On 01/22/2010 01:53 PM, Ralf Corsepius wrote:
On 01/22/2010 01:22 PM, Tomas Mraz wrote:
On Fri, 2010-01-22 at 12:41 +0100, Ralf Corsepius wrote:
Hi,
On FC12 I found this:
# ls /usr/bin/.*.hmac /usr/bin/.fipscheck.hmac /usr/bin/.ssh.hmac
# rpm -qf /usr/bin/.*.hmac fipscheck-1.2.0-4.fc12.x86_64 openssh-clients-5.2p1-31.fc12.x86_64
Could somebody provide some insight what these files are (I guess some checksums) and why they are being installed to /usr/bin?
These are checksums required by FIPS-140-2 integrity verification checks of the fipscheck and ssh binaries.
I.e. package data.
=> These packages are non-FHS compliant and qualify as broken.
I think what Ralf means is
- these files should be put somewhere else, and - these files should not be hidden files
to which I agree 100%. So the question is: how much work is required ?
Speaking on funny things in /usr/bin
what about '/usr/bin/[', part of cureutils... had never noticed this one before.
-denis