rkhunter Reports Its Own tmp Files As Suspicious When Run From Cron
Bug #1342866 reported by
Jared Fernandez
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| rkhunter (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Bug Description
When run from the default Ubuntu cron file (/etc/cron.
Warning: File '/tmp/tmp.
Warning: Checking for files with suspicious contents [ Warning ]
This is caused by using 'mktmp' in the cron bash script which by default puts temp files in '/tmp'. The solution is to change the line
OUTFILE=`mktemp` || exit 1
to
OUTFILE=`mktemp -p /var/lib/
so that the temp file is put in rkhunter's whitelisted tmp directory.
Revision history for this message
| François Marier (fmarier) wrote | #1 |
| no longer affects: | rkhunter |
Revision history for this message
| Jared Fernandez (jared-fernandez) wrote | #2 |
Revision history for this message
| Jared Fernandez (jared-fernandez) wrote | #3 |
| Changed in rkhunter (Ubuntu): | |
| assignee: | nobody → Jared Fernandez (jared-fernandez) |
| assignee: | Jared Fernandez (jared-fernandez) → nobody |
Revision history for this message
| Jared Fernandez (jared-fernandez) wrote | #4 |
| Changed in rkhunter (Ubuntu): | |
| status: | New → Fix Released |
To post a comment you must log in.
Reported upstream: https:/