2020-08-06 22:46:16 |
Bryce Harrington |
bug |
|
|
added bug |
2020-08-18 02:33:47 |
Bryce Harrington |
nominated for series |
|
Ubuntu Groovy |
|
2020-08-18 02:33:47 |
Bryce Harrington |
bug task added |
|
logwatch (Ubuntu Groovy) |
|
2020-08-18 02:33:47 |
Bryce Harrington |
nominated for series |
|
Ubuntu Focal |
|
2020-08-18 02:33:47 |
Bryce Harrington |
bug task added |
|
logwatch (Ubuntu Focal) |
|
2020-08-18 02:33:59 |
Bryce Harrington |
logwatch (Ubuntu Groovy): importance |
Undecided |
Medium |
|
2020-08-18 02:33:59 |
Bryce Harrington |
logwatch (Ubuntu Groovy): status |
New |
Triaged |
|
2020-08-18 02:34:37 |
Bryce Harrington |
logwatch (Ubuntu Focal): importance |
Undecided |
Medium |
|
2020-08-18 02:34:37 |
Bryce Harrington |
logwatch (Ubuntu Focal): status |
New |
Triaged |
|
2020-08-21 02:00:15 |
Launchpad Janitor |
merge proposal linked |
|
https://code.launchpad.net/~bryce/ubuntu/+source/logwatch/+git/logwatch/+merge/389633 |
|
2020-08-26 19:54:42 |
Launchpad Janitor |
logwatch (Ubuntu Groovy): status |
Triaged |
Fix Released |
|
2020-09-02 17:49:22 |
Bryce Harrington |
attachment added |
|
Sample log entries for testing the securetty error messages https://bugs.launchpad.net/ubuntu/focal/+source/logwatch/+bug/1890751/+attachment/5407063/+files/unmatched-entries-securetty%3Aauth.log |
|
2020-09-02 19:44:38 |
Bryce Harrington |
bug watch added |
|
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=674857 |
|
2020-09-02 19:44:38 |
Bryce Harrington |
bug watch added |
|
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931899 |
|
2020-09-03 04:35:46 |
Launchpad Janitor |
merge proposal linked |
|
https://code.launchpad.net/~bryce/ubuntu/+source/logwatch/+git/logwatch/+merge/390212 |
|
2020-09-04 21:29:28 |
Launchpad Janitor |
merge proposal unlinked |
https://code.launchpad.net/~bryce/ubuntu/+source/logwatch/+git/logwatch/+merge/390212 |
|
|
2020-09-04 22:52:46 |
Launchpad Janitor |
merge proposal linked |
|
https://code.launchpad.net/~bryce/ubuntu/+source/logwatch/+git/logwatch/+merge/390212 |
|
2020-09-15 18:45:24 |
Brian Murray |
logwatch (Ubuntu Focal): status |
Triaged |
Fix Committed |
|
2020-09-15 18:45:26 |
Brian Murray |
bug |
|
|
added subscriber Ubuntu Stable Release Updates Team |
2020-09-15 18:45:28 |
Brian Murray |
bug |
|
|
added subscriber SRU Verification |
2020-09-15 18:45:32 |
Brian Murray |
tags |
|
verification-needed verification-needed-focal |
|
2020-09-15 18:58:35 |
Bryce Harrington |
description |
$ sudo logwatch --detail Low --range today --service all --output stdout
--------------------- pam_unix Begin ------------------------
sudo:
Sessions Opened:
root -> root: 4 Time(s)
Unknown Entries:
Couldn't open /etc/securetty: No such file or directory: 4 Time(s)
---------------------- pam_unix End ------------------------- |
[Impact]
Messages about /etc/securetty aren't being handled by logwatch and end up in the "Unmatched Entries" section. Support for /etc/securetty was dropped in focal, but some services or other software haven't been updated to reflect this change and so issue the warning.
[Test Case]
$ export CODENAME="focal"
$ lxc launch ubuntu:${CODENAME} test-logwatch
$ lxc exec test-logwatch -- bash
# apt-get update
# apt-get dist-upgrade -y
# apt-get install -y logwatch
# wget https://bugs.launchpad.net/ubuntu/+source/logwatch/+bug/1890751/+attachment/5407063/+files/unmatched-entries-securetty%3Aauth.log
# cat unmatched-entries-securetty:auth.log >> /var/log/auth.log
# logwatch --detail High --service all --range all --output stdout
Without the fix, there will be unmatched entries for /etc/securetty, which may appear in multiple sections within the report; with the fix there will be no such messages.
(Note: For testing it's not really necessary to trigger the original condition that produces the log entry, since for Logwatch the purpose is more about making sure the entry is detected and processed appropriately.)
[Regression Potential]
Since logwatch filters logs for errors pertinent to administrators,
standard things to watch out for are undesired changes in this filtering
behavior, such as flagging or failing to flag issues differently than
before, other than the specific messages being filtered with this
change.
[Original Report]
$ sudo logwatch --detail Low --range today --service all --output stdout
--------------------- pam_unix Begin ------------------------
sudo:
Sessions Opened:
root -> root: 4 Time(s)
Unknown Entries:
Couldn't open /etc/securetty: No such file or directory: 4 Time(s)
---------------------- pam_unix End ------------------------- |
|
2020-09-29 17:36:34 |
Bryce Harrington |
tags |
verification-needed verification-needed-focal |
verification-done verification-done-focal |
|
2020-09-29 21:09:19 |
Launchpad Janitor |
logwatch (Ubuntu Focal): status |
Fix Committed |
Fix Released |
|
2020-09-29 21:09:48 |
Brian Murray |
removed subscriber Ubuntu Stable Release Updates Team |
|
|
|
2020-11-05 19:38:43 |
Launchpad Janitor |
merge proposal linked |
|
https://code.launchpad.net/~bryce/ubuntu/+source/logwatch/+git/logwatch/+merge/393413 |
|