Public bug reported:
# lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 14.04.4 LTS
Release: 14.04
Codename: trusty
# apt-cache policy rkhunter
rkhunter:
Installed: 1.4.0-3
Candidate: 1.4.0-3
Version table:
*** 1.4.0-3 0
500 http://us.archive.ubuntu.com/ubuntu/ trusty/universe amd64 Packages
100 /var/lib/dpkg/status
rkhunter seems to be misinterpreting the case of the ALLOW_SSH_ROOT_USER
directive in the effective configuration file. (I don't know whether the
same problem applies to other directives.)
Given a stock rkhunter installation, I created the file
/etc/rkhunter.conf.local and added to it the following line (among a few
others, though I doubt the other lines are relevant):
ALLOW_SSH_ROOT_USER=PermitRootLogin
Yet, when I execute "rkhunter --check", I receive the following warning:
[12:21:34] Checking if SSH root access is allowed [ Warning ]
[12:21:34] Warning: The SSH and rkhunter configuration options should be the
same:
[12:21:34] SSH configuration option 'PermitRootLogin': yes
[12:21:34] Rkhunter configuration option 'ALLOW_SSH_ROOT_USER':
permitrootlogin
Clearly, rkhunter is casting the string in its own configuration file,
"PermitRootLogin", to all-lowercase, yielding "permitrootlogin", thus
triggering this erroneous warning.
** Affects: rkhunter (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1548432
Title:
rhkunter interprets mixed-case directive incorrectly in configuration
file(s)
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/rkhunter/+bug/1548432/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
