From 110a74f094abcb4f2763d76e204fb3c9743fa9a1 Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@protonmail.com>
Date: Tue, 13 Jul 2021 07:26:05 -0400
Subject: disable-common.inc update

---
 etc/inc/disable-common.inc | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

(limited to 'etc/inc')

diff --git a/etc/inc/disable-common.inc b/etc/inc/disable-common.inc
index 4c83284ee..1283a3a3d 100644
--- a/etc/inc/disable-common.inc
+++ b/etc/inc/disable-common.inc
@@ -162,6 +162,9 @@ deny  ${HOME}/.local/share/systemd
 deny  /var/lib/systemd
 deny  ${PATH}/systemd-run
 deny  ${RUNUSER}/systemd
+deny  ${PATH}/systemctl
+deny  /etc/systemd/system
+deny  /etc/systemd/network
 # creates problems on Arch where /etc/resolv.conf is a symlink to /var/run/systemd/resolve/resolv.conf
 #blacklist /var/run/systemd
 
@@ -257,6 +260,18 @@ deny  /etc/modules*
 deny  /etc/logrotate*
 deny  /etc/adduser.conf
 
+# hide config for various intrusion detection systems
+deny  /etc/rkhunter.conf
+deny  /var/lib/rkhunter
+deny  /etc/chkrootkit.conf
+deny  /etc/lynis
+deny  /etc/aide
+deny  /etc/logcheck
+deny  /etc/tripwire
+deny  /etc/snort
+deny  /etc/fail2ban.conf
+deny  /etc/suricata
+
 # Startup files
 read-only ${HOME}/.antigen
 read-only ${HOME}/.bash_aliases
-- 
cgit v1.2.3-54-g00ecf