[Forensics-changes] [SCM] debian-forensics/rkhunter branch, master, updated. debian/1.3.8-9-1-g5164f09

Julien Valroff julien at kirya.net
Wed Oct 5 03:52:47 UTC 2011


The following commit has been merged in the master branch:
commit 5164f09828fc215e568735c04fa035c34dc18d4f
Author: Julien Valroff <julien at kirya.net>
Date:   Wed Oct 5 05:52:41 2011 +0200

    Remove all references to now inexistant /dev/.udev* directories in the default configuration (Closes: #644326)

diff --git a/debian/changelog b/debian/changelog
index fddfc6d..f45cd27 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+rkhunter (1.3.8-10) unstable; urgency=low
+
+  * Remove all references to now inexistant /dev/.udev* directories in the
+    default configuration (Closes: #644326) 
+
+ -- Julien Valroff <julien at debian.org>  Wed, 05 Oct 2011 05:51:11 +0200
+
 rkhunter (1.3.8-9) unstable; urgency=low
 
   * Actually recommend unhide.rb or unhide - fix an error in the previous
diff --git a/debian/patches/05_custom_conffile.diff b/debian/patches/05_custom_conffile.diff
index 5e1a715..37c655b 100644
--- a/debian/patches/05_custom_conffile.diff
+++ b/debian/patches/05_custom_conffile.diff
@@ -69,7 +69,15 @@ Forwarded: not-needed
  
  #
  # Allow the specified commands to have the immutable attribute set.
-@@ -519,6 +535,7 @@
+@@ -490,7 +506,6 @@
+ # may use wildcard characters.
+ #
+ #ALLOWHIDDENDIR="/etc/.java"
+-#ALLOWHIDDENDIR="/dev/.udev /dev/.udevdb /dev/.udev.tdb"
+ #ALLOWHIDDENDIR="/dev/.static"
+ #ALLOWHIDDENDIR="/dev/.initramfs"
+ #ALLOWHIDDENDIR="/dev/.SRC-unix"
+@@ -519,6 +534,7 @@
  #ALLOWHIDDENFILE="/usr/lib/hmaccalc/sha384hmac.hmac"
  #ALLOWHIDDENFILE="/usr/lib/hmaccalc/sha512hmac.hmac"
  #ALLOWHIDDENFILE="/usr/sbin/.sshd.hmac"
@@ -77,7 +85,7 @@ Forwarded: not-needed
  
  #
  # Allow the specified processes to use deleted files. The
-@@ -532,8 +549,10 @@
+@@ -532,8 +548,10 @@
  # may be specified more than once.
  #
  #ALLOWPROCDELFILE="/sbin/cardmgr /usr/sbin/gpm:/etc/X11/abc"
@@ -89,7 +97,7 @@ Forwarded: not-needed
  
  #
  # Allow the specified processes to listen on any network interface.
-@@ -544,7 +563,6 @@
+@@ -544,7 +562,6 @@
  #ALLOWPROCLISTEN="/sbin/dhclient /usr/bin/dhcpcd"
  #ALLOWPROCLISTEN="/usr/sbin/pppoe /usr/sbin/tcpdump"
  #ALLOWPROCLISTEN="/usr/sbin/snort-plain"
@@ -97,7 +105,7 @@ Forwarded: not-needed
  
  #
  # Allow the specified network interfaces to be in promiscuous mode.
-@@ -644,7 +662,7 @@
+@@ -644,7 +661,7 @@
  # The option may be specified more than once. The option may use
  # wildcard characters.
  #
@@ -106,7 +114,7 @@ Forwarded: not-needed
  
  #
  # This setting tells rkhunter the pathname to the file containing the
-@@ -665,7 +683,7 @@
+@@ -665,7 +682,7 @@
  # NOTE: For *BSD systems you will probably need to use this option
  # for the 'toor' account.
  #
@@ -115,7 +123,7 @@ Forwarded: not-needed
  
  #
  # Allow the following accounts to have no password. NIS/YP entries do
-@@ -783,7 +801,7 @@
+@@ -783,7 +800,7 @@
  # specified, then RKH will assume the O/S release information is on the
  # first non-blank line of the file.
  #
@@ -124,7 +132,7 @@ Forwarded: not-needed
  
  #
  # The following two options can be used to whitelist files and directories
-@@ -975,4 +993,6 @@
+@@ -975,4 +992,6 @@
  # of 2 will disable the Ruby 'unhide.rb' program. The default value is 0. To disable
  # both programs, then disable the 'hidden_procs' test.
  #

-- 
debian-forensics/rkhunter



More information about the forensics-changes mailing list