merge from dcid 2012-07-30

etc/rules/pam_rules.xml

@@ -92,6 +92,11 @@
     <description>PAM misconfiguration.</description>
   </rule>
 
+  <rule id="5555" level="3">
+    <match>: password changed for</match>
+    <description>User changed password.</description>
+  </rule>
+
 
 </group> <!-- SYSLOG,pam -->
 

src/agentlessd/scripts/register_host.sh

@@ -88,6 +88,7 @@ elif [ "x$1" = "xadd" ]; then
         echo "ERROR: Unable to creating entry (echo failed)."
         exit 1;
     fi    
+    chmod 744 $MYPASS
     echo "*Host $2 added."
 
 else

src/analysisd/analysisd.c

@@ -252,7 +252,7 @@ int main_analysisd(int argc, char **argv)
     }
 
     /* going on Daemon mode */
-    if(!test_config || !run_foreground)
+    if(!test_config && !run_foreground)
     {
         nowDaemon();
         goDaemon();

src/analysisd/dodiff.c

@@ -99,6 +99,7 @@ int doDiff(RuleInfo *currently_rule, Eventinfo *lf)
     currently_rule->last_events[0] = NULL;
 
 
+
     if(lf->hostname[0] == '(')
     {
         htpt = strchr(lf->hostname, ')');

src/analysisd/testrule.c

@@ -659,7 +659,7 @@ void OS_ReadMSG(int m_queue, char *ut_str)
                 char holder[1024];
                 holder[1] = '\0';
                 exit_code = 3;
-                if(strcasecmp(ut_decoder_name, lf->decoder_info->name) == 0)
+                if(lf->decoder_info->name != NULL && strcasecmp(ut_decoder_name, lf->decoder_info->name) == 0)
                 {
                     exit_code--;
                     snprintf(holder, 1023, "%d", currently_rule->sigid);