More tripwire fixes

2015-03-01 12:23:03 +00:00 · 2015-03-01 12:23:03 +00:00 · 7f6c40a2c3
parent 969275ecd3
commit 7f6c40a2c3
1 changed files with 6 additions and 0 deletions
--- a/src/freedombone
+++ b/src/freedombone
@ -8045,6 +8045,12 @@ function intrusion_detection {
  sed -i 's|/proc.*||g' /etc/tripwire/twpol.txt
  # Don't report log changes
  sed -i 's|/var/log.*||g' /etc/tripwire/twpol.txt
+  # Ignore /etc/tripwire
+  if ! grep -q "!/etc/tripwire" /etc/tripwire/twpol.txt; then
+	  sed -i '\|/etc\t\t->.*|a\        !/etc/tripwire;' /etc/tripwire/twpol.txt
+  fi
+  # Avoid logging the changed database
+  sed -i 's|$(TWETC)/tw.pol.*||g' /etc/tripwire/twpol.txt
  reset-tripwire

  echo 'intrusion_detection' >> $COMPLETION_FILE