1299969 – oscap-ssh man page suggests wrong path to oscap

Bug 1299969 - oscap-ssh man page suggests wrong path to oscap

Summary: oscap-ssh man page suggests wrong path to oscap

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Enterprise Linux 6
Classification:	Red Hat
Component:	openscap
Sub Component:
Version:	6.7
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	low
Target Milestone:	rc
Target Release:	---
Assignee:	Jan Černý
QA Contact:	Marek Haicman
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2016-01-19 15:59 UTC by Marek Haicman
Modified:	2017-03-21 11:31 UTC (History)
CC List:	5 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2017-03-21 11:31:34 UTC
Target Upstream Version:

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHBA-2017:0754	0	normal	SHIPPED_LIVE	openscap bug fix and enhancement update	2017-03-21 12:46:08 UTC

Description Marek Haicman 2016-01-19 15:59:34 UTC

Description of problem:
In oscap-ssh man page, there is example, how to prepare user for passwordless running of oscap via sudo.

----
       like /etc/sudoers.d/99-oscap-user:
         # allow oscap-user to run openscap scanner
         Defaults!/bin/oscap !requiretty
         oscap-user ALL=(root) NOPASSWD: /bin/oscap
----
oscap binary does not dwell in /bin/ directory, but /usr/bin/ - thus making the example not copypasteble and slightly less useful for less knowledgeable user.


Version-Release number of selected component (if applicable):
openscap-1.2.8-1.el6

Comment 1 Šimon Lukašík 2016-01-28 12:46:57 UTC

6fa44a58b031dd8e98bb876812415ed3b43049ee

Comment 2 Mike McCune 2016-03-28 23:36:13 UTC

This bug was accidentally moved from POST to MODIFIED via an error in automation, please see mmccune with any questions

Comment 5 Marek Haicman 2016-12-05 16:38:58 UTC

Fixed in version openscap-utils-1.2.12-1.el6:


[0 root@qeos-35 ~]# rpm -qa openscap-utils; man oscap-ssh | grep -A 3 99-oscap-user
openscap-utils-1.2.12-1.el6.x86_64
       adding a file like /etc/sudoers.d/99-oscap-user:
         # allow oscap-user to run openscap scanner
         Defaults!/usr/bin/oscap !requiretty
         oscap-user ALL=(root) NOPASSWD: /usr/bin/oscap

[0 root@qeos-35 ~]# which oscap
/usr/bin/oscap

Comment 7 errata-xmlrpc 2017-03-21 11:31:34 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHBA-2017-0754.html

Note You need to log in before you can comment on or make changes to this bug.