Bug 1524456
| Summary: | rkhunter forgets that an ipc_shared_mem warning was issued | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | GMS <george.sigut> | ||||||
| Component: | rkhunter | Assignee: | Kevin Fenzi <kevin> | ||||||
| Status: | CLOSED ERRATA | QA Contact: | Fedora Extras Quality Assurance <extras-qa> | ||||||
| Severity: | medium | Docs Contact: | |||||||
| Priority: | unspecified | ||||||||
| Version: | 27 | CC: | george.sigut, kevin, manuel.wolfshant, nonamedotc | ||||||
| Target Milestone: | --- | ||||||||
| Target Release: | --- | ||||||||
| Hardware: | Unspecified | ||||||||
| OS: | Linux | ||||||||
| Whiteboard: | |||||||||
| Fixed In Version: | rkhunter-1.4.6-1.fc27 rkhunter-1.4.6-1.fc26 rkhunter-1.4.6-1.el7 rkhunter-1.4.6-1.el6 | Doc Type: | If docs needed, set a value | ||||||
| Doc Text: | Story Points: | --- | |||||||
| Clone Of: | Environment: | ||||||||
| Last Closed: | 2018-02-27 17:25:23 UTC | Type: | Bug | ||||||
| Regression: | --- | Mount Type: | --- | ||||||
| Documentation: | --- | CRM: | |||||||
| Verified Versions: | Category: | --- | |||||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||||
| Embargoed: | |||||||||
| Attachments: |
|
||||||||
Created attachment 1366033 [details]
solution based on rkhunter-1.4.4-5.fc27.noarch
Would you be willing to post this to the upstream list? Rkhunter-users.net Or would you prefer I do so? (In reply to Kevin Fenzi from comment #2) > Would you be willing to post this to the upstream list? > > Rkhunter-users.net > > Or would you prefer I do so? If you could do it, it would be nice; I have no experience cooperating with the sourceforge folks. I should also mention, that I am slightly baffled by the shell behavior - I would not expect it, but it is repeatable also on Mint MATE (for what's that worth). sure. Posted. Lets see what they say... rkhunter-1.4.6-1.el6 has been submitted as an update to Fedora EPEL 6. https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-61b83e1b50 rkhunter-1.4.6-1.fc26 has been submitted as an update to Fedora 26. https://bodhi.fedoraproject.org/updates/FEDORA-2018-ca69db5fee rkhunter-1.4.6-1.fc27 has been submitted as an update to Fedora 27. https://bodhi.fedoraproject.org/updates/FEDORA-2018-1d006205b5 rkhunter-1.4.6-1.el7 has been submitted as an update to Fedora EPEL 7. https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-a4f94f474c rkhunter-1.4.6-1.fc27 has been pushed to the Fedora 27 testing repository. If problems still persist, please make note of it in this bug report. See https://fedoraproject.org/wiki/QA:Updates_Testing for instructions on how to install test updates. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2018-1d006205b5 rkhunter-1.4.6-1.fc26 has been pushed to the Fedora 26 testing repository. If problems still persist, please make note of it in this bug report. See https://fedoraproject.org/wiki/QA:Updates_Testing for instructions on how to install test updates. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2018-ca69db5fee rkhunter-1.4.6-1.el7 has been pushed to the Fedora EPEL 7 testing repository. If problems still persist, please make note of it in this bug report. See https://fedoraproject.org/wiki/QA:Updates_Testing for instructions on how to install test updates. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-a4f94f474c rkhunter-1.4.6-1.el6 has been pushed to the Fedora EPEL 6 testing repository. If problems still persist, please make note of it in this bug report. See https://fedoraproject.org/wiki/QA:Updates_Testing for instructions on how to install test updates. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-61b83e1b50 rkhunter-1.4.6-1.fc27 has been pushed to the Fedora 27 stable repository. If problems still persist, please make note of it in this bug report. rkhunter-1.4.6-1.fc26 has been pushed to the Fedora 26 stable repository. If problems still persist, please make note of it in this bug report. rkhunter-1.4.6-1.el7 has been pushed to the Fedora EPEL 7 stable repository. If problems still persist, please make note of it in this bug report. rkhunter-1.4.6-1.el6 has been pushed to the Fedora EPEL 6 stable repository. If problems still persist, please make note of it in this bug report. |
Created attachment 1366032 [details] probleam and solution demo Description of problem: rkhunter finds ipc_shared_mem error and registers a warning. This warning is NOT repeated in the summary and NO warning mail is sent out. Version-Release number of selected component (if applicable): rkhunter-1.4.4-5.fc27.noarch bash-4.4.12-12.fc27.x86_64 How reproducible: Steps to Reproduce: 1. enable mailing for rkhunter 2. run e.g. firefox (or anything triggering shared-mem alarm) 3. run "rkhunter.corr --enable ipc_shared_mem" the message Checking for suspicious shared memory segments [ Warning ] comes as expected Actual results: a) in summary: No warnings were found while checking the system. b) no mail triggered Expected results: a) in summary: One or more warnings have been found while checking the system. b) warning mail sent out Additional info: It seems that in the current shell the construction ipcs | while read doesn't export the changed variables. File rkhunterHOW demonstrates the problem and suggests a solution, file rkhunter.corr.diff presents a possible solution. See also comments in rkhunterHOW.