From 5dbe4f20fcbe0591396d996d748454ab5278770d Mon Sep 17 00:00:00 2001
From: Capashenn <capashenn@gmail.com>
Date: Thu, 21 Mar 2019 18:24:06 +0100
Subject: Add some default permfile/permdir

---
 default.prf | 28 +++++++++++++++++++++++++++-
 1 file changed, 27 insertions(+), 1 deletion(-)

(limited to 'default.prf')

diff --git a/default.prf b/default.prf
index ef474b1f..d7c35e66 100644
--- a/default.prf
+++ b/default.prf
@@ -332,7 +332,28 @@ openldap:slapd.conf:owner:ldap-root:
 #permfile:/etc/inetd.conf:rw-------:root:-:WARN:
 #permfile:/etc/fstab:rw-r--r--:root:-:WARN:
 permfile:/etc/lilo.conf:rw-------:root:-:WARN:
-
+permfile:/boot/grub2/grub.cfg:rw-------:root:root:WARN:
+permfile:/boot/grub/grub.cfg:rw-------:root:root:WARN:
+permfile:/boot/grub2/user.cfg:rw-------:root:root:WARN:
+permfile:/etc/motd:rw-r--r--:root:root:WARN:
+permfile:/etc/issue:rw-r--r--:root:root:WARN:
+permfile:/etc/issue.net:rw-r--r--:root:root:WARN:
+permfile:/etc/hosts.allow:rw-r--r--:root:root:WARN:
+permfile:/etc/hosts.deny:rw-r--r--:root:root:WARN:
+permfile:/etc/crontab:rw-------:root:-:WARN:
+permfile:/etc/cron.allow:rw-------:root:-:WARN:
+permfile:/etc/cron.deny:rw-------:root:-:WARN:
+permfile:/etc/at.allow:rw-------:root:-:WARN:
+permfile:/etc/at.deny:rw-------:root:-:WARN:
+permfile:/etc/ssh/sshd_config:rw-------:root:-:WARN:
+permfile:/etc/passwd:rw-r--r--:root:-:WARN:
+permfile:/etc/shadow:---------:root:-:WARN:
+permfile:/etc/group:rw-r--r--:root:-:WARN:
+permfile:/etc/gshadow:---------:root:-:WARN:
+permfile:/etc/passwd-:rw-r--r--:root:-:WARN:
+permfile:/etc/shadow-:---------:root:-:WARN:
+permfile:/etc/group-:rw-r--r--:root:-:WARN:
+permfile:/etc/gshadow-:---------:root:-:WARN:
 
 #################################################################################
 #
@@ -343,6 +364,11 @@ permfile:/etc/lilo.conf:rw-------:root:-:WARN:
 #################################################################################
 
 permdir:/root/.ssh:rwx------:root:-:WARN:
+permdir:/etc/cron.hourly:rwx------:root:root:WARN:
+permdir:/etc/cron.daily:rwx------:root:root:WARN:
+permdir:/etc/cron.weekly:rwx------:root:root:WARN:
+permdir:/etc/cron.monthly:rwx------:root:root:WARN:
+permdir:/etc/cron.d:rwx------:root:root:WARN:
 
 # Scan for a program/binary in BINPATHs
 #scanbinary:Rootkit Hunter:rkhunter:
-- 
cgit v1.2.3