add ignore file for chkrootkit

2021-05-01 23:36:51 +02:00 · 2021-05-01 23:36:51 +02:00 · 575e5144d5
parent 2973307cf8
commit 575e5144d5
2 changed files with 6 additions and 2 deletions
--- a/conf/chkrootkit.ignore
+++ b/conf/chkrootkit.ignore
@ -0,0 +1 @@
+^eth[0-9]{1}: PACKET SNIFFER\(\/usr\/lib\/systemd\/systemd-networkd\[[0-9]+\]\)$
--- a/setup/additionals.sh
+++ b/setup/additionals.sh
@ -48,10 +48,13 @@ tools/editconf.py /etc/default/rkhunter \
        CRON_DB_UPDATE='"true"' \
        APT_AUTOGEN='"true"'

+hide_output install -m 644 conf/chkrootkit.ignore /etc/
+
 tools/editconf.py /etc/chkrootkit.conf \
        RUN_DAILY='"true"' \
-        DIFF_MODE='"true"'
+        DIFF_MODE='"true"' \
+        IGNORE_FILE="/etc/chkrootkit.ignore"

 # Should be last, update expected output
 rkhunter --propupd
-chkrootkit -q > /var/log/chkrootkit/log.expected
+chkrootkit -q | egrep -v -f /etc/chkrootkit.ignore  > /var/log/chkrootkit/log.expected
				`@ -0,0 +1 @@`
				`^eth[0-9]{1}: PACKET SNIFFER\(\/usr\/lib\/systemd\/systemd-networkd\[[0-9]+\]\)$`