From owner-freebsd-hackers  Fri Apr 14 03:11:04 1995
Return-Path: hackers-owner
Received: (from majordom@localhost)
          by freefall.cdrom.com (8.6.10/8.6.6) id DAA13270
          for hackers-outgoing; Fri, 14 Apr 1995 03:11:04 -0700
Received: from edcom.com (edcom.com [140.174.173.185])
          by freefall.cdrom.com (8.6.10/8.6.6) with ESMTP id DAA13264
          for <hackers@freefall.cdrom.com>; Fri, 14 Apr 1995 03:11:00 -0700
Received: (from edward@localhost) by edcom.com (8.6.11/8.6.9) id DAA04282 for hackers@freefall.cdrom.com; Fri, 14 Apr 1995 03:10:55 -0700
Date: Fri, 14 Apr 1995 03:10:55 -0700
From: Edward Wang <edward@edcom.com>
Message-Id: <199504141010.DAA04282@edcom.com>
To: hackers@freefall.cdrom.com
Subject: Daily security check
Sender: hackers-owner@FreeBSD.org
Precedence: bulk

I keep getting hundreds of lines from my daily in security
check because something setuid or setgid is added to the
list which changes the the ls format alignment.
To wit:

160,180c161,181
< -r-sr-xr-x  1 root  bin      12288 Jul  3 01:16:46 1994 /usr/old/usr/bin/quota
[about 50 lines deleted]
---
> -r-sr-xr-x  1 root   bin     12288 Jul  3 01:16:46 1994 /usr/old/usr/bin/quota
[about 50 lines deleted]

All because gmake (setgid) was inserted somewhere near the top.

Instead of fixing this problem, why don't we just replace ls with md5?
I just ran md5 on the 216 files in my /var/log/setuid.today and it only
took 36 seconds.  Not bad.  (ls took less than one second though.)
I guess ownership and permission are important as well.
Maybe using the -ls option in find is the best way.