free
/
freedombone
关注 1
点赞 0
派生 0
代码 工单 0 合并请求 0 版本发布 0 百科 动态
浏览代码

Additional tripwire rules

Bob Mottram 7 年前
父节点
32d89e951f
当前提交
4efb04dce5
共有 1 个文件被更改,包括 7 次插入0 次删除
合并视图 显示文件统计
  1. 7
    0
      src/freedombone-base-tripwire

+ 7
- 0
src/freedombone-base-tripwire 查看文件

124 
     if ! grep -q '!/usr/local/lib/node_modules' /etc/tripwire/twpol.txt; then
 124 
     if ! grep -q '!/usr/local/lib/node_modules' /etc/tripwire/twpol.txt; then
125 
         sed -i '\|/etc\t\t->.*|a\    !/usr/local/lib/node_modules ;' /etc/tripwire/twpol.txt
 125 
         sed -i '\|/etc\t\t->.*|a\    !/usr/local/lib/node_modules ;' /etc/tripwire/twpol.txt
126 
     fi
 126 
     fi
127 
+    # Events here are likely due to USB HRNG activity
128 
+    if ! grep -q '!/dev/char' /etc/tripwire/twpol.txt; then
129 
+        sed -i '\|/dev\t\t->.*|a\    !/dev/char ;' /etc/tripwire/twpol.txt
130 
+    fi
131 
+    if ! grep -q '!/dev/bus/usb' /etc/tripwire/twpol.txt; then
132 
+        sed -i '\|/dev\t\t->.*|a\    !/dev/bus/usb ;' /etc/tripwire/twpol.txt
133 
+    fi
127
134
128 
     # Not much is in /usr/local/bin other than project commands and avoiding it removes
 135 
     # Not much is in /usr/local/bin other than project commands and avoiding it removes
129 
     # problems with updates. This is a tradeoff, but not by much.
 136 
     # problems with updates. This is a tradeoff, but not by much.