Bug#765898: rkhunter: default values of file/command/pathname exceptions
Christoph Anton Mitterer
calestyo at scientia.net
Sun Oct 19 01:10:19 UTC 2014
Regarding the defaults/example for pathnames/file/command exceptions you ship:
=> is no longer a script
=> maybe disable this, since it's not installed per default on debian systems
and leads to an error in rkhunter
=> this is just a symlink in debian to: /usr/lib/iceweasel/iceweaselo
=> while rkhunter will determine this automatically, it may still be nice to
set it to /etc/rsyslog.conf on Debian, since rsyslog is the default
Please consider to add:
=> part of the krb5-doc package
=> maybe it makes also sense un-comment from that line, since rkhunter
Recommneds unhide.rb and it's likely to be installed
See als bug #.
The following don't stricly fit to this bug, but since it's also about
the config file values and defaults:
=> which isn't contained in the upstream default rkhunter.conf.
Is this perhaps just a leftover?
=> I probably would suggest to set these to:
so that people get better informed about any warnings found by rkhunter
=> As part of crypto strengthening, I'd probably suggest to set this to:
Sure, SHA1 isn't broken yet... but it doesn't really cost us anything
to use something which is likely safer than it.
There's also an upstream bug about this, though:
More information about the forensics-devel