Bug 1871812 - rkhunter does not search files in /etc/ssh/sshd_config.d for local settings
Summary: rkhunter does not search files in /etc/ssh/sshd_config.d for local settings
Keywords:
Status: CLOSED DUPLICATE of bug 1851620
Alias: None
Product: Fedora
Classification: Fedora
Component: rkhunter
Version: 32
Hardware: Unspecified
OS: Unspecified
unspecified
low
Target Milestone: ---
Assignee: Kevin Fenzi
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2020-08-24 10:54 UTC by Martin Gregorie
Modified: 2020-08-25 19:40 UTC (History)
3 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2020-08-25 19:40:07 UTC
Type: Bug
Embargoed:

Attachments (Terms of Use)

Description Martin Gregorie 2020-08-24 10:54:03 UTC 
Description of problem: 

rkhunter does not recognise the PermitRootLogin parameter when it is set in 
/etc/ssh/sshd_config.d/local.conf


Version-Release number of selected component (if applicable):  1.4.6


How reproducible:

Happens with every day's rkhunter scan


Steps to Reproduce:
1. sudo rkhunter --cronjob --nocolors --report-warnings-only


Actual results:   

Warning: The SSH configuration option 'PermitRootLogin' has not been set.
         The default value may be 'yes', to allow root access.


Expected results: No warnings reported


Additional info:


Here is the output of a grep run showing that PermitRootLogin is set in 
/etc/ssh/sshd_config.d/local.conf and not in /etc/ssh/sshd_config

$ sudo grep PermitRootLogin /etc/ssh/sshd_config \
> /etc/ssh/sshd_config.d/local.conf
/etc/ssh/sshd_config:#PermitRootLogin prohibit-password
/etc/ssh/sshd_config:# the setting of "PermitRootLogin without-password".
/etc/ssh/sshd_config.d/local.conf:PermitRootLogin yes
Comment 1 Kevin Fenzi 2020-08-25 19:40:07 UTC 

*** This bug has been marked as a duplicate of bug 1851620 ***
Note You need to log in before you can comment on or make changes to this bug.