include-config-dir from sshd not recognized
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
rkhunter (Debian) |
Confirmed
|
Unknown
|
|||
rkhunter (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
1)
lsb_release -rd
Description: Ubuntu 20.04.1 LTS
Release: 20.04
2)
apt-cache policy rkhunter
rkhunter:
Installiert: 1.4.6-8
Installations
Versionstabelle:
*** 1.4.6-8 500
500 http://
100 /var/lib/
3)
If I run rkhunter, it checks some of the sshd_config settings. Now there's a option to add our own config for sshd in /etc/sshd_config.d/
If I do so, rkhunter does not recoginze them and they'll be ignored.
If we put in more than 1 (one) configfile in /etc/sshd_config.d/ rkhunter will only take the first location and it expects that the file is called "sshd_config" -> ~ line #17372 /usr/bin/rkhunter :
17373 SSH_CONFIG_FILE=""
17374
17375 if [ -n "${SSH_CONFIG_DIR}" ]; then
17376 RKHTMPVAR=
17377 else
17378 RKHTMPVAR="/etc /etc/ssh /usr/local/etc /usr/local/etc/ssh"
17379 fi
17380
17381 for DIR in ${RKHTMPVAR}; do
17382 if [ -f "${DIR}
17383 SSH_CONFIG_
17384 break
17385 fi
17386 done
4)
Only the default-location is accepted with the hardcoded sshd_config-
Would it be possible to enhance that script, so that :
- it can handle more than one configfile ?
- it reads the settings that are applied to sshd like "sshd -T"
Thank you.
Kind regards
Changed in rkhunter (Debian): | |
status: | Unknown → Confirmed |
Status changed to 'Confirmed' because the bug affects multiple users.