Bug 828331
Summary: | check scan incorrectly handles file names with spaces | ||
---|---|---|---|
Product: | [Fedora] Fedora EPEL | Reporter: | Tony Schreiner <anthony.schreiner> |
Component: | rkhunter | Assignee: | Kevin Fenzi <kevin> |
Status: | CLOSED ERRATA | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | medium | Docs Contact: | |
Priority: | unspecified | ||
Version: | el6 | CC: | kevin, manuel.wolfshant |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | rkhunter-1.4.2-5.fc19 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2014-03-15 15:01:30 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Tony Schreiner
2012-06-04 15:36:22 UTC
This looks like a duplicate of https://bugzilla.redhat.com/show_bug.cgi?id=674245 This was supposed to be fixed in 1.4.x I thought, but perhaps not. What ALLOWDEVFILE directives do you have in /etc/rkhunter.conf ? Can you try: 1. escaping the spaces with \ 2. Putting "s around the entire path 3. Using %20 instead of space. 4. Use a wildcard (*) instead of the path part that has spaces. and see if any of those work? I am using the default /etc/rkhunter.conf that came with the update. These are all the ALLOWDEVFILE lines #ALLOWDEVFILE="/dev/shm/pulse-shm-*" #ALLOWDEVFILE="/dev/shm/sem.ADBE_*" ALLOWDEVFILE=/dev/shm/pulse-shm-* ALLOWDEVFILE=/dev/md/md-device-map ALLOWDEVFILE="/dev/shm/mono.*" ALLOWDEVFILE="/dev/shm/libv4l-*" ALLOWDEVFILE="/dev/shm/spice.*" ALLOWDEVFILE=/dev/.mdadm.map ALLOWDEVFILE=/dev/.udev/queue.bin ALLOWDEVFILE=/dev/.udev/db/* ALLOWDEVFILE=/dev/.udev/rules.d/99-root.rules I have added quotes ALLOWDEVFILE="/dev/.udev/db/*" but the issue persists Would you be willing to report this upstream? rkhunter-users.net If not, I will try and do so... Will do. rkhunter-1.4.2-1.fc20 has been submitted as an update for Fedora 20. https://admin.fedoraproject.org/updates/rkhunter-1.4.2-1.fc20 rkhunter-1.4.2-1.fc19 has been submitted as an update for Fedora 19. https://admin.fedoraproject.org/updates/rkhunter-1.4.2-1.fc19 rkhunter-1.4.2-1.el6 has been submitted as an update for Fedora EPEL 6. https://admin.fedoraproject.org/updates/rkhunter-1.4.2-1.el6 rkhunter-1.4.2-1.fc20 has been pushed to the Fedora 20 stable repository. If problems still persist, please make note of it in this bug report. rkhunter-1.4.2-1.el6 has been pushed to the Fedora EPEL 6 stable repository. If problems still persist, please make note of it in this bug report. rkhunter-1.4.2-5.fc19 has been submitted as an update for Fedora 19. https://admin.fedoraproject.org/updates/rkhunter-1.4.2-5.fc19 rkhunter-1.4.2-5.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report. |