Errata - 2.2.6 Serial false positive matching
There is a bug in Open-AudIT 2.2.6 when discovery queries a device with SSH access.
The bug is that the command issued (as below) does not send error output to /dev/null, and hence stores it in the "serial" attribute.
By default Open-AudIT will match based on serial. If you have changed the default, you should not be affected.
Therefore devices with SSH may be incorrectly identified as another separate device.ssh_helper.php
Worst case is to apply the fix below, then re-run your discoveries. You may end up with quite a few entries in the change_log, which can be safely ignored.
Users can either copy the attached file to:
Linux - /usr/local/open-audit/code_igniter/application/helpers/ssh_helper.php
Windows - c:\xampplite\open-audit\code_igniter\application\helpers\ssh_helper.php
Or users can edit the file at the above path. Line 575 should go from:
'ubiquiti_serial' => 'grep serialno /proc/ubnthal/system.info | cut -d= -f2',
to
'ubiquiti_serial' => 'grep serialno /proc/ubnthal/system.info 2>/dev/null | cut -d= -f2',