rpms/rkhunter/EL-5 rkhunter-1.3.6-fedoraconfig.patch, NONE, 1.1 rkhunter.spec, 1.18, 1.19 sources, 1.10, 1.11 .cvsignore, 1.9, 1.10 rkhunter-1.3.2.tar.gz.sha1.txt, 1.1, NONE rkhunter-1.3.4-fedoraconfig.patch, 1.2, NONE
Kevin Fenzi
kevin at fedoraproject.org
Sun Dec 6 19:47:47 UTC 2009
Author: kevin
Update of /cvs/extras/rpms/rkhunter/EL-5
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv12292
Modified Files:
rkhunter.spec sources .cvsignore
Added Files:
rkhunter-1.3.6-fedoraconfig.patch
Removed Files:
rkhunter-1.3.2.tar.gz.sha1.txt
rkhunter-1.3.4-fedoraconfig.patch
Log Message:
Disable apps check by default - bug #543065
Update to 1.3.6
rkhunter-1.3.6-fedoraconfig.patch:
rkhunter.conf | 81 ++++++++++++++++++++++++++++++----------------------------
1 file changed, 42 insertions(+), 39 deletions(-)
--- NEW FILE rkhunter-1.3.6-fedoraconfig.patch ---
diff -Nur rkhunter-1.3.6.orig/files/rkhunter.conf rkhunter-1.3.6/files/rkhunter.conf
--- rkhunter-1.3.6.orig/files/rkhunter.conf 2009-11-28 15:13:19.000000000 -0700
+++ rkhunter-1.3.6/files/rkhunter.conf 2009-12-01 17:43:15.000000000 -0700
@@ -71,7 +71,7 @@
# NOTE: This option should be present in the configuration file.
#
#MAIL-ON-WARNING=me at mydomain root at mydomain
-MAIL-ON-WARNING=""
+MAIL-ON-WARNING="root at localhost"
#
# Specify the mail command to use if MAIL-ON-WARNING is set.
@@ -87,17 +87,17 @@
# important files will be written to this directory, so be
# sure that the directory permissions are tight.
#
-#TMPDIR=/var/lib/rkhunter/tmp
+TMPDIR=/var/lib/rkhunter
#
# Specify the database directory to use.
#
-#DBDIR=/var/lib/rkhunter/db
+DBDIR=/var/lib/rkhunter/db
#
# Specify the script directory to use.
#
-#SCRIPTDIR=/usr/local/lib/rkhunter/scripts
+SCRIPTDIR=/usr/share/rkhunter/scripts
#
# Specify the root directory to use.
@@ -138,13 +138,13 @@
#
# NOTE: This option should be present in the configuration file.
#
-LOGFILE=/var/log/rkhunter.log
+LOGFILE=/var/log/rkhunter/rkhunter.log
#
# Set the following option to 1 if the log file is to be appended to
# whenever rkhunter is run.
#
-APPEND_LOG=0
+APPEND_LOG=1
#
# Set the following option to 1 if the log file is to be copied when
@@ -166,7 +166,7 @@
# Setting the value to 'none', or just leaving the option commented out,
# disables the use of syslog.
#
-#USE_SYSLOG=authpriv.notice
+USE_SYSLOG=authpriv.notice
#
# Set the following option to 1 if the second colour set is to be used.
@@ -196,7 +196,7 @@
# file, then a value here of 'yes' or 'unset' will not cause a warning.
# This option has a default value of 'no'.
#
-ALLOW_SSH_ROOT_USER=no
+ALLOW_SSH_ROOT_USER=yes
#
# Set this option to '1' to allow the use of the SSH-1 protocol, but note
@@ -236,7 +236,7 @@
# tests, the test names, and how rkhunter behaves when these options are used.
#
ENABLE_TESTS="all"
-DISABLE_TESTS="suspscan hidden_procs deleted_files packet_cap_apps"
+DISABLE_TESTS="apps suspscan hidden_procs deleted_files packet_cap_apps"
#
# The HASH_FUNC option can be used to specify the command to use
@@ -299,7 +299,7 @@
#
# Whenever this option is changed 'rkhunter --propupd' must be run.
#
-#PKGMGR=NONE
+PKGMGR=RPM
#
# It is possible that a file which is part of a package may be modified
@@ -392,9 +392,12 @@
# Allow the specified commands to be scripts.
# One command per line (use multiple SCRIPTWHITELIST lines).
#
-#SCRIPTWHITELIST=/sbin/ifup
-#SCRIPTWHITELIST=/sbin/ifdown
-#SCRIPTWHITELIST=/usr/bin/groups
+SCRIPTWHITELIST=/usr/bin/whatis
+SCRIPTWHITELIST=/usr/bin/ldd
+SCRIPTWHITELIST=/usr/bin/groups
+SCRIPTWHITELIST=/usr/bin/GET
+SCRIPTWHITELIST=/sbin/ifup
+SCRIPTWHITELIST=/sbin/ifdown
#
# Allow the specified commands to have the immutable attribute set.
@@ -406,37 +409,35 @@
# Allow the specified hidden directories.
# One directory per line (use multiple ALLOWHIDDENDIR lines).
#
-#ALLOWHIDDENDIR=/etc/.java
-#ALLOWHIDDENDIR=/dev/.udev
-#ALLOWHIDDENDIR=/dev/.udevdb
-#ALLOWHIDDENDIR=/dev/.udev.tdb
-#ALLOWHIDDENDIR=/dev/.static
-#ALLOWHIDDENDIR=/dev/.initramfs
-#ALLOWHIDDENDIR=/dev/.SRC-unix
-#ALLOWHIDDENDIR=/dev/.mdadm
+ALLOWHIDDENDIR=/dev/.udev
+ALLOWHIDDENDIR=/dev/.udevdb
+ALLOWHIDDENDIR=/dev/.udev.tdb
+ALLOWHIDDENDIR=/dev/.static
+ALLOWHIDDENDIR=/dev/.initramfs
+ALLOWHIDDENDIR=/dev/.SRC-unix
+ALLOWHIDDENDIR=/dev/.mdadm
#
# Allow the specified hidden files.
# One file per line (use multiple ALLOWHIDDENFILE lines).
#
-#ALLOWHIDDENFILE=/etc/.java
-#ALLOWHIDDENFILE=/usr/share/man/man1/..1.gz
+ALLOWHIDDENFILE=/usr/share/man/man1/..1.gz
#ALLOWHIDDENFILE=/etc/.pwd.lock
#ALLOWHIDDENFILE=/etc/.init.state
-#ALLOWHIDDENFILE=/lib/.libcrypto.so.0.9.8e.hmac
-#ALLOWHIDDENFILE=/lib/.libcrypto.so.6.hmac
-#ALLOWHIDDENFILE=/lib/.libssl.so.0.9.8e.hmac
-#ALLOWHIDDENFILE=/lib/.libssl.so.6.hmac
-#ALLOWHIDDENFILE=/usr/bin/.fipscheck.hmac
-#ALLOWHIDDENFILE=/usr/bin/.ssh.hmac
-#ALLOWHIDDENFILE=/usr/lib/.libfipscheck.so.1.1.0.hmac
-#ALLOWHIDDENFILE=/usr/lib/.libfipscheck.so.1.hmac
-#ALLOWHIDDENFILE=/usr/lib/.libgcrypt.so.11.hmac
-#ALLOWHIDDENFILE=/usr/lib/hmaccalc/sha1hmac.hmac
-#ALLOWHIDDENFILE=/usr/lib/hmaccalc/sha256hmac.hmac
-#ALLOWHIDDENFILE=/usr/lib/hmaccalc/sha384hmac.hmac
-#ALLOWHIDDENFILE=/usr/lib/hmaccalc/sha512hmac.hmac
-#ALLOWHIDDENFILE=/usr/sbin/.sshd.hmac
+ALLOWHIDDENFILE=/lib/.libcrypto.so.0.9.8e.hmac
+ALLOWHIDDENFILE=/lib/.libcrypto.so.6.hmac
+ALLOWHIDDENFILE=/lib/.libssl.so.0.9.8e.hmac
+ALLOWHIDDENFILE=/lib/.libssl.so.6.hmac
+ALLOWHIDDENFILE=/usr/bin/.fipscheck.hmac
+ALLOWHIDDENFILE=/usr/bin/.ssh.hmac
+ALLOWHIDDENFILE=/usr/lib*/.libfipscheck.so.1.1.0.hmac
+ALLOWHIDDENFILE=/usr/lib*/.libfipscheck.so.1.hmac
+ALLOWHIDDENFILE=/usr/lib*/.libgcrypt.so.11.hmac
+ALLOWHIDDENFILE=/usr/lib*/hmaccalc/sha1hmac.hmac
+ALLOWHIDDENFILE=/usr/lib*/hmaccalc/sha256hmac.hmac
+ALLOWHIDDENFILE=/usr/lib*/hmaccalc/sha384hmac.hmac
+ALLOWHIDDENFILE=/usr/lib*/hmaccalc/sha512hmac.hmac
+ALLOWHIDDENFILE=/usr/sbin/.sshd.hmac
#
# Allow the specified processes to use deleted files.
@@ -495,7 +496,7 @@
# ALLOWDEVFILE lines).
#
#ALLOWDEVFILE=/dev/abc
-#ALLOWDEVFILE=/dev/shm/pulse-shm-*
+ALLOWDEVFILE=/dev/shm/pulse-shm-*
#ALLOWDEVFILE=/dev/shm/sem.ADBE_ReadPrefs_*
#ALLOWDEVFILE=/dev/shm/sem.ADBE_REL_*
#ALLOWDEVFILE=/dev/shm/sem.ADBE_WritePrefs_*
@@ -536,7 +537,7 @@
# This setting tells rkhunter where the xinetd configuration
# file is located.
#
-#XINETD_CONF_PATH=/etc/xinetd.conf
+XINETD_CONF_PATH=/etc/xinetd.conf
#
# Allow the following enabled xinetd services. Whilst it would be
@@ -822,3 +823,5 @@
# Enabling this feature implies you have the knowledge to interprete results properly.
#
#SCANROOTKITMODE=THOROUGH
+
+INSTALLDIR="/usr"
Index: rkhunter.spec
===================================================================
RCS file: /cvs/extras/rpms/rkhunter/EL-5/rkhunter.spec,v
retrieving revision 1.18
retrieving revision 1.19
diff -u -p -r1.18 -r1.19
--- rkhunter.spec 28 Oct 2009 03:21:05 -0000 1.18
+++ rkhunter.spec 6 Dec 2009 19:47:47 -0000 1.19
@@ -1,16 +1,15 @@
Name: rkhunter
-Version: 1.3.4
-Release: 8%{?dist}
+Version: 1.3.6
+Release: 2%{?dist}
Summary: A host-based tool to scan for rootkits, backdoors and local exploits
Group: Applications/System
License: GPLv2+
URL: http://rkhunter.sourceforge.net/
Source0: http://downloads.sourceforge.net/rkhunter/rkhunter-%{version}.tar.gz
-Source1: http://downloads.sourceforge.net/rkhunter/rkhunter-%{version}.tar.gz.sha1.txt
Source2: 01-rkhunter
Source3: rkhunter.sysconfig
-Patch0: rkhunter-1.3.4-fedoraconfig.patch
+Patch0: rkhunter-1.3.6-fedoraconfig.patch
BuildArch: noarch
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
@@ -56,27 +55,19 @@ EOF
%{__install} -m755 -p files/%{name} ${RPM_BUILD_ROOT}%{_bindir}/
%{__install} -m644 -p files/backdoorports.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/
-%{__install} -m644 -p files/defaulthashes.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/
-%{__install} -m644 -p files/md5blacklist.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/
%{__install} -m644 -p files/mirrors.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/
-%{__install} -m644 -p files/os.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/
%{__install} -m644 -p files/programs_bad.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/
-%{__install} -m644 -p files/programs_good.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/
%{__install} -m644 -p files/i18n/cn ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/i18n/
%{__install} -m644 -p files/i18n/en ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/i18n/
%{__install} -m644 -p files/CHANGELOG ${RPM_BUILD_ROOT}%{_docdir}/%{name}-%{version}/
%{__install} -m644 -p files/LICENSE ${RPM_BUILD_ROOT}%{_docdir}/%{name}-%{version}/
%{__install} -m644 -p files/README ${RPM_BUILD_ROOT}%{_docdir}/%{name}-%{version}/
-%{__install} -m644 -p files/WISHLIST ${RPM_BUILD_ROOT}%{_docdir}/%{name}-%{version}/
%{__install} -m755 -p files/check_modules.pl ${RPM_BUILD_ROOT}%{_datadir}/%{name}/scripts/
-%{__install} -m755 -p files/check_port.pl ${RPM_BUILD_ROOT}%{_datadir}/%{name}/scripts/
-%{__install} -m755 -p files/check_update.sh ${RPM_BUILD_ROOT}%{_datadir}/%{name}/scripts/
%{__install} -m644 -p files/*.8 ${RPM_BUILD_ROOT}%{_mandir}/man8/
# Don't ship these unless we want to Require the perl modules
#%{__install} -m750 -p files/filehashmd5.pl ${RPM_BUILD_ROOT}%{_prefix}/lib/%{name}/scripts/
#%{__install} -m750 -p files/filehashsha1.pl ${RPM_BUILD_ROOT}%{_prefix}/lib/%{name}/scripts/
-%{__install} -m755 -p files/showfiles.pl ${RPM_BUILD_ROOT}%{_datadir}/%{name}/scripts/
%{__install} -m755 -p %{SOURCE2} ${RPM_BUILD_ROOT}%{_sysconfdir}/cron.daily/%{name}
%{__install} -m644 -p %{name}.logrotate ${RPM_BUILD_ROOT}%{_sysconfdir}/logrotate.d/%{name}
%{__install} -m640 -p files/%{name}.conf ${RPM_BUILD_ROOT}%{_sysconfdir}/
@@ -104,6 +95,15 @@ EOF
%{_mandir}/man8/*
%changelog
+* Tue Dec 01 2009 Kevin Fenzi <kevin at tummy.com> - 1.3.6-2
+- Disable apps check by default - bug #543065
+
+* Sun Nov 29 2009 Kevin Fenzi <kevin at tummy.com> - 1.3.6-1
+- Update to 1.3.6
+
+* Thu Nov 26 2009 Kevin Fenzi <kevin at tummy.com> - 1.3.4-9
+- Add exception for /dev/.mdadm file - bug #539405
+
* Sun Jul 26 2009 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.3.4-8
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
Index: sources
===================================================================
RCS file: /cvs/extras/rpms/rkhunter/EL-5/sources,v
retrieving revision 1.10
retrieving revision 1.11
diff -u -p -r1.10 -r1.11
--- sources 12 Mar 2009 04:47:10 -0000 1.10
+++ sources 6 Dec 2009 19:47:47 -0000 1.11
@@ -1 +1 @@
-31eaacc4d01ad138d1a4283f105088e6 rkhunter-1.3.4.tar.gz
+41bd92b1ea0803401c4a45215c8293a2 rkhunter-1.3.6.tar.gz
Index: .cvsignore
===================================================================
RCS file: /cvs/extras/rpms/rkhunter/EL-5/.cvsignore,v
retrieving revision 1.9
retrieving revision 1.10
diff -u -p -r1.9 -r1.10
--- .cvsignore 12 Mar 2009 04:47:10 -0000 1.9
+++ .cvsignore 6 Dec 2009 19:47:47 -0000 1.10
@@ -1 +1 @@
-rkhunter-1.3.4.tar.gz
+rkhunter-1.3.6.tar.gz
--- rkhunter-1.3.2.tar.gz.sha1.txt DELETED ---
--- rkhunter-1.3.4-fedoraconfig.patch DELETED ---
More information about the scm-commits
mailing list