On Mon, 8 Oct 2007, Julien Valroff wrote: > Hi Tim, > > Le lundi 08 octobre 2007 à 08:45 +1000, Tim Connors a écrit : > > > > I'm getting false positives that I can't seem to disable except by > > disabling the rather course grained "SCAN_MODE_DEV=THOROUGH" tests. > [...] > > This is well commented in the configuration file: > # > # Allow the specified files to be present in the /dev directory. > # One file per line (use multiple ALLOWDEVFILE lines). > # > #ALLOWDEVFILE=/dev/abc
I was unsure as to whether those files were paired with the "suspicious files in dev" or some other test. Perhaps the comment should read: # # Allow the specified files to be present in the /dev directory and not # regarded as a suspicious file. One file per line (use multiple # ALLOWDEVFILE lines), wildcards accepted. # and the SCAN_MODE_DEV line should be moved to be adjacent to this list in the default config file. > > Also, there is no documentation as to what a "suspicious file" in /dev > > entails. > > That could indeed be much improved, I will forward this upstream. Thanks. -- TimC Probably best see a real doctor and not take too much diagnostic advice from a bunch of sysadmins who consider the body a meat computer that needs debugging. -- Anthony de Boer on possible nerve damage in ASR
