Got rkhunter working for HIDS; operational fixes for Sharingan

roles/Sharingan/files/lynis/freshclam.service

@@ -1,14 +0,0 @@
-[Unit]
-Description=Sharingan-IDS | Freshclam service
-
-[Service]
-Nice=19
-IOSchedulingClass=best-effort
-IOSchedulingPriority=7
-Type=simple
-ExecStart=freshclam
-User=root
-group=root
-
-[Install]
-WantedBy=multi-user.target

roles/Sharingan/files/lynis/freshclam.timer

@@ -1,11 +0,0 @@
-[Unit]
-Description=Sharingan-IDS | Update AV definitions
-
-[Timer]
-OnCalendar=14:00
-Persistent=false
-
-[Install]
-WantedBy=timers.target
-
-#EOF

roles/Sharingan/files/lynis/sharingan-scan.service

@@ -0,0 +1,16 @@
+[Unit]
+Description=Sharingan-IDS | Vulnerability scanning
+
+[Service]
+Nice=19
+IOSchedulingClass=best-effort
+IOSchedulingPriority=7
+Type=simple
+ExecStartPre=clamscan -r / -i --exclude-dir="/srv/ygddrasil" --exclude-dir="/dev" --exclude-dir="/sys" --exclude-dir="/proc" --exclude-dir="/media/Infected/" --exclude-dir="/etc/snort/rules" --exclude-dir="/etc/suricata/rules"
+ExecStart=lynis audit system
+ExecStartPost=systemd-cat -t sharingan-vulns arch-audit
+User=root
+group=root
+
+[Install]
+WantedBy=multi-user.target

roles/Sharingan/files/lynis/sharingan-scan.timer

@@ -1,5 +1,5 @@
 [Unit]
-Description=Sharingan-IDS | rkhunter timer
+Description=Sharingan-IDS | Vulnerability scanning
 
 [Timer]
 OnCalendar=15:00

roles/Sharingan/files/lynis/sharingan-vulns.service

@@ -1,14 +0,0 @@
-[Unit]
-Description=Sharingan-IDS | rkhunter HIDS
-
-[Service]
-Nice=19
-IOSchedulingClass=best-effort
-IOSchedulingPriority=7
-Type=simple
-ExecStart=rkhunter --check --sk
-User=root
-group=root
-
-[Install]
-WantedBy=multi-user.target