Lines 1-5
Link Here
|
1 |
--- files/rkhunter.conf.orig Wed Oct 17 11:21:03 2007 |
1 |
--- files/rkhunter.conf.orig 2008-03-14 10:19:30.000000000 +0100 |
2 |
+++ files/rkhunter.conf Wed Oct 17 11:21:19 2007 |
2 |
+++ files/rkhunter.conf 2008-03-14 10:21:43.000000000 +0100 |
3 |
@@ -76,6 +76,7 @@ |
3 |
@@ -76,6 +76,7 @@ |
4 |
# sure that the directory permissions are tight. |
4 |
# sure that the directory permissions are tight. |
5 |
# |
5 |
# |
Lines 8-10
Link Here
|
8 |
|
8 |
|
9 |
# |
9 |
# |
10 |
# Specify the database directory to use. |
10 |
# Specify the database directory to use. |
|
|
11 |
@@ -154,7 +155,8 @@ |
12 |
# file, then a value here of 'yes' or 'unset' will not cause a warning. |
13 |
# This option has a default value of 'no'. |
14 |
# |
15 |
-ALLOW_SSH_ROOT_USER=no |
16 |
+#ALLOW_SSH_ROOT_USER=no |
17 |
+ALLOW_SSH_ROOT_USER=unset |
18 |
|
19 |
# |
20 |
# Set this option to '1' to allow the use of the SSH-1 protocol, but note |
21 |
@@ -165,7 +167,8 @@ |
22 |
# configuration file, then a value of '2' may be set here in order to |
23 |
# suppress a warning message. This option has a default value of '0'. |
24 |
# |
25 |
-ALLOW_SSH_PROT_V1=0 |
26 |
+#ALLOW_SSH_PROT_V1=0 |
27 |
+ALLOW_SSH_PROT_V1=2 |
28 |
|
29 |
# |
30 |
# This setting tells rkhunter the directory containing the SSH configuration |
31 |
@@ -278,12 +281,20 @@ |
32 |
#SCRIPTWHITELIST=/sbin/ifup |
33 |
#SCRIPTWHITELIST=/sbin/ifdown |
34 |
#SCRIPTWHITELIST=/usr/bin/groups |
35 |
+SCRIPTWHITELIST=/usr/bin/whatis |
36 |
+SCRIPTWHITELIST=/usr/sbin/adduser |
37 |
+SCRIPTWHITELIST=/usr/local/bin/GET |
38 |
+SCRIPTWHITELIST=/usr/local/sbin/pkgdb |
39 |
|
40 |
# |
41 |
# Allow the specified commands to have the immutable attribute set. |
42 |
# One command per line (use multiple IMMUTWHITELIST lines). |
43 |
# |
44 |
#IMMUTWHITELIST=/sbin/ifup |
45 |
+IMMUTWHITELIST=/usr/bin/login |
46 |
+IMMUTWHITELIST=/usr/bin/passwd |
47 |
+IMMUTWHITELIST=/usr/bin/su |
48 |
+IMMUTWHITELIST=/sbin/init |
49 |
|
50 |
# |
51 |
# Allow the specified hidden directories. |
52 |
@@ -434,6 +445,7 @@ |
53 |
# Note: For *BSD systems you may need to enable this for the 'toor' account. |
54 |
# |
55 |
#UID0_ACCOUNTS="toor rooty" |
56 |
+UID0_ACCOUNTS="toor" |
57 |
|
58 |
# |
59 |
# Allow the following accounts to have no password. This option is a |