Description of problem: The config file for audit does not have a %verify section in the .spec file telling the rpm to skip any mtime (md5, size) issues with the file when a user runs with --verify. Or is there a reason why we do not want to have it for auditd.conf file? Version-Release number of selected component (if applicable): audit-1.6.5-2.el5 Steps to Reproduce: 1. rpm -V audit Actual results: $ rpm -V audit .......T c /etc/audit/auditd.conf Expected results: No rpm verfify issues on /etc/audit/auditd.conf
I didn't know this was a requirement, so I haven't ever thought about it. Are there any packages that do this that I could look at?
After discussing this on Fedora-devel mail list, I do not think its a good idea to purposely hide rpm's ability to detect changed config files. Especially for security packages.