Репозитории ALT
| S: | 1.4.7-alt0_git_0_7b287f4 |
| 5.1: | 1.3.4-alt1 |
| 4.1: | 1.3.4-alt0.M41.1 |
| 4.0: | 1.2.7-alt1 |
| 3.0: | 1.2.7-alt1 |
Группа :: Мониторинг
Пакет: rkhunter
навигация по пакетам
Главная Изменения Спек Патчи Sources Загрузить Gear Bugs and FR Repocop
# This spec is backported to ALTLinux t7 automatically by rpmbph script. Do not edit it.
#
Name: rkhunter
Version: 1.4.7
Release: alt0_git_7b287f4
Summary: Rootkit scans for rootkits, backdoors and local exploits
License: GPLv3+
Group: Monitoring
Url: http://rkhunter.sourceforge.net/
BuildArch: noarch
Source: %name-%version.tar
Source2: rkhunter.sysconfig
Source3: printosnumber.sh
Source4: ru.lng
Source5: rkhunter.conf
Source6: rpmhashes.sh
#
# Fix issue with ipcs command and locales
#
Patch1: rkhunter-1.4.2-ipcs-locale.patch
Patch2: fix-lang-update-grep.patch
Requires: crontabs
Requires: su, binutils, kmod, findutils, grep
Requires: libe2fs, procps, lsof, wget
Requires: perl, mailx, logrotate
BuildPreReq: mailx crontabs perl-base perl-Digest-SHA1
# Note: mailx and crontabs are not needed to be noticed explicitly,
# but are placed here for better manageability at install stage
# and for suppress warnings from find-requires at build stage.
Summary(ru_RU.UTF8): п÷п╬п╦я│п╨ я┌я─п╬я▐п╫я│п╨п╦я┘ п╨п╬п╫п╣п╧ п╦ п╥п╟п╨п╩п╟п╢п╬п╨ п╡ п©я─п╬пЁя─п╟п╪п╪п╟я┘
# ToDo: /usr/bin/rkhunter strictly lookups helper scripts in /usr/lib/%name.
# More correct should be to place them to /usr/share/%name (%_datadir/%name)
# because they are platform-independent.
%define util_dir %_libexecdir/%name
%define scripts_dir %util_dir/scripts
%define runonce_dir %util_dir/adminutils
%define data_dir %_localstatedir/%name
%define tmp_dir %data_dir/tmp
%define db_dir %data_dir/db
%define hash_list defaulthashes.dat
%define doc_dir %_docdir/%name-%version
%define cron_daily %_sysconfdir/cron.daily
%define cron_script %cron_daily/01-%name
%description
Rootkit scanner is scanning tool to ensure you for about 99.9%% you're
clean of nasty tools. This tool scans for rootkits, backdoors and local
exploits by running tests like:
- MD5 hash compare
- Look for default files used by rootkits
- Wrong file permissions for binaries
- Look for suspected strings in LKM and KLD modules
- Look for hidden files
- Optional scan within plaintext and binary files
- Software version checks
- Application tests
Rootkit Hunter is released as a GPL licensed project
and free for everyone to use.
%description -l ru_RU.UTF8
п║п╨п╟п╫п╣я─ Rootkit п©я─п╬п╡п╣я─я▐п╣я┌ п╡п╟я┬я┐ я│п╦я│я┌п╣п╪я┐ п╫п╟ п╫п╟п╩п╦я┤п╦п╣ п╥п╟п╨п╩п╟п╢п╬п╨ п╦ я┌я─п╬я▐п╫я│п╨п╦я┘ п╨п╬п╫п╣п╧.
п■п╩я▐ я█я┌п╬пЁп╬ п╦я│п©п╬п╩я▄п╥я┐я▌я┌я│я▐ я│п╩п╣п╢я┐я▌я┴п╦п╣ я┌п╣я│я┌я▀:
- п©я─п╬п╡п╣я─п╨п╟ п╨п╬п╫я┌я─п╬п╩я▄п╫я▀я┘ я│я┐п╪п╪ MD5
- п©п╬п╦я│п╨ я└п╟п╧п╩п╬п╡, п╦я│п©п╬п╩я▄п╥я┐п╣п╪я▀я┘ п╥п╟п╨п╩п╟п╢п╨п╟п╪п╦
- п╫п╣п╡п╣я─п╫я▀п╣ п©я─п╟п╡п╟ п╢п╬я│я┌я┐п©п╟ п╨ п©я─п╬пЁя─п╟п╪п╪п╟п╪
- я│п╦пЁп╫п╟я┌я┐я─я▀ п╥п╟п╨п╩п╟п╢п╬п╨ п╡ п╪п╬п╢я┐п╩я▐я┘ я▐п╢я─п╟
- п©п╬п╦я│п╨ п╫п╣п╡п╦п╢п╦п╪я▀я┘ я└п╟п╧п╩п╬п╡
- п╢п╬п©п╬п╩п╫п╦я┌п╣п╩я▄п╫п╬п╣ я│п╨п╟п╫п╦я─п╬п╡п╟п╫п╦п╣ п╡п╫я┐я┌я─п╦ я┌п╣п╨я│я┌п╬п╡я▀я┘ п╦ п╢п╡п╬п╦я┤п╫я▀я┘ я└п╟п╧п╩п╬п╡
- п©я─п╬п╡п╣я─п╨п╟ п╡п╣я─я│п╦п╧ п©я─п╬пЁя─п╟п╪п╪
- я┌п╣я│я┌я▀ п╢п╩я▐ п©я─п╦п╩п╬п╤п╣п╫п╦п╧
%prep
%setup -n %name
cp %SOURCE3 files/development
cp %SOURCE6 files/%hash_list
#patch1 -p1
%patch2 -p1
install %SOURCE4 files/i18n/ru
install %SOURCE5 files/
cat <<'EOF' >%name.logrotate
%_logdir/%name/%name.log {
weekly
notifempty
create 640 root root
}
EOF
%build
# We have nothing to configure... yet...
#files/development/rpmhashes.sh files/ > files/%hash_list
%install
mkdir -p %buildroot{%_bindir,%_sysconfdir,%_man8dir}
mkdir -p %buildroot{%scripts_dir,%runonce_dir,%doc_dir,%db_dir,%tmp_dir}
mkdir -p %buildroot%db_dir/i18n
install -d %buildroot%_logdir/%name
# RPM_BUILD_ROOT=%buildroot sh ./installer.sh --install --layout RPM
install -m750 -p files/rkhunter %buildroot%_bindir/
install -m750 -p files/{*.pl,*.sh} %buildroot%scripts_dir/
install -m750 -p files/development/* %buildroot%runonce_dir/
install -m644 -p files/*.8 %buildroot%_man8dir/
install -m640 -p files/*.dat %buildroot%db_dir/
install -m644 -p files/i18n/en %buildroot%db_dir/i18n/en
install -m644 -p files/i18n/ru %buildroot%db_dir/i18n/ru
install -m644 -p files/{CHANGELOG,README,FAQ,ACKNOWLEDGMENTS} %buildroot%doc_dir/
install -D -m640 -p %SOURCE2 %buildroot%_sysconfdir/sysconfig/%name
install -D -m644 -p %name.logrotate %buildroot%_sysconfdir/logrotate.d/%name
# (cjo) Put installation root in configuration file,
# then copy the rest of the file from the original.
cat >> %buildroot%_sysconfdir/%name.conf << __EOF__
## Next three lines installed automatically by RPM.
## Do not change unless you know what you're doing...
INSTALLDIR=%_prefix
DBDIR=%db_dir
TMPDIR=%tmp_dir
SCRIPTDIR=%scripts_dir
__EOF__
cat files/%name.conf >> %buildroot%_sysconfdir/%name.conf
chmod 640 %buildroot%_sysconfdir/%name.conf
# Only root should use rkhunter (at least for now)
chmod o-rwx -R %buildroot{%scripts_dir,%db_dir}
# make a cron.daily file to mail us the reports
mkdir -p "%buildroot%cron_daily"
cat > "%buildroot%cron_script" << __EOF__
#!/bin/sh
( echo "Rootkit Hunter daily report"
date
echo "========================================="
echo
echo "Empty message means that no errors found."
echo
%_bindir/%name --cronjob --report-warnings-only
) | /bin/mail -s '%name Daily Run' root
__EOF__
chmod 750 %buildroot%cron_script
# make script for update MD5 hashes
cat > %buildroot%runonce_dir/create_defaulthashes << __EOF__
#!/bin/sh
#
# %runonce_dir/create_defaulthashes -- part of Rootkit Hunter
#
# Purpose: updates MD5 signatures of your binary stuff.
#
# Uses GnuPG for signing created list:
# - you should have already generated GPG key
# - should be executed interactively for passing key password
#
cd %db_dir
tstamp=\$(LANG=en date '+%%Y%%m%%d_%%H%%M%%S')
for f in %hash_list %hash_list.asc %hash_list.sig; do
test -f "\$f" && mv -f "\$f" "\$f.saved.\$tstamp"
done
cd %runonce_dir
./rpmhashes.sh > %db_dir/%hash_list
# ./createhashes.sh >> %db_dir/%hash_list
cd %db_dir
gpg --detach-sign --armor --yes %hash_list
gpg --verify %hash_list.asc
echo "
Don't forget to repeat this command after every software upgrade!"
## EOF ##
__EOF__
chmod 750 %buildroot%runonce_dir/create_defaulthashes
%post
%preun
rm -f %db_dir/%hash_list.{asc,*saved.*}
%files
%_bindir/%name
%cron_script
%util_dir
%data_dir
%attr(770,root,root) %tmp_dir
%doc_dir
%_man8dir/*
#db_dir/i18n/en
#db_dir/i18n/ru
%config(noreplace) %_sysconfdir/logrotate.d/%name
%config(noreplace) %verify(not mtime) %_sysconfdir/%name.conf
%config(noreplace) %verify(not mtime) %_sysconfdir/sysconfig/%name
%exclude %db_dir/%hash_list
%config(noreplace) %verify(not mtime size md5) %db_dir/%hash_list
%dir %_logdir/%name
%changelog
…
Полный changelog можно просмотреть здесь
#
Name: rkhunter
Version: 1.4.7
Release: alt0_git_7b287f4
Summary: Rootkit scans for rootkits, backdoors and local exploits
License: GPLv3+
Group: Monitoring
Url: http://rkhunter.sourceforge.net/
BuildArch: noarch
Source: %name-%version.tar
Source2: rkhunter.sysconfig
Source3: printosnumber.sh
Source4: ru.lng
Source5: rkhunter.conf
Source6: rpmhashes.sh
#
# Fix issue with ipcs command and locales
#
Patch1: rkhunter-1.4.2-ipcs-locale.patch
Patch2: fix-lang-update-grep.patch
Requires: crontabs
Requires: su, binutils, kmod, findutils, grep
Requires: libe2fs, procps, lsof, wget
Requires: perl, mailx, logrotate
BuildPreReq: mailx crontabs perl-base perl-Digest-SHA1
# Note: mailx and crontabs are not needed to be noticed explicitly,
# but are placed here for better manageability at install stage
# and for suppress warnings from find-requires at build stage.
Summary(ru_RU.UTF8): п÷п╬п╦я│п╨ я┌я─п╬я▐п╫я│п╨п╦я┘ п╨п╬п╫п╣п╧ п╦ п╥п╟п╨п╩п╟п╢п╬п╨ п╡ п©я─п╬пЁя─п╟п╪п╪п╟я┘
# ToDo: /usr/bin/rkhunter strictly lookups helper scripts in /usr/lib/%name.
# More correct should be to place them to /usr/share/%name (%_datadir/%name)
# because they are platform-independent.
%define util_dir %_libexecdir/%name
%define scripts_dir %util_dir/scripts
%define runonce_dir %util_dir/adminutils
%define data_dir %_localstatedir/%name
%define tmp_dir %data_dir/tmp
%define db_dir %data_dir/db
%define hash_list defaulthashes.dat
%define doc_dir %_docdir/%name-%version
%define cron_daily %_sysconfdir/cron.daily
%define cron_script %cron_daily/01-%name
%description
Rootkit scanner is scanning tool to ensure you for about 99.9%% you're
clean of nasty tools. This tool scans for rootkits, backdoors and local
exploits by running tests like:
- MD5 hash compare
- Look for default files used by rootkits
- Wrong file permissions for binaries
- Look for suspected strings in LKM and KLD modules
- Look for hidden files
- Optional scan within plaintext and binary files
- Software version checks
- Application tests
Rootkit Hunter is released as a GPL licensed project
and free for everyone to use.
%description -l ru_RU.UTF8
п║п╨п╟п╫п╣я─ Rootkit п©я─п╬п╡п╣я─я▐п╣я┌ п╡п╟я┬я┐ я│п╦я│я┌п╣п╪я┐ п╫п╟ п╫п╟п╩п╦я┤п╦п╣ п╥п╟п╨п╩п╟п╢п╬п╨ п╦ я┌я─п╬я▐п╫я│п╨п╦я┘ п╨п╬п╫п╣п╧.
п■п╩я▐ я█я┌п╬пЁп╬ п╦я│п©п╬п╩я▄п╥я┐я▌я┌я│я▐ я│п╩п╣п╢я┐я▌я┴п╦п╣ я┌п╣я│я┌я▀:
- п©я─п╬п╡п╣я─п╨п╟ п╨п╬п╫я┌я─п╬п╩я▄п╫я▀я┘ я│я┐п╪п╪ MD5
- п©п╬п╦я│п╨ я└п╟п╧п╩п╬п╡, п╦я│п©п╬п╩я▄п╥я┐п╣п╪я▀я┘ п╥п╟п╨п╩п╟п╢п╨п╟п╪п╦
- п╫п╣п╡п╣я─п╫я▀п╣ п©я─п╟п╡п╟ п╢п╬я│я┌я┐п©п╟ п╨ п©я─п╬пЁя─п╟п╪п╪п╟п╪
- я│п╦пЁп╫п╟я┌я┐я─я▀ п╥п╟п╨п╩п╟п╢п╬п╨ п╡ п╪п╬п╢я┐п╩я▐я┘ я▐п╢я─п╟
- п©п╬п╦я│п╨ п╫п╣п╡п╦п╢п╦п╪я▀я┘ я└п╟п╧п╩п╬п╡
- п╢п╬п©п╬п╩п╫п╦я┌п╣п╩я▄п╫п╬п╣ я│п╨п╟п╫п╦я─п╬п╡п╟п╫п╦п╣ п╡п╫я┐я┌я─п╦ я┌п╣п╨я│я┌п╬п╡я▀я┘ п╦ п╢п╡п╬п╦я┤п╫я▀я┘ я└п╟п╧п╩п╬п╡
- п©я─п╬п╡п╣я─п╨п╟ п╡п╣я─я│п╦п╧ п©я─п╬пЁя─п╟п╪п╪
- я┌п╣я│я┌я▀ п╢п╩я▐ п©я─п╦п╩п╬п╤п╣п╫п╦п╧
%prep
%setup -n %name
cp %SOURCE3 files/development
cp %SOURCE6 files/%hash_list
#patch1 -p1
%patch2 -p1
install %SOURCE4 files/i18n/ru
install %SOURCE5 files/
cat <<'EOF' >%name.logrotate
%_logdir/%name/%name.log {
weekly
notifempty
create 640 root root
}
EOF
%build
# We have nothing to configure... yet...
#files/development/rpmhashes.sh files/ > files/%hash_list
%install
mkdir -p %buildroot{%_bindir,%_sysconfdir,%_man8dir}
mkdir -p %buildroot{%scripts_dir,%runonce_dir,%doc_dir,%db_dir,%tmp_dir}
mkdir -p %buildroot%db_dir/i18n
install -d %buildroot%_logdir/%name
# RPM_BUILD_ROOT=%buildroot sh ./installer.sh --install --layout RPM
install -m750 -p files/rkhunter %buildroot%_bindir/
install -m750 -p files/{*.pl,*.sh} %buildroot%scripts_dir/
install -m750 -p files/development/* %buildroot%runonce_dir/
install -m644 -p files/*.8 %buildroot%_man8dir/
install -m640 -p files/*.dat %buildroot%db_dir/
install -m644 -p files/i18n/en %buildroot%db_dir/i18n/en
install -m644 -p files/i18n/ru %buildroot%db_dir/i18n/ru
install -m644 -p files/{CHANGELOG,README,FAQ,ACKNOWLEDGMENTS} %buildroot%doc_dir/
install -D -m640 -p %SOURCE2 %buildroot%_sysconfdir/sysconfig/%name
install -D -m644 -p %name.logrotate %buildroot%_sysconfdir/logrotate.d/%name
# (cjo) Put installation root in configuration file,
# then copy the rest of the file from the original.
cat >> %buildroot%_sysconfdir/%name.conf << __EOF__
## Next three lines installed automatically by RPM.
## Do not change unless you know what you're doing...
INSTALLDIR=%_prefix
DBDIR=%db_dir
TMPDIR=%tmp_dir
SCRIPTDIR=%scripts_dir
__EOF__
cat files/%name.conf >> %buildroot%_sysconfdir/%name.conf
chmod 640 %buildroot%_sysconfdir/%name.conf
# Only root should use rkhunter (at least for now)
chmod o-rwx -R %buildroot{%scripts_dir,%db_dir}
# make a cron.daily file to mail us the reports
mkdir -p "%buildroot%cron_daily"
cat > "%buildroot%cron_script" << __EOF__
#!/bin/sh
( echo "Rootkit Hunter daily report"
date
echo "========================================="
echo
echo "Empty message means that no errors found."
echo
%_bindir/%name --cronjob --report-warnings-only
) | /bin/mail -s '%name Daily Run' root
__EOF__
chmod 750 %buildroot%cron_script
# make script for update MD5 hashes
cat > %buildroot%runonce_dir/create_defaulthashes << __EOF__
#!/bin/sh
#
# %runonce_dir/create_defaulthashes -- part of Rootkit Hunter
#
# Purpose: updates MD5 signatures of your binary stuff.
#
# Uses GnuPG for signing created list:
# - you should have already generated GPG key
# - should be executed interactively for passing key password
#
cd %db_dir
tstamp=\$(LANG=en date '+%%Y%%m%%d_%%H%%M%%S')
for f in %hash_list %hash_list.asc %hash_list.sig; do
test -f "\$f" && mv -f "\$f" "\$f.saved.\$tstamp"
done
cd %runonce_dir
./rpmhashes.sh > %db_dir/%hash_list
# ./createhashes.sh >> %db_dir/%hash_list
cd %db_dir
gpg --detach-sign --armor --yes %hash_list
gpg --verify %hash_list.asc
echo "
Don't forget to repeat this command after every software upgrade!"
## EOF ##
__EOF__
chmod 750 %buildroot%runonce_dir/create_defaulthashes
%post
%preun
rm -f %db_dir/%hash_list.{asc,*saved.*}
%files
%_bindir/%name
%cron_script
%util_dir
%data_dir
%attr(770,root,root) %tmp_dir
%doc_dir
%_man8dir/*
#db_dir/i18n/en
#db_dir/i18n/ru
%config(noreplace) %_sysconfdir/logrotate.d/%name
%config(noreplace) %verify(not mtime) %_sysconfdir/%name.conf
%config(noreplace) %verify(not mtime) %_sysconfdir/sysconfig/%name
%exclude %db_dir/%hash_list
%config(noreplace) %verify(not mtime size md5) %db_dir/%hash_list
%dir %_logdir/%name
%changelog
…
Полный changelog можно просмотреть здесь