rpms/rkhunter/EL-5 rkhunter.spec,1.13,1.14
Kevin Fenzi (kevin)
fedora-extras-commits at redhat.com
Sat May 17 22:00:09 UTC 2008
Author: kevin
Update of /cvs/extras/rpms/rkhunter/EL-5
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv15091
Modified Files:
rkhunter.spec
Log Message:
Change cron to run after prelink - bug #438622
Move things to more standard locations for selinux - bug #438184
Add exception for pulseaudio file - bug #438622
Index: rkhunter.spec
===================================================================
RCS file: /cvs/extras/rpms/rkhunter/EL-5/rkhunter.spec,v
retrieving revision 1.13
retrieving revision 1.14
diff -u -r1.13 -r1.14
--- rkhunter.spec 29 Feb 2008 03:33:37 -0000 1.13
+++ rkhunter.spec 17 May 2008 21:59:10 -0000 1.14
@@ -1,6 +1,6 @@
Name: rkhunter
Version: 1.3.2
-Release: 1%{?dist}
+Release: 3%{?dist}
Summary: A host-based tool to scan for rootkits, backdoors and local exploits
Group: Applications/System
@@ -28,8 +28,8 @@
%{__perl} -pi.0001 -e '
s|^#(MAIL-ON-WARNING=).+$|$1root\@localhost|;
- s|^#(TMPDIR=).+$|$1%{_var}/%{name}/tmp|;
- s|^#(DBDIR=).+$|$1%{_var}/%{name}/db|;
+ s|^#(TMPDIR=).+$|$1%{_var}/run/%{name}|;
+ s|^#(DBDIR=).+$|$1%{_var}/lib/%{name}/db|;
s|^#(SCRIPTDIR=).+$|$1%{_datadir}/%{name}/scripts|;
s|^#(PKGMGR=).+$|$1RPM|;
%if 0%{?el4}%{?el5}
@@ -40,6 +40,7 @@
s|^#(ALLOWHIDDENDIR=).+$|$1/dev/.udev|;
s|^#(ALLOWHIDDENFILE=).+$|$1/usr/share/man/man1/..1.gz|;
s|^(APPEND_LOG=).+$|$11|;
+ s|^(LOGFILE=).+$|$1/var/log/rkhunter/rkhunter.log|;
s|^(ALLOW_SSH_ROOT_USER=).+$|$1yes|;
s|^(DISABLE_TESTS=).+$|$1"additional_rkts suspscan hidden_procs deleted_files packet_cap_apps"|;
' files/%{name}.conf
@@ -55,12 +56,13 @@
# in f8/f9
%if 0%{?fc8}%{?fc9}
echo "SYSLOG_CONFIG_FILE=/etc/rsyslog.conf" >> files/%name.conf
+echo "ALLOWDEVFILE=/dev/shm/pulse-shm-*" >> files/%name.conf
%else
echo "SYSLOG_CONFIG_FILE=/etc/syslog.conf" >> files/%name.conf
%endif
%{__cat} <<'EOF' >%{name}.logrotate
-%{_localstatedir}/log/%{name}.log {
+%{_localstatedir}/log/%{name}/%{name}.log {
weekly
notifempty
create 640 root root
@@ -78,20 +80,22 @@
%{__mkdir} -m755 -p ${RPM_BUILD_ROOT}%{_datadir}/%{name}/scripts
%{__mkdir} -m755 -p ${RPM_BUILD_ROOT}%{_docdir}/%{name}-%{version}
%{__mkdir} -m755 -p ${RPM_BUILD_ROOT}%{_mandir}/man8
-%{__mkdir} -m755 -p ${RPM_BUILD_ROOT}%{_var}/%{name}/{db,tmp}
-%{__mkdir} -m755 -p ${RPM_BUILD_ROOT}%{_var}/%{name}/db/i18n
+%{__mkdir} -m755 -p ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db
+%{__mkdir} -m755 -p ${RPM_BUILD_ROOT}%{_var}/run/%{name}
+%{__mkdir} -m755 -p ${RPM_BUILD_ROOT}%{_var}/log/%{name}
+%{__mkdir} -m755 -p ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/i18n
%{__install} -m755 -p files/%{name} ${RPM_BUILD_ROOT}%{_bindir}/
-%{__install} -m644 -p files/backdoorports.dat ${RPM_BUILD_ROOT}%{_var}/%{name}/db/
-%{__install} -m644 -p files/defaulthashes.dat ${RPM_BUILD_ROOT}%{_var}/%{name}/db/
-%{__install} -m644 -p files/md5blacklist.dat ${RPM_BUILD_ROOT}%{_var}/%{name}/db/
-%{__install} -m644 -p files/mirrors.dat ${RPM_BUILD_ROOT}%{_var}/%{name}/db/
-%{__install} -m644 -p files/os.dat ${RPM_BUILD_ROOT}%{_var}/%{name}/db/
-%{__install} -m644 -p files/programs_bad.dat ${RPM_BUILD_ROOT}%{_var}/%{name}/db/
-%{__install} -m644 -p files/programs_good.dat ${RPM_BUILD_ROOT}%{_var}/%{name}/db/
-%{__install} -m644 -p files/i18n/cn ${RPM_BUILD_ROOT}%{_var}/%{name}/db/i18n/
-%{__install} -m644 -p files/i18n/en ${RPM_BUILD_ROOT}%{_var}/%{name}/db/i18n/
+%{__install} -m644 -p files/backdoorports.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/
+%{__install} -m644 -p files/defaulthashes.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/
+%{__install} -m644 -p files/md5blacklist.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/
+%{__install} -m644 -p files/mirrors.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/
+%{__install} -m644 -p files/os.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/
+%{__install} -m644 -p files/programs_bad.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/
+%{__install} -m644 -p files/programs_good.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/
+%{__install} -m644 -p files/i18n/cn ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/i18n/
+%{__install} -m644 -p files/i18n/en ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/i18n/
%{__install} -m644 -p files/CHANGELOG ${RPM_BUILD_ROOT}%{_docdir}/%{name}-%{version}/
%{__install} -m644 -p files/LICENSE ${RPM_BUILD_ROOT}%{_docdir}/%{name}-%{version}/
@@ -105,7 +109,7 @@
#%{__install} -m750 -p files/filehashmd5.pl ${RPM_BUILD_ROOT}%{_prefix}/lib/%{name}/scripts/
#%{__install} -m750 -p files/filehashsha1.pl ${RPM_BUILD_ROOT}%{_prefix}/lib/%{name}/scripts/
%{__install} -m755 -p files/showfiles.pl ${RPM_BUILD_ROOT}%{_datadir}/%{name}/scripts/
-%{__install} -m755 -p %{SOURCE2} ${RPM_BUILD_ROOT}%{_sysconfdir}/cron.daily/
+%{__install} -m755 -p %{SOURCE2} ${RPM_BUILD_ROOT}%{_sysconfdir}/cron.daily/%{name}
%{__install} -m644 -p %{name}.logrotate ${RPM_BUILD_ROOT}%{_sysconfdir}/logrotate.d/%{name}
%{__install} -m640 -p files/%{name}.conf ${RPM_BUILD_ROOT}%{_sysconfdir}/
%{__install} -m640 -p %{SOURCE3} ${RPM_BUILD_ROOT}%{_sysconfdir}/sysconfig/%{name}
@@ -119,18 +123,26 @@
%{_bindir}/%{name}
%dir %{_datadir}/%{name}
%{_datadir}/%{name}/scripts
-%{_sysconfdir}/cron.daily/01-%{name}
+%{_sysconfdir}/cron.daily/%{name}
%config(noreplace) %{_sysconfdir}/logrotate.d/%{name}
-%dir %{_var}/%{name}
-%{_var}/%{name}/db
-%{_var}/%{name}/db/i18n
-%dir %{_var}/%{name}/tmp
+%dir %{_var}/lib/%{name}
+%{_var}/lib/%{name}/db
+%{_var}/lib/%{name}/db/i18n
+%dir %{_var}/run/%{name}
+%dir %{_var}/log/%{name}
%config(noreplace) %{_sysconfdir}/%{name}.conf
%config(noreplace) %{_sysconfdir}/sysconfig/%{name}
%dir %{_docdir}/%{name}-%{version}
%{_mandir}/man8/*
%changelog
+* Mon Apr 28 2008 Kevin Fenzi <kevin at tummy.com> - 1.3.2-3
+- Change cron to run after prelink - bug #438622
+
+* Wed Mar 26 2008 Kevin Fenzi <kevin at tummy.com> - 1.3.2-2
+- Move things to more standard locations for selinux - bug #438184
+- Add exception for pulseaudio file - bug #438622
+
* Thu Feb 28 2008 Kevin Fenzi <kevin at tummy.com> - 1.3.2-1
- Update to 1.3.2
- Fix cron script
More information about the fedora-extras-commits
mailing list