include-config-dir from sshd not recognized
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| rkhunter (Debian) |
Confirmed
|
Unknown
|
|||
| rkhunter (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned | ||
Bug Description
1)
lsb_release -rd
Description: Ubuntu 20.04.1 LTS
Release: 20.04
2)
apt-cache policy rkhunter
rkhunter:
Installiert: 1.4.6-8
Installations
Versionstabelle:
*** 1.4.6-8 500
500 http://
100 /var/lib/
3)
If I run rkhunter, it checks some of the sshd_config settings. Now there's a option to add our own config for sshd in /etc/sshd_config.d/
If I do so, rkhunter does not recoginze them and they'll be ignored.
If we put in more than 1 (one) configfile in /etc/sshd_config.d/ rkhunter will only take the first location and it expects that the file is called "sshd_config" -> ~ line #17372 /usr/bin/rkhunter :
17373 SSH_CONFIG_FILE=""
17374
17375 if [ -n "${SSH_CONFIG_DIR}" ]; then
17376 RKHTMPVAR=
17377 else
17378 RKHTMPVAR="/etc /etc/ssh /usr/local/etc /usr/local/etc/ssh"
17379 fi
17380
17381 for DIR in ${RKHTMPVAR}; do
17382 if [ -f "${DIR}
17383 SSH_CONFIG_
17384 break
17385 fi
17386 done
4)
Only the default-location is accepted with the hardcoded sshd_config-
Would it be possible to enhance that script, so that :
- it can handle more than one configfile ?
- it reads the settings that are applied to sshd like "sshd -T"
Thank you.
Kind regards
| Changed in rkhunter (Debian): | |
| status: | Unknown → Confirmed |
| Launchpad Janitor (janitor) wrote | #1 |
| Changed in rkhunter (Ubuntu): | |
| status: | New → Confirmed |
| Jeff Abrahamson (jeff-purple) wrote | #2 |
| Mitsuya Shibata (cosmos-door) wrote | #3 |
Status changed to 'Confirmed' because the bug affects multiple users.