rkhunter chef cookbook
Switch branches/tags
Nothing to show
Clone or download
Pull request Compare This branch is 1 commit ahead of gregpalmier:master.
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
attributes
recipes
templates/default
test
.gitignore
.kitchen.yml
.rspec
.rubocop.yml
.travis.yml
Berksfile
Gemfile
LICENSE
README.md
Rakefile
Thorfile
Vagrantfile
chefignore
metadata.rb

README.md

rkhunter Cookbook

Build Status

A Chef cookbook for installing and configuring rkhunter

Requirements

  1. Install ChefDK
  2. Install Vagrant
  3. Install Virtualbox
  4. Install the vagrant-omnibus plugin with vagrant plugin install vagrant-omnibus
  5. Install the vagrant-berkshelf plugin with vagrant plugin install vagrant-berkshelf

Platforms

Fedora, Debian, Ubuntu.

Attributes

rkhunter::default

Key Type Description Default
['rkhunter']['cron_daily_run'] Boolean whether to run daily true
['rkhunter']['cron_db_update'] Boolean whether to update db weekly true
['rkhunter']['db_update_email'] Boolean enable reports of weekly database updates true
['rkhunter']['report_email'] String email address to report to root
['rkhunter']['apt_autogen'] Boolean enable automatic database updates false
['rkhunter']['nice'] String niceness of run-level 0
['rkhunter']['run_check_on_battery'] String potentially run while on battery false
['rkhunter']['allow_ssh_root_user'] String proper configuration of SSHD's PermitRootLogin option no
['rkhunter']['scriptwhitelist'] Array paths to commands which are allowed to be scripts []
['rkhunter']['allowhiddendir'] Array paths to hidden directories for whitelisting []
['rkhunter']['allowhiddenfile'] Array paths to hidden files for whitelisting []
['rkhunter']['port_whitelist'] Array paths and/or network ports to whitelist []

Usage

Include rkhunter in your node's run_list OR create a simple role:

name "rkhunter"
description "rkhunter config"
run_list(
    "recipe[rkhunter]",
)

default_attributes(
    :rkhunter => { :db_update_email => "true",
                   :report_email => "your@email.com" }
)

Contributing

  1. Fork the repository on Github
  2. Create a named feature branch (like add_component_x)
  3. Write your change
  4. Write tests for your change (if applicable)
  5. Run the tests, ensuring they all pass
  6. Submit a Pull Request using Github

License and Authors

License: Apache Authors: Greg Palmier, Michael Burns.