rkhunter: workaround for mix usrmerge/non-usrmerge environments.

See https://bugs.debian.org/932594#15 .
author: Guilhem Moulin <guilhem@fripost.org> 2020-11-08 15:50:58 +0100
committer: Guilhem Moulin <guilhem@fripost.org> 2020-11-15 18:33:37 +0100
commit: 4d2a5f9e1ab9fb1c2c8a3bea5e286fa2ad953d6e (patch)
tree: 6ab3531ff9bfacad08362661830bbf5c16f53ee7 /roles
parent: ef1764c0ec38f987087f8dc9727aa12c441720a0 (diff)
1 files changed, 7 insertions, 0 deletions
diff --git a/roles/common/files/etc/rkhunter.conf b/roles/common/files/etc/rkhunter.conf
index ce3b2d6..ef38ab6 100644
--- a/roles/common/files/etc/rkhunter.conf
+++ b/roles/common/files/etc/rkhunter.conf
@@ -562,6 +562,10 @@ HASH_CMD=SHA512
 #
 #EXISTWHITELIST=""
 
+# work around for usr-merge, cf. https://bugs.debian.org/932594
+EXISTWHITELIST=/usr/bin/egrep
+EXISTWHITELIST=/usr/bin/fgrep
+
 #
 # Whitelist various attributes of the specified file. The attributes are those
 # of the 'attributes' test. Specifying a file name here does not include it
@@ -593,6 +597,9 @@ HASH_CMD=SHA512
 SCRIPTWHITELIST=/bin/egrep
 SCRIPTWHITELIST=/bin/fgrep
 SCRIPTWHITELIST=/bin/which
+SCRIPTWHITELIST=/usr/bin/egrep
+SCRIPTWHITELIST=/usr/bin/fgrep
+SCRIPTWHITELIST=/usr/bin/which
 SCRIPTWHITELIST=/usr/bin/ldd
 SCRIPTWHITELIST=/usr/bin/lwp-request
 SCRIPTWHITELIST=/usr/sbin/adduser
author	Guilhem Moulin <guilhem@fripost.org>	2020-11-08 15:50:58 +0100
committer	Guilhem Moulin <guilhem@fripost.org>	2020-11-15 18:33:37 +0100
commit	4d2a5f9e1ab9fb1c2c8a3bea5e286fa2ad953d6e (patch)
tree	6ab3531ff9bfacad08362661830bbf5c16f53ee7 /roles
parent	ef1764c0ec38f987087f8dc9727aa12c441720a0 (diff)