Infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

adjust rkhunter some more for podman and postgres

Browse source 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
This commit is contained in:
Kevin Fenzi 2021-05-03 09:29:00 -07:00
parent bbd0b3c3e6
commit 68d9114494
1 changed files with 3 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

6
roles/rkhunter/templates/rkhunter.conf.j2
View file

@ -393,10 +393,10 @@ ALLOWDEVFILE=/dev/shm/spice.*
{% if inventory_hostname in groups['ipa'] or inventory_hostname in groups['ipa_stg'] %}
ALLOWDEVFILE=/dev/shm/sem.slapd*.stats
{% endif %}
{% if inventory_hostname in groups['proxies'] or inventory_hostname in groups['proxies_stg'] %}
ALLOWDEVFILE=/dev/shm/libpod_rootless_lock_441
{% if inventory_hostname in groups['retrace'] or inventory_hostname in groups['releng_compose'] %}
ALLOWDEVFILE=/dev/shm/libpod_*
{% endif %}
{% if inventory_hostname in groups['dbserver'] or inventory_hostname in groups['dbserver_stg'] or inventory_hostname in groups['pkgs'] or inventory_hostname in groups['pagure'] or inventory_hostname in groups['pagure_stg'] or inventory_hostname in groups['zabbix_stg'] %}
{% if inventory_hostname in groups['dbserver'] or inventory_hostname in groups['dbserver_stg'] or inventory_hostname in groups['pkgs'] or inventory_hostname in groups['pagure'] or inventory_hostname in groups['pagure_stg'] or inventory_hostname in groups['zabbix_stg'] or inventory_hostname in groups['retrace'] %}
ALLOWDEVFILE=/dev/shm/PostgreSQL*
{% endif %}