Figured it out everyone,
I still had CLRF line endings in my template file which was causing puppet to
write the same line endings in the sshd_config file. I'll leave a note here
for anyone on the google who finds this later
Quick Fix:
Correct Puppet line endings (dos2unix on template file).
Apply new puppet configuration from host's or just wait for puppet to
catch-up.
Rkhunter --propupd && rkhunter -c -sk
For me at this point all checks pass.
John Massey
Senior Network Engineer
Vistronix, Inc.
Contractor to US EPA Chesapeake Bay Program Office
410-295-1323
-----Original Message-----
From: John Massey [mailto:jmas...@chesapeakebay.net]
Sent: Monday, June 16, 2014 1:00 PM
To: John Horne; rkhunter-users@lists.sourceforge.net
Subject: Re: [Rkhunter-users] Re : (no subject)
Confirmed that /etc/ssh/sshd_config and /etc/rkhunter.conf are the correctly
used files, also I can see both values change as expected in the rkhunter logs
after each check. I have tried, yes/yes, no/no , no-password/no-password in
each config file, restarted openssh and --propupd'ed RKHunter.
Info: Starting test name 'system_configs'
[11:34:05] Performing system configuration file checks
[11:34:05] Checking for an SSH configuration file [ Found ]
[11:34:05] Info: Found an SSH configuration file: /etc/ssh/sshd_config
[11:34:05] Info: Rkhunter option ALLOW_SSH_ROOT_USER set to 'no'.
[11:34:05] Info: Rkhunter option ALLOW_SSH_PROT_V1 set to '0'.
[11:34:06] Checking if SSH root access is allowed [ Warning ]
[11:34:06] Warning: The SSH and rkhunter configuration options should be the
same:
[11:34:06] SSH configuration option 'PermitRootLogin': no
[11:34:06] Rkhunter configuration option 'ALLOW_SSH_ROOT_USER': no
P.S. Sorry for the lack of subject, silly Monday's.
John Massey
Senior Network Engineer
Vistronix, Inc.
Contractor to US EPA Chesapeake Bay Program Office
410-295-1323
-----Original Message-----
From: John Horne [mailto:john.ho...@plymouth.ac.uk]
Sent: Monday, June 16, 2014 12:47 PM
To: rkhunter-users@lists.sourceforge.net
Subject: Re: [Rkhunter-users] Re : (no subject)
On Mon, 2014-06-16 at 16:38 +0200, Laurent wrote:
> Maybe there is another sshd_config somewhere else than in /etc in
> which rkhunter is looking ?
> Try with "locate" or "find" to locate it..
>
Or look in the rkhunter log file (/var/log/rkhunter.log). It will say which
config file it is using and what values it has found.
John.
--
John Horne Tel: +44 (0)1752 587287
Plymouth University, UK
------------------------------------------------------------------------------
HPCC Systems Open Source Big Data Platform from LexisNexis Risk Solutions Find
What Matters Most in Your Big Data with HPCC Systems Open Source. Fast.
Scalable. Simple. Ideal for Dirty Data.
Leverages Graph Analysis for Fast Processing & Easy Data Exploration
http://p.sf.net/sfu/hpccsystems _______________________________________________
Rkhunter-users mailing list
Rkhunter-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/rkhunter-users
------------------------------------------------------------------------------
HPCC Systems Open Source Big Data Platform from LexisNexis Risk Solutions Find
What Matters Most in Your Big Data with HPCC Systems Open Source. Fast.
Scalable. Simple. Ideal for Dirty Data.
Leverages Graph Analysis for Fast Processing & Easy Data Exploration
http://p.sf.net/sfu/hpccsystems _______________________________________________
Rkhunter-users mailing list
Rkhunter-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/rkhunter-users
------------------------------------------------------------------------------
HPCC Systems Open Source Big Data Platform from LexisNexis Risk Solutions
Find What Matters Most in Your Big Data with HPCC Systems
Open Source. Fast. Scalable. Simple. Ideal for Dirty Data.
Leverages Graph Analysis for Fast Processing & Easy Data Exploration
http://p.sf.net/sfu/hpccsystems
_______________________________________________
Rkhunter-users mailing list
Rkhunter-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/rkhunter-users
