Added a section making links for logcheck.

Takes care of the most common server classes, but does VERY little for workstations or stand alone machines
author: Martin SkÃƒÂ¸tt <martin@xenux.dk> 2002-08-23 14:40:38 +0000
committer: Martin SkÃƒÂ¸tt <martin@xenux.dk> 2002-08-23 14:40:38 +0000
commit: a8bd172a62e08338c691534436817297987c6fb3 (patch)
tree: 062dd64f499e3333798ebe0d806641f5fc52ac88 /cfengine/cf.services.harden
parent: 97771eef7f50f1638bd1047a4c7ad99d6ec90a4b (diff)
1 files changed, 42 insertions, 0 deletions
diff --git a/cfengine/cf.services.harden b/cfengine/cf.services.harden
index 4addc93..bca0aa8 100644
--- a/cfengine/cf.services.harden
+++ b/cfengine/cf.services.harden
@@ -1,3 +1,11 @@
+control:
+	logcheck = ( /etc/logcheck )
+
+	# type viser om maskinen er workstation eller server. Bruges til at linke de rigtige steder
+	# hen i logcheck
+	Standalone_xenux:: type = ( workstation )
+	!Standalone_xenux:: type = ( server )
+
 editfiles:
 	# AIDE section
 	{ /etc/aide/aide.conf
@@ -87,3 +95,37 @@ editfiles:
 		UnCommentLinesMatching "    # ! if .*"
 		UnCommentLinesMatching "    # ! fi"
 	}
+
+links:
+	NameServer::
+		$(logcheck)/ignore.d/local-bind -> $(LocalCommon)/logcheck/ignore.d.$(type)/bind
+		$(logcheck)/violations.ignore.d/local-bind -> $(LocalCommon)/logcheck/violations.ignore.d/bind
+
+	FileServer::
+		$(logcheck)/ignore.d/local-samba -> $(LocalCommon)/logcheck/ignore.d.$(type)/samba
+		$(logcheck)/ignore.d/local-netatalk -> $(LocalCommon)/logcheck/ignore.d.$(type)/netatalk
+		$(logcheck)/violations.ignore.d/local-samba -> $(LocalCommon)/logcheck/violations.ignore.d/samba
+
+	DHCPServer::
+		$(logcheck)/ignore.d/local-dhcp -> $(LocalCommon)/logcheck/ignore.d.$(type)/dhcp
+		$(logcheck)/ignore.d/local-dhcp3-common -> $(LocalCommon)/logcheck/ignore.d.$(type)/dhcp3-common
+
+	WWWServer::
+
+	FTPServer::
+		$(logcheck)/ignore.d/local-proftpd -> $(LocalCommon)/logcheck/ignore.d.$(type)/proftpd
+		$(logcheck)/violations.ignore.d/local-proftpd -> $(LocalCommon)/logcheck/violations.ignore.d/proftpd
+
+	IMAPServer::
+		$(logcheck)/ignore.d/local-uw-imap -> $(LocalCommon)/logcheck/ignore.d.$(type)/uw-imap
+
+	any::
+		# Sættes alt efter om det er server eller workstation. Pakken peger på workstation
+		$(logcheck)/ignore.d ->! $(logcheck)/ignore.d.$(type)
+		$(logcheck)/logcheck.ignore ->! $(logcheck)/logcheck.ignore.$(type)
+
+		$(logcheck)/ignore.d/local-ssh -> $(LocalCommon)/logcheck/ignore.d.$(type)/ssh
+		$(logcheck)/ignore.d/local-postfix -> $(LocalCommon)/logcheck/ignore.d.$(type)/postfix
+
+		$(logcheck)/violations.ignore.d/local-ssh -> $(LocalCommon)/logcheck/violations.ignore.d/ssh
+		$(logcheck)/violations.ignore.d/local-postfix -> $(LocalCommon)/logcheck/violations.ignore.d/postfix
+\ No newline at end of file
author	Martin SkÃƒÂ¸tt <martin@xenux.dk>	2002-08-23 14:40:38 +0000
committer	Martin SkÃƒÂ¸tt <martin@xenux.dk>	2002-08-23 14:40:38 +0000
commit	a8bd172a62e08338c691534436817297987c6fb3 (patch)
tree	062dd64f499e3333798ebe0d806641f5fc52ac88 /cfengine/cf.services.harden
parent	97771eef7f50f1638bd1047a4c7ad99d6ec90a4b (diff)