diff options
| author | Eugeni Dodonov <eugeni@mandriva.org> | 2010-03-10 14:35:49 +0000 |
|---|---|---|
| committer | Eugeni Dodonov <eugeni@mandriva.org> | 2010-03-10 14:35:49 +0000 |
| commit | 76d4891ca0b06ba368d185f78d24e7d8a5382fd4 (patch) | |
| tree | 4b3a6e6ff364280a34211e2ba2f3da14c687af3d /src | |
| parent | ea472e0767e030cb39016bfc68cd986079818209 (diff) | |
| download | msec-76d4891ca0b06ba368d185f78d24e7d8a5382fd4.tar msec-76d4891ca0b06ba368d185f78d24e7d8a5382fd4.tar.gz msec-76d4891ca0b06ba368d185f78d24e7d8a5382fd4.tar.bz2 msec-76d4891ca0b06ba368d185f78d24e7d8a5382fd4.tar.xz msec-76d4891ca0b06ba368d185f78d24e7d8a5382fd4.zip | |
Added support for ignoring changes in pid when checking for open ports
(#56744)
Diffstat (limited to 'src')
| -rw-r--r-- | src/msec/plugins/audit.py | 7 |
1 files changed, 6 insertions, 1 deletions
diff --git a/src/msec/plugins/audit.py b/src/msec/plugins/audit.py index 4b72262..cb0b2ed 100644 --- a/src/msec/plugins/audit.py +++ b/src/msec/plugins/audit.py @@ -42,6 +42,7 @@ class audit: config.SETTINGS['FIX_UNOWNED'] = ("audit.fix_unowned", config.VALUES_YESNO) config.SETTINGS['CHECK_PROMISC'] = ("audit.check_promisc", config.VALUES_PERIODIC) config.SETTINGS['CHECK_OPEN_PORT'] = ("audit.check_open_port", config.VALUES_PERIODIC) + config.SETTINGS['IGNORE_PID_CHANGES'] = ("audit.ignore_pid_changes", config.VALUES_PERIODIC) config.SETTINGS['CHECK_FIREWALL'] = ("audit.check_firewall", config.VALUES_PERIODIC) config.SETTINGS['CHECK_PASSWD'] = ("audit.check_passwd", config.VALUES_PERIODIC) config.SETTINGS['CHECK_SHADOW'] = ("audit.check_shadow", config.VALUES_PERIODIC) @@ -67,7 +68,7 @@ class audit: # preparing msecgui menu for check in ["CHECK_PERMS", "CHECK_PERMS_ENFORCE", "CHECK_USER_FILES", "CHECK_SUID_ROOT", "CHECK_SUID_MD5", "CHECK_SGID", - "CHECK_WRITABLE", "CHECK_UNOWNED", "FIX_UNOWNED", "EXCLUDE_REGEXP", "CHECK_PROMISC", "CHECK_OPEN_PORT", "CHECK_FIREWALL", + "CHECK_WRITABLE", "CHECK_UNOWNED", "FIX_UNOWNED", "EXCLUDE_REGEXP", "CHECK_PROMISC", "CHECK_OPEN_PORT", "IGNORE_PID_CHANGES", "CHECK_FIREWALL", "CHECK_PASSWD", "CHECK_SHADOW", "CHECK_CHKROOTKIT", "CHECK_RPM_PACKAGES", "CHECK_RPM_INTEGRITY", "CHECK_SHOSTS", "CHECK_USERS", "CHECK_GROUPS", "TTY_WARN", "SYSLOG_WARN", "MAIL_EMPTY_CONTENT", "CHECK_ON_BATTERY"]: @@ -191,6 +192,10 @@ class audit: """Patterns to exclude from disk checks. This parameter is parsed as a regex (7), so you may use complex expressions.""" pass + def ignore_pid_changes(self, param): + """Ignore changes in process IDs when checking for open network ports.""" + pass + def check_promisc(self, param): ''' Activate ethernet cards promiscuity check.''' cron = self.configfiles.get_config_file(CRON) |