[rkhunter] Add /etc/.java to whitelist. Fixes bug #770972
Kevin Fenzi
kevin at fedoraproject.org
Sat Jan 7 01:30:58 UTC 2012
commit a39421eb5395dbbffc8f02e30df74df5ad933c6f
Author: Kevin Fenzi <kevin at scrye.com>
Date: Fri Jan 6 18:30:54 2012 -0700
Add /etc/.java to whitelist. Fixes bug #770972
rkhunter-1.3.8-fedoraconfig.patch | 11 +++++++++--
rkhunter.spec | 5 ++++-
2 files changed, 13 insertions(+), 3 deletions(-)
---
diff --git a/rkhunter-1.3.8-fedoraconfig.patch b/rkhunter-1.3.8-fedoraconfig.patch
index e7c17b0..2313181 100644
--- a/rkhunter-1.3.8-fedoraconfig.patch
+++ b/rkhunter-1.3.8-fedoraconfig.patch
@@ -1,6 +1,6 @@
diff -Nur rkhunter-1.3.8.orig/files/rkhunter.conf rkhunter-1.3.8/files/rkhunter.conf
--- rkhunter-1.3.8.orig/files/rkhunter.conf 2010-11-13 13:25:22.000000000 -0700
-+++ rkhunter-1.3.8/files/rkhunter.conf 2011-11-25 19:28:58.535501320 -0700
++++ rkhunter-1.3.8/files/rkhunter.conf 2012-01-06 17:55:59.131669432 -0700
@@ -94,16 +94,19 @@
# sure that the directory permissions are tight.
#
@@ -94,7 +94,14 @@ diff -Nur rkhunter-1.3.8.orig/files/rkhunter.conf rkhunter-1.3.8/files/rkhunter.
#
# Allow the specified commands to have the immutable attribute set.
-@@ -495,6 +505,18 @@
+@@ -489,12 +499,24 @@
+ # The option may be specified more than once. The option
+ # may use wildcard characters.
+ #
+-#ALLOWHIDDENDIR="/etc/.java"
++ALLOWHIDDENDIR="/etc/.java"
+ #ALLOWHIDDENDIR="/dev/.udev /dev/.udevdb /dev/.udev.tdb"
+ #ALLOWHIDDENDIR="/dev/.static"
#ALLOWHIDDENDIR="/dev/.initramfs"
#ALLOWHIDDENDIR="/dev/.SRC-unix"
#ALLOWHIDDENDIR="/dev/.mdadm"
diff --git a/rkhunter.spec b/rkhunter.spec
index 8653327..a9c1590 100644
--- a/rkhunter.spec
+++ b/rkhunter.spec
@@ -1,6 +1,6 @@
Name: rkhunter
Version: 1.3.8
-Release: 11%{?dist}
+Release: 12%{?dist}
Summary: A host-based tool to scan for rootkits, backdoors and local exploits
Group: Applications/System
@@ -101,6 +101,9 @@ EOF
%{_mandir}/man8/*
%changelog
+* Fri Jan 06 2012 Kevin Fenzi <kevin at scrye.com> 1.3.8-12
+- Add /etc/.java to whitelist. Fixes bug #770972
+
* Fri Nov 25 2011 Kevin Fenzi <kevin at scrye.com> - 1.3.8-11
- Add /usr/share/man/man5/.k5identity.5.gz to whitelisted hidden files.
More information about the scm-commits
mailing list