Your message dated Sat, 17 Nov 2007 01:17:02 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#380178: fixed in osiris 4.2.3-1
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: osirisd
Version: 2.0.6-1
Severity: high
osirisd's init.d script does a --chuid=osirisd. This means that it is
unable to scan quite a few directories or watch for changes on secure
files - precisely those files that need watching!
I only discovered this when I was investigating why certain files were
not being monitored :-(
osirisd has privilege seperation. I don't mind the ability to run
entirely as osirisd, however it should default to running as root to
avoid any nasty suprises.
Severity set to high since this has major security implications IMO.
Thanks,
Adrian (a very happy osiris user after fighting samhain)
--
Email: [EMAIL PROTECTED] -*- GPG key available on public key servers
Debian GNU/Linux - the maintainable distribution -*- www.debian.org
Avoid working with children, animals and Microsoft "operating" systems
--- End Message ---
--- Begin Message ---
Source: osiris
Source-Version: 4.2.3-1
We believe that the bug you reported is fixed in the latest version of
osiris, which is due to be installed in the Debian FTP archive:
osiris_4.2.3-1.diff.gz
to pool/main/o/osiris/osiris_4.2.3-1.diff.gz
osiris_4.2.3-1.dsc
to pool/main/o/osiris/osiris_4.2.3-1.dsc
osiris_4.2.3-1_i386.deb
to pool/main/o/osiris/osiris_4.2.3-1_i386.deb
osiris_4.2.3.orig.tar.gz
to pool/main/o/osiris/osiris_4.2.3.orig.tar.gz
osirisd_4.2.3-1_i386.deb
to pool/main/o/osiris/osirisd_4.2.3-1_i386.deb
osirismd_4.2.3-1_i386.deb
to pool/main/o/osiris/osirismd_4.2.3-1_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Jamie Wilkinson <[EMAIL PROTECTED]> (supplier of updated osiris package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Sat, 17 Nov 2007 12:02:15 +1100
Source: osiris
Binary: osirismd osiris osirisd
Architecture: source i386
Version: 4.2.3-1
Distribution: unstable
Urgency: low
Maintainer: Jamie Wilkinson <[EMAIL PROTECTED]>
Changed-By: Jamie Wilkinson <[EMAIL PROTECTED]>
Description:
osiris - network-wide system integrity monitor control interface
osirisd - network-wide system integrity monitor scanning agent
osirismd - network-wide system integrity monitor central management daemon
Closes: 345257 380178 398358 401280
Changes:
osiris (4.2.3-1) unstable; urgency=low
.
* New upstream release.
* Added lsb sections to the initscripts.
.
osiris (4.2.2-1) unstable; urgency=low
.
* New upstream version. (Closes: #398358)
* Bug fix: "race Condition in osiris console", thanks to Ruben Puettmann
(Closes: #401280).
* Bug fix: "osirisd: unable to scan alot of directories", thanks to
[EMAIL PROTECTED] (Closes: #380178). Removed --chuid osirisd so that it
can run as root and do its own privilege separation. Necessary to
actually scan the filesystem :)
.
osiris (4.2.1-1) unstable; urgency=low
.
* New upstream version.
* Close old bug by virtue of the NMU diff being included. (Closes: #345257)
Files:
5909d537fd436f42c1edcb4c0057980d 604 admin optional osiris_4.2.3-1.dsc
1951c7dc0fe729af9ffaf58910340d12 1924149 admin optional
osiris_4.2.3.orig.tar.gz
1a8a3a5a281ef839082e31a511011019 10489 admin optional osiris_4.2.3-1.diff.gz
6ab91e87c0e051f6196e5ff229d6af13 397056 admin optional osiris_4.2.3-1_i386.deb
e4fb524a06ebf241ee6cb3135a3cce70 64226 admin optional osirisd_4.2.3-1_i386.deb
c096886e0afbfa9ea9a75d62ae4b365b 408074 admin optional
osirismd_4.2.3-1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFHPj/C5u9oNyz9HDgRAggYAKCN9yMS/7Vm5Mspnn0bgV5fBzo5YACfVFdb
p0rhOVFNdUldzFvwUlf43VI=
=vac8
-----END PGP SIGNATURE-----
--- End Message ---
