunlock(&thread_lock)
-#   endif
-
-/* Common for all three *BSD
- */
-static int malloc_active = 0;
-static int dnmalloc_mutex_lock()
-{
-  _MALLOC_LOCK();
-  if (!malloc_active)
-    {
-      ++malloc_active;
-      return 0;
-    }
-  assert(malloc_active == 0);
-  _MALLOC_UNLOCK();
-  errno = EDEADLK;
-  return 1;
-}
-static int dnmalloc_mutex_unlock()
-{
-  --malloc_active;
-  _MALLOC_UNLOCK();
-  return 0;
-}
-#define MALLOC_PREACTION   dnmalloc_mutex_lock()
-#define MALLOC_POSTACTION  dnmalloc_mutex_unlock()
-int dnmalloc_pthread_init(void) { return 0; }
-
-# else
-
-/* Wrapping malloc with pthread_mutex_lock/pthread_mutex_unlock
- *
- * Works fine on linux (no malloc in pthread_mutex_lock)
- * Works with on HP-UX if initialized after entering main()
- */ 
-#include 
-static int malloc_active      = 0;
-void dnmalloc_fork_prepare(void);
-void dnmalloc_fork_parent(void);
-void dnmalloc_fork_child(void);
-
-#if !defined(__linux__)
-
-static pthread_mutex_t mALLOC_MUTEx;
-pthread_once_t dnmalloc_once_control = PTHREAD_ONCE_INIT;
-static int dnmalloc_use_mutex = 0;
-static void dnmalloc_pthread_init_int(void)
-{
-  pthread_mutexattr_t   mta;
-  pthread_mutexattr_init(&mta);
-  pthread_mutexattr_settype(&mta, PTHREAD_MUTEX_RECURSIVE);
-  pthread_mutex_init(&(mALLOC_MUTEx), &mta);
-  pthread_mutexattr_destroy(&mta);       
-  pthread_atfork(dnmalloc_fork_prepare, 
-		 dnmalloc_fork_parent,
-		 dnmalloc_fork_child);
-  dnmalloc_use_mutex = 1;
-}
-int dnmalloc_pthread_init(void)
-{
-  return pthread_once(&dnmalloc_once_control, dnmalloc_pthread_init_int);
-}
-
-#else
-
-static pthread_mutex_t mALLOC_MUTEx = PTHREAD_MUTEX_INITIALIZER;
-static int dnmalloc_use_mutex = 1;
-int dnmalloc_pthread_init(void) { 
-  return pthread_atfork(dnmalloc_fork_prepare, 
-			dnmalloc_fork_parent,
-			dnmalloc_fork_child); 
-}
-#endif /* !defined(__linux__) */
-
-void dnmalloc_fork_prepare(void) { 
-  if (dnmalloc_use_mutex) 
-    pthread_mutex_lock(&mALLOC_MUTEx);
-}
-void dnmalloc_fork_parent(void) { 
-  if (dnmalloc_use_mutex)
-    pthread_mutex_unlock(&mALLOC_MUTEx); 
-}
-void dnmalloc_fork_child(void) {
-  int rc = 0;
-#ifdef __GLIBC__
-  if (dnmalloc_use_mutex)
-    {
-      pthread_mutex_unlock (&mALLOC_MUTEx);
-      pthread_mutex_destroy(&mALLOC_MUTEx);
-      rc = pthread_mutex_init(&mALLOC_MUTEx, NULL);
-    } 
-#else
-  if (dnmalloc_use_mutex)
-    rc = pthread_mutex_unlock(&mALLOC_MUTEx); 
-#endif
-  if (rc != 0)
-    {
-      fputs("fork_child failed", stderr);
-      _exit(EXIT_FAILURE);
-    }
-}
-static int dnmalloc_mutex_lock(pthread_mutex_t *mutex)
-{
-  if (dnmalloc_use_mutex)
-    {
-      int rc = pthread_mutex_lock(mutex);
-      if (rc == 0)
-	{
-	  if (!malloc_active)
-	    {
-	      ++malloc_active;
-	      return 0;
-	    }
-	  assert(malloc_active == 0);
-	  (void) pthread_mutex_unlock(mutex);
-	  errno = EDEADLK;
-	  return 1;
-	}
-      return rc;
-    }
-  return 0;
-}
-static int dnmalloc_mutex_unlock(pthread_mutex_t *mutex)
-{
-  if (dnmalloc_use_mutex)
-    {
-      --malloc_active;
-      return pthread_mutex_unlock(mutex);
-    }
-  return 0;
-}
-# define MALLOC_PREACTION   dnmalloc_mutex_lock(&mALLOC_MUTEx)
-# define MALLOC_POSTACTION  dnmalloc_mutex_unlock(&mALLOC_MUTEx)
-
-# endif
-
-#else
-
-/* Substitute anything you like for these */
-
-# define MALLOC_PREACTION   (0)
-# define MALLOC_POSTACTION  (0)
-int dnmalloc_pthread_init(void) { return 0; }
-
-#endif /* USE_MALLOC_LOCK */
-
-Void_t* public_mALLOc(size_t bytes) {
-  Void_t* m;
-  if (MALLOC_PREACTION == 0) {
-    m = mALLOc(bytes);
-    (void) MALLOC_POSTACTION;
-    return m;
-  }
-  return 0;
-}
-
-void public_fREe(Void_t* m) {
-  if (MALLOC_PREACTION == 0) {
-    fREe(m);
-    (void) MALLOC_POSTACTION;
-  }
-}
-
-Void_t* public_rEALLOc(Void_t* m, size_t bytes) {
-  if (MALLOC_PREACTION == 0) {
-    m = rEALLOc(m, bytes);
-    (void) MALLOC_POSTACTION;
-    return m;
-  }
-  return 0;
-}
-
-Void_t* public_mEMALIGn(size_t alignment, size_t bytes) {
-  Void_t* m;
-  if (MALLOC_PREACTION == 0) {
-    m = mEMALIGn(alignment, bytes);
-    (void) MALLOC_POSTACTION;
-    return m;
-  }
-  return 0;
-}
-
-int public_posix_mEMALIGn(Void_t**memptr, size_t alignment, size_t bytes) {
-  int m, ret;
-  if ((ret = MALLOC_PREACTION) == 0) {
-    m = posix_mEMALIGn(memptr, alignment, bytes);
-    (void) MALLOC_POSTACTION;
-    return m;
-  }
-  return ret;
-}
-
-Void_t* public_vALLOc(size_t bytes) {
-  Void_t* m;
-  if (MALLOC_PREACTION == 0) {
-    m = vALLOc(bytes);
-    (void) MALLOC_POSTACTION;
-    return m;
-  }
-  return 0;
-}
-
-Void_t* public_pVALLOc(size_t bytes) {
-  Void_t* m;
-  if (MALLOC_PREACTION == 0) {
-    m = pVALLOc(bytes);
-    (void) MALLOC_POSTACTION;
-    return m;
-  }
-  return 0;
-}
-
-Void_t* public_cALLOc(size_t n, size_t elem_size) {
-  Void_t* m;
-  if (MALLOC_PREACTION == 0) {
-    m = cALLOc(n, elem_size);
-    (void) MALLOC_POSTACTION;
-    return m;
-  }
-  return 0;
-}
-
-int public_mTRIm(size_t s) {
-  int result;
-  if (MALLOC_PREACTION == 0) {
-    result = mTRIm(s);
-    (void) MALLOC_POSTACTION;
-    return result;
-  }
-  return 0;
-}
-
-size_t public_mUSABLe(Void_t* m) {
-  size_t result;
-  if (MALLOC_PREACTION == 0) {
-    result = mUSABLe(m);
-    (void) MALLOC_POSTACTION;
-    return result;
-  }
-  return 0;
-}
-
-void public_mSTATs() {
-  if (MALLOC_PREACTION == 0) {
-    mSTATs();
-    (void) MALLOC_POSTACTION;
-  }
-}
-
-struct mallinfo2 public_mALLINFo2() {
-  struct mallinfo2 m;
-  if (MALLOC_PREACTION == 0) {
-    m = mALLINFo2();
-    (void) MALLOC_POSTACTION;
-    return m;
-  } else {
-    struct mallinfo2 nm = { 0, 0, 0, 0, 0, 0, 0, 0, 0, 0 };
-    return nm;
-  }
-}
-
-int public_mALLOPt(int p, int v) {
-  int result;
-  if (MALLOC_PREACTION == 0) {
-    result = mALLOPt(p, v);
-    (void) MALLOC_POSTACTION;
-    return result;
-  }
-  return 0;
-}
-
-#else
-
-int dnmalloc_pthread_init(void) { return 0; }
-#define DL_STATIC
-
-#endif /* USE_PUBLIC_MALLOC_WRAPPERS */
-
-
-
-/* ------------- Optional versions of memcopy ---------------- */
-
-
-#if USE_MEMCPY
-
-/* 
-  Note: memcpy is ONLY invoked with non-overlapping regions,
-  so the (usually slower) memmove is not needed.
-*/
-
-#define MALLOC_COPY(dest, src, nbytes)  memcpy(dest, src, nbytes)
-#define MALLOC_ZERO(dest, nbytes)       memset(dest, 0,   nbytes)
-
-#else /* !USE_MEMCPY */
-
-/* Use Duff's device for good zeroing/copying performance. */
-
-#define MALLOC_ZERO(charp, nbytes)                                            \
-do {                                                                          \
-  INTERNAL_SIZE_T* mzp = (INTERNAL_SIZE_T*)(charp);                           \
-  CHUNK_SIZE_T  mctmp = (nbytes)/sizeof(INTERNAL_SIZE_T);                     \
-  long mcn;                                                                   \
-  if (mctmp < 8) mcn = 0; else { mcn = (mctmp-1)/8; mctmp %= 8; }             \
-  switch (mctmp) {                                                            \
-    case 0: for(;;) { *mzp++ = 0;                                             \
-    case 7:           *mzp++ = 0;                                             \
-    case 6:           *mzp++ = 0;                                             \
-    case 5:           *mzp++ = 0;                                             \
-    case 4:           *mzp++ = 0;                                             \
-    case 3:           *mzp++ = 0;                                             \
-    case 2:           *mzp++ = 0;                                             \
-    case 1:           *mzp++ = 0; if(mcn <= 0) break; mcn--; }                \
-  }                                                                           \
-} while(0)
-
-#define MALLOC_COPY(dest,src,nbytes)                                          \
-do {                                                                          \
-  INTERNAL_SIZE_T* mcsrc = (INTERNAL_SIZE_T*) src;                            \
-  INTERNAL_SIZE_T* mcdst = (INTERNAL_SIZE_T*) dest;                           \
-  CHUNK_SIZE_T  mctmp = (nbytes)/sizeof(INTERNAL_SIZE_T);                     \
-  long mcn;                                                                   \
-  if (mctmp < 8) mcn = 0; else { mcn = (mctmp-1)/8; mctmp %= 8; }             \
-  switch (mctmp) {                                                            \
-    case 0: for(;;) { *mcdst++ = *mcsrc++;                                    \
-    case 7:           *mcdst++ = *mcsrc++;                                    \
-    case 6:           *mcdst++ = *mcsrc++;                                    \
-    case 5:           *mcdst++ = *mcsrc++;                                    \
-    case 4:           *mcdst++ = *mcsrc++;                                    \
-    case 3:           *mcdst++ = *mcsrc++;                                    \
-    case 2:           *mcdst++ = *mcsrc++;                                    \
-    case 1:           *mcdst++ = *mcsrc++; if(mcn <= 0) break; mcn--; }       \
-  }                                                                           \
-} while(0)
-
-#endif
-
-/* ------------------ MMAP support ------------------  */
-
-
-#if defined(HAVE_FCNTL_H)
-#include 
-#endif
-
-#if defined(HAVE_SYS_MMAN_H)
-#include 
-#endif
-
-#if !defined(MAP_ANONYMOUS) && defined(MAP_ANON)
-#define MAP_ANONYMOUS MAP_ANON
-#endif
-
-/* 
-   Nearly all versions of mmap support MAP_ANONYMOUS, 
-   so the following is unlikely to be needed, but is
-   supplied just in case.
-*/
-
-#ifndef MAP_ANONYMOUS
-
-/* rw 19.05.2008 changed to avoid cached file descriptor, untested 
- */
-void * anon_mmap (void *addr, size_t length, int prot, int flags)
-{
-  void * retval   = NULL;
-  int dev_zero_fd = -1; /* File descriptor for /dev/zero. */
-
-  dev_zero_fd = open("/dev/zero", O_RDWR);
-  if (dev_zero_fd >= 0)
-    {
-      retval = mmap((addr), (size), (prot), (flags), dev_zero_fd, 0);
-      /* closing the file descriptor does not unmap the region */
-      close(dev_zero_fd); 
-    }
-  return retval;
-}
-  
-#define MMAP(addr, size, prot, flags) \
-  (anon_mmap((addr), (size), (prot), (flags)))
-
-
-#else /* have MAP_ANONYMOUS */
-
-#if !defined(MAP_32BIT) && defined(MAP_ADDR32)
-#define MAP_32BIT MAP_ADDR32
-#endif
-
-#if defined(MAP_32BIT)
-#define MMAP(addr, size, prot, flags) \
- (mmap((addr), (size), (prot), (flags)|MAP_ANONYMOUS|MAP_32BIT, -1, 0))
-#elif defined(__sun)
-/* 
- * Hint an address within 32bit address space
- */
-#define MMAP(addr, size, prot, flags) \
- (mmap((void*)0xC0000000, (size), (prot), (flags)|MAP_ANONYMOUS, -1, 0))
-#else
-/* *BSD */
-#define MMAP(addr, size, prot, flags) \
- (mmap((void*)0x80000000, (size), (prot), (flags)|MAP_ANONYMOUS, -1, 0))
-#endif
-
-#endif /* have MAP_ANONYMOUS */
-
-
-/*
-  -----------------------  Chunk representations -----------------------
-*/
-
-typedef void * mchunkptr;
-
-struct chunkinfo {
-   INTERNAL_SIZE_T      prev_size;  /* Size of previous in bytes          */
-   INTERNAL_SIZE_T      size;       /* Size in bytes, including overhead. */
-   INTERNAL_SIZE_T      req;        /* Original request size, for guard.  */
-   struct chunkinfo* hash_next;     /* contains a pointer to the next chunk 
-                                       in the linked list if the hash
-                                       value is the same as the chunk     */
-   struct chunkinfo* fd;	    /* double links -- used only if free. */
-   struct chunkinfo* bk;
-   mchunkptr chunk;
-};
-
-typedef struct chunkinfo* chunkinfoptr;
-
-struct cireginfo {
-	unsigned long position;
-	unsigned long *freebitmap;
-	struct cireginfo* next;
-	struct chunkinfo *freelist;
-	struct chunkinfo *begin; 
-	unsigned long freecounter; 
-};
-
-/*
-  ---------- Size and alignment checks and conversions ----------
-*/
-
-/* conversion from malloc headers to user pointers, and back */
-#define chunk(p) (p->chunk)
-
-
-#define chunk2mem(p)   (chunk(p))
-#define mem2chunk(mem) (hashtable_lookup(mem))
-
-/* The smallest possible chunk      */
-/* #define MIN_CHUNK_SIZE        16 */
-#if (SIZEOF_UNSIGNED_LONG == 8) || defined(__arch64__) || defined(__ia64__) || defined(__x86_64__) || defined(__LP64__) || defined(__64BIT__) || defined(_LP64) || defined(_M_IA64) || (defined(_MIPS_SZLONG) && (_MIPS_SZLONG == 64))
-#  define MIN_CHUNK_SIZE 32
-#else
-#  define MIN_CHUNK_SIZE 16
-#endif
-
-/* The smallest size we can malloc is an aligned minimal chunk */
-
-#define MINSIZE  \
-  (CHUNK_SIZE_T)(((MIN_CHUNK_SIZE+MALLOC_ALIGN_MASK) & ~MALLOC_ALIGN_MASK))
-
-/* Check if m has acceptable alignment */
-
-#define aligned_OK(m)  (((PTR_UINT)((m)) & (MALLOC_ALIGN_MASK)) == 0)
-
-#define GUARD_SIZE 4
-
-/* 
-   Check if a request is so large that it would wrap around zero when
-   padded and aligned. To simplify some other code, the bound is made
-   low enough so that adding MINSIZE will also not wrap around zero.
-
-   Make it 4*MINSIZE.
-*/
-
-#define REQUEST_OUT_OF_RANGE(req)                                 \
-  ((CHUNK_SIZE_T)(req) >=                                         \
-   (CHUNK_SIZE_T)(INTERNAL_SIZE_T)(-4 * MINSIZE))    
-
-/* pad request bytes into a usable size -- internal version */
-
-#define request2size(req)                                         \
-  (((req) + GUARD_SIZE + MALLOC_ALIGN_MASK >= MINSIZE)  ?         \
-   ((req) + GUARD_SIZE + MALLOC_ALIGN_MASK) & ~MALLOC_ALIGN_MASK :\
-   MINSIZE)
-
-/*  Same, except also perform argument check */
-
-#define checked_request2size(req, sz)                             \
-  if (!REQUEST_OUT_OF_RANGE(req)) {                               \
-    (sz) = request2size(req);                                     \
-    assert((sz-req) >= GUARD_SIZE);                               \
-  } else {                                                        \
-    MALLOC_FAILURE_ACTION;                                        \
-    return 0;                                                     \
-  }
-
-#if PARANOIA > 2
-static char * guard_set_p;
-static char * guard_set_q;
-
-#define guard_set(guard, P, request, sz)			  \
-  assert((sz-request) >= GUARD_SIZE);                             \
-  guard_set_p = (char*)(chunk(P));                                \
-  guard_set_p += request;                                         \
-  VALGRIND_MAKE_MEM_UNDEFINED(guard_set_p,GUARD_SIZE);            \
-  guard_set_q = (char*)(guard);                                   \
-  *guard_set_p = *guard_set_q; ++guard_set_p; ++guard_set_q;      \
-  *guard_set_p = *guard_set_q; ++guard_set_p; ++guard_set_q;      \
-  *guard_set_p = *guard_set_q; ++guard_set_p; ++guard_set_q;      \
-  *guard_set_p = *guard_set_q;                                    \
-  VALGRIND_MAKE_MEM_NOACCESS((((char*)chunk(P))+request),GUARD_SIZE);	\
-  (P)->req = request
- 
-#define guard_check(guard, P)				          \
-  VALGRIND_MAKE_MEM_DEFINED((((char *)chunk(P))+(P)->req), GUARD_SIZE); \
-  assert(0 == memcmp((((char *)chunk(P))+(P)->req),(void*)(guard),GUARD_SIZE));\
-  VALGRIND_MAKE_MEM_NOACCESS((((char *)chunk(P))+(P)->req), GUARD_SIZE);
-
-#else
-#define guard_set(guard, P, request, sz) ((void)0)
-#define guard_check(guard, P) ((void)0)
-#endif /* PARANOIA > 2 */
-
-/* dnmalloc forward declarations */
-static char * dnmalloc_arc4random(void);
-static void dnmalloc_init (void);
-static void malloc_mmap_state(void);
-static void cireg_extend (void);
-static chunkinfoptr cireg_getfree (void);
-static void hashtable_add (chunkinfoptr ci);
-static void hashtable_insert (chunkinfoptr ci_orig, chunkinfoptr ci_insert);
-static void hashtable_remove (mchunkptr p);              
-static void hashtable_skiprm (chunkinfoptr ci_orig, chunkinfoptr ci_todelete);
-static chunkinfoptr hashtable_lookup (mchunkptr p);
-static chunkinfoptr next_chunkinfo (chunkinfoptr ci);          
-static chunkinfoptr prev_chunkinfo (chunkinfoptr ci);
-
-
-
-/*
-  --------------- Physical chunk operations ---------------
-*/
-
-
-/* size field is or'ed with PREV_INUSE when previous adjacent chunk in use */
-#define PREV_INUSE 0x1
-
-/* extract inuse bit of previous chunk */
-#define prev_inuse(p)       ((p)->size & PREV_INUSE)
-
-/* size field is or'ed with IS_MMAPPED if the chunk was obtained with mmap() */
-#define IS_MMAPPED 0x2
-
-/* check for mmap()'ed chunk */
-#define chunk_is_mmapped(p) ((p)->size & IS_MMAPPED)
-
-
-/* size field is or'ed when the chunk is in use */
-#define INUSE 0x4
-
-/* extract inuse bit of chunk */
-#define inuse(p)       ((p)->size & INUSE)
-
-/* 
-  Bits to mask off when extracting size 
-
-  Note: IS_MMAPPED is intentionally not masked off from size field in
-  macros for which mmapped chunks should never be seen. This should
-  cause helpful core dumps to occur if it is tried by accident by
-  people extending or adapting this malloc.
-*/
-#define SIZE_BITS (PREV_INUSE|IS_MMAPPED|INUSE)
-
-/* Bits to mask off when extracting size of chunks for macros which do not use mmap */
-#define SIZE_NOMMAP (PREV_INUSE|INUSE)
-
-/* Get size, ignoring use bits */
-#define chunksize(p)         ((p)->size & ~(SIZE_BITS))
-
-/* Ptr to chunkinfo of next physical malloc_chunk. */
-#define next_chunk(p) ((mchunkptr)( ((char*)(p)) + ((p)->size & SIZE_NOMMAP) ))
-
-/* Treat space at ptr + offset as a chunk */
-#define chunk_at_offset(p, s)  ((mchunkptr)(((char*)(p)) + (s)))
-
-/* set/clear chunk as being inuse without otherwise disturbing */
-#define set_inuse(p) ((p)->size |= INUSE)
-
-#define clear_inuse(p) ((p)->size &= ~(INUSE))
-
-#define set_previnuse(p) ((p)->size |= PREV_INUSE)
-
-#define clear_previnuse(p) ((p)->size &= ~(PREV_INUSE))
-
-static void set_previnuse_next (chunkinfoptr p)
-{
-   chunkinfoptr q;
-   q = next_chunkinfo (p);
-   if (q)
-      set_previnuse (q);
-}
-
-#define set_all_inuse(p) \
-set_inuse(p); \
-set_previnuse_next(p);
-
-
-/* Set size at head, without disturbing its use bit */
-#define set_head_size(p, s)  ((p)->size = (((p)->size & SIZE_NOMMAP) | (s)))
-
-/* Set size/use field */
-#define set_head(p, s)       ((p)->size = (s))
-
-/*
-  Bins
-
-    An array of bin headers for free chunks. Each bin is doubly
-    linked.  The bins are approximately proportionally (log) spaced.
-    There are a lot of these bins (128). This may look excessive, but
-    works very well in practice.  Most bins hold sizes that are
-    unusual as malloc request sizes, but are more usual for fragments
-    and consolidated sets of chunks, which is what these bins hold, so
-    they can be found quickly.  All procedures maintain the invariant
-    that no consolidated chunk physically borders another one, so each
-    chunk in a list is known to be preceeded and followed by either
-    inuse chunks or the ends of memory.
-
-    Chunks in bins are kept in size order, with ties going to the
-    approximately least recently used chunk. Ordering isn't needed
-    for the small bins, which all contain the same-sized chunks, but
-    facilitates best-fit allocation for larger chunks. These lists
-    are just sequential. Keeping them in order almost never requires
-    enough traversal to warrant using fancier ordered data
-    structures.  
-
-    Chunks of the same size are linked with the most
-    recently freed at the front, and allocations are taken from the
-    back.  This results in LRU (FIFO) allocation order, which tends
-    to give each chunk an equal opportunity to be consolidated with
-    adjacent freed chunks, resulting in larger free chunks and less
-    fragmentation.
-
-    To simplify use in double-linked lists, each bin header acts
-    as a malloc_chunk. This avoids special-casing for headers.
-    But to conserve space and improve locality, we allocate
-    only the fd/bk pointers of bins, and then use repositioning tricks
-    to treat these as the fields of a malloc_chunk*.  
-*/
-
-typedef struct chunkinfo* mbinptr;
-
-/* addressing -- note that bin_at(0) does not exist */
-#define bin_at(m, i) (&(m)->bins[i])
-
-/* analog of ++bin */
-#define next_bin(b)  (b+1)
-
-/* Reminders about list directionality within bins */
-#define first(b)     ((b)->fd)
-#define last(b)      ((b)->bk)
-
-/* Take a chunk off a bin list */
-#define unlink(P, BK, FD) {                                            \
-  FD = P->fd;                                                          \
-  BK = P->bk;                                                          \
-  FD->bk = BK;                                                         \
-  BK->fd = FD;                                                         \
-}
-
-/*
-  Indexing
-
-    Bins for sizes < 512 bytes contain chunks of all the same size, spaced
-    8 bytes apart. Larger bins are approximately logarithmically spaced:
-
-    64 bins of size       8
-    32 bins of size      64
-    16 bins of size     512
-     8 bins of size    4096
-     4 bins of size   32768
-     2 bins of size  262144
-     1 bin  of size what's left
-
-    The bins top out around 1MB because we expect to service large
-    requests via mmap.
-*/
-
-#define NBINS              96
-#define NSMALLBINS         32
-#define SMALLBIN_WIDTH      8
-#define MIN_LARGE_SIZE    256
-
-#define in_smallbin_range(sz)  \
-  ((CHUNK_SIZE_T)(sz) < (CHUNK_SIZE_T)MIN_LARGE_SIZE)
-
-#define smallbin_index(sz)     (((unsigned)(sz)) >> 3)
-
-/*
-  Compute index for size. We expect this to be inlined when
-  compiled with optimization, else not, which works out well.
-*/
-static int largebin_index(size_t sz) {
-
-  unsigned long  xx = sz >> SMALLBIN_WIDTH; 
-
-  if (xx < 0x10000) 
-    {
-      unsigned int  m;           /* bit position of highest set bit of m */
-      
-      /* On intel, use BSRL instruction to find highest bit */
-#if defined(__GNUC__) && defined(i386) && !defined(USE_UNO)
-
-      unsigned int  x = (unsigned int) xx;
-
-      __asm__("bsrl %1,%0\n\t"
-	      : "=r" (m) 
-	      : "rm"  (x));
-
-#elif defined(__GNUC__) && defined(x86_64) && !defined(USE_UNO)
-
-      __asm__("bsrq %1,%0\n\t"
-              : "=r" (m)
-              : "rm"  (xx));
-
-#else
-
-      /* Taken from Bit Twiddling Hacks
-       * http://graphics.stanford.edu/~seander/bithacks.html
-       * public domain
-       */
-      unsigned int  v  = (unsigned int) xx;
-      register unsigned int shift;
-      
-      m =     (v > 0xFFFF) << 4; v >>= m;
-      shift = (v > 0xFF  ) << 3; v >>= shift; m |= shift;
-      shift = (v > 0xF   ) << 2; v >>= shift; m |= shift;
-      shift = (v > 0x3   ) << 1; v >>= shift; m |= shift;
-      m |= (v >> 1);
-      
-#endif
-      
-      /* Use next 2 bits to create finer-granularity bins */
-      return NSMALLBINS + (m << 2) + ((sz >> (m + 6)) & 3);
-    }
-  else
-    {
-      return NBINS-1;
-    }
-}
-
-#define bin_index(sz) \
- ((in_smallbin_range(sz)) ? smallbin_index(sz) : largebin_index(sz))
-
-/*
-  FIRST_SORTED_BIN_SIZE is the chunk size corresponding to the
-  first bin that is maintained in sorted order. This must
-  be the smallest size corresponding to a given bin.
-
-  Normally, this should be MIN_LARGE_SIZE. But you can weaken
-  best fit guarantees to sometimes speed up malloc by increasing value.
-  Doing this means that malloc may choose a chunk that is 
-  non-best-fitting by up to the width of the bin.
-
-  Some useful cutoff values:
-      512 - all bins sorted
-     2560 - leaves bins <=     64 bytes wide unsorted  
-    12288 - leaves bins <=    512 bytes wide unsorted
-    65536 - leaves bins <=   4096 bytes wide unsorted
-   262144 - leaves bins <=  32768 bytes wide unsorted
-       -1 - no bins sorted (not recommended!)
-*/
-
-/* #define FIRST_SORTED_BIN_SIZE 65536 */
-
-#define FIRST_SORTED_BIN_SIZE MIN_LARGE_SIZE
-
-
-/*
-  Unsorted chunks
-
-    All remainders from chunk splits, as well as all returned chunks,
-    are first placed in the "unsorted" bin. They are then placed
-    in regular bins after malloc gives them ONE chance to be used before
-    binning. So, basically, the unsorted_chunks list acts as a queue,
-    with chunks being placed on it in free (and malloc_consolidate),
-    and taken off (to be either used or placed in bins) in malloc.
-*/
-
-/* The otherwise unindexable 1-bin is used to hold unsorted chunks. */
-#define unsorted_chunks(M)          (bin_at(M, 1))
-
-/*
-  Top
-
-    The top-most available chunk (i.e., the one bordering the end of
-    available memory) is treated specially. It is never included in
-    any bin, is used only if no other chunk is available, and is
-    released back to the system if it is very large (see
-    M_TRIM_THRESHOLD).  Because top initially
-    points to its own bin with initial zero size, thus forcing
-    extension on the first malloc request, we avoid having any special
-    code in malloc to check whether it even exists yet. But we still
-    need to do so when getting memory from system, so we make
-    initial_top treat the bin as a legal but unusable chunk during the
-    interval between initialization and the first call to
-    sYSMALLOc. (This is somewhat delicate, since it relies on
-    the 2 preceding words to be zero during this interval as well.)
-*/
-
-/* Conveniently, the unsorted bin can be used as dummy top on first call */
-#define initial_top(M)              (unsorted_chunks(M))
-
-/*
-  Binmap
-
-    To help compensate for the large number of bins, a one-level index
-    structure is used for bin-by-bin searching.  `binmap' is a
-    bitvector recording whether bins are definitely empty so they can
-    be skipped over during during traversals.  The bits are NOT always
-    cleared as soon as bins are empty, but instead only
-    when they are noticed to be empty during traversal in malloc.
-*/
-
-/* Conservatively use 32 bits per map word, even if on 64bit system */
-#define BINMAPSHIFT      5
-#define BITSPERMAP       (1U << BINMAPSHIFT)
-#define BINMAPSIZE       (NBINS / BITSPERMAP)
-
-#define idx2block(i)     ((i) >> BINMAPSHIFT)
-#define idx2bit(i)       ((1U << ((i) & ((1U << BINMAPSHIFT)-1))))
-
-#define mark_bin(m,i)    ((m)->binmap[idx2block(i)] |=  idx2bit(i))
-#define unmark_bin(m,i)  ((m)->binmap[idx2block(i)] &= ~(idx2bit(i)))
-#define get_binmap(m,i)  ((m)->binmap[idx2block(i)] &   idx2bit(i))
-
-/*
-  Fastbins
-
-    An array of lists holding recently freed small chunks.  Fastbins
-    are not doubly linked.  It is faster to single-link them, and
-    since chunks are never removed from the middles of these lists,
-    double linking is not necessary. Also, unlike regular bins, they
-    are not even processed in FIFO order (they use faster LIFO) since
-    ordering doesn't much matter in the transient contexts in which
-    fastbins are normally used.
-
-    Chunks in fastbins keep their inuse bit set, so they cannot
-    be consolidated with other free chunks. malloc_consolidate
-    releases all chunks in fastbins and consolidates them with
-    other free chunks. 
-*/
-
-typedef struct chunkinfo* mfastbinptr;
-
-/* offset 2 to use otherwise unindexable first 2 bins */
-#define fastbin_index(sz)        ((((unsigned int)(sz)) >> 3) - 2)
-
-/* The maximum fastbin request size we support */
-#define MAX_FAST_SIZE     80
-
-#define NFASTBINS  (fastbin_index(request2size(MAX_FAST_SIZE))+1)
-
-/*
-  FASTBIN_CONSOLIDATION_THRESHOLD is the size of a chunk in free()
-  that triggers automatic consolidation of possibly-surrounding
-  fastbin chunks. This is a heuristic, so the exact value should not
-  matter too much. It is defined at half the default trim threshold as a
-  compromise heuristic to only attempt consolidation if it is likely
-  to lead to trimming. However, it is not dynamically tunable, since
-  consolidation reduces fragmentation surrounding loarge chunks even 
-  if trimming is not used.
-*/
-
-#define FASTBIN_CONSOLIDATION_THRESHOLD  \
-  ((unsigned long)(DEFAULT_TRIM_THRESHOLD) >> 1)
-
-/*
-  Since the lowest 2 bits in max_fast don't matter in size comparisons, 
-  they are used as flags.
-*/
-
-/*
-  ANYCHUNKS_BIT held in max_fast indicates that there may be any
-  freed chunks at all. It is set true when entering a chunk into any
-  bin.
-*/
-
-#define ANYCHUNKS_BIT        (1U)
-
-#define have_anychunks(M)     (((M)->max_fast &  ANYCHUNKS_BIT))
-#define set_anychunks(M)      ((M)->max_fast |=  ANYCHUNKS_BIT)
-#define clear_anychunks(M)    ((M)->max_fast &= ~ANYCHUNKS_BIT)
-
-/*
-  FASTCHUNKS_BIT held in max_fast indicates that there are probably
-  some fastbin chunks. It is set true on entering a chunk into any
-  fastbin, and cleared only in malloc_consolidate.
-*/
-
-#define FASTCHUNKS_BIT        (2U)
-
-#define have_fastchunks(M)   (((M)->max_fast &  FASTCHUNKS_BIT))
-#define set_fastchunks(M)    ((M)->max_fast |=  (FASTCHUNKS_BIT|ANYCHUNKS_BIT))
-#define clear_fastchunks(M)  ((M)->max_fast &= ~(FASTCHUNKS_BIT))
-
-/* 
-   Set value of max_fast. 
-   Use impossibly small value if 0.
-*/
-
-#define set_max_fast(M, s) \
-  (M)->max_fast = (((s) == 0)? SMALLBIN_WIDTH: request2size(s)) | \
-  ((M)->max_fast &  (FASTCHUNKS_BIT|ANYCHUNKS_BIT))
-
-#define get_max_fast(M) \
-  ((M)->max_fast & ~(FASTCHUNKS_BIT | ANYCHUNKS_BIT))
-
-
-/*
-  morecore_properties is a status word holding dynamically discovered
-  or controlled properties of the morecore function
-*/
-
-#define MORECORE_CONTIGUOUS_BIT  (1U)
-
-#define contiguous(M) \
-        (((M)->morecore_properties &  MORECORE_CONTIGUOUS_BIT))
-#define noncontiguous(M) \
-        (((M)->morecore_properties &  MORECORE_CONTIGUOUS_BIT) == 0)
-#define set_contiguous(M) \
-        ((M)->morecore_properties |=  MORECORE_CONTIGUOUS_BIT)
-#define set_noncontiguous(M) \
-        ((M)->morecore_properties &= ~MORECORE_CONTIGUOUS_BIT)
-
-#define MORECORE_32BIT_BIT  (2U)
-
-#define morecore32bit(M) \
-        (((M)->morecore_properties &  MORECORE_32BIT_BIT))
-#define nonmorecore32bit(M) \
-        (((M)->morecore_properties &  MORECORE_32BIT_BIT) == 0)
-#define set_morecore32bit(M) \
-        ((M)->morecore_properties |=  MORECORE_32BIT_BIT)
-#define set_nonmorecore32bit(M) \
-        ((M)->morecore_properties &= ~MORECORE_32BIT_BIT)
-
-
-
-/* ----------------- dnmalloc -------------------- */
-
-/* size of pages */
-#define PGSIZE malloc_getpagesize
-/* pointer size */
-#define PTRSIZE sizeof(long)
-
-
-
-/* TODO: mmapped chunks are always multiples of pagesize -> we're wasting 
-   address space: the hashtable has granularity of 16*8, set it to something 
-   closer to pagesize for mmapped chunks (current waste: 32 positions/mmapped 
-   page) 
-*/
-
-/* The maximum heap size that dnmalloc can operate with
- * represented in hex to avoid annoying gcc warning
- *
- * Avoid integer overflow, cover complete 32bit address 
- * space for portability. With deferred allocation, the
- * hashtable size is a non-issue.
- */
-#define HEAPMAXSIZE_HALF 0x80000000UL
-
-/* How many elements are stored in the linked list */
-#define LINKEDLSTELS 8
-
-/* Minimum size of a chunk */
-
-#if (SIZEOF_UNSIGNED_LONG == 8) || defined(__arch64__) || defined(__ia64__) || defined(__x86_64__) || defined(__LP64__) || defined(__64BIT__) || defined(_LP64) || defined(_M_IA64) || (defined(_MIPS_SZLONG) && (_MIPS_SZLONG == 64))
-#  define MINCHUNKSIZE 32
-#else
-#  define MINCHUNKSIZE 16
-#endif
-
-
-/* The amount of hashtable entries for each page:
-Pagesize divded by the numer of elements in the linkedlists
-divided by the minimum chunk size
-*/
-#define CHUNKINFOPAGE (PGSIZE / LINKEDLSTELS / MINCHUNKSIZE)
-
-/* The amount of hashtable entries needed to manage the memory:
-Maximum heap size divided by page size multiplied by the amount
-of chunk info's per page 
-*/
-#define AMOUNTHASH ((HEAPMAXSIZE_HALF / PGSIZE) * CHUNKINFOPAGE * 2)
-
-/* Initial size of the map for the hashtable 
-Amount of entries muliplied by pointer size
-*/
-#define  HASHTABLESIZE (AMOUNTHASH * PTRSIZE)
-
-/* Amount of free chunks that the system should allocate at the start */
-#define NUMBER_FREE_CHUNKS 32768
-
-/* Initial size of the chunk info region, 
-also used when growing the region */
-#define CIREGSIZE (NUMBER_FREE_CHUNKS * sizeof(struct chunkinfo))
-
-/* Start address of the heap */
-char *startheap;
-
-/* pointer to the hashtable: struct chunkinfo **hashtable -> *hashtable[] */
-chunkinfoptr *hashtable;
-
-/* Current chunkinfo region */
-struct cireginfo *currciinfo = 0;
-struct cireginfo *firstciinfo = 0;
-
-unsigned long totalcictr = 0;
-
-
-/* Initialize the area for chunkinfos and the hashtable and protect 
- * it with non-writable pages 
- */
-static void
-dnmalloc_init ()
-{
-   void *hashtb;
-   int mprot;
-   int flags = MAP_PRIVATE;
-
-   /* Allocate the malloc_state struct */
-   malloc_mmap_state();
-
-   /* Use MAP_NORESERVE if available (Solaris, HP-UX; most other
-    * systems use defered allocation anyway.
-    */
-#ifdef MAP_NORESERVE
-   flags |= MAP_NORESERVE;
-#endif
-
-   /* Always start at 0, hashtable covers whole 32bit address space
-    */
-#define STARTHEAP_IS_ZERO
-   startheap = 0;
-
-   /* Map space for the hashtable */
-#if PARANOIA > 1
-   hashtb = MMAP(0, HASHTABLESIZE+(2*PGSIZE), PROT_READ|PROT_WRITE, flags);
-#else
-   hashtb = MMAP(0, HASHTABLESIZE+PGSIZE, PROT_READ|PROT_WRITE, flags);
-#endif
-
-#ifdef NDEBUG
-   if (hashtb == MAP_FAILED) {
-      fprintf (stderr, "Couldn't mmap hashtable: %s\n", strerror (errno));
-      abort ();
-   }
-#else
-   assert(hashtb != MAP_FAILED);
-#endif
-
-   /* Protect the hashtable with non-writable pages */
-   mprot = mprotect(hashtb, (size_t) PGSIZE, PROT_NONE);
-#ifdef NDEBUG
-   if (mprot == -1) {
-     fprintf (stderr, "Couldn't mprotect first non-rw page for hashtable: %s\n",
-	      strerror (errno));
-     abort ();
-   }
-#else
-   assert(mprot != -1);
-#endif
-
-   /* HP-UX: Cannot do arithmetic with pointers to objects of unknown size. */
-   hashtable = (chunkinfoptr *) (((char*)hashtb) + PGSIZE);
-
-   /* Protect the hashtable with non-writable pages */
-#if PARANOIA > 1
-   mprot = mprotect((void*)((char*)hashtb+HASHTABLESIZE+PGSIZE), (size_t) PGSIZE, PROT_NONE);
-#ifdef NDEBUG
-   if (mprot == -1) {
-     fprintf (stderr, "Couldn't mprotect last non-rw page for hashtable: %s\n",
-	      strerror (errno));
-     abort ();
-   }
-#else
-   assert(mprot != -1);
-#endif
-#endif
-}
-
-
-
-/* Extend the region for chunk infos by mapping more memory before the region */
-static void
-cireg_extend ()
-{
-   void *newcireg;
-   int mprot;
-   struct cireginfo *tempciinfo = 0;
-   
-#if PARANOIA > 1
-   newcireg = MMAP(0, CIREGSIZE+(2*PGSIZE), PROT_READ|PROT_WRITE, MAP_PRIVATE);
-#else
-   newcireg = MMAP(0, CIREGSIZE+PGSIZE, PROT_READ|PROT_WRITE, MAP_PRIVATE);
-#endif
-
-#ifdef NDEBUG
-   if (newcireg == MAP_FAILED)
-   {
-	   fprintf (stderr, "Couldn't extend chunkinfo region: %s\n",
-		    strerror (errno));
-	   abort ();
-   }
-#else
-   assert(newcireg != MAP_FAILED);
-#endif
-   mprot = mprotect(newcireg, PGSIZE, PROT_NONE);
-#ifdef NDEBUG
-   if (mprot == -1) {
-	   fprintf (stderr, "Couldn't mprotect first non-rw page for extended region: %s\n",
-		    strerror (errno));
-	   abort ();
-   }
-#else
-   assert(mprot != -1);
-#endif
-   newcireg = ((char*)newcireg)+PGSIZE;
-   
-#if PARANOIA > 1
-   mprot = mprotect((void*)((char*)newcireg+CIREGSIZE), (size_t) PGSIZE, PROT_NONE);
-#ifdef NDEBUG
-   if (mprot == -1) {
-     fprintf (stderr, "Couldn't mprotect last non-rw page for extended region: %s\n",
-	      strerror (errno));
-     abort ();
-   }
-#else
-   assert(mprot != -1);
-#endif
-#endif
-
-   tempciinfo = currciinfo;
-   currciinfo = (struct cireginfo *) newcireg;
-   if (tempciinfo)
-	   tempciinfo->next = currciinfo;
-   currciinfo->position = 1;
-   currciinfo->freecounter = NUMBER_FREE_CHUNKS;
-   if (!firstciinfo)
-	   firstciinfo = currciinfo;
-   totalcictr++;
-   VALGRIND_CREATE_MEMPOOL(newcireg, 0, 0);
-}
-
-
-/* Get a free chunkinfo */
-static chunkinfoptr
-cireg_getfree ()
-{
-   chunkinfoptr freeci;
-   chunkinfoptr freelst = 0;
-   struct cireginfo *newciinfo = firstciinfo;
-   
-   if (newciinfo) {
-   	freelst = newciinfo->freelist;
-    
-	if (!freelst && newciinfo->next) {
-	  do {
-	    newciinfo = newciinfo->next;
-	    freelst = newciinfo->freelist;
-	  } while (!freelst && newciinfo->next);
-	}
-   }
-
-   /* Check if there are any free chunkinfos on the list of free chunkinfos */
-   if (freelst)
-   {
-     freeci = freelst;
-     newciinfo->freecounter--;
-     newciinfo->freelist = freelst->fd;
-     
-     VALGRIND_MEMPOOL_ALLOC((char*)currciinfo, (char*)freeci, 
-			    sizeof(struct chunkinfo));
-     
-     freeci->prev_size = 0;
-     freeci->size      = 0;
-     freeci->req       = 0;
-     freeci->hash_next = NULL;
-     freeci->fd        = NULL;
-     freeci->bk        = NULL;
-     freeci->chunk     = NULL;
-     return (freeci);
-   }
-   else
-   {
-     /* No free chunkinfos, check if chunkinfo region still has place 
-      * for a chunkinfo. If not, extend the region. 
-      */
-     if (UNLIKELY(!currciinfo || currciinfo->position == NUMBER_FREE_CHUNKS))
-       cireg_extend ();
-     /* Get a chunkinfo from the chunkinfo region */
-     freeci = (chunkinfoptr) currciinfo + currciinfo->position; 
-     currciinfo->freecounter--;
-     currciinfo->position++;
-
-     VALGRIND_MEMPOOL_ALLOC((char*)currciinfo, (char*)freeci, 
-			    sizeof(struct chunkinfo));
-
-     return (freeci);
-   }
-}
-
-static void freeciregion(struct cireginfo *freeme) {
-  /* free the chunkinfo region */
-  struct cireginfo *newciinfo = firstciinfo;
-  struct cireginfo *prevciinfo = firstciinfo;
-  void *unmapme;
-
-  while (newciinfo && newciinfo != freeme) {
-    prevciinfo = newciinfo;
-    newciinfo = newciinfo->next;
-  }
-  assert(freeme == newciinfo); /* rw */
-  assert(newciinfo != NULL);   /* rw */
-  if (newciinfo)
-    prevciinfo->next = newciinfo->next;
-  unmapme = (void *) ((char*)freeme - PGSIZE);
-  VALGRIND_DESTROY_MEMPOOL((char*)freeme);
-#if PARANOIA > 1
-  munmap(unmapme, CIREGSIZE+(2*PGSIZE));
-#else
-  munmap(unmapme, CIREGSIZE+PGSIZE);
-#endif
-}
-
-
-static void freecilst_add(chunkinfoptr p) {
-
-  struct cireginfo *newciinfo;
-
-  newciinfo = currciinfo;
-  if (((chunkinfoptr) newciinfo < p) && (p  <  (chunkinfoptr) (newciinfo+NUMBER_FREE_CHUNKS))) {
-    p->fd = newciinfo->freelist;
-    newciinfo->freelist = p;
-    newciinfo->freecounter++;
-    VALGRIND_MEMPOOL_FREE((char*)newciinfo, (char*)p);
-    VALGRIND_MAKE_MEM_DEFINED(p,sizeof(struct chunkinfo));
-    VALGRIND_MAKE_MEM_NOACCESS(p->size,     sizeof(INTERNAL_SIZE_T));
-    VALGRIND_MAKE_MEM_NOACCESS(p->req,      sizeof(INTERNAL_SIZE_T));
-    VALGRIND_MAKE_MEM_NOACCESS(p->bk,       sizeof(struct chunkinfo*));
-    VALGRIND_MAKE_MEM_NOACCESS(p->chunk,    sizeof(mchunkptr));
-  } else {
-    newciinfo = firstciinfo;
-    if (newciinfo) {
-      do {
-	if (((chunkinfoptr) newciinfo < p) && (p  <  (chunkinfoptr) (newciinfo+NUMBER_FREE_CHUNKS))) {
-	  p->fd = newciinfo->freelist;
-	  newciinfo->freelist = p;
-	  newciinfo->freecounter++;
-	  VALGRIND_MEMPOOL_FREE((char*)newciinfo, (char*)p);
-	  VALGRIND_MAKE_MEM_DEFINED(p,sizeof(struct chunkinfo));
-	  VALGRIND_MAKE_MEM_NOACCESS(p->size,     sizeof(INTERNAL_SIZE_T));
-	  VALGRIND_MAKE_MEM_NOACCESS(p->req,      sizeof(INTERNAL_SIZE_T));
-	  VALGRIND_MAKE_MEM_NOACCESS(p->bk,       sizeof(struct chunkinfo*));
-	  VALGRIND_MAKE_MEM_NOACCESS(p->chunk,    sizeof(mchunkptr));
-	  if (UNLIKELY(newciinfo->freecounter == NUMBER_FREE_CHUNKS))
-	    freeciregion(newciinfo);
-	  break;
-	}
-	newciinfo = newciinfo->next;
-      } while (newciinfo);
-    }
-  }
-}
-
-/* Calculate the hash table entry for a chunk */
-#ifdef STARTHEAP_IS_ZERO
-#define hash(p)  (((unsigned long) p) >> 7)
-#else
-#define hash(p)  (((unsigned long) p - (unsigned long) startheap) >> 7)
-#endif
-
-static void
-hashtable_add (chunkinfoptr ci)
-{
-   chunkinfoptr temp, next;
-   unsigned long hashval;
-   mchunkptr cic = chunk (ci);
-   
-   hashval = hash (cic);
-
-   if (hashval < AMOUNTHASH) {
-
-     temp = hashtable[hashval];
-
-#ifdef DNMALLOC_DEBUG
-     fprintf(stderr, "hashtable_add: %p, %lu\n", chunk(ci), hashval);
-#endif
-
-     /* If no pointer to a chunk info list is stored at this location 
-      * in the hashtable or if the chunk's address is smaller than the 
-      * one present, add the chunk to the front of the linked list
-      */
-     if (temp == 0 || chunk (temp) > cic)
-       {
-	 ci->hash_next = temp;
-	 hashtable[hashval] = ci;
-	 if (!temp) /* more likely case */
-	   goto out;
-	 temp->prev_size = chunksize(ci);
-	 return;
-       }
-     else
-       {
-	 /* We must place the chunk in the linked list for this hashentry
-	  * Loop to end of list or to a position where temp's chunk's address 
-	  * is larger than the new chunkinfo's chunk's address
-	  */
-	 if (!temp->hash_next || (chunk (temp->hash_next) > cic))
-	   {
-	     ci->hash_next = temp->hash_next;
-	     temp->hash_next = ci;
-	   }
-	 else
-	   {
-	     while ((temp->hash_next != 0) && (chunk (temp->hash_next) < cic))
-	       {
-		 temp = temp->hash_next;
-	       }
-	     /* Place in linked list if not already there */
-	     if (!temp->hash_next || !(chunk (temp->hash_next) == cic))
-	       {
-		 ci->hash_next = temp->hash_next;
-		 temp->hash_next = ci;
-	       }
-	   }
-       }
-   }
-   else {
-#ifdef DNMALLOC_CHECKS
-     if (hashval >= AMOUNTHASH) {
-       fprintf(stderr, "Dnmalloc error: trying to write outside of the bounds of the hashtable, this is definitely a bug, please email dnmalloc@fort-knox.org (hashval: %lu, AMOUNTHASH: %lu, HEAPMAXSIZE_HALF %lu PGSIZE %ld CHUNKINFOPAGE %ld chunk: %p, chunkinfo: %p, startheap: %p).\n", hashval, AMOUNTHASH, HEAPMAXSIZE_HALF, PGSIZE, CHUNKINFOPAGE, chunk(ci), ci, startheap);
-	   abort();
-     }
-#else
-     assert(hashval < AMOUNTHASH);
-#endif
-   }
-
- out:
-   next = next_chunkinfo(ci);
-   if (!next)
-     return;
-   next->prev_size = chunksize(ci);
-}
-
-static void
-hashtable_insert (chunkinfoptr ci_orig, chunkinfoptr ci_insert)
-{
-   chunkinfoptr next;
-
-#ifdef DNMALLOC_DEBUG
-   fprintf(stderr, "hashtable_ins: %p, %lu\n", chunk(ci_insert), 
-	   (unsigned long)hash(chunk(ci_insert));
-#endif
-
-   if (hash(chunk(ci_orig)) != hash(chunk(ci_insert))) {
-      hashtable_add(ci_insert);  
-   }
-   else {
-
-      ci_insert->hash_next = ci_orig->hash_next;
-      ci_orig->hash_next = ci_insert;
-
-      /* added for prevsize */
-      if (!(ci_insert->hash_next))
-	      next = next_chunkinfo(ci_insert);
-      else
-	      next = ci_insert->hash_next;
-
-      if (!next)
-	{
-	  ci_insert->prev_size = chunksize(ci_orig);
-	}
-      else
-	{
-	  next->prev_size = chunksize(ci_insert);
-	  ci_insert->prev_size = chunksize(ci_orig);
-	}
-   }
-}
-
-static void
-hashtable_remove (mchunkptr p) 
-{
-  chunkinfoptr prevtemp, temp;
-  unsigned long hashval;
-  
-  hashval = hash (p);
-#ifdef DNMALLOC_DEBUG
-  fprintf(stderr, "hashtable_rem: %p, %lu\n", p, hashval);
-#endif
-  assert(hashval < AMOUNTHASH); /* rw */
-  prevtemp = temp = hashtable[hashval];
-  if (chunk (temp) == p) {
-    hashtable[hashval] = temp->hash_next;
-  } 
-  else
-    {
-      if (temp && chunk (temp) != p) {
-	do
-	  {
-	    prevtemp = temp;
-	    temp = temp->hash_next;
-	  } while (temp && chunk (temp) != p);
-      }
-#ifdef DNMALLOC_CHECKS
-      if (!temp) {
-	fprintf (stderr,
-		 "Dnmalloc error (hash_rm): could not find a chunkinfo for the chunk %p in the hashtable at entry %lu\n This is definitely a bug, please report it to dnmalloc@fort-knox.org.\n",
-		 p, hashval);
-	abort();
-      }
-#else
-      assert(temp != NULL);
-#endif
-      if (temp) prevtemp->hash_next = temp->hash_next;
-    }
-}
-
-/* mmapped chunks are multiples of pagesize, no hash_nexts, 
- * just remove from the hashtable 
- */
-#define hashtable_remove_mmapped(p) hashtable[hash(p)] = 0;
-
-static void
-hashtable_skiprm (chunkinfoptr ci_orig, chunkinfoptr ci_todelete)
-{
-   unsigned long hashval;
-   chunkinfoptr next;
-   
-#ifdef DNMALLOC_DEBUG
-   fprintf(stderr, "hashtable_skiprm: %p, %lu\n", chunk(ci_todelete), hash(chunk(ci_todelete)));
-#endif
-
-   if (ci_orig->hash_next != ci_todelete) {
-     hashval = hash(chunk(ci_todelete));
-     assert(hashval < AMOUNTHASH); /* rw */
-#ifdef DNMALLOC_CHECKS
-     if (hashtable[hashval] != ci_todelete ) {
-	   fprintf(stderr, "Dnmalloc error: trying to delete wrong value (hash: %lu): ci_todelete: %p (%p), hashtable[hashval]: %p (%p)\n This is definitely a bug, please report it to dnmalloc@fort-knox.org.\n", hashval, ci_todelete, chunk(ci_todelete), hashtable[hashval], chunk(hashtable[hashval]));
-     }
-#else
-     assert(hashtable[hashval] == ci_todelete);
-#endif
-     hashtable[hashval] = ci_todelete->hash_next;
-   }
-
-   else {
-     ci_orig->hash_next = ci_todelete->hash_next;
-     if (!ci_orig->hash_next) {
-       next = next_chunkinfo(ci_orig);
-     } else {
-       next = ci_orig->hash_next;
-     }
-     if (next)
-       next->prev_size = chunksize(ci_orig);
-
-   } 
-}
-
-
-static chunkinfoptr
-hashtable_lookup (mchunkptr p)
-{
-   chunkinfoptr ci;
-   unsigned long hashval;
-   
-   /* if we were called wrongly
-    * if ((char *) p < startheap) return 0;
-    */
-   if ((char *) p >= startheap)
-     {
-       hashval = hash (p);
-       assert(hashval < AMOUNTHASH); /* rw */
-       ci = hashtable[hashval];
-       if (ci && chunk (ci) == p)
-	 return ci;
-
-       if (ci) {
-	 do {
-	   ci = ci->hash_next;
-	 } while (ci && chunk (ci) != p);
-       }
-#ifdef DNMALLOC_CHECKS
-       /* This should never occur but if it does, we'd like to know */
-       if (!ci) {
-	 fprintf (stderr,
-		  "Dnmalloc error: could not find a chunkinfo for the chunk %p in the hashtable at entry %lu\n This is definitely a bug, please report it to dnmalloc@fort-knox.org.\n",
-		  p, hashval);
-	 abort();
-       }
-#else
-       assert(ci != NULL);
-#endif
-       return ci;
-     }
-   return 0;
-}
-
-
-
-/*
-   ----------- Internal state representation and initialization -----------
-*/
-
-struct malloc_state {
-
-  /* The maximum chunk size to be eligible for fastbin */
-  INTERNAL_SIZE_T  max_fast;   /* low 2 bits used as flags */
-
-  /* Fastbins */
-  mfastbinptr      fastbins[NFASTBINS];
-
-  /* Base of the topmost chunk -- not otherwise kept in a bin */
-  chunkinfoptr        top;
-
-  /* The remainder from the most recent split of a small request */
-  chunkinfoptr        last_remainder;
-
-  /* Normal bins */
-  struct chunkinfo bins[NBINS];
-
-  /* Bitmap of bins. Trailing zero map handles cases of largest binned size */
-  unsigned int     binmap[BINMAPSIZE+1];
-
-  /* Tunable parameters */
-  CHUNK_SIZE_T     trim_threshold;
-  INTERNAL_SIZE_T  top_pad;
-  INTERNAL_SIZE_T  mmap_threshold;
-
-  /* Memory map support */
-  int              n_mmaps;
-  int              n_mmaps_max;
-  int              max_n_mmaps;
-
-  /* Cache malloc_getpagesize */
-  unsigned int     pagesize;  
-
-  /* Canary */
-  char             guard_stored[GUARD_SIZE];
-
-  /* Track properties of MORECORE */
-  unsigned int     morecore_properties;
-
-  /* Statistics */
-  INTERNAL_SIZE_T  mmapped_mem;
-  INTERNAL_SIZE_T  sbrked_mem;
-  INTERNAL_SIZE_T  max_sbrked_mem;
-  INTERNAL_SIZE_T  max_mmapped_mem;
-  INTERNAL_SIZE_T  max_total_mem;
-};
-
-typedef struct malloc_state *mstate;
-
-/* 
-   There is exactly one instance of this struct in this malloc.
-   If you are adapting this malloc in a way that does NOT use a static
-   malloc_state, you MUST explicitly zero-fill it before using. This
-   malloc relies on the property that malloc_state is initialized to
-   all zeroes (as is true of C statics).
-*/
-
-static struct malloc_state * av_ = NULL;  /* never directly referenced */
-
-/*
-   All uses of av_ are via get_malloc_state().
-   At most one "call" to get_malloc_state is made per invocation of
-   the public versions of malloc and free, but other routines
-   that in turn invoke malloc and/or free may call more then once. 
-   Also, it is called in check* routines if DEBUG is set.
-*/
-
-#define get_malloc_state() (av_)
-
-/*
-  Initialize a malloc_state struct.
-
-  This is called only from within malloc_consolidate, which needs
-  be called in the same contexts anyway.  It is never called directly
-  outside of malloc_consolidate because some optimizing compilers try
-  to inline it at all call points, which turns out not to be an
-  optimization at all. (Inlining it in malloc_consolidate is fine though.)
-*/
-
-#if __STD_C
-static void malloc_mmap_state(void)
-#else
-static void malloc_mmap_state()
-#endif
-{
-  int mprot;
-  unsigned long pagesize = malloc_getpagesize;
-  size_t size = (sizeof(struct malloc_state) + pagesize - 1) & ~(pagesize - 1);
-
-  void * foo = MMAP(0, size+(2*pagesize), PROT_READ|PROT_WRITE, MAP_PRIVATE);
-
-
-#ifdef NDEBUG
-   if (foo == MAP_FAILED) {
-      fprintf (stderr, "Couldn't mmap struct malloc_state: %s\n", strerror (errno));
-      abort ();
-   }
-#else
-   assert(foo != MAP_FAILED);
-#endif
-
-   mprot = mprotect(foo, pagesize, PROT_NONE);
-#ifdef NDEBUG
-   if (mprot == -1) {
-     fprintf (stderr, "Couldn't mprotect first non-rw page for struct malloc_state: %s\n",
-	      strerror (errno));
-     abort ();
-   }
-#else
-   assert(mprot != -1);
-#endif
-
-   av_ = (struct malloc_state *) ((char*)foo + pagesize);
-
-   MALLOC_ZERO(av_, sizeof(struct malloc_state));
-
-   mprot = mprotect((void*)((char*)foo + size + pagesize), (size_t) pagesize, PROT_NONE);
-#ifdef NDEBUG
-   if (mprot == -1) {
-     fprintf (stderr, 
-	      "Couldn't mprotect last non-rw page for struct malloc_state: %s\n",
-	      strerror (errno));
-     abort ();
-   }
-#else
-   assert(mprot != -1);
-#endif
-}
-
-#if __STD_C
-static void malloc_init_state(mstate av)
-#else
-static void malloc_init_state(av) mstate av;
-#endif
-{
-  int     i;
-  mbinptr bin;
-
-  void *  morecore_test = MORECORE(0);
-  unsigned long hashval;
-
-  /* Test morecore function 
-   */
-  set_morecore32bit(av);
-
-  if (morecore_test == MORECORE_FAILURE)
-    {
-      set_nonmorecore32bit(av);
-    }
-  else
-    {
-      /* On 64bit systems, the heap may be located above the
-       * 32bit address space. Since mmap() probably still can be
-       * convinced to map within 32bit, we don't use sbrk().
-       */
-      hashval = hash (morecore_test);
-      if (hashval >= AMOUNTHASH) 
-	{
-	  set_nonmorecore32bit(av);
-	}
-    }
-
-  
-  /* Establish circular links for normal bins */
-  for (i = 1; i < NBINS; ++i) { 
-    bin = bin_at(av,i);
-    bin->fd = bin->bk = bin;
-  }
-
-  av->top_pad        = DEFAULT_TOP_PAD;
-  av->n_mmaps_max    = DEFAULT_MMAP_MAX;
-  av->mmap_threshold = DEFAULT_MMAP_THRESHOLD;
-  av->trim_threshold = DEFAULT_TRIM_THRESHOLD;
-
-#if MORECORE_CONTIGUOUS
-  set_contiguous(av);
-#else
-  set_noncontiguous(av);
-#endif
-
-  set_max_fast(av, DEFAULT_MXFAST);
-
-  av->top = cireg_getfree ();
-  av->top->chunk     = (mchunkptr) startheap;
-  av->top->size      = 0;
-  set_previnuse(av->top);
-  clear_inuse(av->top);
-  hashtable[0]       = av->top;
-  av->pagesize       = malloc_getpagesize;
-
-  memcpy(av->guard_stored, dnmalloc_arc4random(), GUARD_SIZE);
-
-}
-
-/* 
-   Other internal utilities operating on mstates
-*/
-
-#if __STD_C
-static Void_t*  sYSMALLOc(INTERNAL_SIZE_T, mstate);
-static int      sYSTRIm(size_t, mstate);
-static void     malloc_consolidate(mstate);
-#else
-static Void_t*  sYSMALLOc();
-static int      sYSTRIm();
-static void     malloc_consolidate();
-#endif
-
-/* dnmalloc functions */
-/* needs mstate so moved here */
-
-static chunkinfoptr
-next_chunkinfo (chunkinfoptr ci)
-{
-   mchunkptr nextp;
-   unsigned long hashval;
-   chunkinfoptr cinfonextp;
-   mstate av = get_malloc_state();
-   
-   /* ci is not the last element in the linked list, just 
-      return the next chunkinfo from the list 
-   */
-   if (!ci->hash_next)
-     {
-       /* ci is the last element, find the next chunkinfo by 
-	* looking up the chunkinfo for the chunk that is after p's chunk 
-	*/
-       nextp = (mchunkptr) (((char *) (ci->chunk)) + chunksize (ci));
-
-       if (!(nextp == av->top->chunk)) 
-	 {
-	   hashval = hash (nextp);
-	   /* assert(hashval < AMOUNTHASH); *//* major bottleneck */
-	   cinfonextp = hashtable[hashval];
-	   if (cinfonextp && chunk (cinfonextp) == nextp)
-	     return cinfonextp; 
-	   
-#ifdef DNMALLOC_CHECKS_EXTRA
-	   /* This seems bogus; a chunkinfo may legally have no nextp if
-	    * it's the last one allocated (?)
-	    */
-	   else {
-	     if (cinfonextp)
-	       fprintf (stderr,
-			"Dnmalloc error: could not find a next chunkinfo for the chunk %p in the hashtable at entry %lu, cinfonextp: %p, chunk(cinfonextp): %p, nextp: %p\n This is definitely a bug, please report it to dnmalloc@fort-knox.org.\n",
-			chunk(ci), hashval, cinfonextp, chunk(cinfonextp), nextp);
-	     else
-	       fprintf (stderr,
-			"Dnmalloc error: could not find a next chunkinfo for the chunk %p in the hashtable at entry %lu, cinfonextp: %s, chunk(cinfonextp): %s, nextp: %p\n This is definitely a bug, please report it to dnmalloc@fort-knox.org.\n",
-			chunk(ci), hashval, "null", "null", nextp);
-	   }
-#endif
-	  
-	   return NULL;
-	 }
-       else
-	 {
-	   return av->top;
-	 }
-
-     }
-   else
-     {
-       return (ci->hash_next);
-     }
-}
-
-static int is_next_chunk(chunkinfoptr oldp, chunkinfoptr newp) {
-	mchunkptr nextp;
-	if (oldp->hash_next == newp)
-		return 1;
-	nextp = (mchunkptr) (((char *) (oldp->chunk)) + chunksize (oldp));
-	if (nextp == chunk(newp))
-		return 1;
-	return 0;
-}
-
-
-
-/* Get the chunkinfo of the physically previous chunk */
-/* Since we disposed of prev_size, we need this function to find the previous */
-
-static chunkinfoptr
-prev_chunkinfo (chunkinfoptr ci)
-{
-   unsigned int i;
-   chunkinfoptr prev;
-   mchunkptr prevchunk = 0;
-   /* chunkinfoptr temp; */
-   
-   /* Get the hashtable location of the chunkinfo */
-   i = hash (chunk (ci));
-   assert(i < AMOUNTHASH); /* rw */
-      
-   /* Get the first element of the linked list of chunkinfo's that contains p */
-   prev = hashtable[i];
-   
-   if (ci == prev) {
-     prevchunk = (mchunkptr) (((char *) (ci->chunk)) - (ci->prev_size));
-     i = hash(prevchunk);
-     assert(i < AMOUNTHASH); /* rw */
-     /* Loop over the linked list until we reach the last element */
-     for (prev = hashtable[i]; prev->hash_next != 0; prev = prev->hash_next) ;
-   } else {
-     /* p is not the first element in the linked list, we can just 
-	loop over the list and return the previous 
-     */
-     for (prev = hashtable[i]; prev->hash_next != ci; prev = prev->hash_next);
-   }
-
-   return prev;  
-}
-
-
-/*
-  Debugging support
-  Dnmalloc broke dlmallocs debugging functions, should fix them some 
-  time in the future, for now leave them undefined.
-*/
-
-#define check_chunk(P)
-#define check_free_chunk(P)
-#define check_inuse_chunk(P)
-#define check_remalloced_chunk(P,N)
-#define check_malloced_chunk(P,N)
-#define check_malloc_state()
-
-
-/* ----------- Routines dealing with system allocation -------------- */
-
-/*
-  sysmalloc handles malloc cases requiring more memory from the system.
-  On entry, it is assumed that av->top does not have enough
-  space to service request for nb bytes, thus requiring that av->top
-  be extended or replaced.
-*/
-
-#if __STD_C
-static Void_t* sYSMALLOc(INTERNAL_SIZE_T nb, mstate av)
-#else
-static Void_t* sYSMALLOc(nb, av) INTERNAL_SIZE_T nb; mstate av;
-#endif
-{
-  chunkinfoptr    old_top;        /* incoming value of av->top */
-  INTERNAL_SIZE_T old_size;       /* its size */
-  char*           old_end;        /* its end address */
-
-  long            size;           /* arg to first MORECORE or mmap call */
-  char*           brk;            /* return value from MORECORE */
-
-  long            correction;     /* arg to 2nd MORECORE call */
-  char*           snd_brk;        /* 2nd return val */
-
-  INTERNAL_SIZE_T front_misalign; /* unusable bytes at front of new space */
-  INTERNAL_SIZE_T end_misalign;   /* partial page left at end of new space */
-  char*           aligned_brk;    /* aligned offset into brk */
-
-  chunkinfoptr    p;              /* the allocated/returned chunk */
-  chunkinfoptr    remainder;      /* remainder from allocation */
-  chunkinfoptr    fencepost;      /* fencepost */
-  CHUNK_SIZE_T    remainder_size; /* its size */
-
-  CHUNK_SIZE_T    sum;            /* for updating stats */
-
-  size_t          pagemask  = av->pagesize - 1;
-
-#ifdef DNMALLOC_DEBUG
-  fprintf(stderr, "Enter sysmalloc\n");
-#endif
-  /*
-    If there is space available in fastbins, consolidate and retry
-    malloc from scratch rather than getting memory from system.  This
-    can occur only if nb is in smallbin range so we didn't consolidate
-    upon entry to malloc. It is much easier to handle this case here
-    than in malloc proper.
-  */
-
-
-  if (have_fastchunks(av)) {
-    Void_t * retval;
-    assert(in_smallbin_range(nb));
-    malloc_consolidate(av);
-#ifdef DNMALLOC_DEBUG
-    fprintf(stderr, "Return sysmalloc have_fastchunks\n");
-#endif
-    retval = mALLOc(nb - MALLOC_ALIGN_MASK);
-    VALGRIND_FREELIKE_BLOCK(retval, 0);
-    return retval;
-  }
-
-
-  /*
-    If have mmap, and the request size meets the mmap threshold, and
-    the system supports mmap, and there are few enough currently
-    allocated mmapped regions, try to directly map this request
-    rather than expanding top.
-  */
-
-  if (UNLIKELY((CHUNK_SIZE_T)(nb) >= (CHUNK_SIZE_T)(av->mmap_threshold) &&
-	       (av->n_mmaps < av->n_mmaps_max))) {
-
-    char* mm;             /* return value from mmap call*/
-
-    /*
-      Round up size to nearest page.  For mmapped chunks, the overhead
-      is one SIZE_SZ unit larger than for normal chunks, because there
-      is no following chunk whose prev_size field could be used.
-    */
-    size = (nb + MALLOC_ALIGN_MASK + pagemask) & ~pagemask;
-
-    /* Don't try if size wraps around 0 */
-    if ((CHUNK_SIZE_T)(size) > (CHUNK_SIZE_T)(nb)) {
-	    
-
-      mm = (char*)(MMAP(0, size, PROT_READ|PROT_WRITE, MAP_PRIVATE));
-      
-      if (mm != (char*)(MORECORE_FAILURE)) {
-        
-	VALGRIND_MAKE_MEM_NOACCESS(mm,size);
-
-        /*
-          The offset to the start of the mmapped region is stored
-          in the prev_size field of the chunk. This allows us to adjust
-          returned start address to meet alignment requirements here 
-          and in memalign(), and still be able to compute proper
-          address argument for later munmap in free() and realloc().
-        */
-        
-        front_misalign = (INTERNAL_SIZE_T) mm & MALLOC_ALIGN_MASK;
-	p = cireg_getfree();
-        
-        if (front_misalign > 0) {
-          correction = MALLOC_ALIGNMENT - front_misalign;
-          p->chunk = (mchunkptr)(mm + correction);
-          p->hash_next = (chunkinfoptr) correction;
-          set_head(p, (size - correction) |INUSE|IS_MMAPPED);
-        }
-        else {
-          p->chunk = (mchunkptr)mm;
-          p->hash_next = 0;
-          set_head(p, size|INUSE|IS_MMAPPED);
-        }
-        hashtable_add(p);
-        /* update statistics */
-        
-        if (++av->n_mmaps > av->max_n_mmaps) 
-          av->max_n_mmaps = av->n_mmaps;
-        
-        sum = av->mmapped_mem += size;
-        if (sum > (CHUNK_SIZE_T)(av->max_mmapped_mem)) 
-          av->max_mmapped_mem = sum;
-        sum += av->sbrked_mem;
-        if (sum > (CHUNK_SIZE_T)(av->max_total_mem)) 
-          av->max_total_mem = sum;
-
-        check_chunk(p);
-        
-#ifdef DNMALLOC_DEBUG
-	fprintf(stderr, "Return mmapped (%lu, total %lu)\n", 
-		size, (unsigned long)/* size_t */av->max_total_mem );
-#endif
-        return chunk(p);
-      }
-    }
-  }
-
-  /* Record incoming configuration of top */
-
-  old_top  = av->top;
-  old_size = chunksize(old_top);
-  old_end  = (char*)(chunk_at_offset(chunk(old_top), old_size));
-
-  brk = snd_brk = (char*)(MORECORE_FAILURE); 
-
-  /* 
-     If not the first time through, we require old_size to be
-     at least MINSIZE and to have prev_inuse set.
-  */
-
-  /* assert((old_top == initial_top(av) && old_size == 0) || 
-	 ((CHUNK_SIZE_T) (old_size) >= MINSIZE &&
-	 prev_inuse(old_top))); */
-
-  /* Precondition: not enough current space to satisfy nb request */
-  assert((CHUNK_SIZE_T)(old_size) < (CHUNK_SIZE_T)(nb + MINSIZE));
-
-  /* Precondition: all fastbins are consolidated */
-  assert(!have_fastchunks(av));
-
-  /* Request enough space for nb + pad + overhead */
-  size = nb + av->top_pad + MINSIZE;
-
-  /*
-    If contiguous, we can subtract out existing space that we hope to
-    combine with new space. We add it back later only if
-    we don't actually get contiguous space.
-  */
-  if (contiguous(av))
-    size -= old_size;
-
-  /*
-    Round to a multiple of page size.
-    If MORECORE is not contiguous, this ensures that we only call it
-    with whole-page arguments.  And if MORECORE is contiguous and
-    this is not first time through, this preserves page-alignment of
-    previous calls. Otherwise, we correct to page-align below.
-  */
-
-  size = (size + pagemask) & ~pagemask;
-
-  /*
-    Don't try to call MORECORE if argument is so big as to appear
-    negative. Note that since mmap takes size_t arg, it may succeed
-    below even if we cannot call MORECORE.
-  */
-  if (size > 0 && morecore32bit(av)) 
-    brk = (char*)(MORECORE(size));
-
-  /*
-    If have mmap, try using it as a backup when MORECORE fails or
-    cannot be used. This is worth doing on systems that have "holes" in
-    address space, so sbrk cannot extend to give contiguous space, but
-    space is available elsewhere.  Note that we ignore mmap max count
-    and threshold limits, since the space will not be used as a
-    segregated mmap region.
-  */
-  if (brk != (char*)(MORECORE_FAILURE)) {
-    av->sbrked_mem += size;
-    VALGRIND_MAKE_MEM_NOACCESS(brk,size);
-  }
-
-  else {
-
-#ifdef DNMALLOC_DEBUG
-    fprintf(stderr, "Morecore failure in sysmalloc\n");
-#endif
-
-    /* Cannot merge with old top, so add its size back in */
-    if (contiguous(av))
-      size = (size + old_size + pagemask) & ~pagemask;
-
-    /* If we are relying on mmap as backup, then use larger units */
-    if ((CHUNK_SIZE_T)(size) < (CHUNK_SIZE_T)(MMAP_AS_MORECORE_SIZE))
-      size = MMAP_AS_MORECORE_SIZE;
-
-    /* Don't try if size wraps around 0 */
-    if ((CHUNK_SIZE_T)(size) > (CHUNK_SIZE_T)(nb)) {
-
-#ifdef DNMALLOC_DEBUG
-      fprintf(stderr, "Try mmap in sysmalloc\n");
-#endif
-      brk = (char*)(MMAP(0, size, PROT_READ|PROT_WRITE, MAP_PRIVATE));
-      
-      if (brk != (char*)(MORECORE_FAILURE)) {
-        
-	VALGRIND_MAKE_MEM_NOACCESS(brk,size);
-
-	av->mmapped_mem += size;
-#ifdef DNMALLOC_DEBUG
-	fprintf(stderr, "Mmapped successfully in sysmalloc %p\n", brk);
-#endif
-
-        /* We do not need, and cannot use, another sbrk call to find end */
-        snd_brk = brk + size;
-        
-        /* 
-           Record that we no longer have a contiguous sbrk region. 
-           After the first time mmap is used as backup, we do not
-           ever rely on contiguous space since this could incorrectly
-           bridge regions.
-        */
-        set_noncontiguous(av);
-      }
-    }
-  }
-
-  if (brk != (char*)(MORECORE_FAILURE)) {
-#ifdef DNMALLOC_DEBUG
-    fprintf(stderr, "Success path %lu allocated, sbrked %lu\n", 
-	    size, (unsigned long)av->sbrked_mem);
-#endif
-    /* av->sbrked_mem += size; moved up */
-
-    /*
-      If MORECORE extends previous space, we can likewise extend top size.
-    */
-    
-    if (brk == old_end && snd_brk == (char*)(MORECORE_FAILURE)) {
-      set_head(old_top, (size + old_size) | PREV_INUSE);
-#ifdef DNMALLOC_DEBUG
-      fprintf(stderr, "Previous space extended\n");
-#endif
-    }
-
-    /*
-      Otherwise, make adjustments:
-      
-      * If the first time through or noncontiguous, we need to call sbrk
-        just to find out where the end of memory lies.
-
-      * We need to ensure that all returned chunks from malloc will meet
-        MALLOC_ALIGNMENT
-
-      * If there was an intervening foreign sbrk, we need to adjust sbrk
-        request size to account for fact that we will not be able to
-        combine new space with existing space in old_top.
-
-      * Almost all systems internally allocate whole pages at a time, in
-        which case we might as well use the whole last page of request.
-        So we allocate enough more memory to hit a page boundary now,
-        which in turn causes future contiguous calls to page-align.
-    */
-    
-    else {
-      /* front_misalign = 0; *//*superfluous */
-      /* end_misalign = 0; *//*superfluous */
-      correction = 0;
-      aligned_brk = brk;
-
-      /*
-        If MORECORE returns an address lower than we have seen before,
-        we know it isn't really contiguous.  This and some subsequent
-        checks help cope with non-conforming MORECORE functions and
-        the presence of "foreign" calls to MORECORE from outside of
-        malloc or by other threads.  We cannot guarantee to detect
-        these in all cases, but cope with the ones we do detect.
-      */
-      if (contiguous(av) && old_size != 0 && brk < old_end) {
-        set_noncontiguous(av);
-      }
-      
-      /* handle contiguous cases */
-      if (contiguous(av)) { 
-
-#ifdef DNMALLOC_DEBUG
-	fprintf(stderr, "Handle contiguous cases\n");
-#endif
-        /* 
-           We can tolerate forward non-contiguities here (usually due
-           to foreign calls) but treat them as part of our space for
-           stats reporting.
-        */
-        if (old_size != 0) 
-          av->sbrked_mem += brk - old_end;
-        
-        /* Guarantee alignment of first new chunk made from this space */
-
-        front_misalign = (INTERNAL_SIZE_T) brk & MALLOC_ALIGN_MASK;
-        if (front_misalign > 0) {
-
-          /*
-            Skip over some bytes to arrive at an aligned position.
-            We don't need to specially mark these wasted front bytes.
-            They will never be accessed anyway because
-            prev_inuse of av->top (and any chunk created from its start)
-            is always true after initialization.
-          */
-
-          correction = MALLOC_ALIGNMENT - front_misalign;
-          aligned_brk += correction;
-        }
-        
-        /*
-          If this isn't adjacent to existing space, then we will not
-          be able to merge with old_top space, so must add to 2nd request.
-        */
-        
-        correction += old_size;
-        
-        /* Extend the end address to hit a page boundary */
-        end_misalign = (INTERNAL_SIZE_T)(brk + size + correction);
-        correction += ((end_misalign + pagemask) & ~pagemask) - end_misalign;
-        
-        assert(correction >= 0);
-        snd_brk = (char*)(MORECORE(correction));
-        
-        if (snd_brk == (char*)(MORECORE_FAILURE)) {
-          /*
-            If can't allocate correction, try to at least find out current
-            brk.  It might be enough to proceed without failing.
-          */
-          correction = 0;
-          snd_brk = (char*)(MORECORE(0));
-        }
-        else if (snd_brk < brk) {
-          /*
-            If the second call gives noncontiguous space even though
-            it says it won't, the only course of action is to ignore
-            results of second call, and conservatively estimate where
-            the first call left us. Also set noncontiguous, so this
-            won't happen again, leaving at most one hole.
-            
-            Note that this check is intrinsically incomplete.  Because
-            MORECORE is allowed to give more space than we ask for,
-            there is no reliable way to detect a noncontiguity
-            producing a forward gap for the second call.
-          */
-          snd_brk = brk + size;
-          correction = 0;
-          set_noncontiguous(av);
-        }
-	else {
-	  VALGRIND_MAKE_MEM_NOACCESS(snd_brk,correction);
-	}
-
-      }
-      
-      /* handle non-contiguous cases */
-      else { 
-
-#ifdef DNMALLOC_DEBUG
-	fprintf(stderr, "Handle non-contiguous cases\n");
-#endif
-
-        /* MORECORE/mmap must correctly align */
-        assert(aligned_OK(brk));
-        
-        /* Find out current end of memory */
-        if (snd_brk == (char*)(MORECORE_FAILURE)) {
-          snd_brk = (char*)(MORECORE(0));
-          av->sbrked_mem += snd_brk - brk - size;
-        }
-#ifdef DNMALLOC_DEBUG
-	fprintf(stderr, "Sbrked now %lu\n", (unsigned long)av->sbrked_mem);
-#endif
-      }
-      
-      /* Adjust top based on results of second sbrk.
-       *
-       * If mmap() has been used as backup for failed morecore(),
-       * we end up in this branch as well.
-       */
-      if (snd_brk != (char*)(MORECORE_FAILURE)) {
-#ifdef DNMALLOC_DEBUG
-	fprintf(stderr, "Adjust top, correction %lu\n", correction);
-#endif
-        /* hashtable_remove(chunk(av->top)); *//* rw 19.05.2008 removed */
-	av->top =  cireg_getfree();
-        av->top->chunk = (mchunkptr)aligned_brk;
-        set_head(av->top, (snd_brk - aligned_brk + correction) | PREV_INUSE);
-#ifdef DNMALLOC_DEBUG
-	fprintf(stderr, "Adjust top, top %p size %lu\n", 
-		av->top, (unsigned long)chunksize(av->top));
-#endif
-        hashtable_add(av->top);
-        av->sbrked_mem += correction;
-     
-        /*
-          If not the first time through, we either have a
-          gap due to foreign sbrk or a non-contiguous region.  Insert a
-          double fencepost at old_top to prevent consolidation with space
-          we don't own. These fenceposts are artificial chunks that are
-          marked as inuse. Original dlmalloc had two of these but too 
-          small to use. To ensure that the linked lists contain a maximum 
-          of 8 elements we only use 1. Inuse is determined by the 
-          current rather than the next chunk anyway.
-        */
-   
-        if (old_size != 0) {
-#ifdef DNMALLOC_DEBUG
-	  fprintf(stderr, "Shrink old_top to insert fenceposts\n");
-#endif
-          /* 
-             Shrink old_top to insert fenceposts, keeping size a
-             multiple of MALLOC_ALIGNMENT. We know there is at least
-             enough space in old_top to do this.
-          */
-#ifdef DNMALLOC_DEBUG
-	  fprintf(stderr, "Adjust top, old_top %p old_size before %lu\n", 
-		  old_top, (unsigned long)old_size);
-#endif
-          old_size = (old_size - 4*SIZE_SZ) & ~MALLOC_ALIGN_MASK;
-          set_head(old_top, old_size | PREV_INUSE);
-#ifdef DNMALLOC_DEBUG
-	  fprintf(stderr, "Adjust top, old_size after %lu\n", 
-		  (unsigned long)old_size);
-#endif
-          
-          /*
-            Note that the following assignments completely overwrite
-            old_top when old_size was previously MINSIZE.  This is
-            intentional. We need the fencepost, even if old_top otherwise gets
-            lost.
-          */
-          /* dnmalloc, we need the fencepost to be 16 bytes, however since 
-	     it's marked inuse it will never be coalesced 
-	  */
-          fencepost = cireg_getfree();
-          fencepost->chunk = (mchunkptr) chunk_at_offset(chunk(old_top), 
-							 old_size);
-          fencepost->size = 16|INUSE|PREV_INUSE;
-          hashtable_add(fencepost);
-          /* 
-             If possible, release the rest, suppressing trimming.
-          */
-          if (old_size >= MINSIZE) {
-            INTERNAL_SIZE_T tt = av->trim_threshold;
-#ifdef DNMALLOC_DEBUG
-	    fprintf(stderr, "Release\n");
-#endif
-            av->trim_threshold = (INTERNAL_SIZE_T)(-1);
-	    set_head(old_top, old_size | PREV_INUSE | INUSE);
-	    guard_set(av->guard_stored, old_top, 0, old_size);
-	    VALGRIND_MALLOCLIKE_BLOCK(chunk(old_top), old_size, 0, 0);
-            fREe(chunk(old_top));
-            av->trim_threshold = tt;
-#ifdef DNMALLOC_DEBUG
-	    fprintf(stderr, "Release done\n");
-#endif
-          }
-
-#ifdef DNMALLOC_DEBUG
-	  fprintf(stderr, "Adjust top, size %lu\n", 
-		  (unsigned long)chunksize(av->top));
-#endif
-
-        } /* fenceposts */
-      } /* adjust top */
-    } /* not extended previous region */
-    
-    /* Update statistics */
-    sum = av->sbrked_mem;
-    if (sum > (CHUNK_SIZE_T)(av->max_sbrked_mem))
-      av->max_sbrked_mem = sum;
-    
-    sum += av->mmapped_mem;
-    if (sum > (CHUNK_SIZE_T)(av->max_total_mem))
-      av->max_total_mem = sum;
-
-    check_malloc_state();
-    
-    /* finally, do the allocation */
-
-    p = av->top;
-    size = chunksize(p);
-    
-#ifdef DNMALLOC_DEBUG
-    fprintf(stderr, "Size: %lu  nb+MINSIZE: %lu\n", 
-	    (CHUNK_SIZE_T)(size), (CHUNK_SIZE_T)(nb + MINSIZE));
-#endif
-
-    /* check that one of the above allocation paths succeeded */
-    if ((CHUNK_SIZE_T)(size) >= (CHUNK_SIZE_T)(nb + MINSIZE)) {
-      remainder_size = size - nb;
-      remainder = cireg_getfree();
-      remainder->chunk = chunk_at_offset(chunk(p), nb);
-      av->top = remainder;
-      set_head(p, nb | PREV_INUSE | INUSE);
-      set_head(remainder, remainder_size | PREV_INUSE);
-      hashtable_insert (p, av->top);
-      check_malloced_chunk(p, nb);
-#ifdef DNMALLOC_DEBUG
-      fprintf(stderr, "Return any (total %lu)\n", 
-	      (unsigned long)/* size_t */av->max_total_mem );
-#endif
-      return chunk(p);
-    }
-
-  }
-
-#ifdef DNMALLOC_DEBUG
-  fprintf(stderr, "Return failed (total %lu)\n", 
-	  (unsigned long)/* size_t */av->max_total_mem );
-#endif
-
-  /* catch all failure paths */
-  MALLOC_FAILURE_ACTION;
-  return 0;
-}
-
-
-
-
-/*
-  sYSTRIm is an inverse of sorts to sYSMALLOc.  It gives memory back
-  to the system (via negative arguments to sbrk) if there is unused
-  memory at the `high' end of the malloc pool. It is called
-  automatically by free() when top space exceeds the trim
-  threshold. It is also called by the public malloc_trim routine.  It
-  returns 1 if it actually released any memory, else 0.
-*/
-
-#if __STD_C
-static int sYSTRIm(size_t pad, mstate av)
-#else
-static int sYSTRIm(pad, av) size_t pad; mstate av;
-#endif
-{
-  long  top_size;        /* Amount of top-most memory */
-  long  extra;           /* Amount to release */
-  long  released;        /* Amount actually released */
-  char* current_brk;     /* address returned by pre-check sbrk call */
-  char* new_brk;         /* address returned by post-check sbrk call */
-  size_t pagesz;
-
-  pagesz = av->pagesize;
-  top_size = chunksize(av->top);
-  
-  /* Release in pagesize units, keeping at least one page */
-  extra = ((top_size - pad - MINSIZE + (pagesz-1)) / pagesz - 1) * pagesz;
-  
-  if (extra > 0) {
-    
-    /*
-      Only proceed if end of memory is where we last set it.
-      This avoids problems if there were foreign sbrk calls.
-    */
-    current_brk = (char*)(MORECORE(0));
-    if (current_brk == (char*)(av->top) + top_size) {
-      
-      /*
-        Attempt to release memory. We ignore MORECORE return value,
-        and instead call again to find out where new end of memory is.
-        This avoids problems if first call releases less than we asked,
-        of if failure somehow altered brk value. (We could still
-        encounter problems if it altered brk in some very bad way,
-        but the only thing we can do is adjust anyway, which will cause
-        some downstream failure.)
-      */
-      
-      MORECORE(-extra);
-      new_brk = (char*)(MORECORE(0));
-      
-      if (new_brk != (char*)MORECORE_FAILURE) {
-        released = (long)(current_brk - new_brk);
-        
-        if (released != 0) {
-          /* Success. Adjust top. */
-          av->sbrked_mem -= released;
-          set_head(av->top, (top_size - released) | PREV_INUSE);
-          check_malloc_state();
-          return 1;
-        }
-      }
-    }
-  }
-  return 0;
-}
-
-/*
-  ------------------------------ malloc ------------------------------
-*/
-
-
-#if __STD_C
-DL_STATIC Void_t* mALLOc(size_t bytes)
-#else
-DL_STATIC   Void_t* mALLOc(bytes) size_t bytes;
-#endif
-{
-  mstate av = get_malloc_state();
-
-  INTERNAL_SIZE_T nb;               /* normalized request size */
-  unsigned int    idx;              /* associated bin index */
-  mbinptr         bin;              /* associated bin */
-  mfastbinptr*    fb;               /* associated fastbin */
-
-  chunkinfoptr       victim;           /* inspected/selected chunk */
-  INTERNAL_SIZE_T size;             /* its size */
-  int             victim_index;     /* its bin index */
-
-  chunkinfoptr       remainder;        /* remainder from a split */
-  CHUNK_SIZE_T    remainder_size;   /* its size */
-
-  unsigned int    block;            /* bit map traverser */
-  unsigned int    bit;              /* bit map traverser */
-  unsigned int    map;              /* current word of binmap */
-
-  chunkinfoptr       fwd;              /* misc temp for linking */
-  chunkinfoptr       bck;              /* misc temp for linking */
-  
-  Void_t*         retval;
-
-  /* chunkinfoptr	  next; */
- 
-
-  /*
-    Convert request size to internal form by adding SIZE_SZ bytes
-    overhead plus possibly more to obtain necessary alignment and/or
-    to obtain a size of at least MINSIZE, the smallest allocatable
-    size. Also, checked_request2size traps (returning 0) request sizes
-    that are so large that they wrap around zero when padded and
-    aligned.
-  */
-#if defined(SH_CUTEST)
-  extern int malloc_count;
-  ++malloc_count;
-#endif
-
-  checked_request2size(bytes, nb);
-
-  /*
-    Bypass search if no frees yet
-   */
-  if (av && have_anychunks(av)) {
-    goto av_initialized;
-  }
-  else {
-    if (!av || av->max_fast == 0) { /* initialization check */
-      malloc_consolidate(av);
-      av = get_malloc_state();
-    }
-    goto use_top;
-  }
-
- av_initialized:
-
-  /*
-    If the size qualifies as a fastbin, first check corresponding bin.
-  */
-  if ((CHUNK_SIZE_T)(nb) <= (CHUNK_SIZE_T)(av->max_fast)) {
-    fb = &(av->fastbins[(fastbin_index(nb))]);
-    if ( (victim = *fb) != 0) {
-      *fb = victim->fd;
-      check_remalloced_chunk(victim, nb);
-      guard_set(av->guard_stored, victim, bytes, nb);
-      VALGRIND_MALLOCLIKE_BLOCK(chunk(victim), bytes, 0, 0);
-      return chunk(victim);
-    }
-  }
-
-  /*
-    If a small request, check regular bin.  Since these "smallbins"
-    hold one size each, no searching within bins is necessary.
-    (For a large request, we need to wait until unsorted chunks are
-    processed to find best fit. But for small ones, fits are exact
-    anyway, so we can check now, which is faster.)
-  */
-
-  if (in_smallbin_range(nb)) {
-    idx = smallbin_index(nb);
-    bin = bin_at(av,idx);
-
-    if ((victim = last(bin)) != bin) {
-      bck = victim->bk;
-      bin->bk = bck;
-      bck->fd = bin;
-
-      set_all_inuse(victim);
-            
-      check_malloced_chunk(victim, nb);
-      guard_set(av->guard_stored, victim, bytes, nb);
-      VALGRIND_MALLOCLIKE_BLOCK(chunk(victim), bytes, 0, 0);
-      return chunk(victim);
-    }
-  }
-
-  /* 
-     If this is a large request, consolidate fastbins before continuing.
-     While it might look excessive to kill all fastbins before
-     even seeing if there is space available, this avoids
-     fragmentation problems normally associated with fastbins.
-     Also, in practice, programs tend to have runs of either small or
-     large requests, but less often mixtures, so consolidation is not 
-     invoked all that often in most programs. And the programs that
-     it is called frequently in otherwise tend to fragment.
-  */
-
-  else {
-    idx = largebin_index(nb);
-    if (have_fastchunks(av)) 
-      malloc_consolidate(av);
-  }
-
-  /*
-    Process recently freed or remaindered chunks, taking one only if
-    it is exact fit, or, if this a small request, the chunk is remainder from
-    the most recent non-exact fit.  Place other traversed chunks in
-    bins.  Note that this step is the only place in any routine where
-    chunks are placed in bins.
-  */
-    
-  while ( (victim = unsorted_chunks(av)->bk) != unsorted_chunks(av)) {
-    bck = victim->bk;
-    size = chunksize(victim);
-    
-    /* 
-       If a small request, try to use last remainder if it is the
-       only chunk in unsorted bin.  This helps promote locality for
-       runs of consecutive small requests. This is the only
-       exception to best-fit, and applies only when there is
-       no exact fit for a small chunk.
-    */
-    
-    if (UNLIKELY(in_smallbin_range(nb) && 
-		 bck == unsorted_chunks(av) &&
-		 victim == av->last_remainder &&
-		 (CHUNK_SIZE_T)(size) > (CHUNK_SIZE_T)(nb + MINSIZE))) {
-      
-      /* split and reattach remainder */
-      remainder_size = size - nb;
-      remainder = cireg_getfree();
-      remainder->chunk = chunk_at_offset(chunk(victim), nb);
-      unsorted_chunks(av)->bk = unsorted_chunks(av)->fd = remainder;
-      av->last_remainder = remainder; 
-      remainder->bk = remainder->fd = unsorted_chunks(av);
-      
-      set_head(victim, nb | PREV_INUSE|INUSE);
-      set_head(remainder, remainder_size | PREV_INUSE);      
-      hashtable_insert(victim, remainder);
-
-      check_malloced_chunk(victim, nb);
-      guard_set(av->guard_stored, victim, bytes, nb);
-      VALGRIND_MALLOCLIKE_BLOCK(chunk(victim), bytes, 0, 0);
-      return chunk(victim);
-    }
-    
-    /* remove from unsorted list */
-    unsorted_chunks(av)->bk = bck;
-    bck->fd = unsorted_chunks(av);
-    
-    /* Take now instead of binning if exact fit */
-    
-    if (UNLIKELY(size == nb)) {
-      set_all_inuse(victim)
-      check_malloced_chunk(victim, nb);
-      guard_set(av->guard_stored, victim, bytes, nb);
-      VALGRIND_MALLOCLIKE_BLOCK(chunk(victim), bytes, 0, 0);
-      return chunk(victim);
-    }
-    
-    /* place chunk in bin */
-    
-    if (in_smallbin_range(size)) {
-
-      victim_index = smallbin_index(size);
-      bck = bin_at(av, victim_index);
-      fwd = bck->fd;
-    }
-    else {
-      victim_index = largebin_index(size);
-      bck = bin_at(av, victim_index);
-      fwd = bck->fd;
-      
-      if (UNLIKELY(fwd != bck)) {
-        /* if smaller than smallest, place first */
-        if ((CHUNK_SIZE_T)(size) < (CHUNK_SIZE_T)(bck->bk->size)) {
-          fwd = bck;
-          bck = bck->bk;
-        }
-        else if ((CHUNK_SIZE_T)(size) >= 
-                 (CHUNK_SIZE_T)(FIRST_SORTED_BIN_SIZE)) {
-          
-          /* maintain large bins in sorted order */
-          size |= PREV_INUSE|INUSE; /* Or with inuse bits to speed comparisons */
-          while ((CHUNK_SIZE_T)(size) < (CHUNK_SIZE_T)(fwd->size)) 
-            fwd = fwd->fd;
-          bck = fwd->bk;
-        }
-      }
-    }
-
-    mark_bin(av, victim_index);
-    victim->bk = bck;
-    victim->fd = fwd;
-    fwd->bk = victim;
-    bck->fd = victim;
-  }
-  
-  /*
-    If a large request, scan through the chunks of current bin to
-    find one that fits.  (This will be the smallest that fits unless
-    FIRST_SORTED_BIN_SIZE has been changed from default.)  This is
-    the only step where an unbounded number of chunks might be
-    scanned without doing anything useful with them. However the
-    lists tend to be short.
-  */
-
-  if (!in_smallbin_range(nb)) {
-    bin = bin_at(av, idx);
-    
-    victim = last(bin);
-
-    if (UNLIKELY(victim != bin)) {
-
-      do {
-	size = chunksize(victim);
-      
-	if ((CHUNK_SIZE_T)(size) >= (CHUNK_SIZE_T)(nb)) {
-	  remainder_size = size - nb;
-	  unlink(victim, bck, fwd);
-        
-	  /* Split */
-	  if (remainder_size >= MINSIZE) {
-	    remainder = cireg_getfree();
-	    remainder->chunk = chunk_at_offset(chunk(victim), nb);
-	    unsorted_chunks(av)->bk = unsorted_chunks(av)->fd = remainder;
-	    remainder->bk = remainder->fd = unsorted_chunks(av);
-	    set_head(victim, nb | PREV_INUSE | INUSE);
-	    set_head(remainder, remainder_size | PREV_INUSE);
-	    hashtable_insert(victim, remainder);
-	    check_malloced_chunk(victim, nb);
-	    guard_set(av->guard_stored, victim, bytes, nb);
-	    VALGRIND_MALLOCLIKE_BLOCK(chunk(victim), bytes, 0, 0);
-	    return chunk(victim);
-	  } 
-	  /* Exhaust */
-	  else  {
-	    set_all_inuse(victim);
-	    check_malloced_chunk(victim, nb);
-	    guard_set(av->guard_stored, victim, bytes, nb);
-	    VALGRIND_MALLOCLIKE_BLOCK(chunk(victim), bytes, 0, 0);
-	    return chunk(victim);
-	  }
-	}
-	victim = victim->bk;
-      } while(victim != bin);
-    }
-  }
-
-  /*
-    Search for a chunk by scanning bins, starting with next largest
-    bin. This search is strictly by best-fit; i.e., the smallest
-    (with ties going to approximately the least recently used) chunk
-    that fits is selected.
-    
-    The bitmap avoids needing to check that most blocks are nonempty.
-  */
-    
-
-  ++idx;
-  bin = bin_at(av,idx);
-  block = idx2block(idx);
-  map = av->binmap[block];
-  bit = idx2bit(idx);
-  
-  for (;;) {
-    
-    /* Skip rest of block if there are no more set bits in this block.  */
-    if (bit > map || bit == 0) {
-      do {
-        if (++block >= BINMAPSIZE)  /* out of bins */
-          goto use_top;
-      } while ( (map = av->binmap[block]) == 0);
-      
-      bin = bin_at(av, (block << BINMAPSHIFT));
-      bit = 1;
-    }
-    
-    /* Advance to bin with set bit. There must be one. */
-    while ((bit & map) == 0) {
-      bin = next_bin(bin);
-      bit <<= 1;
-      assert(bit != 0);
-    }
-    
-    /* Inspect the bin. It is likely to be non-empty */
-    victim = last(bin);
-    
-    /*  If a false alarm (empty bin), clear the bit. */
-    if (victim == bin) {
-      av->binmap[block] = map &= ~bit; /* Write through */
-      bin = next_bin(bin);
-      bit <<= 1;
-    }
-    
-    else {
-      size = chunksize(victim);
-      
-      /*  We know the first chunk in this bin is big enough to use. */
-      assert((CHUNK_SIZE_T)(size) >= (CHUNK_SIZE_T)(nb));
-      
-      remainder_size = size - nb;
-      
-      /* unlink */
-      bck = victim->bk;
-      bin->bk = bck;
-      bck->fd = bin;
-      
-      /* Split */
-      if (remainder_size >= MINSIZE) {
-        remainder = cireg_getfree();
-        remainder->chunk = chunk_at_offset(chunk(victim), nb);
-        
-        unsorted_chunks(av)->bk = unsorted_chunks(av)->fd = remainder;
-        remainder->bk = remainder->fd = unsorted_chunks(av);
-        /* advertise as last remainder */
-        if (in_smallbin_range(nb))
-	  av->last_remainder = remainder;
-        
-        set_head(victim, nb | PREV_INUSE | INUSE);
-        set_head(remainder, remainder_size | PREV_INUSE);
-        hashtable_insert(victim, remainder);
-        check_malloced_chunk(victim, nb);
-	guard_set(av->guard_stored, victim, bytes, nb);
-	VALGRIND_MALLOCLIKE_BLOCK(chunk(victim), bytes, 0, 0);
-        return chunk(victim);
-      }
-      /* Exhaust */
-      else {
-        set_all_inuse(victim);
-        check_malloced_chunk(victim, nb);
-	guard_set(av->guard_stored, victim, bytes, nb);
-	VALGRIND_MALLOCLIKE_BLOCK(chunk(victim), bytes, 0, 0);
-        return chunk(victim);
-      }
-      
-    }
-  }
-
-  use_top:
-   
-
-  /*
-    If large enough, split off the chunk bordering the end of memory
-    (held in av->top). Note that this is in accord with the best-fit
-    search rule.  In effect, av->top is treated as larger (and thus
-    less well fitting) than any other available chunk since it can
-    be extended to be as large as necessary (up to system
-    limitations).
-    
-    We require that av->top always exists (i.e., has size >=
-    MINSIZE) after initialization, so if it would otherwise be
-    exhuasted by current request, it is replenished. (The main
-    reason for ensuring it exists is that we may need MINSIZE space
-    to put in fenceposts in sysmalloc.)
-  */
-  
-  victim = av->top;
-  size = chunksize(victim);
-  
-  if ((CHUNK_SIZE_T)(size) >= (CHUNK_SIZE_T)(nb + MINSIZE)) {
-    remainder = cireg_getfree();
-    remainder_size = size - nb;
-    remainder->chunk = chunk_at_offset(chunk(victim), nb);
-    av->top = remainder;
-    set_head(victim, nb | PREV_INUSE | INUSE);
-    set_head(remainder, remainder_size | PREV_INUSE);
-    hashtable_insert(victim, remainder);
-    check_malloced_chunk(victim, nb);
-    guard_set(av->guard_stored, victim, bytes, nb);
-    VALGRIND_MALLOCLIKE_BLOCK(chunk(victim), bytes, 0, 0);
-    return chunk(victim);
-  }
-  
-  /* 
-     If no space in top, relay to handle system-dependent cases 
-  */
-  retval = sYSMALLOc(nb, av);
-  if (retval) {
-#if PARANOIA > 2
-    victim = mem2chunk(retval); /* is used in guard_set macro */
-#endif
-    guard_set(av->guard_stored, victim, bytes, nb);
-  }
-  VALGRIND_MALLOCLIKE_BLOCK(retval, bytes, 0, 0);
-  return retval;
-}
-
-/*
-  ------------------------------ free ------------------------------
-*/
-
-#if __STD_C
-DL_STATIC void fREe(Void_t* mem)
-#else
-DL_STATIC void fREe(mem) Void_t* mem;
-#endif
-{
-  mstate av = get_malloc_state();
-
-  chunkinfoptr       p;           /* chunk corresponding to mem */
-  INTERNAL_SIZE_T size;        /* its size */
-  mfastbinptr*    fb;          /* associated fastbin */
-  chunkinfoptr       prevchunk;   /* previous physical chunk */
-  chunkinfoptr       nextchunk;   /* next contiguous chunk */
-  INTERNAL_SIZE_T nextsize;    /* its size */
-  INTERNAL_SIZE_T prevsize;    /* size of previous contiguous chunk */
-  chunkinfoptr       bck;         /* misc temp for linking */
-  chunkinfoptr       fwd;         /* misc temp for linking */
-  chunkinfoptr	     next;
-#if defined(SH_CUTEST)
-  extern int malloc_count;
-  --malloc_count;
-#endif
-
-  /* free(0) has no effect */
-  if (mem != 0) {
-    p = hashtable_lookup(mem);
-    /* check that memory is managed by us 
-     * and is inuse 
-     */
-    if (UNLIKELY(!p || !inuse(p))) 
-      {
-#ifdef DNMALLOC_CHECKS
-	if (p) {
-	  fprintf(stderr, "Attempt to free memory not in use\n");
-	  abort();
-	} else {
-	  fprintf(stderr, "Attempt to free memory not allocated\n");
-	  abort();
-	}
-#endif
-	assert(p && inuse(p));
-	return;
-      }
-
-    VALGRIND_FREELIKE_BLOCK(mem, 0);
- 
-    guard_check(av->guard_stored, p);
-    
-    size = chunksize(p);
-
-    check_inuse_chunk(p);
-
-    /*
-      If eligible, place chunk on a fastbin so it can be found
-      and used quickly in malloc.
-    */
-
-    if ((CHUNK_SIZE_T)(size) <= (CHUNK_SIZE_T)(av->max_fast)
-
-#if TRIM_FASTBINS
-        /* 
-           If TRIM_FASTBINS set, don't place chunks
-           bordering top into fastbins
-        */
-        && (chunk_at_offset(chunk(p), size) != av->top)
-#endif
-        ) {
-
-      set_fastchunks(av);
-      fb = &(av->fastbins[fastbin_index(size)]);
-      p->fd = *fb;
-      *fb = p;
-    }
-
-    /*
-       Consolidate other non-mmapped chunks as they arrive.
-    */
-
-    else if (!chunk_is_mmapped(p)) {
-      set_anychunks(av);
-
-      nextchunk = next_chunkinfo(p);
-      if (nextchunk)
-	nextsize = chunksize(nextchunk);
-      else
-	nextsize = 0;/* gcc doesn't notice that it's only used if (nextchunk)*/
-
-      /* consolidate backward */
-      if (UNLIKELY(!prev_inuse(p))) {
-        prevchunk = prev_chunkinfo(p);
-        prevsize = chunksize(prevchunk);
-#ifdef DNMALLOC_CHECKS
-	if (inuse(prevchunk)) {
-		fprintf(stderr, "Dnmalloc error: trying to unlink an inuse chunk: %p (chunk: %p)\n This is definitely a bug, please report it to dnmalloc@fort-knox.org.\n", prevchunk, chunk(prevchunk));
-		abort();
-	}
-#else
-	assert(!inuse(prevchunk));
-#endif
-        size += prevsize;
-        unlink(prevchunk, bck, fwd);
-	set_head(p, size | PREV_INUSE);
-        hashtable_skiprm(prevchunk,p);
-        /* This chunk no longer exists in any form: release the chunkinfoptr 
-	 */
-        freecilst_add(p);
-        p = prevchunk;
-      }
-
-      if (nextchunk) {
-	if (nextchunk != av->top) {
-	  /* get and clear inuse bit */
-	  clear_previnuse(nextchunk);
-	  
-	  /* consolidate forward */
-	  if (!inuse(nextchunk)) {
-	    /* if mmap is used instead of sbrk, we may have a
-	     * chunk with !nextchunk->fd && !nextchunk->bk
-	     */
-	    if (nextchunk->fd && nextchunk->fd)
-	      {
-		unlink(nextchunk, bck, fwd);
-		size += nextsize;
-		set_head(p, size | PREV_INUSE);
-		hashtable_skiprm(p, nextchunk);
-		freecilst_add (nextchunk);
-	      }
-	  }
-	  
-	  set_head(p, size | PREV_INUSE);
-	  next = next_chunkinfo(p);
-	  if (next)
-	    next->prev_size = size;
-	  
-	  /*
-	    Place the chunk in unsorted chunk list. Chunks are
-	    not placed into regular bins until after they have
-	    been given one chance to be used in malloc.
-	  */
-	  
-	  bck = unsorted_chunks(av);
-	  fwd = bck->fd;
-	  p->bk = bck;
-	  p->fd = fwd;
-	  bck->fd = p;
-	  fwd->bk = p;
-	  
-	  nextchunk = next_chunkinfo(p);
-	  if (nextchunk)
-	    nextchunk->prev_size = chunksize(p);	
-	  
-	  check_free_chunk(p);
-	}
-	
-	/*
-	  If the chunk borders the current high end of memory,
-	  consolidate into top
-	*/
-	
-	else {
-	  size += nextsize;
-	  set_head(p, size | PREV_INUSE);
-	  hashtable_remove(chunk(av->top));
-	  freecilst_add(av->top);
-	  av->top = p;
-	  check_chunk(p);
-	}
-      } /* if (nextchunk) */
-
-      /*
-        If freeing a large space, consolidate possibly-surrounding
-        chunks. Then, if the total unused topmost memory exceeds trim
-        threshold, ask malloc_trim to reduce top.
-
-        Unless max_fast is 0, we don't know if there are fastbins
-        bordering top, so we cannot tell for sure whether threshold
-        has been reached unless fastbins are consolidated.  But we
-        don't want to consolidate on each free.  As a compromise,
-        consolidation is performed if FASTBIN_CONSOLIDATION_THRESHOLD
-        is reached.
-      */
-
-      if (UNLIKELY((CHUNK_SIZE_T)(size) >= FASTBIN_CONSOLIDATION_THRESHOLD)) { 
-        if (have_fastchunks(av)) 
-          malloc_consolidate(av);
-
-#ifndef MORECORE_CANNOT_TRIM        
-        if ((CHUNK_SIZE_T)(chunksize(av->top)) >= 
-            (CHUNK_SIZE_T)(av->trim_threshold))
-	  {
-	    if (morecore32bit(av))
-	      {
-#ifdef DNMALLOC_DEBUG
-		fprintf(stderr, "Calling systrim from free()\n");
-#endif
-		sYSTRIm(av->top_pad, av);
-#ifdef DNMALLOC_DEBUG
-		fprintf(stderr, "Systrim done\n");
-#endif
-	      }
-	  }
-#endif
-      }
-
-    }
-    /*
-      If the chunk was allocated via mmap, release via munmap()
-      Note that if HAVE_MMAP is false but chunk_is_mmapped is
-      true, then user must have overwritten memory. There's nothing
-      we can do to catch this error unless DEBUG is set, in which case
-      check_inuse_chunk (above) will have triggered error.
-    */
-
-    else {
-#if  PARANOIA > 0
-      int ret;
-#endif
-      INTERNAL_SIZE_T offset = (INTERNAL_SIZE_T) p->hash_next;
-      av->n_mmaps--;
-      av->mmapped_mem -= (size + offset);
-#if  PARANOIA > 0
-      ret = munmap((char*) chunk(p) - offset, size + offset);
-#else
-      munmap((char*) chunk(p) - offset, size + offset);
-#endif
-      hashtable_remove_mmapped(chunk(p));
-      freecilst_add(p);
-      /* munmap returns non-zero on failure */
-      assert(ret == 0);
-    }
-  }
-}
-
-/*
-  ------------------------- malloc_consolidate -------------------------
-
-  malloc_consolidate is a specialized version of free() that tears
-  down chunks held in fastbins.  Free itself cannot be used for this
-  purpose since, among other things, it might place chunks back onto
-  fastbins.  So, instead, we need to use a minor variant of the same
-  code.
-  
-  Also, because this routine needs to be called the first time through
-  malloc anyway, it turns out to be the perfect place to trigger
-  initialization code.
-*/
-
-#if __STD_C
-static void malloc_consolidate(mstate av)
-#else
-static void malloc_consolidate(av) mstate av;
-#endif
-{
-  mfastbinptr*    fb;                 /* current fastbin being consolidated */
-  mfastbinptr*    maxfb;              /* last fastbin (for loop control) */
-  chunkinfoptr       p;                  /* current chunk being consolidated */
-  chunkinfoptr       nextp;              /* next chunk to consolidate */
-  chunkinfoptr       prevp;
-  chunkinfoptr       unsorted_bin;       /* bin header */
-  chunkinfoptr       first_unsorted;     /* chunk to link to */
-
-  /* These have same use as in free() */
-  chunkinfoptr       nextchunk;
-  INTERNAL_SIZE_T size;
-  INTERNAL_SIZE_T nextsize;
-  INTERNAL_SIZE_T prevsize;
-  chunkinfoptr       bck;
-  chunkinfoptr       fwd;
-  chunkinfoptr	     next;
- 
-  /*
-    If max_fast is 0, we know that av hasn't
-    yet been initialized, in which case do so below
-  */
-  if (av && av->max_fast != 0) {
-
-    clear_fastchunks(av);
-
-    unsorted_bin = unsorted_chunks(av);
-
-    /*
-      Remove each chunk from fast bin and consolidate it, placing it
-      then in unsorted bin. Among other reasons for doing this,
-      placing in unsorted bin avoids needing to calculate actual bins
-      until malloc is sure that chunks aren't immediately going to be
-      reused anyway.
-    */
-    
-    maxfb = &(av->fastbins[fastbin_index(av->max_fast)]);
-    fb = &(av->fastbins[0]);
-    do {
-      if ( UNLIKELY((p = *fb) != 0)) {
-        *fb = 0;
-	do {
-          check_inuse_chunk(p);
-          nextp = p->fd;
-          
-          /*
-	   * Slightly streamlined version of consolidation code in free() 
-	   */
-
-          size = chunksize(p);
-          nextchunk = next_chunkinfo(p);
-
-	  /* gcc doesn't notice that it's only used if (nextchunk) */
-	  if (nextchunk)
-	    nextsize = chunksize(nextchunk);
-	  else
-	    nextsize = 0; 
-          
-	  if (!prev_inuse(p)) {
-             prevp = prev_chunkinfo(p);
-             prevsize = chunksize(prevp);
-             size += prevsize;
-#ifdef DNMALLOC_CHECKS
-	     if (inuse(prevp)) {
-		fprintf(stderr, "Dnmalloc error: trying to unlink an inuse chunk (2): %p (chunk: %p)\n This is definitely a bug, please report it to dnmalloc@fort-knox.org.\n", prevp, chunk(prevp));
-		     abort();
-	     }
-#else
-	     assert(!inuse(prevp));
-#endif
-             unlink(prevp, bck, fwd);
-             set_head(p, size | PREV_INUSE);	     
-             hashtable_skiprm(prevp,p);
-             freecilst_add(p);
-             p=prevp;
-          }
-          
-	  if (nextchunk) {
-	    if (nextchunk != av->top) {
-
-	      clear_previnuse(nextchunk);
-            
-	      /* if mmap is used instead of sbrk, we may have a
-	       * chunk with !nextchunk->fd && !nextchunk->bk
-	       */
-	      if (!inuse(nextchunk)) {
-		if( nextchunk->fd && nextchunk->bk) {
-		  size += nextsize;
-		  unlink(nextchunk, bck, fwd);
-		  set_head(p, size | PREV_INUSE);
-		  hashtable_skiprm(p,nextchunk);
-		  freecilst_add(nextchunk);
-		}
-	      }
-	      
-	      first_unsorted = unsorted_bin->fd;
-	      unsorted_bin->fd = p;
-	      first_unsorted->bk = p;
-	      
-	      set_head(p, size | PREV_INUSE);
-	      p->bk = unsorted_bin;
-	      p->fd = first_unsorted;
-	      next = next_chunkinfo(p);
-	      if (next)
-	    	next->prev_size = size;
-
-            
-	    }
-          
-	    else if (nextchunk == av->top) {
-	      size += nextsize;
-	      set_head(p, size | PREV_INUSE);
-	      hashtable_remove(chunk(av->top));
-	      freecilst_add(av->top);
-	      av->top = p;
-	    }
-	  } /* if (nextchunk) */
-          
-        } while ( (p = nextp) != 0);
-        
-      }
-    } while (fb++ != maxfb);
-  }
-  else {
-    /* Initialize dnmalloc */
-    dnmalloc_init();
-    malloc_init_state(get_malloc_state());
-    check_malloc_state();
-  }
-}
-
-/*
-  ------------------------------ realloc ------------------------------
-*/
-
-
-#if __STD_C
-DL_STATIC Void_t* rEALLOc(Void_t* oldmem, size_t bytes)
-#else
-DL_STATIC Void_t* rEALLOc(oldmem, bytes) Void_t* oldmem; size_t bytes;
-#endif
-{
-  mstate av = get_malloc_state();
-
-  INTERNAL_SIZE_T  nb;              /* padded request size */
-
-  chunkinfoptr        oldp;            /* chunk corresponding to oldmem */
-  INTERNAL_SIZE_T  oldsize;         /* its size */
-
-  chunkinfoptr        newp;            /* chunk to return */
-  INTERNAL_SIZE_T  newsize;         /* its size */
-  Void_t*          newmem;          /* corresponding user mem */
-
-  chunkinfoptr        next;            /* next contiguous chunk after oldp */
-
-  chunkinfoptr        remainder;       /* extra space at end of newp */
-  CHUNK_SIZE_T     remainder_size;  /* its size */
-
-  chunkinfoptr        bck;             /* misc temp for linking */
-  chunkinfoptr        fwd;             /* misc temp for linking */
-
-  CHUNK_SIZE_T     copysize;        /* bytes to copy */
-  unsigned int     ncopies;         /* INTERNAL_SIZE_T words to copy */
-  INTERNAL_SIZE_T* s;               /* copy source */ 
-  INTERNAL_SIZE_T* d;               /* copy destination */
-
-  
-#ifdef REALLOC_ZERO_BYTES_FREES
-  if (UNLIKELY(bytes == 0)) {
-    fREe(oldmem);
-    return 0;
-  }
-#endif
-
-  if (UNLIKELY(!av || av->max_fast == 0)) {
-    malloc_consolidate(av);
-    av = get_malloc_state();
-  }
-
-  /* realloc of null is supposed to be same as malloc */
-  if (UNLIKELY(oldmem == 0)) 
-    return mALLOc(bytes);
-
-  checked_request2size(bytes, nb);
-
-  oldp    = hashtable_lookup(oldmem);
-  
-  if (UNLIKELY(!oldp || !inuse(oldp))){ 
-     /* attempt to either realloc memory not managed by us 
-      * or memory that is not in use 
-      */
-#ifdef DNMALLOC_CHECKS
-    if (oldp) {
-      fprintf(stderr, "Attempt to free memory not in use\n");
-      abort();
-    } else {
-      fprintf(stderr, "Attempt to free memory not allocated\n");
-      abort();
-    }
-#endif
-    assert(oldp && inuse(oldp));
-    return 0;     
-  }
-
-  VALGRIND_FREELIKE_BLOCK(oldmem, 0);
-  guard_check(av->guard_stored, oldp);
-
-  oldsize = chunksize(oldp);
-
-  check_inuse_chunk(oldp);
-
-  if (!chunk_is_mmapped(oldp)) {
-
-    if (UNLIKELY((CHUNK_SIZE_T)(oldsize) >= (CHUNK_SIZE_T)(nb))) {
-      /* already big enough; split below */
-      newp    = oldp;
-      newsize = oldsize;
-    }
-
-    else {
-      next = next_chunkinfo(oldp);
-      if (next)
-      	next->prev_size = oldsize;
-      /* Try to expand forward into top */
-      if (next && next == av->top &&
-          (CHUNK_SIZE_T)(newsize = oldsize + chunksize(next)) >=
-          (CHUNK_SIZE_T)(nb + MINSIZE)) {
-         set_head_size(oldp, nb);
-         hashtable_remove(chunk(av->top));
-         av->top->chunk = chunk_at_offset(chunk(oldp), nb);
-         set_head(av->top, (newsize - nb) | PREV_INUSE);
-         /* av->top->chunk has been moved move in hashtable */
-         hashtable_insert(oldp, av->top);
-	 guard_set(av->guard_stored, oldp, bytes, nb);
-	 VALGRIND_MALLOCLIKE_BLOCK(chunk(oldp), bytes, 0, 0); 
-         return chunk(oldp);
-      }
-      
-      /* Try to expand forward into next chunk;  split off remainder below */
-      else if (next && next != av->top && 
-               !inuse(next) &&
-               (CHUNK_SIZE_T)(newsize = oldsize + chunksize(next)) >=
-               (CHUNK_SIZE_T)(nb)) {
-        newp = oldp;
-        unlink(next, bck, fwd);
-        hashtable_remove(chunk(next));
-        freecilst_add(next);
-	next = next_chunkinfo(oldp);
-	if (next)
-	  next->prev_size = newsize;
-      }
-
-      /* allocate, copy, free */
-      else {
-
-        newmem = mALLOc(nb - MALLOC_ALIGN_MASK);
-         if (newmem == 0)
-          return 0; /* propagate failure */
-
-        newp = hashtable_lookup(newmem);
-        newsize = chunksize(newp);
-	
- 
-        /* next = next_chunkinfo(oldp); *//* 'next' never used rw 19.05.2008 */
-        /*
-          Avoid copy if newp is next chunk after oldp.
-        */
-	if (UNLIKELY(is_next_chunk(oldp, newp))) {
-	  newsize += oldsize;
-	  set_head_size(oldp, newsize);
-	  hashtable_skiprm(oldp, newp);
-	  freecilst_add(newp);	  
-          newp = oldp;
-        }
-        else {
-          /*
-            Unroll copy of <= 40 bytes (80 if 8byte sizes)
-            We know that contents have an even number of
-            INTERNAL_SIZE_T-sized words; minimally 4 (2 on amd64).
-          */
-          
-	  VALGRIND_MALLOCLIKE_BLOCK(chunk(oldp), chunksize(oldp), 0, 0);
-
-          copysize = oldsize;
-          s = (INTERNAL_SIZE_T*)(oldmem);
-          d = (INTERNAL_SIZE_T*)(newmem);
-          ncopies = copysize / sizeof(INTERNAL_SIZE_T);
-          assert(ncopies >= 2);
-          
-          if (ncopies > 10)
-            MALLOC_COPY(d, s, copysize);
-          
-          else {
-            *(d+0) = *(s+0);
-            *(d+1) = *(s+1);
-	    if (ncopies > 2) {
-	      *(d+2) = *(s+2);
-	      *(d+3) = *(s+3);
-	      if (ncopies > 4) {
-		*(d+4) = *(s+4);
-		*(d+5) = *(s+5);
-		if (ncopies > 6) {
-		  *(d+6) = *(s+6);
-		  *(d+7) = *(s+7);
-		  if (ncopies > 8) {
-		    *(d+8) = *(s+8);
-		    *(d+9) = *(s+9);
-		  }
-                }
-              }
-            }
-          }
-          
-          fREe(oldmem);
-          check_inuse_chunk(newp);
-	  guard_set(av->guard_stored, newp, bytes, nb);
-          return chunk(newp);
-        }
-      }
-    }
-
-    /* If possible, free extra space in old or extended chunk */
-
-    assert((CHUNK_SIZE_T)(newsize) >= (CHUNK_SIZE_T)(nb));
-
-    remainder_size = newsize - nb;
-
-    if (remainder_size >= MINSIZE) { /* split remainder */
-      remainder = cireg_getfree();
-      remainder->chunk = chunk_at_offset(chunk(newp), nb);
-      set_head_size(newp, nb);
-      set_head(remainder, remainder_size | PREV_INUSE | INUSE);
-      remainder->prev_size = nb;
-      hashtable_insert(newp, remainder);
-      /* Mark remainder as inuse so free() won't complain */
-      set_all_inuse(remainder);
-      guard_set(av->guard_stored, remainder, 0, remainder_size);
-      VALGRIND_MALLOCLIKE_BLOCK(chunk(remainder), remainder_size, 0, 0);
-      fREe(chunk(remainder)); 
-    }
-    else { /* not enough extra to split off */
-      set_head_size(newp, newsize);
-      set_all_inuse(newp);
-    }
-
-    check_inuse_chunk(newp);
-    guard_set(av->guard_stored, newp, bytes, nb);
-    VALGRIND_MALLOCLIKE_BLOCK(chunk(newp), bytes, 0, 0);
-    return chunk(newp);
-  }
-
-  /*
-    Handle mmap cases
-  */
-
-  else {
-
-#if HAVE_MREMAP
-    INTERNAL_SIZE_T offset = (INTERNAL_SIZE_T) oldp->hash_next;
-    size_t pagemask = av->pagesize - 1;
-    char *cp;
-    CHUNK_SIZE_T  sum;
-    
-
-    /* Note the extra SIZE_SZ overhead */
-    /* newsize = (nb + offset + SIZE_SZ + pagemask) & ~pagemask; */
-    newsize = (nb + offset + pagemask) & ~pagemask;
-
-    /* don't need to remap if still within same page */
-    if (oldsize == newsize - offset)
-      {
-	guard_set(av->guard_stored, oldp, bytes, nb);
-	VALGRIND_FREELIKE_BLOCK(oldmem, 0);
-	VALGRIND_MALLOCLIKE_BLOCK(oldmem, bytes, 0, 0);
-	return oldmem;
-      }
-
-    cp = (char*)mremap((char*)chunk(oldp) - offset, oldsize + offset, newsize, 1);
-    
-    if (cp != (char*)MORECORE_FAILURE) {
-       
-      hashtable_remove_mmapped(chunk(oldp));
-       
-      oldp->chunk = (mchunkptr)(cp + offset);
-      set_head(oldp, (newsize - offset)|IS_MMAPPED|INUSE);
-      
-      hashtable_add(oldp);
-      
-      assert(aligned_OK(chunk(oldp))); /* rw fix: newp -> oldp */
-      assert(( ((INTERNAL_SIZE_T) oldp->hash_next) == offset));
-      
-      /* update statistics */
-      sum = av->mmapped_mem += newsize - oldsize;
-      if (sum > (CHUNK_SIZE_T)(av->max_mmapped_mem)) 
-        av->max_mmapped_mem = sum;
-      sum += av->sbrked_mem;
-      if (sum > (CHUNK_SIZE_T)(av->max_total_mem)) 
-        av->max_total_mem = sum;
-      
-      guard_set(av->guard_stored, oldp, bytes, nb);
-      VALGRIND_FREELIKE_BLOCK(oldmem, 0);
-      VALGRIND_MALLOCLIKE_BLOCK(chunk(oldp), bytes, 0, 0);
-      return chunk(oldp);
-    }
-#endif /* have MREMAP */
-
-    /* Note the extra SIZE_SZ overhead. */
-    if ((CHUNK_SIZE_T)(oldsize) >= (CHUNK_SIZE_T)(nb + SIZE_SZ)) 
-      newmem = oldmem; /* do nothing */
-    else {
-      /* Must alloc, copy, free. */
-      newmem = mALLOc(nb - MALLOC_ALIGN_MASK);
-      if (newmem != 0) {
-        MALLOC_COPY(newmem, oldmem, oldsize);
-        fREe(oldmem);
-      }
-    }
-    VALGRIND_MALLOCLIKE_BLOCK(newmem, bytes, 0, 0);
-    guard_set(av->guard_stored, mem2chunk(newmem), bytes, nb);
-    return newmem;
-  }
-}
-
-/*
-  ---------------------------posix_memalign ----------------------------
-*/
-
-#if __STD_C
-DL_STATIC int posix_mEMALIGn(Void_t** memptr, size_t alignment, size_t bytes)
-#else
-DL_STATIC int posix_mEMALIGn(memptr, alignment, bytes) Void_t** memptr; size_t alignment; size_t bytes;
-#endif
-{
-  mstate av;
-
-  if (alignment % sizeof(void *) != 0)
-    return EINVAL;
-  if ((alignment & (alignment - 1)) != 0)
-    return EINVAL;
-
-  av = get_malloc_state();
-  if (!av || av->max_fast == 0) malloc_consolidate(av);
-  *memptr =  mEMALIGn(alignment, bytes);
-
-  return (*memptr != NULL ? 0 : ENOMEM);
-}
-
-/*
-  ------------------------------ memalign ------------------------------
-*/
-
-#if __STD_C
-DL_STATIC Void_t* mEMALIGn(size_t alignment, size_t bytes)
-#else
-DL_STATIC Void_t* mEMALIGn(alignment, bytes) size_t alignment; size_t bytes;
-#endif
-{
-  INTERNAL_SIZE_T nb;             /* padded  request size */
-  char*           m;              /* memory returned by malloc call */
-  chunkinfoptr       p;              /* corresponding chunk */
-  char*           brk;            /* alignment point within p */
-  chunkinfoptr       newp;           /* chunk to return */
-  INTERNAL_SIZE_T newsize;        /* its size */
-  INTERNAL_SIZE_T leadsize;       /* leading space before alignment point */
-  chunkinfoptr       remainder;      /* spare room at end to split off */
-  CHUNK_SIZE_T    remainder_size; /* its size */
-  INTERNAL_SIZE_T size;
-#if PARANOIA > 2
-  mstate          av;
-#endif
-
-  /* If need less alignment than we give anyway, just relay to malloc */
-
-  if (UNLIKELY(alignment <= MALLOC_ALIGNMENT)) return mALLOc(bytes);
-
-  /* Otherwise, ensure that it is at least a minimum chunk size */
-
-  if (alignment <  MINSIZE) alignment = MINSIZE;
-
-  /* Make sure alignment is power of 2 (in case MINSIZE is not).  */
-  if (UNLIKELY((alignment & (alignment - 1)) != 0)) {
-    size_t a = MALLOC_ALIGNMENT * 2;
-    while ((CHUNK_SIZE_T)a < (CHUNK_SIZE_T)alignment) a <<= 1;
-    alignment = a;
-  }
-
-  checked_request2size(bytes, nb);
-
-  /*
-    Strategy: find a spot within that chunk that meets the alignment
-    request, and then possibly free the leading and trailing space.
-  */
-
-
-  /* Call malloc with worst case padding to hit alignment. */
-
-  m  = (char*)(mALLOc(nb + alignment + MINSIZE));
-
-  if (m == 0) return 0; /* propagate failure */
-
-#if PARANOIA > 2
-  av = get_malloc_state();
-#endif
-
-  p = hashtable_lookup((mchunkptr) m);
-
-  if ((((PTR_UINT)(m)) % alignment) != 0) { /* misaligned */
-
-    /*
-      Find an aligned spot inside chunk.  Since we need to give back
-      leading space in a chunk of at least MINSIZE, if the first
-      calculation places us at a spot with less than MINSIZE leader,
-      we can move to the next aligned spot -- we've allocated enough
-      total room so that this is always possible.
-    */
-
-    brk = (char*) ((PTR_UINT)(((PTR_UINT)(m + alignment - 1)) &
-                           -((signed long) alignment)));
-    if ((CHUNK_SIZE_T)(brk - (char*)(chunk(p))) < MINSIZE)
-      brk += alignment;
-
-    newp = cireg_getfree();
-    newp->chunk = (mchunkptr)brk;
-    leadsize = brk - (char*)(chunk(p));
-    newsize = chunksize(p) - leadsize;
-
-    /* For mmapped chunks, just adjust offset */
-    if (UNLIKELY(chunk_is_mmapped(p))) {
-      newp->hash_next = (chunkinfoptr) (((INTERNAL_SIZE_T) p->hash_next) + leadsize);
-      set_head(newp, newsize|IS_MMAPPED|INUSE);
-      hashtable_remove_mmapped(chunk(p));
-      freecilst_add(p);
-      hashtable_add(newp);
-      guard_set(av->guard_stored, newp, bytes, nb);
-      return chunk(newp);
-    }
-
-    /* Otherwise, give back leader, use the rest */
-    set_head(newp, newsize | PREV_INUSE | INUSE);
-    set_head_size(p, leadsize);
-    set_all_inuse(newp);
-    hashtable_add(newp); /* 20.05.2008 rw */
-    guard_set(av->guard_stored, p, 0, leadsize);
-    fREe(chunk(p));
-    p = newp;
-
-    assert (newsize >= nb &&
-            (((PTR_UINT)(chunk(p))) % alignment) == 0);
-  }
-
-  /* Also give back spare room at the end */
-  if (!chunk_is_mmapped(p)) {
-    size = chunksize(p);
-    if ((CHUNK_SIZE_T)(size) > (CHUNK_SIZE_T)(nb + MINSIZE)) {
-       remainder = cireg_getfree();
-       remainder_size = size - nb;
-       remainder->chunk = chunk_at_offset(chunk(p), nb);
-       set_head(remainder, remainder_size | PREV_INUSE | INUSE);
-       set_head_size(p, nb);
-       hashtable_add(remainder); /* 20.05.2008 rw */
-       guard_set(av->guard_stored, remainder, 0, remainder_size);
-       fREe(chunk(remainder));
-    }
-  }
-
-  check_inuse_chunk(p);
-  guard_set(av->guard_stored, p, bytes, nb);
-  return chunk(p);
-}
-
-/*
-  ------------------------------ calloc ------------------------------
-*/
-
-#if __STD_C
-DL_STATIC Void_t* cALLOc(size_t n_elements, size_t elem_size)
-#else
-DL_STATIC Void_t* cALLOc(n_elements, elem_size) size_t n_elements; size_t elem_size;
-#endif
-{
-  chunkinfoptr p;
-  CHUNK_SIZE_T  clearsize;
-  CHUNK_SIZE_T  nclears;
-  INTERNAL_SIZE_T* d;
-  Void_t* mem;
- 
-  
-  mem = mALLOc(n_elements * elem_size);
-
-  if (mem != 0) {
-    p = hashtable_lookup(mem);
-
-    if (!chunk_is_mmapped(p))
-    {  
-      /*
-        Unroll clear of <= 40 bytes (80 if 8byte sizes)
-        We know that contents have an even number of
-        INTERNAL_SIZE_T-sized words; minimally 4 (2 on amd64).
-      */
-
-      d = (INTERNAL_SIZE_T*)mem;
-      clearsize = chunksize(p);
-      nclears = clearsize / sizeof(INTERNAL_SIZE_T);
-      assert(nclears >= 2);
-
-      if (nclears > 10) {
-        MALLOC_ZERO(d, clearsize);
-      }
-
-      else {
-        *(d+0) = 0;
-        *(d+1) = 0;
-	if (nclears > 2) {
-	  *(d+2) = 0;
-	  *(d+3) = 0;
-	  if (nclears > 4) {
-	    *(d+4) = 0;
-	    *(d+5) = 0;
-	    if (nclears > 6) {
-	      *(d+6) = 0;
-	      *(d+7) = 0;
-	      if (nclears > 8) {
-		*(d+8) = 0;
-		*(d+9) = 0;
-	      }
-            }
-          }
-        }
-      }
-    }
-#if ! MMAP_CLEARS
-    else
-    {
-      d = (INTERNAL_SIZE_T*)mem;
-      clearsize = chunksize(p);
-      MALLOC_ZERO(d, clearsize);
-    }
-#endif
-    /* Set guard again, since we just cleared it
-     */
-    guard_set(get_malloc_state()->guard_stored, p, (n_elements * elem_size), p->size);
-  }
-
-  return mem;
-}
-
-/*
-  ------------------------------ valloc ------------------------------
-*/
-
-#if __STD_C
-DL_STATIC Void_t* vALLOc(size_t bytes)
-#else
-DL_STATIC Void_t* vALLOc(bytes) size_t bytes;
-#endif
-{
-  /* Ensure initialization */
-  mstate av = get_malloc_state();
-  if (!av || av->max_fast == 0) {
-    malloc_consolidate(av);
-    av = get_malloc_state();
-  }
-  return mEMALIGn(av->pagesize, bytes);
-}
-
-/*
-  ------------------------------ pvalloc ------------------------------
-*/
-
-
-#if __STD_C
-DL_STATIC Void_t* pVALLOc(size_t bytes)
-#else
-DL_STATIC Void_t* pVALLOc(bytes) size_t bytes;
-#endif
-{
-  mstate av = get_malloc_state();
-  size_t pagesz;
-
-  /* Ensure initialization */
-  if (!av || av->max_fast == 0) {
-    malloc_consolidate(av);
-    av = get_malloc_state();
-  }
-  pagesz = av->pagesize;
-  return mEMALIGn(pagesz, (bytes + pagesz - 1) & ~(pagesz - 1));
-}
-   
-
-/*
-  ------------------------------ malloc_trim ------------------------------
-*/
-
-#if __STD_C
-DL_STATIC int mTRIm(size_t pad)
-#else
-DL_STATIC int mTRIm(pad) size_t pad;
-#endif
-{
-  mstate av = get_malloc_state();
-  /* Ensure initialization/consolidation */
-  malloc_consolidate(av);
-  av = get_malloc_state();
-#ifndef MORECORE_CANNOT_TRIM
-  if (morecore32bit(av))
-    return sYSTRIm(pad, av);
-  else
-    return 0;
-#else
-  return 0;
-#endif
-}
-
-
-
-/*
-  ------------------------- malloc_usable_size -------------------------
-*/
-
-#if __STD_C
-DL_STATIC size_t mUSABLe(Void_t* mem)
-#else
-DL_STATIC size_t mUSABLe(mem) Void_t* mem;
-#endif
-{
-  chunkinfoptr p;
-  if (mem != 0) {
-    p = hashtable_lookup(mem);
-    if (p && inuse(p)) return chunksize(p);
-  }
-  return 0;
-}
-
-/*
-  ------------------------------ mallinfo ------------------------------
-*/
-
-DL_STATIC struct mallinfo2 mALLINFo2()
-{
-  mstate av = get_malloc_state();
-  static struct mallinfo2 mi;
-  unsigned int i;
-  mbinptr b;
-  chunkinfoptr p;
-  INTERNAL_SIZE_T avail;
-  INTERNAL_SIZE_T fastavail;
-  int nblocks;
-  int nfastblocks;
-
-  /* Ensure initialization */
-  if (!av || av->top == 0) {
-    malloc_consolidate(av);
-    av = get_malloc_state();
-  }
-  check_malloc_state();
-
-  if (!av || av->top == 0) {
-    return mi;
-  }
-  
-  /* Account for top */
-  avail = chunksize(av->top);
-  nblocks = 1;  /* top always exists */
-
-  /* traverse fastbins */
-  nfastblocks = 0;
-  fastavail = 0;
-
-  for (i = 0; i < NFASTBINS; ++i) {
-    for (p = av->fastbins[i]; p != 0; p = p->fd) {
-      ++nfastblocks;
-      fastavail += chunksize(p);
-    }
-  }
-
-  avail += fastavail;
-
-  /* traverse regular bins */
-  for (i = 1; i < NBINS; ++i) {
-    b = bin_at(av, i);
-    for (p = last(b); p != b; p = p->bk) {
-      ++nblocks;
-      avail += chunksize(p);
-    }
-  }
-
-  mi.smblks = nfastblocks;
-  mi.ordblks = nblocks;
-  mi.fordblks = avail;
-  mi.uordblks = av->sbrked_mem - avail;
-  mi.arena = av->sbrked_mem;
-  mi.hblks = av->n_mmaps;
-  mi.hblkhd = av->mmapped_mem;
-  mi.fsmblks = fastavail;
-  mi.keepcost = chunksize(av->top);
-  mi.usmblks = av->max_total_mem;
-  return mi;
-}
-
-/*
-  ------------------------------ malloc_stats ------------------------------
-*/
-
-DL_STATIC void mSTATs()
-{
-  struct mallinfo2 mi = mALLINFo2();
-
-  fprintf(stderr, "hashtable = %10lu MB\n", 
-	  (CHUNK_SIZE_T)(HASHTABLESIZE / (1024*1024)));
-  fprintf(stderr, "max system bytes = %10lu\n",
-	  (CHUNK_SIZE_T)(mi.usmblks));
-  fprintf(stderr, "system bytes     = %10lu  (%10lu sbrked, %10lu mmaped)\n",
-	  (CHUNK_SIZE_T)(mi.arena + mi.hblkhd),
-	  (CHUNK_SIZE_T)(mi.arena),
-	  (CHUNK_SIZE_T)(mi.hblkhd));
-  fprintf(stderr, "in use bytes     = %10lu\n",
-	  (CHUNK_SIZE_T)(mi.uordblks + mi.hblkhd));
-}
-
-
-/*
-  ------------------------------ mallopt ------------------------------
-*/
-
-#if __STD_C
-DL_STATIC int mALLOPt(int param_number, int value)
-#else
-DL_STATIC int mALLOPt(param_number, value) int param_number; int value;
-#endif
-{
-  mstate av = get_malloc_state();
-  /* Ensure initialization/consolidation */
-  malloc_consolidate(av);
-  av = get_malloc_state();
-
-  switch(param_number) {
-  case M_MXFAST:
-    if (value >= 0 && value <= MAX_FAST_SIZE) {
-      set_max_fast(av, value);
-      return 1;
-    }
-    else
-      return 0;
-
-  case M_TRIM_THRESHOLD:
-    av->trim_threshold = value;
-    return 1;
-
-  case M_TOP_PAD:
-    av->top_pad = value;
-    return 1;
-
-  case M_MMAP_THRESHOLD:
-    av->mmap_threshold = value;
-    return 1;
-
-  case M_MMAP_MAX:
-    if (value != 0)
-      return 0;
-    av->n_mmaps_max = value;
-    return 1;
-
-  default:
-    return 0;
-  }
-}
-
-
-/*	$OpenBSD: arc4random.c,v 1.19 2008/06/04 00:50:23 djm Exp $	*/
-
-/*
- * Copyright (c) 1996, David Mazieres 
- * Copyright (c) 2008, Damien Miller 
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
- * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
- * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
- * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
- * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
- * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
- * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-/*
- * Arc4 random number generator for OpenBSD.
- *
- * This code is derived from section 17.1 of Applied Cryptography,
- * second edition, which describes a stream cipher allegedly
- * compatible with RSA Labs "RC4" cipher (the actual description of
- * which is a trade secret).  The same algorithm is used as a stream
- * cipher called "arcfour" in Tatu Ylonen's ssh package.
- *
- * Here the stream cipher has been modified always to include the time
- * when initializing the state.  That makes it impossible to
- * regenerate the same random sequence twice, so this can't be used
- * for encryption, but will generate good random numbers.
- *
- * RC4 is a registered trademark of RSA Laboratories.
- */
-
-/* Moved u_int8_t -> unsigned char (portability)
- * Eliminated unneeded functions, added read from /dev/urandom taken from:
- $MirOS: contrib/code/Snippets/arc4random.c,v 1.3 2008-03-04 22:53:14 tg Exp $
- * Modified by Robert Connolly from OpenBSD lib/libc/crypt/arc4random.c v1.11.
- * This is arc4random(3) using urandom.
- */
-
-#include 
-#include 
-#include 
-#include 
-#include 
-
-struct arc4_stream {
-	unsigned char i;
-	unsigned char j;
-	unsigned char s[256];
-};
-
-static int rs_initialized;
-static struct arc4_stream rs;
-static pid_t arc4_stir_pid;
-static int arc4_count;
-
-static unsigned char arc4_getbyte(void);
-
-static void
-arc4_init(void)
-{
-	int     n;
-
-	for (n = 0; n < 256; n++)
-		rs.s[n] = n;
-	rs.i = 0;
-	rs.j = 0;
-}
-
-static inline void
-arc4_addrandom(unsigned char *dat, int datlen)
-{
-	int     n;
-	unsigned char si;
-
-	rs.i--;
-	for (n = 0; n < 256; n++) {
-		rs.i = (rs.i + 1);
-		si = rs.s[rs.i];
-		rs.j = (rs.j + si + dat[n % datlen]);
-		rs.s[rs.i] = rs.s[rs.j];
-		rs.s[rs.j] = si;
-	}
-	rs.j = rs.i;
-}
-
-#ifdef HAVE_SCHED_H
-#include 
-#endif
-
-static void
-arc4_stir(void)
-{
-	int     i;
-        struct {
-                struct timeval tv1;
-                struct timeval tv2;
-                unsigned char rnd[(128 - 2*sizeof(struct timeval)) / sizeof(unsigned char)];
-        } rdat;
-#if !defined(__FreeBSD__) && !defined(__OpenBSD__) && !defined(__NetBSD__)
-        ssize_t sz = 0;
-	int    fd;
-#endif
- 
-        gettimeofday(&rdat.tv1, NULL);
-
-
-	if (!rs_initialized) {
-		arc4_init();
-		rs_initialized = 1;
-	}
-
-#if !defined(__FreeBSD__) && !defined(__OpenBSD__) && !defined(__NetBSD__)
-
-#ifdef HAVE_SCHED_YIELD
-	/* Yield the processor to introduce some random delay. */
-	(void) sched_yield();
-#endif
-
-	/*
-	 * Pthread problem in multithreaded code on *BSD.
-	 */
-        fd = open("/dev/urandom", O_RDONLY);
-        if (fd != -1) {
-	        sz = (size_t)read(fd, rdat.rnd, sizeof (rdat.rnd));
-		/* 
-		 * gcc complains if we ignore the return value of read(), and
-		 * the llvm/clang analyzer complains if we don't use it...
-		 */
-		if (sz > (-256)) /* always true */
-		  close(fd);
-        }
-	/*
-        if (sz > sizeof (rdat.rnd))
-                sz = 0;
-	*/
- #endif
-
-	arc4_stir_pid = getpid();
-        gettimeofday(&rdat.tv2, NULL);
-
-        arc4_addrandom((void *)&rdat, sizeof(rdat));
-
-	/*
-	 * Discard early keystream, as per recommendations in:
-	 * http://www.wisdom.weizmann.ac.il/~itsik/RC4/Papers/Rc4_ksa.ps
-	 */
-	for (i = 0; i < 256; i++)
-		(void)arc4_getbyte();
-	arc4_count = 1600000;
-}
-
-static unsigned char
-arc4_getbyte(void)
-{
-	unsigned char si, sj;
-
-	rs.i = (rs.i + 1);
-	si = rs.s[rs.i];
-	rs.j = (rs.j + si);
-	sj = rs.s[rs.j];
-	rs.s[rs.i] = sj;
-	rs.s[rs.j] = si;
-	return (rs.s[(si + sj) & 0xff]);
-}
-
-
- /* Changed to return char* */
-static char *
-dnmalloc_arc4random(void)
-{
-	static char val[4];
-	
-	/* We only call this once, hence no need for locking. */
-
-	/* _ARC4_LOCK(); */
-	arc4_count -= 4;
-	if (arc4_count <= 0 || !rs_initialized || arc4_stir_pid != getpid())
-		arc4_stir();
-
-	val[0] = (char) arc4_getbyte();
-	val[1] = (char) arc4_getbyte();
-	val[2] = (char) arc4_getbyte();
-	val[3] = (char) arc4_getbyte();
-
-	arc4_stir();
-	/* _ARC4_UNLOCK(); */
-	return val;
-}
-
-#else
-int dnmalloc_pthread_init() { return 0; }
-#endif /* ! USE_SYSTEM_MALLOC */
Index: trunk/src/exepack.c
===================================================================
--- trunk/src/exepack.c	(revision 591)
+++ trunk/src/exepack.c	(revision 1)
@@ -84,5 +84,4 @@
 {
   int file;
-  long result;
 
   unsigned long i    = argc; /* dummy use of argc to fix compiler warning */
@@ -130,5 +129,4 @@
   out_len = (unsigned long) programlen_compressed_0;
   len     = (unsigned long) programlen_0;
-  in_len  = len;
 
   outbuf  = program_0;
@@ -262,15 +260,11 @@
     } 
 
-  result = (long) write(file, inbuf, in_len);
-  if (result < 0 || in_len != (lzo_uint) result)
+  write(file, inbuf, in_len);
+
+#if defined(__linux__)
+
+  if ( 0 != fstat(file, &sbuf))
     {
       return (5);
-    }
-
-#if defined(__linux__)
-
-  if ( 0 != fstat(file, &sbuf))
-    {
-      return (6);
     } 
   
@@ -282,5 +276,5 @@
   if ( 0 != fstat(file, &fbuf))
     {
-      return (7);
+      return (6);
     } 
 
@@ -294,5 +288,5 @@
     {
       close  ( file );
-      return ( 8 );
+      return ( 6 );
     }
   
@@ -318,5 +312,5 @@
       fcntl  (file, F_SETFD, FD_CLOEXEC);
       execve (pname, argv, environ); 
-      return (9);
+      return (8);
     }
 #endif
@@ -331,5 +325,5 @@
       execve (fname, argv, environ);
       unlink (fname);
-      return (10);
+      return (9);
     } 
   else if (i == 0)
Index: trunk/src/exepack_fill.c
===================================================================
--- trunk/src/exepack_fill.c	(revision 591)
+++ trunk/src/exepack_fill.c	(revision 1)
@@ -169,5 +169,5 @@
 {
   FILE * fd;
-  unsigned long   clen;
+  long   clen;
   char * data;
   struct stat sbuf;
@@ -222,6 +222,5 @@
     return (-1);
 
-  if (clen != fread  (data, 1, clen, fd))
-    return (-1);
+  fread  (data, 1, clen, fd);
   fclose (fd);
 
@@ -338,5 +337,5 @@
       return (8);
     }
-  status = replaceData (data, clen, "CONTAINER", (char *) outbuf, out_len);
+  status = replaceData (data, clen, "CONTAINER", outbuf, out_len);
   if (status < 0)
     {
Index: trunk/src/kern_head.c
===================================================================
--- trunk/src/kern_head.c	(revision 1)
+++ trunk/src/kern_head.c	(revision 1)
@@ -0,0 +1,907 @@
+/* 
+ * need to #define SH_USE_KERN
+ *
+ */
+#define SH_SYSCALL_CODE
+
+#include "config.h"
+
+#ifdef HOST_IS_I86LINUX
+#define SH_IDT_TABLE
+#endif
+
+#include 
+#include 
+
+#if defined(SH_USE_KERN) 
+
+#undef _
+#define _(string)  string
+#undef N_
+#define N_(string) string
+
+void usage(int flag)
+{
+  printf("\n");
+  printf("Usage: kern_head [-v | --verbose]\n");
+  printf("       kern_head [-h | --help]\n");
+  printf("\n");
+  /*
+   * printf("       You need superuser privileges to use this program,\n");
+   * printf("       because only the superuser can read from /dev/kmem.\n");
+   * printf("\n");
+   */
+  exit(flag);
+}
+
+#if defined(HOST_IS_LINUX)
+
+
+#include 
+#include 
+#include 
+#include 
+#include 
+#include 
+#include 
+#include 
+
+/* number of system calls */
+#define SH_MAXCALLS 512
+
+#include "kern_head.h"
+
+static int verbose = 0;
+
+typedef struct _smap_entry {
+#ifdef SH_SYSCALL_CODE
+  unsigned int  code[2];  /* 8 bytes */
+#endif
+  unsigned long addr;
+  char          name[64];
+} smap_entry;
+
+union {
+  unsigned long addr_sys_call_table;
+  unsigned char str_sys_call_table[sizeof(unsigned long)];
+} sh_sys_call;
+
+#define SYS_CODE_SIZE 1024
+
+static unsigned long addr_system_call;
+static unsigned char system_call_code[SYS_CODE_SIZE];
+
+int read_kcode (unsigned long addr, unsigned char * buf, int len)
+{
+  int fd;
+
+  if (addr == 0UL)
+    {
+      perror("read_kcode: invalid input");
+      return -1;
+    }
+
+  fd = open ("/dev/kmem", O_RDONLY);
+  if (fd < 0)
+    {
+      perror("read_kcode: open");
+      return -1;
+    }
+  if (lseek(fd, addr, SEEK_SET) == (off_t) (-1))
+    {
+      perror("read_kcode: lseek");
+      return -1;
+    }
+  if (read(fd, buf, len) < 0)
+    {
+      perror("read_kcode: read");
+      return -1;
+    }
+  return 0;
+}
+
+int get_dispatch (int * qq)
+{
+  int i;
+
+  if (addr_system_call == 0L || sh_sys_call.addr_sys_call_table == 0L)
+    {
+      fprintf(stderr, "get_dispatch: invalid data\n");
+      return -1;
+    }
+
+  if (0 != read_kcode (addr_system_call, system_call_code, SYS_CODE_SIZE))
+    {
+      fprintf(stderr, "get_dispatch: could not read system_call code\n");
+      return -1;
+    }
+
+  for (i = 0; i < (SYS_CODE_SIZE - 4); ++i)
+    {
+      if (system_call_code[i]   == sh_sys_call.str_sys_call_table[0] &&
+	  system_call_code[i+1] == sh_sys_call.str_sys_call_table[1] &&
+	  system_call_code[i+2] == sh_sys_call.str_sys_call_table[2] &&
+	  system_call_code[i+3] == sh_sys_call.str_sys_call_table[3])
+	{
+	  /*
+	    fprintf(stderr, "INFO: get_dispatch: found sys_call_table in "\
+		    "system_call code at %d\n", i);
+	  */
+	  *qq = i;
+	  return 0;
+	}
+    }
+  fprintf(stderr, 
+	  "get_dispatch: did not find sys_call_table in system_call code\n");
+  fprintf(stderr, 
+	  "** This indicates that either your System.map does not match\n");
+  fprintf(stderr,
+	  "** the currently running kernel, or that your System.map does\n");
+  fprintf(stderr,
+	  "** not provide the required information, and thus use of\n");
+  fprintf(stderr,
+	  "** the --with-kcheck option is not possible\n");
+  return -1;
+}
+
+unsigned long get_symbol_from_systemmap (char * systemmap, 
+                                         char * symbol, char flag)
+{
+  FILE * fp;
+  char buf[512], addr[16], * p;
+  unsigned long retval = 0;
+
+  fp = fopen (systemmap, "r");
+
+  if (!fp)
+    {
+      fprintf(stderr, "error opening <%s>\n", systemmap);
+      perror("get_symbol_from_systemmap: fopen");
+      return -1;
+    }
+  while (fgets(buf, 512, fp) != NULL)
+    {
+      if (buf[9] != flag)
+        continue;
+
+      p = strchr(buf, '\n');
+      if (p != NULL)
+        *p = '\0';
+
+      if (0 != strcmp(&buf[11], symbol))
+        continue;
+
+      addr[0] = '0'; addr[1] = 'x'; addr[2] = '\0';
+      strncat(&addr[2], buf, 8);
+
+      retval = strtoul(addr, NULL, 0);
+      if (retval == ULONG_MAX)
+        {
+          perror("get_symbol_from_systemmap");
+          return -1;
+        }
+    }
+  fclose(fp);
+  return retval;
+}
+
+
+/* returns the number N of entries in syscall table
+ * (0 .. N-1) with valid syscalls
+ */
+int fill_smap(smap_entry * sh_smap, int num)
+{
+  FILE * fp;
+  char buf[512], addr[16], name[128];
+  int  i, j, count = 0, maxcall = 0;
+
+  fp = fopen (SYSTEMMAP, "r");
+
+  if (!fp)
+    {
+      perror("fill_smap: fopen");
+      fprintf(stderr, "fill_smap: error opening <%s>\n", SYSTEMMAP);
+      return -1;
+    }
+
+  /* initialize
+   */
+  sh_sys_call.addr_sys_call_table = 0L;
+
+  while (fgets(buf, 512, fp) != NULL)
+    {
+      
+      if ( ( (buf[9] == 'D') || (buf[9] == 'd') || 
+	     (buf[9] == 'R') || (buf[9] == 'r')) && 
+	   0 == strncmp("sys_call_table", &buf[11], 14))
+	{
+	  printf("/* found sys_call_table */\n");
+	  /* --- copy symbol address ---
+	   */
+	  addr[0] = '0'; addr[1] = 'x'; addr[2] = '\0';
+	  strncat(&addr[2], buf, 8);
+	  addr[10] = '\0';
+	  sh_sys_call.addr_sys_call_table = strtoul(addr, NULL, 0);
+	  if (sh_sys_call.addr_sys_call_table == ULONG_MAX)
+	    {
+	      perror("fill_smap");
+	      return -1;
+	    }
+	  else
+	    {
+	      printf("#define SH_SYS_CALL_TABLE %s\n", addr);
+	    }
+	}
+
+      if (buf[9] != 'T')
+	continue;
+
+      if (0 == strncmp("system_call", &buf[11], 11))
+	{
+	  printf("/* found system_call */\n");
+	  /* --- copy symbol address ---
+	   */
+	  addr[0] = '0'; addr[1] = 'x'; addr[2] = '\0';
+	  strncat(&addr[2], buf, 8);
+	  addr[10] = '\0';
+	  addr_system_call = strtoul(addr, NULL, 0);
+	  if (addr_system_call == ULONG_MAX)
+	    {
+	      perror("fill_smap");
+	      return -1;
+	    }
+	}
+
+
+      if ( (buf[11]!='s' || buf[12]!='y' || buf[13]!='s' || buf[14]!='_') &&
+	   (buf[11]!='o' || buf[12]!='l' || buf[13]!='d' || buf[14]!='_'))
+	continue;
+
+      for (i = 0; i < num; ++i)
+	{
+	  for (j = 0; j < 128; ++j)
+	    {
+	      if (buf[11+j] == '\n' || buf[11+j] == '\0')
+		{
+		  name[j] = '\0';
+		  break;
+		}
+	      name[j] = buf[11+j];
+	    }
+
+
+	  if (0 == strcmp(name, sh_smap[i].name)) 
+	    {
+	      
+	      /* --- copy symbol address ---
+	       */
+	      addr[0] = '0'; addr[1] = 'x'; addr[2] = '\0';
+	      strncat(&addr[2], buf, 8);
+	      addr[10] = '\0';
+	      sh_smap[i].addr = strtoul(addr, NULL, 0);
+	      if (sh_smap[i].addr == ULONG_MAX)
+		{
+		  perror("fill_smap");
+		  return -1;
+		}
+	      ++count;
+	      if (i > maxcall) maxcall = i;
+	      /* printf("maxcall = %d\n", maxcall); */
+	      /* break; */
+      	    }
+	}
+    }
+  fclose(fp);
+  if ((count > 0) && (maxcall > 0))
+    return maxcall+1;
+  else
+    return count;
+}
+
+
+struct inode_operations {
+  int (*create) (int *,int *,int);
+  int * (*lookup) (int *,int *);
+  int (*link) (int *,int *,int *);
+  int (*unlink) (int *,int *);
+  int (*symlink) (int *,int *,const char *);
+  int (*mkdir) (int *,int *,int);
+  int (*rmdir) (int *,int *);
+  int (*mknod) (int *,int *,int,int);
+  int (*rename) (int *, int *,
+                 int *, int *);
+  int (*readlink) (int *, char *,int);
+  int (*follow_link) (int *, int *);
+  void (*truncate) (int *);
+  int (*permission) (int *, int);
+  int (*revalidate) (int *);
+  /*
+    int (*setattr) (int *, int *);
+    int (*getattr) (int *, int *);
+    int (*setxattr) (int *, const char *, void *, size_t, int);
+    ssize_t (*getxattr) (int *, const char *, void *, size_t);
+    ssize_t (*listxattr) (int *, char *, size_t);
+    int (*removexattr) (int *, const char *);
+  */
+};
+
+struct file_operations {
+  int (*create) (int *,int *,int);
+};
+
+struct proc_dir_entry {
+  unsigned short low_ino;
+  unsigned short namelen;
+  const char * name;
+  mode_t mode;
+  nlink_t nlink;
+  uid_t uid;
+  gid_t gid;
+  unsigned long size; 
+  struct inode_operations * proc_iops;
+  struct file_operations * proc_fops;
+  /*
+  get_info_t *get_info;
+  struct module *owner;
+  struct proc_dir_entry *next, *parent, *subdir;
+  void *data;
+  read_proc_t *read_proc;
+  write_proc_t *write_proc;
+  atomic_t count;         
+  int deleted;  
+  */          
+};
+
+
+
+int main(int argc, char * argv[])
+{
+  int i, count, maxcall, qq;
+  int which = 4;
+  smap_entry sh_smap[SH_MAXCALLS];
+  struct utsname utbuf;
+  char *p = NULL;
+
+  unsigned long proc_root;
+  unsigned long proc_root_iops;
+  unsigned long proc_root_lookup;
+
+  unsigned long addr_ni_syscall = 0;
+
+  if (argc > 1)
+    {
+      if (strcmp(argv[1], "-h") == 0 ||  strcmp(argv[1], "--help") == 0)
+	usage(EXIT_SUCCESS);
+      else if (strcmp(argv[1], "-v") == 0 ||
+	       strcmp(argv[1], "--verbose") == 0)
+	verbose = 1;
+    }
+
+  if (0 != uname(&utbuf))
+    {
+      perror("kern_head: uname");
+      exit (EXIT_FAILURE);
+    }
+
+  if (strncmp(utbuf.release, SH_KERNEL_VERSION, 3) != 0)
+    {
+      fprintf(stderr, "kern_head: current kernel version %s does not match\n",
+	      utbuf.release);
+      fprintf(stderr, "kern_head: %s from config.h\n", SH_KERNEL_VERSION);
+      fprintf(stderr, "kern_head: continuing with %s\n", SH_KERNEL_VERSION);
+
+      p = SH_KERNEL_VERSION;
+    } else {
+      p = utbuf.release;
+    }
+
+  if      (strncmp(p, "2.2", 3) == 0)
+    which = 2;
+  else if (strncmp(p, "2.4", 3) == 0)
+    which = 4;
+  else if (strncmp(p, "2.6", 3) == 0)
+    which = 6;
+  else
+    {
+      fprintf(stderr, "kern_head: kernel %s not supported\n", p);
+      exit (EXIT_FAILURE);
+    }
+
+  
+  if (utbuf.machine[0] != 'i' || utbuf.machine[2] != '8' || 
+      utbuf.machine[3] != '6')
+    {
+      fprintf(stderr, "kern_head: machine %s not supported\n", utbuf.machine);
+      exit (EXIT_FAILURE);
+    }
+
+  if (0 != getuid())
+    {
+      fprintf(stderr, "\n");
+      
+      fprintf(stderr, "NOTE:  kern_head: must run as 'root' (need to read from /dev/kmem)\n");
+      fprintf(stderr, "       If you get this message, then proceed as follows:\n");
+      fprintf(stderr, "       $ su\n");
+      fprintf(stderr, "       $ ./kern_head > sh_ks.h\n");
+      fprintf(stderr, "       $ exit\n");
+      fprintf(stderr, "       $ make\n\n");
+      exit (EXIT_FAILURE);
+    }
+      
+  printf("#ifndef SH_KERN_CALLS_H\n");
+  printf("#define SH_KERN_CALLS_H\n\n");
+
+  printf("\n/* Kernel %s, machine %s -- use table %s */\n\n", 
+	 p, utbuf.machine,
+	 (which == 2) ? "callz_2p2" : "callz_2p4");
+      
+
+  /* initiate the system call table 
+   */
+  for (i = 0; i < SH_MAXCALLS; ++i)
+    {
+      if (which == 2)
+	{
+	  if (callz_2p2[i] == NULL)
+	    break;
+	  strcpy(sh_smap[i].name, callz_2p2[i]);
+	}
+      else
+	{
+	  if (callz_2p4[i] == NULL)
+	    break;
+	  strcpy(sh_smap[i].name, callz_2p4[i]);
+	}
+      sh_smap[i].addr    = 0UL;
+    }
+
+  if (which == 6) /* fix syscall map for 2.6 */
+    {
+      strcpy(sh_smap[0].name,   "sys_restart_syscall");
+      strcpy(sh_smap[180].name, "sys_pread64");
+      strcpy(sh_smap[181].name, "sys_pwrite64");
+    }
+  count = i;
+
+  /* get the actual number of the highest syscalls and use no more.
+   * get sys_call_table and system_call
+   */
+  maxcall = fill_smap(sh_smap, count);
+  if ( maxcall < 0)
+    {
+      printf("#endif\n");
+      fprintf(stderr, "kern_head: fill_smap failed\n");
+      exit (EXIT_FAILURE);
+    }
+  if (addr_system_call == 0L) 
+    {
+      printf("#endif\n");
+      fprintf(stderr, 
+	      "kern_head: address of system_call not found in System.map\n");
+      fprintf(stderr, 
+	      "** This indicates that your System.map does not provide\n");
+      fprintf(stderr, 
+	      "** the required information, and thus use of the\n");
+      fprintf(stderr, 
+	      "** --with-kcheck option is not possible\n");
+      exit (EXIT_FAILURE);
+    }
+
+  for (i = 0; i < maxcall; ++i)
+    {
+      if (0 == strcmp(sh_smap[i].name, "sys_ni_syscall"))
+        {
+          addr_ni_syscall = sh_smap[i].addr;
+          break;
+        }
+    }
+  if (which < 6)
+    {
+      maxcall = (maxcall > 256) ? 256 : maxcall;
+    }
+
+  for (i = 0; i < maxcall; ++i)
+    {
+      if (sh_smap[i].addr == 0UL)
+        {
+          if (verbose > 0)
+            fprintf(stderr, "** unknown syscall **: [%s]\n", sh_smap[i].name);
+          strcpy(sh_smap[i].name, "sys_ni_syscall");
+          sh_smap[i].addr = addr_ni_syscall;
+        }
+    }
+
+
+  /* get the location of the syscall table address within system_call
+   */
+  if ( get_dispatch (&qq) < 0)
+    {
+      printf("#endif\n");
+      fprintf(stderr, "kern_head: get_dispatch failed\n");
+      exit (EXIT_FAILURE);
+    }
+
+  if (qq <= 252)
+    printf("#define SYS_CALL_LOC  %d\n", qq);
+  else
+    {
+      printf("#endif\n");
+      fprintf(stderr, "kern_head: SYS_CALL_LOC (%d) too large\n", qq);
+      exit(EXIT_FAILURE);
+    }
+  printf("#define SH_SYS_CALL_ADDR %#lx\n\n", addr_system_call);
+
+  printf("static unsigned char system_call_code[256] = { 0 };\n");
+
+  printf("#define SH_MAXCALLS %d\n\n", maxcall);
+
+#ifdef SH_IDT_TABLE
+  printf("static unsigned char idt_table[2048] = { 0 };\n");
+#endif
+
+  printf("typedef struct _sh_syscall_t {\n");
+#ifdef SH_SYSCALL_CODE
+  printf("  unsigned int  code[2];  /* 8 bytes */\n");
+#endif
+  printf("  unsigned long addr;\n");
+  printf("  char *        name;\n");
+  printf("} sh_syscall_t;\n\n");
+
+  printf("static sh_syscall_t sh_syscalls[] = {\n");
+
+  for (i = 0; i < maxcall; ++i) 
+    {
+#ifdef SH_SYSCALL_CODE
+      printf(" /* %03d */   { { 0, 0 }, 0, N_(%c%s%c) },\n", 
+	     i, '"', sh_smap[i].name, '"');
+#else
+      printf(" /* %03d */   { 0, N_(%c%s%c) },\n", 
+	     i, '"', sh_smap[i].name, '"');
+#endif
+    }
+#ifdef SH_SYSCALL_CODE
+  printf(" /* eof */   { { 0x00000000, 0x00000000 }, 0x00000000,  NULL }\n");
+#else
+  printf(" /* eof */   { 0x00000000,  NULL }\n");
+#endif
+  printf("};\n\n");
+
+
+  /* get proc addresses
+   */
+  proc_root =  get_symbol_from_systemmap (SYSTEMMAP, 
+                                          "proc_root", 'D');
+  if (proc_root == 0) 
+    {
+      proc_root =  get_symbol_from_systemmap (SYSTEMMAP, 
+                                              "proc_root", 'd');
+    }
+  if (proc_root == 0) 
+    {
+      proc_root =  get_symbol_from_systemmap (SYSTEMMAP, 
+                                              "proc_root", 'R');
+    }
+  if (proc_root != 0) {
+    printf("#define PROC_ROOT_LOC %#lx\n\n", proc_root);
+  }
+
+  proc_root_lookup =  get_symbol_from_systemmap (SYSTEMMAP, 
+                                                 "proc_root_lookup", 't');
+  if (proc_root_lookup == 0) 
+    {
+      proc_root_lookup =  get_symbol_from_systemmap (SYSTEMMAP, 
+                                                     "proc_root_lookup", 'T');
+    }
+  if (proc_root_lookup != 0) {
+    printf("#define PROC_ROOT_LOOKUP_LOC %#lx\n\n", proc_root_lookup);
+  }
+
+  proc_root_iops =  get_symbol_from_systemmap (SYSTEMMAP, 
+                                               "proc_root_inode_operations", 
+                                               'd');
+  if (proc_root_iops == 0) 
+    {
+      proc_root_iops = get_symbol_from_systemmap (SYSTEMMAP, 
+                                                  "proc_root_inode_operations",
+                                                  'D');
+    }
+  if (proc_root_iops == 0) 
+    {
+      proc_root_iops = get_symbol_from_systemmap (SYSTEMMAP, 
+                                                  "proc_root_inode_operations",
+                                                  'R');
+    }
+  if (proc_root_iops != 0) {
+    printf("#define PROC_ROOT_IOPS_LOC %#lx\n\n", proc_root_iops);
+  }
+
+  printf("#endif\n");
+
+  exit (EXIT_SUCCESS);
+}
+
+/* if defined(HOST_IS_LINUX) */
+#endif
+
+/************************************************************
+ *
+ *
+ *  FreeBSD Implementation
+ *
+ ************************************************************/
+
+#if defined(HOST_IS_FREEBSD) || defined(__OpenBSD__)
+
+#include 
+#include 
+#include 
+#include 
+#include 
+#include 
+#include 
+#include 
+#include 
+#include 
+
+#ifdef __FreeBSD__
+#include 
+#endif
+
+#include 
+
+#ifndef  SYS_MAXSYSCALL
+#define  SYS_MAXSYSCALL	512
+#endif
+
+/* number of system calls */
+#define SH_MAXCALLS 512
+#include "kern_head.h"
+static int verbose = 0;
+
+#ifdef __OpenBSD__
+struct proc;
+struct sysent {
+	short sy_narg;
+	short sy_argsize;
+	int   (*sy_call)(struct proc *, void *, register_t *);
+};
+#endif
+
+typedef struct _smap_entry {
+  unsigned int  code[2];  /* 8 bytes */
+  unsigned long addr;
+  char          name[64];
+} smap_entry;
+
+union {
+  unsigned long addr_sys_call_table;
+  unsigned char str_sys_call_table[sizeof(unsigned long)];
+} sh_sys_call;
+
+struct nlist sys_list[SYS_MAXSYSCALL+1];
+
+struct  nlist   list[2];
+
+
+int main(int argc, char * argv[])
+{
+  int i, count, which;
+  smap_entry sh_smap[SYS_MAXSYSCALL];
+  struct utsname utbuf;
+  char errbuf[_POSIX2_LINE_MAX];
+
+  struct sysent  sy;
+  unsigned long offset = 0L;
+  kvm_t *kd;
+
+  list[0].n_name = "_sysent";
+  list[1].n_name = NULL;
+
+  if (argc > 1)
+    {
+      if (strcmp(argv[1], "-h") == 0 ||  strcmp(argv[1], "--help") == 0)
+	usage(EXIT_SUCCESS);
+      else if (strcmp(argv[1], "-v") == 0 ||
+	       strcmp(argv[1], "--verbose") == 0)
+	verbose = 1;
+    }
+
+  if (0 != uname(&utbuf))
+    {
+      perror("kern_head: uname");
+      exit (EXIT_FAILURE);
+    }
+
+  if      (utbuf.release[0] == '4')
+    which = 4;
+  else if (utbuf.release[0] == '5')
+    which = 5;
+  else
+    {
+      fprintf(stderr, "kern_head: kernel %s not supported\n", utbuf.release);
+      exit (EXIT_FAILURE);
+    }
+
+  if (utbuf.machine[0] != 'i' || utbuf.machine[2] != '8' || 
+      utbuf.machine[3] != '6')
+    {
+      fprintf(stderr, "kern_head: machine %s not supported\n", utbuf.machine);
+      exit (EXIT_FAILURE);
+    }
+
+  if (0 != getuid())
+    {
+      fprintf(stderr, "\n");
+      fprintf(stderr, "NOTE:  kern_head: must run as 'root' ");
+      fprintf(stderr, "(need to read from /dev/kmem)\n");
+      fprintf(stderr, "       If you get this message, then proceed ");
+      fprintf(stderr, "as follows:\n");
+      fprintf(stderr, "       $ su\n");
+      fprintf(stderr, "       $ ./kern_head > sh_ks.h\n");
+      fprintf(stderr, "       $ exit\n");
+      fprintf(stderr, "       $ make\n\n");
+      exit (EXIT_FAILURE);
+    }
+
+  kd = kvm_openfiles(NULL, NULL, NULL, O_RDONLY, errbuf);
+  if (!kd)
+    {
+      fprintf(stderr, "check_sysent: kvm_openfiles: %s\n", errbuf);
+      exit(EXIT_FAILURE);
+    }
+
+  i = kvm_nlist(kd, list);
+  if (i == -1)
+    {
+      fprintf(stderr, "check_sysent: kvm_nlist: %s\n", kvm_geterr(kd));
+      exit(EXIT_FAILURE);
+    }
+
+  if (which == 4)
+    printf("\n/* Kernel %s, machine %s -- use table %s */\n\n", 
+        	 utbuf.release, utbuf.machine, "callz_fbsd");
+  if (which == 5)
+    printf("\n/* Kernel %s, machine %s -- use table %s */\n\n",
+                 utbuf.release, utbuf.machine, "callz_fbsd5");
+      
+  i = 0;
+  if (which == 4) {
+    while ((callz_fbsd[i] != NULL) && (i < SYS_MAXSYSCALL))
+      {
+	sys_list[i].n_name = callz_fbsd[i];
+	/* fprintf(stderr, "sys_list[%d] = %s\n", i, sys_list[i].n_name); */
+	++i;
+      }
+    if ((utbuf.release[1] == '.') && (utbuf.release[2] == '1') && 
+	(utbuf.release[3] == '0'))
+      {
+	sys_list[336].n_name = callz_fbsd[290]; /* sendfile -> nosys */
+      }
+  } else {
+    while ((callz_fbsd5[i] != NULL) && (i < SYS_MAXSYSCALL))
+      {
+	sys_list[i].n_name = callz_fbsd5[i];
+	/* fprintf(stderr, "sys_list[%d] = %s\n", i, sys_list[i].n_name); */
+	++i;
+      }
+  }
+  count = i;
+  sys_list[i].n_name = NULL;
+   
+  i = kvm_nlist(kd, sys_list);
+  if (i == -1)
+    {
+      fprintf(stderr, "check_sysent: kvm_nlist: %s\n", kvm_geterr(kd));
+      /* exit(EXIT_FAILURE); */
+    }
+  else if (i != 0 && verbose != 0)
+     {
+	fprintf(stderr, "check_sysent: kvm_nlist: %d out of %d invalid.\n",
+		i, count);
+	fprintf(stderr, "              Probably callz_fbsd in kern_head.c\n");
+	fprintf(stderr, "              is not for your kernel version.\n");
+	fprintf(stderr, "              (No reason to worry, kcheck will "\
+                                       "work anyway)\n\n");
+     }
+
+  for (i = 0; i < count /* SYS_MAXSYSCALL */; i++) 
+    {
+       if (NULL == sys_list[i].n_name)
+	 break;
+       if (!sys_list[i].n_value && 0 != strcmp(sys_list[i].n_name, "_nosys")
+	   && verbose != 0)
+	{
+	  fprintf(stderr,"check_sysent: not found: slot %03d [%s]\n", 
+		  i, sys_list[i].n_name);
+	  /* exit(EXIT_FAILURE); */
+	}
+      offset = list[0].n_value + (i*sizeof(struct sysent));
+      if (kvm_read(kd, offset, &sy, sizeof(struct sysent)) < 0)
+	{
+	  fprintf(stderr,"check_sysent: kvm_read: %s\n", kvm_geterr(kd));
+	  exit(EXIT_FAILURE);
+	}
+
+      if (verbose > 0)
+	fprintf(stderr, "(kvm_nlist) %#lx   %#lx (sysent[%03d])  %03d [%s]\n",
+		(unsigned long) sys_list[i].n_value,
+		(unsigned long) sy.sy_call,
+		i, i, sys_list[i].n_name);
+
+      if((unsigned long)sy.sy_call != sys_list[i].n_value && 
+	 sys_list[i].n_value != 0 &&
+	 0 != strcmp(sys_list[i].n_name, "_nosys") &&
+	 (unsigned long)sy.sy_call != sys_list[290].n_value)  
+	{
+          fprintf(stderr,
+                  "WARNING: (kvm_nlist) %#lx != %#lx (sysent[%03d])  %03d [%s]\n",
+		  (unsigned long) sys_list[i].n_value,
+		  (unsigned long) sy.sy_call,
+		  i, i, sys_list[i].n_name);
+	}
+      sh_smap[i].addr = (unsigned long) sy.sy_call;
+      strncpy(sh_smap[i].name, sys_list[i].n_name, 64);
+      if(kvm_read(kd, (unsigned int) sy.sy_call, &(sh_smap[i].code[0]), 
+		  2 * sizeof(unsigned int)) < 0)
+	{
+	  fprintf(stderr,"check_sysent: kvm_read: %s\n", kvm_geterr(kd));
+	  exit(EXIT_FAILURE);
+	}
+    }
+
+  if(kvm_close(kd) < 0) 
+    {
+      fprintf(stderr,"check_sysent: kvm_nlist: %s\n", kvm_geterr(kd));
+      exit(EXIT_FAILURE);
+    }
+ 
+  printf("#ifndef SH_KERN_CALLS_H\n");
+  printf("#define SH_KERN_CALLS_H\n\n");
+
+  printf("#define SH_MAXCALLS %d\n\n", count);
+
+  printf("typedef struct _sh_syscall_t {\n");
+  printf("  unsigned int  code[2];  /* 8 bytes */\n");
+  printf("  unsigned long addr;\n");
+  printf("  char *        name;\n");
+  printf("} sh_syscall_t;\n\n");
+
+  printf("static sh_syscall_t sh_syscalls[] = {\n");
+  for (i = 0; i < count; ++i) {
+    printf(" /* %03d */ {{ 0x%-8.8x, 0x%-8.8x }, 0x%-8.8lx, N_(%c%s%c) },\n", 
+	   i, sh_smap[i].code[0], sh_smap[i].code[1], 
+	   sh_smap[i].addr, '"', sh_smap[i].name, '"');
+  }
+  printf(" /* eof */   { { 0x00000000, 0x00000000 }, 0x00000000,  NULL }\n");
+  printf("};\n\n");
+  printf("#endif\n");
+  return 0;
+}
+/* if defined(HOST_IS_FREEBSD) */
+#endif
+
+/* #if defined(SH_USE_KERN) */
+#else
+
+#include 
+#include 
+
+int main()
+{
+  printf("#ifndef SH_KERN_CALLS_H\n");
+  printf("#define SH_KERN_CALLS_H\n\n");
+
+  printf("/* Dummy header. */\n\n");
+
+  printf("typedef struct _sh_syscall_t {\n");
+  printf("  unsigned long addr;\n");
+  printf("  char *        name;\n");
+  printf("} sh_syscall_t;\n\n");
+
+  printf("#endif\n");
+
+  return (EXIT_SUCCESS);
+}
+
+/* #ifdef SH_USE_KERN */
+#endif
Index: trunk/src/make-tests.sh
===================================================================
--- trunk/src/make-tests.sh	(revision 591)
+++ 	(revision )
@@ -1,75 +1,0 @@
-#!/bin/sh
-
-# Auto generate single AllTests file for CuTest.
-# Searches through all *.c files in the current directory.
-# Prints to stdout.
-# Author: Asim Jalis
-# Date: 01/08/2003
-
-# Modified to return non-zero if any test has failed
-# Rainer Wichmann, 29. Jan 2006
-# ...and to print to stderr if any test has failed
-# Rainer Wichmann, 31. Jan 2006
-
-if test $# -eq 0 ; then FILES=*.c ; else FILES=$* ; fi
-
-echo '
-
-/* This is auto-generated code. Edit at your own peril. */
-
-#include "config.h"
-#include 
-#include "CuTest.h"
-'
-
-cat $FILES | grep '^void Test' | 
-    sed -e 's/(.*$//' \
-        -e 's/$/(CuTest*);/' \
-        -e 's/^/extern /'
-
-echo \
-'
-
-int RunAllTests(void) 
-{
-    CuString *output = CuStringNew();
-    CuSuite* suite = CuSuiteNew();
-
-'
-cat $FILES | grep '^void Test' | 
-    sed -e 's/^void //' \
-        -e 's/(.*$//' \
-        -e 's/^/    SUITE_ADD_TEST(suite, /' \
-        -e 's/$/);/'
-
-echo \
-'
-    CuSuiteRun(suite);
-    CuSuiteSummary(suite, output);
-    CuSuiteDetails(suite, output);
-    if (suite->failCount > 0)
-      fprintf(stderr, "%s%c", output->buffer, 0x0A);
-    else
-      fprintf(stdout, "%s%c", output->buffer, 0x0A);
-    return suite->failCount;
-}
-
-int main(void)
-{
-#if !defined(USE_SYSTEM_MALLOC)
-    typedef void assert_handler_tp(const char * error, const char *file, int line);
-    extern assert_handler_tp *dnmalloc_set_handler(assert_handler_tp *new);
-    extern void safe_fatal  (const char * details, const char *f, int l);
-#endif
-#if !defined(USE_SYSTEM_MALLOC) && defined(USE_MALLOC_LOCK)
-    extern int dnmalloc_pthread_init(void);
-    dnmalloc_pthread_init();
-#endif
-#if !defined(USE_SYSTEM_MALLOC)
-    (void) dnmalloc_set_handler(safe_fatal);
-#endif
-    int retval;
-    retval = RunAllTests();
-    return (retval == 0) ? 0 : 1;
-}
-'
Index: trunk/src/minilzo.c
===================================================================
--- trunk/src/minilzo.c	(revision 591)
+++ trunk/src/minilzo.c	(revision 1)
@@ -82,8 +82,12 @@
 #else
 #  include 
-#  if defined(__STDC__)
+#  if defined(STDC_HEADERS)
 #    include 
 #    include 
+#  endif
+#  if defined(HAVE_STDDEF_H)
 #    include 
+#  endif
+#  if defined(HAVE_MEMORY_H)
 #    include 
 #  endif
@@ -2395,6 +2399,6 @@
 #  endif
 #  if (LZO_TEST_DECOMPRESS_OVERRUN_INPUT >= 2)
-#    define NEED_IP(x, y) \
-    if ( ((y > 0) && (x > (LZO_UINT_MAX - y))) || ((lzo_uint)(ip_end - ip) < (lzo_uint)((x)+(y))) )  goto input_overrun
+#    define NEED_IP(x) \
+	    if ((lzo_uint)(ip_end - ip) < (lzo_uint)(x))  goto input_overrun
 #  endif
 #endif
@@ -2406,6 +2410,6 @@
 #  if (LZO_TEST_DECOMPRESS_OVERRUN_OUTPUT >= 2)
 #    undef TEST_OP
-#    define NEED_OP(x,y) \
-    if (  ((y > 0) && (x > (LZO_UINT_MAX - y))) || ((lzo_uint)(op_end - op) < (lzo_uint)((x)+(y))) )  goto output_overrun
+#    define NEED_OP(x) \
+	    if ((lzo_uint)(op_end - op) < (lzo_uint)(x))  goto output_overrun
 #  endif
 #endif
@@ -2435,12 +2439,10 @@
 #  define HAVE_NEED_IP
 #else
-    /* #  define NEED_IP(x)            ((void) 0) */
-#error "no need_ip"
+#  define NEED_IP(x)            ((void) 0)
 #endif
 #if defined(NEED_OP)
 #  define HAVE_NEED_OP
 #else
-    /* #  define NEED_OP(x)            ((void) 0) */
-#error "no need_op"
+#  define NEED_OP(x)            ((void) 0)
 #endif
 
@@ -2511,5 +2513,5 @@
 	if (t < 4)
 	    goto match_next;
-	assert(t > 0); NEED_OP(t, 0); NEED_IP(t, 1);
+	assert(t > 0); NEED_OP(t); NEED_IP(t+1);
 	do *op++ = *ip++; while (--t > 0);
 	goto first_literal_run;
@@ -2523,14 +2525,14 @@
 	if (t == 0)
 	{
-	  NEED_IP(1, 0);
+	    NEED_IP(1);
 	    while (*ip == 0)
 	    {
 		t += 255;
 		ip++;
-		NEED_IP(1, 0);
+		NEED_IP(1);
 	    }
 	    t += 15 + *ip++;
 	}
-	assert(t > 0); NEED_OP(t,3); NEED_IP(t,4);
+	assert(t > 0); NEED_OP(t+3); NEED_IP(t+4);
 #if defined(LZO_UNALIGNED_OK_4) || defined(LZO_ALIGNED_OK_4)
 #if !defined(LZO_UNALIGNED_OK_4)
@@ -2589,5 +2591,5 @@
 	m_pos -= *ip++ << 2;
 #endif
-	TEST_LOOKBEHIND(m_pos,out); NEED_OP(3,0);
+	TEST_LOOKBEHIND(m_pos,out); NEED_OP(3);
 	*op++ = *m_pos++; *op++ = *m_pos++; *op++ = *m_pos;
 #endif
@@ -2646,5 +2648,5 @@
 		t = (t >> 5) - 1;
 #endif
-		TEST_LOOKBEHIND(m_pos,out); assert(t > 0); NEED_OP(t,(3-1));
+		TEST_LOOKBEHIND(m_pos,out); assert(t > 0); NEED_OP(t+3-1);
 		goto copy_match;
 #endif
@@ -2655,10 +2657,10 @@
 		if (t == 0)
 		{
-		  NEED_IP(1,0);
+		    NEED_IP(1);
 		    while (*ip == 0)
 		    {
 			t += 255;
 			ip++;
-			NEED_IP(1,0);
+			NEED_IP(1);
 		    }
 		    t += 31 + *ip++;
@@ -2699,10 +2701,10 @@
 		if (t == 0)
 		{
-		  NEED_IP(1,0);
+		    NEED_IP(1);
 		    while (*ip == 0)
 		    {
 			t += 255;
 			ip++;
-			NEED_IP(1,0);
+			NEED_IP(1);
 		    }
 		    t += 7 + *ip++;
@@ -2747,5 +2749,5 @@
 		m_off = 1 + (t >> 2) + (*ip++ << 2);
 #endif
-		NEED_OP(2,0);
+		NEED_OP(2);
 		t = 2; COPY_DICT(t,m_off)
 #else
@@ -2759,5 +2761,5 @@
 		m_pos -= *ip++ << 2;
 #endif
-		TEST_LOOKBEHIND(m_pos,out); NEED_OP(2,0);
+		TEST_LOOKBEHIND(m_pos,out); NEED_OP(2);
 		*op++ = *m_pos++; *op++ = *m_pos;
 #endif
@@ -2767,10 +2769,10 @@
 #if defined(COPY_DICT)
 
-	    NEED_OP(t,(3-1));
+	    NEED_OP(t+3-1);
 	    t += 3-1; COPY_DICT(t,m_off)
 
 #else
 
-	    TEST_LOOKBEHIND(m_pos,out); assert(t > 0); NEED_OP(t,(3-1));
+	    TEST_LOOKBEHIND(m_pos,out); assert(t > 0); NEED_OP(t+3-1);
 #if defined(LZO_UNALIGNED_OK_4) || defined(LZO_ALIGNED_OK_4)
 #if !defined(LZO_UNALIGNED_OK_4)
@@ -2810,5 +2812,5 @@
 
 match_next:
-	    assert(t > 0); NEED_OP(t,0); NEED_IP(t,1);
+	    assert(t > 0); NEED_OP(t); NEED_IP(t+1);
 	    do *op++ = *ip++; while (--t > 0);
 	    t = *ip++;
Index: trunk/src/rijndael-alg-fst.c
===================================================================
--- trunk/src/rijndael-alg-fst.c	(revision 591)
+++ trunk/src/rijndael-alg-fst.c	(revision 1)
@@ -1,1235 +1,280 @@
-/*	$NetBSD: rijndael-alg-fst.c,v 1.7 2005/12/11 12:20:52 christos Exp $	*/
-/*	$KAME: rijndael-alg-fst.c,v 1.10 2003/07/15 10:47:16 itojun Exp $	*/
+/*
+ * rijndael-alg-fst.c   v2.3   April '2000
+ *
+ * Optimised ANSI C code
+ *
+ * authors: v1.0: Antoon Bosselaers
+ *          v2.0: Vincent Rijmen
+ *          v2.3: Paulo Barreto
+ *
+ * This code is placed in the public domain.
+ */
+
+#include "config_xor.h"
+
+#include 
+#include 
+
+#ifdef SH_ENCRYPT
+
+#include "rijndael-alg-fst.h"
+
+#include "rijndael-boxes-fst.h"
+
+int rijndaelKeySched(word8 k[MAXKC][4], word8 W[MAXROUNDS+1][4][4], int ROUNDS) {
+	/* Calculate the necessary round keys
+	 * The number of calculations depends on keyBits and blockBits
+	 */ 
+	int j, r, t, rconpointer = 0;
+	word8 tk[MAXKC][4];
+	int KC = ROUNDS - 6;
+
+	for (j = KC-1; j >= 0; j--) {
+		*((word32*)tk[j]) = *((word32*)k[j]);
+	}
+	r = 0;
+	t = 0;
+	/* copy values into round key array */
+	for (j = 0; (j < KC) && (r < ROUNDS + 1); ) {
+		for (; (j < KC) && (t < 4); j++, t++) {
+			*((word32*)W[r][t]) = *((word32*)tk[j]);
+		}
+		if (t == 4) {
+			r++;
+			t = 0;
+		}
+	}
+		
+	while (r < ROUNDS + 1) { /* while not enough round key material calculated */
+		/* calculate new values */
+		tk[0][0] ^= S[tk[KC-1][1]];
+		tk[0][1] ^= S[tk[KC-1][2]];
+		tk[0][2] ^= S[tk[KC-1][3]];
+		tk[0][3] ^= S[tk[KC-1][0]];
+		tk[0][0] ^= rcon[rconpointer++];
+
+		if (KC != 8) {
+			for (j = 1; j < KC; j++) {
+				*((word32*)tk[j]) ^= *((word32*)tk[j-1]);
+			}
+		} else {
+			for (j = 1; j < KC/2; j++) {
+				*((word32*)tk[j]) ^= *((word32*)tk[j-1]);
+			}
+			tk[KC/2][0] ^= S[tk[KC/2 - 1][0]];
+			tk[KC/2][1] ^= S[tk[KC/2 - 1][1]];
+			tk[KC/2][2] ^= S[tk[KC/2 - 1][2]];
+			tk[KC/2][3] ^= S[tk[KC/2 - 1][3]];
+			for (j = KC/2 + 1; j < KC; j++) {
+				*((word32*)tk[j]) ^= *((word32*)tk[j-1]);
+			}
+		}
+		/* copy values into round key array */
+		for (j = 0; (j < KC) && (r < ROUNDS + 1); ) {
+			for (; (j < KC) && (t < 4); j++, t++) {
+				*((word32*)W[r][t]) = *((word32*)tk[j]);
+			}
+			if (t == 4) {
+				r++;
+				t = 0;
+			}
+		}
+	}		
+	return 0;
+}
+
+int rijndaelKeyEncToDec(word8 W[MAXROUNDS+1][4][4], int ROUNDS) {
+	int r;
+	word8 *w;
+
+	for (r = 1; r < ROUNDS; r++) {
+		w = W[r][0];
+		*((word32*)w) =
+			  *((word32*)U1[w[0]])
+			^ *((word32*)U2[w[1]])
+			^ *((word32*)U3[w[2]])
+			^ *((word32*)U4[w[3]]);
+
+		w = W[r][1];
+		*((word32*)w) =
+			  *((word32*)U1[w[0]])
+			^ *((word32*)U2[w[1]])
+			^ *((word32*)U3[w[2]])
+			^ *((word32*)U4[w[3]]);
+
+		w = W[r][2];
+		*((word32*)w) =
+			  *((word32*)U1[w[0]])
+			^ *((word32*)U2[w[1]])
+			^ *((word32*)U3[w[2]])
+			^ *((word32*)U4[w[3]]);
+
+		w = W[r][3];
+		*((word32*)w) =
+			  *((word32*)U1[w[0]])
+			^ *((word32*)U2[w[1]])
+			^ *((word32*)U3[w[2]])
+			^ *((word32*)U4[w[3]]);
+	}
+	return 0;
+}	
+
 /**
- * rijndael-alg-fst.c
- *
- * @version 3.0 (December 2000)
- *
- * Optimised ANSI C code for the Rijndael cipher (now AES)
- *
- * @author Vincent Rijmen 
- * @author Antoon Bosselaers 
- * @author Paulo Barreto 
- *
- * This code is hereby placed in the public domain.
- *
- * THIS SOFTWARE IS PROVIDED BY THE AUTHORS ''AS IS'' AND ANY EXPRESS
- * OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
- * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHORS OR CONTRIBUTORS BE
- * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
- * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
- * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
- * BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
- * WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
- * OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE,
- * EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+ * Encrypt a single block. 
  */
-
-#include "config_xor.h"
-
-#include 
-#include 
-
-#ifdef SH_ENCRYPT
-
-typedef unsigned char u8;
-#if defined(HAVE_INT_32)
-typedef unsigned int u32;
-#elif defined(HAVE_LONG_32)
-typedef unsigned long u32;
-#elif defined(HAVE_SHORT_32)
-typedef unsigned short u32;
-#else
-#error "No 32 bit integer type found"
+int rijndaelEncrypt(word8 a[16], word8 b[16], word8 rk[MAXROUNDS+1][4][4], int ROUNDS) {
+	int r;
+	word8 temp[4][4];
+
+    *((word32*)temp[0]) = *((word32*)(a   )) ^ *((word32*)rk[0][0]);
+    *((word32*)temp[1]) = *((word32*)(a+ 4)) ^ *((word32*)rk[0][1]);
+    *((word32*)temp[2]) = *((word32*)(a+ 8)) ^ *((word32*)rk[0][2]);
+    *((word32*)temp[3]) = *((word32*)(a+12)) ^ *((word32*)rk[0][3]);
+    *((word32*)(b    )) = *((word32*)T1[temp[0][0]])
+						^ *((word32*)T2[temp[1][1]])
+						^ *((word32*)T3[temp[2][2]]) 
+						^ *((word32*)T4[temp[3][3]]);
+    *((word32*)(b + 4)) = *((word32*)T1[temp[1][0]])
+						^ *((word32*)T2[temp[2][1]])
+						^ *((word32*)T3[temp[3][2]]) 
+						^ *((word32*)T4[temp[0][3]]);
+    *((word32*)(b + 8)) = *((word32*)T1[temp[2][0]])
+						^ *((word32*)T2[temp[3][1]])
+						^ *((word32*)T3[temp[0][2]]) 
+						^ *((word32*)T4[temp[1][3]]);
+    *((word32*)(b +12)) = *((word32*)T1[temp[3][0]])
+						^ *((word32*)T2[temp[0][1]])
+						^ *((word32*)T3[temp[1][2]]) 
+						^ *((word32*)T4[temp[2][3]]);
+	for (r = 1; r < ROUNDS-1; r++) {
+		*((word32*)temp[0]) = *((word32*)(b   )) ^ *((word32*)rk[r][0]);
+		*((word32*)temp[1]) = *((word32*)(b+ 4)) ^ *((word32*)rk[r][1]);
+		*((word32*)temp[2]) = *((word32*)(b+ 8)) ^ *((word32*)rk[r][2]);
+		*((word32*)temp[3]) = *((word32*)(b+12)) ^ *((word32*)rk[r][3]);
+
+		*((word32*)(b    )) = *((word32*)T1[temp[0][0]])
+							^ *((word32*)T2[temp[1][1]])
+							^ *((word32*)T3[temp[2][2]]) 
+							^ *((word32*)T4[temp[3][3]]);
+		*((word32*)(b + 4)) = *((word32*)T1[temp[1][0]])
+							^ *((word32*)T2[temp[2][1]])
+							^ *((word32*)T3[temp[3][2]]) 
+							^ *((word32*)T4[temp[0][3]]);
+		*((word32*)(b + 8)) = *((word32*)T1[temp[2][0]])
+							^ *((word32*)T2[temp[3][1]])
+							^ *((word32*)T3[temp[0][2]]) 
+							^ *((word32*)T4[temp[1][3]]);
+		*((word32*)(b +12)) = *((word32*)T1[temp[3][0]])
+							^ *((word32*)T2[temp[0][1]])
+							^ *((word32*)T3[temp[1][2]]) 
+							^ *((word32*)T4[temp[2][3]]);
+	}
+	/* last round is special */   
+	*((word32*)temp[0]) = *((word32*)(b   )) ^ *((word32*)rk[ROUNDS-1][0]);
+	*((word32*)temp[1]) = *((word32*)(b+ 4)) ^ *((word32*)rk[ROUNDS-1][1]);
+	*((word32*)temp[2]) = *((word32*)(b+ 8)) ^ *((word32*)rk[ROUNDS-1][2]);
+	*((word32*)temp[3]) = *((word32*)(b+12)) ^ *((word32*)rk[ROUNDS-1][3]);
+	b[ 0] = T1[temp[0][0]][1];
+	b[ 1] = T1[temp[1][1]][1];
+	b[ 2] = T1[temp[2][2]][1];
+	b[ 3] = T1[temp[3][3]][1];
+	b[ 4] = T1[temp[1][0]][1];
+	b[ 5] = T1[temp[2][1]][1];
+	b[ 6] = T1[temp[3][2]][1];
+	b[ 7] = T1[temp[0][3]][1];
+	b[ 8] = T1[temp[2][0]][1];
+	b[ 9] = T1[temp[3][1]][1];
+	b[10] = T1[temp[0][2]][1];
+	b[11] = T1[temp[1][3]][1];
+	b[12] = T1[temp[3][0]][1];
+	b[13] = T1[temp[0][1]][1];
+	b[14] = T1[temp[1][2]][1];
+	b[15] = T1[temp[2][3]][1];
+	*((word32*)(b   )) ^= *((word32*)rk[ROUNDS][0]);
+	*((word32*)(b+ 4)) ^= *((word32*)rk[ROUNDS][1]);
+	*((word32*)(b+ 8)) ^= *((word32*)rk[ROUNDS][2]);
+	*((word32*)(b+12)) ^= *((word32*)rk[ROUNDS][3]);
+
+	return 0;
+}
+
+/**
+ * Decrypt a single block.
+ */
+int rijndaelDecrypt(word8 a[16], word8 b[16], word8 rk[MAXROUNDS+1][4][4], int ROUNDS) {
+	int r;
+	word8 temp[4][4];
+	
+    *((word32*)temp[0]) = *((word32*)(a   )) ^ *((word32*)rk[ROUNDS][0]);
+    *((word32*)temp[1]) = *((word32*)(a+ 4)) ^ *((word32*)rk[ROUNDS][1]);
+    *((word32*)temp[2]) = *((word32*)(a+ 8)) ^ *((word32*)rk[ROUNDS][2]);
+    *((word32*)temp[3]) = *((word32*)(a+12)) ^ *((word32*)rk[ROUNDS][3]);
+
+    *((word32*)(b   )) = *((word32*)T5[temp[0][0]])
+           ^ *((word32*)T6[temp[3][1]])
+           ^ *((word32*)T7[temp[2][2]]) 
+           ^ *((word32*)T8[temp[1][3]]);
+	*((word32*)(b+ 4)) = *((word32*)T5[temp[1][0]])
+           ^ *((word32*)T6[temp[0][1]])
+           ^ *((word32*)T7[temp[3][2]]) 
+           ^ *((word32*)T8[temp[2][3]]);
+	*((word32*)(b+ 8)) = *((word32*)T5[temp[2][0]])
+           ^ *((word32*)T6[temp[1][1]])
+           ^ *((word32*)T7[temp[0][2]]) 
+           ^ *((word32*)T8[temp[3][3]]);
+	*((word32*)(b+12)) = *((word32*)T5[temp[3][0]])
+           ^ *((word32*)T6[temp[2][1]])
+           ^ *((word32*)T7[temp[1][2]]) 
+           ^ *((word32*)T8[temp[0][3]]);
+	for (r = ROUNDS-1; r > 1; r--) {
+		*((word32*)temp[0]) = *((word32*)(b   )) ^ *((word32*)rk[r][0]);
+		*((word32*)temp[1]) = *((word32*)(b+ 4)) ^ *((word32*)rk[r][1]);
+		*((word32*)temp[2]) = *((word32*)(b+ 8)) ^ *((word32*)rk[r][2]);
+		*((word32*)temp[3]) = *((word32*)(b+12)) ^ *((word32*)rk[r][3]);
+		*((word32*)(b   )) = *((word32*)T5[temp[0][0]])
+           ^ *((word32*)T6[temp[3][1]])
+           ^ *((word32*)T7[temp[2][2]]) 
+           ^ *((word32*)T8[temp[1][3]]);
+		*((word32*)(b+ 4)) = *((word32*)T5[temp[1][0]])
+           ^ *((word32*)T6[temp[0][1]])
+           ^ *((word32*)T7[temp[3][2]]) 
+           ^ *((word32*)T8[temp[2][3]]);
+		*((word32*)(b+ 8)) = *((word32*)T5[temp[2][0]])
+           ^ *((word32*)T6[temp[1][1]])
+           ^ *((word32*)T7[temp[0][2]]) 
+           ^ *((word32*)T8[temp[3][3]]);
+		*((word32*)(b+12)) = *((word32*)T5[temp[3][0]])
+           ^ *((word32*)T6[temp[2][1]])
+           ^ *((word32*)T7[temp[1][2]]) 
+           ^ *((word32*)T8[temp[0][3]]);
+	}
+	/* last round is special */   
+	*((word32*)temp[0]) = *((word32*)(b   )) ^ *((word32*)rk[1][0]);
+	*((word32*)temp[1]) = *((word32*)(b+ 4)) ^ *((word32*)rk[1][1]);
+	*((word32*)temp[2]) = *((word32*)(b+ 8)) ^ *((word32*)rk[1][2]);
+	*((word32*)temp[3]) = *((word32*)(b+12)) ^ *((word32*)rk[1][3]);
+	b[ 0] = S5[temp[0][0]];
+	b[ 1] = S5[temp[3][1]];
+	b[ 2] = S5[temp[2][2]];
+	b[ 3] = S5[temp[1][3]];
+	b[ 4] = S5[temp[1][0]];
+	b[ 5] = S5[temp[0][1]];
+	b[ 6] = S5[temp[3][2]];
+	b[ 7] = S5[temp[2][3]];
+	b[ 8] = S5[temp[2][0]];
+	b[ 9] = S5[temp[1][1]];
+	b[10] = S5[temp[0][2]];
+	b[11] = S5[temp[3][3]];
+	b[12] = S5[temp[3][0]];
+	b[13] = S5[temp[2][1]];
+	b[14] = S5[temp[1][2]];
+	b[15] = S5[temp[0][3]];
+	*((word32*)(b   )) ^= *((word32*)rk[0][0]);
+	*((word32*)(b+ 4)) ^= *((word32*)rk[0][1]);
+	*((word32*)(b+ 8)) ^= *((word32*)rk[0][2]);
+	*((word32*)(b+12)) ^= *((word32*)rk[0][3]);
+
+	return 0;
+}
+
 #endif
-
-#include "rijndael-alg-fst.h"
-
-#define FULL_UNROLL 1
-/*
-Te0[x] = S [x].[02, 01, 01, 03];
-Te1[x] = S [x].[03, 02, 01, 01];
-Te2[x] = S [x].[01, 03, 02, 01];
-Te3[x] = S [x].[01, 01, 03, 02];
-Te4[x] = S [x].[01, 01, 01, 01];
-
-Td0[x] = Si[x].[0e, 09, 0d, 0b];
-Td1[x] = Si[x].[0b, 0e, 09, 0d];
-Td2[x] = Si[x].[0d, 0b, 0e, 09];
-Td3[x] = Si[x].[09, 0d, 0b, 0e];
-Td4[x] = Si[x].[01, 01, 01, 01];
-*/
-
-static const u32 Te0[256] = {
-    0xc66363a5U, 0xf87c7c84U, 0xee777799U, 0xf67b7b8dU,
-    0xfff2f20dU, 0xd66b6bbdU, 0xde6f6fb1U, 0x91c5c554U,
-    0x60303050U, 0x02010103U, 0xce6767a9U, 0x562b2b7dU,
-    0xe7fefe19U, 0xb5d7d762U, 0x4dababe6U, 0xec76769aU,
-    0x8fcaca45U, 0x1f82829dU, 0x89c9c940U, 0xfa7d7d87U,
-    0xeffafa15U, 0xb25959ebU, 0x8e4747c9U, 0xfbf0f00bU,
-    0x41adadecU, 0xb3d4d467U, 0x5fa2a2fdU, 0x45afafeaU,
-    0x239c9cbfU, 0x53a4a4f7U, 0xe4727296U, 0x9bc0c05bU,
-    0x75b7b7c2U, 0xe1fdfd1cU, 0x3d9393aeU, 0x4c26266aU,
-    0x6c36365aU, 0x7e3f3f41U, 0xf5f7f702U, 0x83cccc4fU,
-    0x6834345cU, 0x51a5a5f4U, 0xd1e5e534U, 0xf9f1f108U,
-    0xe2717193U, 0xabd8d873U, 0x62313153U, 0x2a15153fU,
-    0x0804040cU, 0x95c7c752U, 0x46232365U, 0x9dc3c35eU,
-    0x30181828U, 0x379696a1U, 0x0a05050fU, 0x2f9a9ab5U,
-    0x0e070709U, 0x24121236U, 0x1b80809bU, 0xdfe2e23dU,
-    0xcdebeb26U, 0x4e272769U, 0x7fb2b2cdU, 0xea75759fU,
-    0x1209091bU, 0x1d83839eU, 0x582c2c74U, 0x341a1a2eU,
-    0x361b1b2dU, 0xdc6e6eb2U, 0xb45a5aeeU, 0x5ba0a0fbU,
-    0xa45252f6U, 0x763b3b4dU, 0xb7d6d661U, 0x7db3b3ceU,
-    0x5229297bU, 0xdde3e33eU, 0x5e2f2f71U, 0x13848497U,
-    0xa65353f5U, 0xb9d1d168U, 0x00000000U, 0xc1eded2cU,
-    0x40202060U, 0xe3fcfc1fU, 0x79b1b1c8U, 0xb65b5bedU,
-    0xd46a6abeU, 0x8dcbcb46U, 0x67bebed9U, 0x7239394bU,
-    0x944a4adeU, 0x984c4cd4U, 0xb05858e8U, 0x85cfcf4aU,
-    0xbbd0d06bU, 0xc5efef2aU, 0x4faaaae5U, 0xedfbfb16U,
-    0x864343c5U, 0x9a4d4dd7U, 0x66333355U, 0x11858594U,
-    0x8a4545cfU, 0xe9f9f910U, 0x04020206U, 0xfe7f7f81U,
-    0xa05050f0U, 0x783c3c44U, 0x259f9fbaU, 0x4ba8a8e3U,
-    0xa25151f3U, 0x5da3a3feU, 0x804040c0U, 0x058f8f8aU,
-    0x3f9292adU, 0x219d9dbcU, 0x70383848U, 0xf1f5f504U,
-    0x63bcbcdfU, 0x77b6b6c1U, 0xafdada75U, 0x42212163U,
-    0x20101030U, 0xe5ffff1aU, 0xfdf3f30eU, 0xbfd2d26dU,
-    0x81cdcd4cU, 0x180c0c14U, 0x26131335U, 0xc3ecec2fU,
-    0xbe5f5fe1U, 0x359797a2U, 0x884444ccU, 0x2e171739U,
-    0x93c4c457U, 0x55a7a7f2U, 0xfc7e7e82U, 0x7a3d3d47U,
-    0xc86464acU, 0xba5d5de7U, 0x3219192bU, 0xe6737395U,
-    0xc06060a0U, 0x19818198U, 0x9e4f4fd1U, 0xa3dcdc7fU,
-    0x44222266U, 0x542a2a7eU, 0x3b9090abU, 0x0b888883U,
-    0x8c4646caU, 0xc7eeee29U, 0x6bb8b8d3U, 0x2814143cU,
-    0xa7dede79U, 0xbc5e5ee2U, 0x160b0b1dU, 0xaddbdb76U,
-    0xdbe0e03bU, 0x64323256U, 0x743a3a4eU, 0x140a0a1eU,
-    0x924949dbU, 0x0c06060aU, 0x4824246cU, 0xb85c5ce4U,
-    0x9fc2c25dU, 0xbdd3d36eU, 0x43acacefU, 0xc46262a6U,
-    0x399191a8U, 0x319595a4U, 0xd3e4e437U, 0xf279798bU,
-    0xd5e7e732U, 0x8bc8c843U, 0x6e373759U, 0xda6d6db7U,
-    0x018d8d8cU, 0xb1d5d564U, 0x9c4e4ed2U, 0x49a9a9e0U,
-    0xd86c6cb4U, 0xac5656faU, 0xf3f4f407U, 0xcfeaea25U,
-    0xca6565afU, 0xf47a7a8eU, 0x47aeaee9U, 0x10080818U,
-    0x6fbabad5U, 0xf0787888U, 0x4a25256fU, 0x5c2e2e72U,
-    0x381c1c24U, 0x57a6a6f1U, 0x73b4b4c7U, 0x97c6c651U,
-    0xcbe8e823U, 0xa1dddd7cU, 0xe874749cU, 0x3e1f1f21U,
-    0x964b4bddU, 0x61bdbddcU, 0x0d8b8b86U, 0x0f8a8a85U,
-    0xe0707090U, 0x7c3e3e42U, 0x71b5b5c4U, 0xcc6666aaU,
-    0x904848d8U, 0x06030305U, 0xf7f6f601U, 0x1c0e0e12U,
-    0xc26161a3U, 0x6a35355fU, 0xae5757f9U, 0x69b9b9d0U,
-    0x17868691U, 0x99c1c158U, 0x3a1d1d27U, 0x279e9eb9U,
-    0xd9e1e138U, 0xebf8f813U, 0x2b9898b3U, 0x22111133U,
-    0xd26969bbU, 0xa9d9d970U, 0x078e8e89U, 0x339494a7U,
-    0x2d9b9bb6U, 0x3c1e1e22U, 0x15878792U, 0xc9e9e920U,
-    0x87cece49U, 0xaa5555ffU, 0x50282878U, 0xa5dfdf7aU,
-    0x038c8c8fU, 0x59a1a1f8U, 0x09898980U, 0x1a0d0d17U,
-    0x65bfbfdaU, 0xd7e6e631U, 0x844242c6U, 0xd06868b8U,
-    0x824141c3U, 0x299999b0U, 0x5a2d2d77U, 0x1e0f0f11U,
-    0x7bb0b0cbU, 0xa85454fcU, 0x6dbbbbd6U, 0x2c16163aU,
-};
-static const u32 Te1[256] = {
-    0xa5c66363U, 0x84f87c7cU, 0x99ee7777U, 0x8df67b7bU,
-    0x0dfff2f2U, 0xbdd66b6bU, 0xb1de6f6fU, 0x5491c5c5U,
-    0x50603030U, 0x03020101U, 0xa9ce6767U, 0x7d562b2bU,
-    0x19e7fefeU, 0x62b5d7d7U, 0xe64dababU, 0x9aec7676U,
-    0x458fcacaU, 0x9d1f8282U, 0x4089c9c9U, 0x87fa7d7dU,
-    0x15effafaU, 0xebb25959U, 0xc98e4747U, 0x0bfbf0f0U,
-    0xec41adadU, 0x67b3d4d4U, 0xfd5fa2a2U, 0xea45afafU,
-    0xbf239c9cU, 0xf753a4a4U, 0x96e47272U, 0x5b9bc0c0U,
-    0xc275b7b7U, 0x1ce1fdfdU, 0xae3d9393U, 0x6a4c2626U,
-    0x5a6c3636U, 0x417e3f3fU, 0x02f5f7f7U, 0x4f83ccccU,
-    0x5c683434U, 0xf451a5a5U, 0x34d1e5e5U, 0x08f9f1f1U,
-    0x93e27171U, 0x73abd8d8U, 0x53623131U, 0x3f2a1515U,
-    0x0c080404U, 0x5295c7c7U, 0x65462323U, 0x5e9dc3c3U,
-    0x28301818U, 0xa1379696U, 0x0f0a0505U, 0xb52f9a9aU,
-    0x090e0707U, 0x36241212U, 0x9b1b8080U, 0x3ddfe2e2U,
-    0x26cdebebU, 0x694e2727U, 0xcd7fb2b2U, 0x9fea7575U,
-    0x1b120909U, 0x9e1d8383U, 0x74582c2cU, 0x2e341a1aU,
-    0x2d361b1bU, 0xb2dc6e6eU, 0xeeb45a5aU, 0xfb5ba0a0U,
-    0xf6a45252U, 0x4d763b3bU, 0x61b7d6d6U, 0xce7db3b3U,
-    0x7b522929U, 0x3edde3e3U, 0x715e2f2fU, 0x97138484U,
-    0xf5a65353U, 0x68b9d1d1U, 0x00000000U, 0x2cc1ededU,
-    0x60402020U, 0x1fe3fcfcU, 0xc879b1b1U, 0xedb65b5bU,
-    0xbed46a6aU, 0x468dcbcbU, 0xd967bebeU, 0x4b723939U,
-    0xde944a4aU, 0xd4984c4cU, 0xe8b05858U, 0x4a85cfcfU,
-    0x6bbbd0d0U, 0x2ac5efefU, 0xe54faaaaU, 0x16edfbfbU,
-    0xc5864343U, 0xd79a4d4dU, 0x55663333U, 0x94118585U,
-    0xcf8a4545U, 0x10e9f9f9U, 0x06040202U, 0x81fe7f7fU,
-    0xf0a05050U, 0x44783c3cU, 0xba259f9fU, 0xe34ba8a8U,
-    0xf3a25151U, 0xfe5da3a3U, 0xc0804040U, 0x8a058f8fU,
-    0xad3f9292U, 0xbc219d9dU, 0x48703838U, 0x04f1f5f5U,
-    0xdf63bcbcU, 0xc177b6b6U, 0x75afdadaU, 0x63422121U,
-    0x30201010U, 0x1ae5ffffU, 0x0efdf3f3U, 0x6dbfd2d2U,
-    0x4c81cdcdU, 0x14180c0cU, 0x35261313U, 0x2fc3ececU,
-    0xe1be5f5fU, 0xa2359797U, 0xcc884444U, 0x392e1717U,
-    0x5793c4c4U, 0xf255a7a7U, 0x82fc7e7eU, 0x477a3d3dU,
-    0xacc86464U, 0xe7ba5d5dU, 0x2b321919U, 0x95e67373U,
-    0xa0c06060U, 0x98198181U, 0xd19e4f4fU, 0x7fa3dcdcU,
-    0x66442222U, 0x7e542a2aU, 0xab3b9090U, 0x830b8888U,
-    0xca8c4646U, 0x29c7eeeeU, 0xd36bb8b8U, 0x3c281414U,
-    0x79a7dedeU, 0xe2bc5e5eU, 0x1d160b0bU, 0x76addbdbU,
-    0x3bdbe0e0U, 0x56643232U, 0x4e743a3aU, 0x1e140a0aU,
-    0xdb924949U, 0x0a0c0606U, 0x6c482424U, 0xe4b85c5cU,
-    0x5d9fc2c2U, 0x6ebdd3d3U, 0xef43acacU, 0xa6c46262U,
-    0xa8399191U, 0xa4319595U, 0x37d3e4e4U, 0x8bf27979U,
-    0x32d5e7e7U, 0x438bc8c8U, 0x596e3737U, 0xb7da6d6dU,
-    0x8c018d8dU, 0x64b1d5d5U, 0xd29c4e4eU, 0xe049a9a9U,
-    0xb4d86c6cU, 0xfaac5656U, 0x07f3f4f4U, 0x25cfeaeaU,
-    0xafca6565U, 0x8ef47a7aU, 0xe947aeaeU, 0x18100808U,
-    0xd56fbabaU, 0x88f07878U, 0x6f4a2525U, 0x725c2e2eU,
-    0x24381c1cU, 0xf157a6a6U, 0xc773b4b4U, 0x5197c6c6U,
-    0x23cbe8e8U, 0x7ca1ddddU, 0x9ce87474U, 0x213e1f1fU,
-    0xdd964b4bU, 0xdc61bdbdU, 0x860d8b8bU, 0x850f8a8aU,
-    0x90e07070U, 0x427c3e3eU, 0xc471b5b5U, 0xaacc6666U,
-    0xd8904848U, 0x05060303U, 0x01f7f6f6U, 0x121c0e0eU,
-    0xa3c26161U, 0x5f6a3535U, 0xf9ae5757U, 0xd069b9b9U,
-    0x91178686U, 0x5899c1c1U, 0x273a1d1dU, 0xb9279e9eU,
-    0x38d9e1e1U, 0x13ebf8f8U, 0xb32b9898U, 0x33221111U,
-    0xbbd26969U, 0x70a9d9d9U, 0x89078e8eU, 0xa7339494U,
-    0xb62d9b9bU, 0x223c1e1eU, 0x92158787U, 0x20c9e9e9U,
-    0x4987ceceU, 0xffaa5555U, 0x78502828U, 0x7aa5dfdfU,
-    0x8f038c8cU, 0xf859a1a1U, 0x80098989U, 0x171a0d0dU,
-    0xda65bfbfU, 0x31d7e6e6U, 0xc6844242U, 0xb8d06868U,
-    0xc3824141U, 0xb0299999U, 0x775a2d2dU, 0x111e0f0fU,
-    0xcb7bb0b0U, 0xfca85454U, 0xd66dbbbbU, 0x3a2c1616U,
-};
-static const u32 Te2[256] = {
-    0x63a5c663U, 0x7c84f87cU, 0x7799ee77U, 0x7b8df67bU,
-    0xf20dfff2U, 0x6bbdd66bU, 0x6fb1de6fU, 0xc55491c5U,
-    0x30506030U, 0x01030201U, 0x67a9ce67U, 0x2b7d562bU,
-    0xfe19e7feU, 0xd762b5d7U, 0xabe64dabU, 0x769aec76U,
-    0xca458fcaU, 0x829d1f82U, 0xc94089c9U, 0x7d87fa7dU,
-    0xfa15effaU, 0x59ebb259U, 0x47c98e47U, 0xf00bfbf0U,
-    0xadec41adU, 0xd467b3d4U, 0xa2fd5fa2U, 0xafea45afU,
-    0x9cbf239cU, 0xa4f753a4U, 0x7296e472U, 0xc05b9bc0U,
-    0xb7c275b7U, 0xfd1ce1fdU, 0x93ae3d93U, 0x266a4c26U,
-    0x365a6c36U, 0x3f417e3fU, 0xf702f5f7U, 0xcc4f83ccU,
-    0x345c6834U, 0xa5f451a5U, 0xe534d1e5U, 0xf108f9f1U,
-    0x7193e271U, 0xd873abd8U, 0x31536231U, 0x153f2a15U,
-    0x040c0804U, 0xc75295c7U, 0x23654623U, 0xc35e9dc3U,
-    0x18283018U, 0x96a13796U, 0x050f0a05U, 0x9ab52f9aU,
-    0x07090e07U, 0x12362412U, 0x809b1b80U, 0xe23ddfe2U,
-    0xeb26cdebU, 0x27694e27U, 0xb2cd7fb2U, 0x759fea75U,
-    0x091b1209U, 0x839e1d83U, 0x2c74582cU, 0x1a2e341aU,
-    0x1b2d361bU, 0x6eb2dc6eU, 0x5aeeb45aU, 0xa0fb5ba0U,
-    0x52f6a452U, 0x3b4d763bU, 0xd661b7d6U, 0xb3ce7db3U,
-    0x297b5229U, 0xe33edde3U, 0x2f715e2fU, 0x84971384U,
-    0x53f5a653U, 0xd168b9d1U, 0x00000000U, 0xed2cc1edU,
-    0x20604020U, 0xfc1fe3fcU, 0xb1c879b1U, 0x5bedb65bU,
-    0x6abed46aU, 0xcb468dcbU, 0xbed967beU, 0x394b7239U,
-    0x4ade944aU, 0x4cd4984cU, 0x58e8b058U, 0xcf4a85cfU,
-    0xd06bbbd0U, 0xef2ac5efU, 0xaae54faaU, 0xfb16edfbU,
-    0x43c58643U, 0x4dd79a4dU, 0x33556633U, 0x85941185U,
-    0x45cf8a45U, 0xf910e9f9U, 0x02060402U, 0x7f81fe7fU,
-    0x50f0a050U, 0x3c44783cU, 0x9fba259fU, 0xa8e34ba8U,
-    0x51f3a251U, 0xa3fe5da3U, 0x40c08040U, 0x8f8a058fU,
-    0x92ad3f92U, 0x9dbc219dU, 0x38487038U, 0xf504f1f5U,
-    0xbcdf63bcU, 0xb6c177b6U, 0xda75afdaU, 0x21634221U,
-    0x10302010U, 0xff1ae5ffU, 0xf30efdf3U, 0xd26dbfd2U,
-    0xcd4c81cdU, 0x0c14180cU, 0x13352613U, 0xec2fc3ecU,
-    0x5fe1be5fU, 0x97a23597U, 0x44cc8844U, 0x17392e17U,
-    0xc45793c4U, 0xa7f255a7U, 0x7e82fc7eU, 0x3d477a3dU,
-    0x64acc864U, 0x5de7ba5dU, 0x192b3219U, 0x7395e673U,
-    0x60a0c060U, 0x81981981U, 0x4fd19e4fU, 0xdc7fa3dcU,
-    0x22664422U, 0x2a7e542aU, 0x90ab3b90U, 0x88830b88U,
-    0x46ca8c46U, 0xee29c7eeU, 0xb8d36bb8U, 0x143c2814U,
-    0xde79a7deU, 0x5ee2bc5eU, 0x0b1d160bU, 0xdb76addbU,
-    0xe03bdbe0U, 0x32566432U, 0x3a4e743aU, 0x0a1e140aU,
-    0x49db9249U, 0x060a0c06U, 0x246c4824U, 0x5ce4b85cU,
-    0xc25d9fc2U, 0xd36ebdd3U, 0xacef43acU, 0x62a6c462U,
-    0x91a83991U, 0x95a43195U, 0xe437d3e4U, 0x798bf279U,
-    0xe732d5e7U, 0xc8438bc8U, 0x37596e37U, 0x6db7da6dU,
-    0x8d8c018dU, 0xd564b1d5U, 0x4ed29c4eU, 0xa9e049a9U,
-    0x6cb4d86cU, 0x56faac56U, 0xf407f3f4U, 0xea25cfeaU,
-    0x65afca65U, 0x7a8ef47aU, 0xaee947aeU, 0x08181008U,
-    0xbad56fbaU, 0x7888f078U, 0x256f4a25U, 0x2e725c2eU,
-    0x1c24381cU, 0xa6f157a6U, 0xb4c773b4U, 0xc65197c6U,
-    0xe823cbe8U, 0xdd7ca1ddU, 0x749ce874U, 0x1f213e1fU,
-    0x4bdd964bU, 0xbddc61bdU, 0x8b860d8bU, 0x8a850f8aU,
-    0x7090e070U, 0x3e427c3eU, 0xb5c471b5U, 0x66aacc66U,
-    0x48d89048U, 0x03050603U, 0xf601f7f6U, 0x0e121c0eU,
-    0x61a3c261U, 0x355f6a35U, 0x57f9ae57U, 0xb9d069b9U,
-    0x86911786U, 0xc15899c1U, 0x1d273a1dU, 0x9eb9279eU,
-    0xe138d9e1U, 0xf813ebf8U, 0x98b32b98U, 0x11332211U,
-    0x69bbd269U, 0xd970a9d9U, 0x8e89078eU, 0x94a73394U,
-    0x9bb62d9bU, 0x1e223c1eU, 0x87921587U, 0xe920c9e9U,
-    0xce4987ceU, 0x55ffaa55U, 0x28785028U, 0xdf7aa5dfU,
-    0x8c8f038cU, 0xa1f859a1U, 0x89800989U, 0x0d171a0dU,
-    0xbfda65bfU, 0xe631d7e6U, 0x42c68442U, 0x68b8d068U,
-    0x41c38241U, 0x99b02999U, 0x2d775a2dU, 0x0f111e0fU,
-    0xb0cb7bb0U, 0x54fca854U, 0xbbd66dbbU, 0x163a2c16U,
-};
-static const u32 Te3[256] = {
-
-    0x6363a5c6U, 0x7c7c84f8U, 0x777799eeU, 0x7b7b8df6U,
-    0xf2f20dffU, 0x6b6bbdd6U, 0x6f6fb1deU, 0xc5c55491U,
-    0x30305060U, 0x01010302U, 0x6767a9ceU, 0x2b2b7d56U,
-    0xfefe19e7U, 0xd7d762b5U, 0xababe64dU, 0x76769aecU,
-    0xcaca458fU, 0x82829d1fU, 0xc9c94089U, 0x7d7d87faU,
-    0xfafa15efU, 0x5959ebb2U, 0x4747c98eU, 0xf0f00bfbU,
-    0xadadec41U, 0xd4d467b3U, 0xa2a2fd5fU, 0xafafea45U,
-    0x9c9cbf23U, 0xa4a4f753U, 0x727296e4U, 0xc0c05b9bU,
-    0xb7b7c275U, 0xfdfd1ce1U, 0x9393ae3dU, 0x26266a4cU,
-    0x36365a6cU, 0x3f3f417eU, 0xf7f702f5U, 0xcccc4f83U,
-    0x34345c68U, 0xa5a5f451U, 0xe5e534d1U, 0xf1f108f9U,
-    0x717193e2U, 0xd8d873abU, 0x31315362U, 0x15153f2aU,
-    0x04040c08U, 0xc7c75295U, 0x23236546U, 0xc3c35e9dU,
-    0x18182830U, 0x9696a137U, 0x05050f0aU, 0x9a9ab52fU,
-    0x0707090eU, 0x12123624U, 0x80809b1bU, 0xe2e23ddfU,
-    0xebeb26cdU, 0x2727694eU, 0xb2b2cd7fU, 0x75759feaU,
-    0x09091b12U, 0x83839e1dU, 0x2c2c7458U, 0x1a1a2e34U,
-    0x1b1b2d36U, 0x6e6eb2dcU, 0x5a5aeeb4U, 0xa0a0fb5bU,
-    0x5252f6a4U, 0x3b3b4d76U, 0xd6d661b7U, 0xb3b3ce7dU,
-    0x29297b52U, 0xe3e33eddU, 0x2f2f715eU, 0x84849713U,
-    0x5353f5a6U, 0xd1d168b9U, 0x00000000U, 0xeded2cc1U,
-    0x20206040U, 0xfcfc1fe3U, 0xb1b1c879U, 0x5b5bedb6U,
-    0x6a6abed4U, 0xcbcb468dU, 0xbebed967U, 0x39394b72U,
-    0x4a4ade94U, 0x4c4cd498U, 0x5858e8b0U, 0xcfcf4a85U,
-    0xd0d06bbbU, 0xefef2ac5U, 0xaaaae54fU, 0xfbfb16edU,
-    0x4343c586U, 0x4d4dd79aU, 0x33335566U, 0x85859411U,
-    0x4545cf8aU, 0xf9f910e9U, 0x02020604U, 0x7f7f81feU,
-    0x5050f0a0U, 0x3c3c4478U, 0x9f9fba25U, 0xa8a8e34bU,
-    0x5151f3a2U, 0xa3a3fe5dU, 0x4040c080U, 0x8f8f8a05U,
-    0x9292ad3fU, 0x9d9dbc21U, 0x38384870U, 0xf5f504f1U,
-    0xbcbcdf63U, 0xb6b6c177U, 0xdada75afU, 0x21216342U,
-    0x10103020U, 0xffff1ae5U, 0xf3f30efdU, 0xd2d26dbfU,
-    0xcdcd4c81U, 0x0c0c1418U, 0x13133526U, 0xecec2fc3U,
-    0x5f5fe1beU, 0x9797a235U, 0x4444cc88U, 0x1717392eU,
-    0xc4c45793U, 0xa7a7f255U, 0x7e7e82fcU, 0x3d3d477aU,
-    0x6464acc8U, 0x5d5de7baU, 0x19192b32U, 0x737395e6U,
-    0x6060a0c0U, 0x81819819U, 0x4f4fd19eU, 0xdcdc7fa3U,
-    0x22226644U, 0x2a2a7e54U, 0x9090ab3bU, 0x8888830bU,
-    0x4646ca8cU, 0xeeee29c7U, 0xb8b8d36bU, 0x14143c28U,
-    0xdede79a7U, 0x5e5ee2bcU, 0x0b0b1d16U, 0xdbdb76adU,
-    0xe0e03bdbU, 0x32325664U, 0x3a3a4e74U, 0x0a0a1e14U,
-    0x4949db92U, 0x06060a0cU, 0x24246c48U, 0x5c5ce4b8U,
-    0xc2c25d9fU, 0xd3d36ebdU, 0xacacef43U, 0x6262a6c4U,
-    0x9191a839U, 0x9595a431U, 0xe4e437d3U, 0x79798bf2U,
-    0xe7e732d5U, 0xc8c8438bU, 0x3737596eU, 0x6d6db7daU,
-    0x8d8d8c01U, 0xd5d564b1U, 0x4e4ed29cU, 0xa9a9e049U,
-    0x6c6cb4d8U, 0x5656faacU, 0xf4f407f3U, 0xeaea25cfU,
-    0x6565afcaU, 0x7a7a8ef4U, 0xaeaee947U, 0x08081810U,
-    0xbabad56fU, 0x787888f0U, 0x25256f4aU, 0x2e2e725cU,
-    0x1c1c2438U, 0xa6a6f157U, 0xb4b4c773U, 0xc6c65197U,
-    0xe8e823cbU, 0xdddd7ca1U, 0x74749ce8U, 0x1f1f213eU,
-    0x4b4bdd96U, 0xbdbddc61U, 0x8b8b860dU, 0x8a8a850fU,
-    0x707090e0U, 0x3e3e427cU, 0xb5b5c471U, 0x6666aaccU,
-    0x4848d890U, 0x03030506U, 0xf6f601f7U, 0x0e0e121cU,
-    0x6161a3c2U, 0x35355f6aU, 0x5757f9aeU, 0xb9b9d069U,
-    0x86869117U, 0xc1c15899U, 0x1d1d273aU, 0x9e9eb927U,
-    0xe1e138d9U, 0xf8f813ebU, 0x9898b32bU, 0x11113322U,
-    0x6969bbd2U, 0xd9d970a9U, 0x8e8e8907U, 0x9494a733U,
-    0x9b9bb62dU, 0x1e1e223cU, 0x87879215U, 0xe9e920c9U,
-    0xcece4987U, 0x5555ffaaU, 0x28287850U, 0xdfdf7aa5U,
-    0x8c8c8f03U, 0xa1a1f859U, 0x89898009U, 0x0d0d171aU,
-    0xbfbfda65U, 0xe6e631d7U, 0x4242c684U, 0x6868b8d0U,
-    0x4141c382U, 0x9999b029U, 0x2d2d775aU, 0x0f0f111eU,
-    0xb0b0cb7bU, 0x5454fca8U, 0xbbbbd66dU, 0x16163a2cU,
-};
-static const u32 Te4[256] = {
-    0x63636363U, 0x7c7c7c7cU, 0x77777777U, 0x7b7b7b7bU,
-    0xf2f2f2f2U, 0x6b6b6b6bU, 0x6f6f6f6fU, 0xc5c5c5c5U,
-    0x30303030U, 0x01010101U, 0x67676767U, 0x2b2b2b2bU,
-    0xfefefefeU, 0xd7d7d7d7U, 0xababababU, 0x76767676U,
-    0xcacacacaU, 0x82828282U, 0xc9c9c9c9U, 0x7d7d7d7dU,
-    0xfafafafaU, 0x59595959U, 0x47474747U, 0xf0f0f0f0U,
-    0xadadadadU, 0xd4d4d4d4U, 0xa2a2a2a2U, 0xafafafafU,
-    0x9c9c9c9cU, 0xa4a4a4a4U, 0x72727272U, 0xc0c0c0c0U,
-    0xb7b7b7b7U, 0xfdfdfdfdU, 0x93939393U, 0x26262626U,
-    0x36363636U, 0x3f3f3f3fU, 0xf7f7f7f7U, 0xccccccccU,
-    0x34343434U, 0xa5a5a5a5U, 0xe5e5e5e5U, 0xf1f1f1f1U,
-    0x71717171U, 0xd8d8d8d8U, 0x31313131U, 0x15151515U,
-    0x04040404U, 0xc7c7c7c7U, 0x23232323U, 0xc3c3c3c3U,
-    0x18181818U, 0x96969696U, 0x05050505U, 0x9a9a9a9aU,
-    0x07070707U, 0x12121212U, 0x80808080U, 0xe2e2e2e2U,
-    0xebebebebU, 0x27272727U, 0xb2b2b2b2U, 0x75757575U,
-    0x09090909U, 0x83838383U, 0x2c2c2c2cU, 0x1a1a1a1aU,
-    0x1b1b1b1bU, 0x6e6e6e6eU, 0x5a5a5a5aU, 0xa0a0a0a0U,
-    0x52525252U, 0x3b3b3b3bU, 0xd6d6d6d6U, 0xb3b3b3b3U,
-    0x29292929U, 0xe3e3e3e3U, 0x2f2f2f2fU, 0x84848484U,
-    0x53535353U, 0xd1d1d1d1U, 0x00000000U, 0xededededU,
-    0x20202020U, 0xfcfcfcfcU, 0xb1b1b1b1U, 0x5b5b5b5bU,
-    0x6a6a6a6aU, 0xcbcbcbcbU, 0xbebebebeU, 0x39393939U,
-    0x4a4a4a4aU, 0x4c4c4c4cU, 0x58585858U, 0xcfcfcfcfU,
-    0xd0d0d0d0U, 0xefefefefU, 0xaaaaaaaaU, 0xfbfbfbfbU,
-    0x43434343U, 0x4d4d4d4dU, 0x33333333U, 0x85858585U,
-    0x45454545U, 0xf9f9f9f9U, 0x02020202U, 0x7f7f7f7fU,
-    0x50505050U, 0x3c3c3c3cU, 0x9f9f9f9fU, 0xa8a8a8a8U,
-    0x51515151U, 0xa3a3a3a3U, 0x40404040U, 0x8f8f8f8fU,
-    0x92929292U, 0x9d9d9d9dU, 0x38383838U, 0xf5f5f5f5U,
-    0xbcbcbcbcU, 0xb6b6b6b6U, 0xdadadadaU, 0x21212121U,
-    0x10101010U, 0xffffffffU, 0xf3f3f3f3U, 0xd2d2d2d2U,
-    0xcdcdcdcdU, 0x0c0c0c0cU, 0x13131313U, 0xececececU,
-    0x5f5f5f5fU, 0x97979797U, 0x44444444U, 0x17171717U,
-    0xc4c4c4c4U, 0xa7a7a7a7U, 0x7e7e7e7eU, 0x3d3d3d3dU,
-    0x64646464U, 0x5d5d5d5dU, 0x19191919U, 0x73737373U,
-    0x60606060U, 0x81818181U, 0x4f4f4f4fU, 0xdcdcdcdcU,
-    0x22222222U, 0x2a2a2a2aU, 0x90909090U, 0x88888888U,
-    0x46464646U, 0xeeeeeeeeU, 0xb8b8b8b8U, 0x14141414U,
-    0xdedededeU, 0x5e5e5e5eU, 0x0b0b0b0bU, 0xdbdbdbdbU,
-    0xe0e0e0e0U, 0x32323232U, 0x3a3a3a3aU, 0x0a0a0a0aU,
-    0x49494949U, 0x06060606U, 0x24242424U, 0x5c5c5c5cU,
-    0xc2c2c2c2U, 0xd3d3d3d3U, 0xacacacacU, 0x62626262U,
-    0x91919191U, 0x95959595U, 0xe4e4e4e4U, 0x79797979U,
-    0xe7e7e7e7U, 0xc8c8c8c8U, 0x37373737U, 0x6d6d6d6dU,
-    0x8d8d8d8dU, 0xd5d5d5d5U, 0x4e4e4e4eU, 0xa9a9a9a9U,
-    0x6c6c6c6cU, 0x56565656U, 0xf4f4f4f4U, 0xeaeaeaeaU,
-    0x65656565U, 0x7a7a7a7aU, 0xaeaeaeaeU, 0x08080808U,
-    0xbabababaU, 0x78787878U, 0x25252525U, 0x2e2e2e2eU,
-    0x1c1c1c1cU, 0xa6a6a6a6U, 0xb4b4b4b4U, 0xc6c6c6c6U,
-    0xe8e8e8e8U, 0xddddddddU, 0x74747474U, 0x1f1f1f1fU,
-    0x4b4b4b4bU, 0xbdbdbdbdU, 0x8b8b8b8bU, 0x8a8a8a8aU,
-    0x70707070U, 0x3e3e3e3eU, 0xb5b5b5b5U, 0x66666666U,
-    0x48484848U, 0x03030303U, 0xf6f6f6f6U, 0x0e0e0e0eU,
-    0x61616161U, 0x35353535U, 0x57575757U, 0xb9b9b9b9U,
-    0x86868686U, 0xc1c1c1c1U, 0x1d1d1d1dU, 0x9e9e9e9eU,
-    0xe1e1e1e1U, 0xf8f8f8f8U, 0x98989898U, 0x11111111U,
-    0x69696969U, 0xd9d9d9d9U, 0x8e8e8e8eU, 0x94949494U,
-    0x9b9b9b9bU, 0x1e1e1e1eU, 0x87878787U, 0xe9e9e9e9U,
-    0xcecececeU, 0x55555555U, 0x28282828U, 0xdfdfdfdfU,
-    0x8c8c8c8cU, 0xa1a1a1a1U, 0x89898989U, 0x0d0d0d0dU,
-    0xbfbfbfbfU, 0xe6e6e6e6U, 0x42424242U, 0x68686868U,
-    0x41414141U, 0x99999999U, 0x2d2d2d2dU, 0x0f0f0f0fU,
-    0xb0b0b0b0U, 0x54545454U, 0xbbbbbbbbU, 0x16161616U,
-};
-static const u32 Td0[256] = {
-    0x51f4a750U, 0x7e416553U, 0x1a17a4c3U, 0x3a275e96U,
-    0x3bab6bcbU, 0x1f9d45f1U, 0xacfa58abU, 0x4be30393U,
-    0x2030fa55U, 0xad766df6U, 0x88cc7691U, 0xf5024c25U,
-    0x4fe5d7fcU, 0xc52acbd7U, 0x26354480U, 0xb562a38fU,
-    0xdeb15a49U, 0x25ba1b67U, 0x45ea0e98U, 0x5dfec0e1U,
-    0xc32f7502U, 0x814cf012U, 0x8d4697a3U, 0x6bd3f9c6U,
-    0x038f5fe7U, 0x15929c95U, 0xbf6d7aebU, 0x955259daU,
-    0xd4be832dU, 0x587421d3U, 0x49e06929U, 0x8ec9c844U,
-    0x75c2896aU, 0xf48e7978U, 0x99583e6bU, 0x27b971ddU,
-    0xbee14fb6U, 0xf088ad17U, 0xc920ac66U, 0x7dce3ab4U,
-    0x63df4a18U, 0xe51a3182U, 0x97513360U, 0x62537f45U,
-    0xb16477e0U, 0xbb6bae84U, 0xfe81a01cU, 0xf9082b94U,
-    0x70486858U, 0x8f45fd19U, 0x94de6c87U, 0x527bf8b7U,
-    0xab73d323U, 0x724b02e2U, 0xe31f8f57U, 0x6655ab2aU,
-    0xb2eb2807U, 0x2fb5c203U, 0x86c57b9aU, 0xd33708a5U,
-    0x302887f2U, 0x23bfa5b2U, 0x02036abaU, 0xed16825cU,
-    0x8acf1c2bU, 0xa779b492U, 0xf307f2f0U, 0x4e69e2a1U,
-    0x65daf4cdU, 0x0605bed5U, 0xd134621fU, 0xc4a6fe8aU,
-    0x342e539dU, 0xa2f355a0U, 0x058ae132U, 0xa4f6eb75U,
-    0x0b83ec39U, 0x4060efaaU, 0x5e719f06U, 0xbd6e1051U,
-    0x3e218af9U, 0x96dd063dU, 0xdd3e05aeU, 0x4de6bd46U,
-    0x91548db5U, 0x71c45d05U, 0x0406d46fU, 0x605015ffU,
-    0x1998fb24U, 0xd6bde997U, 0x894043ccU, 0x67d99e77U,
-    0xb0e842bdU, 0x07898b88U, 0xe7195b38U, 0x79c8eedbU,
-    0xa17c0a47U, 0x7c420fe9U, 0xf8841ec9U, 0x00000000U,
-    0x09808683U, 0x322bed48U, 0x1e1170acU, 0x6c5a724eU,
-    0xfd0efffbU, 0x0f853856U, 0x3daed51eU, 0x362d3927U,
-    0x0a0fd964U, 0x685ca621U, 0x9b5b54d1U, 0x24362e3aU,
-    0x0c0a67b1U, 0x9357e70fU, 0xb4ee96d2U, 0x1b9b919eU,
-    0x80c0c54fU, 0x61dc20a2U, 0x5a774b69U, 0x1c121a16U,
-    0xe293ba0aU, 0xc0a02ae5U, 0x3c22e043U, 0x121b171dU,
-    0x0e090d0bU, 0xf28bc7adU, 0x2db6a8b9U, 0x141ea9c8U,
-    0x57f11985U, 0xaf75074cU, 0xee99ddbbU, 0xa37f60fdU,
-    0xf701269fU, 0x5c72f5bcU, 0x44663bc5U, 0x5bfb7e34U,
-    0x8b432976U, 0xcb23c6dcU, 0xb6edfc68U, 0xb8e4f163U,
-    0xd731dccaU, 0x42638510U, 0x13972240U, 0x84c61120U,
-    0x854a247dU, 0xd2bb3df8U, 0xaef93211U, 0xc729a16dU,
-    0x1d9e2f4bU, 0xdcb230f3U, 0x0d8652ecU, 0x77c1e3d0U,
-    0x2bb3166cU, 0xa970b999U, 0x119448faU, 0x47e96422U,
-    0xa8fc8cc4U, 0xa0f03f1aU, 0x567d2cd8U, 0x223390efU,
-    0x87494ec7U, 0xd938d1c1U, 0x8ccaa2feU, 0x98d40b36U,
-    0xa6f581cfU, 0xa57ade28U, 0xdab78e26U, 0x3fadbfa4U,
-    0x2c3a9de4U, 0x5078920dU, 0x6a5fcc9bU, 0x547e4662U,
-    0xf68d13c2U, 0x90d8b8e8U, 0x2e39f75eU, 0x82c3aff5U,
-    0x9f5d80beU, 0x69d0937cU, 0x6fd52da9U, 0xcf2512b3U,
-    0xc8ac993bU, 0x10187da7U, 0xe89c636eU, 0xdb3bbb7bU,
-    0xcd267809U, 0x6e5918f4U, 0xec9ab701U, 0x834f9aa8U,
-    0xe6956e65U, 0xaaffe67eU, 0x21bccf08U, 0xef15e8e6U,
-    0xbae79bd9U, 0x4a6f36ceU, 0xea9f09d4U, 0x29b07cd6U,
-    0x31a4b2afU, 0x2a3f2331U, 0xc6a59430U, 0x35a266c0U,
-    0x744ebc37U, 0xfc82caa6U, 0xe090d0b0U, 0x33a7d815U,
-    0xf104984aU, 0x41ecdaf7U, 0x7fcd500eU, 0x1791f62fU,
-    0x764dd68dU, 0x43efb04dU, 0xccaa4d54U, 0xe49604dfU,
-    0x9ed1b5e3U, 0x4c6a881bU, 0xc12c1fb8U, 0x4665517fU,
-    0x9d5eea04U, 0x018c355dU, 0xfa877473U, 0xfb0b412eU,
-    0xb3671d5aU, 0x92dbd252U, 0xe9105633U, 0x6dd64713U,
-    0x9ad7618cU, 0x37a10c7aU, 0x59f8148eU, 0xeb133c89U,
-    0xcea927eeU, 0xb761c935U, 0xe11ce5edU, 0x7a47b13cU,
-    0x9cd2df59U, 0x55f2733fU, 0x1814ce79U, 0x73c737bfU,
-    0x53f7cdeaU, 0x5ffdaa5bU, 0xdf3d6f14U, 0x7844db86U,
-    0xcaaff381U, 0xb968c43eU, 0x3824342cU, 0xc2a3405fU,
-    0x161dc372U, 0xbce2250cU, 0x283c498bU, 0xff0d9541U,
-    0x39a80171U, 0x080cb3deU, 0xd8b4e49cU, 0x6456c190U,
-    0x7bcb8461U, 0xd532b670U, 0x486c5c74U, 0xd0b85742U,
-};
-static const u32 Td1[256] = {
-    0x5051f4a7U, 0x537e4165U, 0xc31a17a4U, 0x963a275eU,
-    0xcb3bab6bU, 0xf11f9d45U, 0xabacfa58U, 0x934be303U,
-    0x552030faU, 0xf6ad766dU, 0x9188cc76U, 0x25f5024cU,
-    0xfc4fe5d7U, 0xd7c52acbU, 0x80263544U, 0x8fb562a3U,
-    0x49deb15aU, 0x6725ba1bU, 0x9845ea0eU, 0xe15dfec0U,
-    0x02c32f75U, 0x12814cf0U, 0xa38d4697U, 0xc66bd3f9U,
-    0xe7038f5fU, 0x9515929cU, 0xebbf6d7aU, 0xda955259U,
-    0x2dd4be83U, 0xd3587421U, 0x2949e069U, 0x448ec9c8U,
-    0x6a75c289U, 0x78f48e79U, 0x6b99583eU, 0xdd27b971U,
-    0xb6bee14fU, 0x17f088adU, 0x66c920acU, 0xb47dce3aU,
-    0x1863df4aU, 0x82e51a31U, 0x60975133U, 0x4562537fU,
-    0xe0b16477U, 0x84bb6baeU, 0x1cfe81a0U, 0x94f9082bU,
-    0x58704868U, 0x198f45fdU, 0x8794de6cU, 0xb7527bf8U,
-    0x23ab73d3U, 0xe2724b02U, 0x57e31f8fU, 0x2a6655abU,
-    0x07b2eb28U, 0x032fb5c2U, 0x9a86c57bU, 0xa5d33708U,
-    0xf2302887U, 0xb223bfa5U, 0xba02036aU, 0x5ced1682U,
-    0x2b8acf1cU, 0x92a779b4U, 0xf0f307f2U, 0xa14e69e2U,
-    0xcd65daf4U, 0xd50605beU, 0x1fd13462U, 0x8ac4a6feU,
-    0x9d342e53U, 0xa0a2f355U, 0x32058ae1U, 0x75a4f6ebU,
-    0x390b83ecU, 0xaa4060efU, 0x065e719fU, 0x51bd6e10U,
-    0xf93e218aU, 0x3d96dd06U, 0xaedd3e05U, 0x464de6bdU,
-    0xb591548dU, 0x0571c45dU, 0x6f0406d4U, 0xff605015U,
-    0x241998fbU, 0x97d6bde9U, 0xcc894043U, 0x7767d99eU,
-    0xbdb0e842U, 0x8807898bU, 0x38e7195bU, 0xdb79c8eeU,
-    0x47a17c0aU, 0xe97c420fU, 0xc9f8841eU, 0x00000000U,
-    0x83098086U, 0x48322bedU, 0xac1e1170U, 0x4e6c5a72U,
-    0xfbfd0effU, 0x560f8538U, 0x1e3daed5U, 0x27362d39U,
-    0x640a0fd9U, 0x21685ca6U, 0xd19b5b54U, 0x3a24362eU,
-    0xb10c0a67U, 0x0f9357e7U, 0xd2b4ee96U, 0x9e1b9b91U,
-    0x4f80c0c5U, 0xa261dc20U, 0x695a774bU, 0x161c121aU,
-    0x0ae293baU, 0xe5c0a02aU, 0x433c22e0U, 0x1d121b17U,
-    0x0b0e090dU, 0xadf28bc7U, 0xb92db6a8U, 0xc8141ea9U,
-    0x8557f119U, 0x4caf7507U, 0xbbee99ddU, 0xfda37f60U,
-    0x9ff70126U, 0xbc5c72f5U, 0xc544663bU, 0x345bfb7eU,
-    0x768b4329U, 0xdccb23c6U, 0x68b6edfcU, 0x63b8e4f1U,
-    0xcad731dcU, 0x10426385U, 0x40139722U, 0x2084c611U,
-    0x7d854a24U, 0xf8d2bb3dU, 0x11aef932U, 0x6dc729a1U,
-    0x4b1d9e2fU, 0xf3dcb230U, 0xec0d8652U, 0xd077c1e3U,
-    0x6c2bb316U, 0x99a970b9U, 0xfa119448U, 0x2247e964U,
-    0xc4a8fc8cU, 0x1aa0f03fU, 0xd8567d2cU, 0xef223390U,
-    0xc787494eU, 0xc1d938d1U, 0xfe8ccaa2U, 0x3698d40bU,
-    0xcfa6f581U, 0x28a57adeU, 0x26dab78eU, 0xa43fadbfU,
-    0xe42c3a9dU, 0x0d507892U, 0x9b6a5fccU, 0x62547e46U,
-    0xc2f68d13U, 0xe890d8b8U, 0x5e2e39f7U, 0xf582c3afU,
-    0xbe9f5d80U, 0x7c69d093U, 0xa96fd52dU, 0xb3cf2512U,
-    0x3bc8ac99U, 0xa710187dU, 0x6ee89c63U, 0x7bdb3bbbU,
-    0x09cd2678U, 0xf46e5918U, 0x01ec9ab7U, 0xa8834f9aU,
-    0x65e6956eU, 0x7eaaffe6U, 0x0821bccfU, 0xe6ef15e8U,
-    0xd9bae79bU, 0xce4a6f36U, 0xd4ea9f09U, 0xd629b07cU,
-    0xaf31a4b2U, 0x312a3f23U, 0x30c6a594U, 0xc035a266U,
-    0x37744ebcU, 0xa6fc82caU, 0xb0e090d0U, 0x1533a7d8U,
-    0x4af10498U, 0xf741ecdaU, 0x0e7fcd50U, 0x2f1791f6U,
-    0x8d764dd6U, 0x4d43efb0U, 0x54ccaa4dU, 0xdfe49604U,
-    0xe39ed1b5U, 0x1b4c6a88U, 0xb8c12c1fU, 0x7f466551U,
-    0x049d5eeaU, 0x5d018c35U, 0x73fa8774U, 0x2efb0b41U,
-    0x5ab3671dU, 0x5292dbd2U, 0x33e91056U, 0x136dd647U,
-    0x8c9ad761U, 0x7a37a10cU, 0x8e59f814U, 0x89eb133cU,
-    0xeecea927U, 0x35b761c9U, 0xede11ce5U, 0x3c7a47b1U,
-    0x599cd2dfU, 0x3f55f273U, 0x791814ceU, 0xbf73c737U,
-    0xea53f7cdU, 0x5b5ffdaaU, 0x14df3d6fU, 0x867844dbU,
-    0x81caaff3U, 0x3eb968c4U, 0x2c382434U, 0x5fc2a340U,
-    0x72161dc3U, 0x0cbce225U, 0x8b283c49U, 0x41ff0d95U,
-    0x7139a801U, 0xde080cb3U, 0x9cd8b4e4U, 0x906456c1U,
-    0x617bcb84U, 0x70d532b6U, 0x74486c5cU, 0x42d0b857U,
-};
-static const u32 Td2[256] = {
-    0xa75051f4U, 0x65537e41U, 0xa4c31a17U, 0x5e963a27U,
-    0x6bcb3babU, 0x45f11f9dU, 0x58abacfaU, 0x03934be3U,
-    0xfa552030U, 0x6df6ad76U, 0x769188ccU, 0x4c25f502U,
-    0xd7fc4fe5U, 0xcbd7c52aU, 0x44802635U, 0xa38fb562U,
-    0x5a49deb1U, 0x1b6725baU, 0x0e9845eaU, 0xc0e15dfeU,
-    0x7502c32fU, 0xf012814cU, 0x97a38d46U, 0xf9c66bd3U,
-    0x5fe7038fU, 0x9c951592U, 0x7aebbf6dU, 0x59da9552U,
-    0x832dd4beU, 0x21d35874U, 0x692949e0U, 0xc8448ec9U,
-    0x896a75c2U, 0x7978f48eU, 0x3e6b9958U, 0x71dd27b9U,
-    0x4fb6bee1U, 0xad17f088U, 0xac66c920U, 0x3ab47dceU,
-    0x4a1863dfU, 0x3182e51aU, 0x33609751U, 0x7f456253U,
-    0x77e0b164U, 0xae84bb6bU, 0xa01cfe81U, 0x2b94f908U,
-    0x68587048U, 0xfd198f45U, 0x6c8794deU, 0xf8b7527bU,
-    0xd323ab73U, 0x02e2724bU, 0x8f57e31fU, 0xab2a6655U,
-    0x2807b2ebU, 0xc2032fb5U, 0x7b9a86c5U, 0x08a5d337U,
-    0x87f23028U, 0xa5b223bfU, 0x6aba0203U, 0x825ced16U,
-    0x1c2b8acfU, 0xb492a779U, 0xf2f0f307U, 0xe2a14e69U,
-    0xf4cd65daU, 0xbed50605U, 0x621fd134U, 0xfe8ac4a6U,
-    0x539d342eU, 0x55a0a2f3U, 0xe132058aU, 0xeb75a4f6U,
-    0xec390b83U, 0xefaa4060U, 0x9f065e71U, 0x1051bd6eU,
-
-    0x8af93e21U, 0x063d96ddU, 0x05aedd3eU, 0xbd464de6U,
-    0x8db59154U, 0x5d0571c4U, 0xd46f0406U, 0x15ff6050U,
-    0xfb241998U, 0xe997d6bdU, 0x43cc8940U, 0x9e7767d9U,
-    0x42bdb0e8U, 0x8b880789U, 0x5b38e719U, 0xeedb79c8U,
-    0x0a47a17cU, 0x0fe97c42U, 0x1ec9f884U, 0x00000000U,
-    0x86830980U, 0xed48322bU, 0x70ac1e11U, 0x724e6c5aU,
-    0xfffbfd0eU, 0x38560f85U, 0xd51e3daeU, 0x3927362dU,
-    0xd9640a0fU, 0xa621685cU, 0x54d19b5bU, 0x2e3a2436U,
-    0x67b10c0aU, 0xe70f9357U, 0x96d2b4eeU, 0x919e1b9bU,
-    0xc54f80c0U, 0x20a261dcU, 0x4b695a77U, 0x1a161c12U,
-    0xba0ae293U, 0x2ae5c0a0U, 0xe0433c22U, 0x171d121bU,
-    0x0d0b0e09U, 0xc7adf28bU, 0xa8b92db6U, 0xa9c8141eU,
-    0x198557f1U, 0x074caf75U, 0xddbbee99U, 0x60fda37fU,
-    0x269ff701U, 0xf5bc5c72U, 0x3bc54466U, 0x7e345bfbU,
-    0x29768b43U, 0xc6dccb23U, 0xfc68b6edU, 0xf163b8e4U,
-    0xdccad731U, 0x85104263U, 0x22401397U, 0x112084c6U,
-    0x247d854aU, 0x3df8d2bbU, 0x3211aef9U, 0xa16dc729U,
-    0x2f4b1d9eU, 0x30f3dcb2U, 0x52ec0d86U, 0xe3d077c1U,
-    0x166c2bb3U, 0xb999a970U, 0x48fa1194U, 0x642247e9U,
-    0x8cc4a8fcU, 0x3f1aa0f0U, 0x2cd8567dU, 0x90ef2233U,
-    0x4ec78749U, 0xd1c1d938U, 0xa2fe8ccaU, 0x0b3698d4U,
-    0x81cfa6f5U, 0xde28a57aU, 0x8e26dab7U, 0xbfa43fadU,
-    0x9de42c3aU, 0x920d5078U, 0xcc9b6a5fU, 0x4662547eU,
-    0x13c2f68dU, 0xb8e890d8U, 0xf75e2e39U, 0xaff582c3U,
-    0x80be9f5dU, 0x937c69d0U, 0x2da96fd5U, 0x12b3cf25U,
-    0x993bc8acU, 0x7da71018U, 0x636ee89cU, 0xbb7bdb3bU,
-    0x7809cd26U, 0x18f46e59U, 0xb701ec9aU, 0x9aa8834fU,
-    0x6e65e695U, 0xe67eaaffU, 0xcf0821bcU, 0xe8e6ef15U,
-    0x9bd9bae7U, 0x36ce4a6fU, 0x09d4ea9fU, 0x7cd629b0U,
-    0xb2af31a4U, 0x23312a3fU, 0x9430c6a5U, 0x66c035a2U,
-    0xbc37744eU, 0xcaa6fc82U, 0xd0b0e090U, 0xd81533a7U,
-    0x984af104U, 0xdaf741ecU, 0x500e7fcdU, 0xf62f1791U,
-    0xd68d764dU, 0xb04d43efU, 0x4d54ccaaU, 0x04dfe496U,
-    0xb5e39ed1U, 0x881b4c6aU, 0x1fb8c12cU, 0x517f4665U,
-    0xea049d5eU, 0x355d018cU, 0x7473fa87U, 0x412efb0bU,
-    0x1d5ab367U, 0xd25292dbU, 0x5633e910U, 0x47136dd6U,
-    0x618c9ad7U, 0x0c7a37a1U, 0x148e59f8U, 0x3c89eb13U,
-    0x27eecea9U, 0xc935b761U, 0xe5ede11cU, 0xb13c7a47U,
-    0xdf599cd2U, 0x733f55f2U, 0xce791814U, 0x37bf73c7U,
-    0xcdea53f7U, 0xaa5b5ffdU, 0x6f14df3dU, 0xdb867844U,
-    0xf381caafU, 0xc43eb968U, 0x342c3824U, 0x405fc2a3U,
-    0xc372161dU, 0x250cbce2U, 0x498b283cU, 0x9541ff0dU,
-    0x017139a8U, 0xb3de080cU, 0xe49cd8b4U, 0xc1906456U,
-    0x84617bcbU, 0xb670d532U, 0x5c74486cU, 0x5742d0b8U,
-};
-static const u32 Td3[256] = {
-    0xf4a75051U, 0x4165537eU, 0x17a4c31aU, 0x275e963aU,
-    0xab6bcb3bU, 0x9d45f11fU, 0xfa58abacU, 0xe303934bU,
-    0x30fa5520U, 0x766df6adU, 0xcc769188U, 0x024c25f5U,
-    0xe5d7fc4fU, 0x2acbd7c5U, 0x35448026U, 0x62a38fb5U,
-    0xb15a49deU, 0xba1b6725U, 0xea0e9845U, 0xfec0e15dU,
-    0x2f7502c3U, 0x4cf01281U, 0x4697a38dU, 0xd3f9c66bU,
-    0x8f5fe703U, 0x929c9515U, 0x6d7aebbfU, 0x5259da95U,
-    0xbe832dd4U, 0x7421d358U, 0xe0692949U, 0xc9c8448eU,
-    0xc2896a75U, 0x8e7978f4U, 0x583e6b99U, 0xb971dd27U,
-    0xe14fb6beU, 0x88ad17f0U, 0x20ac66c9U, 0xce3ab47dU,
-    0xdf4a1863U, 0x1a3182e5U, 0x51336097U, 0x537f4562U,
-    0x6477e0b1U, 0x6bae84bbU, 0x81a01cfeU, 0x082b94f9U,
-    0x48685870U, 0x45fd198fU, 0xde6c8794U, 0x7bf8b752U,
-    0x73d323abU, 0x4b02e272U, 0x1f8f57e3U, 0x55ab2a66U,
-    0xeb2807b2U, 0xb5c2032fU, 0xc57b9a86U, 0x3708a5d3U,
-    0x2887f230U, 0xbfa5b223U, 0x036aba02U, 0x16825cedU,
-    0xcf1c2b8aU, 0x79b492a7U, 0x07f2f0f3U, 0x69e2a14eU,
-    0xdaf4cd65U, 0x05bed506U, 0x34621fd1U, 0xa6fe8ac4U,
-    0x2e539d34U, 0xf355a0a2U, 0x8ae13205U, 0xf6eb75a4U,
-    0x83ec390bU, 0x60efaa40U, 0x719f065eU, 0x6e1051bdU,
-    0x218af93eU, 0xdd063d96U, 0x3e05aeddU, 0xe6bd464dU,
-    0x548db591U, 0xc45d0571U, 0x06d46f04U, 0x5015ff60U,
-    0x98fb2419U, 0xbde997d6U, 0x4043cc89U, 0xd99e7767U,
-    0xe842bdb0U, 0x898b8807U, 0x195b38e7U, 0xc8eedb79U,
-    0x7c0a47a1U, 0x420fe97cU, 0x841ec9f8U, 0x00000000U,
-    0x80868309U, 0x2bed4832U, 0x1170ac1eU, 0x5a724e6cU,
-    0x0efffbfdU, 0x8538560fU, 0xaed51e3dU, 0x2d392736U,
-    0x0fd9640aU, 0x5ca62168U, 0x5b54d19bU, 0x362e3a24U,
-    0x0a67b10cU, 0x57e70f93U, 0xee96d2b4U, 0x9b919e1bU,
-    0xc0c54f80U, 0xdc20a261U, 0x774b695aU, 0x121a161cU,
-    0x93ba0ae2U, 0xa02ae5c0U, 0x22e0433cU, 0x1b171d12U,
-    0x090d0b0eU, 0x8bc7adf2U, 0xb6a8b92dU, 0x1ea9c814U,
-    0xf1198557U, 0x75074cafU, 0x99ddbbeeU, 0x7f60fda3U,
-    0x01269ff7U, 0x72f5bc5cU, 0x663bc544U, 0xfb7e345bU,
-    0x4329768bU, 0x23c6dccbU, 0xedfc68b6U, 0xe4f163b8U,
-    0x31dccad7U, 0x63851042U, 0x97224013U, 0xc6112084U,
-    0x4a247d85U, 0xbb3df8d2U, 0xf93211aeU, 0x29a16dc7U,
-    0x9e2f4b1dU, 0xb230f3dcU, 0x8652ec0dU, 0xc1e3d077U,
-    0xb3166c2bU, 0x70b999a9U, 0x9448fa11U, 0xe9642247U,
-    0xfc8cc4a8U, 0xf03f1aa0U, 0x7d2cd856U, 0x3390ef22U,
-    0x494ec787U, 0x38d1c1d9U, 0xcaa2fe8cU, 0xd40b3698U,
-    0xf581cfa6U, 0x7ade28a5U, 0xb78e26daU, 0xadbfa43fU,
-    0x3a9de42cU, 0x78920d50U, 0x5fcc9b6aU, 0x7e466254U,
-    0x8d13c2f6U, 0xd8b8e890U, 0x39f75e2eU, 0xc3aff582U,
-    0x5d80be9fU, 0xd0937c69U, 0xd52da96fU, 0x2512b3cfU,
-    0xac993bc8U, 0x187da710U, 0x9c636ee8U, 0x3bbb7bdbU,
-    0x267809cdU, 0x5918f46eU, 0x9ab701ecU, 0x4f9aa883U,
-    0x956e65e6U, 0xffe67eaaU, 0xbccf0821U, 0x15e8e6efU,
-    0xe79bd9baU, 0x6f36ce4aU, 0x9f09d4eaU, 0xb07cd629U,
-    0xa4b2af31U, 0x3f23312aU, 0xa59430c6U, 0xa266c035U,
-    0x4ebc3774U, 0x82caa6fcU, 0x90d0b0e0U, 0xa7d81533U,
-    0x04984af1U, 0xecdaf741U, 0xcd500e7fU, 0x91f62f17U,
-    0x4dd68d76U, 0xefb04d43U, 0xaa4d54ccU, 0x9604dfe4U,
-    0xd1b5e39eU, 0x6a881b4cU, 0x2c1fb8c1U, 0x65517f46U,
-    0x5eea049dU, 0x8c355d01U, 0x877473faU, 0x0b412efbU,
-    0x671d5ab3U, 0xdbd25292U, 0x105633e9U, 0xd647136dU,
-    0xd7618c9aU, 0xa10c7a37U, 0xf8148e59U, 0x133c89ebU,
-    0xa927eeceU, 0x61c935b7U, 0x1ce5ede1U, 0x47b13c7aU,
-    0xd2df599cU, 0xf2733f55U, 0x14ce7918U, 0xc737bf73U,
-    0xf7cdea53U, 0xfdaa5b5fU, 0x3d6f14dfU, 0x44db8678U,
-    0xaff381caU, 0x68c43eb9U, 0x24342c38U, 0xa3405fc2U,
-    0x1dc37216U, 0xe2250cbcU, 0x3c498b28U, 0x0d9541ffU,
-    0xa8017139U, 0x0cb3de08U, 0xb4e49cd8U, 0x56c19064U,
-    0xcb84617bU, 0x32b670d5U, 0x6c5c7448U, 0xb85742d0U,
-};
-static const u32 Td4[256] = {
-    0x52525252U, 0x09090909U, 0x6a6a6a6aU, 0xd5d5d5d5U,
-    0x30303030U, 0x36363636U, 0xa5a5a5a5U, 0x38383838U,
-    0xbfbfbfbfU, 0x40404040U, 0xa3a3a3a3U, 0x9e9e9e9eU,
-    0x81818181U, 0xf3f3f3f3U, 0xd7d7d7d7U, 0xfbfbfbfbU,
-    0x7c7c7c7cU, 0xe3e3e3e3U, 0x39393939U, 0x82828282U,
-    0x9b9b9b9bU, 0x2f2f2f2fU, 0xffffffffU, 0x87878787U,
-    0x34343434U, 0x8e8e8e8eU, 0x43434343U, 0x44444444U,
-    0xc4c4c4c4U, 0xdedededeU, 0xe9e9e9e9U, 0xcbcbcbcbU,
-    0x54545454U, 0x7b7b7b7bU, 0x94949494U, 0x32323232U,
-    0xa6a6a6a6U, 0xc2c2c2c2U, 0x23232323U, 0x3d3d3d3dU,
-    0xeeeeeeeeU, 0x4c4c4c4cU, 0x95959595U, 0x0b0b0b0bU,
-    0x42424242U, 0xfafafafaU, 0xc3c3c3c3U, 0x4e4e4e4eU,
-    0x08080808U, 0x2e2e2e2eU, 0xa1a1a1a1U, 0x66666666U,
-    0x28282828U, 0xd9d9d9d9U, 0x24242424U, 0xb2b2b2b2U,
-    0x76767676U, 0x5b5b5b5bU, 0xa2a2a2a2U, 0x49494949U,
-    0x6d6d6d6dU, 0x8b8b8b8bU, 0xd1d1d1d1U, 0x25252525U,
-    0x72727272U, 0xf8f8f8f8U, 0xf6f6f6f6U, 0x64646464U,
-    0x86868686U, 0x68686868U, 0x98989898U, 0x16161616U,
-    0xd4d4d4d4U, 0xa4a4a4a4U, 0x5c5c5c5cU, 0xccccccccU,
-    0x5d5d5d5dU, 0x65656565U, 0xb6b6b6b6U, 0x92929292U,
-    0x6c6c6c6cU, 0x70707070U, 0x48484848U, 0x50505050U,
-    0xfdfdfdfdU, 0xededededU, 0xb9b9b9b9U, 0xdadadadaU,
-    0x5e5e5e5eU, 0x15151515U, 0x46464646U, 0x57575757U,
-    0xa7a7a7a7U, 0x8d8d8d8dU, 0x9d9d9d9dU, 0x84848484U,
-    0x90909090U, 0xd8d8d8d8U, 0xababababU, 0x00000000U,
-    0x8c8c8c8cU, 0xbcbcbcbcU, 0xd3d3d3d3U, 0x0a0a0a0aU,
-    0xf7f7f7f7U, 0xe4e4e4e4U, 0x58585858U, 0x05050505U,
-    0xb8b8b8b8U, 0xb3b3b3b3U, 0x45454545U, 0x06060606U,
-    0xd0d0d0d0U, 0x2c2c2c2cU, 0x1e1e1e1eU, 0x8f8f8f8fU,
-    0xcacacacaU, 0x3f3f3f3fU, 0x0f0f0f0fU, 0x02020202U,
-    0xc1c1c1c1U, 0xafafafafU, 0xbdbdbdbdU, 0x03030303U,
-    0x01010101U, 0x13131313U, 0x8a8a8a8aU, 0x6b6b6b6bU,
-    0x3a3a3a3aU, 0x91919191U, 0x11111111U, 0x41414141U,
-    0x4f4f4f4fU, 0x67676767U, 0xdcdcdcdcU, 0xeaeaeaeaU,
-    0x97979797U, 0xf2f2f2f2U, 0xcfcfcfcfU, 0xcecececeU,
-    0xf0f0f0f0U, 0xb4b4b4b4U, 0xe6e6e6e6U, 0x73737373U,
-    0x96969696U, 0xacacacacU, 0x74747474U, 0x22222222U,
-    0xe7e7e7e7U, 0xadadadadU, 0x35353535U, 0x85858585U,
-    0xe2e2e2e2U, 0xf9f9f9f9U, 0x37373737U, 0xe8e8e8e8U,
-    0x1c1c1c1cU, 0x75757575U, 0xdfdfdfdfU, 0x6e6e6e6eU,
-    0x47474747U, 0xf1f1f1f1U, 0x1a1a1a1aU, 0x71717171U,
-    0x1d1d1d1dU, 0x29292929U, 0xc5c5c5c5U, 0x89898989U,
-    0x6f6f6f6fU, 0xb7b7b7b7U, 0x62626262U, 0x0e0e0e0eU,
-    0xaaaaaaaaU, 0x18181818U, 0xbebebebeU, 0x1b1b1b1bU,
-    0xfcfcfcfcU, 0x56565656U, 0x3e3e3e3eU, 0x4b4b4b4bU,
-    0xc6c6c6c6U, 0xd2d2d2d2U, 0x79797979U, 0x20202020U,
-    0x9a9a9a9aU, 0xdbdbdbdbU, 0xc0c0c0c0U, 0xfefefefeU,
-    0x78787878U, 0xcdcdcdcdU, 0x5a5a5a5aU, 0xf4f4f4f4U,
-    0x1f1f1f1fU, 0xddddddddU, 0xa8a8a8a8U, 0x33333333U,
-    0x88888888U, 0x07070707U, 0xc7c7c7c7U, 0x31313131U,
-    0xb1b1b1b1U, 0x12121212U, 0x10101010U, 0x59595959U,
-    0x27272727U, 0x80808080U, 0xececececU, 0x5f5f5f5fU,
-    0x60606060U, 0x51515151U, 0x7f7f7f7fU, 0xa9a9a9a9U,
-    0x19191919U, 0xb5b5b5b5U, 0x4a4a4a4aU, 0x0d0d0d0dU,
-    0x2d2d2d2dU, 0xe5e5e5e5U, 0x7a7a7a7aU, 0x9f9f9f9fU,
-    0x93939393U, 0xc9c9c9c9U, 0x9c9c9c9cU, 0xefefefefU,
-    0xa0a0a0a0U, 0xe0e0e0e0U, 0x3b3b3b3bU, 0x4d4d4d4dU,
-    0xaeaeaeaeU, 0x2a2a2a2aU, 0xf5f5f5f5U, 0xb0b0b0b0U,
-    0xc8c8c8c8U, 0xebebebebU, 0xbbbbbbbbU, 0x3c3c3c3cU,
-    0x83838383U, 0x53535353U, 0x99999999U, 0x61616161U,
-    0x17171717U, 0x2b2b2b2bU, 0x04040404U, 0x7e7e7e7eU,
-    0xbabababaU, 0x77777777U, 0xd6d6d6d6U, 0x26262626U,
-    0xe1e1e1e1U, 0x69696969U, 0x14141414U, 0x63636363U,
-    0x55555555U, 0x21212121U, 0x0c0c0c0cU, 0x7d7d7d7dU,
-};
-static const u32 rcon[] = {
-	0x01000000, 0x02000000, 0x04000000, 0x08000000,
-	0x10000000, 0x20000000, 0x40000000, 0x80000000,
-	0x1B000000, 0x36000000, /* for 128-bit blocks, Rijndael never uses more than 10 rcon values */
-};
-
-
-#ifdef _MSC_VER
-#define SWAP(x) (_lrotl(x, 8) & 0x00ff00ff | _lrotr(x, 8) & 0xff00ff00)
-#define GETU32(p) SWAP(*((u32 *)(p)))
-#define PUTU32(ct, st) { *((u32 *)(ct)) = SWAP((st)); }
-#else
-#define GETU32(pt) (((u32)(pt)[0] << 24) ^ ((u32)(pt)[1] << 16) ^ ((u32)(pt)[2] <<  8) ^ ((u32)(pt)[3]))
-#define PUTU32(ct, st) { (ct)[0] = (u8)((st) >> 24); (ct)[1] = (u8)((st) >> 16); (ct)[2] = (u8)((st) >>  8); (ct)[3] = (u8)(st); }
-#endif
-
-/**
- * Expand the cipher key into the encryption key schedule.
- *
- * @return	the number of rounds for the given cipher key size.
- */
-int rijndaelKeySetupEnc(u32 rk[/*4*(Nr + 1)*/], const u8 cipherKey[], int keyBits) {
-   	int i = 0;
-	u32 temp;
-
-	rk[0] = GETU32(cipherKey     );
-	rk[1] = GETU32(cipherKey +  4);
-	rk[2] = GETU32(cipherKey +  8);
-	rk[3] = GETU32(cipherKey + 12);
-	if (keyBits == 128) {
-		for (;;) {
-			temp  = rk[3];
-			rk[4] = rk[0] ^
-				(Te4[(temp >> 16) & 0xff] & 0xff000000) ^
-				(Te4[(temp >>  8) & 0xff] & 0x00ff0000) ^
-				(Te4[(temp      ) & 0xff] & 0x0000ff00) ^
-				(Te4[(temp >> 24)       ] & 0x000000ff) ^
-				rcon[i];
-			rk[5] = rk[1] ^ rk[4];
-			rk[6] = rk[2] ^ rk[5];
-			rk[7] = rk[3] ^ rk[6];
-			if (++i == 10) {
-				return 10;
-			}
-			rk += 4;
-		}
-	}
-	rk[4] = GETU32(cipherKey + 16);
-	rk[5] = GETU32(cipherKey + 20);
-	if (keyBits == 192) {
-		for (;;) {
-			temp = rk[ 5];
-			rk[ 6] = rk[ 0] ^
-				(Te4[(temp >> 16) & 0xff] & 0xff000000) ^
-				(Te4[(temp >>  8) & 0xff] & 0x00ff0000) ^
-				(Te4[(temp      ) & 0xff] & 0x0000ff00) ^
-				(Te4[(temp >> 24)       ] & 0x000000ff) ^
-				rcon[i];
-			rk[ 7] = rk[ 1] ^ rk[ 6];
-			rk[ 8] = rk[ 2] ^ rk[ 7];
-			rk[ 9] = rk[ 3] ^ rk[ 8];
-			if (++i == 8) {
-				return 12;
-			}
-			rk[10] = rk[ 4] ^ rk[ 9];
-			rk[11] = rk[ 5] ^ rk[10];
-			rk += 6;
-		}
-	}
-	rk[6] = GETU32(cipherKey + 24);
-	rk[7] = GETU32(cipherKey + 28);
-	if (keyBits == 256) {
-        for (;;) {
-        	temp = rk[ 7];
-        	rk[ 8] = rk[ 0] ^
-        		(Te4[(temp >> 16) & 0xff] & 0xff000000) ^
-        		(Te4[(temp >>  8) & 0xff] & 0x00ff0000) ^
-        		(Te4[(temp      ) & 0xff] & 0x0000ff00) ^
-        		(Te4[(temp >> 24)       ] & 0x000000ff) ^
-        		rcon[i];
-        	rk[ 9] = rk[ 1] ^ rk[ 8];
-        	rk[10] = rk[ 2] ^ rk[ 9];
-        	rk[11] = rk[ 3] ^ rk[10];
-			if (++i == 7) {
-				return 14;
-			}
-        	temp = rk[11];
-        	rk[12] = rk[ 4] ^
-        		(Te4[(temp >> 24)       ] & 0xff000000) ^
-        		(Te4[(temp >> 16) & 0xff] & 0x00ff0000) ^
-        		(Te4[(temp >>  8) & 0xff] & 0x0000ff00) ^
-        		(Te4[(temp      ) & 0xff] & 0x000000ff);
-        	rk[13] = rk[ 5] ^ rk[12];
-        	rk[14] = rk[ 6] ^ rk[13];
-        	rk[15] = rk[ 7] ^ rk[14];
-
-			rk += 8;
-        }
-	}
-	return 0;
-}
-
-/**
- * Expand the cipher key into the decryption key schedule.
- *
- * @return	the number of rounds for the given cipher key size.
- */
-int rijndaelKeySetupDec(u32 rk[/*4*(Nr + 1)*/], const u8 cipherKey[], int keyBits) {
-	int Nr, i, j;
-	u32 temp;
-
-	/* expand the cipher key: */
-	Nr = rijndaelKeySetupEnc(rk, cipherKey, keyBits);
-	/* invert the order of the round keys: */
-	for (i = 0, j = 4*Nr; i < j; i += 4, j -= 4) {
-		temp = rk[i    ]; rk[i    ] = rk[j    ]; rk[j    ] = temp;
-		temp = rk[i + 1]; rk[i + 1] = rk[j + 1]; rk[j + 1] = temp;
-		temp = rk[i + 2]; rk[i + 2] = rk[j + 2]; rk[j + 2] = temp;
-		temp = rk[i + 3]; rk[i + 3] = rk[j + 3]; rk[j + 3] = temp;
-	}
-	/* apply the inverse MixColumn transform to all round keys but the first and the last: */
-	for (i = 1; i < Nr; i++) {
-		rk += 4;
-		rk[0] =
-			Td0[Te4[(rk[0] >> 24)       ] & 0xff] ^
-			Td1[Te4[(rk[0] >> 16) & 0xff] & 0xff] ^
-			Td2[Te4[(rk[0] >>  8) & 0xff] & 0xff] ^
-			Td3[Te4[(rk[0]      ) & 0xff] & 0xff];
-		rk[1] =
-			Td0[Te4[(rk[1] >> 24)       ] & 0xff] ^
-			Td1[Te4[(rk[1] >> 16) & 0xff] & 0xff] ^
-			Td2[Te4[(rk[1] >>  8) & 0xff] & 0xff] ^
-			Td3[Te4[(rk[1]      ) & 0xff] & 0xff];
-		rk[2] =
-			Td0[Te4[(rk[2] >> 24)       ] & 0xff] ^
-			Td1[Te4[(rk[2] >> 16) & 0xff] & 0xff] ^
-			Td2[Te4[(rk[2] >>  8) & 0xff] & 0xff] ^
-			Td3[Te4[(rk[2]      ) & 0xff] & 0xff];
-		rk[3] =
-			Td0[Te4[(rk[3] >> 24)       ] & 0xff] ^
-			Td1[Te4[(rk[3] >> 16) & 0xff] & 0xff] ^
-			Td2[Te4[(rk[3] >>  8) & 0xff] & 0xff] ^
-			Td3[Te4[(rk[3]      ) & 0xff] & 0xff];
-	}
-	return Nr;
-}
-
-void rijndaelEncrypt(const u32 rk[/*4*(Nr + 1)*/], int Nr, const u8 pt[16], u8 ct[16]) {
-	u32 s0, s1, s2, s3, t0, t1, t2, t3;
-#ifndef FULL_UNROLL
-    int r;
-#endif /* ?FULL_UNROLL */
-
-    /*
-	 * map byte array block to cipher state
-	 * and add initial round key:
-	 */
-	s0 = GETU32(pt     ) ^ rk[0];
-	s1 = GETU32(pt +  4) ^ rk[1];
-	s2 = GETU32(pt +  8) ^ rk[2];
-	s3 = GETU32(pt + 12) ^ rk[3];
-#ifdef FULL_UNROLL
-    /* round 1: */
-   	t0 = Te0[s0 >> 24] ^ Te1[(s1 >> 16) & 0xff] ^ Te2[(s2 >>  8) & 0xff] ^ Te3[s3 & 0xff] ^ rk[ 4];
-   	t1 = Te0[s1 >> 24] ^ Te1[(s2 >> 16) & 0xff] ^ Te2[(s3 >>  8) & 0xff] ^ Te3[s0 & 0xff] ^ rk[ 5];
-   	t2 = Te0[s2 >> 24] ^ Te1[(s3 >> 16) & 0xff] ^ Te2[(s0 >>  8) & 0xff] ^ Te3[s1 & 0xff] ^ rk[ 6];
-   	t3 = Te0[s3 >> 24] ^ Te1[(s0 >> 16) & 0xff] ^ Te2[(s1 >>  8) & 0xff] ^ Te3[s2 & 0xff] ^ rk[ 7];
-   	/* round 2: */
-   	s0 = Te0[t0 >> 24] ^ Te1[(t1 >> 16) & 0xff] ^ Te2[(t2 >>  8) & 0xff] ^ Te3[t3 & 0xff] ^ rk[ 8];
-   	s1 = Te0[t1 >> 24] ^ Te1[(t2 >> 16) & 0xff] ^ Te2[(t3 >>  8) & 0xff] ^ Te3[t0 & 0xff] ^ rk[ 9];
-   	s2 = Te0[t2 >> 24] ^ Te1[(t3 >> 16) & 0xff] ^ Te2[(t0 >>  8) & 0xff] ^ Te3[t1 & 0xff] ^ rk[10];
-   	s3 = Te0[t3 >> 24] ^ Te1[(t0 >> 16) & 0xff] ^ Te2[(t1 >>  8) & 0xff] ^ Te3[t2 & 0xff] ^ rk[11];
-    /* round 3: */
-   	t0 = Te0[s0 >> 24] ^ Te1[(s1 >> 16) & 0xff] ^ Te2[(s2 >>  8) & 0xff] ^ Te3[s3 & 0xff] ^ rk[12];
-   	t1 = Te0[s1 >> 24] ^ Te1[(s2 >> 16) & 0xff] ^ Te2[(s3 >>  8) & 0xff] ^ Te3[s0 & 0xff] ^ rk[13];
-   	t2 = Te0[s2 >> 24] ^ Te1[(s3 >> 16) & 0xff] ^ Te2[(s0 >>  8) & 0xff] ^ Te3[s1 & 0xff] ^ rk[14];
-   	t3 = Te0[s3 >> 24] ^ Te1[(s0 >> 16) & 0xff] ^ Te2[(s1 >>  8) & 0xff] ^ Te3[s2 & 0xff] ^ rk[15];
-   	/* round 4: */
-   	s0 = Te0[t0 >> 24] ^ Te1[(t1 >> 16) & 0xff] ^ Te2[(t2 >>  8) & 0xff] ^ Te3[t3 & 0xff] ^ rk[16];
-   	s1 = Te0[t1 >> 24] ^ Te1[(t2 >> 16) & 0xff] ^ Te2[(t3 >>  8) & 0xff] ^ Te3[t0 & 0xff] ^ rk[17];
-   	s2 = Te0[t2 >> 24] ^ Te1[(t3 >> 16) & 0xff] ^ Te2[(t0 >>  8) & 0xff] ^ Te3[t1 & 0xff] ^ rk[18];
-   	s3 = Te0[t3 >> 24] ^ Te1[(t0 >> 16) & 0xff] ^ Te2[(t1 >>  8) & 0xff] ^ Te3[t2 & 0xff] ^ rk[19];
-    /* round 5: */
-   	t0 = Te0[s0 >> 24] ^ Te1[(s1 >> 16) & 0xff] ^ Te2[(s2 >>  8) & 0xff] ^ Te3[s3 & 0xff] ^ rk[20];
-   	t1 = Te0[s1 >> 24] ^ Te1[(s2 >> 16) & 0xff] ^ Te2[(s3 >>  8) & 0xff] ^ Te3[s0 & 0xff] ^ rk[21];
-   	t2 = Te0[s2 >> 24] ^ Te1[(s3 >> 16) & 0xff] ^ Te2[(s0 >>  8) & 0xff] ^ Te3[s1 & 0xff] ^ rk[22];
-   	t3 = Te0[s3 >> 24] ^ Te1[(s0 >> 16) & 0xff] ^ Te2[(s1 >>  8) & 0xff] ^ Te3[s2 & 0xff] ^ rk[23];
-   	/* round 6: */
-   	s0 = Te0[t0 >> 24] ^ Te1[(t1 >> 16) & 0xff] ^ Te2[(t2 >>  8) & 0xff] ^ Te3[t3 & 0xff] ^ rk[24];
-   	s1 = Te0[t1 >> 24] ^ Te1[(t2 >> 16) & 0xff] ^ Te2[(t3 >>  8) & 0xff] ^ Te3[t0 & 0xff] ^ rk[25];
-   	s2 = Te0[t2 >> 24] ^ Te1[(t3 >> 16) & 0xff] ^ Te2[(t0 >>  8) & 0xff] ^ Te3[t1 & 0xff] ^ rk[26];
-   	s3 = Te0[t3 >> 24] ^ Te1[(t0 >> 16) & 0xff] ^ Te2[(t1 >>  8) & 0xff] ^ Te3[t2 & 0xff] ^ rk[27];
-    /* round 7: */
-   	t0 = Te0[s0 >> 24] ^ Te1[(s1 >> 16) & 0xff] ^ Te2[(s2 >>  8) & 0xff] ^ Te3[s3 & 0xff] ^ rk[28];
-   	t1 = Te0[s1 >> 24] ^ Te1[(s2 >> 16) & 0xff] ^ Te2[(s3 >>  8) & 0xff] ^ Te3[s0 & 0xff] ^ rk[29];
-   	t2 = Te0[s2 >> 24] ^ Te1[(s3 >> 16) & 0xff] ^ Te2[(s0 >>  8) & 0xff] ^ Te3[s1 & 0xff] ^ rk[30];
-   	t3 = Te0[s3 >> 24] ^ Te1[(s0 >> 16) & 0xff] ^ Te2[(s1 >>  8) & 0xff] ^ Te3[s2 & 0xff] ^ rk[31];
-   	/* round 8: */
-   	s0 = Te0[t0 >> 24] ^ Te1[(t1 >> 16) & 0xff] ^ Te2[(t2 >>  8) & 0xff] ^ Te3[t3 & 0xff] ^ rk[32];
-   	s1 = Te0[t1 >> 24] ^ Te1[(t2 >> 16) & 0xff] ^ Te2[(t3 >>  8) & 0xff] ^ Te3[t0 & 0xff] ^ rk[33];
-   	s2 = Te0[t2 >> 24] ^ Te1[(t3 >> 16) & 0xff] ^ Te2[(t0 >>  8) & 0xff] ^ Te3[t1 & 0xff] ^ rk[34];
-   	s3 = Te0[t3 >> 24] ^ Te1[(t0 >> 16) & 0xff] ^ Te2[(t1 >>  8) & 0xff] ^ Te3[t2 & 0xff] ^ rk[35];
-    /* round 9: */
-   	t0 = Te0[s0 >> 24] ^ Te1[(s1 >> 16) & 0xff] ^ Te2[(s2 >>  8) & 0xff] ^ Te3[s3 & 0xff] ^ rk[36];
-   	t1 = Te0[s1 >> 24] ^ Te1[(s2 >> 16) & 0xff] ^ Te2[(s3 >>  8) & 0xff] ^ Te3[s0 & 0xff] ^ rk[37];
-   	t2 = Te0[s2 >> 24] ^ Te1[(s3 >> 16) & 0xff] ^ Te2[(s0 >>  8) & 0xff] ^ Te3[s1 & 0xff] ^ rk[38];
-   	t3 = Te0[s3 >> 24] ^ Te1[(s0 >> 16) & 0xff] ^ Te2[(s1 >>  8) & 0xff] ^ Te3[s2 & 0xff] ^ rk[39];
-    if (Nr > 10) {
-        /* round 10: */
-        s0 = Te0[t0 >> 24] ^ Te1[(t1 >> 16) & 0xff] ^ Te2[(t2 >>  8) & 0xff] ^ Te3[t3 & 0xff] ^ rk[40];
-        s1 = Te0[t1 >> 24] ^ Te1[(t2 >> 16) & 0xff] ^ Te2[(t3 >>  8) & 0xff] ^ Te3[t0 & 0xff] ^ rk[41];
-        s2 = Te0[t2 >> 24] ^ Te1[(t3 >> 16) & 0xff] ^ Te2[(t0 >>  8) & 0xff] ^ Te3[t1 & 0xff] ^ rk[42];
-        s3 = Te0[t3 >> 24] ^ Te1[(t0 >> 16) & 0xff] ^ Te2[(t1 >>  8) & 0xff] ^ Te3[t2 & 0xff] ^ rk[43];
-        /* round 11: */
-        t0 = Te0[s0 >> 24] ^ Te1[(s1 >> 16) & 0xff] ^ Te2[(s2 >>  8) & 0xff] ^ Te3[s3 & 0xff] ^ rk[44];
-        t1 = Te0[s1 >> 24] ^ Te1[(s2 >> 16) & 0xff] ^ Te2[(s3 >>  8) & 0xff] ^ Te3[s0 & 0xff] ^ rk[45];
-        t2 = Te0[s2 >> 24] ^ Te1[(s3 >> 16) & 0xff] ^ Te2[(s0 >>  8) & 0xff] ^ Te3[s1 & 0xff] ^ rk[46];
-        t3 = Te0[s3 >> 24] ^ Te1[(s0 >> 16) & 0xff] ^ Te2[(s1 >>  8) & 0xff] ^ Te3[s2 & 0xff] ^ rk[47];
-        if (Nr > 12) {
-            /* round 12: */
-            s0 = Te0[t0 >> 24] ^ Te1[(t1 >> 16) & 0xff] ^ Te2[(t2 >>  8) & 0xff] ^ Te3[t3 & 0xff] ^ rk[48];
-            s1 = Te0[t1 >> 24] ^ Te1[(t2 >> 16) & 0xff] ^ Te2[(t3 >>  8) & 0xff] ^ Te3[t0 & 0xff] ^ rk[49];
-            s2 = Te0[t2 >> 24] ^ Te1[(t3 >> 16) & 0xff] ^ Te2[(t0 >>  8) & 0xff] ^ Te3[t1 & 0xff] ^ rk[50];
-            s3 = Te0[t3 >> 24] ^ Te1[(t0 >> 16) & 0xff] ^ Te2[(t1 >>  8) & 0xff] ^ Te3[t2 & 0xff] ^ rk[51];
-            /* round 13: */
-            t0 = Te0[s0 >> 24] ^ Te1[(s1 >> 16) & 0xff] ^ Te2[(s2 >>  8) & 0xff] ^ Te3[s3 & 0xff] ^ rk[52];
-            t1 = Te0[s1 >> 24] ^ Te1[(s2 >> 16) & 0xff] ^ Te2[(s3 >>  8) & 0xff] ^ Te3[s0 & 0xff] ^ rk[53];
-            t2 = Te0[s2 >> 24] ^ Te1[(s3 >> 16) & 0xff] ^ Te2[(s0 >>  8) & 0xff] ^ Te3[s1 & 0xff] ^ rk[54];
-            t3 = Te0[s3 >> 24] ^ Te1[(s0 >> 16) & 0xff] ^ Te2[(s1 >>  8) & 0xff] ^ Te3[s2 & 0xff] ^ rk[55];
-        }
-    }
-    rk += Nr << 2;
-#else  /* !FULL_UNROLL */
-    /*
-	 * Nr - 1 full rounds:
-	 */
-    r = Nr >> 1;
-    for (;;) {
-        t0 =
-            Te0[(s0 >> 24)       ] ^
-            Te1[(s1 >> 16) & 0xff] ^
-            Te2[(s2 >>  8) & 0xff] ^
-            Te3[(s3      ) & 0xff] ^
-            rk[4];
-        t1 =
-            Te0[(s1 >> 24)       ] ^
-            Te1[(s2 >> 16) & 0xff] ^
-            Te2[(s3 >>  8) & 0xff] ^
-            Te3[(s0      ) & 0xff] ^
-            rk[5];
-        t2 =
-            Te0[(s2 >> 24)       ] ^
-            Te1[(s3 >> 16) & 0xff] ^
-            Te2[(s0 >>  8) & 0xff] ^
-            Te3[(s1      ) & 0xff] ^
-            rk[6];
-        t3 =
-            Te0[(s3 >> 24)       ] ^
-            Te1[(s0 >> 16) & 0xff] ^
-            Te2[(s1 >>  8) & 0xff] ^
-            Te3[(s2      ) & 0xff] ^
-            rk[7];
-
-        rk += 8;
-        if (--r == 0) {
-            break;
-        }
-
-        s0 =
-            Te0[(t0 >> 24)       ] ^
-            Te1[(t1 >> 16) & 0xff] ^
-            Te2[(t2 >>  8) & 0xff] ^
-            Te3[(t3      ) & 0xff] ^
-            rk[0];
-        s1 =
-            Te0[(t1 >> 24)       ] ^
-            Te1[(t2 >> 16) & 0xff] ^
-            Te2[(t3 >>  8) & 0xff] ^
-            Te3[(t0      ) & 0xff] ^
-            rk[1];
-        s2 =
-            Te0[(t2 >> 24)       ] ^
-            Te1[(t3 >> 16) & 0xff] ^
-            Te2[(t0 >>  8) & 0xff] ^
-            Te3[(t1      ) & 0xff] ^
-            rk[2];
-        s3 =
-            Te0[(t3 >> 24)       ] ^
-            Te1[(t0 >> 16) & 0xff] ^
-            Te2[(t1 >>  8) & 0xff] ^
-            Te3[(t2      ) & 0xff] ^
-            rk[3];
-    }
-#endif /* ?FULL_UNROLL */
-    /*
-	 * apply last round and
-	 * map cipher state to byte array block:
-	 */
-	s0 =
-		(Te4[(t0 >> 24)       ] & 0xff000000) ^
-		(Te4[(t1 >> 16) & 0xff] & 0x00ff0000) ^
-		(Te4[(t2 >>  8) & 0xff] & 0x0000ff00) ^
-		(Te4[(t3      ) & 0xff] & 0x000000ff) ^
-		rk[0];
-	PUTU32(ct     , s0);
-	s1 =
-		(Te4[(t1 >> 24)       ] & 0xff000000) ^
-		(Te4[(t2 >> 16) & 0xff] & 0x00ff0000) ^
-		(Te4[(t3 >>  8) & 0xff] & 0x0000ff00) ^
-		(Te4[(t0      ) & 0xff] & 0x000000ff) ^
-		rk[1];
-	PUTU32(ct +  4, s1);
-	s2 =
-		(Te4[(t2 >> 24)       ] & 0xff000000) ^
-		(Te4[(t3 >> 16) & 0xff] & 0x00ff0000) ^
-		(Te4[(t0 >>  8) & 0xff] & 0x0000ff00) ^
-		(Te4[(t1      ) & 0xff] & 0x000000ff) ^
-		rk[2];
-	PUTU32(ct +  8, s2);
-	s3 =
-		(Te4[(t3 >> 24)       ] & 0xff000000) ^
-		(Te4[(t0 >> 16) & 0xff] & 0x00ff0000) ^
-		(Te4[(t1 >>  8) & 0xff] & 0x0000ff00) ^
-		(Te4[(t2      ) & 0xff] & 0x000000ff) ^
-		rk[3];
-	PUTU32(ct + 12, s3);
-}
-
-void rijndaelDecrypt(const u32 rk[/*4*(Nr + 1)*/], int Nr, const u8 ct[16], u8 pt[16]) {
-	u32 s0, s1, s2, s3, t0, t1, t2, t3;
-#ifndef FULL_UNROLL
-    int r;
-#endif /* ?FULL_UNROLL */
-
-    /*
-	 * map byte array block to cipher state
-	 * and add initial round key:
-	 */
-    s0 = GETU32(ct     ) ^ rk[0];
-    s1 = GETU32(ct +  4) ^ rk[1];
-    s2 = GETU32(ct +  8) ^ rk[2];
-    s3 = GETU32(ct + 12) ^ rk[3];
-#ifdef FULL_UNROLL
-    /* round 1: */
-    t0 = Td0[s0 >> 24] ^ Td1[(s3 >> 16) & 0xff] ^ Td2[(s2 >>  8) & 0xff] ^ Td3[s1 & 0xff] ^ rk[ 4];
-    t1 = Td0[s1 >> 24] ^ Td1[(s0 >> 16) & 0xff] ^ Td2[(s3 >>  8) & 0xff] ^ Td3[s2 & 0xff] ^ rk[ 5];
-    t2 = Td0[s2 >> 24] ^ Td1[(s1 >> 16) & 0xff] ^ Td2[(s0 >>  8) & 0xff] ^ Td3[s3 & 0xff] ^ rk[ 6];
-    t3 = Td0[s3 >> 24] ^ Td1[(s2 >> 16) & 0xff] ^ Td2[(s1 >>  8) & 0xff] ^ Td3[s0 & 0xff] ^ rk[ 7];
-    /* round 2: */
-    s0 = Td0[t0 >> 24] ^ Td1[(t3 >> 16) & 0xff] ^ Td2[(t2 >>  8) & 0xff] ^ Td3[t1 & 0xff] ^ rk[ 8];
-    s1 = Td0[t1 >> 24] ^ Td1[(t0 >> 16) & 0xff] ^ Td2[(t3 >>  8) & 0xff] ^ Td3[t2 & 0xff] ^ rk[ 9];
-    s2 = Td0[t2 >> 24] ^ Td1[(t1 >> 16) & 0xff] ^ Td2[(t0 >>  8) & 0xff] ^ Td3[t3 & 0xff] ^ rk[10];
-    s3 = Td0[t3 >> 24] ^ Td1[(t2 >> 16) & 0xff] ^ Td2[(t1 >>  8) & 0xff] ^ Td3[t0 & 0xff] ^ rk[11];
-    /* round 3: */
-    t0 = Td0[s0 >> 24] ^ Td1[(s3 >> 16) & 0xff] ^ Td2[(s2 >>  8) & 0xff] ^ Td3[s1 & 0xff] ^ rk[12];
-    t1 = Td0[s1 >> 24] ^ Td1[(s0 >> 16) & 0xff] ^ Td2[(s3 >>  8) & 0xff] ^ Td3[s2 & 0xff] ^ rk[13];
-    t2 = Td0[s2 >> 24] ^ Td1[(s1 >> 16) & 0xff] ^ Td2[(s0 >>  8) & 0xff] ^ Td3[s3 & 0xff] ^ rk[14];
-    t3 = Td0[s3 >> 24] ^ Td1[(s2 >> 16) & 0xff] ^ Td2[(s1 >>  8) & 0xff] ^ Td3[s0 & 0xff] ^ rk[15];
-    /* round 4: */
-    s0 = Td0[t0 >> 24] ^ Td1[(t3 >> 16) & 0xff] ^ Td2[(t2 >>  8) & 0xff] ^ Td3[t1 & 0xff] ^ rk[16];
-    s1 = Td0[t1 >> 24] ^ Td1[(t0 >> 16) & 0xff] ^ Td2[(t3 >>  8) & 0xff] ^ Td3[t2 & 0xff] ^ rk[17];
-    s2 = Td0[t2 >> 24] ^ Td1[(t1 >> 16) & 0xff] ^ Td2[(t0 >>  8) & 0xff] ^ Td3[t3 & 0xff] ^ rk[18];
-    s3 = Td0[t3 >> 24] ^ Td1[(t2 >> 16) & 0xff] ^ Td2[(t1 >>  8) & 0xff] ^ Td3[t0 & 0xff] ^ rk[19];
-    /* round 5: */
-    t0 = Td0[s0 >> 24] ^ Td1[(s3 >> 16) & 0xff] ^ Td2[(s2 >>  8) & 0xff] ^ Td3[s1 & 0xff] ^ rk[20];
-    t1 = Td0[s1 >> 24] ^ Td1[(s0 >> 16) & 0xff] ^ Td2[(s3 >>  8) & 0xff] ^ Td3[s2 & 0xff] ^ rk[21];
-    t2 = Td0[s2 >> 24] ^ Td1[(s1 >> 16) & 0xff] ^ Td2[(s0 >>  8) & 0xff] ^ Td3[s3 & 0xff] ^ rk[22];
-    t3 = Td0[s3 >> 24] ^ Td1[(s2 >> 16) & 0xff] ^ Td2[(s1 >>  8) & 0xff] ^ Td3[s0 & 0xff] ^ rk[23];
-    /* round 6: */
-    s0 = Td0[t0 >> 24] ^ Td1[(t3 >> 16) & 0xff] ^ Td2[(t2 >>  8) & 0xff] ^ Td3[t1 & 0xff] ^ rk[24];
-    s1 = Td0[t1 >> 24] ^ Td1[(t0 >> 16) & 0xff] ^ Td2[(t3 >>  8) & 0xff] ^ Td3[t2 & 0xff] ^ rk[25];
-    s2 = Td0[t2 >> 24] ^ Td1[(t1 >> 16) & 0xff] ^ Td2[(t0 >>  8) & 0xff] ^ Td3[t3 & 0xff] ^ rk[26];
-    s3 = Td0[t3 >> 24] ^ Td1[(t2 >> 16) & 0xff] ^ Td2[(t1 >>  8) & 0xff] ^ Td3[t0 & 0xff] ^ rk[27];
-    /* round 7: */
-    t0 = Td0[s0 >> 24] ^ Td1[(s3 >> 16) & 0xff] ^ Td2[(s2 >>  8) & 0xff] ^ Td3[s1 & 0xff] ^ rk[28];
-    t1 = Td0[s1 >> 24] ^ Td1[(s0 >> 16) & 0xff] ^ Td2[(s3 >>  8) & 0xff] ^ Td3[s2 & 0xff] ^ rk[29];
-    t2 = Td0[s2 >> 24] ^ Td1[(s1 >> 16) & 0xff] ^ Td2[(s0 >>  8) & 0xff] ^ Td3[s3 & 0xff] ^ rk[30];
-    t3 = Td0[s3 >> 24] ^ Td1[(s2 >> 16) & 0xff] ^ Td2[(s1 >>  8) & 0xff] ^ Td3[s0 & 0xff] ^ rk[31];
-    /* round 8: */
-    s0 = Td0[t0 >> 24] ^ Td1[(t3 >> 16) & 0xff] ^ Td2[(t2 >>  8) & 0xff] ^ Td3[t1 & 0xff] ^ rk[32];
-    s1 = Td0[t1 >> 24] ^ Td1[(t0 >> 16) & 0xff] ^ Td2[(t3 >>  8) & 0xff] ^ Td3[t2 & 0xff] ^ rk[33];
-    s2 = Td0[t2 >> 24] ^ Td1[(t1 >> 16) & 0xff] ^ Td2[(t0 >>  8) & 0xff] ^ Td3[t3 & 0xff] ^ rk[34];
-    s3 = Td0[t3 >> 24] ^ Td1[(t2 >> 16) & 0xff] ^ Td2[(t1 >>  8) & 0xff] ^ Td3[t0 & 0xff] ^ rk[35];
-    /* round 9: */
-    t0 = Td0[s0 >> 24] ^ Td1[(s3 >> 16) & 0xff] ^ Td2[(s2 >>  8) & 0xff] ^ Td3[s1 & 0xff] ^ rk[36];
-    t1 = Td0[s1 >> 24] ^ Td1[(s0 >> 16) & 0xff] ^ Td2[(s3 >>  8) & 0xff] ^ Td3[s2 & 0xff] ^ rk[37];
-    t2 = Td0[s2 >> 24] ^ Td1[(s1 >> 16) & 0xff] ^ Td2[(s0 >>  8) & 0xff] ^ Td3[s3 & 0xff] ^ rk[38];
-    t3 = Td0[s3 >> 24] ^ Td1[(s2 >> 16) & 0xff] ^ Td2[(s1 >>  8) & 0xff] ^ Td3[s0 & 0xff] ^ rk[39];
-    if (Nr > 10) {
-        /* round 10: */
-        s0 = Td0[t0 >> 24] ^ Td1[(t3 >> 16) & 0xff] ^ Td2[(t2 >>  8) & 0xff] ^ Td3[t1 & 0xff] ^ rk[40];
-        s1 = Td0[t1 >> 24] ^ Td1[(t0 >> 16) & 0xff] ^ Td2[(t3 >>  8) & 0xff] ^ Td3[t2 & 0xff] ^ rk[41];
-        s2 = Td0[t2 >> 24] ^ Td1[(t1 >> 16) & 0xff] ^ Td2[(t0 >>  8) & 0xff] ^ Td3[t3 & 0xff] ^ rk[42];
-        s3 = Td0[t3 >> 24] ^ Td1[(t2 >> 16) & 0xff] ^ Td2[(t1 >>  8) & 0xff] ^ Td3[t0 & 0xff] ^ rk[43];
-        /* round 11: */
-        t0 = Td0[s0 >> 24] ^ Td1[(s3 >> 16) & 0xff] ^ Td2[(s2 >>  8) & 0xff] ^ Td3[s1 & 0xff] ^ rk[44];
-        t1 = Td0[s1 >> 24] ^ Td1[(s0 >> 16) & 0xff] ^ Td2[(s3 >>  8) & 0xff] ^ Td3[s2 & 0xff] ^ rk[45];
-        t2 = Td0[s2 >> 24] ^ Td1[(s1 >> 16) & 0xff] ^ Td2[(s0 >>  8) & 0xff] ^ Td3[s3 & 0xff] ^ rk[46];
-        t3 = Td0[s3 >> 24] ^ Td1[(s2 >> 16) & 0xff] ^ Td2[(s1 >>  8) & 0xff] ^ Td3[s0 & 0xff] ^ rk[47];
-        if (Nr > 12) {
-            /* round 12: */
-            s0 = Td0[t0 >> 24] ^ Td1[(t3 >> 16) & 0xff] ^ Td2[(t2 >>  8) & 0xff] ^ Td3[t1 & 0xff] ^ rk[48];
-            s1 = Td0[t1 >> 24] ^ Td1[(t0 >> 16) & 0xff] ^ Td2[(t3 >>  8) & 0xff] ^ Td3[t2 & 0xff] ^ rk[49];
-            s2 = Td0[t2 >> 24] ^ Td1[(t1 >> 16) & 0xff] ^ Td2[(t0 >>  8) & 0xff] ^ Td3[t3 & 0xff] ^ rk[50];
-            s3 = Td0[t3 >> 24] ^ Td1[(t2 >> 16) & 0xff] ^ Td2[(t1 >>  8) & 0xff] ^ Td3[t0 & 0xff] ^ rk[51];
-            /* round 13: */
-            t0 = Td0[s0 >> 24] ^ Td1[(s3 >> 16) & 0xff] ^ Td2[(s2 >>  8) & 0xff] ^ Td3[s1 & 0xff] ^ rk[52];
-            t1 = Td0[s1 >> 24] ^ Td1[(s0 >> 16) & 0xff] ^ Td2[(s3 >>  8) & 0xff] ^ Td3[s2 & 0xff] ^ rk[53];
-            t2 = Td0[s2 >> 24] ^ Td1[(s1 >> 16) & 0xff] ^ Td2[(s0 >>  8) & 0xff] ^ Td3[s3 & 0xff] ^ rk[54];
-            t3 = Td0[s3 >> 24] ^ Td1[(s2 >> 16) & 0xff] ^ Td2[(s1 >>  8) & 0xff] ^ Td3[s0 & 0xff] ^ rk[55];
-        }
-    }
-	rk += Nr << 2;
-#else  /* !FULL_UNROLL */
-    /*
-     * Nr - 1 full rounds:
-     */
-    r = Nr >> 1;
-    for (;;) {
-        t0 =
-            Td0[(s0 >> 24)       ] ^
-            Td1[(s3 >> 16) & 0xff] ^
-            Td2[(s2 >>  8) & 0xff] ^
-            Td3[(s1      ) & 0xff] ^
-            rk[4];
-        t1 =
-            Td0[(s1 >> 24)       ] ^
-            Td1[(s0 >> 16) & 0xff] ^
-            Td2[(s3 >>  8) & 0xff] ^
-            Td3[(s2      ) & 0xff] ^
-            rk[5];
-        t2 =
-            Td0[(s2 >> 24)       ] ^
-            Td1[(s1 >> 16) & 0xff] ^
-            Td2[(s0 >>  8) & 0xff] ^
-            Td3[(s3      ) & 0xff] ^
-            rk[6];
-        t3 =
-            Td0[(s3 >> 24)       ] ^
-            Td1[(s2 >> 16) & 0xff] ^
-            Td2[(s1 >>  8) & 0xff] ^
-            Td3[(s0      ) & 0xff] ^
-            rk[7];
-
-        rk += 8;
-        if (--r == 0) {
-            break;
-        }
-
-        s0 =
-            Td0[(t0 >> 24)       ] ^
-            Td1[(t3 >> 16) & 0xff] ^
-            Td2[(t2 >>  8) & 0xff] ^
-            Td3[(t1      ) & 0xff] ^
-            rk[0];
-        s1 =
-            Td0[(t1 >> 24)       ] ^
-            Td1[(t0 >> 16) & 0xff] ^
-            Td2[(t3 >>  8) & 0xff] ^
-            Td3[(t2      ) & 0xff] ^
-            rk[1];
-        s2 =
-            Td0[(t2 >> 24)       ] ^
-            Td1[(t1 >> 16) & 0xff] ^
-            Td2[(t0 >>  8) & 0xff] ^
-            Td3[(t3      ) & 0xff] ^
-            rk[2];
-        s3 =
-            Td0[(t3 >> 24)       ] ^
-            Td1[(t2 >> 16) & 0xff] ^
-            Td2[(t1 >>  8) & 0xff] ^
-            Td3[(t0      ) & 0xff] ^
-            rk[3];
-    }
-#endif /* ?FULL_UNROLL */
-    /*
-	 * apply last round and
-	 * map cipher state to byte array block:
-	 */
-   	s0 =
-   		(Td4[(t0 >> 24)       ] & 0xff000000) ^
-   		(Td4[(t3 >> 16) & 0xff] & 0x00ff0000) ^
-   		(Td4[(t2 >>  8) & 0xff] & 0x0000ff00) ^
-   		(Td4[(t1      ) & 0xff] & 0x000000ff) ^
-   		rk[0];
-	PUTU32(pt     , s0);
-   	s1 =
-   		(Td4[(t1 >> 24)       ] & 0xff000000) ^
-   		(Td4[(t0 >> 16) & 0xff] & 0x00ff0000) ^
-   		(Td4[(t3 >>  8) & 0xff] & 0x0000ff00) ^
-   		(Td4[(t2      ) & 0xff] & 0x000000ff) ^
-   		rk[1];
-	PUTU32(pt +  4, s1);
-   	s2 =
-   		(Td4[(t2 >> 24)       ] & 0xff000000) ^
-   		(Td4[(t1 >> 16) & 0xff] & 0x00ff0000) ^
-   		(Td4[(t0 >>  8) & 0xff] & 0x0000ff00) ^
-   		(Td4[(t3      ) & 0xff] & 0x000000ff) ^
-   		rk[2];
-	PUTU32(pt +  8, s2);
-   	s3 =
-   		(Td4[(t3 >> 24)       ] & 0xff000000) ^
-   		(Td4[(t2 >> 16) & 0xff] & 0x00ff0000) ^
-   		(Td4[(t1 >>  8) & 0xff] & 0x0000ff00) ^
-   		(Td4[(t0      ) & 0xff] & 0x000000ff) ^
-   		rk[3];
-	PUTU32(pt + 12, s3);
-}
-
-#endif
Index: trunk/src/rijndael-api-fst.c
===================================================================
--- trunk/src/rijndael-api-fst.c	(revision 591)
+++ trunk/src/rijndael-api-fst.c	(revision 1)
@@ -1,408 +1,319 @@
-/*	$NetBSD: rijndael-api-fst.c,v 1.24 2011/05/14 16:46:55 jmmv Exp $	*/
-
-/**
- * rijndael-api-fst.c
+/*
+ * rijndael-api-fst.c   v2.3   April '2000
  *
- * @version 2.9 (December 2000)
+ * Optimised ANSI C code
  *
- * Optimised ANSI C code for the Rijndael cipher (now AES)
+ * authors: v1.0: Antoon Bosselaers
+ *          v2.0: Vincent Rijmen
+ *          v2.1: Vincent Rijmen
+ *          v2.2: Vincent Rijmen
+ *          v2.3: Paulo Barreto
+ *          v2.4: Vincent Rijmen
  *
- * @author Vincent Rijmen 
- * @author Antoon Bosselaers 
- * @author Paulo Barreto 
- *
- * This code is hereby placed in the public domain.
- *
- * THIS SOFTWARE IS PROVIDED BY THE AUTHORS ''AS IS'' AND ANY EXPRESS
- * OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
- * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHORS OR CONTRIBUTORS BE
- * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
- * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
- * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
- * BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
- * WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
- * OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE,
- * EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
- *
- * Acknowledgements:
- *
- * We are deeply indebted to the following people for their bug reports,
- * fixes, and improvement suggestions to this implementation. Though we
- * tried to list all contributions, we apologise in advance for any
- * missing reference.
- *
- * Andrew Bales 
- * Markus Friedl 
- * John Skodon 
+ * This code is placed in the public domain.
  */
+
 #include "config_xor.h"
 
+#include 
+#include 
 #include 
 #include 
 
-
 #ifdef SH_ENCRYPT
 
+#include "rijndael-alg-fst.h"
 #include "rijndael-api-fst.h"
 
-static void xor16(u8 *d, const u8 *a, const u8* b)
-{
-  size_t i;
-
-	for (i = 0; i < 4; i++) {
-		*d++ = *a++ ^ *b++;
-		*d++ = *a++ ^ *b++;
-		*d++ = *a++ ^ *b++;
-		*d++ = *a++ ^ *b++;
-	}
+int makeKey(keyInstance *key, RIJ_BYTE direction, int keyLen, char *keyMaterial) {
+  word8 k[MAXKC][4];
+  int i;
+  char *keyMat;
+  
+  if (key == NULL) {
+    return BAD_KEY_INSTANCE;
+  }
+  
+  if ((direction == DIR_ENCRYPT) || (direction == DIR_DECRYPT)) {
+    key->direction = direction;
+  } else {
+    return BAD_KEY_DIR;
+  }
+  
+  if ((keyLen == 128) || (keyLen == 192) || (keyLen == 256)) { 
+    key->keyLen = keyLen;
+  } else {
+    return BAD_KEY_MAT;
+  }
+  
+  if (keyMaterial != NULL) {
+    strncpy(key->keyMaterial, keyMaterial, keyLen/4);
+  }
+  
+  key->ROUNDS = keyLen/32 + 6;
+  
+  /* initialize key schedule: */
+  keyMat = key->keyMaterial;
+#ifndef BINARY_KEY_MATERIAL
+  for (i = 0; i < key->keyLen/8; i++) {
+    int t, j;
+    
+    t = *keyMat++;
+    if ((t >= '0') && (t <= '9')) j = (t - '0') << 4;
+    else if ((t >= 'a') && (t <= 'f')) j = (t - 'a' + 10) << 4; 
+    else if ((t >= 'A') && (t <= 'F')) j = (t - 'A' + 10) << 4; 
+    else return BAD_KEY_MAT;
+    
+    t = *keyMat++;
+    if ((t >= '0') && (t <= '9')) j ^= (t - '0');
+    else if ((t >= 'a') && (t <= 'f')) j ^= (t - 'a' + 10); 
+    else if ((t >= 'A') && (t <= 'F')) j ^= (t - 'A' + 10); 
+    else return BAD_KEY_MAT;
+    
+    k[i >> 2][i & 3] = (word8)j; 
+  }
+#else
+  for (i = 0; i < key->keyLen/8; i++) {
+    k[i >> 2][i & 3] = (word8)keyMat[i]; 
+  }
+#endif /* ?BINARY_KEY_MATERIAL */
+  rijndaelKeySched(k, key->keySched, key->ROUNDS);
+  if (direction == DIR_DECRYPT) {
+    rijndaelKeyEncToDec(key->keySched, key->ROUNDS);
+  }
+  
+  return TRUE;
 }
 
-int
-rijndael_makeKey(keyInstance *key, BYTE direction, int keyLen,
-    const char *keyMaterial)
-{
-	u8 cipherKey[RIJNDAEL_MAXKB];
-	int i;
-
-	if (key == NULL) {
-		return BAD_KEY_INSTANCE;
-	}
-
-	if ((direction == DIR_ENCRYPT) || (direction == DIR_DECRYPT)) {
-		key->direction = direction;
-	} else {
-		return BAD_KEY_DIR;
-	}
-
-	if ((keyLen == 128) || (keyLen == 192) || (keyLen == 256)) {
-		key->keyLen = keyLen;
-	} else {
-		return BAD_KEY_MAT;
-	}
-
-	if (keyMaterial != NULL) {
-	        char temp[RIJNDAEL_MAX_KEY_SIZE];
-		for (i = 0; i < key->keyLen/8; i++) {
-		  int t, j;
-		  
-		  t = *keyMaterial++;
-		  if ((t >= '0') && (t <= '9')) j = (t - '0') << 4;
-		  else if ((t >= 'a') && (t <= 'f')) j = (t - 'a' + 10) << 4; 
-		  else if ((t >= 'A') && (t <= 'F')) j = (t - 'A' + 10) << 4; 
-		  else return BAD_KEY_MAT;
-		  
-		  t = *keyMaterial++;
-		  if ((t >= '0') && (t <= '9')) j ^= (t - '0');
-		  else if ((t >= 'a') && (t <= 'f')) j ^= (t - 'a' + 10); 
-		  else if ((t >= 'A') && (t <= 'F')) j ^= (t - 'A' + 10); 
-		  else return BAD_KEY_MAT;
-		  
-		  temp[i] = (u8)j; 
-		}
-
-		/* memcpy(key->keyMaterial, keyMaterial, keyLen/8); */
-		/* cppcheck-suppress uninitvar */
-		memcpy(key->keyMaterial, temp, keyLen/8);
-	}
-
-	/* initialize key schedule: */
-	memcpy(cipherKey, key->keyMaterial, keyLen/8);
-	if (direction == DIR_ENCRYPT) {
-		key->Nr = rijndaelKeySetupEnc(key->rk, cipherKey, keyLen);
-	} else {
-		key->Nr = rijndaelKeySetupDec(key->rk, cipherKey, keyLen);
-	}
-	rijndaelKeySetupEnc(key->ek, cipherKey, keyLen);
-	return TRUE;
+int cipherInit(cipherInstance *cipher, RIJ_BYTE mode, char *IV) {
+  if ((mode == MODE_ECB) || (mode == MODE_CBC) || (mode == MODE_CFB1)) {
+    cipher->mode = mode;
+  } else {
+    return BAD_CIPHER_MODE;
+  }
+  if (IV != NULL) {
+#ifndef BINARY_KEY_MATERIAL
+    int i;
+    for (i = 0; i < MAX_IV_SIZE; i++) {
+      int t, j;
+      
+      t = IV[2*i];
+      if ((t >= '0') && (t <= '9')) j = (t - '0') << 4;
+      else if ((t >= 'a') && (t <= 'f')) j = (t - 'a' + 10) << 4; 
+      else if ((t >= 'A') && (t <= 'F')) j = (t - 'A' + 10) << 4; 
+      else return BAD_CIPHER_INSTANCE;
+      
+      t = IV[2*i+1];
+      if ((t >= '0') && (t <= '9')) j ^= (t - '0');
+      else if ((t >= 'a') && (t <= 'f')) j ^= (t - 'a' + 10); 
+      else if ((t >= 'A') && (t <= 'F')) j ^= (t - 'A' + 10); 
+      else return BAD_CIPHER_INSTANCE;
+      
+      cipher->IV[i] = (word8)j;
+    }
+#else
+    memcpy(cipher->IV, IV, MAX_IV_SIZE);
+#endif /* ?BINARY_KEY_MATERIAL */
+  } else {
+    memset(cipher->IV, 0, MAX_IV_SIZE);
+  }
+  return TRUE;
 }
 
-int
-rijndael_cipherInit(cipherInstance *cipher, BYTE mode, const char *IV)
-{
-	if ((mode == MODE_ECB) || (mode == MODE_CBC) || (mode == MODE_CFB1)) {
-		cipher->mode = mode;
-	} else {
-		return BAD_CIPHER_MODE;
-	}
-	if (IV != NULL) {
-		memcpy(cipher->IV, IV, RIJNDAEL_MAX_IV_SIZE);
-	} else {
-		memset(cipher->IV, 0, RIJNDAEL_MAX_IV_SIZE);
-	}
-	return TRUE;
+int blockEncrypt(cipherInstance *cipher, keyInstance *key,
+		 RIJ_BYTE *input, int inputLen, RIJ_BYTE *outBuffer) {
+  int i, k, numBlocks;
+  word8 block[16], iv[4][4];
+  
+  if (cipher == NULL ||
+      key == NULL ||
+      key->direction == DIR_DECRYPT) {
+    return BAD_CIPHER_STATE;
+  }
+  if (input == NULL || inputLen <= 0) {
+    return 0; /* nothing to do */
+  }
+  
+  numBlocks = inputLen/128;
+  
+  switch (cipher->mode) {
+  case MODE_ECB: 
+    for (i = numBlocks; i > 0; i--) {
+      rijndaelEncrypt(input, outBuffer, key->keySched, key->ROUNDS);
+      input += 16;
+      outBuffer += 16;
+    }
+    break;
+    
+  case MODE_CBC:
+    /* fix the memory alignment for HP-UX 10.20 
+     * R. Wichmann  Mon Jun 18 22:36:55 CEST 2001
+     */
+#if STRICT_ALIGN 
+    memcpy(iv, cipher->IV, 16); 
+    ((word32*)block)[0] = ((word32*)iv)[0] ^ ((word32*)input)[0];
+    ((word32*)block)[1] = ((word32*)iv)[1] ^ ((word32*)input)[1];
+    ((word32*)block)[2] = ((word32*)iv)[2] ^ ((word32*)input)[2];
+    ((word32*)block)[3] = ((word32*)iv)[3] ^ ((word32*)input)[3];
+#else  /* !STRICT_ALIGN */
+    ((word32*)block)[0] = ((word32*)cipher->IV)[0] ^ ((word32*)input)[0];
+    ((word32*)block)[1] = ((word32*)cipher->IV)[1] ^ ((word32*)input)[1];
+    ((word32*)block)[2] = ((word32*)cipher->IV)[2] ^ ((word32*)input)[2];
+    ((word32*)block)[3] = ((word32*)cipher->IV)[3] ^ ((word32*)input)[3];
+#endif /* ?STRICT_ALIGN */
+    rijndaelEncrypt(block, outBuffer, key->keySched, key->ROUNDS);
+    input += 16;
+    for (i = numBlocks - 1; i > 0; i--) {
+      ((word32*)block)[0] = ((word32*)outBuffer)[0] ^ ((word32*)input)[0];
+      ((word32*)block)[1] = ((word32*)outBuffer)[1] ^ ((word32*)input)[1];
+      ((word32*)block)[2] = ((word32*)outBuffer)[2] ^ ((word32*)input)[2];
+      ((word32*)block)[3] = ((word32*)outBuffer)[3] ^ ((word32*)input)[3];
+      outBuffer += 16;
+      rijndaelEncrypt(block, outBuffer, key->keySched, key->ROUNDS);
+      input += 16;
+    }
+    break;
+    
+  case MODE_CFB1:
+#if STRICT_ALIGN 
+    memcpy(iv, cipher->IV, 16); 
+#else  /* !STRICT_ALIGN */
+    *((word32*)iv[0]) = *((word32*)(cipher->IV   ));
+    *((word32*)iv[1]) = *((word32*)(cipher->IV+ 4));
+    *((word32*)iv[2]) = *((word32*)(cipher->IV+ 8));
+    *((word32*)iv[3]) = *((word32*)(cipher->IV+12));
+#endif /* ?STRICT_ALIGN */
+    for (i = numBlocks; i > 0; i--) {
+      for (k = 0; k < 128; k++) {
+	*((word32*) block    ) = *((word32*)iv[0]);
+	*((word32*)(block+ 4)) = *((word32*)iv[1]);
+	*((word32*)(block+ 8)) = *((word32*)iv[2]);
+	*((word32*)(block+12)) = *((word32*)iv[3]);
+	rijndaelEncrypt(block, block, key->keySched, key->ROUNDS);
+	outBuffer[k/8] ^= (block[0] & 0x80) >> (k & 7);
+	iv[0][0] = (iv[0][0] << 1) | (iv[0][1] >> 7);
+	iv[0][1] = (iv[0][1] << 1) | (iv[0][2] >> 7);
+	iv[0][2] = (iv[0][2] << 1) | (iv[0][3] >> 7);
+	iv[0][3] = (iv[0][3] << 1) | (iv[1][0] >> 7);
+	iv[1][0] = (iv[1][0] << 1) | (iv[1][1] >> 7);
+	iv[1][1] = (iv[1][1] << 1) | (iv[1][2] >> 7);
+	iv[1][2] = (iv[1][2] << 1) | (iv[1][3] >> 7);
+	iv[1][3] = (iv[1][3] << 1) | (iv[2][0] >> 7);
+	iv[2][0] = (iv[2][0] << 1) | (iv[2][1] >> 7);
+	iv[2][1] = (iv[2][1] << 1) | (iv[2][2] >> 7);
+	iv[2][2] = (iv[2][2] << 1) | (iv[2][3] >> 7);
+	iv[2][3] = (iv[2][3] << 1) | (iv[3][0] >> 7);
+	iv[3][0] = (iv[3][0] << 1) | (iv[3][1] >> 7);
+	iv[3][1] = (iv[3][1] << 1) | (iv[3][2] >> 7);
+	iv[3][2] = (iv[3][2] << 1) | (iv[3][3] >> 7);
+	iv[3][3] = (iv[3][3] << 1) | ((outBuffer[k/8] >> (7-(k&7))) & 1);
+      }
+    }
+    break;
+    
+  default:
+    return BAD_CIPHER_STATE;
+  }
+  
+  return 128*numBlocks;
 }
 
-int
-rijndael_blockEncrypt(cipherInstance *cipher, keyInstance *key,
-    const BYTE *input, int inputLen, BYTE *outBuffer)
-{
-	int i, k, t, numBlocks;
-	u8 block[16], *iv;
-
-	if (cipher == NULL ||
-		key == NULL ||
-		key->direction == DIR_DECRYPT) {
-		return BAD_CIPHER_STATE;
-	}
-	if (input == NULL || inputLen <= 0) {
-		return 0; /* nothing to do */
-	}
-
-	numBlocks = inputLen/128;
-
-	switch (cipher->mode) {
-	case MODE_ECB:
-		for (i = numBlocks; i > 0; i--) {
-			rijndaelEncrypt(key->rk, key->Nr, input, outBuffer);
-			input += 16;
-			outBuffer += 16;
-		}
-		break;
-
-	case MODE_CBC:
-		iv = (u8 *)cipher->IV;
-		for (i = numBlocks; i > 0; i--) {
-			xor16(block, input, iv);
-			rijndaelEncrypt(key->rk, key->Nr, block, outBuffer);
-			iv = outBuffer;
-			input += 16;
-			outBuffer += 16;
-		}
-		break;
-
-	case MODE_CFB1:
-		iv = (u8 *)cipher->IV;
-		for (i = numBlocks; i > 0; i--) {
-			memcpy(outBuffer, input, 16);
-			for (k = 0; k < 128; k++) {
-				rijndaelEncrypt(key->ek, key->Nr, iv, block);
-				outBuffer[k >> 3] ^=
-				    (block[0] & 0x80U) >> (k & 7);
-				for (t = 0; t < 15; t++) {
-					iv[t] = (iv[t] << 1) | (iv[t + 1] >> 7);
-				}
-				iv[15] = (iv[15] << 1) |
-				    ((outBuffer[k >> 3] >> (7 - (k & 7))) & 1);
-			}
-			outBuffer += 16;
-			input += 16;
-		}
-		break;
-
-	default:
-		return BAD_CIPHER_STATE;
-	}
-
-	return 128 * numBlocks;
+int blockDecrypt(cipherInstance *cipher, keyInstance *key,
+		 RIJ_BYTE *input, int inputLen, RIJ_BYTE *outBuffer) {
+  int i, k, numBlocks;
+  word8 block[16], iv[4][4];
+  
+  if (cipher == NULL ||
+      key == NULL ||
+      ((cipher->mode != MODE_CFB1) && (key->direction == DIR_ENCRYPT))) {
+    return BAD_CIPHER_STATE;
+  }
+  if (input == NULL || inputLen <= 0) {
+    return 0; /* nothing to do */
+  }
+  
+  numBlocks = inputLen/128;
+  
+  switch (cipher->mode) {
+  case MODE_ECB: 
+    for (i = numBlocks; i > 0; i--) { 
+      rijndaelDecrypt(input, outBuffer, key->keySched, key->ROUNDS);
+      input += 16;
+      outBuffer += 16;
+    }
+    break;
+    
+  case MODE_CBC:
+#if STRICT_ALIGN 
+    memcpy(iv, cipher->IV, 16); 
+#else
+    *((word32*)iv[0]) = *((word32*)(cipher->IV   ));
+    *((word32*)iv[1]) = *((word32*)(cipher->IV+ 4));
+    *((word32*)iv[2]) = *((word32*)(cipher->IV+ 8));
+    *((word32*)iv[3]) = *((word32*)(cipher->IV+12));
+#endif
+    for (i = numBlocks; i > 0; i--) {
+      rijndaelDecrypt(input, block, key->keySched, key->ROUNDS);
+      ((word32*)block)[0] ^= *((word32*)iv[0]);
+      ((word32*)block)[1] ^= *((word32*)iv[1]);
+      ((word32*)block)[2] ^= *((word32*)iv[2]);
+      ((word32*)block)[3] ^= *((word32*)iv[3]);
+#if STRICT_ALIGN
+      memcpy(iv, input, 16);
+      memcpy(outBuffer, block, 16);
+#else
+      *((word32*)iv[0]) = ((word32*)input)[0]; ((word32*)outBuffer)[0] = ((word32*)block)[0];
+      *((word32*)iv[1]) = ((word32*)input)[1]; ((word32*)outBuffer)[1] = ((word32*)block)[1];
+      *((word32*)iv[2]) = ((word32*)input)[2]; ((word32*)outBuffer)[2] = ((word32*)block)[2];
+      *((word32*)iv[3]) = ((word32*)input)[3]; ((word32*)outBuffer)[3] = ((word32*)block)[3];
+#endif
+      input += 16;
+      outBuffer += 16;
+    }
+    break;
+    
+  case MODE_CFB1:
+#if STRICT_ALIGN 
+    memcpy(iv, cipher->IV, 16); 
+#else
+    *((word32*)iv[0]) = *((word32*)(cipher->IV));
+    *((word32*)iv[1]) = *((word32*)(cipher->IV+ 4));
+    *((word32*)iv[2]) = *((word32*)(cipher->IV+ 8));
+    *((word32*)iv[3]) = *((word32*)(cipher->IV+12));
+#endif
+    for (i = numBlocks; i > 0; i--) {
+      for (k = 0; k < 128; k++) {
+	*((word32*) block    ) = *((word32*)iv[0]);
+	*((word32*)(block+ 4)) = *((word32*)iv[1]);
+	*((word32*)(block+ 8)) = *((word32*)iv[2]);
+	*((word32*)(block+12)) = *((word32*)iv[3]);
+	rijndaelEncrypt(block, block, key->keySched, key->ROUNDS);
+	iv[0][0] = (iv[0][0] << 1) | (iv[0][1] >> 7);
+	iv[0][1] = (iv[0][1] << 1) | (iv[0][2] >> 7);
+	iv[0][2] = (iv[0][2] << 1) | (iv[0][3] >> 7);
+	iv[0][3] = (iv[0][3] << 1) | (iv[1][0] >> 7);
+	iv[1][0] = (iv[1][0] << 1) | (iv[1][1] >> 7);
+	iv[1][1] = (iv[1][1] << 1) | (iv[1][2] >> 7);
+	iv[1][2] = (iv[1][2] << 1) | (iv[1][3] >> 7);
+	iv[1][3] = (iv[1][3] << 1) | (iv[2][0] >> 7);
+	iv[2][0] = (iv[2][0] << 1) | (iv[2][1] >> 7);
+	iv[2][1] = (iv[2][1] << 1) | (iv[2][2] >> 7);
+	iv[2][2] = (iv[2][2] << 1) | (iv[2][3] >> 7);
+	iv[2][3] = (iv[2][3] << 1) | (iv[3][0] >> 7);
+	iv[3][0] = (iv[3][0] << 1) | (iv[3][1] >> 7);
+	iv[3][1] = (iv[3][1] << 1) | (iv[3][2] >> 7);
+	iv[3][2] = (iv[3][2] << 1) | (iv[3][3] >> 7);
+	iv[3][3] = (iv[3][3] << 1) | ((input[k/8] >> (7-(k&7))) & 1);
+	outBuffer[k/8] ^= (block[0] & 0x80) >> (k & 7);
+      }
+    }
+    break;
+    
+  default:
+    return BAD_CIPHER_STATE;
+  }
+  
+  return 128*numBlocks;
 }
 
-/**
- * Encrypt data partitioned in octets, using RFC 2040-like padding.
- *
- * @param   input           data to be encrypted (octet sequence)
- * @param   inputOctets		input length in octets (not bits)
- * @param   outBuffer       encrypted output data
- *
- * @return	length in octets (not bits) of the encrypted output buffer.
- */
-int
-rijndael_padEncrypt(cipherInstance *cipher, keyInstance *key,
-    const BYTE *input, int inputOctets, BYTE *outBuffer)
-{
-	int i, numBlocks, padLen;
-	u8 block[16], *iv;
-
-	if (cipher == NULL ||
-		key == NULL ||
-		key->direction == DIR_DECRYPT) {
-		return BAD_CIPHER_STATE;
-	}
-	if (input == NULL || inputOctets <= 0) {
-		return 0; /* nothing to do */
-	}
-
-	numBlocks = inputOctets / 16;
-
-	switch (cipher->mode) {
-	case MODE_ECB:
-		for (i = numBlocks; i > 0; i--) {
-			rijndaelEncrypt(key->rk, key->Nr, input, outBuffer);
-			input += 16;
-			outBuffer += 16;
-		}
-		padLen = 16 - (inputOctets - 16*numBlocks);
-		memcpy(block, input, 16 - padLen);
-		memset(block + 16 - padLen, padLen, padLen);
-		rijndaelEncrypt(key->rk, key->Nr, block, outBuffer);
-		break;
-
-	case MODE_CBC:
-		iv = (u8 *)cipher->IV;
-		for (i = numBlocks; i > 0; i--) {
-			xor16(block, input, iv);
-			rijndaelEncrypt(key->rk, key->Nr, block, outBuffer);
-			iv = outBuffer;
-			input += 16;
-			outBuffer += 16;
-		}
-		padLen = 16 - (inputOctets - 16*numBlocks);
-		for (i = 0; i < 16 - padLen; i++) {
-			block[i] = input[i] ^ iv[i];
-		}
-		for (i = 16 - padLen; i < 16; i++) {
-			block[i] = (BYTE)padLen ^ iv[i];
-		}
-		rijndaelEncrypt(key->rk, key->Nr, block, outBuffer);
-		break;
-
-	default:
-		return BAD_CIPHER_STATE;
-	}
-
-	return 16 * (numBlocks + 1);
-}
-
-int
-rijndael_blockDecrypt(cipherInstance *cipher, keyInstance *key,
-    const BYTE *input, int inputLen, BYTE *outBuffer)
-{
-	int i, k, t, numBlocks;
-	u8 block[16], *iv;
-
-	if (cipher == NULL ||
-		key == NULL ||
-		(cipher->mode != MODE_CFB1 && key->direction == DIR_ENCRYPT)) {
-		return BAD_CIPHER_STATE;
-	}
-	if (input == NULL || inputLen <= 0) {
-		return 0; /* nothing to do */
-	}
-
-	numBlocks = inputLen/128;
-
-	switch (cipher->mode) {
-	case MODE_ECB:
-		for (i = numBlocks; i > 0; i--) {
-			rijndaelDecrypt(key->rk, key->Nr, input, outBuffer);
-			input += 16;
-			outBuffer += 16;
-		}
-		break;
-
-	case MODE_CBC:
-		iv = (u8 *)cipher->IV;
-		for (i = numBlocks; i > 0; i--) {
-			rijndaelDecrypt(key->rk, key->Nr, input, block);
-			xor16(block, block, iv);
-			if (numBlocks > 1)
-			  memcpy(cipher->IV, input, 16);
-			memcpy(outBuffer, block, 16);
-			input += 16;
-			outBuffer += 16;
-		}
-		break;
-
-    case MODE_CFB1:
-		iv = (u8 *)cipher->IV;
-		for (i = numBlocks; i > 0; i--) {
-			memcpy(outBuffer, input, 16);
-			for (k = 0; k < 128; k++) {
-				rijndaelEncrypt(key->ek, key->Nr, iv, block);
-				for (t = 0; t < 15; t++) {
-					iv[t] = (iv[t] << 1) | (iv[t + 1] >> 7);
-				}
-				iv[15] = (iv[15] << 1) |
-				    ((input[k >> 3] >> (7 - (k & 7))) & 1);
-				outBuffer[k >> 3] ^= (block[0] & 0x80U) >>
-				    (k & 7);
-			}
-			outBuffer += 16;
-			input += 16;
-		}
-		break;
-
-	default:
-		return BAD_CIPHER_STATE;
-	}
-
-	return 128 * numBlocks;
-}
-
-int
-rijndael_padDecrypt(cipherInstance *cipher, keyInstance *key,
-    const BYTE *input, int inputOctets, BYTE *outBuffer)
-{
-	int i, numBlocks, padLen;
-	u8 block[16], *iv;
-
-	if (cipher == NULL ||
-		key == NULL ||
-		key->direction == DIR_ENCRYPT) {
-		return BAD_CIPHER_STATE;
-	}
-	if (input == NULL || inputOctets <= 0) {
-		return 0; /* nothing to do */
-	}
-	if (inputOctets % 16 != 0) {
-		return BAD_DATA;
-	}
-
-	numBlocks = inputOctets/16;
-
-	switch (cipher->mode) {
-	case MODE_ECB:
-		/* all blocks but last */
-		for (i = numBlocks - 1; i > 0; i--) {
-			rijndaelDecrypt(key->rk, key->Nr, input, outBuffer);
-			input += 16;
-			outBuffer += 16;
-		}
-		/* last block */
-		rijndaelDecrypt(key->rk, key->Nr, input, block);
-		padLen = block[15];
-		if (padLen >= 16) {
-			return BAD_DATA;
-		}
-		for (i = 16 - padLen; i < 16; i++) {
-			if (block[i] != padLen) {
-				return BAD_DATA;
-			}
-		}
-		memcpy(outBuffer, block, 16 - padLen);
-		break;
-
-	case MODE_CBC:
-		iv = (u8 *)cipher->IV;
-		/* all blocks but last */
-		for (i = numBlocks - 1; i > 0; i--) {
-			rijndaelDecrypt(key->rk, key->Nr, input, block);
-			xor16(block, block, iv);
-			memcpy(cipher->IV, input, 16);
-			memcpy(outBuffer, block, 16);
-			input += 16;
-			outBuffer += 16;
-		}
-		/* last block */
-		rijndaelDecrypt(key->rk, key->Nr, input, block);
-		xor16(block, block, iv);
-		padLen = block[15];
-		if (padLen <= 0 || padLen > 16) {
-			return BAD_DATA;
-		}
-		for (i = 16 - padLen; i < 16; i++) {
-			if (block[i] != padLen) {
-				return BAD_DATA;
-			}
-		}
-		memcpy(outBuffer, block, 16 - padLen);
-		break;
-
-	default:
-		return BAD_CIPHER_STATE;
-	}
-
-	return 16 * numBlocks - padLen;
-}
-
 #endif
Index: trunk/src/samhain.c
===================================================================
--- trunk/src/samhain.c	(revision 591)
+++ trunk/src/samhain.c	(revision 1)
@@ -34,8 +34,15 @@
 #include 
 
+
+#if TIME_WITH_SYS_TIME
+#include 
+#include 
+#else
 #if HAVE_SYS_TIME_H
 #include 
-#endif
+#else
 #include 
+#endif
+#endif
 
 #ifdef HAVE_MEMORY_H
@@ -56,21 +63,18 @@
 
 #include "samhain.h"
-#include "sh_pthread.h"
+#include "sh_files.h"
 #include "sh_utils.h"
 #include "sh_error.h"
 #include "sh_unix.h"
-#include "sh_files.h"
 #include "sh_getopt.h"
 #include "sh_readconf.h"
 #include "sh_hash.h"
-#include "sh_dbIO.h"
-#include "sh_restrict.h"
-
-#include "sh_nmail.h"
+
+#include "sh_mail.h"
 
 #include "sh_tiger.h"
-#include "sh_sig.h"
+#include "sh_gpg.h"
 #include "sh_mem.h"
-#include "sh_xfer.h"
+#include "sh_forward.h"
 #include "sh_tools.h"
 #include "sh_hash.h"
@@ -82,5 +86,4 @@
 #include "sh_ignore.h"
 #include "sh_prelink.h"
-#include "sh_sem.h"
 #endif
 
@@ -110,12 +113,8 @@
 volatile  int      sh_global_suspend_flag;
 volatile  int      sig_fresh_trail;        /* SIGIOT  */
-volatile  int      sh_thread_pause_flag = S_FALSE;
 volatile  int      sig_config_read_again;  /* SIGHUP  */
 volatile  int      sig_terminate;          /* SIGQUIT */
 volatile  int      sig_termfast;           /* SIGTERM */
 volatile  int      sig_force_check;        /* SIGTTOU */
-volatile  int      sig_force_silent;       /* SIGTSTP */
-volatile  int      sh_global_check_silent;
-volatile  int      sh_load_delta_flag;
 long int           eintr__result;
 char               sh_sig_msg[SH_MINIBUF];
@@ -138,60 +137,4 @@
 #endif
 
-#ifdef HAVE_PTHREAD
-struct gt {
-  size_t g_count;
-  char * g_glob;
-};
-
-pthread_key_t g_key;
-
-int sh_g_thread()
-{
-  struct gt * ptr = calloc(1,sizeof(struct gt));
-  if (!ptr)
-    return -1;
-  ptr->g_count    = 0;
-  ptr->g_glob     = calloc(1, SH_MAX_GLOBS * (GLOB_LEN+1));
-  if (!(ptr->g_glob))
-    {
-      free(ptr);
-      return -1;
-    }
-  return pthread_setspecific(g_key, ptr);
-}
-
-void sh_g_destroy(void * data)
-{
-  struct gt * ptr = (struct gt *) data;
-  free(ptr->g_glob);
-  free(ptr);
-  return;
-}
-
-void sh_g_init(void)
-{
-#if !defined(USE_SYSTEM_MALLOC) && defined(USE_MALLOC_LOCK)
-  extern int dnmalloc_pthread_init(void);
-  dnmalloc_pthread_init();
-#endif
-
-  if (0 != pthread_key_create(&g_key, sh_g_destroy))
-    {
-      perror("1");
-      exit(EXIT_FAILURE);
-    }
-
-  if (0 != sh_g_thread())
-    {
-      perror("2");
-      exit(EXIT_FAILURE);
-    }
-  return;
-}
-#define SH_G_INIT sh_g_init()
-#else
-#define SH_G_INIT ((void)0)
-#endif
-
 char * globber(const char * str)
 {
@@ -199,24 +142,14 @@
   size_t j;
 
-#ifndef HAVE_PTHREAD
+  static   size_t  items = 0;
   static   size_t  count = 0;
   static   char glob[SH_MAX_GLOBS * (GLOB_LEN+1)];
-#else
-  struct gt * ptr = pthread_getspecific(g_key);
-  size_t count;
-  char *  glob;
-
-  if (ptr) {
-    count = ptr->g_count;
-    glob  = ptr->g_glob;
-  } else {
+
+  if (str == NULL)
     return NULL;
-  }
-#endif
-
-  if (str != NULL)
+  else
     j = strlen(str);
-  else
-    return NULL;
+
+  ++items;
 
   ASSERT((j <= GLOB_LEN), _("j <= GLOB_LEN"))
@@ -230,4 +163,5 @@
     {
       count = 0;
+      items = 0;
     }
 
@@ -242,9 +176,5 @@
 
   i     = count;
-#ifdef HAVE_PTHREAD
-  ptr->g_count = count + j + 1;
-#else
   count = count + j + 1;
-#endif
   return &glob[i];
 }
@@ -263,7 +193,4 @@
 }
 
-#else
-/* not stealth */
-#define SH_G_INIT ((void)0)
 #endif
 
@@ -311,7 +238,4 @@
   ErrFlag[0] |= (1 << 11);
 #endif
-
-  sh.delayload = 0;
-
 #ifdef MKA_13
   ErrFlag[0] |= (1 << 12);
@@ -338,12 +262,5 @@
   sig_termfast           = 0;           /* SIGTERM */
   sig_force_check        = 0;           /* SIGTTOU */
-  sig_force_silent       = 0;           /* SIGTSTP */
-  sh_global_check_silent = 0;
-  sh_load_delta_flag     = 0;
-  sh_sig_msg[4] = '\0';
-  sh_sig_msg[3] = 'e';
-  sh_sig_msg[2] = 'n';
-  sh_sig_msg[1] = 'o';
-  sh_sig_msg[0] = 'N';
+  strcpy ( sh_sig_msg, _("None"));
 
 #ifdef MKB_01
@@ -380,8 +297,4 @@
 #endif
 
-  sh.pid = (UINT64) getpid();
-
-  sh.outpath = NULL;
-
   /* The flags.
    */
@@ -390,5 +303,4 @@
   sh.flag.update          = S_FALSE;
   sh.flag.opts            = S_FALSE;
-  sh.flag.started         = S_FALSE;
   if (is_samhainctl_init == S_FALSE)
     sh.flag.isdaemon        = S_FALSE;
@@ -406,5 +318,4 @@
   sh.flag.hidefile        = S_FALSE;
   sh.flag.loop            = S_FALSE;
-  sh.flag.inotify         = 0;
 
 #ifdef MKB_09
@@ -435,10 +346,6 @@
   /* The stats.
    */
-  sh.statistics.bytes_speed   = 0;
-  sh.statistics.bytes_hashed  = 0;
-  sh.statistics.files_report  = 0;
-  sh.statistics.files_error   = 0;
-  sh.statistics.files_nodir   = 0;
-
+  sh.statistics.bytes_speed  = 0;
+  sh.statistics.bytes_hashed = 0;
   sh.statistics.mail_success = 0;
   sh.statistics.mail_failed  = 0;
@@ -475,5 +382,5 @@
    */
   (void) sl_strlcpy (sh.host.name,  _("localhost"),  SH_MINIBUF);
-  sh.host.system[0]     = '\0'; /* flawfinder: ignore *//* ff bug */
+  sh.host.system[0]     = '\0';
   sh.host.release[0]    = '\0';
   sh.host.machine[0]    = '\0';
@@ -541,26 +448,14 @@
    */
 #if defined(SH_WITH_MAIL)
-  if (0 != strcmp (DEFAULT_MAILADDRESS, _("NULL")))
-    {
-#if defined(HAVE_PTHREAD) && defined (_POSIX_THREAD_SAFE_FUNCTIONS) && defined(HAVE_STRTOK_R)
-      char * saveptr;
-      (void) sl_strncpy(q, DEFAULT_MAILADDRESS, SH_PATHBUF);
-      p = strtok_r (q, ", \t", &saveptr);
-      if (p)
-	{
-	  (void) sh_nmail_add_compiled_recipient (p);
-	  while (NULL != (p = strtok_r (NULL, ", \t", &saveptr)))
-	    (void) sh_nmail_add_compiled_recipient (p);
-	}
-#else
+  if (0 == strcmp (DEFAULT_MAILADDRESS, _("NULL")))
+    {
       (void) sl_strncpy(q, DEFAULT_MAILADDRESS, SH_PATHBUF);
       p = strtok (q, ", \t");
       if (p)
 	{
-	  (void) sh_nmail_add_compiled_recipient (p);
+	  (void) sh_mail_setaddress_int (p);
 	  while (NULL != (p = strtok (NULL, ", \t")))
-	    (void) sh_nmail_add_compiled_recipient (p);
-	}
-#endif
+	    (void) sh_mail_setaddress_int (p);
+	}
     }
 #endif
@@ -647,54 +542,48 @@
   sh.looptime     = 60;
 
-#ifdef SCREW_IT_UP
-  sh.sigtrap_max_duration = 500000; /* 500ms */
-#endif
-
   /* The struct to hold privileged information.
    */
-  skey = calloc(1,sizeof(sh_key_t));
-  if (skey != NULL)
-    {
-
-      skey->mlock_failed = S_FALSE;
-      skey->rngI         = BAD;
-      /* properly initialized later 
-       */
-      skey->rng0[0] = 0x03; skey->rng0[1] = 0x09; skey->rng0[2] = 0x17;
-      skey->rng1[0] = 0x03; skey->rng1[1] = 0x09; skey->rng1[2] = 0x17;
-      skey->rng2[0] = 0x03; skey->rng2[1] = 0x09; skey->rng2[2] = 0x17;
-      
-      for (i = 0; i < KEY_BYT; ++i)
-	skey->poolv[i] = '\0';
-      
-      skey->poolc        = 0;
-      
-      skey->ErrFlag[0]   = ErrFlag[0];
-      ErrFlag[0]         = 0;
-      skey->ErrFlag[1]   = ErrFlag[1];
-      ErrFlag[1]         = 0;
-      
-      dez = &(TcpFlag[POS_TF-1][0]);
-      for (i = 0; i < PW_LEN; ++i)
-	{ 
-	  skey->pw[i] = (char) (*dez); 
-	  (*dez)      = '\0';
-	  ++dez; 
-	}
-      
-      skey->sh_sockpass[0]  = '\0';
-      skey->sigkey_old[0]   = '\0';
-      skey->sigkey_new[0]   = '\0';
-      skey->mailkey_old[0]  = '\0';
-      skey->mailkey_new[0]  = '\0';
-      skey->crypt[0]        = '\0'; /* flawfinder: ignore *//* ff bug */
-      skey->session[0]      = '\0';
-      skey->vernam[0]       = '\0';
-    }
-  else
+  skey = (sh_key_t *) malloc (sizeof(sh_key_t));
+  if (skey == NULL) 
     {
       perror(_("sh_init"));
       _exit (EXIT_FAILURE);
     }
+
+  skey->mlock_failed = SL_FALSE;
+  skey->rngI         = BAD;
+  /* properly initialized later 
+   */
+  skey->rng0[0] = 0x03; skey->rng0[1] = 0x09; skey->rng0[2] = 0x17;
+  skey->rng1[0] = 0x03; skey->rng1[1] = 0x09; skey->rng1[2] = 0x17;
+  skey->rng2[0] = 0x03; skey->rng2[1] = 0x09; skey->rng2[2] = 0x17;
+
+  for (i = 0; i < KEY_BYT; ++i)
+    skey->poolv[i] = '\0';
+
+  skey->poolc        = 0;
+
+  skey->ErrFlag[0]   = ErrFlag[0];
+  ErrFlag[0]         = 0;
+  skey->ErrFlag[1]   = ErrFlag[1];
+  ErrFlag[1]         = 0;
+
+  dez = &(TcpFlag[POS_TF-1][0]);
+  for (i = 0; i < PW_LEN; ++i)
+    { 
+       skey->pw[i] = (char) (*dez); 
+      (*dez)      = '\0';
+      ++dez; 
+    }
+
+  skey->sh_sockpass[0]  = '\0';
+  skey->sigkey_old[0]   = '\0';
+  skey->sigkey_new[0]   = '\0';
+  skey->mailkey_old[0]  = '\0';
+  skey->mailkey_new[0]  = '\0';
+  skey->crypt[0]        = '\0';
+  skey->session[0]      = '\0';
+  skey->vernam[0]       = '\0';
+
 
   sh_unix_memlock();
@@ -724,7 +613,8 @@
 #endif
 #if defined(SH_WITH_SERVER)
-  extern int sh_socket_remove (void);
-  extern int sh_html_zero();
-#endif
+  extern int sh_socket_remove ();
+#endif
+
+  SL_ENTER(_("exit_handler"));
 
 #if defined(SH_WITH_SERVER)
@@ -735,10 +625,7 @@
   for (modnum = 0; modList[modnum].name != NULL; ++modnum) 
     {
-      if (modList[modnum].initval == SH_MOD_ACTIVE)
+      if (modList[modnum].initval == GOOD)
 	(void) modList[modnum].mod_cleanup();
     }
-#ifdef HAVE_PTHREAD
-  sh_pthread_cancel_all();
-#endif
 #endif
 
@@ -748,5 +635,5 @@
   if (sh.mailNum.alarm_last > 0) 
     {
-      (void) sh_nmail_flush ();
+      (void) sh_mail_msg (NULL);
     }
 #endif
@@ -755,8 +642,5 @@
    */
 #if defined(SH_WITH_SERVER)
-  /* zero out the status file at exit, such that the status
-   * of client becomes unknown in the beltane interface
-   */
-  sh_html_zero();
+  sh_forward_html_write();
 #endif
 
@@ -767,27 +651,10 @@
   sh_files_deldirstack ();
   sh_files_delfilestack ();
-  sh_files_delglobstack ();
   sh_hash_hashdelete();
-  sh_files_hle_reg (NULL);
-  (void) sh_ignore_clean ();
-  /*
-   * Only flush on exit if running as deamon.
-   * Otherwise we couldn't run another instance
-   * while the deamon is running (would leave the
-   * deamon with flushed ruleset).
-   */
-  if (sh.flag.isdaemon == S_TRUE)
-    {
-      sh_audit_delete_all ();
-    }
 #endif
 #if defined(SH_WITH_SERVER)
-  sh_xfer_free_all ();
-#endif
-#if defined(SH_WITH_MAIL)
-  sh_nmail_free();
+  sh_forward_free_all ();
 #endif
   delete_cache();
-  sh_userid_destroy ();
   sh_mem_stat();
 #endif
@@ -799,19 +666,9 @@
   /* --- Checksum of executable. ---
    */
-  {
-    volatile  int sig_store = sig_termfast;
-
-    sig_termfast = 0;
-    (void) sh_unix_self_check();
-    sig_termfast = sig_store;
-  }
+  (void) sh_unix_self_check();
 
 
   /* --- Exit Message. ---
    */
-  if (sh.flag.exit == EXIT_FAILURE && !strcmp(sh_sig_msg, _("None")))
-    sl_strlcpy(sh_sig_msg, _("exit_failure"), SH_MINIBUF);
-  if (sh.flag.exit == EXIT_SUCCESS && !strcmp(sh_sig_msg, _("None")))
-    sl_strlcpy(sh_sig_msg, _("exit_success"), SH_MINIBUF);
   sh_error_handle ((-1), FIL__, __LINE__, sh.flag.exit, MSG_EXIT_NORMAL, 
 		   sh.prg_name, sh_sig_msg);
@@ -823,14 +680,16 @@
   /* --- Restrict error logging to stderr. ---
    */
+#ifdef WITH_MESSAGE_QUEUE
   close_ipc ();
+#endif
   sh_error_only_stderr (S_TRUE);
 
+
   /* --- Remove lock, delete critical information. ---
    */
   (void) sh_unix_rm_lock_file (sh.srvlog.name);
-  if (sh.flag.isdaemon == S_TRUE)
-    (void) sh_unix_rm_pid_file ();
+  (void) sh_unix_rm_pid_file ();
   if (skey != NULL)
-    memset (skey, 0, sizeof(sh_key_t));
+    memset (skey, (int) '\0', sizeof(sh_key_t));
   
   /* --- Exit. ---
@@ -854,38 +713,26 @@
 #if defined(__linux__) || defined(sun) || defined(__sun) || defined(__sun__)
 #include 
-static pid_t * procdirSamhain (void)
+static pid_t * procdirSamhain ()
 {
-  pid_t        * pidlist;
+  pid_t        * pidlist = malloc(sizeof(pid_t) * 65535);
   struct dirent * d;
   DIR *        dp;
   long         ino;
   struct stat  buf;
-  int          i;
+  int          i = 0;
   pid_t        pid, mypid = getpid();
   char       * tail;
   char         exef[128];
 
+  for (i = 0; i < 65535; ++i) pidlist[i] = 0;
+  i = 0;
+
   if (0 != stat(SH_INSTALL_PATH, &buf))
-    {
-      return NULL;
-    }
+    return NULL;
 
   ino = (long) buf.st_ino;
     
-  if (NULL == (dp = opendir(_("/proc"))))
-    {
-      /* cppcheck-suppress resourceLeak */
-      return NULL;
-    }
-
-  SH_MUTEX_LOCK(mutex_readdir);
-
-  pidlist =  calloc(1, sizeof(pid_t) * 65535);
-  if (!pidlist)
-    goto unlock_and_out;
-
-  for (i = 0; i < 65535; ++i) pidlist[i] = 0;
-
-  i = 0;
+  if (NULL == (dp = opendir("/proc")))
+    return NULL;
   while (NULL != (d = readdir(dp)) && i < 65535)
     {
@@ -908,14 +755,9 @@
 	}
     }
-
- unlock_and_out:
-  ;
-  SH_MUTEX_UNLOCK(mutex_readdir);
-
   closedir(dp);
   return pidlist;
 }
 #else
-static pid_t * procdirSamhain (void)
+static pid_t * procdirSamhain ()
 {
   return NULL;
@@ -966,7 +808,7 @@
   if (!fp)
     { if (errno != ENOENT) perror(_("fopen")); return 0; }
-  if (NULL == fgets(line, sizeof(line), fp))
-    { perror(_("fgets")); (void) sl_fclose(FIL__, __LINE__, fp); return 0; }
-  (void) sl_fclose(FIL__, __LINE__, fp); 
+  if (NULL == fgets(line, 255, fp))
+    { perror(_("fgets")); (void) fclose(fp); return 0; }
+  (void) fclose(fp); 
   p = line; 
   while (*p == ' '  || *p == '\f' || *p == '\n' || 
@@ -1016,17 +858,18 @@
   pid_t       * pidlist;
   int         i;
-#ifdef WCONTINUED
-      int wflags = WNOHANG|WUNTRACED|WCONTINUED;
-#else
-      int wflags = WNOHANG|WUNTRACED;
-#endif
-
-  fullpath = strdup (SH_INSTALL_PATH);
+
+
+  fullpath = malloc(strlen(SH_INSTALL_PATH)+1);
   if (fullpath == NULL)
-    { perror(_("strdup")); exit (1); }
-
-  argp[0]  = strdup (SH_INSTALL_PATH);
+    { perror(_("malloc")); exit (1); }
+  else
+    strcpy(fullpath, SH_INSTALL_PATH);                 /* known to fit  */
+
+  argp[0] = malloc(strlen(SH_INSTALL_PATH)+1);
   if (argp[0] == NULL)
-    { perror(_("strdup")); exit (1); }
+    { perror(_("malloc")); exit (1); }
+  else
+    strcpy(argp[0], SH_INSTALL_PATH);                  /* known to fit  */
+
 
   for (times = 1; times < 32; ++times)  argp[times] = NULL;
@@ -1036,7 +879,9 @@
   for (times = 2; times < res; ++times)  
     {
-      argp[times-1] = strdup (argv[times]);
+      argp[times-1] = malloc(strlen(argv[times])+1);
       if (argp[times-1] == NULL)
-	{ perror(_("strdup")); exit (1); }
+	{ perror(_("malloc")); exit (1); }
+      else
+	strcpy(argp[times-1], argv[times]);              /* known to fit  */
     }
 
@@ -1054,9 +899,9 @@
 	exit (1);
       case  0:
-	if (0 != sl_close_fd (FIL__, __LINE__, 0))
+	if (0 != close (0))
 	  {
 	    _exit(4);
 	  }
-	(void) execv(fullpath, argp); /* flawfinder: ignore *//* wtf? */
+	(void) execv(fullpath, argp); 
 	if (errno == EPERM)
 	  _exit(4);
@@ -1066,6 +911,6 @@
       default:
 	times = 0;
-	while (times < 300) {
-	  respid = waitpid(pid, &status, wflags);
+	while (times < 64) {
+	  respid = waitpid(pid, &status, WNOHANG|WUNTRACED);
 	  if ((pid_t)-1 == respid)
 	    {
@@ -1075,5 +920,4 @@
 	  else if (pid == respid)
 	    {
-#ifndef USE_UNO
 	      if (0 != WIFEXITED(status))
 		{
@@ -1083,12 +927,9 @@
 	      else
 		exit (1);
-#else
-	      exit (1);
-#endif
 	    }
 	  ++times;
 	  (void) retry_msleep(1, 0);
 	}
-	exit (0); /* assume that it runs ok */
+	exit (1);
       }
     }
@@ -1100,8 +941,5 @@
       pidlist = procdirSamhain ();
       if (pid == 0 && NULL == pidlist) /* pid file not found */ 
-	{
-	  free(fullpath);
-	  return (0);
-	}
+	return (0);
 	  
       status = 0;
@@ -1118,5 +956,4 @@
 	    }
 	}
-      free(fullpath);
       if (status == 7)
 	return 0;
@@ -1155,5 +992,5 @@
 	}
     }
-  free(fullpath); /* silence smatch false positive */
+
   exit (1); /* no exit handler installed yet */
   /*@notreached@*/
@@ -1185,5 +1022,5 @@
 /* Add a new schedule to the linked list of schedules
  */
-static sh_schedule_t * sh_set_schedule_int (const char * str, 
+static sh_schedule_t * sh_set_schedule_int (char * str, 
 					    sh_schedule_t * FileSchedIn, 
 					    /*@out@*/ int * status)
@@ -1198,5 +1035,5 @@
       FileSchedIn = NULL;
       *status = 0;
-      SL_RETURN(NULL, _("sh_set_schedule_int"));
+      return 0;
     }
 
@@ -1209,7 +1046,5 @@
       SL_RETURN(FileSchedIn , _("sh_set_schedule_int"));
     }
-  else {
-    FileSched->next = FileSchedIn;
-  }
+  FileSched->next = FileSchedIn;
   SL_RETURN(FileSched , _("sh_set_schedule_int"));
 }
@@ -1217,5 +1052,5 @@
 /* Add a new schedule to the linked list FileSchedOne
  */
-int sh_set_schedule_one (const char * str)
+int sh_set_schedule_one (char * str)
 {
   int status;
@@ -1226,5 +1061,5 @@
 /* Add a new schedule to the linked list FileSchedTwo
  */
-int sh_set_schedule_two (const char * str)
+int sh_set_schedule_two (char * str)
 {
   int status;
@@ -1233,285 +1068,4 @@
 }
 
-static int sh_flag_silent = S_FALSE;
-
-int sh_set_silent_full (const char * str)
-{
-  int status = sh_util_flagval(str, &sh_flag_silent);
-  return status;
-}
-
-
-void do_reconf()
-{
-  int status, modnum;
-
-  sh_error_handle ((-1), FIL__, __LINE__, 0, MSG_RECONF);
-  
-  sh_thread_pause_flag = S_TRUE;
-
-  for (modnum = 0; modList[modnum].name != NULL; ++modnum) 
-    {
-      if (0 != (SH_MODFL_NEEDPAUSED & modList[modnum].flags) &&
-	  modList[modnum].initval == SH_MOD_THREAD)
-	{
-	  int count = 50;
-	  while (count && 0 == (SH_MODFL_ISPAUSED & modList[modnum].flags))
-	    retry_msleep(0, 100), --count;
-	}
-    }
-  
-#if defined(WITH_EXTERNAL)
-  /* delete list of external tasks
-   */
-  (void) sh_ext_cleanup();
-#endif
-#if defined(SH_WITH_MAIL)
-  sh_nmail_free();
-#endif
-  
-  /* delete the file list, make all database
-   * entries visible (allignore = FALSE)
-   */
-  (void) sh_files_deldirstack ();
-  (void) sh_files_delfilestack ();
-  (void) sh_files_delglobstack ();
-  (void) sh_ignore_clean ();
-  (void) hash_full_tree ();
-  sh_audit_delete_all ();
-  
-  
-#if defined(SH_WITH_CLIENT)
-  reset_count_dev_server();
-#endif
-#if defined(SH_WITH_CLIENT) || defined(SH_STANDALONE)
-  sh_restrict_purge ();
-  
-  
-  FileSchedOne = free_sched(FileSchedOne);
-  FileSchedTwo = free_sched(FileSchedTwo);
-  
-  for (modnum = 0; modList[modnum].name != NULL; ++modnum) 
-    {
-      /* sh_thread_pause_flag is true, and we block in lock
-       * until check has returned, so we are sure check will
-       * not run until sh_thread_pause_flag is set to false
-       */
-      /* if (modList[modnum].initval >= SH_MOD_ACTIVE) */
-      (void) modList[modnum].mod_reconf();
-    }
-#endif
-  
-  reset_count_dev_console();
-  reset_count_dev_time();
-  
-  (void) sh_unix_maskreset();
-  
-#ifdef RELOAD_DATABASE
-  sh_hash_hashdelete();
-
-  if (0 != sl_strcmp(file_path('D', 'R'), _("REQ_FROM_SERVER")))
-    {
-      char hashbuf[KEYBUF_SIZE];
-      (void) sl_strlcpy(sh.data.hash,
-			sh_tiger_hash (file_path('D', 'R'), 
-				       TIGER_FILE, TIGER_NOLIM, 
-				       hashbuf, sizeof(hashbuf)), 
-			KEY_LEN+1);
-    }
-#endif
-  (void) sl_trust_purge_user();
-  (void) sh_files_hle_reg (NULL);
-  (void) sh_prelink_run (NULL, NULL, 0, 0);
-  
-  /* --------------------------
-   * --- READ CONFIGURATION ---
-   * --------------------------
-   */
-  (void) sh_readconf_read ();
-  sig_config_read_again = 0;
-  (void) sh_files_setrec();
-  (void) sh_files_test_setup();
-  sh_audit_commit ();
-  
-  if (0 != sh.flag.nice)
-    {
-#ifdef HAVE_SETPRIORITY
-      setpriority(PRIO_PROCESS, 0, sh.flag.nice);
-#else
-      nice(sh.flag.nice);
-#endif
-    }
-  
-  if (sh.flag.checkSum == SH_CHECK_INIT)
-    {
-      sh.flag.isdaemon = S_FALSE;
-      sh.flag.loop     = S_FALSE;
-    }
-  
-  
-  /* --- Initialize modules. ---
-   */
-  TPT((0, FIL__, __LINE__, _("msg=\n")));
-  for (modnum = 0; modList[modnum].name != NULL; ++modnum) 
-    {
-      status = modList[modnum].mod_init(&(modList[modnum]));
-      
-      if (status < 0)
-	{
-	  if (status == (-1)) {
-	    sh_error_handle (SH_ERR_NOTICE, FIL__, __LINE__, 
-			     status, MSG_MOD_FAIL,
-			     _(modList[modnum].name),
-			     status+SH_MOD_OFFSET);
-	  } else {
-	    sh_error_handle ((-1), FIL__, __LINE__, 
-			     status, MSG_MOD_FAIL,
-			     _(modList[modnum].name),
-			     status+SH_MOD_OFFSET);
-	  }
-	  modList[modnum].initval = SH_MOD_FAILED;
-	}
-      else
-	{
-	  sh_error_handle ((-1), FIL__, __LINE__, status, MSG_MOD_OK,
-			   _(modList[modnum].name));
-	  modList[modnum].initval = status;
-	}
-    }
-  
-  /* module is properly set up now
-   */
-  sh_thread_pause_flag = S_FALSE;
-
-  return;
-}
-
-static void check_signals (volatile int *flag_check_1, 
-			   volatile int * flag_check_2)
-{
-  if (sig_raised > 0) 
-    {
-      
-      TPT((0, FIL__, __LINE__, _("msg=\n")))
-	
-	if (sig_termfast == 1)  /* SIGTERM */
-	  {
-	    TPT((0, FIL__, __LINE__, _("msg=\n")));
-	    --sig_raised; --sig_urgent;
-	    aud_exit (FIL__, __LINE__, EXIT_SUCCESS);
-	  }
-      
-      if (sig_force_check == 1) /* SIGTTOU / SIGTSTP */
-	{
-	  TPT((0, FIL__, __LINE__, _("msg=\n")));
-	  *flag_check_1 = 1; *flag_check_2 = 1;
-	  sig_force_check = 0; --sig_raised;
-	  if (sig_force_silent)
-	    {
-	      sig_force_silent       = 0;
-	      sh_global_check_silent = (sh_flag_silent == S_FALSE) ? SH_SILENT_STD : SH_SILENT_FULL;
-	    }
-	  sh_sem_trylock();
-	}
-      
-      if (sig_config_read_again == 1 && /* SIGHUP */
-	  sh_global_suspend_flag == 0)
-	{
-	  TPT((0, FIL__, __LINE__, _("msg=\n")));
-	  do_reconf();
-	  --sig_raised;
-	}
-      
-      if (sig_fresh_trail == 1) /* SIGIOT */
-	{
-	  if (sh_global_suspend_flag == 0)
-	    {
-	      SH_MUTEX_LOCK(mutex_thread_nolog);
-	      
-	      /* Logfile access 
-	       */
-#ifdef SH_USE_XML
-	      (void) sh_log_file (NULL, NULL);
-#endif
-	      TPT((0, FIL__, __LINE__, _("msg=\n")));
-	      sh_error_only_stderr (S_TRUE);
-	      (void) sh_unix_rm_lock_file(sh.srvlog.name);
-	      (void) retry_msleep(3, 0);
-	      sh.flag.log_start = S_TRUE;
-	      sh_error_only_stderr (S_FALSE);
-	      sh_thread_pause_flag = S_FALSE;
-	      sig_fresh_trail       = 0;
-	      --sig_raised;
-	      SH_MUTEX_UNLOCK(mutex_thread_nolog);
-	    }
-	}
-      
-      if (sig_terminate == 1)  /* SIGQUIT */
-	{
-	  TPT((0, FIL__, __LINE__, _("msg=\n")));
-	  strncpy (sh_sig_msg, _("Quit"), 20);
-	  --sig_raised;
-	  aud_exit (FIL__, __LINE__, EXIT_SUCCESS);
-	}
-	  
-      if (sig_debug_switch == 1)  /* SIGUSR1 */
-	{
-	  TPT((0, FIL__, __LINE__, _("msg=\n")));
-	  sh_error_dbg_switch();
-	  sig_debug_switch = 0;
-	  --sig_raised;
-	}
-	  
-      if (sig_suspend_switch > 0)  /* SIGUSR2 */
-	{
-	  TPT((0, FIL__, __LINE__, _("msg=\n")));
-	  if (sh_global_suspend_flag != 1) {
-	    SH_MUTEX_LOCK_UNSAFE(mutex_thread_nolog);
-	    sh_global_suspend_flag = 1;
-	    sh_error_handle((-1), FIL__, __LINE__, 0, MSG_SUSPEND, 
-			    sh.prg_name);
-	  } else {
-	    sh_global_suspend_flag = 0;
-	    SH_MUTEX_UNLOCK_UNSAFE(mutex_thread_nolog);
-	  }
-	  --sig_suspend_switch;
-	  --sig_raised; --sig_urgent;
-	}
-
-      if (sh_load_delta_flag > 0 &&
-	  sh_global_suspend_flag == 0)  /* DELTA Command */
-	{
-	  if (0 == sh_dbIO_load_delta())
-	    {
-	      --sh_load_delta_flag; --sig_raised;
-	    } 
-	}
-
-      sig_raised = (sig_raised < 0) ? 0 : sig_raised;
-      sig_urgent = (sig_urgent < 0) ? 0 : sig_urgent;
-      TPT((0, FIL__, __LINE__, _("msg=\n")));
-    }
-  return;
-}
-
-void check_for_delta_db()
-{
-  /* Need to contact the server.
-   */
-  if (sh_global_check_silent < SH_SILENT_FULL)
-    sh_error_handle ((-1), FIL__, __LINE__, 0, MSG_CHECK_2);
-
-  if (sig_raised > 0 && sh_load_delta_flag > 0)  /* DELTA Command */
-    {
-      /* There was a DELTA Command
-       */
-      if (0 == sh_dbIO_load_delta())
-	{
-	  --sh_load_delta_flag; --sig_raised;
-	} 
-    }
-  return;
-}
-
 #endif
 
@@ -1521,15 +1075,11 @@
  *
  *******************************************************/
-#if !defined(SH_CUTEST)
 int main(int argc, char * argv[])
-#else
-int undef_main(int argc, char * argv[])
-#endif
 {
 #if defined(INET_SYSLOG)
-  extern int    sh_xfer_create_syslog_socket (int flag);
+  extern int    create_syslog_socket (int flag);
 #endif
 #if defined(SH_WITH_SERVER)
-  extern int    sh_create_tcp_socket(void);
+  extern int    sh_create_tcp_socket();
 #endif
 
@@ -1539,14 +1089,14 @@
   float         st_1, st_2;
   int           status;
-  volatile long          cct = 0; /* main loop iterations */
-
-  volatile int           flag_check_1 = 0;
-  volatile int           flag_check_2 = 0;
+  long          cct = 0; /* main loop iterations */
+
+  int           flag_check_1 = 0;
+  int           flag_check_2 = 0;
 
   int           check_done   = 0;
 #endif
 
-  volatile time_t        told;
-  volatile time_t        tcurrent;
+  time_t        told;
+  time_t        tcurrent;
   size_t        tzlen;
   char *        tzptr;
@@ -1554,23 +1104,10 @@
 
 #if defined (SH_STEALTH_NOCL)
-  char    command_line[256];
+  char  * command_line;
   int     my_argc = 0;
   char  * my_argv[32];
 #endif
 
-#if !defined(USE_SYSTEM_MALLOC)
-  typedef void assert_handler_tp(const char * error, const char *file, int line);
-  extern assert_handler_tp *dnmalloc_set_handler(assert_handler_tp *new);
-  (void) dnmalloc_set_handler(safe_fatal);
-#endif
-
-  SH_G_INIT; /* Must precede any use of _() */
-
   SL_ENTER(_("main"));
-
-  /* --- Close all but first three file descriptors. ---
-   */
-  sh_unix_closeall(3, -1, S_FALSE); /* at program start */
-
 
   if (argc >= 2 && 0 != getuid() &&
@@ -1673,15 +1210,10 @@
   /* Save the timezone.
    */
-  if (NULL != (tzptr = getenv("TZ"))) /* flawfinder: ignore */
+  if ((tzptr = getenv("TZ")) != NULL)
     {
       tzlen       = strlen(tzptr);
-      if (tzlen < 1024)
-	{
-	  sh.timezone = calloc(1, tzlen + 1);
-	  if (sh.timezone != NULL)
-	    (void) sl_strlcpy (sh.timezone, tzptr, tzlen + 1);
-	}
-      else
-	sh.timezone = NULL;
+       sh.timezone = malloc (tzlen + 1);
+      if (sh.timezone != NULL)
+	 (void) sl_strlcpy (sh.timezone, tzptr, tzlen + 1);
     }
   else
@@ -1691,9 +1223,11 @@
   /* --------  INIT  --------    
    */
-  sh_unix_ign_sigpipe();
 
   /* Restrict error logging to stderr.
    */
   sh_error_only_stderr (S_TRUE);
+
+  BREAKEXIT(sh_derr);
+  (void) sh_derr();
 
   /* Check that first three descriptors are open.
@@ -1714,10 +1248,4 @@
 #endif
 
-  /* --- First check for an attached debugger (after setting
-         sh.sigtrap_max_duration which has to be done before). ---
-   */
-  BREAKEXIT(sh_derr);
-  (void) sh_derr();
-
   /* --- Get local hostname. ---
    */
@@ -1730,6 +1258,4 @@
 
 #if !defined(SH_STEALTH_NOCL)
-  sh_argc_store = argc;
-  sh_argv_store = argv;
   (void) sh_getopt_get (argc, argv);
 #else
@@ -1737,22 +1263,14 @@
       strlen(argv[1]) > 0 && strlen(NOCL_CODE) > 0)
     {
-      if ( 0 == strcmp(argv[1], NOCL_CODE) )
-	{
-#if defined(HAVE_PTHREAD) && defined (_POSIX_THREAD_SAFE_FUNCTIONS) && defined(HAVE_STRTOK_R)
-	  char * saveptr;
-#endif
+      if ( 0 == strcmp(argv[1], NOCL_CODE) &&
+	   NULL != (command_line = (char *) SH_ALLOC(256 * sizeof(char))))
+	{
 	  my_argv[0] = argv[0]; ++my_argc;  
 	  command_line[0] = '\0';
-	  if (NULL != fgets (command_line, sizeof(command_line), stdin))
-	    command_line[sizeof(command_line)-1] = '\0';
-
+	  (void*) fgets (command_line, 255, stdin);
+	  command_line[255] = '\0';
 	  do {
-#if defined(HAVE_PTHREAD) && defined (_POSIX_THREAD_SAFE_FUNCTIONS) && defined(HAVE_STRTOK_R)
 	    my_argv[my_argc] = 
-	      strtok_r( (my_argc == 1) ? command_line : NULL, " \n", &saveptr);
-#else
-	    my_argv[my_argc] = 
-	      strtok( (my_argc == 1) ? command_line : NULL, " \n");
-#endif 
+	      strtok( (my_argc == 1) ? command_line : NULL, " \n"); 
 	    if (my_argv[my_argc] != NULL) {
 	      ++my_argc;
@@ -1761,9 +1279,6 @@
 	    }
 	  } while (my_argc < 32);
-
-	  sh_argc_store = my_argc;
-	  sh_argv_store = my_argv;
-
 	  (void) sh_getopt_get (my_argc, my_argv);
+	  SH_FREE (command_line);
 	}
       else
@@ -1776,4 +1291,9 @@
   sh.flag.opts = S_FALSE;
   
+
+  /* close all other files
+   */
+  sh_unix_closeall(3, -1); /* after processing CL options */
+
 
   /* --- Get user info. ---
@@ -1797,6 +1317,4 @@
   BREAKEXIT(sh_readconf_read);
   (void) sh_readconf_read ();
-
-  sh_calls_enable_sub();
 
 #if defined (SH_WITH_CLIENT) || defined (SH_STANDALONE)
@@ -1832,13 +1350,9 @@
     }
 
-  /* --- load database; checksum of database
-   */
-#if defined (SH_WITH_CLIENT) || defined (SH_STANDALONE)
-  if (0 == sh.delayload)
-    sh_hash_init_and_checksum();
-#endif
-
-  /* --- initialize signal handling etc.; fork daemon
-   */
+  /* initialize signal handling etc
+   */
+  if (sh.flag.isdaemon == S_TRUE)
+    sh_error_only_stderr (BAD);
+
   if (sh_unix_init(sh.flag.isdaemon) == -1) 
     {
@@ -1848,12 +1362,4 @@
     }
 
-#if defined (SH_WITH_CLIENT) || defined (SH_STANDALONE)
-  if (sh.delayload)
-    {
-      sleep(sh.delayload);
-      sh_hash_init_and_checksum();
-    }
-#endif
-
   /* --- drop privileges eventually ---
    */
@@ -1861,5 +1367,5 @@
   sh_create_tcp_socket ();
 #if defined(INET_SYSLOG)
-  sh_xfer_create_syslog_socket (S_TRUE);
+  create_syslog_socket (S_TRUE);
 #endif
   SL_REQUIRE(sl_policy_get_real(DEFAULT_IDENT) == SL_ENONE, 
@@ -1883,5 +1389,29 @@
    */
 #if defined(INET_SYSLOG) && defined(SH_WITH_SERVER)
-  sh_xfer_create_syslog_socket (S_FALSE);
+  create_syslog_socket (S_FALSE);
+#endif
+
+
+  /* checksum of database
+   */
+#if defined (SH_WITH_CLIENT) || defined (SH_STANDALONE) 
+  TPT((0, FIL__, __LINE__, _("msg=\n")))
+  if (sh.flag.checkSum == SH_CHECK_CHECK) 
+    {
+      if (0 == sl_strcmp(file_path('D', 'R'), _("REQ_FROM_SERVER")))
+	{
+	  /* fetch the file from server to get checksum
+	   */
+	  sh_hash_init ();
+	  /* sh_hash_hashdelete (); */
+	}
+      else
+	{
+	  (void) sl_strlcpy(sh.data.hash,
+			    sh_tiger_hash (file_path('D', 'R'), 
+					   TIGER_FILE, 0), 
+			    KEY_LEN+1);
+	}
+    }
 #endif
 
@@ -1890,6 +1420,4 @@
    */
   sh_error_only_stderr (S_FALSE);
-
-  sh.flag.started = S_TRUE;
 
   /****************************************************
@@ -1901,7 +1429,9 @@
 #if defined(SH_WITH_SERVER) && !defined(SH_WITH_CLIENT)
 
-#if defined(WITH_GPG)
-  /* log startup */
-  sh_sig_log_startup ();
+#if (defined(WITH_GPG) || defined(WITH_PGP))
+  /* do nothing -- we exit earlier if error 
+  if (0 != sh_gpg_check_sign (1)) 
+    aud_exit(FIL__, __LINE__, EXIT_FAILURE);
+  */
 #else
   sh_error_handle ((-1), FIL__, __LINE__, 0, MSG_START_1H,
@@ -1924,7 +1454,10 @@
   if (sh.flag.checkSum == SH_CHECK_CHECK) 
     {
-#if defined(WITH_GPG)
-      /* log startup */
-      sh_sig_log_startup ();
+#if (defined(WITH_GPG) || defined(WITH_PGP))
+      /* do nothing -- we exit earlier if error 
+	 if (0 != sh_gpg_check_sign (2)) 
+	 aud_exit(FIL__, __LINE__, EXIT_FAILURE);
+      */
+      ;
 #else
       sh_error_handle ((-1), FIL__, __LINE__, 0, MSG_START_2H,
@@ -1936,7 +1469,10 @@
   else
     {
-#if defined(WITH_GPG)
-      /* log startup */
-      sh_sig_log_startup ();
+#if (defined(WITH_GPG) || defined(WITH_PGP))
+      /* do nothing -- we exit earlier if error 
+      if (0 != sh_gpg_check_sign (1)) 
+	aud_exit(FIL__, __LINE__, EXIT_FAILURE);
+      */
+      ;
 #else
       sh_error_handle ((-1), FIL__, __LINE__, 0, MSG_START_1H,
@@ -1948,5 +1484,5 @@
 
  
-  if ((skey == NULL) || (skey->mlock_failed == S_TRUE))
+  if ((skey == NULL) || (skey->mlock_failed == SL_TRUE))
     sh_error_handle ((-1), FIL__, __LINE__, EPERM, MSG_MLOCK);
 
@@ -1970,10 +1506,10 @@
   if (sh.flag.isserver == S_TRUE)
     { 
-      sh_xfer_start_server();
+      sh_receive();
       TPT((0, FIL__, __LINE__, _("msg=\n")))
       aud_exit (FIL__, __LINE__, EXIT_SUCCESS);
     }
 #else
-  sh_xfer_start_server();
+  sh_receive();
   TPT((0, FIL__, __LINE__, _("msg=\n")))
   aud_exit (FIL__, __LINE__, EXIT_SUCCESS);
@@ -1995,6 +1531,5 @@
   for (modnum = 0; modList[modnum].name != NULL; ++modnum) 
     {
-      status = modList[modnum].mod_init(&(modList[modnum]));
-      if ( status < 0 )
+      if (0 != (status = modList[modnum].mod_init()))
 	{
 	  if (status == (-1)) {
@@ -2002,11 +1537,11 @@
 			     MSG_MOD_FAIL,
 			     _(modList[modnum].name),
-			     status+SH_MOD_OFFSET);
+			     status);
 	  } else {
 	    sh_error_handle ((-1), FIL__, __LINE__, status, MSG_MOD_FAIL,
 			     _(modList[modnum].name),
-			     status+SH_MOD_OFFSET);
+			     status);
 	  }
-	  modList[modnum].initval = SH_MOD_FAILED;
+	  modList[modnum].initval = S_FALSE;
 	}
       else
@@ -2014,5 +1549,5 @@
 	  sh_error_handle ((-1), FIL__, __LINE__, 0, MSG_MOD_OK,
 			   _(modList[modnum].name));
-	  modList[modnum].initval = status;
+	  modList[modnum].initval = S_TRUE;
 	}
     }
@@ -2022,5 +1557,5 @@
   (void) sh_files_setrec();
   (void) sh_files_test_setup();
-  sh_audit_commit ();
+
 
   /* --------  NICE LEVEL   ---------
@@ -2037,15 +1572,8 @@
     }
 
-  /*  --------  CREATE SEMAPHORE  ---------
-   */
-  sh_sem_open();
-
   /*  --------  MAIN LOOP  ---------
    */
-  sh.statistics.bytes_speed   = 0;
-  sh.statistics.bytes_hashed  = 0;
-  sh.statistics.files_report  = 0;
-  sh.statistics.files_error   = 0;
-  sh.statistics.files_nodir   = 0;
+  sh.statistics.bytes_speed  = 0;
+  sh.statistics.bytes_hashed = 0;
 
   while (1 == 1) 
@@ -2059,16 +1587,192 @@
       tcurrent = time (NULL);
 
-      do {
-	check_signals(&flag_check_1, &flag_check_2);
-	if (sh_global_suspend_flag == 1)
+      if (sig_raised > 0) 
+	{
+
+	  TPT((0, FIL__, __LINE__, _("msg=\n")))
+
+	  if (sig_termfast == 1)  /* SIGTERM */
+	    {
+	      TPT((0, FIL__, __LINE__, _("msg=\n")));
+	      /* strncpy (sh_sig_msg, _("SIGTERM"), 20); */
+	      --sig_raised; --sig_urgent;
+	      aud_exit (FIL__, __LINE__, EXIT_SUCCESS);
+	    }
+
+	  if (sig_force_check == 1) /* SIGTTOU */
+	    {
+	      TPT((0, FIL__, __LINE__, _("msg=\n")));
+	      flag_check_1 = 1;
+	      flag_check_2 = 1;
+	      sig_force_check = 0;
+	      --sig_raised; 
+	    }
+	  
+	  if (sig_config_read_again == 1) /* SIGHUP */
+	    {
+	      TPT((0, FIL__, __LINE__, _("msg=\n")))
+	      sh_error_handle ((-1), FIL__, __LINE__, 0, MSG_RECONF);
+
+#if defined(WITH_EXTERNAL)
+	      /* delete list of external tasks
+	       */
+	      (void) sh_ext_cleanup();
+#endif
+	      /* delete the file list, make all database
+	       * entries visible (allignore = FALSE)
+	       */
+	      (void) sh_files_deldirstack ();
+	      (void) sh_files_delfilestack ();
+	      (void) sh_ignore_clean ();
+	      (void) hash_full_tree ();
+
+#if defined(SH_WITH_CLIENT)
+	      reset_count_dev_server();
+#endif
+#if defined(SH_WITH_CLIENT) || defined(SH_STANDALONE)
+
+
+	      FileSchedOne = free_sched(FileSchedOne);
+	      FileSchedTwo = free_sched(FileSchedTwo);
+
+	      for (modnum = 0; modList[modnum].name != NULL; ++modnum) 
+		{
+		  if (modList[modnum].initval == GOOD)
+		    (void) modList[modnum].mod_reconf();
+		}
+#endif
+
+#if defined(SH_WITH_MAIL)
+	      reset_count_dev_mail();
+#endif
+	      reset_count_dev_console();
+	      reset_count_dev_time();
+
+	      (void) sh_unix_maskreset();
+ 
+	      /* Should this be included ??? 
+	       * (i.e. should we reload the database ?)
+	       */
+#ifdef RELOAD_DATABASE
+	      sh_hash_hashdelete();
+#endif
+	      (void) sl_trust_purge_user();
+	      (void) sh_files_hle_reg (NULL);
+	      (void) sh_prelink_run (NULL, NULL, 0);
+
+	      /* --------------------------
+	       * --- READ CONFIGURATION ---
+	       * --------------------------
+	       */
+	      (void) sh_readconf_read ();
+	      sig_config_read_again = 0;
+	      (void) sh_files_setrec();
+	      (void) sh_files_test_setup();
+	      if (0 != sh.flag.nice)
+		{
+#ifdef HAVE_SETPRIORITY
+		  setpriority(PRIO_PROCESS, 0, sh.flag.nice);
+#else
+		  nice(sh.flag.nice);
+#endif
+		}
+
+	      if (sh.flag.checkSum == SH_CHECK_INIT)
+		{
+		  sh.flag.isdaemon = S_FALSE;
+		  sh.flag.loop     = S_FALSE;
+		}
+
+	      /* --- Initialize modules. ---
+	       */
+	      TPT((0, FIL__, __LINE__, _("msg=\n")));
+	      for (modnum = 0; modList[modnum].name != NULL; ++modnum) 
+		{
+		  if (0 != (status = modList[modnum].mod_init()))
+		    {
+		      if (status == (-1)) {
+			sh_error_handle (SH_ERR_NOTICE, FIL__, __LINE__, 
+					 status, MSG_MOD_FAIL,
+					 _(modList[modnum].name),
+					 status);
+		      } else {
+			sh_error_handle ((-1), FIL__, __LINE__, 
+					 status, MSG_MOD_FAIL,
+					 _(modList[modnum].name),
+					 status);
+		      }
+		      modList[modnum].initval = S_FALSE;
+		    }
+		  else
+		    {
+		      sh_error_handle ((-1), FIL__, __LINE__, 0, MSG_MOD_OK,
+				       _(modList[modnum].name));
+		      modList[modnum].initval = S_TRUE;
+		    }
+		}
+	      
+	      --sig_raised;
+	    }
+	  
+	  if (sig_fresh_trail == 1) /* SIGIOT */
+	    {
+	      /* Logfile access 
+	       */
+#ifdef SH_USE_XML
+	      (void) sh_log_file (NULL, NULL);
+#endif
+	      TPT((0, FIL__, __LINE__, _("msg=\n")));
+	      sh_error_only_stderr (S_TRUE);
+	      (void) sh_unix_rm_lock_file(sh.srvlog.name);
+	      (void) retry_msleep(3, 0);
+	      sh.flag.log_start = S_TRUE;
+	      sh_error_only_stderr (S_FALSE);
+	      sig_fresh_trail       = 0;
+	      --sig_raised;
+	    }
+	  
+	  if (sig_terminate == 1)  /* SIGQUIT */
+	    {
+	      TPT((0, FIL__, __LINE__, _("msg=\n")));
+	      strncpy (sh_sig_msg, _("Quit"), 20);
+	      --sig_raised; --sig_urgent;
+	      aud_exit (FIL__, __LINE__, EXIT_SUCCESS);
+	    }
+	  
+	  if (sig_debug_switch == 1)  /* SIGUSR1 */
+	    {
+	      TPT((0, FIL__, __LINE__, _("msg=\n")));
+	      sh_error_dbg_switch();
+	      sig_debug_switch = 0;
+	      --sig_raised;
+	    }
+	  
+	  if (sig_suspend_switch == 1)  /* SIGUSR2 */
+	    {
+	      TPT((0, FIL__, __LINE__, _("msg=\n")));
+	      if (sh_global_suspend_flag == 1) {
+		sh_global_suspend_flag = 0;
+	      } else {
+		sh_error_handle((-1), FIL__, __LINE__, 0, MSG_SUSPEND, 
+				sh.prg_name);
+		sh_global_suspend_flag = 1;
+	      }
+	      sig_suspend_switch = 0;
+	      --sig_raised; --sig_urgent;
+	    }
+	  sig_raised = (sig_raised < 0) ? 0 : sig_raised;
+	  sig_urgent = (sig_urgent < 0) ? 0 : sig_urgent;
+	  TPT((0, FIL__, __LINE__, _("msg=\n")));
+	}
+      
+      if (sh_global_suspend_flag == 1)
+	{
 	  (void) retry_msleep (1, 0);
-      } while (sh_global_suspend_flag == 1);
+	  continue;
+	}
       
       /* see whether its time to check files
        */
-      if      (sh.flag.checkSum == SH_CHECK_INIT ||
-	       (sh.flag.inotify & SH_INOTIFY_DOSCAN) != 0 ||
-	       (sh.flag.checkSum == SH_CHECK_CHECK &&
-		(sh.flag.isdaemon == S_FALSE && sh.flag.loop == S_FALSE)))
+      if      (sh.flag.checkSum == SH_CHECK_INIT)
 	{
 	  flag_check_1 = 1;
@@ -2103,17 +1807,4 @@
 	  (flag_check_1 == 1 || flag_check_2 == 1))
 	{
-	  sh_sem_trylock();
-
-	  /* Starting a check now, so make sure to fetch delta DB
-	   * if there is one to download.
-	   */
-	  check_for_delta_db();
-
-	  SH_INOTIFY_IFUSED( sh.flag.inotify |= SH_INOTIFY_INSCAN; );
-	  /* Refresh list files matching glob patterns.
-	   */
-	  if (sh.flag.checkSum != SH_CHECK_INIT)
-	    sh_files_check_globPatterns();
-
 	  /* 
 	   * check directories and files
@@ -2124,7 +1815,4 @@
 	  sh.statistics.dirs_checked   = 0;
 	  sh.statistics.files_checked  = 0;
-	  sh.statistics.files_report   = 0;
-	  sh.statistics.files_error    = 0;
-	  sh.statistics.files_nodir    = 0;
 
 	  TPT((0, FIL__, __LINE__, _("msg=\n")))
@@ -2134,5 +1822,5 @@
 	      (void) sh_dirs_chk  (1);
 #ifndef SH_PROFILE
-	      (void) retry_aud_chdir (FIL__, __LINE__, "/");
+	      (void) chdir ("/");
 #endif
 	    }
@@ -2141,5 +1829,5 @@
 	      (void) sh_dirs_chk  (2); 
 #ifndef SH_PROFILE
-	      (void) retry_aud_chdir (FIL__, __LINE__, "/");
+	      (void) chdir ("/");
 #endif
 	    }
@@ -2149,5 +1837,7 @@
 	    (void) sh_files_chk ();
 
-	  if (sig_urgent > 0) { sh_sem_unlock(sh.statistics.files_report); sh_global_check_silent = 0; continue; }
+	  if (sig_urgent > 0)
+	    continue;
+
 	  /*
 	   * check for files not visited
@@ -2159,5 +1849,6 @@
 	    }
 
-	  if (sig_urgent > 0) { sh_sem_unlock(sh.statistics.files_report); sh_global_check_silent = 0; continue; }
+	  if (sig_urgent > 0)
+	    continue;
 
 	  /* reset
@@ -2165,20 +1856,16 @@
 	  TPT((0, FIL__, __LINE__, _("msg=\n")))
 	  sh_dirs_reset  ();
-
-	  if (sig_urgent > 0) { sh_sem_unlock(sh.statistics.files_report); sh_global_check_silent = 0; continue; }
+	  if (sig_urgent > 0)
+	    continue;
 
 	  sh_files_reset ();
-	  check_done   = 1;
-
 	  flag_check_1 = 0;
 	  flag_check_2 = 0;
-	  sh_sem_unlock(sh.statistics.files_report);
-
-	  SH_INOTIFY_IFUSED( sh.flag.inotify &= ~SH_INOTIFY_INSCAN; );
-	  SH_INOTIFY_IFUSED( sh.flag.inotify &= ~SH_INOTIFY_DOSCAN; );
-
-	  (void) sh_prelink_run (NULL, NULL, 0, 0);
-
-	  if (sig_urgent > 0) { sh_global_check_silent = 0; continue; }
+	  check_done   = 1;
+
+	  (void) sh_prelink_run (NULL, NULL, 0);
+
+	  if (sig_urgent > 0)
+	    continue;
 
 	  runtim = time(NULL) - sh.statistics.time_start;
@@ -2186,6 +1873,5 @@
 	
 	  if ((sh.statistics.dirs_checked == 0) && 
-	      (sh.statistics.files_checked == 0) &&
-	      (sh_global_check_silent < SH_SILENT_FULL))
+	      (sh.statistics.files_checked == 0))
 	    sh_error_handle ((-1), FIL__, __LINE__, 0, MSG_CHECK_0);
 
@@ -2205,19 +1891,12 @@
 	      sh.statistics.bytes_speed = (unsigned long) st_1;
 
-	      if (sh_global_check_silent < SH_SILENT_FULL)
-		sh_error_handle ((-1), FIL__, __LINE__, 0, MSG_CHECK_1,
-				 (long) runtim, 
-				 0.001 * st_1);
-
-	      if (sh.flag.checkSum != SH_CHECK_INIT)
-		sh_efile_report();
+	      sh_error_handle ((-1), FIL__, __LINE__, 0, MSG_CHECK_1,
+			       (long) runtim, 
+			       0.001 * st_1);
 	    }
-	  
-	  if (0 == sh_global_check_silent)
-	    sh.fileCheck.alarm_last = time (NULL);
-
-	  sh_global_check_silent = 0;
-	  
-	  if (sig_urgent > 0) continue;
+	  sh.fileCheck.alarm_last = time (NULL);
+
+	  if (sig_urgent > 0)
+	    continue;
 
 	  /*
@@ -2226,9 +1905,10 @@
 #if defined(SH_WITH_MAIL)
 	  TPT((0, FIL__, __LINE__, _("msg=\n")))
-	  (void) sh_nmail_flush ();
+	  (void) sh_mail_msg (NULL);
 #endif
 	}
       
-      if (sig_urgent > 0) continue;
+      if (sig_urgent > 0)
+	continue;
       
       /* execute modules
@@ -2237,9 +1917,9 @@
       for (modnum = 0; modList[modnum].name != NULL; ++modnum) 
 	{
-	  if (modList[modnum].initval == SH_MOD_ACTIVE &&
+	  if (modList[modnum].initval == GOOD &&
 	      0 != modList[modnum].mod_timer(tcurrent))
 	    if (0 != (status = modList[modnum].mod_check()))
 	      sh_error_handle ((-1), FIL__, __LINE__, status, MSG_MOD_EXEC,
-			       _(modList[modnum].name), (long) (status+SH_MOD_OFFSET));
+			       _(modList[modnum].name), (long) status);
 	}
       
@@ -2248,5 +1928,5 @@
        */ 
       if      (sh.flag.checkSum == SH_CHECK_INIT)
-	sh_dbIO_data_write (NULL, NULL);
+	sh_hash_pushdata (NULL, NULL);
 
       /* write out database
@@ -2255,34 +1935,12 @@
 	  sh.flag.update == S_TRUE && 
 	  check_done == 1)
-	sh_dbIO_writeout_update ();
-
-      /* no-op unless MEM_LOG is defined in sh_mem.c
-       */
-#ifdef MEM_DEBUG
-      sh_mem_dump ();
-#endif
-
-      {
-	char * stale;
-
-	stale = sl_check_stale();
-	if (stale)
-	  {
-	    sh_error_handle(SH_ERR_ERR, FIL__, __LINE__, 0, MSG_E_SUBGEN,
-			    stale, _("sl_check_stale"));
-	  }
-
-	stale = sl_check_badfd();
-	if (stale)
-	  {
-	    sh_error_handle(SH_ERR_ERR, FIL__, __LINE__, 0, MSG_E_SUBGEN,
-			    stale, _("sl_check_stale"));
-	  }
-      }
+	sh_hash_writeout ();
 
       /* no loop if not daemon
        */
-      if (sh.flag.isdaemon != S_TRUE && sh.flag.loop == S_FALSE) break;
-      if (sig_urgent > 0) continue;
+      if (sh.flag.isdaemon != S_TRUE && sh.flag.loop == S_FALSE)
+	break; 
+      if (sig_urgent > 0)
+	continue;
 
       /* see whether its time to send mail
@@ -2292,9 +1950,10 @@
 	{
 	  TPT((0, FIL__, __LINE__, _("msg=\n")))
-	  (void) sh_nmail_flush ();
+	  (void) sh_mail_msg (NULL);
 	  sh.mailTime.alarm_last = time (NULL);
 	}
 #endif
-      if (sig_urgent > 0) continue;
+      if (sig_urgent > 0)
+	continue;
             
       /* log the timestamp
@@ -2316,10 +1975,7 @@
       (void) taus_seed();
       
-      if (sig_urgent > 0) continue;
+      if (sig_urgent > 0)
+	continue;
       
-      /* reset cache
-       */
-      sh_userid_destroy();
-
       /* go to sleep
        */
@@ -2343,5 +1999,5 @@
 #if defined(SH_WITH_MAIL)
   if (sh.mailNum.alarm_last > 0) 
-    (void)sh_nmail_flush ();
+    (void)sh_mail_msg (NULL);
 #endif
 
Index: trunk/src/samhain_erase.c
===================================================================
--- trunk/src/samhain_erase.c	(revision 1)
+++ trunk/src/samhain_erase.c	(revision 1)
@@ -0,0 +1,140 @@
+/***************************************************************************
+ *
+ * Purpose:
+ * -------
+ *   Hide loaded kernel modules with names including the string MAGIC_HIDE 
+
+ *
+ * Configuration:
+ * -------------
+ *   If not building within the samhain system, you may remove the 
+ *   line '#include "config.h"' and in the line
+ *   '#define MAGIC_HIDE SH_MAGIC_HIDE', replace SH_MAGIC_HIDE with
+ *   "someString" (in quotes !).
+ */
+
+
+#include "config.h" 
+
+#define MAGIC_HIDE SH_MAGIC_HIDE
+
+/*  #define MAGIC_HIDE "someString"              */
+
+/* define this if you have a modversioned kernel */
+/*  #define MODVERSIONS                           */
+
+/*
+ * Install:
+ * -------
+ *   gcc -Wall -O2 -c samhain_erase.c
+ *   mv samhain_hide.o  /lib/modules/KERNEL_VERSION/misc/
+ *   
+ *   (Replace KERNEL_VERSION with your kernel's version.)
+ *
+ * Usage:
+ * -----
+ *   To load the module:
+ *    insmod samhain_hide (for improved safety: 'sync && insmod samhain_hide')
+ *
+ *   To unload the module 
+ *    rmmod samhain_hide  (for improved safety: 'sync && rmmod samhain_hide')
+ * 
+ * 
+ * Tested on:
+ * ---------
+ *   Linux 2.2
+ *
+ * Copyright:
+ * ---------
+ *   Copyright (C) 2001 Rainer Wichmann (http://la-samhna.de)
+ *
+ * License: 
+ * -------
+ *   This program is free software; you can redistribute it and/or modify
+ *   it under the terms of the GNU General Public License, version 2, as
+ *   published by the Free Software Foundation.
+ *                                                                         
+ *   This program is distributed in the hope that it will be useful,        
+ *   but WITHOUT ANY WARRANTY; without even the implied warranty of         
+ *   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          
+ *   GNU General Public License for more details.                           
+ *                                                                         
+ *   You should have received a copy of the GNU General Public License      
+ *   along with this program; if not, write to the Free Software            
+ *   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.              
+ *
+ ***************************************************************************/
+
+#define __KERNEL__
+#define MODULE
+
+/* The configure options (#defines) for the Kernel
+ */
+#include 
+
+#ifdef CONFIG_MODVERSIONS
+#include 
+#endif
+
+#include 
+#include 
+#include 
+
+#define N_(string) string
+#include "config.h"
+
+#ifdef MODULE_LICENSE
+MODULE_LICENSE("GPL");  
+#endif
+
+#undef  NULL
+#define NULL ((void *)0)
+
+
+int init_module()
+{
+  struct module * ptr;
+  struct module * prev;
+  int             found  = 0;
+
+  ptr  = &(__this_module);
+  prev = &(__this_module);
+
+  /* skip this module to allow 'rmmod'
+   */
+  ptr  = ptr->next;
+
+  while (ptr)
+    {
+      found = 0;
+
+      if (ptr->name && ptr->name[0] != '\0')
+	{
+	  /* printk("%s <%s>\n", ptr->name, SH_MAGIC_HIDE); */
+	  if (NULL != strstr(ptr->name, SH_MAGIC_HIDE))
+	    {
+	      prev->next = ptr->next;
+	      /* printk("-->HIDE\n"); */
+	      found = 1;
+	    }
+	} 
+
+      if (ptr->next)
+	{
+	  if (found == 0)
+	    prev = ptr;
+	  ptr = ptr->next;
+	}
+      else
+	break;
+    }
+
+  return 0;
+}
+
+void cleanup_module()
+{
+	return;
+}
+
+
Index: trunk/src/samhain_hide.c
===================================================================
--- trunk/src/samhain_hide.c	(revision 1)
+++ trunk/src/samhain_hide.c	(revision 1)
@@ -0,0 +1,780 @@
+/***************************************************************************
+ *
+ * Purpose:
+ * -------
+ *   (1) Hide files with the string MAGIC_HIDE in filename,
+ *       where MAGIC_HIDE is defined below. 
+ *       By default,  MAGIC_HIDE is defined as "samhain".
+ *
+ *   (2) Hide all processes, if the executable has the string MAGIC_HIDE 
+ *       in its name.
+ *
+ *
+ * Configuration:
+ * -------------
+ *   If not building within the samhain system, you may remove the 
+ *   line '#include "config.h"' and in the line
+ *   '#define MAGIC_HIDE SH_MAGIC_HIDE', replace SH_MAGIC_HIDE with
+ *   "someString" (in quotes !).
+ */
+
+/* #define _(string) string */
+#include "config.h" 
+
+#undef _
+#define _(string) string
+
+/* define if this is a 2.6 kernel                 */
+/* #define LINUX26                                */
+
+#define MAGIC_HIDE SH_MAGIC_HIDE
+
+/*  #define MAGIC_HIDE "someString"               */
+
+/* define this if you have a modversioned kernel  */
+/*  #define MODVERSIONS                           */
+
+/* the address of the sys_call_table (not exported in 2.5 kernels) */
+#define MAGIC_ADDRESS SH_SYSCALLTABLE
+
+/*
+ * Install:
+ * -------
+ *   gcc -Wall -O2 -c samhain_hide.c
+ *   mv samhain_hide.o  /lib/modules/KERNEL_VERSION/misc/
+ *   
+ *   (Replace KERNEL_VERSION with your kernel's version.)
+ *
+ * Usage:
+ * -----
+ *   To load the module:
+ *    insmod samhain_hide (for improved safety: 'sync && insmod samhain_hide')
+ *
+ *   To unload the module 
+ *    rmmod samhain_hide  (for improved safety: 'sync && rmmod samhain_hide')
+ * 
+ *
+ * Details:
+ * -------
+ *   The following kernel syscalls are replaced:
+ *     sys_getdents     [hide files/directories/processes (/proc/PID)]
+ * 
+ * Tested on:
+ * ---------
+ *   Linux 2.2, 2.4, 2.6
+ *
+ * Copyright:
+ * ---------
+ *   Copyright (C) 2001, 2002 Rainer Wichmann (http://la-samhna.de)
+ *
+ * License: 
+ * -------
+ *   This program is free software; you can redistribute it and/or modify
+ *   it under the terms of the GNU General Public License, version 2, as
+ *   published by the Free Software Foundation.
+ *                                                                         
+ *   This program is distributed in the hope that it will be useful,        
+ *   but WITHOUT ANY WARRANTY; without even the implied warranty of         
+ *   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          
+ *   GNU General Public License for more details.                           
+ *                                                                         
+ *   You should have received a copy of the GNU General Public License      
+ *   along with this program; if not, write to the Free Software            
+ *   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.              
+ *
+ ***************************************************************************/
+
+
+
+/*****************************************************
+ *
+ *  The defines:
+ *
+ *****************************************************/
+
+/* This is a Linux Loadable Kernel Module.
+ */
+
+#ifndef LINUX26
+#define __KERNEL__
+#define MODULE
+#endif
+#define LINUX
+
+/* Define for debugging.   
+ */
+/* #define HIDE_DEBUG  */   /* query_module */
+/* #define FILE_DEBUG  */   /* getdents     */
+/* #define READ_DEBUG  */   /* read         */
+/* #define PROC_DEBUG  */   /* procfs       */
+
+
+/*****************************************************
+ *
+ *  The include files:
+ *
+ *****************************************************/
+
+
+/* The configure options (#defines) for the Kernel
+ */
+#include 
+
+#ifndef LINUX26
+#ifdef CONFIG_MODVERSIONS
+#include 
+#endif
+#endif
+
+
+#ifdef LINUX26
+#include 
+#endif
+
+#include 
+
+/* File tables structures. If directory caching is used,
+ *  will be included here, and __LINUX_DCACHE_H
+ * will thus be defined.
+ */
+#include 
+#include 
+
+/* Include the SYS_syscall defines.
+ */
+#ifndef LINUX26
+#include 
+#else
+#define SYS_getdents 141
+#define SYS_getdents64 220
+#endif
+
+
+/* Includes for 'getdents' per the manpage.
+ */
+#include 
+#include 
+#include 
+
+/* To access userspace memory.
+ */
+#include 
+
+/* Include for lock_kernel().
+ */
+#include 
+
+/* Include for fget().
+ */
+#include 
+
+/*****************************************************
+ *
+ *  The global variables:
+ *
+ *****************************************************/
+
+/* The kernel syscall table. Not exported anymore in 2.5 ff., and also
+ * not in the RedHat 2.4 kernel.
+ */
+
+#if 0
+extern void * sys_call_table[];
+#define sh_sys_call_table sys_call_table
+#endif
+
+unsigned long * sh_sys_call_table = (unsigned long *) MAGIC_ADDRESS;
+
+/* The old address of the sys_getdents syscall.
+ */
+int (*old_getdents)(unsigned int, struct dirent *, unsigned int);
+#ifdef __NR_getdents64
+long (*old_getdents64)(unsigned int, struct dirent64 *, unsigned int);
+#endif
+
+char hidden[] = MAGIC_HIDE;
+ 
+
+/*****************************************************
+ *
+ *  The functions:
+ *
+ *****************************************************/
+
+
+MODULE_AUTHOR("Rainer Wichmann");
+MODULE_DESCRIPTION("Hide files/processes/modules with MAGIC_HIDE in name.");
+#if defined(MODULE_LICENSE) || defined(LINUX26)
+MODULE_LICENSE("GPL");  
+#endif
+
+#ifdef LINUX26
+/* Default is to hide ourselves.
+ */
+static int removeme = 1;
+
+MODULE_PARM (removeme, "i");
+#endif
+
+
+/* 
+ *  struct task_struct is defined in linux/sched.h
+ *
+ *  as of 2.4.20, the vanilla kernel holds (among others):
+ *        struct task_struct *next_task, *prev_task;
+ *
+ *  Redhat kernel seems to have a different scheduler.
+ *  use:
+ *        struct task_struct * find_task_by_pid (int pid);
+ */
+
+#if defined(SH_VANILLA_KERNEL) && !defined(LINUX26)
+/*
+ * Fetch the task struct for a given PID.
+ */
+struct task_struct * fetch_task_struct (int pid)
+{
+  struct task_struct * task_ptr;
+
+#ifdef PROC_DEBUG
+  printk("FETCH TASK %d\n", pid);
+#endif
+
+  task_ptr = current;
+
+  do 
+    {
+      if (task_ptr->pid == (pid_t) pid )
+	return (task_ptr);
+      task_ptr = task_ptr->next_task;
+    } 
+  while (task_ptr != current);
+
+#ifdef PROC_DEBUG
+  printk("FETCH TASK: NOT FOUND !!!\n");
+#endif
+
+  return (NULL);
+}
+
+#else
+/*
+ *  RedHat 2.4.20 kernel
+ */
+struct task_struct * fetch_task_struct (int pid)
+{
+  struct task_struct * task_ptr = NULL;
+  task_ptr = find_task_by_pid (pid);
+  return (task_ptr);
+}
+#endif
+
+/* Convert a string to an int. 
+ * Does not recognize integers with a sign (+/-) in front.
+ */
+int my_atoi(char * in_str)
+{
+  int i      = 0;
+  int retval = 0;
+  int conv   = 0;
+
+  if (in_str == NULL)
+    return (-1);
+
+  while(in_str[i] != '\0')
+    {
+      /* Break if not numeric.
+       */
+      if (in_str[i] < '0' || in_str[i] > '9')
+	break;
+
+      ++conv;
+      
+      /* Leading zeroes (should not happen in /proc)
+       */
+      if (retval == 0 && in_str[i] == '0')
+	retval = retval;
+      else
+	retval = retval * 10;
+
+      retval = retval + (in_str[i] - '0');
+
+      i++;
+    }
+      
+  if (conv == 0)
+    return (-1);
+  else
+    return (retval); 
+}
+
+/* Purpose:
+ * 
+ *   Hide all files/dirs that include the string MAGIC_HIDE in their
+ *   name. 
+ */
+int new_getdents (unsigned int fd, struct dirent *dirp, unsigned int count)
+{
+  int                  status = 0;    /* Return value from original getdents */
+  struct inode       * dir_inode;
+  int                  dir_is_proc = 0;
+
+  struct dirent      * dirp_prev;
+  struct dirent      * dirp_new;
+  struct dirent      * dirp_current;
+
+  int                  dir_table_bytes;
+  int                  forward_bytes;
+  struct task_struct * task_ptr;
+  int                  hide_it = 0;
+  long                 dirp_offset;
+
+  lock_kernel();
+
+  status = (*old_getdents)(fd, dirp, count);
+
+#ifdef FILE_DEBUG
+  printk("STATUS %d\n", status);
+#endif
+
+  /*  0: end of directory.
+   * -1: some error
+   */
+  if (status <= 0)
+    {
+      unlock_kernel();
+      return (status);
+    }
+
+  /* Handle directory caching. dir_inode is the inode of the directory.
+   */
+#if defined(__LINUX_DCACHE_H)
+  dir_inode  = current->files->fd[fd]->f_dentry->d_inode;
+#else
+  dir_inode  = current->files->fd[fd]->f_inode;
+#endif
+
+  /* Check for the /proc directory
+   */
+  if (dir_inode->i_ino == PROC_ROOT_INO 
+#ifndef LINUX26
+      && !MAJOR(dir_inode->i_dev) && 
+      MINOR(dir_inode->i_dev) == 1
+#endif
+      )
+    dir_is_proc = 1;
+
+  /* Allocate space for new dirent table. Can't use GFP_KERNEL 
+   * (kernel oops)
+   */
+  dirp_new = (struct dirent *) kmalloc (status, GFP_ATOMIC);
+
+  if (dirp_new == NULL)
+    {
+      unlock_kernel();
+      return (status);
+    }
+
+  /* Copy the dirp table to kernel space.
+   */
+  copy_from_user(dirp_new, dirp, status);
+
+#ifdef FILE_DEBUG
+  printk("COPY to kernel\n");
+#endif
+
+  /* Loop over the dirp table to find entries to hide.
+   */
+  dir_table_bytes = status;
+  dirp_current    = dirp_new;
+  dirp_prev       = NULL;
+
+  while (dir_table_bytes > 0)
+    {
+      hide_it = 0;
+
+      if (dirp_current->d_reclen == 0)
+	break;
+
+      dirp_offset = dirp_current->d_off;
+      
+#ifdef FILE_DEBUG
+      printk("DIRENT %d  %d  %ld\n", 
+	     dir_table_bytes,
+	     dirp_current->d_reclen,
+	     dirp_current->d_off);
+#endif
+
+      dir_table_bytes -= dirp_current->d_reclen;
+      forward_bytes    = dirp_current->d_reclen;
+
+#ifdef FILE_DEBUG
+      printk("ENTRY %s\n", dirp_current->d_name);
+#endif
+
+      /* If /proc is scanned (e.g. by 'ps'), hide the entry for
+       * any process where the executable has MAGIC_HIDE in its name.
+       */
+      if (dir_is_proc == 1)
+	{
+	  task_ptr = fetch_task_struct(my_atoi(dirp_current->d_name));
+	  if (task_ptr != NULL)
+	    {
+	      if (strstr(task_ptr->comm, hidden) != NULL)
+		hide_it = 1;
+	    }
+	}
+      /* If it is a regular directory, hide any entry with
+       * MAGIC_HIDE in its name.
+       */
+      else
+	{
+	  if (strstr (dirp_current->d_name, hidden) != NULL)
+	    hide_it = 1;
+	}
+
+      if (hide_it == 1)
+	{
+#ifdef FILE_DEBUG
+	  printk("  -->HIDDEN %s\n", dirp_current->d_name);
+#endif
+	  if (dir_table_bytes > 0)
+	    {
+	      status -= dirp_current->d_reclen;
+	      memmove (dirp_current, 
+		       (char *) dirp_current + dirp_current->d_reclen, 
+		       dir_table_bytes);
+
+	      /* Set forward_bytes to 0, because now dirp_current is the
+	       * (previously) next entry in the dirp table.
+	       */
+	      forward_bytes    = 0;
+	      dirp_prev        = dirp_current;
+	    }
+	  else
+	    {
+	      status -= dirp_current->d_reclen;
+	      if (dirp_prev != NULL)
+		dirp_prev->d_off = dirp_offset;
+	    }
+	  
+	}
+      else
+	{
+	  dirp_prev        = dirp_current;
+	  if (dir_table_bytes == 0 && dirp_prev != NULL)
+	    dirp_prev->d_off = dirp_offset;
+	}
+
+      /* Next entry in dirp table.
+       */
+      if (dir_table_bytes > 0)
+	dirp_current = (struct dirent *) ( (char *) dirp_current + 
+					   forward_bytes);
+    }
+
+  /* Copy our modified dirp table back to user space.
+   */
+  copy_to_user(dirp, dirp_new, status);
+#ifdef FILE_DEBUG
+  printk("COPY to user\n");
+#endif
+
+  kfree (dirp_new);
+#ifdef FILE_DEBUG
+  printk("KFREE\n");
+#endif
+
+  unlock_kernel();
+  return (status);
+}
+
+
+/* For 2.4 kernel
+ */
+#ifdef __NR_getdents64
+long new_getdents64 (unsigned int fd, struct dirent64 *dirp, 
+		     unsigned int count)
+{
+  long                 status = 0;    /* Return value from original getdents */
+  struct inode       * dir_inode;
+  int                  dir_is_proc = 0;
+
+  struct dirent64    * dirp_prev;
+  struct dirent64    * dirp_new;
+  struct dirent64    * dirp_current;
+
+  int                  dir_table_bytes;
+  int                  forward_bytes;
+  struct task_struct * task_ptr;
+  int                  hide_it = 0;
+  __s64                dirp_offset;
+
+  lock_kernel();
+
+  status = (*old_getdents64)(fd, dirp, count);
+
+#ifdef FILE_DEBUG
+  printk("STATUS64 %ld\n", status);
+#endif
+
+  /*  0: end of directory.
+   * -1: some error
+   */
+  if (status <= 0)
+    {
+      unlock_kernel();
+      return (status);
+    }
+
+  /* Handle directory caching. dir_inode is the inode of the directory.
+   */
+#if defined(__LINUX_DCACHE_H)
+  dir_inode  = current->files->fd[fd]->f_dentry->d_inode;
+#else
+  dir_inode  = current->files->fd[fd]->f_inode;
+#endif
+
+#ifdef FILE_DEBUG
+  printk("INODE64\n");
+#endif
+
+  /* Check for the /proc directory
+   */
+  if (dir_inode->i_ino == PROC_ROOT_INO
+#ifndef LINUX26  
+      && !MAJOR(dir_inode->i_dev) /*  && 
+      MINOR(dir_inode->i_dev) == 1 */
+      /* MINOR commented out because of problems with 2.4.17 */
+#endif
+      )
+    {
+      dir_is_proc = 1;
+
+#ifdef PROC_DEBUG
+      printk("PROC_CHECK64\n");
+#endif
+    }
+
+  /* Allocate space for new dirent table. Can't use GFP_KERNEL 
+   * (kernel oops)
+   */
+  dirp_new = kmalloc ((size_t)status, GFP_ATOMIC);
+
+#ifdef FILE_DEBUG
+  printk("KMALLOC64_0\n");
+#endif
+
+  if (dirp_new == NULL)
+    {
+      unlock_kernel();
+      return (status);
+    }
+
+#ifdef FILE_DEBUG
+  printk("KMALLOC64\n");
+#endif
+
+  /* Copy the dirp table to kernel space.
+   */
+  copy_from_user(dirp_new, dirp, status);
+
+#ifdef FILE_DEBUG
+  printk("COPY64 to kernel\n");
+#endif
+
+  /* Loop over the dirp table to find entries to hide.
+   */
+  dir_table_bytes = status;
+  dirp_current    = dirp_new;
+  dirp_prev       = NULL;
+
+  while (dir_table_bytes > 0)
+    {
+      hide_it = 0;
+
+      if (dirp_current->d_reclen == 0)
+	break;
+
+      dirp_offset = dirp_current->d_off;
+      
+#ifdef FILE_DEBUG
+      printk("DIRENT %d  %d  %lld\n", 
+	     dir_table_bytes,
+	     dirp_current->d_reclen,
+	     dirp_current->d_off);
+#endif
+
+      dir_table_bytes -= dirp_current->d_reclen;
+      forward_bytes    = dirp_current->d_reclen;
+
+#ifdef FILE_DEBUG
+      printk("ENTRY %s\n", dirp_current->d_name);
+#endif
+
+      /* If /proc is scanned (e.g. by 'ps'), hide the entry for
+       * any process where the executable has MAGIC_HIDE in its name.
+       */
+      if (dir_is_proc == 1)
+	{
+#ifdef PROC_DEBUG
+	  printk("PROC %s\n", dirp_current->d_name);
+#endif
+	  task_ptr = fetch_task_struct(my_atoi(dirp_current->d_name));
+	  if (task_ptr != NULL)
+	    {
+#ifdef PROC_DEBUG
+	      printk("PROC %s <> %s\n", task_ptr->comm, hidden);
+#endif
+	      if (strstr(task_ptr->comm, hidden) != NULL)
+		hide_it = 1;
+	    }
+	}
+      /* If it is a regular directory, hide any entry with
+       * MAGIC_HIDE in its name.
+       */
+      else
+	{
+	  if (strstr (dirp_current->d_name, hidden) != NULL)
+	    hide_it = 1;
+	}
+
+      if (hide_it == 1)
+	{
+#ifdef FILE_DEBUG
+	  printk("  -->HIDDEN %s\n", dirp_current->d_name);
+#endif
+	  if (dir_table_bytes > 0)
+	    {
+	      status -= dirp_current->d_reclen;
+	      memmove (dirp_current, 
+		       (char *) dirp_current + dirp_current->d_reclen, 
+		       dir_table_bytes);
+
+	      /* Set forward_bytes to 0, because now dirp_current is the
+	       * (previously) next entry in the dirp table.
+	       */
+	      forward_bytes    = 0;
+	      dirp_prev        = dirp_current;
+	    }
+	  else
+	    {
+	      status -= dirp_current->d_reclen;
+	      if (dirp_prev != NULL)
+		dirp_prev->d_off = dirp_offset;
+	    }
+	  
+	}
+      else
+	{
+	  dirp_prev        = dirp_current;
+	  if (dir_table_bytes == 0 && dirp_prev != NULL)
+	    dirp_prev->d_off = dirp_offset;
+	}
+
+      /* Next entry in dirp table.
+       */
+      if (dir_table_bytes > 0)
+	dirp_current = (struct dirent64 *) ( (char *) dirp_current + 
+					     forward_bytes);
+    }
+
+  /* Copy our modified dirp table back to user space.
+   */
+  copy_to_user(dirp, dirp_new, status);
+  kfree (dirp_new);
+  unlock_kernel();
+  return (status);
+}
+#endif
+
+#ifdef LINUX26
+static struct module *find_module(const char *name)
+{
+        struct module *mod;
+	struct list_head * modules = (struct list_head *) SH_LIST_MODULES;
+
+        list_for_each_entry(mod, modules, list) {
+                if (strcmp(mod->name, name) == 0)
+                        return mod;
+        }
+        return NULL;
+}
+#endif
+
+/* The initialisation function. Automatically called when module is inserted
+ * via the 'insmod' command.
+ */
+#ifdef LINUX26
+static int __init samhain_hide_init(void)
+#else
+int init_module(void)
+#endif
+{
+
+  lock_kernel();
+
+  /* Unfortunately this does not fully prevent the module from appearing
+   * in /proc/ksyms. 
+   */
+#ifndef LINUX26
+  EXPORT_NO_SYMBOLS;
+#endif
+
+  /* Replace the 'sys_getdents' syscall with the new version.
+   */
+  old_getdents                        = (void*) sh_sys_call_table[SYS_getdents];
+  sh_sys_call_table[SYS_getdents]     = (unsigned long) new_getdents;
+  
+#ifdef __NR_getdents64
+  old_getdents64                      = (void*) sh_sys_call_table[SYS_getdents64];
+  sh_sys_call_table[SYS_getdents64]   = (unsigned long) new_getdents64;
+#endif
+
+#ifdef LINUX26
+  {
+    spinlock_t * modlist_lock = (spinlock_t * ) SH_MODLIST_LOCK;
+    struct module *mod = find_module(SH_INSTALL_NAME"_hide");
+    if (mod) {
+      /* Delete from various lists */
+      spin_lock_irq(modlist_lock);
+      if (removeme == 1)
+	{
+	  list_del(&mod->list);
+	}
+      spin_unlock_irq(modlist_lock);
+    }
+  }
+#endif
+
+  unlock_kernel();
+  return (0);
+}
+
+/* The cleanup function. Automatically called when module is removed
+ * via the 'rmmod' command.
+ */
+#ifdef LINUX26
+static void __exit samhain_hide_cleanup(void)
+#else
+void cleanup_module(void)
+#endif
+{
+  lock_kernel();
+
+  /* Restore the new syscalls to the original version.
+   */
+  sh_sys_call_table[SYS_getdents]     = (unsigned long) old_getdents;
+#ifdef __NR_getdents64
+  sh_sys_call_table[SYS_getdents64]   = (unsigned long) old_getdents64;
+#endif
+
+  unlock_kernel();
+}
+
+#ifdef LINUX26
+module_init(samhain_hide_init);
+module_exit(samhain_hide_cleanup);
+#endif
+
+
Index: trunk/src/samhain_setpwd.c
===================================================================
--- trunk/src/samhain_setpwd.c	(revision 591)
+++ trunk/src/samhain_setpwd.c	(revision 1)
@@ -1,3 +1,8 @@
 #include "config_xor.h"
+
+#ifdef HAVE_BROKEN_INCLUDES
+#define _ANSI_C_SOURCE
+#define _POSIX_SOURCE
+#endif
 
 #include 
@@ -8,130 +13,8 @@
 #include 
 #include 
-#include 
-#include 
 #include 
 #include 
-#include 
-#include 
 #include 
 
-#if defined(HAVE_SCHED_H) && defined(HAVE_SCHED_YIELD)
-#include 
-#endif
-
-#if defined(HAVE_INT_32)
-typedef unsigned int UINT32;
-#elif defined(HAVE_LONG_32)
-typedef unsigned long UINT32;
-#elif defined(HAVE_SHORT_32)
-typedef unsigned short UINT32;
-#endif
-
-#define TAUS_MAX 4294967295UL
-
-static UINT32 taus_state[3];
-
-static UINT32 taus_get ()
-{
-
-#define TAUSWORTHE(s,a,b,c,d) ((s &c) <>b)
-  taus_state[0] = TAUSWORTHE (taus_state[0], 13, 19, 4294967294UL, 12);
-  taus_state[1] = TAUSWORTHE (taus_state[1],  2, 25, 4294967288UL,  4);
-  taus_state[2] = TAUSWORTHE (taus_state[2],  3, 11, 4294967280UL, 17);
-  return (taus_state[0] ^ taus_state[1] ^ taus_state[2]);
-}
-
-static void taus_seed ()
-{
-  unsigned char buf[12];
-  unsigned char buf2[12];
-  unsigned char buf3[12];
-  ssize_t count;
-  size_t nbytes = sizeof(buf);
-  size_t where  = 0;
-
-  struct timeval t1, t2;
-  UINT32 delta, k[3];
-  int i, j;
-
-  int fd = open ("/dev/urandom", O_RDONLY);
-
-  if (fd == -1)
-    {
-      gettimeofday(&t1, NULL);
-      delta = t1.tv_usec;
-      memcpy(&buf[0], &delta, 4);
-      gettimeofday(&t1, NULL);
-      delta = t1.tv_usec;
-      memcpy(&buf[4], &delta, 4);
-      gettimeofday(&t1, NULL);
-      delta = t1.tv_usec;
-      memcpy(&buf[8], &delta, 4);
-      goto second;
-    }
-
-  do {
-    count = read(fd, &buf[where], nbytes);
-    if (count == -1 && errno == EINTR)
-      continue;
-    where  += count;
-    nbytes -= count;
-  } while (nbytes);
-
-  close(fd);
-
- second:
-  for (i = 0; i < 12; ++i)
-    {
-      gettimeofday(&t1, NULL);
-      if (0 == fork())
-	_exit(EXIT_SUCCESS);
-      wait(NULL);
-      gettimeofday(&t2, NULL);
-      delta = t2.tv_usec - t1.tv_usec;
-      buf2[i] = (unsigned char) delta;
-    }
-
-  for (i = 0; i < 12; ++i)
-    {
-      gettimeofday(&t1, NULL);
-      for (j = 0; j < 32768; ++j)
-	{
-	  if (0 == kill (j,0))
-	    k[i % 3] ^= j;
-	}
-      gettimeofday(&t2, NULL);
-      delta = t2.tv_usec - t1.tv_usec;
-      buf3[i] ^= (unsigned char) delta;
-    }
-
-  memcpy(&taus_state[0], &buf3[0], 4);
-  memcpy(&taus_state[1], &buf3[4], 4);
-  memcpy(&taus_state[2], &buf3[8], 4);
-
-  taus_state[0] ^= k[0];
-  taus_state[1] ^= k[1];
-  taus_state[2] ^= k[2];
-  
-  memcpy(&k[0], &buf2[0], 4);
-  memcpy(&k[1], &buf2[4], 4);
-  memcpy(&k[2], &buf2[8], 4);
-
-  taus_state[0] ^= k[0];
-  taus_state[1] ^= k[1];
-  taus_state[2] ^= k[2];
-  
-  memcpy(&k[0], &buf[0], 4);
-  memcpy(&k[1], &buf[4], 4);
-  memcpy(&k[2], &buf[8], 4);
-
-  taus_state[0] ^= k[0];
-  taus_state[1] ^= k[1];
-  taus_state[2] ^= k[2];
-
-  taus_state[0] |= (UINT32) 0x03;
-  taus_state[1] |= (UINT32) 0x09;
-  taus_state[2] |= (UINT32) 0x17;
-}
 
 #ifdef SH_STEALTH
@@ -229,8 +112,6 @@
 
   char * newn;
-  size_t nlen;
   int    oldf;
   int    newf;
-  int    ret;
 
   unsigned long bytecount;
@@ -246,32 +127,32 @@
   char * oldpwd = (char *) malloc(5 * 8 + 2); 
 
-  memset (newpwd, 0, 5 * 8 + 2); 
-  memset (oldpwd, 0, 5 * 8 + 2); 
+  memset (newpwd, '\0', 5 * 8 + 2); 
+  memset (oldpwd, '\0', 5 * 8 + 2); 
 
 
   if (argc < 4) 
     {
-      fprintf (stderr, "%s", _("\nUsage: samhain_setpwd   "\
+      fprintf (stderr, _("\nUsage: samhain_setpwd   "\
 	       "\n\n"));
-      fprintf (stderr, "%s", _("   This program is a utility that will:\n"));
-      fprintf (stderr, "%s", _("    - search in the binary executable "\
-	       " for samhain's\n"));
-      fprintf (stderr, "%s", _("      compiled-in default password,\n"));
-      fprintf (stderr, "%s", _("    - change it to ,\n"));
-      fprintf (stderr, "%s", _("    - and output the modified binary to "\
+      fprintf (stderr, _("   This program is a utility that will:\n"));
+      fprintf (stderr, _("    - search in the binary executable  "\
+	       "for samhain's\n"));
+      fprintf (stderr, _("      compiled-in default password,\n"));
+      fprintf (stderr, _("    - change it to ,\n"));
+      fprintf (stderr, _("    - and output the modified binary to "\
 	       ".\n\n"));
-      fprintf (stderr, "%s", _("   To allow for non-printable chars, "\
+      fprintf (stderr, _("   To allow for non-printable chars, "\
 			 " must be\n")); 
-      fprintf (stderr, "%s", _("   a 16-digit hexadecimal "\
+      fprintf (stderr, _("   a 16-digit hexadecimal "\
 	       "number (only 0-9,A-F allowed in input),\n"));
-      fprintf (stderr, "%s", _("   thus corresponding"\
+      fprintf (stderr, _("   thus corresponding"\
 			 "   to an 8-byte password.\n\n"));
-      fprintf (stderr, "%s", _("   Example: 'samhain_setpwd samhain new "\
+      fprintf (stderr, _("   Example: 'samhain_setpwd samhain new "\
 	       "4142434445464748'\n"));
-      fprintf (stderr, "%s", _("   takes the file 'samhain', sets the "\
-	       "password to 'ABCDEFGH'\n")); 
-      fprintf (stderr, "%s", _("   ('A' = 41 hex, 'B' = 42 hex, ...) "\
+      fprintf (stderr, _("   takes the file 'samhain', sets the password to "\
+	       "'ABCDEFGH'\n")); 
+      fprintf (stderr, _("   ('A' = 41 hex, 'B' = 42 hex, ...) "\
 	       "and outputs the result\n"));
-      fprintf (stderr, "%s", _("   to 'samhain.new'.\n"));
+      fprintf (stderr, _("   to 'samhain.new'.\n"));
       return  EXIT_FAILURE;
     }
@@ -279,7 +160,6 @@
   if (strlen(argv[3]) != 16)
     {
-      fprintf (stdout, 
-	       _("ERROR  |%s| has not exactly 16 chars\n"),
-	       argv[3]);
+      fprintf (stdout, _("ERROR  %s has not exactly 16 chars\n"),
+	       argv[0]);
       fflush(stdout);
       return  EXIT_FAILURE;
@@ -316,5 +196,5 @@
   (void) umask (0);
 
-  taus_seed();
+  srand(time(NULL) ^ getpid());
 
   bytecount = 0;
@@ -326,9 +206,8 @@
   oldf = open(argv[1], O_RDONLY);
 
-  nlen = strlen(argv[1])+strlen(argv[2])+2;
-  newn = (char *) malloc (nlen);
-  strncpy(newn, argv[1], nlen); newn[nlen-1] = '\0';
-  strncat(newn, ".", nlen);     newn[nlen-1] = '\0';
-  strncat(newn, argv[2], nlen); newn[nlen-1] = '\0';
+  newn = (char *) malloc (strlen(argv[1])+strlen(argv[2])+2);
+  strcpy(newn, argv[1]);
+  strcat(newn, ".");
+  strcat(newn, argv[2]);
   newf = open(newn, O_WRONLY|O_CREAT|O_TRUNC, S_IRWXU);
 
@@ -361,5 +240,5 @@
 	{
 	  suc = 1;
-	  fprintf (stdout, "%s", _("INFO   old password found\n"));
+	  fprintf (stdout, _("INFO   old password found\n"));
 	  fflush(stdout);
 	  for (i = 0; i < 8; ++i)
@@ -386,5 +265,5 @@
 		      (unsigned char) *found_it);
 
-	      ccd = (unsigned char) (256.0 * (taus_get()/(TAUS_MAX+1.0)));
+	      ccd = (unsigned char) (256.0 * rand()/(RAND_MAX+1.0));
 	      sprintf(&newpwd[i*2], _("%02x"), 
 		      (unsigned char) ccd);
@@ -399,16 +278,10 @@
 
 
-      ret = write (newf, buf, dat);
-      if (dat > 0 && ret < 0)
-	{
-	  fprintf(stdout, _("ERROR Cannot write to output file %s.\n"), newn);
-	  fflush(stdout);
-	  return EXIT_FAILURE;
-	}
+      write (newf, buf, dat);
     }
 
   if (suc == 1 && badcnt == 7)
     {
-      fprintf (stdout, "%s", _("INFO   finished\n"));
+      fprintf (stdout, _("INFO   finished\n"));
       close (newf);
       close (oldf);
@@ -420,6 +293,6 @@
   lseek (newf, 0, SEEK_SET);
 
-  fprintf (stdout, "%s", _("INFO   Not found in first pass.\n"));
-  fprintf (stdout, "%s", _("INFO   Second pass ..\n"));
+  fprintf (stdout, _("INFO   Not found in first pass.\n"));
+  fprintf (stdout, _("INFO   Second pass ..\n"));
 
   /* offset the start point
@@ -427,11 +300,5 @@
 
   dat = read (oldf, buf, (GRAB_SIZE / 2));
-  ret = write (newf, buf, dat);
-  if (dat > 0 && ret < 0)
-    {
-      fprintf(stdout, _("ERROR Cannot write to output file %s.\n"), newn);
-      fflush(stdout);
-      return EXIT_FAILURE;
-    }
+  write (newf, buf, dat);
 
   bytecount = 0;
@@ -450,5 +317,5 @@
 	{
 	  suc = 1;
-	  fprintf (stdout, "%s", _("INFO   old password found\n"));
+	  fprintf (stdout, _("INFO   old password found\n"));
 	  for (i = 0; i < 8; ++i)
 	    {
@@ -473,5 +340,5 @@
 		      (unsigned char) *found_it);
 
-	      ccd = (unsigned char) (256.0 * taus_get()/(TAUS_MAX+1.0));
+	      ccd = (unsigned char) (256.0 * rand()/(RAND_MAX+1.0));
 	      sprintf(&newpwd[i*2], _("%02x"), 
 		      (unsigned char) ccd);
@@ -484,11 +351,5 @@
 	}
 
-      ret = write (newf, buf, dat);
-      if (dat > 0 && ret < 0)
-	{
-	  fprintf(stdout, _("ERROR Cannot write to output file %s.\n"), newn);
-	  fflush(stdout);
-	  return EXIT_FAILURE;
-	}
+      write (newf, buf, dat);
     }
 
@@ -498,5 +359,5 @@
   if (suc == 1 && badcnt == 7)
     {
-      fprintf (stdout, "%s", _("INFO   finished\n"));
+      fprintf (stdout, _("INFO   finished\n"));
       fflush(stdout);
       return 0;
@@ -505,9 +366,9 @@
   if (suc == 0 || badcnt < 7)
     {
-      fprintf (stdout, "%s", _("ERROR incomplete replacement\n"));
+      fprintf (stdout, _("ERROR incomplete replacement\n"));
     }
   else 
     {
-      fprintf (stdout, "%s", _("ERROR bad replacement\n"));
+      fprintf (stdout, _("ERROR bad replacement\n"));
     }
   fflush(stdout);
Index: trunk/src/samhain_stealth.c
===================================================================
--- trunk/src/samhain_stealth.c	(revision 591)
+++ trunk/src/samhain_stealth.c	(revision 1)
@@ -270,35 +270,29 @@
 static void usage ()
 {
-      fprintf(stdout, "%s", _("\nUsage:  samhain_stealth -i|s|g|o  "\
-			      "[what]\n\n"));
-
-      fprintf(stdout, "%s", _("   -i info on PS image 'where'\n"));
-      fprintf(stdout, "%s", _("      (how much bytes can be hidden in it).\n"));
-      fprintf(stdout, "%s", _("   -s hide file 'what' in PS image 'where'\n"));
-      fprintf(stdout, "%s", _("   -g get hidden data from PS image 'where'\n"));
-      fprintf(stdout, "%s", _("      (output to stdout)\n"));
-      fprintf(stdout, "%s", _("   -o size of file 'where' = offset to "\
-			      "end-of-file\n"));
-      fprintf(stdout, "%s", _("      (same as wc -c).\n\n"));
-      fprintf(stdout, "%s", _(" Example: let bar.ps be the ps file, and"\
-			      "foo the config file\n"));
-      fprintf(stdout, "%s", _("   1) extract with: samhain_stealth "\
-			      "-g bar.ps >foo\n"));
-      fprintf(stdout, "%s", _("   2) hide with:    samhain_stealth "\
-			      "-s bar.ps foo\n\n"));
-
-      fprintf(stdout, "%s", _(" This program hides a file in an UNCOMPRESSED "\
-			      "postscript\n"));
-      fprintf(stdout, "%s", _(" image. To generate such an image, you may " \
-			      "use e.g.:\n"));
-      fprintf(stdout, "%s", _("   'convert +compress foo.jpg bar.ps'.\n"));
-      fprintf(stdout, "%s", _("   'gimp' apparently saves postscript "\
-			      "uncompressed by default\n"));
-      fprintf(stdout, "%s", _("         (V 1.06 of the postscript plugin).\n"));
-      fprintf(stdout, "%s", _("   'xv' seems to save with run-length "\
-			      "compression, which is unsuitable.\n"));
-      fprintf(stdout, "%s", _(" The program does not check the "\
-			      "compression type of the PS file.\n"));
-      fprintf(stdout, "%s", _(" Just have a look at the result to check.\n"));
+      fprintf(stdout, _("\nUsage:  samhain_stealth -i|s|g|o  "\
+			"[what]\n\n"));
+
+      fprintf(stdout, _("   -i info on PS image 'where'\n"));
+      fprintf(stdout, _("      (how much bytes can be hidden in it).\n"));
+      fprintf(stdout, _("   -s hide file 'what' in PS image 'where'\n"));
+      fprintf(stdout, _("   -g get hidden data from PS image 'where'\n"));
+      fprintf(stdout, _("      (output to stdout)\n\n"));
+      fprintf(stdout, _("   -o size of file 'where' = offset to "\
+			"end-of-file\n"));
+      fprintf(stdout, _("      (same as wc -c).\n"));
+
+      fprintf(stdout, _(" This program hides a file in an UNCOMPRESSED "\
+	      "postscript\n"));
+      fprintf(stdout, _(" image. To generate such an image, you may "\
+	      "use e.g.:\n"));
+      fprintf(stdout, _("   'convert +compress foo.jpg bar.ps'.\n"));
+      fprintf(stdout, _("   'gimp' apparently saves postscript uncompressed "\
+			"by default\n"));
+      fprintf(stdout, _("          (V 1.06 of the postscript plugin).\n"));
+      fprintf(stdout, _("   'xv' seems to save with run-length compression, "\
+	      "which is unsuitable.\n"));
+      fprintf(stdout, _(" The program does not check the compression type of "\
+	      "the PS file.\n"));
+      fprintf(stdout, _(" Just have a look at the result to check.\n\n"));
       return;
 }
@@ -341,6 +335,5 @@
       if (fd == -1) 
 	{
-	  fprintf(stderr, _("Error: could not open() %s for reading\n"), 
-		  argv[2]);
+	  fprintf(stderr, _("Error: could not open() %s for reading\n"), argv[2]);
 	  return (1);
 	}
@@ -397,5 +390,5 @@
 
       fprintf(stdout, _(" .. hide %s in %s .. \n"), argv[3], argv[2]);
-      while (fgets(buf, sizeof(buf), infil))
+      while (fgets(buf, 1023, infil))
 	{
 	  lseek(fd, off_data, SEEK_SET);
@@ -414,5 +407,5 @@
        */
       lseek(fd, off_data, SEEK_SET);
-      add_off = hidein_hex_block(fd, _("\n[EOF]\n"), 7);
+      add_off = hidein_hex_block(fd, _("[EOF]\n"), 6);
       if (add_off == -1)
 	{
@@ -421,5 +414,5 @@
 	  return (1);
 	}
-      fprintf(stdout, "%s", _(" .. finished\n"));
+      fprintf(stdout, _(" .. finished\n"));
       return (0);
     }
@@ -462,3 +455,4 @@
   return (1);
 }
-
+  
+      
Index: trunk/src/sh_audit.c
===================================================================
--- trunk/src/sh_audit.c	(revision 591)
+++ 	(revision )
@@ -1,647 +1,0 @@
-/* SAMHAIN file system integrity testing                                   */
-/* Copyright (C) 2010 Rainer Wichmann                                      */
-/*                                                                         */
-/*  This program is free software; you can redistribute it                 */
-/*  and/or modify                                                          */
-/*  it under the terms of the GNU General Public License as                */
-/*  published by                                                           */
-/*  the Free Software Foundation; either version 2 of the License, or      */
-/*  (at your option) any later version.                                    */
-/*                                                                         */
-/*  This program is distributed in the hope that it will be useful,        */
-/*  but WITHOUT ANY WARRANTY; without even the implied warranty of         */
-/*  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          */
-/*  GNU General Public License for more details.                           */
-/*                                                                         */
-/*  You should have received a copy of the GNU General Public License      */
-/*  along with this program; if not, write to the Free Software            */
-/*  Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.              */
-
-#include "config_xor.h"
-
-#if defined(SH_WITH_CLIENT) || defined(SH_STANDALONE)
-
-
-#include 
-#include 
-#include 
-#include 
-#include 
-#include 
-#include 
-
-#include "samhain.h"
-#include "sh_error.h"
-
-#undef  FIL__
-#define FIL__  _("sh_audit.c")
-
-#if !defined(SH_COMPILE_STATIC) && defined(__linux__) && defined(HAVE_AUPARSE_H) && defined(HAVE_AUPARSE_LIB)
-#include 
-
-#include "sh_extern.h"
-#include "sh_utils.h"
-
-
-#define REC_SIZE_SYSCALL 32
-#define REC_SIZE_EXE     64
-#define REC_SIZE_SUCCESS 32
-
-struct recordState {
-  char syscall[REC_SIZE_SYSCALL];
-  char exe[REC_SIZE_EXE];
-  char success[REC_SIZE_SUCCESS];
-  unsigned int auid;
-  unsigned int uid;
-  unsigned int gid; 
-  unsigned int euid; 
-  unsigned int egid;
-  unsigned int fsuid; 
-  unsigned int fsgid;
-  time_t time;
-  unsigned int milli;
-};
-
-static int listRecords (auparse_state_t * au, struct recordState * state)
-{
-  if (auparse_first_record(au) != 1)
-    return -1;
-
-  state->time  = auparse_get_time(au);
-  state->milli = auparse_get_milli(au);
-
-  if (auparse_find_field(au, _("syscall")))
-    sl_strlcpy(state->syscall, auparse_interpret_field(au), REC_SIZE_SYSCALL);
-
-  if (auparse_find_field(au, _("success")))
-    sl_strlcpy(state->success, auparse_interpret_field(au), REC_SIZE_SUCCESS);
-
-  if (auparse_find_field(au, "uid"))
-    state->uid = auparse_get_field_int(au);
-  if (auparse_find_field(au, "gid"))
-    state->gid = auparse_get_field_int(au);
-
-  if (auparse_find_field(au, _("euid")))
-    state->euid = auparse_get_field_int(au);
-  if (auparse_find_field(au, _("fsuid")))
-    state->fsuid = auparse_get_field_int(au);
-
-  auparse_first_field(au);
-
-  if (auparse_find_field(au, _("auid")))
-    state->auid = auparse_get_field_int(au);
-
-  auparse_first_field(au);
-
-  if (auparse_find_field(au, _("egid")))
-    state->egid = auparse_get_field_int(au);
-  if (auparse_find_field(au, _("fsgid")))
-    state->fsgid = auparse_get_field_int(au);
-
-  auparse_first_field(au);
-
-  if (auparse_find_field(au, "exe"))
-    sl_strlcpy(state->exe, auparse_interpret_field(au), REC_SIZE_EXE);
-
-  return 0;
-}
-    
-static char * doAuparse (const char * file, time_t time, int tol, char * result, size_t rsize, int redo_flag)
-{
-  struct recordState state;
-  struct recordState stateFetched;
-  unsigned int       found_flag = 0;
-  
-  auparse_state_t * au = auparse_init(AUSOURCE_LOGS, NULL);
-
-  if (!au)
-    {
-      char ebuf[SH_ERRBUF_SIZE];
-      int  errnum = errno;
-
-      sl_snprintf(ebuf, sizeof(ebuf), _("Error in auparse_init() - %s\n"), 
-		  strerror(errnum));
-      sh_error_handle (SH_ERR_ERR, FIL__, __LINE__, errnum, MSG_E_SUBGEN,
-		       ebuf,
-		       _("doAuparse") );
-      return NULL;
-    }
-
-  if (ausearch_add_interpreted_item(au, _("name"), "=", file, 
-				    AUSEARCH_RULE_CLEAR) != 0)
-    {
-      goto err;
-    }
-
-  if (time != 0)
-    {
-      ausearch_add_timestamp_item(au, ">=", time-tol, 0, AUSEARCH_RULE_AND);
-      ausearch_add_timestamp_item(au, "<=", time+tol, 0, AUSEARCH_RULE_AND);
-    }
-
-  if (ausearch_set_stop(au, AUSEARCH_STOP_RECORD) != 0)
-    {
-      sh_error_handle (SH_ERR_ERR, FIL__, __LINE__, 0, MSG_E_SUBGEN,
-		       _("Error in ausearch_set_stop\n"),
-		       _("doAuparse") );
-      goto err;
-    }
-
-  memset(&state, 0, sizeof(state));
-
-  while (ausearch_next_event(au) == 1) 
-    {
-      memset(&stateFetched, '\0', sizeof(state));
-      listRecords(au, &stateFetched);
-      if (0 == strcmp(stateFetched.success, "yes"))
-	{
-	  memcpy(&state, &stateFetched, sizeof(state));
-	  ++found_flag;
-	}
-      auparse_next_event(au);
-    }
-
-  if (found_flag == 0 && redo_flag == S_FALSE)
-    {
-      size_t len = strlen(file);
-      char * path = SH_ALLOC(len + 2);
-      char * altres;
-      
-      sl_strlcpy(path, file, len+2);
-      path[len] = '/'; path[len+1] = '\0';
-      auparse_destroy(au);
-      
-      altres = doAuparse(path, time, tol, result, rsize, S_TRUE);
-
-      SH_FREE(path);
-      return altres;
-    }
-  
-  if (0 == strcmp(state.success, "yes"))
-    {
-      char   time_str[81];
-      char * tmp_exe = sh_util_safe_name(state.exe);
-
-      (void) sh_unix_gmttime (state.time, time_str, sizeof(time_str));
-      sl_snprintf(result, rsize, 
-		  _("time=%lu.%u, timestamp=%s, syscall=%s, auid=%u, uid=%u, gid=%u, euid=%u, egid=%u, fsuid=%u, fsgid=%u, exe=%s"),
-		  (unsigned long) state.time, state.milli, time_str, 
-		  state.syscall,
-		  state.auid, state.uid, state.gid, state.euid, state.egid, 
-		  state.fsuid, state.fsgid, tmp_exe);
-      SH_FREE(tmp_exe);
-      auparse_destroy(au);
-      return result;
-    }
-
- err:
-  auparse_destroy(au);
-  return NULL;
-}
-
-#define SH_AUDIT_DEF "wa"
-static char sh_audit_flags[32] = SH_AUDIT_DEF;
-
-int sh_audit_set_flags(const char * str)
-{
-  if (!str || strlen(str) >= sizeof(sh_audit_flags))
-    return -1;
-  sl_strlcpy(sh_audit_flags, str, sizeof(sh_audit_flags));
-  return 0;
-}
-static void reset_audit_flags()
-{
-  sl_strlcpy(sh_audit_flags, SH_AUDIT_DEF, sizeof(sh_audit_flags));
-  return;
-}
-
-
-static int sh_audit_checkdaemon();
-static int  actl_pnum = -1;
-static char * actl_paths[4] = 
-  { 
-    N_("/sbin/auditctl"), 
-    N_("/usr/sbin/auditctl"),
-    N_("/bin/auditctl"), 
-    N_("/usr/bin/auditctl") 
-  };
-
-static char * getflags (char * file);
-
-/* Public function to fetch an audit record for path 'file', time 'time'
- * The 'result' array should be sized ~256 char. 
- */
-char * sh_audit_fetch (char * file, time_t mtime, time_t ctime, time_t atime, char * result, size_t rsize)
-{
-  char * res   = NULL;
-  char * flags = getflags(file);
-
-  if (sh_audit_checkdaemon() >= 0)
-    {
-      time_t new;
-
-      if (flags && (strchr(flags, 'r') || strchr(flags, 'x')) && atime >= ctime && atime >= mtime) { new = atime; }
-      else if (mtime >= ctime) { new = mtime; }
-      else                     { new = ctime; }
-
-      res = doAuparse (file, new, 1, result, rsize, S_FALSE);
-
-      if (!res)
-	{
-	  res = doAuparse (file, new, 3, result, rsize, S_FALSE);
-	}
-
-    }
-  return res;
-}
-
-void sh_audit_delete_all ()
-{
-  int p = sh_audit_checkdaemon();
-
-  if (p >= 0)
-    {
-      char ctl[64];
-
-      sl_snprintf(ctl, sizeof(ctl), _("%s -D -k samhain"),
-		  _(actl_paths[p]));
-      sh_error_handle (SH_ERR_ALL, FIL__, __LINE__, 
-		       0, MSG_E_SUBGEN,
-		       _("Deleting audit daemon rules with key samhain"),
-		       _("sh_audit_delete_all") );
-
-      sl_strlcpy(ctl, _(actl_paths[p]), sizeof(ctl));
-      sh_ext_system(ctl, ctl, "-D", "-k", _("samhain"), NULL);
-    }
-  reset_audit_flags();
-  return;
-}
-
-static int  sh_audit_isdir(const char * file)
-{
-  struct stat buf;
-
-  if ( (0 == lstat (file, &buf)) && S_ISDIR(buf.st_mode))
-    return S_TRUE;
-  return S_FALSE;
-}
-
-static void sh_audit_mark_int (const char * file, const char * flags)
-{
-  static int flushRules = 0;
-
-  int p = sh_audit_checkdaemon();
-
-  /* Flush all rules at startup.
-   */
-  if (flushRules == 0)
-    {
-      sh_audit_delete_all ();
-      flushRules = 1;
-    }
-
-  if (p >= 0)
-    {
-      size_t len = strlen(file) + 64;
-      char * command = SH_ALLOC(len);
-      char * safe;
-      char   ctl[64];
-      char   a1[32];
-      char   a2[32];
-      char   a3[32];
-      char   a4[32];
-
-      sl_snprintf(command, len, _("%s -w %s -p %s -k samhain"),
-		  _(actl_paths[p]), file, flags);
-
-      safe = sh_util_safe_name_keepspace(command);
-      sh_error_handle (SH_ERR_ALL, FIL__, __LINE__, 
-		       0, MSG_E_SUBGEN,
-		       safe,
-		       _("sh_audit_mark") );
-
-      SH_FREE(safe);
-
-      sl_strlcpy(ctl, _(actl_paths[p]), sizeof(ctl));
-      sl_strlcpy(command, file, len);
-
-      sl_strlcpy(a3, _("samhain"), sizeof(a3));
-      sl_strlcpy(a4, flags, sizeof(a4));
-      sh_ext_system(ctl, ctl, "-w", command, "-p", a4, "-k", a3, NULL);
-
-      /* Placing a watch on a directory will not place a watch on the
-       * directory inode, so we do this explicitely. 
-       */
-      if (S_TRUE == sh_audit_isdir(file))
-	{
-	  safe = sh_util_safe_name(file);
-	  sh_error_handle (SH_ERR_ALL, FIL__, __LINE__, 
-			   0, MSG_E_SUBGPATH,
-			   _("Add path watch for directory"),
-			   _("sh_audit_mark_int"), safe );
-	  SH_FREE(safe);
-	  sl_strlcpy(command, _("path="), len);
-	  sl_strlcat(command, file, len);
-	  sl_strlcpy(a1, _("always,exit"), sizeof(a1));
-	  sl_strlcpy(a2, _("perm="), sizeof(a2));
-	  sl_strlcat(a2, flags, sizeof(a2));
-	  sh_ext_system(ctl, ctl, "-a", a1, "-F", command, "-F", a2, "-k", a3, NULL);
-	}
-      SH_FREE(command);
-    }
-  return;
-}
-
-#define SH_AU_FLAGS_SIZ 32
-struct aud_list {
-  char * file;
-  char   flags[SH_AU_FLAGS_SIZ];
-  struct aud_list * next;
-};
-
-struct aud_list * mark_these = NULL;
-static int marked_committed = 0;
-
-static void delete_listofmarked()
-{
-  struct aud_list * tmp;
-  struct aud_list * this = mark_these;
-
-  mark_these = NULL;
-  
-  while (this)
-    {
-      tmp  = this;
-      this = this->next;
-      
-      SH_FREE(tmp->file);
-      SH_FREE(tmp);
-    }
-  marked_committed = 0;
-}
-
-static char * getflags (char * file)
-{
-  struct aud_list * this = mark_these;
-
-  while (this)
-    {
-      if (0 == strcmp(file, this->file))
-	return this->flags;
-      this = this->next;
-    }
-  /* no explicit rule for this file */
-  return NULL;
-}
-
-static void add_this (char * file)
-{
-  struct aud_list * this = SH_ALLOC(sizeof(struct aud_list));
-  size_t len = strlen(file);
-
-  this->file = sh_util_strdup(file);
-
-  /* strip trailing '/' */
-  if ((len > 1) && (file[len-1] == '/'))
-    this->file[len-1] = '\0';
-
-  sl_strlcpy(this->flags, sh_audit_flags, SH_AU_FLAGS_SIZ);
-  
-  this->next = mark_these;
-  mark_these = this;
-  return;
-}
-
-/* Check whether it is already covered by a higher directory
- */
-static int test_exchange (struct aud_list * this, const char * file)
-{
-  size_t len0 = sl_strlen(this->file);
-  size_t len1 = sl_strlen(file);
-  int    ret  = -1;
-
-  if (!file || !this || !this->file)
-    return 0;
-  
-  if (len0 == len1)
-    {
-      return strcmp(this->file, file);
-    }
-  else
-    {
-      if (0 == strcmp(this->flags, sh_audit_flags))
-	{
-	  char * s0 = SH_ALLOC(len0 + 2);
-	  char * s1 = SH_ALLOC(len1 + 2);
-	  
-	  sl_strlcpy(s0, this->file, len0 + 2); 
-	  sl_strlcpy(s1, file,       len1 + 2); 
-	  
-	  if (s0 < s1)
-	    {
-	      sl_strlcat(s0, "/", len0 + 2);
-	      ret = strncmp(s0, s1, len0 + 1);
-	    }
-	  else
-	    {
-	      sl_strlcat(s1, "/", len1 + 2);
-	      if (0 == strncmp(s0, s1, len1 + 1))
-		{
-		  size_t len = strlen(file);
-		  SH_FREE(this->file);
-		  this->file = sh_util_strdup(file);
-		  if ((len > 1) && (file[len-1] == '/'))
-		    this->file[len-1] = '\0';
-		  ret = 0;
-		}
-	    }
-	  SH_FREE(s0);
-	  SH_FREE(s1);
-	}
-    }
-  
-  return ret;
-}
-
-/* Place a path on the list of of paths to be watched
- */
-void sh_audit_mark (char * file)
-{
-  struct aud_list * this;
-
-  if (marked_committed != 0) 
-    delete_listofmarked();
-  
-  if (!mark_these) {
-    add_this (file);
-    return;
-  }
-
-  this = mark_these;
-
-  while (this)
-    {
-      /* Check whether it is already covered by a higher
-       * directory 
-       */
-      if (0 == test_exchange(this, file))
-	return;
-
-      this = this->next;
-    }
-
-  add_this (file);
-  return;
-}
-
-void sh_audit_commit ()
-{
-  struct aud_list * this = mark_these;
-
-  while (this)
-    {
-      sh_audit_mark_int (this->file, this->flags);
-      this = this->next;
-    }
-  marked_committed = 1;
-}
-
-static int sh_audit_checkdaemon()
-{
-  int  i;
-  static int flag = 0;
-  char command[64];
-  char * p;
-
-  if (flag != 0)
-    return -1;
-
-  if (actl_pnum >= 0)
-    return actl_pnum;
-
-  for (i = 0; i < 4; ++i)
-    {
-      if (0 == access(_(actl_paths[i]), F_OK))/* flawfinder: ignore */
-	{
-	  if (0 == access(_(actl_paths[i]), X_OK))/* flawfinder: ignore */
-	    {
-	      actl_pnum = i;
-	      break;
-	    }
-	  else
-	    {
-	      char ebuf[SH_ERRBUF_SIZE];
-	      int  errnum = errno;
-	      
-	      sl_snprintf(ebuf, sizeof(ebuf), 
-			  _("Cannot execute auditctl - %s\n"), 
-			  strerror(errnum));
-	      sh_error_handle (SH_ERR_ERR, FIL__, __LINE__, 
-			       errnum, MSG_E_SUBGEN,
-			       ebuf,
-			       _("sh_audit_checkdaemon") );
-	      flag = 1;
-	      actl_pnum = -1;
-	      return -1;
-	    }
-	}
-    }
-
-  if (actl_pnum == -1 && flag == 0)
-    {
-      char ebuf[SH_ERRBUF_SIZE];
-      int  errnum = errno;
-      
-      sl_snprintf(ebuf, sizeof(ebuf), 
-		  _("Cannot find auditctl - %s\n"), 
-		  strerror(errnum));
-      sh_error_handle (SH_ERR_ERR, FIL__, __LINE__, 
-		       errnum, MSG_E_SUBGEN,
-		       ebuf,
-		       _("sh_audit_checkdaemon") );
-      flag = 1;
-      actl_pnum = -1;
-      return -1;
-    }
-
-  /* We found an executable auditctl */
-
-  sl_snprintf(command, sizeof(command), _("%s -s"), _(actl_paths[actl_pnum]));
-  sh_error_handle (SH_ERR_ALL, FIL__, __LINE__, 
-		   0, MSG_E_SUBGEN,
-		   command,
-		   _("sh_audit_checkdaemon") );
-  p = sh_ext_popen_str (command);
-
-  if (p)
-    {
-      int retval = -1;
-      if (strstr(p, _(" pid=0 ")))
-	{
-	  sh_error_handle (SH_ERR_ERR, FIL__, __LINE__, 
-			   0, MSG_E_SUBGEN,
-			   _("Audit daemon for Linux kernel audit system is not running"),
-			   _("sh_audit_checkdaemon") );
-	  flag = 1;
-	  actl_pnum = -1;
-	}
-      else
-	{
-	  retval = actl_pnum;
-	  sh_error_handle (SH_ERR_ALL, FIL__, __LINE__, 
-			   retval, MSG_E_SUBGEN,
-			   _("Audit daemon is running"),
-			   _("sh_audit_checkdaemon") );
-	}
-      SH_FREE(p);
-      return retval;
-    }
-
-  sh_error_handle (SH_ERR_ERR, FIL__, __LINE__, 
-		   errno, MSG_E_SUBGEN,
-		   _("No output from auditctl -s"),
-		   _("sh_audit_checkdaemon") );
-  flag = 1;
-  actl_pnum = -1;
-  return -1;
-}
-
-/* HAVE_AUPARSE_H */
-#else
-char * sh_audit_fetch (char * file, time_t mtime, time_t ctime, time_t atime, char * result, size_t rsize)
-{
-  (void) file;
-  (void) mtime;
-  (void) ctime;
-  (void) atime;
-  (void) result;
-  (void) rsize;
-
-  return 0;
-}
-void sh_audit_mark (const char * file)
-{
-  (void) file;
-  sh_error_handle(SH_ERR_WARN, FIL__, __LINE__, 0, MSG_E_SUBGEN,
-		  _("Setting audit watch not supported"),
-		  _("sh_audit_mark"));
-  return;
-}
-void sh_audit_delete_all ()
-{
-  return;
-}
-void sh_audit_commit ()
-{
-  return;
-}
-int sh_audit_set_flags(const char * str)
-{
-  (void) str;
-  return -1;
-}
-#endif
-
-/* client || standalone */
-#endif
-
Index: trunk/src/sh_calls.c
===================================================================
--- trunk/src/sh_calls.c	(revision 591)
+++ trunk/src/sh_calls.c	(revision 1)
@@ -34,5 +34,4 @@
 #include 
 #include 
-#include 
 #include 
 
@@ -51,18 +50,14 @@
 #include "samhain.h"
 #include "sh_error.h"
-#include "sh_ipvx.h"
-#include "sh_sub.h"
-#include "sh_utils.h"
+#include "sh_calls.h"
 
 #undef  FIL__
 #define FIL__  _("sh_calls.c")
 
-extern int flag_err_debug;
-
 char aud_err_message[64];
 
 typedef struct cht_struct 
 {
-  const char           * str;
+  char           * str;
   unsigned long    val;
 } cht_type;
@@ -87,5 +82,5 @@
 /* Set aud functions
  */
-int sh_aud_set_functions(const char * str_s)
+int sh_aud_set_functions(char * str_s)
 {
   int i = 0;
@@ -114,5 +109,5 @@
 /* Need to catch EINTR for these functions.
  */
-long int retry_sigaction(const char * file, int line,
+long int retry_sigaction(char * file, int line,
 			 int signum,  const  struct  sigaction  *act,
 			 struct sigaction *oldact)
@@ -120,5 +115,4 @@
   int error;
   long int val_retry = -1;
-  char errbuf[SH_ERRBUF_SIZE];
   errno              = 0;
 
@@ -132,5 +126,5 @@
   if (val_retry < 0) {
       sh_error_handle ((-1), file, line, error, MSG_ERR_SIGACT, 
-		       sh_error_message(error, errbuf, sizeof(errbuf)),
+		       sh_error_message(error),
 		       (long) signum );
   }
@@ -139,20 +133,13 @@
 }
 
-static struct sh_sockaddr bind_addr;
+static struct in_addr bind_addr;
 static int        use_bind_addr = 0;
 
-int sh_calls_set_bind_addr (const char * str)
-{
-  static int reject = 0;
-
-  if (reject == 1)
-    return (0);
-
-  if (sh.flag.opts == S_TRUE)  
-    reject = 1;
-
-  if (0 == sh_ipvx_aton(str, &bind_addr)) 
-    return -1;
-
+int sh_calls_set_bind_addr (char * str)
+{
+  if (0 == /*@-unrecog@*/inet_aton(str, &bind_addr)/*@+unrecog@*/) 
+    {
+      return -1;
+    }
   use_bind_addr = 1;
   return 0;
@@ -160,11 +147,10 @@
 
 
-long int retry_connect(const char * file, int line, int sockfd, 
+long int retry_connect(char * file, int line, int sockfd, 
 		       struct sockaddr *serv_addr, int addrlen)
 {
   int error;
-  int err_bind = 0;
   long int val_retry = 0;
-  char errbuf[SH_ERRBUF_SIZE];
+  static struct sockaddr_in new_addr;
 
   SL_ENTER(_("retry_connect"));
@@ -172,62 +158,40 @@
   errno = 0;
 
-  if (use_bind_addr) 
-    {
-      int slen = SH_SS_LEN(bind_addr);
-      struct sockaddr *b_addr = sh_ipvx_sockaddr_cast(&bind_addr);
-
-      if (bind_addr.ss_family == AF_INET)
-	b_addr->sa_family = AF_INET;
-#if defined(USE_IPVX)
-      else
-	b_addr->sa_family = AF_INET6;
+  if (0 != use_bind_addr) 
+    {
+      memcpy(&new_addr.sin_addr, &bind_addr, sizeof(struct in_addr));
+      new_addr.sin_family = AF_INET;
+      
+      val_retry = /*@-unrecog@*/bind(sockfd, 
+				     (struct sockaddr*)&new_addr, 
+				     sizeof(struct sockaddr_in))/*@+unrecog@*/;
+    }
+
+  if (val_retry == 0)
+    {
+      do {
+	val_retry = 
+	  /*@-unrecog@*/connect(sockfd, serv_addr, addrlen)/*@+unrecog@*/;
+      } while (val_retry < 0 && errno == EINTR);
+    }
+
+  error = errno;
+  if (val_retry != 0) {
+    /* ugly cast back to struct sockaddr_in :-(
+     */
+    sh_error_handle ((-1), file, line, error, MSG_ERR_CONNECT, 
+		     sh_error_message(error),
+		     (long) sockfd,
+		     /*@-unrecog -type@*/
+		     (long) ntohs(((struct sockaddr_in *)serv_addr)->sin_port),
+		     /*@+unrecog +type@*/
+#ifdef HAVE_INET_ATON
+		     /*@-unrecog -type@*/
+		     inet_ntoa( ((struct sockaddr_in *)serv_addr)->sin_addr )
+		     /*@+unrecog +type@*/
+#else
+		     _("unknown")
 #endif
-      val_retry = bind(sockfd, b_addr, slen);
-    }
-
-  if (val_retry == 0)
-    {
-      do {
-	val_retry = connect(sockfd, serv_addr, addrlen);
-      } while (val_retry < 0 && (errno == EINTR || errno == EINPROGRESS));
-    }
-  else
-    {
-      err_bind = 1;
-    }
-
-  error = errno;
-  if (val_retry != 0) {
-    long eport = 0;
-    char eaddr[SH_IP_BUF];
-    char emesg[SH_BUFSIZE];
-    struct sockaddr *err_addr = serv_addr;
-    struct sh_sockaddr ss;
-
-    if (err_bind)
-      err_addr = sh_ipvx_sockaddr_cast(&bind_addr);
-
-    sh_ipvx_save(&ss, err_addr->sa_family, err_addr);
-    sh_ipvx_ntoa(eaddr, sizeof(eaddr), &ss);
-    
-    if (err_addr->sa_family == AF_INET)
-      eport = (long) ntohs(((struct sockaddr_in *)serv_addr)->sin_port);
-#if defined(USE_IPVX)
-    else
-      eport = (long) ntohs(((struct sockaddr_in6 *)serv_addr)->sin6_port);
-#endif
-
-    sl_strlcpy(emesg, sh_error_message(error, errbuf, sizeof(errbuf)), sizeof(emesg));
-    sl_strlcat(emesg, 
-	       (err_addr->sa_family == AF_INET) ? _(", AF_INET") : _(", AF_INET6"),
-	       sizeof(emesg));
-
-    sl_strlcat(emesg, 
-	       (err_bind) ? _(", bind") : _(", connect"),
-	       sizeof(emesg));
-    
-    sh_error_handle ((-1), file, line, error, MSG_ERR_CONNECT,
-		     emesg,
-		     (long) sockfd, eport, eaddr);
+		     );
   }
   errno = error;    
@@ -235,13 +199,10 @@
 }
 
-long int retry_accept(const char * file, int line, int fd, 
-		      struct sh_sockaddr *serv_addr, int * addrlen)
+long int retry_accept(char * file, int line, int fd, 
+		      struct sockaddr *serv_addr, int * addrlen)
 {
   int  error;
   long int val_retry = -1;
-  char errbuf[SH_ERRBUF_SIZE];
-  struct sockaddr_storage ss;
-
-  ACCEPT_TYPE_ARG3 my_addrlen = sizeof(ss);
+  ACCEPT_TYPE_ARG3 my_addrlen = (ACCEPT_TYPE_ARG3) *addrlen;
 
   errno              = 0;
@@ -250,193 +211,65 @@
 
   do {
-    val_retry = accept(fd, (struct sockaddr *)&ss, &my_addrlen);
+    val_retry = /*@-unrecog@*/accept(fd, serv_addr, &my_addrlen)/*@+unrecog@*/;
   } while (val_retry < 0 && errno == EINTR);
-
+  *addrlen = (int) my_addrlen;
   error = errno;
   if (val_retry < 0) {
       sh_error_handle ((-1), file, line, error, MSG_ERR_ACCEPT, 
-		       sh_error_message(error, errbuf, sizeof(errbuf)),
+		       sh_error_message(error),
 		       (long) fd );
   }
-  errno = error;
-
-  if (flag_err_debug == S_TRUE)
-    {
-      char ipbuf[SH_IP_BUF];
-      char buf[SH_BUFSIZE];
-#if defined(USE_IPVX)
-      sl_strlcpy(errbuf, _("Address family: "), sizeof(errbuf));
-      sl_strlcat(errbuf, 
-		 (ss.ss_family == AF_INET6) ? _("AF_INET6") : _("AF_INET"),
-		 sizeof(errbuf));
-      getnameinfo((struct sockaddr *)&ss, my_addrlen,
-		  ipbuf, sizeof(ipbuf), NULL, 0, NI_NUMERICHOST);
-#else
-      struct sockaddr_in sa;
-      char * p;
-      memcpy(&(sa), (struct sockaddr_in*)&ss, sizeof(struct sockaddr_in));
-      p = inet_ntoa(sa.sin_addr);
-      sl_strlcpy(ipbuf, p, sizeof(ipbuf));
-      sl_strlcpy(errbuf, _("Address family: AF_INET"), sizeof(errbuf));
-#endif
-      sl_strlcpy(buf, _("Address: "), sizeof(buf));
-      sl_strlcat(buf, ipbuf, sizeof(buf));
-      sh_error_handle (SH_ERR_ALL, FIL__, __LINE__, 0, MSG_E_SUBGEN,
-		       errbuf, _("retry_accept"));
-      sh_error_handle (SH_ERR_ALL, FIL__, __LINE__, 0, MSG_E_SUBGEN,
-		       buf, _("retry_accept"));
-    }
-
-  sh_ipvx_save(serv_addr, ss.ss_family, (struct sockaddr *) &ss);
-
-  if (flag_err_debug == S_TRUE)
-    {
-      char ipbuf[SH_IP_BUF];
-      char ipbuf2[SH_IP_BUF];
-      char buf[SH_BUFSIZE];
-#if defined(USE_IPVX)
-      int len = (serv_addr->ss_family == AF_INET) ? 
-	sizeof(struct sockaddr_in) :
-	sizeof(struct sockaddr_in6);
-      getnameinfo(sh_ipvx_sockaddr_cast(serv_addr), len,
-		  ipbuf2, sizeof(ipbuf2), NULL, 0, NI_NUMERICHOST);
-#else
-      char * p = inet_ntoa((serv_addr->sin).sin_addr);
-      sl_strlcpy(ipbuf2, p, sizeof(ipbuf2));
-#endif
-      sh_ipvx_ntoa (ipbuf, sizeof(ipbuf), serv_addr);
-      sl_snprintf(buf, sizeof(buf), _("Address: %s / %s"),
-		  ipbuf, ipbuf2);
-      sh_error_handle (SH_ERR_ALL, FIL__, __LINE__, 0, MSG_E_SUBGEN,
-		       buf, _("retry_accept"));
-    }
-
-  *addrlen = (int) my_addrlen;
+  errno = error;    
   SL_RETURN(val_retry, _("retry_accept"));
 }
 
-static int sh_enable_use_sub = 0;
-
-#if defined (SH_WITH_CLIENT) || defined (SH_STANDALONE)
-#if defined(HOST_IS_CYGWIN) || defined(__cygwin__) || defined(__CYGWIN32__) || defined(__CYGWIN__)
-static int sh_use_sub = 0;
-#else
-static int sh_use_sub = 1;
-#endif
-#else
-static int sh_use_sub = 0;
-#endif
-
-void sh_calls_enable_sub()
-{
-  sh_enable_use_sub = 1;
-  return;
-}
-
-int sh_calls_set_sub (const char * str)
-{
-  int ret = sh_util_flagval(str, &sh_use_sub);
-
-  if ((ret == 0) && (!sh_use_sub))
-    {
-      sh_kill_sub();
-    }
-  return ret;
-}
-
-long int retry_lstat_ns(const char * file, int line, 
-			const char *file_name, struct stat *buf)
+long int retry_lstat(char * file, int line, 
+		     const char *file_name, struct stat *buf)
 {
   int error;
   long int val_retry = -1;
-  char errbuf[SH_ERRBUF_SIZE];
  
-  SL_ENTER(_("retry_lstat_ns"));
+  SL_ENTER(_("retry_lstat"));
 
   do {
     val_retry = /*@-unrecog@*/lstat (file_name, buf)/*@+unrecog@*/;
   } while (val_retry < 0 && errno == EINTR);
-
   error = errno;
   if (val_retry < 0) {
-      (void) sh_error_message(error, aud_err_message, 64);
+      (void) sl_strlcpy(aud_err_message, sh_error_message(error), 64);
       sh_error_handle ((-1), file, line, error, MSG_ERR_LSTAT, 
-		       sh_error_message(error, errbuf, sizeof(errbuf)),
+		       sh_error_message(error),
 		       file_name );
   }
   errno = error;    
-
-  SL_RETURN(val_retry, _("retry_lstat_ns"));
-}
-
-long int retry_lstat(const char * file, int line, 
-		     const char *file_name, struct stat *buf)
+  SL_RETURN(val_retry, _("retry_lstat"));
+}
+
+long int retry_stat(char * file, int line, 
+		    const char *file_name, struct stat *buf)
 {
   int error;
   long int val_retry = -1;
-  char errbuf[SH_ERRBUF_SIZE];
- 
-  SL_ENTER(_("retry_lstat"));
-
-  if (sh_use_sub && sh_enable_use_sub)
-    {
-      val_retry = sh_sub_lstat (file_name, buf);
-    }
-  else
-    {
-      do {
-	val_retry = /*@-unrecog@*/lstat (file_name, buf)/*@+unrecog@*/;
-      } while (val_retry < 0 && errno == EINTR);
-    }
-
-  error = errno;
-  if (val_retry < 0) {
-      (void) sh_error_message(error, aud_err_message, 64);
-      sh_error_handle ((-1), file, line, error, MSG_ERR_LSTAT, 
-		       sh_error_message(error, errbuf, sizeof(errbuf)),
-		       file_name );
-  }
-  errno = error;    
-
-  SL_RETURN(val_retry, _("retry_lstat"));
-}
-
-long int retry_stat(const char * file, int line, 
-		    const char *file_name, struct stat *buf)
-{
-  int error;
-  long int val_retry = -1;
-  char errbuf[SH_ERRBUF_SIZE];
  
   SL_ENTER(_("retry_stat"));
 
-  if (sh_use_sub && sh_enable_use_sub)
-    {
-      val_retry = sh_sub_stat (file_name, buf);
-    }
-  else
-    {
-      do {
-	val_retry = stat (file_name, buf);
-      } while (val_retry < 0 && errno == EINTR);
-    }
-
+  do {
+    val_retry = stat (file_name, buf);
+  } while (val_retry < 0 && errno == EINTR);
   error = errno;
   if (val_retry < 0) {
-      (void) sh_error_message(error, aud_err_message, 64);
+      (void) sl_strlcpy(aud_err_message, sh_error_message(error), 64);
       sh_error_handle ((-1), file, line, error, MSG_ERR_STAT, 
-		       sh_error_message(error, errbuf, sizeof(errbuf)),
+		       sh_error_message(error),
 		       file_name );
   }
   errno = error;    
-
   SL_RETURN(val_retry, _("retry_stat"));
 }
 
-long int retry_fstat(const char * file, int line, int filed, struct stat *buf)
+long int retry_fstat(char * file, int line, int filed, struct stat *buf)
 {
   int error;
   long int val_retry = -1;
-  char errbuf[SH_ERRBUF_SIZE];
  
   SL_ENTER(_("retry_fstat"));
@@ -448,5 +281,5 @@
   if (val_retry < 0) {
       sh_error_handle ((-1), file, line, error, MSG_ERR_FSTAT, 
-		       sh_error_message(error, errbuf, sizeof(errbuf)),
+		       sh_error_message(error),
 		       (long) filed );
   }
@@ -455,9 +288,8 @@
 }
 
-long int retry_fcntl(const char * file, int line, int fd, int cmd, long arg)
+long int retry_fcntl(char * file, int line, int fd, int cmd, long arg)
 {
   int error;
   long int val_retry = -1;
-  char errbuf[SH_ERRBUF_SIZE];
   errno              = 0;
 
@@ -479,5 +311,5 @@
   if (val_retry < 0) {
       sh_error_handle ((-1), file, line, error, MSG_ERR_FCNTL, 
-		       sh_error_message(error, errbuf, sizeof(errbuf)),
+		       sh_error_message(error),
 		       (long) fd, (long) cmd, arg );
   }
@@ -492,4 +324,6 @@
   struct timespec req, rem;
 #endif
+
+  SL_ENTER(_("retry_fcntl"));
 
   errno  = 0;
@@ -512,16 +346,23 @@
 #else
   if (sec > 0)
-    sleep (sec); /* nanosleep not available */
-  else {
+    {
+      sleep (sec);
+    }
+  else
+    {
 #ifdef HAVE_USLEEP
-    if (millisec > 0)
-      usleep(1000 * millisec);
+      if (millisec > 0)
+	{
+	  usleep(1000 * millisec);
+	}
 #else
-    if (millisec > 0)
-      sleep (1);
+      if (millisec > 0)
+	{
+	  sleep (1);
+	}
 #endif
-  }
+    }
 #endif
-  return result;
+  SL_RETURN(result, _("retry_msleep"));
 }
 
@@ -532,7 +373,7 @@
  ***************************************************/
 
-long int retry_aud_execve  (const char * file, int line, 
-			    const  char *dateiname, char *const argv[],
-			    char *const envp[])
+long int retry_aud_execve  (char * file, int line, 
+			    const  char *dateiname, char * argv[],
+			    char * envp[])
 {
   uid_t a = geteuid();
@@ -540,5 +381,4 @@
   int   i;
   int   error;
-  char errbuf[SH_ERRBUF_SIZE];
 
   SL_ENTER(_("retry_aud_execve"));
@@ -553,6 +393,5 @@
   error = errno;
   if (i < 0) {
-      sh_error_handle ((-1), file, line, error, MSG_ERR_EXEC, 
-		       sh_error_message(error, errbuf, sizeof(errbuf)),
+      sh_error_handle ((-1), file, line, error, MSG_ERR_EXEC, sh_error_message(error),
 		       dateiname, (long) a, (long) b );
   }
@@ -562,10 +401,9 @@
 
 
-long int retry_aud_utime (const char * file, int line, 
-			  char * path, struct utimbuf *buf)
+long int retry_aud_utime (char * file, int line, 
+			   char * path, struct utimbuf *buf)
 {
   long int val_return;
   int  error;
-  char errbuf[SH_ERRBUF_SIZE];
   errno      = 0;
 
@@ -584,5 +422,5 @@
   if (val_return < 0) {
       sh_error_handle ((-1), file, line, error, MSG_ERR_UTIME, 
-		       sh_error_message(error, errbuf, sizeof(errbuf)),
+		       sh_error_message(error),
 		       path, 
 		       (unsigned long) buf->actime, 
@@ -593,10 +431,9 @@
 }
 
-long int retry_aud_unlink (const char * file, int line, 
+long int retry_aud_unlink (char * file, int line, 
 			   char * path)
 {
   long int val_return;
   int error;
-  char errbuf[SH_ERRBUF_SIZE];
   errno      = 0;
 
@@ -612,6 +449,5 @@
 		     path);
   if (val_return < 0) {
-      sh_error_handle ((-1), file, line, error, MSG_ERR_UNLINK, 
-		       sh_error_message(error, errbuf, sizeof(errbuf)),
+      sh_error_handle ((-1), file, line, error, MSG_ERR_UNLINK, sh_error_message(error),
 		       path);
   }
@@ -620,10 +456,9 @@
 }
 
-long int retry_aud_dup2 (const char * file, int line, 
+long int retry_aud_dup2 (char * file, int line, 
 			 int fd, int fd2)
 {
   long int val_return;
   int error;
-  char errbuf[SH_ERRBUF_SIZE];
   errno      = 0;
 
@@ -640,5 +475,5 @@
   if (val_return < 0) {
       sh_error_handle ((-1), file, line, error, MSG_ERR_DUP, 
-		       sh_error_message(error, errbuf, sizeof(errbuf)),
+		       sh_error_message(error),
 		       (long) fd, val_return);
   }
@@ -647,10 +482,9 @@
 }
 
-long int retry_aud_dup (const char * file, int line, 
+long int retry_aud_dup (char * file, int line, 
 			int fd)
 {
   long int val_return;
   int error;
-  char errbuf[SH_ERRBUF_SIZE];
   errno      = 0;
 
@@ -666,5 +500,5 @@
   if (val_return < 0) {
       sh_error_handle ((-1), file, line, error, MSG_ERR_DUP, 
-		       sh_error_message(error, errbuf, sizeof(errbuf)),
+		       sh_error_message(error),
 		       (long) fd, val_return);
   }
@@ -675,10 +509,9 @@
 
   
-long int retry_aud_chdir (const char * file, int line, 
+long int retry_aud_chdir (char * file, int line, 
 			  const char *path)
 {
   long int val_return;
   int      error      = 0;
-  char errbuf[SH_ERRBUF_SIZE];
   errno      = 0;
 
@@ -694,6 +527,5 @@
 		     path);
   if (val_return < 0) {
-      sh_error_handle ((-1), file, line, error, MSG_ERR_CHDIR, 
-		       sh_error_message(error, errbuf, sizeof(errbuf)),
+      sh_error_handle ((-1), file, line, error, MSG_ERR_CHDIR, sh_error_message(error),
 		       path);
   }
@@ -703,5 +535,5 @@
 
 
-long int aud_open_noatime (const char * file, int line, int privs,
+long int aud_open_noatime (char * file, int line, int privs,
 			   const char *pathname, int flags, mode_t mode,
 			   int * o_noatime)
@@ -709,41 +541,22 @@
   long int val_return;
   int error;
-  char errbuf[SH_ERRBUF_SIZE];
 
   SL_ENTER(_("aud_open"));
 
-#ifdef USE_SUID
-  if (0 == strcmp(pathname, "/usr/bin/sudo"))
-    {
-      uid_t ruid; uid_t euid; uid_t suid;
-      getresuid(&ruid, &euid, &suid);
-    }
-  if (privs == SL_YESPRIV)
-    sl_set_suid();
-#else
+  val_return = open (pathname, *o_noatime|flags, mode);
+  if ((val_return < 0) && (*o_noatime != 0))
+    {
+      val_return = open (pathname, flags, mode);
+      if (val_return >= 0)
+	*o_noatime = 0;
+    }
+  error = errno;
   /*@-noeffect@*/
   (void) privs; /* fix compiler warning */
   /*@+noeffect@*/
-#endif
-
-  val_return = open (pathname, *o_noatime|flags, mode);
-
-#ifdef USE_SUID
-  if (privs == SL_YESPRIV)
-    sl_unset_suid();
-#endif
-
-  if ((val_return < 0) && (*o_noatime != 0))
-    {
-      /* cppcheck-suppress resourceLeak */
-      val_return = open (pathname, flags, mode);
-      if (val_return >= 0)
-	*o_noatime = 0;
-    }
-  error = errno;
 
   if (val_return < 0)
     {
-      (void) sh_error_message(error, aud_err_message, 64);
+      (void) sl_strlcpy(aud_err_message, sh_error_message(error), 64);
     }
 
@@ -755,5 +568,5 @@
   if (val_return < 0) {
     sh_error_handle ((-1), file, line, error, MSG_ERR_OPEN, 
-		     sh_error_message(error, errbuf, sizeof(errbuf)),
+		     sh_error_message(error),
 		     pathname, (long) flags, (long) mode, val_return);
   }
@@ -762,34 +575,21 @@
 }
 
-long int aud_open (const char * file, int line, int privs,
+long int aud_open (char * file, int line, int privs,
 		   const char *pathname, int flags, mode_t mode)
 {
   long int val_return;
   int error;
-  char errbuf[SH_ERRBUF_SIZE];
 
   SL_ENTER(_("aud_open"));
 
-#ifdef USE_SUID
-  if (privs == SL_YESPRIV)
-    sl_set_suid();
-#else
+  val_return = open (pathname, flags, mode);
+  error = errno;
   /*@-noeffect@*/
   (void) privs; /* fix compiler warning */
   /*@+noeffect@*/
-#endif
-
-  val_return = open (pathname, flags, mode);
-
-#ifdef USE_SUID
-  if (privs == SL_YESPRIV)
-    sl_unset_suid();
-#endif
-
-  error = errno;
 
   if (val_return < 0)
     {
-      (void) sh_error_message(error, aud_err_message, 64);
+      (void) sl_strlcpy(aud_err_message, sh_error_message(error), 64);
     }
 
@@ -801,5 +601,5 @@
   if (val_return < 0) {
     sh_error_handle ((-1), file, line, error, MSG_ERR_OPEN, 
-		     sh_error_message(error, errbuf, sizeof(errbuf)),
+		     sh_error_message(error),
 		     pathname, (long) flags, (long) mode, val_return);
   }
@@ -808,9 +608,8 @@
 }
   
-long int aud_kill (const char * file, int line, pid_t pid, int sig)
+long int aud_kill (char * file, int line, pid_t pid, int sig)
 {
   int  myerror;
   long int val_return = kill (pid, sig);
-  char errbuf[SH_ERRBUF_SIZE];
   myerror = errno;
 
@@ -822,5 +621,5 @@
   if (val_return < 0) {
       sh_error_handle ((-1), file, line, myerror, MSG_ERR_KILL, 
-		       sh_error_message(myerror, errbuf, sizeof(errbuf)),
+		       sh_error_message(myerror),
 		       (long) pid, (long) sig);
   }
@@ -830,34 +629,33 @@
   
 /*@noreturn@*/
-void aud_exit (const char * file, int line, int exitval)
+void aud_exit (char * file, int line, int fd)
 {
   if (sh.flag.audit != 0 && (sh.flag.aud_mask & AUD_EXIT) != 0)
     sh_error_handle ((-1), file, line, 0, MSG_AUD_EXIT,
-		      (long) exitval);
+		      (long) fd);
 
   SL_ENTER(_("aud_exit"));
 
-  sh.flag.exit = exitval;
-  exit(exitval);
+  sh.flag.exit = fd;
+  exit(fd);
 }
 
 /*@noreturn@*/
-void aud__exit (const char * file, int line, int exitval)
+void aud__exit (char * file, int line, int fd)
 {
   if (sh.flag.audit != 0 && (sh.flag.aud_mask & AUD_EXIT) != 0)
     sh_error_handle ((-1), file, line, 0, MSG_AUD_EXIT,
-		      (long) exitval);
+		      (long) fd);
 
   SL_ENTER(_("aud__exit"));
 
-  sh.flag.exit = exitval;
-  _exit(exitval);
-}
-
-pid_t aud_fork (const char * file, int line)
+  sh.flag.exit = fd;
+  _exit(fd);
+}
+
+pid_t aud_fork (char * file, int line)
 {
   int error;
   pid_t i = fork();
-  char errbuf[SH_ERRBUF_SIZE];
 
   error = errno;
@@ -869,5 +667,5 @@
   if (i == (pid_t) -1) {
     sh_error_handle ((-1), file, line, error, MSG_ERR_FORK, 
-		     sh_error_message(error, errbuf, sizeof(errbuf)),
+		     sh_error_message(error),
 		     (long) i);
   }
@@ -876,9 +674,8 @@
 }
 
-int aud_setuid (const char * file, int line, uid_t uid)
+int aud_setuid (char * file, int line, uid_t uid)
 {
   int error = 0;
   int i = 0;
-  char errbuf[SH_ERRBUF_SIZE];
 
   SL_ENTER(_("aud_setuid"));
@@ -897,5 +694,5 @@
   if (i < 0) {
     sh_error_handle ((-1), file, line, error, MSG_ERR_SETUID, 
-		     sh_error_message(error, errbuf, sizeof(errbuf)),
+		     sh_error_message(error),
 		     (long) uid);
   }
@@ -904,9 +701,8 @@
 }
 
-int aud_setgid (const char * file, int line, gid_t gid)
+int aud_setgid (char * file, int line, gid_t gid)
 {
   int error = 0;
   int i = 0;
-  char errbuf[SH_ERRBUF_SIZE];
 
   SL_ENTER(_("aud_setgid"));
@@ -926,5 +722,5 @@
   if (i < 0) {
     sh_error_handle ((-1), file, line, error, MSG_ERR_SETGID, 
-		     sh_error_message(error, errbuf, sizeof(errbuf)),
+		     sh_error_message(error),
 		     (long) gid);
   }
@@ -933,9 +729,8 @@
 }
 
-int aud_pipe (const char * file, int line, int modus[2])
+int aud_pipe (char * file, int line, int * modus)
 {
   int error;
   int i = pipe (modus);
-  char errbuf[SH_ERRBUF_SIZE];
 
   SL_ENTER(_("aud_pipe"));
@@ -954,9 +749,9 @@
     if (i < 0)
       sh_error_handle ((-1), file, line, error, MSG_ERR_PIPE, 
-		       sh_error_message(error, errbuf, sizeof(errbuf)),
+		       sh_error_message(error),
 		       (long) 0, (long) 0);
     else
       sh_error_handle ((-1), file, line, error, MSG_ERR_PIPE, 
-		       sh_error_message(error, errbuf, sizeof(errbuf)),
+		       sh_error_message(error),
 		       (long) modus[0], (long) modus[1]);
   }
Index: trunk/src/sh_cat.c
===================================================================
--- trunk/src/sh_cat.c	(revision 591)
+++ trunk/src/sh_cat.c	(revision 1)
@@ -8,5 +8,5 @@
 /*@-nullassign@*/
 
-const char * class_cat[] = {
+char * class_cat[] = {
   N_("AUD"),     /*  0 */
   N_("PANIC"),   /*  1 */
@@ -40,5 +40,5 @@
   { MSG_FI_CSUM,     SH_ERR_ALL,     FIL,   N_("msg=\"Checksum\" chk=\"%s\" path=\"%s\"")},
   { MSG_FI_DSUM,     SH_ERR_INFO,    FIL,   N_("msg=\"d: %3ld, -: %3ld, l: %3ld, |: %3ld, s: %3ld, c: %3ld, b: %3ld\"")},
-  { MSG_FI_CHK,      SH_ERR_INFO,    FIL,   N_("msg=\"Checking %16s\" path=\"%s\"")},
+  { MSG_FI_CHK,      SH_ERR_INFO,    FIL,   N_("msg=\"Checking\" path=\"%s\"")},
 #endif
 
@@ -70,13 +70,9 @@
   { MSG_CHECK_0,     SH_ERR_WARN,    RUN,   N_("msg=\"No files or directories defined for checking\"")},
   { MSG_CHECK_1,     SH_ERR_STAMP,   STAMP, N_("msg=\"File check completed.\" time=\"%ld\" kBps=\"%f\"")},
-  { MSG_CHECK_2,     SH_ERR_STAMP,   STAMP, N_("msg=\"File check starting.\"")},
   { MSG_STAMP,       SH_ERR_STAMP,   STAMP, N_("msg=\"---- TIMESTAMP ----\"")},
-  { MSG_DCLOSE,      SH_ERR_NOTICE,  RUN,   N_("msg=\"Finished writing baseline database.\"")},
-  
+
   { MSG_D_START,     SH_ERR_INFO,    RUN,   N_("msg=\"Downloading configuration file\"")},
   { MSG_D_DSTART,    SH_ERR_INFO,    RUN,   N_("msg=\"Downloading database file\"")},
   { MSG_D_FAIL,      SH_ERR_INFO,    RUN,   N_("msg=\"No file from server, trying local file\"")},
-  { MSG_D_DELTAOK,   SH_ERR_SEVERE,  RUN,   N_("msg=\"Delta database downloaded\", path=\"%s\"")},
-  { MSG_D_DELTAFAIL, SH_ERR_SEVERE,  RUN,   N_("msg=\"Delta database download failed\", path=\"%s\"")},
 
 
@@ -97,4 +93,17 @@
   { MSG_SUID_QREPORT,SH_ERR_SEVERE,  EVENT, N_("msg=\"Quarantine report: %s\" path=\"%s\"") },
   { MSG_SUID_ERROR,  SH_ERR_SEVERE,  EVENT, N_("msg=\"Quarantine error: %s\"") },
+#endif
+
+#ifdef SH_USE_KERN
+  /* FreeBSD */
+  { MSG_KERN_POLICY, SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY KERNEL BSD syscall table: new: %#lx old: %#lx\" syscall=\"%03d %s\"") },
+  { MSG_KERN_POL_CO, SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY KERNEL BSD syscall code: new: %#x,%#x old: %#x,%#x\" syscall=\"%03d %s\"") },
+
+  /* Linux */
+  { MSG_KERN_SYSCALL,SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [Kernel] SYSCALL modified syscall\" syscall=\"%03d %s\" %s") },
+  { MSG_KERN_PROC,   SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [Kernel] PROC modified proc filesystem: %s\"") },
+  { MSG_KERN_IDT,    SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [Kernel] IDT modified interrupt %03d: new: 0x%-8.8lx %-9s %3d %c old: 0x%-8.8lx %-9s %3d %c\" %s") },
+  { MSG_KERN_GATE,   SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [Kernel] SYS_GATE modified system_call: new: %#x,%#x old: %#x,%#x\" syscall=\"%03d %s\" %s") },
+
 #endif
 
@@ -113,54 +122,15 @@
   { MSG_UT_ROT,      SH_ERR_WARN,    RUN,   N_("msg=\"Logfile size decreased\" path=\"%s\"")},
 
-  { MSG_UT_BAD,      SH_ERR_SEVERE,  EVENT, N_("msg=\"Login at disallowed time\" userid=\"%s\" host=\"%s\" time=\"%s\"")},
-  { MSG_UT_FIRST,    SH_ERR_SEVERE,  EVENT, N_("msg=\"First login from this host\" userid=\"%s\" host=\"%s\" time=\"%s\"")},
-  { MSG_UT_OUTLIER,  SH_ERR_SEVERE,  EVENT, N_("msg=\"Login time outlier\" userid=\"%s\" host=\"%s\" time=\"%s\"")},
-
-#endif
-
-#ifdef SH_USE_PROCESSCHECK
-  { MSG_PCK_CHECK,   SH_ERR_INFO,    RUN,   N_("msg=\"Checking processes in pid interval [%ld,%ld]\"")},
-  { MSG_PCK_OK,      SH_ERR_ALL,     RUN,   N_("msg=\"PID %ld found with tests %s\"")},
-  { MSG_PCK_P_HIDDEN,SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [Process] Hidden pid: %ld tests: %s\" path=\"%s\" userid=\"%s\"")},
-  { MSG_PCK_HIDDEN,  SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [Process] Hidden pid: %ld tests: %s\"")},
-  { MSG_PCK_FAKE,    SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [Process] Fake pid: %ld tests: %s\"")},
-  { MSG_PCK_MISS,    SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [Process] Missing: %s\"")},
-#endif
-
-#ifdef SH_USE_PORTCHECK
-  { MSG_PORT_MISS,   SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [ServiceMissing] %s\"")},
-  { MSG_PORT_NEW,    SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [ServiceNew] %s\" path=\"%s\"  pid=\"%lu\" userid=\"%s\"")},
-  { MSG_PORT_RESTART,SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [ServiceRestarted] %s\" path=\"%s\" pid=\"%lu\" userid=\"%s\"")},
-  { MSG_PORT_NEWPORT,SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [ServicePortSwitch] %s\" path=\"%s\" pid=\"%lu\" userid=\"%s\"")},
 #endif
 
 #ifdef SH_USE_MOUNTS
-  { MSG_MNT_CHECK,   SH_ERR_INFO,    RUN,   N_("msg=\"Checking mounts\"")},
+  { MSG_MNT_CHECK,   SH_ERR_NOTICE,  RUN,   N_("msg=\"Checking mounts\"")},
   { MSG_MNT_MEMLIST, SH_ERR_ERR,     RUN,   N_("msg=\"Cannot read mount list from memory\"")},
-  { MSG_MNT_MNTMISS, SH_ERR_WARN,    EVENT, N_("msg=\"POLICY [Mounts] Mount missing\" path=\"%s\"")},
-  { MSG_MNT_OPTMISS, SH_ERR_WARN,    EVENT, N_("msg=\"POLICY [Mounts] Mount option missing\" path=\"%s\" option=\"%s\"")},
+  { MSG_MNT_MNTMISS, SH_ERR_WARN,    EVENT, N_("msg=\"Mount missing\" path=\"%s\"")},
+  { MSG_MNT_OPTMISS, SH_ERR_WARN,    EVENT, N_("msg=\"Mount option missing\" path=\"%s\" option=\"%s\"")},
 #endif
 
 #ifdef SH_USE_USERFILES
   { MSG_USERFILES_SUMMARY,SH_ERR_INFO,    RUN,   N_("msg=\"Checked for users files\"") },
-#endif
-
-#ifdef USE_LOGFILE_MONITOR
-  { MSG_LOGMON_CHKS, SH_ERR_INFO,    RUN,   N_("msg=\"Checking logfile %s\"") },
-  { MSG_LOGMON_CHKE, SH_ERR_INFO,    RUN,   N_("msg=\"Finished logfile %s, %lu new records processed\"") },
-  { MSG_LOGMON_MISS, SH_ERR_ERR,     RUN,   N_("msg=\"Missing logfile %s\"") },
-  { MSG_LOGMON_EOPEN,SH_ERR_ERR,     RUN,   N_("msg=\"Cannot open logfile %s\"") },
-  { MSG_LOGMON_EREAD,SH_ERR_ERR,     RUN,   N_("msg=\"Error while reading logfile %s\"") },
-  { MSG_LOGMON_REP,  SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [Logfile] %s\" time=\"%s\" host=\"%s\" path=\"%s\"") },
-  { MSG_LOGMON_SUM,  SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [Logfile] %s\" host=\"%s\" path=\"%s\"") },
-  { MSG_LOGMON_COR,  SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [Logfile] Correlation event %s occured %d time(s)\"") },
-  { MSG_LOGMON_MARK, SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [Logfile] Event %s missing for %lu seconds\"") },
-  { MSG_LOGMON_BURST, SH_ERR_SEVERE, EVENT, N_("msg=\"POLICY [Logfile] Repeated %d times: %s\" host=\"%s\"") },
-#endif
-
-#ifdef USE_REGISTRY_CHECK
-  { MSG_REG_MISS,   SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [RegistryKeyMissing] %s\" path=\"%s\" %s")},
-  { MSG_REG_NEW,    SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [RegistryKeyNew] %s\" path=\"%s\" %s")},
-  { MSG_REG_CHANGE, SH_ERR_SEVERE,  EVENT, N_("msg=\"POLICY [RegistryKeyChanged] %s\" path=\"%s\" %s")},
 #endif
 
@@ -172,5 +142,5 @@
   { MSG_FI_CSUM,     SH_ERR_ALL,     FIL,   N_("msg=\"Checksum\" chk=\"%s\" path=\"%s\"")},
   { MSG_FI_DSUM,     SH_ERR_INFO,    FIL,   N_("msg=\"d: %3ld, -: %3ld, l: %3ld, |: %3ld, s: %3ld, c: %3ld, b: %3ld\"")},
-  { MSG_FI_CHK,      SH_ERR_INFO,    FIL,   N_("msg=\"Checking %16s\" path=\"%s\"")},
+  { MSG_FI_CHK,      SH_ERR_INFO,    FIL,   N_("msg=\"Checking\" path=\"%s\"")},
 #endif
 
@@ -187,5 +157,5 @@
   { MSG_FI_NOGRP,    SH_ERR_ERR,     FIL,   N_("interface=\"getgrgid\" msg=\"No such group\" group=\"%ld\" path=\"%s\"")},
   { MSG_FI_NOUSR,    SH_ERR_ERR,     FIL,   N_("interface=\"getpwuid\" msg=\"No such user\" userid=\"%ld\" path=\"%s\"")},
-  { MSG_FI_STAT,     SH_ERR_ERR,     FIL,   N_("interface=\"%s\" msg=\"%s\" userid=\"%ld\" path=\"%s\"")},
+  { MSG_FI_LSTAT,    SH_ERR_ERR,     FIL,   N_("interface=\"lstat\" msg=\"%s\" path=\"%s\"")},
   { MSG_FI_OBSC,     SH_ERR_ERR,     FIL,   N_("msg=\"Weird filename\" path=\"%s\"")},
   { MSG_FI_OBSC2,    SH_ERR_ERR,     FIL,   N_("msg=\"Weird filename\" path=\"%s/%s\"")},
@@ -211,5 +181,5 @@
   { MSG_TCP_MISMATCH,SH_ERR_ERR,     TCP,   N_("msg=\"Protocol mismatch\"")},
   { MSG_TCP_MISENC,  SH_ERR_ERR,     TCP,   N_("msg=\"Encryption mismatch in %s: server: %s client: %s\"")},
-  { MSG_TCP_NONAME,  SH_ERR_ERR,     TCP,   N_("msg=\"No server name known\"")},
+  { MSG_TCP_NONAME,  SH_ERR_ERR,     TCP,   N_("msg=\"No server name available\"")},
   { MSG_TCP_UNEXP,   SH_ERR_ERR,     TCP,   N_("msg=\"Unexpected reply\"")},
   { MSG_TCP_EFIL,    SH_ERR_ERR,     TCP,   N_("msg=\"Could not open temporary file\"")},
@@ -225,5 +195,4 @@
 
   { MSG_TCP_CREG,    SH_ERR_ALL,     TCP,   N_("msg=\"Registered %s, salt %s, verifier %s\"")},
-  { MSG_TCP_AREG,    SH_ERR_ALL,     TCP,   N_("msg=\"Registered %s, hostname %s\"")},
   { MSG_TCP_FAUTH,   SH_ERR_INFO,    TCP,   N_("msg=\"Force authentication\" host=\"%s\"")},
 
@@ -246,5 +215,5 @@
   { MSG_TCP_ILL,     SH_ERR_SEVERE,  TCP,   N_("msg=\"Restart without prior exit\" host=\"%s\"")},
   { MSG_TCP_SYNC,    SH_ERR_SEVERE,  TCP,   N_("msg=\"Out of sync\" host=\"%s\"")},
-  { MSG_TCP_RESET,   SH_ERR_NOTICE,  TCP,   N_("msg=\"Connection reset by peer\" host=\"%s\"")},
+  { MSG_TCP_RESET,   SH_ERR_SEVERE,  TCP,   N_("msg=\"Connection reset by peer\" host=\"%s\"")},
   { MSG_TCP_CNEW,    SH_ERR_INFO,    TCP,   N_("msg=\"New connection\" socket_id=\"%d\"")},
   { MSG_E_HTML,      SH_ERR_ERR,     ERR,   N_("msg=\"Error writing HTML status\"")},
@@ -265,5 +234,5 @@
   { MSG_MSTAMP,      SH_ERR_STAMP,   STAMP, N_("msg=\"Memory used:  max.=%lu, current=%lu\"")},
   { MSG_MSTAMP2,     SH_ERR_STAMP,   STAMP, N_("msg=\"Blocks: %d allocated, %d freed, %d maximum\"")},
-  { MSG_E_MNULL,     SH_ERR_ERR,     ERR,   N_("msg=\"Dereferenced NULL pointer allocated in %s, line %d\" source_file=\"%s\" source_line=\"%d\"")},
+  { MSG_E_MNULL,     SH_ERR_ERR,     ERR,   N_("msg=\"Dereferenced NULL pointer\" source_file=\"%s\" source_line=\"%d\"")},
   { MSG_E_MMEM,      SH_ERR_ERR,     ERR,   N_("msg=\"Out of memory\" source_file=\"%s\" source_line=\"%d\"")},
   { MSG_E_MREC,      SH_ERR_ERR,     ERR,   N_("msg=\"Free() on unrecorded block\" source_file=\"%s\" source_line=\"%d\"")},
@@ -276,8 +245,7 @@
   { MSG_E_HASH,      SH_ERR_ERR,     ERR,   N_("msg=\"Incorrect checksum\" path=\"%s\"")},
   { MSG_E_ACCESS,    SH_ERR_ERR,     ERR,   N_("msg=\"File not accessible\" userid=\"%ld\" path=\"%s\"")},
-  { MSG_E_READ,      SH_ERR_ERR,     ERR,   N_("msg=\"Not accessible or not a regular file (%s / %s)\" path=\"%s\"")},
-  { MSG_E_NOTREG,    SH_ERR_ERR,     ERR,   N_("msg=\"Not a regular file\" path=\"%s\"")},
+  { MSG_E_READ,      SH_ERR_ERR,     ERR,   N_("msg=\"Not accessible or not a regular file\" path=\"%s\"")},
   { MSG_E_TIMEOUT,   SH_ERR_ERR,     ERR,   N_("msg=\"Timeout (%d sec) while checksumming file\" path=\"%s\"")},
-  { MSG_NODEV,       SH_ERR_ERR,     ERR,   N_("msg=\"Device not available or timeout during read attempt\" userid=\"%ld\" path=\"%s\"")},
+  { MSG_NODEV,       SH_ERR_ERR,     ERR,   N_("msg=\"Device not available\" userid=\"%ld\" path=\"%s\"")},
   { MSG_LOCKED,      SH_ERR_ERR,     ERR,   N_("msg=\"File lock error\" userid=\"%ld\" path=\"%s\" obj=\"%s\"")},
   { MSG_PIDFILE,      SH_ERR_ERR,     ERR,   N_("msg=\"Could not write PID file\" userid=\"%ld\" path=\"%s\"")},
@@ -374,5 +342,5 @@
   { MSG_FI_CSUM,     SH_ERR_ALL,     FIL,   N_("msg=, chk=<%s>, path=<%s>")},
   { MSG_FI_DSUM,     SH_ERR_INFO,    FIL,   N_("msg=")},
-  { MSG_FI_CHK,      SH_ERR_INFO,    FIL,   N_("msg=, path=<%s>")},
+  { MSG_FI_CHK,      SH_ERR_INFO,    FIL,   N_("msg=, path=<%s>")},
 #endif
 
@@ -403,13 +371,9 @@
   { MSG_CHECK_0,     SH_ERR_WARN,    RUN,   N_("msg=")},
   { MSG_CHECK_1,     SH_ERR_STAMP,   STAMP, N_("msg=, time=<%ld>, kBps=<%f>")},
-  { MSG_CHECK_2,     SH_ERR_STAMP,   STAMP, N_("msg=")},
   { MSG_STAMP,       SH_ERR_STAMP,   STAMP, N_("msg=<---- TIMESTAMP ---->")},
-  { MSG_DCLOSE,      SH_ERR_NOTICE,  RUN,   N_("msg=")},
 
   { MSG_D_START,     SH_ERR_INFO,    RUN,   N_("msg=")},
   { MSG_D_DSTART,    SH_ERR_INFO,    RUN,   N_("msg=")},
   { MSG_D_FAIL,      SH_ERR_INFO,    RUN,   N_("msg=")},
-  { MSG_D_DELTAOK,   SH_ERR_SEVERE,  RUN,   N_("msg=, path=<%s>")},
-  { MSG_D_DELTAFAIL, SH_ERR_SEVERE,  RUN,   N_("msg=, path=<%s>")},
 
 
@@ -433,6 +397,6 @@
 
 #ifdef SH_USE_KERN
-  { MSG_KERN_POLICY, SH_ERR_SEVERE,  EVENT, N_("msg=, syscall=<%03d %s>") },
-  { MSG_KERN_POL_CO, SH_ERR_SEVERE,  EVENT, N_("msg=, syscall=<%03d %s>") },
+  { MSG_KERN_POLICY, SH_ERR_SEVERE,  EVENT, N_("msg=, syscall=<%03d %s>") },
+  { MSG_KERN_POL_CO, SH_ERR_SEVERE,  EVENT, N_("msg=, syscall=<%03d %s>") },
 
   { MSG_KERN_SYSCALL,SH_ERR_SEVERE,  EVENT, N_("msg= syscall=<%03d %s>, %s") },
@@ -460,23 +424,4 @@
   { MSG_UT_ROT,      SH_ERR_WARN,    RUN,   N_("msg=, path=<%s>")},
 
-  { MSG_UT_BAD,      SH_ERR_SEVERE,  EVENT, N_("msg= userid=<%s> host=<%s> time=<%s>")},
-  { MSG_UT_FIRST,    SH_ERR_SEVERE,  EVENT, N_("msg= userid=<%s> host=<%s> time=<%s>")},
-  { MSG_UT_OUTLIER,  SH_ERR_SEVERE,  EVENT, N_("msg= userid=<%s> host=<%s> time=<%s>")},
-#endif
-
-#ifdef SH_USE_PROCESSCHECK
-  { MSG_PCK_CHECK,   SH_ERR_INFO,    RUN,   N_("msg=")},
-  { MSG_PCK_OK,      SH_ERR_ALL,     RUN,   N_("msg=")},
-  { MSG_PCK_P_HIDDEN,SH_ERR_SEVERE,  EVENT, N_("msg=