[rkhunter] Add workaround for /lib/java false positive. Fixes bug #806972

Kevin Fenzi kevin at fedoraproject.org
Sun Apr 15 19:56:01 UTC 2012 

commit c9e5bec9a7bb860b6a2201e7f8b2c19033aa665e
Author: Kevin Fenzi <kevin at scrye.com>
Date:   Sun Apr 15 13:55:56 2012 -0600

    Add workaround for /lib/java false positive. Fixes bug #806972

 rkhunter-1.3.8-fedoraconfig.patch |   12 ++++++++++--
 rkhunter.spec                     |    5 ++++-
 2 files changed, 14 insertions(+), 3 deletions(-)
---
diff --git a/rkhunter-1.3.8-fedoraconfig.patch b/rkhunter-1.3.8-fedoraconfig.patch
index f4c15b3..52bf2a8 100644
--- a/rkhunter-1.3.8-fedoraconfig.patch
+++ b/rkhunter-1.3.8-fedoraconfig.patch
@@ -1,6 +1,6 @@
 diff -Nur rkhunter-1.3.8.orig/files/rkhunter.conf rkhunter-1.3.8/files/rkhunter.conf
 --- rkhunter-1.3.8.orig/files/rkhunter.conf	2010-11-13 13:25:22.000000000 -0700
-+++ rkhunter-1.3.8/files/rkhunter.conf	2012-01-27 20:41:00.295582744 -0700
++++ rkhunter-1.3.8/files/rkhunter.conf	2012-04-15 13:50:44.806317780 -0600
 @@ -94,16 +94,19 @@
  # sure that the directory permissions are tight.
  #
@@ -174,7 +174,15 @@ diff -Nur rkhunter-1.3.8.orig/files/rkhunter.conf rkhunter-1.3.8/files/rkhunter.
  
  #
  # Directory for temporary files. A memory-based one is better (faster).
-@@ -976,3 +1031,5 @@
+@@ -818,6 +873,7 @@
+ # The options may be specified more than once.
+ #
+ #RTKT_DIR_WHITELIST=""
++RTKT_DIR_WHITELIST=/lib/java
+ #RTKT_FILE_WHITELIST=""
+ 
+ #
+@@ -976,3 +1032,5 @@
  # both programs, then disable the 'hidden_procs' test.
  #
  #DISABLE_UNHIDE=0
diff --git a/rkhunter.spec b/rkhunter.spec
index 8c80be9..c1af810 100644
--- a/rkhunter.spec
+++ b/rkhunter.spec
@@ -1,6 +1,6 @@
 Name:           rkhunter
 Version:        1.3.8
-Release:        14%{?dist}
+Release:        15%{?dist}
 Summary:        A host-based tool to scan for rootkits, backdoors and local exploits
 
 Group:          Applications/System
@@ -101,6 +101,9 @@ EOF
 %{_mandir}/man8/*
 
 %changelog
+* Sun Apr 15 2012 Kevin Fenzi <kevin at scrye.com> 1.3.8-15
+- Add workaround for /lib/java false positive. Fixes bug #806972
+
 * Wed Feb  8 2012 Kay Sievers <kay at redhat.com> - 1.3.8-14
 - modutils are for Linux 2.4 and no longer provided; depend on kmod

More information about the scm-commits mailing list