On Mon, Dec 13, 2021 at 10:08:46PM +0200, Rimas Kudelis wrote: > 2021-12-13 21:50, Marc Haber rašė: > > It would be a good idea if the packages would deliver their own aide > > rules, as they are probably easier to update for the respective package > > maintainers. A file /etc/aide/aide.conf.d/31_spamassassin delivered by > > the spamassassin package will automatically be used by aide. See > > /usr/share/doc/aide-common/README.Debian.gz for details. > > I doubt other package maintainers would want to keep up with (potential) > changes in Aide (or any other packages) either. I guess for them it would be > just as much hassle as it is for you.
Package maintainers generally know better about when changes in their packages happen. But I guess that's the same problem like for SELinux policies and AppArmor stuff, people just don't do it. > In case of SpamAssassin, I would suggest to just use a more generic > file/directory mask, which wouldn't be tied to one specific version of > SpamAssassin and wouldn't require you to keep watching for its minor > updates. That would however open up entire namespaces for attackers to use and hude. We're trying hard not to do that. > Also, maybe subscribing to new version notifications of packages for which > you provide Aide configs could be a viable option as well? Sorry. I'll think about that when we have invented the 36 hour day. It's not a problem of being informed, it's a problem of doing the work. Feel free to join and to contribute. The team could really use somebody who has the time and motivation to care about stable. Greetings Marc -- ----------------------------------------------------------------------------- Marc Haber | "I don't trust Computers. They | Mailadresse im Header Leimen, Germany | lose things." Winona Ryder | Fon: *49 6224 1600402 Nordisch by Nature | How to make an American Quilt | Fax: *49 6224 1600421
