From ddad0d396c11097bd7e40bd80bbc891e3e725986 Mon Sep 17 00:00:00 2001
From: Kevin Fenzi <kevin@scrye.com>
Date: Thu, 22 Aug 2019 23:12:44 +0000
Subject: [PATCH] rkhunter / osbs: newest fedora doesn't use network-scripts by
 default, so don't check ifup/ifdown.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
---
 roles/rkhunter/templates/rkhunter.conf.j2 | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/roles/rkhunter/templates/rkhunter.conf.j2 b/roles/rkhunter/templates/rkhunter.conf.j2
index 14f770cee1..b79a21b014 100644
--- a/roles/rkhunter/templates/rkhunter.conf.j2
+++ b/roles/rkhunter/templates/rkhunter.conf.j2
@@ -650,8 +650,14 @@ SCRIPTWHITELIST=/usr/bin/whatis
 SCRIPTWHITELIST=/usr/bin/ldd
 SCRIPTWHITELIST=/usr/bin/groups
 SCRIPTWHITELIST=/usr/bin/GET
+{% if inventory_hostname.startswith(('osbs')) %}
+# no network-scripts on newest fedora
+#SCRIPTWHITELIST=/sbin/ifup
+#SCRIPTWHITELIST=/sbin/ifdown
+{% else %}
 SCRIPTWHITELIST=/sbin/ifup
 SCRIPTWHITELIST=/sbin/ifdown
+{% endif %}
 {% if inventory_hostname.startswith(('db','pagure','retrace','anitya','upstream')) %}
 # Set this size very large on postgres running servers.
 IPC_SEG_SIZE=100000000000