- #10324: instalacija

diff --git a/debian/postinst b/debian/postinst
index bdd90c1..7afafdf 100755 (executable)
--- a/debian/postinst
+++ b/debian/postinst
@@ -49,7 +49,7 @@ if ! getent group $OSSEC_GROUP >/dev/null; then
     addgroup --system $OSSEC_GROUP
 fi
 
-# fix the permissions
+# fix ownership
 chown -R root:$OSSEC_GROUP $DIRECTORY
 chown -R $OSSEC_USER:$OSSEC_GROUP $DIRECTORY/queue/alerts
 chown -R $OSSEC_USER:$OSSEC_GROUP $DIRECTORY/queue/ossec
@@ -69,6 +69,25 @@ chown root:$OSSEC_GROUP $DIRECTORY/etc/internal_options.conf
 chown root:$OSSEC_GROUP $DIRECTORY/etc/shared/*
 chown root:$OSSEC_GROUP $DIRECTORY/etc/ossec.conf
 
+# fix perms
+chmod -R 550 $DIRECTORY
+chmod -R 770 $DIRECTORY/queue/alerts
+chmod -R 770 $DIRECTORY/queue/ossec
+chmod -R 750 $DIRECTORY/queue/fts
+chmod -R 750 $DIRECTORY/queue/syscheck
+chmod -R 750 $DIRECTORY/queue/rootcheck
+chmod -R 750 $DIRECTORY/queue/diff
+chmod -R 755 $DIRECTORY/queue/agent-info
+chmod -R 755 $DIRECTORY/queue/rids
+chmod -R 755 $DIRECTORY/queue/agentless
+chmod -R 750 $DIRECTORY/stats
+chmod -R 750 $DIRECTORY/logs
+chmod -R 550 $DIRECTORY/rules
+chmod 770 $DIRECTORY/var/run
+chmod 550 $DIRECTORY/etc
+chmod 770 $DIRECTORY/etc/shared
+chmod 700 $DIRECTORY/.ssh
+
 # copy timezone and localtime
 if [ -e /etc/timezone ]; then
     cmp -s /etc/timezone $DIRECTORY/etc/timezone || \