Linux Forensics Tools Repository: Package Summary for Packages on July 18, 2012:

  • xplico-1.0.0-2.{fc14,fc15,fc16,fc17,el6}.{i386,x86_64}.rpm - xplico is an Internet traffic decoder. Note that RHEL/CentOS 5 is not supported due to a lack of Python Version 3 support. It also assumes a web server, for example Apache, has been configured and is operational. Here is the list of changes:
    • The postinstall script conditions the /etc/php.ini configuration file for PHP so that xplico works without manual intervention. The changes are:
      • Asserts short_open_tag if it is current set to Off.
      • Sets post_max_size to 100M which is the recomended value.
      • Sets upload_max_filesize to 100M which is the recomended value.
      • Sets date.timezone to US/Eastern. If this is not appropriate for your time zone, you will need to edit /etc/php.ini by hand.
    • The preuninstall script undoes the aforementioned change to /etc/php.ini configuration file, but only if the changes were made by the postinstall executed when xplico was installed or updated.
    • The postinstall and preinstall scripts now use systemctl for Fedora 16 and beyond,

  • ptk-1.0.5-3.{fc14,fc15,fc16,fc17,el5,el6}.noarch.rpm - PTK is a computer forensic framework for the command line tools in the SleuthKit plus many more modules. PTK uses MySQL which is assumed to be configured, using the command line tool mysql_secure_installation or equivalent, and operating. It also assumes a web server, for example Apache, has been configured and is operational. Here are the list of changes:
    • The postinstall script conditions the /etc/php.ini configuration file for PHP so that ptk works without manual intervention. The changes are:
      • Asserts short_open_tag if it is current set to Off.
    • The preuninstall script undoes the aforementioned change to /etc/php.ini configuration file, but only if the changes were made by the postinstall executed when ptk was installed or updated.

  • libguytools-2.0.2-1.{fc14,fc15,fc16,fc17,el5,el6}.{i686,x86_64}.rpm - Libguytools is a package of subroutines and header files needed to build and operate guymager. The changes are:
    • Correctly handling decimal point for different locale settings in toolcfg
    • Some small signed/unsigned changes for cleaner linting
    • Copyright notices cleaned up

  • guymager-0.6.11-2.{fc14,fc15,fc16,fc17,el5,el6}.{i686,x86_64}.rpm - Guymager is a forensic imaging package. Here are the changes since the last release (0.6.11 release 1):
    • Rebuilt to use libguytools-2.0.2.