1 /* @(#) $Id: ./src/config/syscheck-config.h, 2011/09/08 dcid Exp $
4 /* Copyright (C) 2009 Trend Micro Inc.
7 * This program is a free software; you can redistribute it
8 * and/or modify it under the terms of the GNU General Public
9 * License (version 2) as published by the FSF - Free Software
18 #define MAX_DIR_SIZE 64
19 #define MAX_DIR_ENTRY 128
20 #define SYSCHECK_WAIT 300
23 /* Checking options */
24 #define CHECK_MD5SUM 0000001
25 #define CHECK_PERM 0000002
26 #define CHECK_SIZE 0000004
27 #define CHECK_OWNER 0000010
28 #define CHECK_GROUP 0000020
29 #define CHECK_SHA1SUM 0000040
30 #define CHECK_REALTIME 0000100
31 #define CHECK_SEECHANGES 0000200
44 typedef struct _config
46 int tsleep; /* sleep for sometime for daemon to settle */
48 int rootcheck; /* set to 0 when rootcheck is disabled */
49 int disabled; /* is syscheck disabled? */
53 int time; /* frequency (secs) for syscheck to run */
54 int queue; /* file descriptor of socket to write to queue */
56 int *opts; /* attributes set in the <directories> tag element */
58 char *workdir; /* set to the DEFAULTDIR (/var/ossec) */
62 char *scan_day; /* run syscheck on this day */
63 char *scan_time; /* run syscheck at this time */
65 char **ignore; /* list of files/dirs to ignore */
66 void **ignore_regex; /* regex of files/dirs to ignore */
68 char **dir; /* array of directories to be scanned */
71 /* Windows only registry checking */
73 char **registry_ignore; /* list of registry entries to ignore */
74 void **registry_ignore_regex; /* regex of registry entries to ignore */
75 char **registry; /* array of registry entries to be scanned */