Merge branch 'dev' into agent-master

Merge pull request #232 from draios/remove-apache-shell-spawner
Don't allow apache2 to spawn shells in containers
2026-03-29 16:12:34 +00:00 · 2017-04-14 14:57:56 +02:00 · 2017-04-07 13:05:30 -07:00 · 2017-04-06 15:24:21 -07:00 · 2017-03-30 14:46:44 +02:00 · 2017-03-20 15:45:29 +01:00
1 changed files with 1 additions and 1 deletions
--- a/rules/falco_rules.yaml
+++ b/rules/falco_rules.yaml
@@ -433,7 +433,7 @@
    and shell_procs
    and proc.pname exists
    and not proc.pname in (shell_binaries, docker_binaries, k8s_binaries, lxd_binaries, aide_wrapper_binaries, nids_binaries,
-                           monitoring_binaries, gitlab_binaries, initdb, pg_ctl, awk, apache2, falco, cron, erl_child_setup)
+                           monitoring_binaries, gitlab_binaries, initdb, pg_ctl, awk, falco, cron, erl_child_setup)
    and not trusted_containers
  output: "Shell spawned in a container other than entrypoint (user=%user.name %container.info shell=%proc.name parent=%proc.pname cmdline=%proc.cmdline)"
  priority: WARNING
Author	SHA1	Message	Date
Luca Marturana	d42d0e2dd1	Merge branch 'dev' into agent-master	2017-04-14 14:57:56 +02:00
Mark Stemm	718113f7bd	Merge pull request #232 from draios/remove-apache-shell-spawner Don't allow apache2 to spawn shells in containers	2017-04-07 13:05:30 -07:00
Mark Stemm	955e1d78b1	Don't allow apache2 to spawn shells in containers This ensures that interpreted php,perl,etc code run by apache won't be able to spawn shells, either. This fixes https://github.com/draios/falco/issues/231.	2017-04-06 15:24:21 -07:00
Luca Marturana	135b4d9975	Merge branch 'dev' into agent-master	2017-03-30 14:46:44 +02:00
Luca Marturana	a25166b7ac	Merge branch 'dev' into agent-master	2017-03-20 15:45:29 +01:00
Luca Marturana	800a3f1ea1	Merge branch 'dev' into agent-master	2017-02-21 11:47:36 +01:00
Luca Marturana	31464de885	Merge branch 'dev' into agent-master	2017-02-07 11:06:22 +01:00
Luca Marturana	9b308d2793	Merge branch 'dev' into agent-master	2017-02-02 12:35:47 +01:00
Luca Marturana	a99f09da96	Merge branch 'dev' into agent-master	2017-01-31 11:47:33 +01:00
Luca Marturana	1e0ddba11a	Merge branch 'dev' into agent-master	2017-01-25 18:08:35 +01:00
Luca Marturana	b6d1101cb6	Merge branch 'agent-master' into dev	2017-01-17 10:55:07 +01:00