Debian Bug report logs -
#724291
aide-common: rule for php session is wrong
Reported by: Frederik Himpe <fhimpe@vub.ac.be>
Date: Mon, 23 Sep 2013 12:45:02 UTC
Severity: normal
Tags: confirmed
Found in version aide/0.15.1-8
Fixed in version aide/0.16-2
Done: Marc Haber <mh+debian-packages@zugschlus.de>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, Aide Maintainers <pkg-aide-maintainers@lists.alioth.debian.org>:
Bug#724291; Package aide-common.
(Mon, 23 Sep 2013 12:45:06 GMT) (full text, mbox, link).
Acknowledgement sent
to Frederik Himpe <fhimpe@vub.ac.be>:
New Bug report received and forwarded. Copy sent to Aide Maintainers <pkg-aide-maintainers@lists.alioth.debian.org>.
(Mon, 23 Sep 2013 12:45:06 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: aide-common
Version: 0.15.1-8
Severity: normal
The rule
/var/lib/php5/sess_[0-9a-z]{32}$ VarFile+ANF+ARF
is wrong on my system. The part after sess_ in the file names on my system
is only 26 characters wrong. This resulted in these aide warnings:
---------------------------------------------------
Added files:
---------------------------------------------------
f++++++++++++++++: /var/lib/aide/aide.db
f++++++++++++++++: /var/lib/php5/sess_2ecsieoh3dnjskmloi5hgn6lc0
f++++++++++++++++: /var/lib/php5/sess_6791ll6dqlrnqkneos1se7pnq0
f++++++++++++++++: /var/lib/php5/sess_bcb7dpbiq79s4s98c9129eeps7
f++++++++++++++++: /var/lib/php5/sess_jgbgrp38li89htbd4sudtvi0p0
f++++++++++++++++: /var/lib/php5/sess_jshbeepg0hd9ig9i484p435ce2
f++++++++++++++++: /var/lib/php5/sess_mnfg8nm86ti14v2kuo3rlhi7k2
f++++++++++++++++: /var/lib/php5/sess_t1jus9h3s72scmtfeq7kpun5h6
I had to change this rule to
/var/lib/php5/sess_[0-9a-z]{26}$ VarFile+ANF+ARF
to silence these.
-- System Information:
Debian Release: jessie/sid
APT prefers testing
APT policy: (300, 'testing'), (200, 'unstable'), (160, 'experimental'), (150, 'stable'), (140, 'proposed-updates'), (100, 'oldstable-updates'), (100, 'oldstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.10-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages aide-common depends on:
ii aide 0.15.1-8
ii debconf [debconf-2.0] 1.5.51
ii heirloom-mailx [mailx] 12.5-2
ii initscripts 2.88dsf-43
ii liblockfile1 1.09-6
ii ucf 3.0027+nmu1
Versions of packages aide-common recommends:
ii cron 3.0pl1-124
aide-common suggests no packages.
-- debconf information excluded
Information forwarded
to debian-bugs-dist@lists.debian.org, Aide Maintainers <pkg-aide-maintainers@lists.alioth.debian.org>:
Bug#724291; Package aide-common.
(Sat, 21 Oct 2017 10:51:03 GMT) (full text, mbox, link).
Acknowledgement sent
to Marc Haber <mh+debian-packages@zugschlus.de>:
Extra info received and forwarded to list. Copy sent to Aide Maintainers <pkg-aide-maintainers@lists.alioth.debian.org>.
(Sat, 21 Oct 2017 10:51:03 GMT) (full text, mbox, link).
Message #10 received at 724291@bugs.debian.org (full text, mbox, reply):
tags #724291 confirmed pending
thanks
I added 31_aide_php7:
/var/lib/php/sessions$ VarDir
/var/lib/php/sessions/sess_[0-9a-z]{26}$ VarFile+ANF+ARF
/var/lib/php/sessions/sess_[0-9a-z]{32}$ VarFile+ANF+ARF
Greetings
Marc
On Mon, Sep 23, 2013 at 02:41:07PM +0200, Frederik Himpe wrote:
> From: Frederik Himpe <fhimpe@vub.ac.be>
> Subject: Bug#724291: aide-common: rule for php session is wrong
> To: Debian Bug Tracking System <submit@bugs.debian.org>
> Reply-To: Frederik Himpe <fhimpe@vub.ac.be>, 724291@bugs.debian.org
> Date: Mon, 23 Sep 2013 14:41:07 +0200
> X-Mailer: reportbug 6.4.4
>
> Package: aide-common
> Version: 0.15.1-8
> Severity: normal
>
> The rule
> /var/lib/php5/sess_[0-9a-z]{32}$ VarFile+ANF+ARF
>
> is wrong on my system. The part after sess_ in the file names on my system
> is only 26 characters wrong. This resulted in these aide warnings:
>
> ---------------------------------------------------
> Added files:
> ---------------------------------------------------
>
> f++++++++++++++++: /var/lib/aide/aide.db
> f++++++++++++++++: /var/lib/php5/sess_2ecsieoh3dnjskmloi5hgn6lc0
> f++++++++++++++++: /var/lib/php5/sess_6791ll6dqlrnqkneos1se7pnq0
> f++++++++++++++++: /var/lib/php5/sess_bcb7dpbiq79s4s98c9129eeps7
> f++++++++++++++++: /var/lib/php5/sess_jgbgrp38li89htbd4sudtvi0p0
> f++++++++++++++++: /var/lib/php5/sess_jshbeepg0hd9ig9i484p435ce2
> f++++++++++++++++: /var/lib/php5/sess_mnfg8nm86ti14v2kuo3rlhi7k2
> f++++++++++++++++: /var/lib/php5/sess_t1jus9h3s72scmtfeq7kpun5h6
>
> I had to change this rule to
>
> /var/lib/php5/sess_[0-9a-z]{26}$ VarFile+ANF+ARF
>
> to silence these.
>
> -- System Information:
> Debian Release: jessie/sid
> APT prefers testing
> APT policy: (300, 'testing'), (200, 'unstable'), (160, 'experimental'), (150, 'stable'), (140, 'proposed-updates'), (100, 'oldstable-updates'), (100, 'oldstable')
> Architecture: amd64 (x86_64)
> Foreign Architectures: i386
>
> Kernel: Linux 3.10-2-amd64 (SMP w/4 CPU cores)
> Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
> Shell: /bin/sh linked to /bin/dash
>
> Versions of packages aide-common depends on:
> ii aide 0.15.1-8
> ii debconf [debconf-2.0] 1.5.51
> ii heirloom-mailx [mailx] 12.5-2
> ii initscripts 2.88dsf-43
> ii liblockfile1 1.09-6
> ii ucf 3.0027+nmu1
>
> Versions of packages aide-common recommends:
> ii cron 3.0pl1-124
>
> aide-common suggests no packages.
>
> -- debconf information excluded
--
-----------------------------------------------------------------------------
Marc Haber | "I don't trust Computers. They | Mailadresse im Header
Leimen, Germany | lose things." Winona Ryder | Fon: *49 6224 1600402
Nordisch by Nature | How to make an American Quilt | Fax: *49 6224 1600421
Added tag(s) pending and confirmed.
Request was from Marc Haber <mh+debian-packages@zugschlus.de>
to control@bugs.debian.org.
(Sat, 21 Oct 2017 10:51:05 GMT) (full text, mbox, link).
Message sent on
to Frederik Himpe <fhimpe@vub.ac.be>:
Bug#724291.
(Sat, 21 Oct 2017 10:51:07 GMT) (full text, mbox, link).
Reply sent
to Marc Haber <mh+debian-packages@zugschlus.de>:
You have taken responsibility.
(Fri, 17 Nov 2017 18:21:20 GMT) (full text, mbox, link).
Notification sent
to Frederik Himpe <fhimpe@vub.ac.be>:
Bug acknowledged by developer.
(Fri, 17 Nov 2017 18:21:20 GMT) (full text, mbox, link).
Message #20 received at 724291-close@bugs.debian.org (full text, mbox, reply):
Source: aide
Source-Version: 0.16-2
We believe that the bug you reported is fixed in the latest version of
aide, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 724291@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Marc Haber <mh+debian-packages@zugschlus.de> (supplier of updated aide package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Thu, 02 Nov 2017 15:58:26 +0100
Source: aide
Binary: aide aide-xen aide-dynamic aide-common
Architecture: source
Version: 0.16-2
Distribution: unstable
Urgency: medium
Maintainer: Aide Maintainers <pkg-aide-maintainers@lists.alioth.debian.org>
Changed-By: Marc Haber <mh+debian-packages@zugschlus.de>
Description:
aide - Advanced Intrusion Detection Environment - static binary
aide-common - Advanced Intrusion Detection Environment - Common files
aide-dynamic - Advanced Intrusion Detection Environment - dynamic binary
aide-xen - Advanced Intrusion Detection Environment - static binary for XEN
Closes: 289171 710912 720009 723904 724291 770095 841006 868749
Changes:
aide (0.16-2) unstable; urgency=medium
.
* improve rules:
* 10_aide_distribution: Take more care in sanitizing
distribution data. Thanks to Raphaël Hertzog (Closes: #868749)
* 31_aide_amanda-server
Thanks to Daniel Dickinson (Closes: #710912, #723904)
* 31_aide_apt
* Take multiarch patch from bug report.
Thanks to Simon Deziel (Closes: #770095)
* remove Pre-component Release Files (see discussion in #879272)
Thanks to Julian Andres Klode
* 31_aide_apt-listbugs: clean up obsolete dev comments
* 31_aide_cups
* 31_aide_dpkg
* 31_aide_isc-dhcp-server / 31_aide_isc-dhcp-client
* rename from 31_aide_dhcp3-server and 31_aide_dhcp3-client
* adapt paths
* 31_aide_logrotate
* 31_aide_man: add CACHEDIR
* 31_aide_mlocate: leaves around a lock file
* Add 31_aide_php7, remove 31_aide_php[45].
Thanks to Frederik Himpe (Closes: #724291)
* 31_aide_samba
* 31_aide_sudo: properly handle changing run directory
* 70_aide_run: /run changes link count
* new rules:
* 10_aide_prevyear: help log file handling
* 31_aide_atop
* 31_aide_cereal
* 31_aide_gnupg
* 31_aide_pam_motd
* 31_aide_php-common
* 31_aide_run_systemd_netif
* 31_aide_run_systemd_resolve
* 31_aide_runuser
* 31_aide_systemd_journal
* 31_aide_systemd_sessions
* remove rules that only had placeholder comments
* remove obsolete 31_aide_gpg
* remove obsolete 31-aide_apt_[un]stable
* aide.wrapper:
* wrapper now aborts immediately if lock cannot be
obtained (Closes: #841006)
* Use --config-check in wrapper (Closes: #289171)
* major rework of ucf handling:
* Allow rules to be overridden (Closes: #720009)
* The new code will eventually be submitted for inclusion in
ucf proper or packaged as ucf-helper
* Standards-Version: 4.1.1
* aide-xen and aide-dynamic are now Priority: optional
* no other changes necessary
Checksums-Sha1:
72024c9216c224ebe656615fbe8ea587d5e06f6d 2333 aide_0.16-2.dsc
bf4eb2b53d97ee18745a0fc7c7010ed066ae0b39 83876 aide_0.16-2.debian.tar.xz
7a886045a327f9762fadeb3c2ade695bb088987f 5973 aide_0.16-2_source.buildinfo
Checksums-Sha256:
4ce8e3f85f0c7faa06eb7b7e10eeecaa46b4257393dab0725f91469d87b6e59c 2333 aide_0.16-2.dsc
6fd801b5a87ba03bf1ba2ac7ddf0ffcd3c6bfb91296fe2ff8f32a9ac9ef6d63f 83876 aide_0.16-2.debian.tar.xz
249081299b511582101796f7ddf4c16524b63b2240fe3e50c36dd847bd1dcaee 5973 aide_0.16-2_source.buildinfo
Files:
0b12f9cc9dd2431dc77e35919d40ccd2 2333 admin optional aide_0.16-2.dsc
6d42771e4b7003f1ae532d4b0af286ab 83876 admin optional aide_0.16-2.debian.tar.xz
51821caa5e74ad52d401e5eebbe6b69c 5973 admin optional aide_0.16-2_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=TvYq
-----END PGP SIGNATURE-----
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Thu, 21 Dec 2017 07:29:03 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Sun Jul 2 08:52:22 2023;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.