Linux Security Auditing Tool

This release fixes a bug where checkinetd was still segfaulting on the Linux kernel 2.4.

A new dostuff module which creates tempfiles, runs shellcode, and appends header and/or tempfile to outfile (all modules now use dostuff), a fix for checkinetd which broke under Linux 2.4, LSAT cleans up tmp files, reports error and keeps going if any module fails, a new section in README.modules on module writing, addition of missing modules, cleanups to the output format, and fixes for verbose messages.

A Checknetforward module has been added to check for IP forwarding. syslog.pid and vmlinuz have been added to checkfiles, added packages to checkpkgs. Checkpkgs now checks all packages. There are many various bugfixes. Output typos have been fixed. Checkwrite actually checks suid/sgid files, not just sgid files, and the user is made aware of this now. Checkumask no longer fails under Mandrake.

Fixed a possible buffer overrun and symlink attack in checkftpusers and checkrc, respectively. Fixed a possible buffer overrun in lsatmain.

The output file is now written with mode 0600. All temporary files are now written with mode 0600. The output file option really works now, and output file backup works whether or not the filename option is given. A checkkbd module has been added, which checks that ctrl-alt-del is disabled (Linux) or that stop-A is disabled (Solaris/SunOS). There are various documentation fixes and additions.