[rkhunter] Add workaround for /lib/java false positive. Fixes bug #806972
Kevin Fenzi
kevin at fedoraproject.org
Sun Apr 15 19:56:01 UTC 2012
commit c9e5bec9a7bb860b6a2201e7f8b2c19033aa665e
Author: Kevin Fenzi <kevin at scrye.com>
Date: Sun Apr 15 13:55:56 2012 -0600
Add workaround for /lib/java false positive. Fixes bug #806972
rkhunter-1.3.8-fedoraconfig.patch | 12 ++++++++++--
rkhunter.spec | 5 ++++-
2 files changed, 14 insertions(+), 3 deletions(-)
---
diff --git a/rkhunter-1.3.8-fedoraconfig.patch b/rkhunter-1.3.8-fedoraconfig.patch
index f4c15b3..52bf2a8 100644
--- a/rkhunter-1.3.8-fedoraconfig.patch
+++ b/rkhunter-1.3.8-fedoraconfig.patch
@@ -1,6 +1,6 @@
diff -Nur rkhunter-1.3.8.orig/files/rkhunter.conf rkhunter-1.3.8/files/rkhunter.conf
--- rkhunter-1.3.8.orig/files/rkhunter.conf 2010-11-13 13:25:22.000000000 -0700
-+++ rkhunter-1.3.8/files/rkhunter.conf 2012-01-27 20:41:00.295582744 -0700
++++ rkhunter-1.3.8/files/rkhunter.conf 2012-04-15 13:50:44.806317780 -0600
@@ -94,16 +94,19 @@
# sure that the directory permissions are tight.
#
@@ -174,7 +174,15 @@ diff -Nur rkhunter-1.3.8.orig/files/rkhunter.conf rkhunter-1.3.8/files/rkhunter.
#
# Directory for temporary files. A memory-based one is better (faster).
-@@ -976,3 +1031,5 @@
+@@ -818,6 +873,7 @@
+ # The options may be specified more than once.
+ #
+ #RTKT_DIR_WHITELIST=""
++RTKT_DIR_WHITELIST=/lib/java
+ #RTKT_FILE_WHITELIST=""
+
+ #
+@@ -976,3 +1032,5 @@
# both programs, then disable the 'hidden_procs' test.
#
#DISABLE_UNHIDE=0
diff --git a/rkhunter.spec b/rkhunter.spec
index 8c80be9..c1af810 100644
--- a/rkhunter.spec
+++ b/rkhunter.spec
@@ -1,6 +1,6 @@
Name: rkhunter
Version: 1.3.8
-Release: 14%{?dist}
+Release: 15%{?dist}
Summary: A host-based tool to scan for rootkits, backdoors and local exploits
Group: Applications/System
@@ -101,6 +101,9 @@ EOF
%{_mandir}/man8/*
%changelog
+* Sun Apr 15 2012 Kevin Fenzi <kevin at scrye.com> 1.3.8-15
+- Add workaround for /lib/java false positive. Fixes bug #806972
+
* Wed Feb 8 2012 Kay Sievers <kay at redhat.com> - 1.3.8-14
- modutils are for Linux 2.4 and no longer provided; depend on kmod
More information about the scm-commits
mailing list