msgid "" msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "POT-Creation-Date: 2010-10-22 00:56+0600\n" "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n" "Last-Translator: FULL NAME \n" "Language-Team: LANGUAGE \n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(version):10 msgid "2" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(date):11 msgid "2010-07-19" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(title):14 msgid "AIDE (Advanced Intrusion Detection Environment)" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(p):17 msgid "AIDE is a Host-Based Intrusion Detection System (HIDS), a free alternative to Tripwire (if you already know Tripwire you should have no difficulties learning the configuration file for AIDE). HIDS are used to detect changes to important system configuration files and binaries, generally by making a unique cryptographic hash for the files to be checked and storing it in a secure place. On a regular basis (such as once a day), the stored \"known-good\" hash is compared to the one generated from the current copy of each file, to determine if that file has changed. HIDS are a great way to detect disallowed changes to your system, but they take a little work to implement properly and make good use of." msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(p):30 msgid "The configuration file is based on regular expressions, macros and rules for files and directories. We have the following macros:" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(th):37 msgid "Macro" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(th):38 ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(th):95 ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(th):182 ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(th):218 msgid "Description" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(th):39 msgid "Syntax" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):42 msgid "ifdef" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):43 msgid "If definded" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):44 msgid "@@ifdef \"name\"" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):47 msgid "ifndef" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):48 msgid "If not defined" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):49 msgid "@@ifndef \"name\"" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):52 msgid "define" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):53 msgid "Define a variable" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):54 msgid "@@define \"name\" \"value\"" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):57 msgid "undef" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):58 msgid "Undefine a variable" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):59 msgid "@@undef \"name\"" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):62 msgid "ifhost" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):63 msgid "if \"hostname\"" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):64 msgid "@@ifhost \"hostname\"" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):67 msgid "ifnhost" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):68 msgid "if not \"hostname\"" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):69 msgid "@@ifnhost \"hostname\"" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):72 msgid "endif" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):73 msgid "Endif must be used after any of the above macros except define and undef" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):76 msgid "@@endif" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(p):80 msgid "These macros become very handy if you have more than one Gentoo box and want to use AIDE on all of them. But not all machines run the same services or even have the same users." msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(p):86 msgid "Next we have sets of flags to check for on files and directories. These are a combination of permissions, file properties and cryptographic hashes (i.e. checksums)." msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(th):94 ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(th):181 ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(th):217 msgid "Flag" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):98 msgid "p" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):99 msgid "permissions" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):102 msgid "i" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):103 msgid "inode" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):106 msgid "n" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):107 msgid "number of links" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):110 msgid "u" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):111 msgid "user" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):114 msgid "g" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):115 msgid "group" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):118 msgid "s" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):119 msgid "size" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):122 msgid "b" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):123 msgid "block count" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):126 msgid "m" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):127 msgid "mtime" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):130 msgid "a" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):131 msgid "atime" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):134 msgid "c" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):135 msgid "ctime" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):138 msgid "S" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):139 msgid "check for growing size" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):142 msgid "md5" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):143 msgid "md5 checksum" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):146 msgid "sha1" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):147 msgid "sha1 checksum" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):150 msgid "rmd160" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):151 msgid "rmd160 checksum" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):154 msgid "tiger" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):155 msgid "tiger checksum" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):158 msgid "R" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):159 msgid "p+i+n+u+g+s+m+c+md5" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):162 msgid "L" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):163 msgid "p+i+n+u+g" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):166 msgid "E" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):167 msgid "Empty group" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):170 msgid ">" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):171 msgid "Growing logfile p+u+g+i+n+S" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(p):175 msgid "And if AIDE is compiled with mhash support it supports a few other features:" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):185 msgid "haval" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):186 msgid "haval checksum" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):189 msgid "gost" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):190 msgid "gost checksum" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):193 msgid "crc32" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):194 msgid "crc32 checksum" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(p):198 msgid "Now you can create you own rules based on the above flags by combining them like this:" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(pre:caption):203 msgid "Create a ruleset for AIDE" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(pre):203 #, no-wrap msgid "\nAll=R+a+sha1+rmd160\nNorm=s+n+b+md5+sha1+rmd160\n" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(p):208 msgid "The last thing we need to create our own configuration file is to see how to add a rule to a file or directory. To enter a rule, combine the file or directory name and the rule. AIDE will add all files recursively unless you specify an alternate rule." msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):221 msgid "!" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):222 msgid "Don't add this file or directory." msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):225 msgid "=" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(ti):226 msgid "Add this directory, but not recursively." msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(p):230 msgid "So lets watch a full blown example:" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(pre:caption):234 msgid "/etc/aide/aide.conf" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(pre):234 #, no-wrap msgid "\n@@ifndef TOPDIR\n@@define TOPDIR /\n@@endif\n\n@@ifndef AIDEDIR\n@@define AIDEDIR /etc/aide\n@@endif\n\n@@ifhost smbserv\n@@define smbactive\n@@endif\n\n# The location of the database to be read.\ndatabase=file:@@{AIDEDIR}/aide.db\n\n# The location of the database to be written.\ndatabase_out=file:aide.db.new\n\nverbose=20\nreport_url=stdout\n\n# Rule definition\nAll=R+a+sha1+rmd160\nNorm=s+n+b+md5+sha1+rmd160\n\n@@{TOPDIR} Norm\n!@@{TOPDIR}etc/aide\n!@@{TOPDIR}dev\n!@@{TOPDIR}media\n!@@{TOPDIR}mnt\n!@@{TOPDIR}proc\n!@@{TOPDIR}root\n!@@{TOPDIR}sys\n!@@{TOPDIR}tmp\n!@@{TOPDIR}var/log\n!@@{TOPDIR}var/run\n!@@{TOPDIR}usr/portage\n@@ifdef smbactive\n!@@{TOPDIR}etc/smb/private/secrets.tdb\n@@endif\n=@@{TOPDIR}home Norm\n" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(p):278 msgid "In the above example we specify with some macros where the topdir starts and where the AIDE directory is. AIDE checks the /etc/aide/aide.db file when checking for file integrity. But when updating or creating a new file it stores the information in /etc/aide/aide.db.new. This is done so it won't automatically overwrite the old db file. The option report_URL is not yet implemented, but the author's intention was that it should be able to e-mail or maybe even execute scripts." msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(p):288 msgid "The AIDE ebuild now comes with a working default configuration file, a helper script and a crontab script. The helper script does a number of tasks for you and provides an interface that is a little more script friendly. To see all available options, try aide --help. To get started, all that needs to be done is aide -i and the crontab script should detect the database and send mails as appropriate every day. We recommend that you review the /etc/aide/aide.conf file and ensure that the configuration accurately reflects what is in place on the machine." msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(note):299 msgid "Depending on your CPU, disk access speed, and the flags you have set on files, this can take some time." msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(note):304 msgid "Remember to set an alias so you get roots mail. Otherwise you will never know what AIDE reports." msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(p):309 msgid "Now there is some risk inherent with storing the db files locally, since the attacker will (if they know that AIDE is installed) most certainly try to alter the db file, update the db file or modify /usr/bin/aide. So you should create a CD or other media and put on it a copy of the .db file and the AIDE binaries." msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(p):317 msgid "One can find information at the AIDE project page." msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(title):325 msgid "Snort" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(p):328 msgid "Snort is a Network Intrusion Detection System (NIDS). To install and configure it use the following examples." msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(pre:caption):333 msgid "/etc/conf.d/snort" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(pre):333 #, no-wrap msgid "\nPIDFILE=/var/run/snort_eth0.pid\nMODE=\"full\"\nNETWORK=\"10.0.0.0/24\"\nLOGDIR=\"/var/log/snort\"\nCONF=/etc/snort/snort.conf\nSNORT_OPTS=\"-D -s -u snort -dev -l $LOGDIR -h $NETWORK -c $CONF\"\n" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(pre:caption):342 msgid "/etc/snort/snort.conf" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(pre):342 #, no-wrap msgid "\n(Step 1)\nvar HOME_NET 10.0.0.0/24\nvar EXTERNAL_NET any\nvar SMTP $HOME_NET\nvar HTTP_SERVERS $HOME_NET\nvar SQL_SERVERS $HOME_NET\nvar DNS_SERVERS [10.0.0.2/32,212.242.40.51/32]\nvar RULE_PATH ./\n\n(Step 2)\npreprocessor frag2\npreprocessor stream4: detect_scans detect_state_problems detect_scans disable_evasion_alerts\npreprocessor stream4_reassemble: ports all\npreprocessor http_decode: 80 8080 unicode iis_alt_unicode double_encode iis_flip_slash full_whitespace\npreprocessor rpc_decode: 111 32771\npreprocessor bo: -nobrute\npreprocessor telnet_decode\n\n(Step 3)\ninclude classification.config\n\n(Step 4)\ninclude $RULE_PATH/bad-traffic.rules\ninclude $RULE_PATH/exploit.rules\ninclude $RULE_PATH/scan.rules\ninclude $RULE_PATH/finger.rules\ninclude $RULE_PATH/ftp.rules\ninclude $RULE_PATH/telnet.rules\ninclude $RULE_PATH/smtp.rules\ninclude $RULE_PATH/rpc.rules\ninclude $RULE_PATH/rservices.rules\ninclude $RULE_PATH/dos.rules\ninclude $RULE_PATH/ddos.rules\ninclude $RULE_PATH/dns.rules\ninclude $RULE_PATH/tftp.rules\ninclude $RULE_PATH/web-cgi.rules\ninclude $RULE_PATH/web-coldfusion.rules\ninclude $RULE_PATH/web-iis.rules\ninclude $RULE_PATH/web-frontpage.rules\ninclude $RULE_PATH/web-misc.rules\ninclude $RULE_PATH/web-attacks.rules\ninclude $RULE_PATH/sql.rules\ninclude $RULE_PATH/x11.rules\ninclude $RULE_PATH/icmp.rules\ninclude $RULE_PATH/netbios.rules\ninclude $RULE_PATH/misc.rules\ninclude $RULE_PATH/attack-responses.rules\ninclude $RULE_PATH/backdoor.rules\ninclude $RULE_PATH/shellcode.rules\ninclude $RULE_PATH/policy.rules\ninclude $RULE_PATH/porn.rules\ninclude $RULE_PATH/info.rules\ninclude $RULE_PATH/icmp-info.rules\ninclude $RULE_PATH/virus.rules\n# include $RULE_PATH/experimental.rules\ninclude $RULE_PATH/local.rules\n" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(pre:caption):401 msgid "/etc/snort/classification.config" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(pre):401 #, no-wrap msgid "\nconfig classification: not-suspicious,Not Suspicious Traffic,3\nconfig classification: unknown,Unknown Traffic,3\nconfig classification: bad-unknown,Potentially Bad Traffic, 2\nconfig classification: attempted-recon,Attempted Information Leak,2\nconfig classification: successful-recon-limited,Information Leak,2\nconfig classification: successful-recon-largescale,Large Scale Information Leak,2\nconfig classification: attempted-dos,Attempted Denial of Service,2\nconfig classification: successful-dos,Denial of Service,2\nconfig classification: attempted-user,Attempted User Privilege Gain,1\nconfig classification: unsuccessful-user,Unsuccessful User Privilege Gain,1\nconfig classification: successful-user,Successful User Privilege Gain,1\nconfig classification: attempted-admin,Attempted Administrator Privilege Gain,1\nconfig classification: successful-admin,Successful Administrator Privilege Gain,1\n\n# NEW CLASSIFICATIONS\nconfig classification: rpc-portmap-decode,Decode of an RPC Query,2\nconfig classification: shellcode-detect,Executable code was detected,1\nconfig classification: string-detect,A suspicious string was detected,3\nconfig classification: suspicious-filename-detect,A suspicious filename was detected,2\nconfig classification: suspicious-login,An attempted login using a suspicious username was detected,2\nconfig classification: system-call-detect,A system call was detected,2\nconfig classification: tcp-connection,A TCP connection was detected,4\nconfig classification: trojan-activity,A Network Trojan was detected, 1\nconfig classification: unusual-client-port-connection,A client was using an unusual port,2\nconfig classification: network-scan,Detection of a Network Scan,3\nconfig classification: denial-of-service,Detection of a Denial of Service Attack,2\nconfig classification: non-standard-protocol,Detection of a non-standard protocol or event,2\nconfig classification: protocol-command-decode,Generic Protocol Command Decode,3\nconfig classification: web-application-activity,access to a potentially vulnerable web application,2\nconfig classification: web-application-attack,Web Application Attack,1\nconfig classification: misc-activity,Misc activity,3\nconfig classification: misc-attack,Misc Attack,2\nconfig classification: icmp-event,Generic ICMP event,3\nconfig classification: kickass-porn,SCORE! Get the lotion!,1\n" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(p):438 msgid "More information is at the Snort web site." msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(title):446 msgid "Detecting malware with chkrootkit" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(p):449 msgid "HIDS like AIDE are a great way to detect changes to your system, but it never hurts to have another line of defence. chkrootkit is a utility that scans common system files for the presence of rootkits--software designed to hide an intruder's actions and allow him to retain his access--and scans your system for likely traces of key loggers and other \"malware\". While chkrootkit (and alternatives like rkhunter) are useful tools, both for system maintenance and for tracking an intruder after an attack has occurred, they cannot guarantee your system is secure." msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(p):460 msgid "The best way to use chkrootkit to detect an intrusion is to run it routinely from cron. To start, emerge app-forensics/chkrootkit. chkrootkit can be run from the command line by the command of the same name, or from cron with an entry such as this:" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(pre:caption):468 msgid "Schedule chkrootkit as a cronjob" msgstr "" #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(pre):468 #, no-wrap msgid "\n0 3 * * * /usr/sbin/chkrootkit\n" msgstr "" #. Place here names of translator, one per line. Format should be NAME; ROLE; E-MAIL #: ../../gentoo/xml/htdocs/doc/en/security//shb-intrusion.xml(None):0 msgid "translator-credits" msgstr ""