Changeset 14


Ignore:
Timestamp:
Jan 8, 2006, 10:15:44 PM (19 years ago)
Author:
rainer
Message:

update for default config files

Location:
trunk
Files:
2 edited

Legend:

Unmodified
Added
Removed
  • trunk/samhainrc.freebsd

    r1 r14  
    6161# RedefUser1=(no default)
    6262
     63#
     64# --------- / --------------
     65#
     66
     67[ReadOnly]
     68dir = 0/
     69
    6370[Attributes]
     71file = /
     72file = /proc
     73file = /entropy
     74file = /tmp
     75file = /var
     76
     77#
     78# --------- /dev -----------
     79#
     80
     81[Attributes]
     82dir = 99/dev
     83
     84[IgnoreAll]
     85file = /dev/ttyp?
     86
     87[Misc]
     88##
     89## pseudo terminals are created/removed as needed
     90##
     91IgnoreAdded = /dev/(p|t)typ.*
     92IgnoreMissing = /dev/(p|t)typ.*
     93
     94
     95#
     96# --------- /etc -----------
     97#
     98
     99[ReadOnly]
     100##
     101## for these files, only access time is ignored
     102##
     103dir = 99/etc
     104
     105
     106#
     107# --------- /boot -----------
     108#
     109
     110[ReadOnly]
     111dir = 99/boot
     112
     113#
     114# --------- /bin, /sbin -----------
     115#
     116
     117[ReadOnly]
     118dir = 99/bin
     119dir = 99/sbin
     120
     121#
     122# --------- /lib -----------
     123#
     124
     125[ReadOnly]
     126dir = 99/lib
     127
     128#
     129# --------- /libexec -----------
     130#
     131
     132[ReadOnly]
     133dir = 99/libexec
     134
     135#
     136# --------- /rescue -----------
     137#
     138
     139[ReadOnly]
     140dir = 99/rescue
     141
     142#
     143# --------- /root -----------
     144#
     145
     146[Attributes]
    64147##
    65148## for these files, only changes in permissions and ownership are checked
    66149##
    67 
    68 file=/usr/compat/linux/etc
    69 file=/usr/compat/linux/etc/ld.so.cache
    70 
    71 dir=/var/mail
    72 dir=/var/spool/lp/tmp
    73 dir=/var/tmp
    74 # dir=/var/dt/tmp
    75 dir=/tmp
    76 
     150dir = 99/root
     151
     152#
     153# --------- /stand -----------
     154#
     155
     156[ReadOnly]
     157dir = 99/stand
     158
     159#
     160# --------- /usr -----------
     161#
     162
     163[ReadOnly]
     164dir = 99/usr
     165
     166[Attributes]
     167dir = /usr/.snap
     168dir = /usr/share/man/cat?
     169file = /usr/compat/linux/etc
     170file = /usr/compat/linux/etc/ld.so.cache
     171
     172[IgnoreAll]
     173dir = -1/usr/home
     174
     175#
     176# --------- /var -----------
     177#
     178
     179[ReadOnly]
     180file = /var
     181
     182[Attributes]
     183
     184dir = 0/var
    77185
    78186[LogFiles]
     
    83191file=/var/run/utmp
    84192
    85 
    86193[GrowingLogFiles]
    87194##
    88 ## for these files, changes in signature, timestamps, and increase in size
    89 ##                  are ignored
    90 ##
    91 
    92 file=/var/log/wtmp
    93 file=/var/log/messages
    94 file=/var/log/maillog
    95 file=/var/log/lastlog
    96 file=/var/log/cron
    97 file=/var/log/auth.log
    98 
    99 
    100 [IgnoreAll]
    101 ##
    102 ## for these files, no modifications are reported
    103 ##
    104 
    105 dir=/usr/share/man
    106 dir=/usr/share/games
    107 dir=/usr/share/misc
    108 dir=/usr/X11R6/man
     195## For these files, changes in signature, timestamps, and increase in size
     196## are ignored. Logfile rotation will cause a report because of shrinking
     197## size and different inode.
     198##
     199dir = 99/var/log
     200
     201[Attributes]
     202#
     203# rotated logs will change inode
     204#
     205file = /var/log/*.[0-9].bz2
     206file = /var/log/*.[0-9].log
     207file = /var/log/*.[0-9]
     208file = /var/log/*.[0-9][0-9]
     209file = /var/log/*.old
     210
     211file = /var/log/sendmail.st
     212
     213
     214[Misc]
     215#
     216# Various naming schemes for rotated logs
     217#
     218IgnoreAdded = /var/log/.*\.[0-9]+$
     219IgnoreAdded = /var/log/.*\.[0-9]+\.gz$
     220IgnoreAdded = /var/log/.*\.[0-9]+\.bz2$
     221IgnoreAdded = /var/log/.*\.[0-9]+\.log$
    109222
    110223
     
    117230
    118231
    119 [ReadOnly]
    120 ##
    121 ## for these files, only access time is ignored
    122 ##
    123 
    124 dir=/bin
    125 dir=/boot
    126 dir=3/etc
    127 dir=/sbin
    128 dir=1/stand
    129 dir=/stand/etc
    130 dir=/stand/modules
    131 dir=/usr
    132 dir=2/var/cron
    133 
    134 file=/kernel
    135 dir=/modules
    136232
    137233[User0]
  • trunk/samhainrc.linux

    r7 r14  
    7171[ReadOnly]
    7272dir = 0/
     73
     74[Attributes]
     75file = /tmp
     76file = /dev
     77file = /media
     78file = /proc
     79file = /sys
    7380
    7481#
Note: See TracChangeset for help on using the changeset viewer.