From 4d2a5f9e1ab9fb1c2c8a3bea5e286fa2ad953d6e Mon Sep 17 00:00:00 2001 From: Guilhem Moulin Date: Sun, 8 Nov 2020 15:50:58 +0100 Subject: rkhunter: workaround for mix usrmerge/non-usrmerge environments. See https://bugs.debian.org/932594#15 . --- roles/common/files/etc/rkhunter.conf | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/roles/common/files/etc/rkhunter.conf b/roles/common/files/etc/rkhunter.conf index ce3b2d6..ef38ab6 100644 --- a/roles/common/files/etc/rkhunter.conf +++ b/roles/common/files/etc/rkhunter.conf @@ -562,6 +562,10 @@ HASH_CMD=SHA512 # #EXISTWHITELIST="" +# work around for usr-merge, cf. https://bugs.debian.org/932594 +EXISTWHITELIST=/usr/bin/egrep +EXISTWHITELIST=/usr/bin/fgrep + # # Whitelist various attributes of the specified file. The attributes are those # of the 'attributes' test. Specifying a file name here does not include it @@ -593,6 +597,9 @@ HASH_CMD=SHA512 SCRIPTWHITELIST=/bin/egrep SCRIPTWHITELIST=/bin/fgrep SCRIPTWHITELIST=/bin/which +SCRIPTWHITELIST=/usr/bin/egrep +SCRIPTWHITELIST=/usr/bin/fgrep +SCRIPTWHITELIST=/usr/bin/which SCRIPTWHITELIST=/usr/bin/ldd SCRIPTWHITELIST=/usr/bin/lwp-request SCRIPTWHITELIST=/usr/sbin/adduser -- cgit v1.2.3