/
Errata - 2.2.6 Serial false positive matching

Errata - 2.2.6 Serial false positive matching

Jul 23, 2018

There is a bug in Open-AudIT 2.2.6 when discovery queries a device with SSH access.

The bug is that the command issued (as below) does not send error output to /dev/null, and hence stores it in the "serial" attribute.

By default Open-AudIT will match based on serial. If you have changed the default, you should not be affected.

Therefore devices with SSH may be incorrectly identified as another separate device.

Worst case is to apply the fix below, then re-run your discoveries. You may end up with quite a few entries in the change_log, which can be safely ignored.

Users can either copy the attached file to:

Linux - /usr/local/open-audit/code_igniter/application/helpers/ssh_helper.php

Windows - c:\xampplite\open-audit\code_igniter\application\helpers\ssh_helper.php

Or users can edit the file at the above path. Line 575 should go from:

'ubiquiti_serial' => 'grep serialno /proc/ubnthal/system.info | cut -d= -f2',

to

'ubiquiti_serial' => 'grep serialno /proc/ubnthal/system.info 2>/dev/null | cut -d= -f2',