Skip to content

Commit

Permalink
Monitor only hostname in /var/lib/tor/services
Browse files Browse the repository at this point in the history 
PR #2963 introduced monitoring of /var/lib/tor folder, however these folders contain private key material. It would be more prudent (and at no cost integrity monitoring capabilities) to exclusively monitor the hostname.
Fixes #3090
  • Loading branch information
@emkll
emkll committed Mar 1, 2018
1 parent 259da58 commit 54ebfcf
Showing 1 changed file with 3 additions and 1 deletion.
4 changes: 3 additions & 1 deletion install_files/securedrop-ossec-agent/var/ossec/etc/ossec.conf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,9 @@
<directories realtime="yes" check_all="yes" report_changes="yes">/var/securedrop</directories>
<directories realtime="yes" check_all="yes" report_changes="yes">/var/www</directories>
<directories realtime="yes" check_all="yes" report_changes="yes">/var/lib/securedrop</directories>
<directories realtime="yes" check_all="yes" report_changes="yes">/var/lib/tor/services</directories>
<directories realtime="yes" check_all="yes" report_changes="yes">/var/lib/tor/services/source/hostname</directories>
<directories realtime="yes" check_all="yes" report_changes="yes">/var/lib/tor/services/journalist/hostname</directories>
<directories realtime="yes" check_all="yes" report_changes="yes">/var/lib/tor/services/ssh/hostname</directories>
<directories realtime="yes" check_all="yes" report_changes="yes">/var/lib/tor/lock</directories>
<directories realtime="yes" check_all="yes" report_changes="yes">/boot</directories>

Expand Down

0 comments on commit 54ebfcf

Please sign in to comment.