Your message dated Thu, 06 Mar 2025 22:35:26 +0000
with message-id <[email protected]>
and subject line Bug#1089588: fixed in chkrootkit 0.58b-4
has caused the Debian Bug report #1089588,
regarding chkrootkit: updates access times of /tmp/* and lots more, breaking
systemd-tmpfiles
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1089588: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1089588
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: chkrootkit
Version: 0.58b-3
Severity: normal
I was wondering why my /tmp is never cleared by systemd-tmpfiles, and
tried playing around with the settings in /etc/tmpfiles.d, but it
didn't help.
I then discovered the source of the problem: chkrootkit updates the
access times of all the files in /tmp as it checks them, meaning that
they are always viewed as recently accessed and so never cleaned.
This is clearly not desirable behaviour; chkrootkit shouldn't be
modifying the access times. But obviously, chkrootkit is accessing
the files, so the access times will be updated by default. It should
therefore record the access time prior to accessing the file and reset
it to that time afterwards (presumably using utimes(2) or similar).
This apparently will require CAP_FOWNER privileges (as mentioned in
systemd-tmpfiles(8)).
Best wishes,
Julian
--- End Message ---
--- Begin Message ---
Source: chkrootkit
Source-Version: 0.58b-4
Done: Richard Lewis <[email protected]>
We believe that the bug you reported is fixed in the latest version of
chkrootkit, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Richard Lewis <[email protected]> (supplier of updated
chkrootkit package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 5 Feb 2025 18:00:00 +0000
Source: chkrootkit
Architecture: source
Version: 0.58b-4
Distribution: unstable
Urgency: medium
Maintainer: Debian Security Tools <[email protected]>
Changed-By: Richard Lewis <[email protected]>
Closes: 1089588 1093596
Changes:
chkrootkit (0.58b-4) unstable; urgency=medium
.
* Team upload
.
[ Richard Lewis ]
* Set ProtectSystem in the systemd unit to prevent tests modifying
the access times of files that are examined. This ensures
systemd-tmpfiles can continue to detect unused files in /tmp
(Closes: #1089588)
* Ensure the ldsopreload test can be run on its own
* chkwtmp: prevent potential overflow in argument parsing
* chkdirs: simplify code and improve message about unsupported
fs: overlayfs is more likely to be the cause than btrfs
* chkproc: fix detection of linux threads (prevents false positives),
and improve output to show the command and systemd cgroup for
suspicious pids
* Refactor all debian patches to simplify upstreaming
* Ensure everything compiles but does not silently
do nothing on unsupported (non-linux) systems
* Improve autopkgtests so they make less assumptions about being able to
see network managers on the host (Closes: #1093596)
.
[ Sven Geuer ]
* Bump Debian copyright years
Checksums-Sha1:
62531f381d759f0f2dd929a408fa628a03cf77b9 2062 chkrootkit_0.58b-4.dsc
796c87c9638868603644f182f9da4d8e15181567 89484 chkrootkit_0.58b-4.debian.tar.xz
fc330caae3a7b066b5bc4ccd015bddc1b35bad02 5830
chkrootkit_0.58b-4_amd64.buildinfo
Checksums-Sha256:
cdcc43c47f47d2a76093b46e299c4342bdea4b187a1685b9bb625c538eecbd49 2062
chkrootkit_0.58b-4.dsc
af776957e5ec766741a6a6adb70c6cedccf71dd26310ad3a7f0729e4495982de 89484
chkrootkit_0.58b-4.debian.tar.xz
2fa8c539a0f49b9f4f04db076ac5b9cbb0ad3a119133ecb9b274c32bc04c3d5a 5830
chkrootkit_0.58b-4_amd64.buildinfo
Files:
c6889ed1ab89539e5e19ac2afd1b7f0f 2062 misc optional chkrootkit_0.58b-4.dsc
21a8dc94dcf163cfb83f3985a14bade1 89484 misc optional
chkrootkit_0.58b-4.debian.tar.xz
2776a9d039b476c06a8d8f0b483b5944 5830 misc optional
chkrootkit_0.58b-4_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=Hp6T
-----END PGP SIGNATURE-----
pgpl2xkWYcUBR.pgp
Description: PGP signature
--- End Message ---
