--- rpms/rkhunter/sme8/rkhunter.spec 2007/12/17 22:24:22 1.4 +++ rpms/rkhunter/sme8/rkhunter.spec 2008/04/09 13:51:56 1.12 @@ -1,3 +1,5 @@ +# $Id$ + # No debuginfo: %define debug_package %{nil} @@ -6,7 +8,7 @@ #%%dump %define name rkhunter -%define ver 1.3.0 +%define ver 1.3.2 %define rel 2 %define epoch 0 @@ -29,6 +31,7 @@ License: GPL Group: Applications/System Source0: %{name}-%{version}.tar.gz Patch0: rkhunter-installer.patch +Patch1: rkhunter-nolib.patch BuildArch: noarch Requires: filesystem, bash, grep, findutils, net-tools, coreutils, e2fsprogs, modutils, procps, binutils, wget, perl Provides: %{name} @@ -54,23 +57,29 @@ Rootkit Hunter is released as a GPL lice %prep %setup -q %patch0 -p1 +%patch1 -p1 %build %install +MANPATH="" +export MANPATH + sh ./installer.sh --layout RPM --install sed -i 's_#ALLOWPROCLISTEN=/sbin/dhclient_ALLOWPROCLISTEN=/sbin/dhclient_' ${RPM_BUILD_ROOT}%{_sysconfdir}/%{name}.conf -sed -i 's_#ALLOWPROCLISTEN=/usr/sbin/pppoe_ALLOWPROCLISTEN=/usr/sbin/pppoe_' ${RPM_BUILD_ROOT}%{_sysconfdir}/%{name}.conf +sed -i 's_#ALLOWPROCLISTEN=/usr/sbin/pppoe_ALLOWPROCLISTEN=/sbin/pppoe_' ${RPM_BUILD_ROOT}%{_sysconfdir}/%{name}.conf sed -i 's_#ALLOWHIDDENFILE=/usr/share/man/man1/..1.gz_ALLOWHIDDENFILE=/usr/share/man/man1/..1.gz_' ${RPM_BUILD_ROOT}%{_sysconfdir}/%{name}.conf sed -i '/#ALLOWPROCLISTEN=\/usr\/bin\/dhcpcd/iALLOWPROCLISTEN=\/usr\/sbin\/dhcpd' ${RPM_BUILD_ROOT}%{_sysconfdir}/%{name}.conf sed -i '/#ALLOWPROCDELFILE=\/usr\/sbin\/mysqld/aALLOWPROCDELFILE=\/usr\/sbin\/httpd' ${RPM_BUILD_ROOT}%{_sysconfdir}/%{name}.conf +sed -i '/ALLOWPROCDELFILE=\/usr\/sbin\/httpd/aALLOWPROCDELFILE=\/usr\/sbin\/asterisk' ${RPM_BUILD_ROOT}%{_sysconfdir}/%{name}.conf +sed -i '/ALLOWPROCDELFILE=\/usr\/sbin\/httpd/aALLOWPROCDELFILE=\/usr\/bin\/freshclam' ${RPM_BUILD_ROOT}%{_sysconfdir}/%{name}.conf # Make a cron.daily file to mail us the reports %{__mkdir} -p "${RPM_BUILD_ROOT}/%{_sysconfdir}/cron.daily" %{__cat} > "${RPM_BUILD_ROOT}/%{_sysconfdir}/cron.daily/01-rkhunter" </dev/null 2>&1 || : - %{__cp} -p /etc/group /var/lib/rkhunter/tmp >/dev/null 2>&1 || : + %{__cp} -p /etc/passwd /var/rkhunter/tmp >/dev/null 2>&1 || : + %{__cp} -p /etc/group /var/rkhunter/tmp >/dev/null 2>&1 || : fi @@ -88,7 +97,7 @@ fi # Only do this when removing the RPM if [ $1 -eq 0 ]; then %{__rm} -f /var/log/rkhunter.log /var/log/rkhunter.log.old >/dev/null 2>&1 - %{__rm} -rf /var/lib/rkhunter/* >/dev/null 2>&1 + %{__rm} -rf /var/rkhunter/* >/dev/null 2>&1 fi @@ -113,16 +122,35 @@ fi %attr(644,root,root) %doc %{_prefix}/share/man/man8/%{name}.8.gz %attr(755,root,root) %dir %{docdir} %attr(644,root,root) %doc %{docdir}/* -%attr(750,root,root) %dir %{_var}/lib/%{name} -%attr(750,root,root) %dir %{_var}/lib/%{name}/db -%attr(640,root,root) %{_var}/lib/%{name}/db/*.dat -%attr(750,root,root) %dir %{_var}/lib/%{name}/db/i18n -%attr(640,root,root) %{_var}/lib/%{name}/db/i18n/* -%attr(750,root,root) %dir %{_var}/lib/%{name}/tmp +%attr(750,root,root) %dir %{_var}/%{name} +%attr(750,root,root) %dir %{_var}/%{name}/db +%attr(640,root,root) %{_var}/%{name}/db/*.dat +%attr(750,root,root) %dir %{_var}/%{name}/db/i18n +%attr(640,root,root) %{_var}/%{name}/db/i18n/* +%attr(750,root,root) %dir %{_var}/%{name}/tmp %{_sysconfdir}/cron.daily/01-rkhunter %changelog +* Sun Mar 2 2008 Shad L. Lords 1.3.2-2 +- Allow freshclam to use deleted files. [SME: 3876] + +* Fri Feb 29 2008 Shad L. Lords 1.3.2-1 +- Update to rkhunter v1.3.2 [SME: 4000] + +* Wed Jan 30 2008 Shad L. Lords 1.3.0-6 +- Fix asterisk to allow deleted files. [SME: 3795] + +* Tue Jan 29 2008 Shad L. Lords 1.3.0-5 +- Correct pppoe binary location. +- Add asterisk binary to allow deleted files. [SME: 3795] + +* Mon Jan 7 2008 Shad L. Lords 1.3.0-4 +- Disable scan for suspicious files until fixed [SME: 3713] + +* Mon Dec 17 2007 Shad L. Lords 1.3.0-3 +- Change /var/lib to /var to be consistent with previous versions + * Mon Dec 17 2007 Shad L. Lords 1.3.0-2 - Add a few more services for sme tests