Package: cruft-ng
Version: 0.9.54
Dear Alexandre,
a couple of false-positive reports from a fresh bookworm installation.
Using the recent daily script of chkrootkit result in the following
files reported:
/var/log/chkrootkit/chkrootkit-daily.log
/var/log/chkrootkit/log.expected
/var/log/chkrootkit/log.today
/var/log/chkrootkit/log.today.raw
The package geoipupdate should ignore the state file:
/var/lib/GeoIP/.geoipupdate.lock
Due to the dependency of runit-helpers of openssh-server cruft reports:
/etc/runit/runsvdir/default/ssh
Probably bug #938964 can be mentioned.
cruft reports the following two files:
/usr/lib/firmware/regulatory.db
/usr/lib/firmware/regulatory.db.p7s
The package wireless-regdb is and was never installed so I guess the
installer created them.
I am not sure how to handle them, since they are probably required on
wifi system and otherwise unnecessary.
Since the policy version of SELinux policies can change the rules for
selinux-policy-default should drop the entry for
/etc/selinux/default/policy/policy.30
and the explain script shoud add
echo "/etc/selinux/default/policy/policy.$(policyvers)"
The rules for selinux-policy-default should include
/var/lib/selinux/default/active/file_contexts.homedirs
/var/lib/selinux/default/active/modules_checksum
/var/lib/selinux/default/active/policy.linked
/var/lib/selinux/default/active/seusers.linked
/var/lib/selinux/default/active/users_extra.linked
Also the explain script needs to be updated to work with the recent
set -e addition:
-disabled=$(echo $line | grep 'disabled')
+disabled=$(echo $line | grep -wE 'disabled\s*$') || true
Best regards,
Christian Göttsche
