433782 – spec file missing %verify section for auditd.conf

Bug 433782 - spec file missing %verify section for auditd.conf

Summary: spec file missing %verify section for auditd.conf

Keywords:
Status:	CLOSED WONTFIX
Alias:	None
Product:	Red Hat Enterprise Linux 5
Classification:	Red Hat
Component:	audit
Sub Component:
Version:	5.2
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	rc
Target Release:	---
Assignee:	Steve Grubb
QA Contact:	Brian Brock
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2008-02-21 13:50 UTC by Eduard Benes
Modified:	2009-11-18 15:34 UTC (History)
CC List:	0 users
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2009-11-18 15:34:20 UTC
Target Upstream Version:
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Eduard Benes 2008-02-21 13:50:05 UTC

Description of problem:
The config file for audit does not have a %verify section in the .spec file 
telling the rpm to skip any mtime (md5, size) issues with the file when a user 
runs with --verify. Or is there a reason why we do not want to have it for 
auditd.conf file? 

Version-Release number of selected component (if applicable):
audit-1.6.5-2.el5

Steps to Reproduce:
1. rpm -V audit
  
Actual results:
$ rpm -V audit
.......T c /etc/audit/auditd.conf

Expected results:
No rpm verfify issues on /etc/audit/auditd.conf

Comment 1 Steve Grubb 2008-02-21 14:26:06 UTC

I didn't know this was a requirement, so I haven't ever thought about it. Are
there any packages that do this that I could look at?

Comment 5 Steve Grubb 2009-11-18 15:34:20 UTC

After discussing this on Fedora-devel mail list, I do not think its a good idea to purposely hide rpm's ability to detect changed config files. Especially for security packages.

Note You need to log in before you can comment on or make changes to this bug.