Public bug reported:
1)
lsb_release -rd
Description: Ubuntu 20.04.1 LTS
Release: 20.04
2)
apt-cache policy rkhunter
rkhunter:
Installiert: 1.4.6-8
Installationskandidat: 1.4.6-8
Versionstabelle:
*** 1.4.6-8 500
500 http://ch.archive.ubuntu.com/ubuntu focal/universe amd64 Packages
100 /var/lib/dpkg/status
3)
If I run rkhunter, it checks some of the sshd_config settings. Now there's a
option to add our own config for sshd in /etc/sshd_config.d/
If I do so, rkhunter does not recoginze them and they'll be ignored.
If we put in more than 1 (one) configfile in /etc/sshd_config.d/
rkhunter will only take the first location and it expects that the file
is called "sshd_config" -> ~ line #17372 /usr/bin/rkhunter :
17373 SSH_CONFIG_FILE=""
17374
17375 if [ -n "${SSH_CONFIG_DIR}" ]; then
17376 RKHTMPVAR="${SSH_CONFIG_DIR}"
17377 else
17378 RKHTMPVAR="/etc /etc/ssh /usr/local/etc
/usr/local/etc/ssh"
17379 fi
17380
17381 for DIR in ${RKHTMPVAR}; do
17382 if [ -f "${DIR}/sshd_config" ]; then
17383 SSH_CONFIG_FILE="${DIR}/sshd_config"
17384 break
17385 fi
17386 done
4)
Only the default-location is accepted with the hardcoded sshd_config-filename.
Would it be possible to enhance that script, so that :
- it can handle more than one configfile ?
- it reads the settings that are applied to sshd like "sshd -T"
Thank you.
Kind regards
** Affects: rkhunter (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1911014
Title:
include-config-dir from sshd not recognized
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/rkhunter/+bug/1911014/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
