I need to verify that access (mode, owner) to all(!) binaries on a solaris 10 box are in accordance with the package that they came from. I could do something like
/usr/bin/find / -type f -perm -u+x,g+x,o+x -exec ls -l {} \; > /tmp/binaries.txt
and then iterate over the list and check with
pkgchk -l –p /path/to/binary
that the file is compliant. Of course, this could be scripted, but still this takes quite some time. I was wondering if there would be a tool or something that lets me go the other way around: for each package installed, check that its content is on disk like if was originally defined in the package (mode and ownership).