Skip to content

gregpalmier/rkhunter-cookbook

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

41 Commits

attributes

attributes

 
 

recipes

recipes

 
 

templates/default

templates/default

 
 

test

test

 
 

.gitignore

.gitignore

 
 

.kitchen.yml

.kitchen.yml

 
 

.rspec

.rspec

 
 

.rubocop.yml

.rubocop.yml

 
 

.travis.yml

.travis.yml

 
 

Berksfile

Berksfile

 
 

Gemfile

Gemfile

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

Rakefile

Rakefile

 
 

Thorfile

Thorfile

 
 

Vagrantfile

Vagrantfile

 
 

chefignore

chefignore

 
 

metadata.rb

metadata.rb

 
 

Repository files navigation

rkhunter Cookbook

Build Status

A Chef cookbook for installing and configuring rkhunter

Requirements

  1. Install ChefDK
  2. Install Vagrant
  3. Install Virtualbox
  4. Install the vagrant-omnibus plugin with vagrant plugin install vagrant-omnibus
  5. Install the vagrant-berkshelf plugin with vagrant plugin install vagrant-berkshelf

Platforms

Fedora, RHEL, Debian, Ubuntu.

Attributes

All attributes are nested under the rkhunter key.

rkhunter::default

Non-nil attributes defined under ['rkhunter']['config'] are used to construct rkhunter.conf. The key names are upper-cased so ['rkhunter']['config']['auto_x_detect'] = 1 becomes AUTO_X_DETECT=1. For options that can be specified more than once, including enable_tests and disable_tests, use an array. There are far too many configuration options to list here so check the sample configuration file that ships with rkhunter.

Debian's configuration file largely follows the upstream defaults while RHEL's adds many paths for a better out-of-box experience. This cookbook mostly defaults to the RHEL values but some of these are only applied to RHEL and Fedora. See the attributes file for details.

rkhunter::debian

Attributes to control the execution of rkhunter on Debian.

Key Type Description Default
['debian']['cron_daily_run'] Boolean whether to run daily true
['debian']['cron_db_update'] Boolean whether to update db weekly true
['debian']['db_update_email'] Boolean enable reports of weekly database updates false
['debian']['report_email'] String email address to report to root
['debian']['apt_autogen'] Boolean enable automatic database updates false
['debian']['nice'] Integer niceness of run-level 0
['debian']['run_check_on_battery'] Boolean potentially run while on battery false

rkhunter::rhel

Attributes to control the execution of rkhunter on RHEL and Fedora.

Key Type Description Default
['rhel']['mailto'] String email address to report to root
['rhel']['diag_scan'] String perform detailed report scan (yes/no) no

Usage

Include rkhunter in your node's run_list OR create a simple role:

name 'rkhunter'
description 'rkhunter config'

run_list(
  'recipe[rkhunter]',
)

default_attributes(
  :rkhunter => {
    :debian {
      :db_update_email => true,
      :report_email => 'your@email.com'
    }
  }
)

Contributing

  1. Fork the repository on Github
  2. Create a named feature branch (like add_component_x)
  3. Write your change
  4. Write tests for your change (if applicable)
  5. Run the tests, ensuring they all pass
  6. Submit a Pull Request using Github

License and Authors

License: Apache Authors: Greg Palmier, Michael Burns, James Le Cuirot.

About

rkhunter chef cookbook

Resources

Readme

License

View license
Activity

Stars

4 stars

Watchers

3 watching

Forks

7 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages