|
|
CyberSoft, Inc.'s Loopback Tail Tool is part of the VFind
Security ToolKit.
lbt is used along with
lbh(1) to ensure
that unchanged but infected files are reanalysed by
vfind(1).
lbh(1) will read filenames from a database.
This database can be created anyway the user wishes so
long as it is a flat text file that contains one filename
per line. lbt is provided as part of the
VSTK to use
vfind(1) output to create a
database suitable for use with
lbh(1).
lbt will read data from the standard input
stream and write it to the standard output stream.
lbt will create a database if the
-db=name option is specified.
OPTIONS
-
-c, --copyright
-
Display copyright information and then exit. All
other options will be ignored.
-
-h, -?, --help
-
Display usage message and then exit. All other
options will be ignored.
-
-v, --version
-
Display version information and then exit. All
other options will be ignored.
-
-db=name, --database=name
-
Use name as the database. Without this option,
lbt
will enter passthru mode (read from stdin and write
to stdout).
-
-t dir, --tmpdir dir
-
Set the directory lbt uses for its temporary
database file to dir.
Without this option, uad will use
the default temp directory appropriate to the
operating system.
-
-a, --append
-
When a pre-existing database is specified, the
append option causes new entries to be appended to
the end of the database, otherwise, lbt will
overwrite the database.
-
-r=num, --restrict=num
-
The restrict option allows lbt to use the choke
method (as described in vfind(1))
to limit output
as described in the table below.
| Num |
Chevron |
Meaning |
|
| 1 |
##==> |
Informational Message |
| 2 |
##==>> |
VFind Warning |
| 3 |
##==>>> |
Serious VFind Condition |
| 4 |
##==>>>> |
Possible Virus Detection |
-
|
|