Refine stage 4 blacklist: No backups, no shadow- group- and passwd-

author: Simon Rettberg 2014-01-23 15:49:08 +0100
committer: Simon Rettberg 2014-01-23 15:49:08 +0100
commit: b5c885b0dfb4f1b67c1d4ea01792a9347d91817c (patch)
tree: 57e00f65a7cee498182a2f501d7c3f8efd038b3b /server/blacklists
parent: [vmchooser] Update resolution tool (diff)
download: tm-scripts-b5c885b0dfb4f1b67c1d4ea01792a9347d91817c.tar.gz
tm-scripts-b5c885b0dfb4f1b67c1d4ea01792a9347d91817c.tar.xz
tm-scripts-b5c885b0dfb4f1b67c1d4ea01792a9347d91817c.zip
2 files changed, 8 insertions, 0 deletions
diff --git a/server/blacklists/essential/linux-base b/server/blacklists/essential/linux-base
index f83ef1ac..c8f7c343 100644
--- a/server/blacklists/essential/linux-base
+++ b/server/blacklists/essential/linux-base
@@ -40,3 +40,9 @@
 - /bin/sh
 # This is where the bind-mount of mltk resides...
 - /export/build
+- /etc/group-
+- /etc/gshadow
+- /etc/gshadow-
+- /etc/passwd-
+- /etc/shadow-
+
diff --git a/server/blacklists/essential/linux-extended b/server/blacklists/essential/linux-extended
index 3aed0dac..143caadb 100644
--- a/server/blacklists/essential/linux-extended
+++ b/server/blacklists/essential/linux-extended
@@ -20,4 +20,6 @@
 - /usr/local/sbin/busybox
 # MOTD updater (tty/ssh login) pretty annoying as it tells you about available updates on ubuntu etc.
 - /etc/update-motd.d/**
+# Backups don't make sense
+- /var/backups/**
author	Simon Rettberg	2014-01-23 15:49:08 +0100
committer	Simon Rettberg	2014-01-23 15:49:08 +0100
commit	b5c885b0dfb4f1b67c1d4ea01792a9347d91817c (patch)
tree	57e00f65a7cee498182a2f501d7c3f8efd038b3b /server/blacklists
parent	[vmchooser] Update resolution tool (diff)
download	tm-scripts-b5c885b0dfb4f1b67c1d4ea01792a9347d91817c.tar.gz tm-scripts-b5c885b0dfb4f1b67c1d4ea01792a9347d91817c.tar.xz tm-scripts-b5c885b0dfb4f1b67c1d4ea01792a9347d91817c.zip