Package: rkhunter Severity: grave Tags: security Justification: user security hole
The rkhunter daily cron script version 1.2.7-13 uses the following command to create a file in the /tmp directory: $RKHUNTER --cronjob --report-warnings-only > /tmp/$$ If I am not mistaken this command poses a security risk for the system because it allows a symlink attack. Using the following commands instead would solve the problem: OUTFILE=`mktemp ` || exit 1 $RKHUNTER --cronjob --report-warnings-only > $OUTFILE -- System Information: Debian Release: testing/unstable APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (500, 'stable'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.12-1-686 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) (ignored: LC_ALL set to C) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
