VERIEXECCTL(8) | System Manager's Manual | VERIEXECCTL(8) |
veriexecctl
—
manage the Veriexec subsystem
veriexecctl |
[-ekv ] load
[file] |
veriexecctl |
delete file |
mount_point |
veriexecctl |
dump |
veriexecctl |
flush |
veriexecctl |
query file |
The veriexecctl
command is used to
manipulate Veriexec, the NetBSD
file integrity subsystem.
load
[file]This operation is only allowed in learning mode (strict level zero).
The following flags are allowed with this command:
delete
file | mount_pointdump
This can be used to recover a lost database:
# veriexecctl dump > /etc/signatures
flush
query
fileveriexec(4), veriexec(5), security(7), veriexec(8), veriexecgen(8)
veriexecctl
first appeared in
NetBSD 2.0.
Brett Lymn
<blymn@NetBSD.org>
Elad Efrat
<elad@NetBSD.org>
The kernel is expected to have the “veriexec” pseudo-device.
August 31, 2008 | NetBSD 10.99 |