Forum: Cfengine Help
Subject: Re: Cfengine Help: depth_search exclude files in tripwire changes
Author: steve
Link to topic: https://cfengine.com/forum/read.php?3,19377,19422#msg-19422
Hi Bas van der Vlies,
Yes, this a good idea (just noticed this post, thanks for your response), do
you know if I can specify the complete /path/to/file/excluded_file.txt ?
I have a similar issue as described on another thread, with Neil Watson,
basically that I want to exclude /etc/adjtime, but if I specify "exclude_file"
slist => { "adjtime"};
then /etc/adjtime, /bin/adjtime, /sbin/adjtime ..... will also get ignored, I
think this could have unintended consequences, as well as open the opportunity
for abuse of this ignored filename by an intruder.
Thread at: (https://cfengine.com/forum/read.php?3,19372,19415#msg-19415)
I did try "exclude_file" slist => { "/etc/adjtime"};
But this added the file to the tripwire database instead of ignoring it...
I'm getting there, thanks for your help.
~ Steve.
_______________________________________________
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
