thbe-rkhunter

Puppet rkhunter module


Keywords
redhat, rhel, centos, scientific, rkhunter
License
GPL-3.0
Install
puppet module install thbe-rkhunter --version 0.5.5

Documentation

rkhunter

Build Status Puppet Forge Coverage Status

Table of Contents

  1. Overview
  2. Module Description - What the module does and why it is useful
  3. Setup - The basics of getting started with rkhunter
  4. Usage - Configuration options and additional functionality
  5. Reference - An under-the-hood peek at what the module is doing and how
  6. Limitations - OS compatibility, etc.
  7. Development - Guide for contributing to the module

Overview

The rkhunter module provides the installation procedure for Rkhunter including the setup of the initial rkhunter database.

Module Description

The rkhunter module provides a security feature that scan the local system for rootkit fragments and warn you, if detetcted.

Setup

What rkhunter affects

  • rkhunter package.
  • rkhunter configuration file.
  • rkhunter database.

Setup requirements

You need to activate the EPEL repository before you can setup the SSMTP instance. If you use a rpm based system from the RedHat family you can use my yum module (thbe-yum):

class { "::yum": repo_epel => true }

Beginning with rkhunter

include '::rkhunter' is enough to get you up and running if the parameters point to proper values. If you wish to pass in parameters like which servers to use then you can use:

class { '::rkhunter':
  root_email => 'john.doe@example.local',
}

Usage

All interaction with the rkhunter module can be done through the main rkhunter class. This means you can simply toggle the options in the rkhunter main class to get the full functionality.

I just want rkhunter, what's the minimum I need?

include '::rkhunter'

I just want to route all mails to central mail gateway, nothing else.

class { '::rkhunter':
  root_email => 'john.doe@example.local',
  tftp => true,
}

Reference

See https://github.com/thbe/puppet-rkhunter/blob/master/REFERENCE.md

Limitations

This module has been built on and tested against Puppet 5 and higher.

The module has been tested on:

  • CentOS 7
  • Debian 9
  • Ubuntu 18.04

Testing on other platforms has been light and cannot be guaranteed.

Development

If you like to add or improve this module, feel free to fork the module and send me a merge request with the modification.

Contributors

The list of contributors can be found at: https://github.com/thbe/puppet-rkhunter/graphs/contributors