From 1387b69c898cb93fd0343603f92670b40b88eb04 Mon Sep 17 00:00:00 2001 From: Guilhem Moulin Date: Sun, 1 Dec 2013 16:35:46 +0100 Subject: Use a dedicated SMTP port for samhain. It's unfortunate that samhain cannot use the sendmail binary, and wants to use a inet socket instead. We use a custom port to avoid conflicts with the usual SMTP port the MX:es need to listen on. See also: /usr/share/doc/samhain/TODO.Debian --- roles/common/files/etc/samhain/samhainrc | 11 ++++++++--- 1 file changed, 8 insertions(+), 3 deletions(-) (limited to 'roles/common/files/etc/samhain') diff --git a/roles/common/files/etc/samhain/samhainrc b/roles/common/files/etc/samhain/samhainrc index 200cdc6..1fd9d42 100644 --- a/roles/common/files/etc/samhain/samhainrc +++ b/roles/common/files/etc/samhain/samhainrc @@ -512,7 +512,7 @@ ChecksumTest=check ## and I/O limit (kilobytes per second; 0 == off) ## to reduce load on host. # -# SetNiceLevel = 0 +SetNiceLevel = 19 # SetIOLimit = 0 ## The version string to embed in file signature databases @@ -522,7 +522,7 @@ ChecksumTest=check ## Interval between time stamp messages # # SetLoopTime = 60 -SetLoopTime = 600 +SetLoopTime = 21600 ## Interval between file checks # @@ -541,7 +541,7 @@ SetFileCheckTime = 7200 ## Setting this to 'FALSE' will generate a report for any policy ## violation (old and new ones) each time the daemon checks the file system. # -# ReportOnlyOnce = True +ReportOnlyOnce = True ## Report in full detail # @@ -591,7 +591,12 @@ SetMailAddress = admin@fripost.org ## Mail relay (IP address) # +# XXX: it's unfortunate that samhain cannot use the sendmail binary. We +# use a custom port here to avoid conflicts with the usual SMTP port the +# MX:es need to listen on. +# See also: /usr/share/doc/samhain/TODO.Debian SetMailRelay = 127.0.0.1 +SetMailPort = 16132 ## Custom subject format # -- cgit v1.2.3