Bug 1299969

Summary: oscap-ssh man page suggests wrong path to oscap
Product: Red Hat Enterprise Linux 6 Reporter: Marek Haicman <mhaicman>
Component: openscapAssignee: Jan Černý <jcerny>
Status: CLOSED ERRATA QA Contact: Marek Haicman <mhaicman>
Severity: low Docs Contact:
Priority: unspecified    
Version: 6.7CC: ksrot, mgrepl, mpreisle, pvrabec, wsato
Target Milestone: rcKeywords: ManPageChange, Patch
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2017-03-21 11:31:34 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Marek Haicman 2016-01-19 15:59:34 UTC 
Description of problem:
In oscap-ssh man page, there is example, how to prepare user for passwordless running of oscap via sudo.

----
       like /etc/sudoers.d/99-oscap-user:
         # allow oscap-user to run openscap scanner
         Defaults!/bin/oscap !requiretty
         oscap-user ALL=(root) NOPASSWD: /bin/oscap
----
oscap binary does not dwell in /bin/ directory, but /usr/bin/ - thus making the example not copypasteble and slightly less useful for less knowledgeable user.


Version-Release number of selected component (if applicable):
openscap-1.2.8-1.el6
Comment 1 Šimon Lukašík 2016-01-28 12:46:57 UTC 
6fa44a58b031dd8e98bb876812415ed3b43049ee
Comment 2 Mike McCune 2016-03-28 23:36:13 UTC 
This bug was accidentally moved from POST to MODIFIED via an error in automation, please see mmccune with any questions
Comment 5 Marek Haicman 2016-12-05 16:38:58 UTC 
Fixed in version openscap-utils-1.2.12-1.el6:


[0 root@qeos-35 ~]# rpm -qa openscap-utils; man oscap-ssh | grep -A 3 99-oscap-user
openscap-utils-1.2.12-1.el6.x86_64
       adding a file like /etc/sudoers.d/99-oscap-user:
         # allow oscap-user to run openscap scanner
         Defaults!/usr/bin/oscap !requiretty
         oscap-user ALL=(root) NOPASSWD: /usr/bin/oscap

[0 root@qeos-35 ~]# which oscap
/usr/bin/oscap
Comment 7 errata-xmlrpc 2017-03-21 11:31:34 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHBA-2017-0754.html