--- rpms/rkhunter/sme8/rkhunter.spec 2009/04/07 07:30:35 1.14 +++ rpms/rkhunter/sme8/rkhunter.spec 2011/04/27 15:19:44 1.16 @@ -1,18 +1,15 @@ -# $Id: rkhunter.spec,v 1.13 2009/04/02 18:01:20 slords Exp $ - Name: rkhunter -Version: 1.3.4 -Release: 7%{?dist} +Version: 1.3.8 +Release: 3%{?dist} Summary: A host-based tool to scan for rootkits, backdoors and local exploits Group: Applications/System License: GPLv2+ URL: http://rkhunter.sourceforge.net/ Source0: http://downloads.sourceforge.net/rkhunter/rkhunter-%{version}.tar.gz -Source1: http://downloads.sourceforge.net/rkhunter/rkhunter-%{version}.tar.gz.sha1.txt Source2: 01-rkhunter Source3: rkhunter.sysconfig -Patch0: rkhunter-1.3.4-smeconfig.patch +Patch0: rkhunter-1.3.8-fedoraconfig.patch BuildArch: noarch BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n) @@ -51,34 +48,25 @@ EOF %{__mkdir} -m755 -p ${RPM_BUILD_ROOT}%{_docdir}/%{name}-%{version} %{__mkdir} -m755 -p ${RPM_BUILD_ROOT}%{_mandir}/man8 %{__mkdir} -m755 -p ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db -%{__mkdir} -m755 -p ${RPM_BUILD_ROOT}%{_var}/run/%{name} %{__mkdir} -m755 -p ${RPM_BUILD_ROOT}%{_var}/log/%{name} %{__mkdir} -m755 -p ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/i18n %{__install} -m755 -p files/%{name} ${RPM_BUILD_ROOT}%{_bindir}/ %{__install} -m644 -p files/backdoorports.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/ -%{__install} -m644 -p files/defaulthashes.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/ -%{__install} -m644 -p files/md5blacklist.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/ %{__install} -m644 -p files/mirrors.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/ -%{__install} -m644 -p files/os.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/ %{__install} -m644 -p files/programs_bad.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/ -%{__install} -m644 -p files/programs_good.dat ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/ %{__install} -m644 -p files/i18n/cn ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/i18n/ %{__install} -m644 -p files/i18n/en ${RPM_BUILD_ROOT}%{_var}/lib/%{name}/db/i18n/ %{__install} -m644 -p files/CHANGELOG ${RPM_BUILD_ROOT}%{_docdir}/%{name}-%{version}/ %{__install} -m644 -p files/LICENSE ${RPM_BUILD_ROOT}%{_docdir}/%{name}-%{version}/ %{__install} -m644 -p files/README ${RPM_BUILD_ROOT}%{_docdir}/%{name}-%{version}/ -%{__install} -m644 -p files/WISHLIST ${RPM_BUILD_ROOT}%{_docdir}/%{name}-%{version}/ %{__install} -m755 -p files/check_modules.pl ${RPM_BUILD_ROOT}%{_datadir}/%{name}/scripts/ -%{__install} -m755 -p files/check_port.pl ${RPM_BUILD_ROOT}%{_datadir}/%{name}/scripts/ -%{__install} -m755 -p files/check_update.sh ${RPM_BUILD_ROOT}%{_datadir}/%{name}/scripts/ %{__install} -m644 -p files/*.8 ${RPM_BUILD_ROOT}%{_mandir}/man8/ # Don't ship these unless we want to Require the perl modules #%{__install} -m750 -p files/filehashmd5.pl ${RPM_BUILD_ROOT}%{_prefix}/lib/%{name}/scripts/ #%{__install} -m750 -p files/filehashsha1.pl ${RPM_BUILD_ROOT}%{_prefix}/lib/%{name}/scripts/ -%{__install} -m755 -p files/showfiles.pl ${RPM_BUILD_ROOT}%{_datadir}/%{name}/scripts/ %{__install} -m755 -p %{SOURCE2} ${RPM_BUILD_ROOT}%{_sysconfdir}/cron.daily/%{name} %{__install} -m644 -p %{name}.logrotate ${RPM_BUILD_ROOT}%{_sysconfdir}/logrotate.d/%{name} %{__install} -m640 -p files/%{name}.conf ${RPM_BUILD_ROOT}%{_sysconfdir}/ @@ -87,13 +75,6 @@ EOF %clean %{__rm} -rf $RPM_BUILD_ROOT -%post -# Only do this on an initial install -if [ $1 -eq 1 ]; then - %{__cp} -p /etc/passwd /var/lib/rkhunter/ >/dev/null 2>&1 || : - %{__cp} -p /etc/group /var/lib/rkhunter/ >/dev/null 2>&1 || : -fi - %files %defattr(-,root,root,-) %doc %{_docdir}/%{name}-%{version}/* @@ -105,7 +86,6 @@ fi %dir %{_var}/lib/%{name} %{_var}/lib/%{name}/db %{_var}/lib/%{name}/db/i18n -%dir %{_var}/run/%{name} %dir %{_var}/log/%{name} %config(noreplace) %{_sysconfdir}/%{name}.conf %config(noreplace) %{_sysconfdir}/sysconfig/%{name} @@ -113,13 +93,56 @@ fi %{_mandir}/man8/* %changelog -* Tue Apr 7 2009 Jonathan Martens 1.3.4-7 -- Remove quotes in DISABLE_TESTS setting [SME: 5149] +* Wed Dec 08 2010 Kevin Fenzi - 1.3.8-3 +- Adjust ssh config to the right default. + +* Tue Dec 07 2010 Kevin Fenzi - 1.3.8-2 +- Adjust config some - bug #596775 + +* Fri Nov 26 2010 Kevin Fenzi - 1.3.8-1 +- Update to 1.3.8 + +* Wed Nov 24 2010 Kevin Fenzi - 1.3.6-9 +- Drop /var/run as it's not used anymore - bug #656684 + +* Wed Oct 06 2010 Kevin Fenzi - 1.3.6-8 +- Add patch to make rkhunter use unhide if installed - bug #636396 + +* Sat Jun 05 2010 Kevin Fenzi - 1.3.6-7 +- Add ipsec.hmac exclude - bug #560594 + +* Fri May 28 2010 Kevin Fenzi - 1.3.6-6 +- Add exclude for md-device-map - bug #596731 +- Supress ssh version check - bug #596775 + +* Sat Mar 06 2010 Kevin Fenzi - 1.3.6-5 +- Change config to not specify XINETD_PATH - bug #560562 + +* Sat Jan 23 2010 Kevin Fenzi - 1.3.6-4 +- Change email to just root instead of root@localhost - bug #553179 +- Add .k5login.5.gz to files whitelist - bug #553134 + +* Tue Jan 05 2010 Kevin Fenzi - 1.3.6-3 +- Add some more ssh hmac files to whitelist - bug #552621 +- Re-add /dev/.mdadm.map to whitelisted files - bug #539405 + +* Tue Dec 01 2009 Kevin Fenzi - 1.3.6-2 +- Disable apps check by default - bug #543065 + +* Sun Nov 29 2009 Kevin Fenzi - 1.3.6-1 +- Update to 1.3.6 + +* Thu Nov 26 2009 Kevin Fenzi - 1.3.4-9 +- Add exception for /dev/.mdadm file - bug #539405 + +* Sun Jul 26 2009 Fedora Release Engineering - 1.3.4-8 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild + +* Fri Jul 03 2009 Kevin Fenzi - 1.3.4-7 +- Add exception for software raid udev file - bug #509253 -* Thu Apr 2 2009 Shad L. Lords -1.3.4-6 -- Update to epel version of rkhunter -- Set parameters for sme specific tests +* Sat Jun 06 2009 Kevin Fenzi - 1.3.4-6 +- Add /usr/bin/.fipscheck.hmac to ok files - bug #494096 * Sun Mar 08 2009 Kevin Fenzi - 1.3.4-5 - Fix typo in patch file