diff options
Diffstat (limited to 'security/ossec-hids-local-config/files/template-rootcheck-default.xml.in')
| -rw-r--r-- | security/ossec-hids-local-config/files/template-rootcheck-default.xml.in | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/security/ossec-hids-local-config/files/template-rootcheck-default.xml.in b/security/ossec-hids-local-config/files/template-rootcheck-default.xml.in new file mode 100644 index 0000000..63e5f1e --- /dev/null +++ b/security/ossec-hids-local-config/files/template-rootcheck-default.xml.in @@ -0,0 +1,23 @@ +<?xml version="1.0" encoding="UTF-8"?> +<template_config os="FreeBSD" profile="%%ROOTCHECK_PROFILE%%"> + + <rootcheck> + <rootkit_files>%%OSSEC_HOME%%/etc/shared/rootkit_files.txt</rootkit_files> + <rootkit_trojans>%%OSSEC_HOME%%/etc/shared/rootkit_trojans.txt</rootkit_trojans> + <system_audit>%%OSSEC_HOME%%/etc/shared/system_audit_rcl.txt</system_audit> + <system_audit>%%OSSEC_HOME%%/etc/shared/system_audit_ssh.txt</system_audit> + </rootcheck> + +</template_config> + +<template_config os="Linux" profile="%%ROOTCHECK_PROFILE%%"> + + <rootcheck> + <rootkit_files>/var/ossec/etc/shared/rootkit_files.txt</rootkit_files> + <rootkit_trojans>/var/ossec/etc/shared/rootkit_trojans.txt</rootkit_trojans> + <system_audit>/var/ossec/etc/shared/system_audit_rcl.txt</system_audit> + <system_audit>/var/ossec/etc/shared/system_audit_ssh.txt</system_audit> + <system_audit>/var/ossec/etc/shared/cis_debian_linux_rcl.txt</system_audit> + </rootcheck> + +</template_config> |