560594 – false-positive warnings for /usr/sbin/.ipsec.hmac

Bug 560594 - false-positive warnings for /usr/sbin/.ipsec.hmac

Summary: false-positive warnings for /usr/sbin/.ipsec.hmac

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Fedora EPEL
Classification:	Fedora
Component:	rkhunter
Sub Component:
Version:	el5
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Kevin Fenzi
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Duplicates (1):	606466 (view as bug list)
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2010-02-01 09:53 UTC by Jan van Eldik
Modified:	2010-07-15 21:00 UTC (History)
CC List:	4 users (show)
Fixed In Version:	rkhunter-1.3.6-7.fc12
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2010-06-23 17:45:00 UTC
Type:	---
Embargoed:

Attachments	(Terms of Use)

Description Jan van Eldik 2010-02-01 09:53:56 UTC

Description of problem:

    rkhunter warns about /usr/sbin/.ipsec.hmac from the openswan RPM:

    > Warning: Hidden file found: /usr/sbin/.ipsec.hmac: ASCII text

Version-Release number of selected component (if applicable):

    rkhunter-1.3.6-2.el5.noarch

How reproducible:

    100%

Steps to Reproduce:

    Simply run /etc/cron.daily/rkhunter
  
Additional info:

    Adding "ALLOWHIDDENFILE=/usr/sbin/.ipsec.hmac" to /etc/rkhunter.conf
    suppresses the warning

Comment 1 Kevin Fenzi 2010-02-01 17:36:28 UTC

Thanks for the report. 

I really wish they would stop adding these FIPS files. ;( 

Anyhow, I will look at pushing a new update soon to address this.

Comment 2 David 2010-06-01 22:20:55 UTC

I just saw the same error and look forward to the update.

Comment 3 David 2010-06-02 21:45:30 UTC

Kevin,

This effects Fedora 13, I just noticed its filled as just el5

Can you confirm it will be addressed in Fedora as well please?

Comment 4 Kevin Fenzi 2010-06-03 20:05:13 UTC

Rats. I thought I already fixed this one, but I guess not. ;( 

I will try and update both f13 and el5 here soon. 
Sorry for any delay.

Comment 5 Fedora Update System 2010-06-05 19:44:21 UTC

rkhunter-1.3.6-7.el5 has been submitted as an update for Fedora EPEL 5.
http://admin.fedoraproject.org/updates/rkhunter-1.3.6-7.el5

Comment 6 Fedora Update System 2010-06-05 19:54:22 UTC

rkhunter-1.3.6-7.fc13 has been submitted as an update for Fedora 13.
http://admin.fedoraproject.org/updates/rkhunter-1.3.6-7.fc13

Comment 7 Kevin Fenzi 2010-06-05 19:55:11 UTC

Can you please test the above updates and add karma?
Thanks.

Comment 8 Jan van Eldik 2010-06-07 10:01:07 UTC

EPEL 5 works for me, karma added.

                thanks, cheers, Jan

Comment 9 Fedora Update System 2010-06-07 22:17:19 UTC

rkhunter-1.3.6-7.fc13 has been pushed to the Fedora 13 testing repository.  If problems still persist, please make note of it in this bug report.
 If you want to test the update, you can install it with 
 su -c 'yum --enablerepo=updates-testing update rkhunter'.  You can provide feedback for this update here: http://admin.fedoraproject.org/updates/rkhunter-1.3.6-7.fc13

Comment 10 Fedora Update System 2010-06-09 15:49:17 UTC

rkhunter-1.3.6-7.el5 has been pushed to the Fedora EPEL 5 testing repository.  If problems still persist, please make note of it in this bug report.
 If you want to test the update, you can install it with 
 su -c 'yum --enablerepo=updates-testing update rkhunter'.  You can provide feedback for this update here: http://admin.fedoraproject.org/updates/rkhunter-1.3.6-7.el5

Comment 11 Kevin Fenzi 2010-06-23 02:07:35 UTC

*** Bug 606466 has been marked as a duplicate of this bug. ***

Comment 12 Nerijus Baliūnas 2010-06-23 11:13:01 UTC

This effects F12 too.

Comment 13 Fedora Update System 2010-06-23 17:44:54 UTC

rkhunter-1.3.6-7.fc13 has been pushed to the Fedora 13 stable repository.  If problems still persist, please make note of it in this bug report.

Comment 14 Fedora Update System 2010-06-27 00:51:09 UTC

rkhunter-1.3.6-7.fc12 has been submitted as an update for Fedora 12.
http://admin.fedoraproject.org/updates/rkhunter-1.3.6-7.fc12

Comment 15 Kevin Fenzi 2010-06-27 00:51:47 UTC

Please test the f12 update and provide karma. Sorry for the delay here.

Comment 16 Fedora Update System 2010-06-30 14:24:12 UTC

rkhunter-1.3.6-7.el5 has been pushed to the Fedora EPEL 5 stable repository.  If problems still persist, please make note of it in this bug report.

Comment 17 Fedora Update System 2010-07-15 21:00:23 UTC

rkhunter-1.3.6-7.fc12 has been pushed to the Fedora 12 stable repository.  If problems still persist, please make note of it in this bug report.

Note You need to log in before you can comment on or make changes to this bug.