On Thu, Apr 27, 2023 at 10:53:03AM +0000, Klemens Nanni wrote: > Would be nice to record changes to critical scripts run on state changes > and have modifications recorded through security(8). > > Feedback? Objection? OK?
This gets ugly if you use binary files instead of scripts, so we'd either want their hashes or not handle them at all. > > Index: changelist > =================================================================== > RCS file: /cvs/src/etc/changelist,v > retrieving revision 1.136 > diff -u -p -r1.136 changelist > --- changelist 24 Apr 2023 16:36:54 -0000 1.136 > +++ changelist 27 Apr 2023 10:39:20 -0000 > @@ -11,6 +11,12 @@ > /etc/acme-client.conf > /etc/adduser.conf > /etc/adduser.message > +/etc/apm/hibernate > +/etc/apm/powerdown > +/etc/apm/powerup > +/etc/apm/resume > +/etc/apm/standby > +/etc/apm/suspend > /etc/bgpd.conf > /etc/boot.conf > /etc/bootparams >
