Changes - j0ke.net Open Build Service

Changes of Revision 22

[-] [+]	Changed	rkhunter.spec
@@ -9,7 +9,7 @@ Autoreqprov: on Summary: Rootkit Scans for Rootkits, Backdoors, and Local Exploits Version: 1.3.6 -Release: 3 +Release: 4 Source0: http://downloads.rootkit.nl/%{realname}-%{version}.tar.bz2 #Patch0: %{realname}-10.0_os.dat.patch Patch1: %{realname}-config-%{version}.patch @@ -93,6 +93,9 @@ %attr(755,root,root) %{_sysconfdir}/cron.daily/ix-rkhunter %changelog -n rkhunter +* Mon Dec 20 2010 Carsten Schoene <cs@linux-administrator.com> - 1.3.6-4 +- updated script whitelist with files for ksplice + * Wed May 05 2010 Carsten Schoene <cs@linux-administrator.com> - 1.3.6-3 - updated rkhunter configuration
[-] [+]	Changed	rkhunter-config-1.3.6.patch ^
@@ -1,5 +1,5 @@ --- rkhunter-1.3.6.orig/files/rkhunter.conf 2009-11-28 23:13:19.000000000 +0100 -+++ rkhunter-1.3.6/files/rkhunter.conf 2010-04-22 10:29:12.878085047 +0200 ++++ rkhunter-1.3.6/files/rkhunter.conf 2010-12-20 10:14:25.799319991 +0100 @@ -71,7 +71,7 @@ # NOTE: This option should be present in the configuration file. # @@ -27,24 +27,25 @@ # # It is possible that a file which is part of a package may be modified -@@ -392,10 +392,12 @@ +@@ -392,9 +392,14 @@ # Allow the specified commands to be scripts. # One command per line (use multiple SCRIPTWHITELIST lines). # -#SCRIPTWHITELIST=/sbin/ifup -#SCRIPTWHITELIST=/sbin/ifdown -#SCRIPTWHITELIST=/usr/bin/groups -- +SCRIPTWHITELIST=/sbin/ifup +SCRIPTWHITELIST=/sbin/ifdown +SCRIPTWHITELIST=/usr/bin/groups +SCRIPTWHITELIST=/usr/bin/whatis +SCRIPTWHITELIST=/usr/bin/ldd +SCRIPTWHITELIST=/usr/bin/GET ++SCRIPTWHITELIST=/sbin/depmod.ksplice ++SCRIPTWHITELIST=/sbin/modprobe.ksplice + # # Allow the specified commands to have the immutable attribute set. - # One command per line (use multiple IMMUTWHITELIST lines). -@@ -406,11 +408,11 @@ +@@ -406,11 +411,11 @@ # Allow the specified hidden directories. # One directory per line (use multiple ALLOWHIDDENDIR lines). # @@ -59,7 +60,7 @@ #ALLOWHIDDENDIR=/dev/.initramfs #ALLOWHIDDENDIR=/dev/.SRC-unix #ALLOWHIDDENDIR=/dev/.mdadm -@@ -420,15 +422,15 @@ +@@ -420,15 +425,15 @@ # One file per line (use multiple ALLOWHIDDENFILE lines). # #ALLOWHIDDENFILE=/etc/.java @@ -79,7 +80,7 @@ #ALLOWHIDDENFILE=/usr/lib/.libfipscheck.so.1.1.0.hmac #ALLOWHIDDENFILE=/usr/lib/.libfipscheck.so.1.hmac #ALLOWHIDDENFILE=/usr/lib/.libgcrypt.so.11.hmac -@@ -436,7 +438,7 @@ +@@ -436,7 +441,7 @@ #ALLOWHIDDENFILE=/usr/lib/hmaccalc/sha256hmac.hmac #ALLOWHIDDENFILE=/usr/lib/hmaccalc/sha384hmac.hmac #ALLOWHIDDENFILE=/usr/lib/hmaccalc/sha512hmac.hmac @@ -88,7 +89,7 @@ # # Allow the specified processes to use deleted files. -@@ -546,7 +548,12 @@ +@@ -546,7 +551,12 @@ # Only one service (file) per line (use multiple XINETD_ALLOWED_SVC lines). # #XINETD_ALLOWED_SVC=/etc/xinetd.d/echo @@ -102,7 +103,7 @@ # # This option tells rkhunter the local system startup file pathnames. # It is a space-separated list of files and directories. The directories -@@ -605,7 +612,7 @@ +@@ -605,7 +615,7 @@ # # Note above that for the Apache web server, the name 'httpd' is used. #