Change log for checksecurity package in Debian

checksecurity (2.0.16+nmu4) unstable; urgency=medium

  * Non-maintainer upload.
  * Convert to source format 3.0. (Closes: #1007335)

 -- Bastian Germann <email address hidden>  Fri, 13 Oct 2023 19:08:08 +0000

checksecurity (2.0.16+nmu3) unstable; urgency=medium

  * Non-maintainer upload.
  * Fix "missing required debian/rules targets build-arch and/or build-
    indep": Add targets to debian/rules.
    (Closes: #999082)
  * Fix "Removal of obsolete debhelper compat 5 and 6 in bookworm":
    Bump to 7 in debian/{compat,control}.
    (Closes: #965448)
  * Fix some grave packaging errors:
    - move debhelper from Build-Depends-Indep to Build-Depends
    - remove temporary files debian/postrm.debhelper and debian/substvars from
      source package

 -- gregor herrmann <email address hidden>  Sun, 26 Dec 2021 01:56:10 +0100

checksecurity (2.0.16+nmu2) unstable; urgency=medium

  * Non maintainer upload by the Reproducible Builds team.
  * No source change upload to rebuild on buildd with .buildinfo files.

 -- Holger Levsen <email address hidden>  Fri, 01 Jan 2021 19:17:53 +0100

checksecurity (2.0.16+nmu1) unstable; urgency=medium

  * Non-maintainer upload.
  * Use "find -perm /x" instead of "find -perm +x". Closes: #731944

 -- Andreas Metzler <email address hidden>  Tue, 29 Dec 2015 14:06:01 +0100

checksecurity (2.0.16) unstable; urgency=medium


  * plugins/check-setuid: Prevent error from find by putting
    -ignore_readdir_race as first option (Closes: 714152)
  * plugins/check-iptables-logs, man/check-iptables-logs.8: Add new plugin to
    check for iptables logs and provide information of attacked ports,
    blacklisted hosts (using fail2ban), etc.
  * etc/global-checksecurity.conf: Add information for the new plugin, this is 
    disabled by default (as systems might not have iptables configured and,
    even if enabled, there might not be a log target)
  * man/{check-diskfree.8,check-passwd.8,check-setuid.8}: Clarify that these
    plugins are written to be run by checksecurity. Some of the plugins might 
    not work if missing some environment variables (which are defined by
    checksecurity)
  * man/checksecurity.8: Add a reference to the new plugin check-iptables-logs
  * debian/control: Improve the package description with the recommendations
    made by Justin B Rye (Closes: #688070) 
  * debian/control: Add debsecan to the Recommends, this provides notification
    of vulnerabilities in the system and security updates (Closes: #253097)
  * etc/check-setuid.conf: Exclude more filesystems for the setuid checks as
    are system based filesystems
  * debian/po/tr.po: Add Turkish translation provided by Mert Dirik 
    (Closes: #759874)

 -- Javier Fernández-Sanguino Peña <email address hidden>  Sat, 21 Feb 2015 15:35:45 +0100

checksecurity (2.0.15) unstable; urgency=medium


  * Fix bug in the CS_NFSAFS definition in etc/check-setuid.conf that prevents
    the script from matching any filesystem. This bug was, actually, making the
    script not do anything in the default configuration.

    Thanks go to Alessandro Vesely for spotting this bug and providing a fix.

  * debian/control: Adjust the maintainer's name

 -- Javier Fernández-Sanguino Peña <email address hidden>  Sat, 28 Sep 2013 23:31:59 +0200

checksecurity (2.0.14) unstable; urgency=low


  * plugins/check-setuid:
       - Integrate changes to from Ubuntu to make use of ionice when calling
         find. (Closes: #578640)
       - Use the -ignore_readdir_race option when calling find to avoid
         error messages when encountering stale files (Closes: #583809)
  * etc/global-checksecurity.conf: Adjust comments associated to  
    CHECKSECURITY_EMAIL to point to bsd-mailx instead of mailx and 
    remove reference to cron. (Closes: #541636)
  * debian/control: Depend on util-linux (>= 2.15~rc1-1) which provides
    ionice.
  * debian/compat: Change from 4 to 5
  * debian/rules: Adjust calls to dh_clean

 -- Javier Fernandez-Sanguino Pen~a <email address hidden>  Wed, 27 Oct 2010 23:44:51 +0200

checksecurity (2.0.13) unstable; urgency=low


  * Do not report 'disk full' for filesystems mounted under /media.
    This includes the cdrom as well as possibly some other removal
    media like USB memories. Thanks to Tim Connors for
    detecting this bug and providing a patch (Closes: #514306)
  * Add some information in the both check-setuid's manpage and the
    configuration file related to false positives generated from /dev changes
    when a system is rebooted (due to changes in timestamps). And provide
    instructions on how to remove them.
  * Extend check-socket to make it possible to exclude certain lines from
    the output through the CHECKSECURITY_IGNORELINES variable. 
    (Closes: #522749)
  * Added the 'lustre' filesystem to the network filesystem list in
    the default check-setuid.conf (Closes: #502421)
  * Change Makefile to include etc/check-socket.conf in the package.

 -- Javier Fernandez-Sanguino Pen~a <email address hidden>  Tue, 26 May 2009 01:14:49 +0200

checksecurity (2.0.12) unstable; urgency=medium


  * Fix bug in plugins/check_sockets which prevented it from being 
    actually useful. Thanks to Richard Kapolnai for detecting this
    bug and providing a patch. (Closes: #520654)

 -- Javier Fernandez-Sanguino Pen~a <email address hidden>  Sat, 21 Mar 2009 23:46:07 +0100

checksecurity (2.0.11) unstable; urgency=low


  * Debconf Translation changes:
    - Included Portuguese debconf translation, submitted by Rui Branco (Closes: 489378)
    - Fixed "Project-Id-Version" field in Japanese translation

 -- Javier Fernandez-Sanguino Pen~a <email address hidden>  Mon, 28 Jul 2008 22:47:07 +0200