Package: rkhunter Version: 1.4.6-11 Severity: minor Dear Maintainer,
I was updating the rkhunter configuration and ran rkhunter -C as suggested. It generated the following message: wish@cerberus:/usr/share/doc/rkhunter$ sudo -i rkhunter -C Invalid WEB_CMD configuration option: Relative pathname: "/bin/false" I added a file with the following contents in rkhunter.d to silence it. #Shut rkhunter -C up by removing quotes WEB_CMD=/bin/false >From the rkhunter.conf file: # Some of the options are space-separated lists, others, typically those # specifying pathnames, are newline-separated lists. These must be entered # as one item per line. Quotes must not be used to surround the pathname. # It appears rkhunter -C interprets WEB_CMD as a "newline-separated list" and therefore complains about the quotes. Some of the examples in the rkhunter.conf file have quotes implying it is a space-separated list. If it is interpreted by the main rkhunter process as newline-separated then presumably all that is needed is to remove the quotes from both the WEB_CMD line and the associated examples. If rkhunter -C interprets it differently from the main rkhunter process then you have a real bug on your hands. I have checked and the quotes are still present in the current sid package. -- System Information: Debian Release: 12.9 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 6.1.0-31-amd64 (SMP w/2 CPU threads; PREEMPT) Kernel taint flags: TAINT_FIRMWARE_WORKAROUND Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages rkhunter depends on: ii binutils 2.40-2 ii debconf [debconf-2.0] 1.5.82 ii file 1:5.44-3 ii lsof 4.95.0-1 ii net-tools 2.10-0.1 ii perl 5.36.0-7+deb12u1 ii ucf 3.0043+nmu1+deb12u1 Versions of packages rkhunter recommends: ii bsd-mailx [mailx] 8.1.2-0.20220412cvs-1 ii curl 7.88.1-10+deb12u8 ii e2fsprogs 1.47.0-2 ii exim4-daemon-light [mail-transport-agent] 4.96-15+deb12u6 ii iproute2 6.1.0-3 ii mailutils [mailx] 1:3.15-4 pn unhide <none> ii unhide.rb 22-6 ii wget 1.21.3-1+b2 Versions of packages rkhunter suggests: ii liburi-perl 5.17-1 ii libwww-perl 6.68-1 ii powermgmt-base 1.37 -- Configuration Files: /etc/rkhunter.conf changed: UPDATE_MIRRORS=0 MIRRORS_MODE=1 TMPDIR=/var/lib/rkhunter/tmp DBDIR=/var/lib/rkhunter/db SCRIPTDIR=/usr/share/rkhunter/scripts UPDATE_LANG="en" LOGFILE=/var/log/rkhunter.log USE_SYSLOG=authpriv.warning AUTO_X_DETECT=1 ALLOW_SSH_ROOT_USER=without-password ALLOW_SSH_PROT_V1=0 ENABLE_TESTS=ALL DISABLE_TESTS=suspscan hidden_ports hidden_procs deleted_files packet_cap_apps apps PKGMGR=DPKG SCRIPTWHITELIST=/usr/bin/egrep SCRIPTWHITELIST=/usr/bin/fgrep SCRIPTWHITELIST=/usr/bin/which SCRIPTWHITELIST=/usr/bin/ldd SCRIPTWHITELIST=/usr/bin/which.debianutils SCRIPTWHITELIST=/usr/sbin/adduser ALLOWHIDDENDIR=/etc/.java ALLOWHIDDENFILE=/usr/share/man/man5/.k5login.5.gz ALLOWHIDDENFILE=/usr/share/man/man5/.k5identity.5.gz ALLOWIPCPROC=/usr/lib/firefox-esr/firefox-esr ALLOWIPCPROC=/usr/bin/dunst ALLOWIPCPROC=/usr/lib/libreoffice/program/soffice.bin INETD_ALLOWED_SVC=discard ident printer WEB_CMD="/bin/false" INSTALLDIR=/usr -- debconf information: * rkhunter/cron_db_update: true * rkhunter/cron_daily_run: true * rkhunter/apt_autogen: true
