[rkhunter/el6] Add missing EXISTWHITELIST for /var/log/pki-ca/system.
Kevin Fenzi
kevin at fedoraproject.org
Fri Jun 6 18:46:26 UTC 2014
commit 9b6617b25be11954299f8b24081663323f788309
Author: Kevin Fenzi <kevin at scrye.com>
Date: Fri Jun 6 12:46:29 2014 -0600
Add missing EXISTWHITELIST for /var/log/pki-ca/system.
rkhunter-1.4.2-fedoraconfig.patch | 19 ++++++++++---------
rkhunter.spec | 5 ++++-
2 files changed, 14 insertions(+), 10 deletions(-)
---
diff --git a/rkhunter-1.4.2-fedoraconfig.patch b/rkhunter-1.4.2-fedoraconfig.patch
index 972a193..3056168 100644
--- a/rkhunter-1.4.2-fedoraconfig.patch
+++ b/rkhunter-1.4.2-fedoraconfig.patch
@@ -1,6 +1,6 @@
diff -Nur rkhunter-1.4.2.orig/files/rkhunter.conf rkhunter-1.4.2/files/rkhunter.conf
--- rkhunter-1.4.2.orig/files/rkhunter.conf 2014-01-25 14:29:51.000000000 -0700
-+++ rkhunter-1.4.2/files/rkhunter.conf 2014-05-30 14:16:47.326444055 -0600
++++ rkhunter-1.4.2/files/rkhunter.conf 2014-06-06 12:41:46.353437955 -0600
@@ -155,6 +155,7 @@
# default directory beneath the installation directory.
#
@@ -76,10 +76,11 @@ diff -Nur rkhunter-1.4.2.orig/files/rkhunter.conf rkhunter-1.4.2/files/rkhunter.
#
# It is possible that a file, which is part of a package, may have been
-@@ -545,6 +553,11 @@
+@@ -545,6 +553,12 @@
# The default value is the null string.
#
#EXISTWHITELIST=""
++EXISTWHITELIST=/var/log/pki-ca/system
+# FreeIPA Certificate Authority
+EXISTWHITELIST=/var/log/pki/pki-tomcat/ca/system
+# Some non default installed files we check
@@ -88,7 +89,7 @@ diff -Nur rkhunter-1.4.2.orig/files/rkhunter.conf rkhunter-1.4.2/files/rkhunter.
#
# Whitelist various attributes of the specified file. The attributes are those
-@@ -575,6 +588,12 @@
+@@ -575,6 +589,12 @@
# The default value is the null string.
#
#SCRIPTWHITELIST=/usr/bin/groups
@@ -101,7 +102,7 @@ diff -Nur rkhunter-1.4.2.orig/files/rkhunter.conf rkhunter-1.4.2/files/rkhunter.
#
# Allow the specified file to have the immutable attribute set.
-@@ -602,9 +621,24 @@
+@@ -602,9 +622,24 @@
# The default value is the null string.
#
#ALLOWHIDDENDIR=/etc/.java
@@ -126,7 +127,7 @@ diff -Nur rkhunter-1.4.2.orig/files/rkhunter.conf rkhunter-1.4.2/files/rkhunter.
#
# Allow the specified hidden file to be whitelisted.
-@@ -614,12 +648,38 @@
+@@ -614,12 +649,38 @@
# The default value is the null string.
#
#ALLOWHIDDENFILE=/usr/share/man/man1/..1.gz
@@ -165,7 +166,7 @@ diff -Nur rkhunter-1.4.2.orig/files/rkhunter.conf rkhunter-1.4.2/files/rkhunter.
#
# Allow the specified process to use deleted files. The process name may be
-@@ -681,6 +741,22 @@
+@@ -681,6 +742,22 @@
#
#ALLOWDEVFILE=/dev/shm/pulse-shm-*
#ALLOWDEVFILE=/dev/shm/sem.ADBE_*
@@ -188,7 +189,7 @@ diff -Nur rkhunter-1.4.2.orig/files/rkhunter.conf rkhunter-1.4.2/files/rkhunter.
#
# This option is used to indicate if the Phalanx2 test is to perform a basic
-@@ -854,6 +930,7 @@
+@@ -854,6 +931,7 @@
# The default value is the '/tmp' and '/var/tmp' directories.
#
#SUSPSCAN_DIRS=/tmp /var/tmp
@@ -196,7 +197,7 @@ diff -Nur rkhunter-1.4.2.orig/files/rkhunter.conf rkhunter-1.4.2/files/rkhunter.
#
# This option specifies the directory for temporary files used by the
-@@ -1004,6 +1081,10 @@
+@@ -1004,6 +1082,10 @@
#
#RTKT_DIR_WHITELIST=""
#RTKT_FILE_WHITELIST=""
@@ -207,7 +208,7 @@ diff -Nur rkhunter-1.4.2.orig/files/rkhunter.conf rkhunter-1.4.2/files/rkhunter.
#
# The following option can be used to whitelist shared library files that would
-@@ -1222,3 +1303,5 @@
+@@ -1222,3 +1304,5 @@
#
#EMPTY_LOGFILES=""
#MISSING_LOGFILES=""
diff --git a/rkhunter.spec b/rkhunter.spec
index a91d60a..75d9588 100644
--- a/rkhunter.spec
+++ b/rkhunter.spec
@@ -1,6 +1,6 @@
Name: rkhunter
Version: 1.4.2
-Release: 2%{?dist}
+Release: 3%{?dist}
Summary: A host-based tool to scan for rootkits, backdoors and local exploits
Group: Applications/System
@@ -98,6 +98,9 @@ EOF
%{_mandir}/man8/*
%changelog
+* Fri Jun 06 2014 Kevin Fenzi <kevin at scrye.com> 1.4.2-3
+- Add missing EXISTWHITELIST for /var/log/pki-ca/system.
+
* Fri May 30 2014 Kevin Fenzi <kevin at scrye.com> 1.4.2-2
- Add patch to fix ipcs command in non en locales
- Add config to fix freeipa installs.
More information about the scm-commits
mailing list