[rkhunter/el6] Add missing EXISTWHITELIST for /var/log/pki-ca/system.

Kevin Fenzi kevin at fedoraproject.org
Fri Jun 6 18:46:26 UTC 2014 

commit 9b6617b25be11954299f8b24081663323f788309
Author: Kevin Fenzi <kevin at scrye.com>
Date:   Fri Jun 6 12:46:29 2014 -0600

    Add missing EXISTWHITELIST for /var/log/pki-ca/system.

 rkhunter-1.4.2-fedoraconfig.patch |   19 ++++++++++---------
 rkhunter.spec                     |    5 ++++-
 2 files changed, 14 insertions(+), 10 deletions(-)
---
diff --git a/rkhunter-1.4.2-fedoraconfig.patch b/rkhunter-1.4.2-fedoraconfig.patch
index 972a193..3056168 100644
--- a/rkhunter-1.4.2-fedoraconfig.patch
+++ b/rkhunter-1.4.2-fedoraconfig.patch
@@ -1,6 +1,6 @@
 diff -Nur rkhunter-1.4.2.orig/files/rkhunter.conf rkhunter-1.4.2/files/rkhunter.conf
 --- rkhunter-1.4.2.orig/files/rkhunter.conf	2014-01-25 14:29:51.000000000 -0700
-+++ rkhunter-1.4.2/files/rkhunter.conf	2014-05-30 14:16:47.326444055 -0600
++++ rkhunter-1.4.2/files/rkhunter.conf	2014-06-06 12:41:46.353437955 -0600
 @@ -155,6 +155,7 @@
  # default directory beneath the installation directory.
  #
@@ -76,10 +76,11 @@ diff -Nur rkhunter-1.4.2.orig/files/rkhunter.conf rkhunter-1.4.2/files/rkhunter.
  
  #
  # It is possible that a file, which is part of a package, may have been
-@@ -545,6 +553,11 @@
+@@ -545,6 +553,12 @@
  # The default value is the null string.
  #
  #EXISTWHITELIST=""
++EXISTWHITELIST=/var/log/pki-ca/system
 +# FreeIPA Certificate Authority
 +EXISTWHITELIST=/var/log/pki/pki-tomcat/ca/system
 +# Some non default installed files we check
@@ -88,7 +89,7 @@ diff -Nur rkhunter-1.4.2.orig/files/rkhunter.conf rkhunter-1.4.2/files/rkhunter.
  
  #
  # Whitelist various attributes of the specified file. The attributes are those
-@@ -575,6 +588,12 @@
+@@ -575,6 +589,12 @@
  # The default value is the null string.
  #
  #SCRIPTWHITELIST=/usr/bin/groups
@@ -101,7 +102,7 @@ diff -Nur rkhunter-1.4.2.orig/files/rkhunter.conf rkhunter-1.4.2/files/rkhunter.
  
  #
  # Allow the specified file to have the immutable attribute set.
-@@ -602,9 +621,24 @@
+@@ -602,9 +622,24 @@
  # The default value is the null string.
  #
  #ALLOWHIDDENDIR=/etc/.java
@@ -126,7 +127,7 @@ diff -Nur rkhunter-1.4.2.orig/files/rkhunter.conf rkhunter-1.4.2/files/rkhunter.
  
  #
  # Allow the specified hidden file to be whitelisted.
-@@ -614,12 +648,38 @@
+@@ -614,12 +649,38 @@
  # The default value is the null string.
  # 
  #ALLOWHIDDENFILE=/usr/share/man/man1/..1.gz
@@ -165,7 +166,7 @@ diff -Nur rkhunter-1.4.2.orig/files/rkhunter.conf rkhunter-1.4.2/files/rkhunter.
  
  #
  # Allow the specified process to use deleted files. The process name may be
-@@ -681,6 +741,22 @@
+@@ -681,6 +742,22 @@
  #
  #ALLOWDEVFILE=/dev/shm/pulse-shm-*
  #ALLOWDEVFILE=/dev/shm/sem.ADBE_*
@@ -188,7 +189,7 @@ diff -Nur rkhunter-1.4.2.orig/files/rkhunter.conf rkhunter-1.4.2/files/rkhunter.
  
  #
  # This option is used to indicate if the Phalanx2 test is to perform a basic
-@@ -854,6 +930,7 @@
+@@ -854,6 +931,7 @@
  # The default value is the '/tmp' and '/var/tmp' directories.
  #
  #SUSPSCAN_DIRS=/tmp /var/tmp
@@ -196,7 +197,7 @@ diff -Nur rkhunter-1.4.2.orig/files/rkhunter.conf rkhunter-1.4.2/files/rkhunter.
  
  #
  # This option specifies the directory for temporary files used by the
-@@ -1004,6 +1081,10 @@
+@@ -1004,6 +1082,10 @@
  #
  #RTKT_DIR_WHITELIST=""
  #RTKT_FILE_WHITELIST=""
@@ -207,7 +208,7 @@ diff -Nur rkhunter-1.4.2.orig/files/rkhunter.conf rkhunter-1.4.2/files/rkhunter.
  
  #
  # The following option can be used to whitelist shared library files that would
-@@ -1222,3 +1303,5 @@
+@@ -1222,3 +1304,5 @@
  #
  #EMPTY_LOGFILES=""
  #MISSING_LOGFILES=""
diff --git a/rkhunter.spec b/rkhunter.spec
index a91d60a..75d9588 100644
--- a/rkhunter.spec
+++ b/rkhunter.spec
@@ -1,6 +1,6 @@
 Name:           rkhunter
 Version:        1.4.2
-Release:        2%{?dist}
+Release:        3%{?dist}
 Summary:        A host-based tool to scan for rootkits, backdoors and local exploits
 
 Group:          Applications/System
@@ -98,6 +98,9 @@ EOF
 %{_mandir}/man8/*
 
 %changelog
+* Fri Jun 06 2014 Kevin Fenzi <kevin at scrye.com> 1.4.2-3
+- Add missing EXISTWHITELIST for /var/log/pki-ca/system.
+
 * Fri May 30 2014 Kevin Fenzi <kevin at scrye.com> 1.4.2-2
 - Add patch to fix ipcs command in non en locales
 - Add config to fix freeipa installs.

More information about the scm-commits mailing list