On 6/01/2010, at 8:42 PM, Paul de Weerd wrote:
On Tue, Jan 05, 2010 at 06:25:59AM -0600, Chris Bennett wrote:
| I don't use a lot of conf files in conf/modules, but yesterday I
| edited my php.conf and httpd.conf.
| The two changes were tied to each other for a specific change.
|
| I just got my insecurity output. It only listed changes to
httpd.conf.
| There was nothing about change to php.conf.
|
| For a while now, since 4.3 httpd.conf has:
| Include /var/www/conf/modules/*.conf
|
| Since all conf files in conf/modules essentially ARE httpd.conf as
| of a restart, why aren't these files tracked also?
You may want to read up on security(8), especially the part that talks
about using mtree...
Cheers,
Paul 'WEiRD' de Weerd
Have I missed something? Nobody's mentioned /etc/changelist.
If the file isnt listed there, it wont be checked.
paulm
