Description of problem: rkunter check complains with Invalid ALLOWDEVFILE configuration option: Invalid pathname: (word) when it encounters file names with spaces. In my case there are a few offending files: /dev/.udev/db/drivers:Intel SCB2 BIOS Flash /dev/.udev/db/platform:Fixed MDIO bus.0 /dev/.udev/db/drivers:Generic PHY leading to the error messages Invalid ALLOWDEVFILE configuration option: Invalid pathname: PHY Invalid ALLOWDEVFILE configuration option: Invalid pathname: SCB2 Invalid ALLOWDEVFILE configuration option: Invalid pathname: BIOS Invalid ALLOWDEVFILE configuration option: Invalid pathname: Flash Invalid ALLOWDEVFILE configuration option: Invalid pathname: MDIO Invalid ALLOWDEVFILE configuration option: Invalid pathname: bus.0 rkhunter does not complete the scan Version-Release number of selected component (if applicable): 1.4.0 How reproducible: have removed rkhunter and reinstalled, and also rebooted system Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info:
This looks like a duplicate of https://bugzilla.redhat.com/show_bug.cgi?id=674245 This was supposed to be fixed in 1.4.x I thought, but perhaps not. What ALLOWDEVFILE directives do you have in /etc/rkhunter.conf ? Can you try: 1. escaping the spaces with \ 2. Putting "s around the entire path 3. Using %20 instead of space. 4. Use a wildcard (*) instead of the path part that has spaces. and see if any of those work?
I am using the default /etc/rkhunter.conf that came with the update. These are all the ALLOWDEVFILE lines #ALLOWDEVFILE="/dev/shm/pulse-shm-*" #ALLOWDEVFILE="/dev/shm/sem.ADBE_*" ALLOWDEVFILE=/dev/shm/pulse-shm-* ALLOWDEVFILE=/dev/md/md-device-map ALLOWDEVFILE="/dev/shm/mono.*" ALLOWDEVFILE="/dev/shm/libv4l-*" ALLOWDEVFILE="/dev/shm/spice.*" ALLOWDEVFILE=/dev/.mdadm.map ALLOWDEVFILE=/dev/.udev/queue.bin ALLOWDEVFILE=/dev/.udev/db/* ALLOWDEVFILE=/dev/.udev/rules.d/99-root.rules I have added quotes ALLOWDEVFILE="/dev/.udev/db/*" but the issue persists
Would you be willing to report this upstream? rkhunter-users.net If not, I will try and do so...
Will do.
rkhunter-1.4.2-1.fc20 has been submitted as an update for Fedora 20. https://admin.fedoraproject.org/updates/rkhunter-1.4.2-1.fc20
rkhunter-1.4.2-1.fc19 has been submitted as an update for Fedora 19. https://admin.fedoraproject.org/updates/rkhunter-1.4.2-1.fc19
rkhunter-1.4.2-1.el6 has been submitted as an update for Fedora EPEL 6. https://admin.fedoraproject.org/updates/rkhunter-1.4.2-1.el6
rkhunter-1.4.2-1.fc20 has been pushed to the Fedora 20 stable repository. If problems still persist, please make note of it in this bug report.
rkhunter-1.4.2-1.el6 has been pushed to the Fedora EPEL 6 stable repository. If problems still persist, please make note of it in this bug report.
rkhunter-1.4.2-5.fc19 has been submitted as an update for Fedora 19. https://admin.fedoraproject.org/updates/rkhunter-1.4.2-5.fc19
rkhunter-1.4.2-5.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report.