The runmd5sum variable stores an MD5 checksum value. By default, runmd5sum is an empty string. Populate it by running the Privilege Management for Unix and Linux utility program pbsum -m <file names>, which generates the application and file MD5 checksum values.
Use checksum values to determine if a file or application has changed by establishing a baseline checksum and then comparing that baseline checksum against a checksum that is generated during security policy file processing. If the checksum values are different, then the file or application has changed since the generation of the baseline checksum, and Privilege Management for Unix and Linux refuses to run it.
Application checksum values can be used to determine if a virus has infected an application or if the file has been changed.
There is no read-only version of this variable.
This run variable does not apply to pbssh. If it is present in the policy, it does not have any effect on pbssh and is ignored.
runmd5sum = string;
A string containing a checksum value generated by pbsum. The default value is empty, which specifies no checksum checking.
runmd5sum = "dda5b3a11ac4e203190fbf0643722a05";
For more information, please see pbsum in the Privilege Management for Unix and Linux Administration Guide