From a8bd172a62e08338c691534436817297987c6fb3 Mon Sep 17 00:00:00 2001 From: Martin Skøtt Date: Fri, 23 Aug 2002 14:40:38 +0000 Subject: Added a section making links for logcheck. Takes care of the most common server classes, but does VERY little for workstations or stand alone machines --- cfengine/cf.services.harden | 42 ++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 42 insertions(+) (limited to 'cfengine/cf.services.harden') diff --git a/cfengine/cf.services.harden b/cfengine/cf.services.harden index 4addc93..bca0aa8 100644 --- a/cfengine/cf.services.harden +++ b/cfengine/cf.services.harden @@ -1,3 +1,11 @@ +control: + logcheck = ( /etc/logcheck ) + + # type viser om maskinen er workstation eller server. Bruges til at linke de rigtige steder + # hen i logcheck + Standalone_xenux:: type = ( workstation ) + !Standalone_xenux:: type = ( server ) + editfiles: # AIDE section { /etc/aide/aide.conf @@ -87,3 +95,37 @@ editfiles: UnCommentLinesMatching " # ! if .*" UnCommentLinesMatching " # ! fi" } + +links: + NameServer:: + $(logcheck)/ignore.d/local-bind -> $(LocalCommon)/logcheck/ignore.d.$(type)/bind + $(logcheck)/violations.ignore.d/local-bind -> $(LocalCommon)/logcheck/violations.ignore.d/bind + + FileServer:: + $(logcheck)/ignore.d/local-samba -> $(LocalCommon)/logcheck/ignore.d.$(type)/samba + $(logcheck)/ignore.d/local-netatalk -> $(LocalCommon)/logcheck/ignore.d.$(type)/netatalk + $(logcheck)/violations.ignore.d/local-samba -> $(LocalCommon)/logcheck/violations.ignore.d/samba + + DHCPServer:: + $(logcheck)/ignore.d/local-dhcp -> $(LocalCommon)/logcheck/ignore.d.$(type)/dhcp + $(logcheck)/ignore.d/local-dhcp3-common -> $(LocalCommon)/logcheck/ignore.d.$(type)/dhcp3-common + + WWWServer:: + + FTPServer:: + $(logcheck)/ignore.d/local-proftpd -> $(LocalCommon)/logcheck/ignore.d.$(type)/proftpd + $(logcheck)/violations.ignore.d/local-proftpd -> $(LocalCommon)/logcheck/violations.ignore.d/proftpd + + IMAPServer:: + $(logcheck)/ignore.d/local-uw-imap -> $(LocalCommon)/logcheck/ignore.d.$(type)/uw-imap + + any:: + # Sættes alt efter om det er server eller workstation. Pakken peger på workstation + $(logcheck)/ignore.d ->! $(logcheck)/ignore.d.$(type) + $(logcheck)/logcheck.ignore ->! $(logcheck)/logcheck.ignore.$(type) + + $(logcheck)/ignore.d/local-ssh -> $(LocalCommon)/logcheck/ignore.d.$(type)/ssh + $(logcheck)/ignore.d/local-postfix -> $(LocalCommon)/logcheck/ignore.d.$(type)/postfix + + $(logcheck)/violations.ignore.d/local-ssh -> $(LocalCommon)/logcheck/violations.ignore.d/ssh + $(logcheck)/violations.ignore.d/local-postfix -> $(LocalCommon)/logcheck/violations.ignore.d/postfix \ No newline at end of file -- cgit v1.2.3