From: Stephen Gran <steve@lobefin.net>
Date: Wed, 15 Jul 2009 11:58:32 +0000 (+0100)
Subject: Manage clamav-unofficial-sigs.  The dsa.conf removes all dbs marked as
X-Git-Url: https://git.donarmstrong.com/?p=dsa-puppet.git;a=commitdiff_plain;h=f72074b094219c67c9a77ff84eda49885ded97b9

Manage clamav-unofficial-sigs.  The dsa.conf removes all dbs marked as
high risk of false positives
Signed-off-by: Stephen Gran <steve@lobefin.net>
---

diff --git a/modules/clamav/files/clamav-unofficial-sigs.conf b/modules/clamav/files/clamav-unofficial-sigs.conf
new file mode 100644
index 00000000..17f49199
--- /dev/null
+++ b/modules/clamav/files/clamav-unofficial-sigs.conf
@@ -0,0 +1,13 @@
+##
+## THIS FILE IS UNDER PUPPET CONTROL. DON'T EDIT IT HERE.
+## USE: git clone git+ssh://$USER@puppet.debian.org/srv/puppet.debian.org/git/dsa-puppet.git
+##
+
+# Source all the configuration files from upstream, Debian and elsewhere
+for f in /usr/share/clamav-unofficial-sigs/conf.d/*.conf ; do
+        if [ -s "$f" ] ; then
+                . $f
+        fi
+done
+
+. /etc/clamav-unofficial-sigs.dsa.conf
diff --git a/modules/clamav/files/clamav-unofficial-sigs.dsa.conf b/modules/clamav/files/clamav-unofficial-sigs.dsa.conf
new file mode 100644
index 00000000..cacf2007
--- /dev/null
+++ b/modules/clamav/files/clamav-unofficial-sigs.dsa.conf
@@ -0,0 +1,22 @@
+ss_dbs="
+   junk.ndb
+   jurlbl.ndb
+   lott.ndb
+   phish.ndb
+   rogue.hdb
+   sanesecurity.ftm
+   scam.ndb
+   spam.ldb
+   spamimg.hdb
+   spear.ndb
+   winnow_malware.hdb
+   winnow_malware_links.ndb
+   winnow_phish_complete_url.ndb
+"
+
+si_dbs="
+   honeynet.hdb
+   securiteinfo.hdb
+   vx.hdb
+"
+
diff --git a/modules/clamav/manifests/init.pp b/modules/clamav/manifests/init.pp
index 591bbf5d..fa7e17ec 100644
--- a/modules/clamav/manifests/init.pp
+++ b/modules/clamav/manifests/init.pp
@@ -3,5 +3,15 @@ class clamav {
               "clamav-freshclam": ensure => installed;
               "clamav-unofficial-sigs": ensure => installed;
     }
+    file {
+        "/etc/clamav-unofficial-sigs.dsa.conf":
+          require => Package["clamav-unofficial-sigs"],
+          source  => [ "puppet:///clamav/clamav-unofficial-sigs.dsa.conf" ]
+          ;
+        "/etc/clamav-unofficial-sigs.conf":
+          require => Package["clamav-unofficial-sigs"],
+          source  => [ "puppet:///clamav/clamav-unofficial-sigs.conf" ]
+          ;
+    }
 }