[Forensics-changes] [SCM] debian-forensics/rkhunter branch, master, updated. debian/1.3.8-10-4-g523b0c6
Julien Valroff
julien at kirya.net
Sat Jan 14 08:12:23 UTC 2012
The following commit has been merged in the master branch:
commit 523b0c6acffab645190e73a9ce0eee095333d65b
Author: Julien Valroff <julien at kirya.net>
Date: Sat Jan 14 09:12:16 2012 +0100
Removed /etc/.initramfs and /etc/.mdadm from the example hidden directories following to the /run transition
diff --git a/debian/changelog b/debian/changelog
index 7ce8927..e8c2ba2 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -4,8 +4,10 @@ rkhunter (1.3.8-11) unstable; urgency=low
out the file names used to build the file properties database
* Add commented entries for etckeeper hidden files and directories
(Closes: #655055)
+ * Removed /etc/.initramfs and /etc/.mdadm from the example hidden
+ directories following to the /run transition
- -- Julien Valroff <julien at debian.org> Sun, 08 Jan 2012 09:19:40 +0100
+ -- Julien Valroff <julien at debian.org> Sat, 14 Jan 2012 09:11:31 +0100
rkhunter (1.3.8-10) unstable; urgency=low
diff --git a/debian/patches/05_custom_conffile.diff b/debian/patches/05_custom_conffile.diff
index ad69fe6..eb98933 100644
--- a/debian/patches/05_custom_conffile.diff
+++ b/debian/patches/05_custom_conffile.diff
@@ -69,20 +69,20 @@ Forwarded: not-needed
#
# Allow the specified commands to have the immutable attribute set.
-@@ -490,11 +506,11 @@
+@@ -490,11 +506,9 @@
# may use wildcard characters.
#
#ALLOWHIDDENDIR="/etc/.java"
-#ALLOWHIDDENDIR="/dev/.udev /dev/.udevdb /dev/.udev.tdb"
#ALLOWHIDDENDIR="/dev/.static"
- #ALLOWHIDDENDIR="/dev/.initramfs"
+-#ALLOWHIDDENDIR="/dev/.initramfs"
#ALLOWHIDDENDIR="/dev/.SRC-unix"
- #ALLOWHIDDENDIR="/dev/.mdadm"
+-#ALLOWHIDDENDIR="/dev/.mdadm"
+#ALLOWHIDDENDIR="/etc/.etckeeper"
#
# Allow the specified hidden files to be whitelisted.
-@@ -519,6 +535,9 @@
+@@ -519,6 +533,9 @@
#ALLOWHIDDENFILE="/usr/lib/hmaccalc/sha384hmac.hmac"
#ALLOWHIDDENFILE="/usr/lib/hmaccalc/sha512hmac.hmac"
#ALLOWHIDDENFILE="/usr/sbin/.sshd.hmac"
@@ -92,7 +92,7 @@ Forwarded: not-needed
#
# Allow the specified processes to use deleted files. The
-@@ -532,8 +551,10 @@
+@@ -532,8 +549,10 @@
# may be specified more than once.
#
#ALLOWPROCDELFILE="/sbin/cardmgr /usr/sbin/gpm:/etc/X11/abc"
@@ -104,7 +104,7 @@ Forwarded: not-needed
#
# Allow the specified processes to listen on any network interface.
-@@ -544,7 +565,6 @@
+@@ -544,7 +563,6 @@
#ALLOWPROCLISTEN="/sbin/dhclient /usr/bin/dhcpcd"
#ALLOWPROCLISTEN="/usr/sbin/pppoe /usr/sbin/tcpdump"
#ALLOWPROCLISTEN="/usr/sbin/snort-plain"
@@ -112,7 +112,7 @@ Forwarded: not-needed
#
# Allow the specified network interfaces to be in promiscuous mode.
-@@ -644,7 +664,7 @@
+@@ -644,7 +662,7 @@
# The option may be specified more than once. The option may use
# wildcard characters.
#
@@ -121,7 +121,7 @@ Forwarded: not-needed
#
# This setting tells rkhunter the pathname to the file containing the
-@@ -665,7 +685,7 @@
+@@ -665,7 +683,7 @@
# NOTE: For *BSD systems you will probably need to use this option
# for the 'toor' account.
#
@@ -130,7 +130,7 @@ Forwarded: not-needed
#
# Allow the following accounts to have no password. NIS/YP entries do
-@@ -783,7 +803,7 @@
+@@ -783,7 +801,7 @@
# specified, then RKH will assume the O/S release information is on the
# first non-blank line of the file.
#
@@ -139,7 +139,7 @@ Forwarded: not-needed
#
# The following two options can be used to whitelist files and directories
-@@ -975,4 +995,6 @@
+@@ -975,4 +993,6 @@
# of 2 will disable the Ruby 'unhide.rb' program. The default value is 0. To disable
# both programs, then disable the 'hidden_procs' test.
#
--
debian-forensics/rkhunter
More information about the forensics-changes
mailing list