Errata - 4.3.4 - Bad suid test on Nmap binary prevents discoveries from being executed on Redhat
We have come across a bug when testing for the Nmap SUID bit being set on Redhat based distros.
The work-around until our next release is to edit the file /usr/local/open-audit/code_igniter/application/controllers/discoveries.php
Make the function return without testing anything.
Change from (at about line 463).
private function test_nmap_suid()
{
if (php_uname('s') === 'Windows NT') {
return;
}
$command_string = 'ls -lh `which nmap` | cut -d" " -f1 | cut -c4';
exec($command_string, $output);
if (! isset($output[0]) or $output[0] !== 's') {
log_error('ERR-0047');
} return;
}
to
private function test_nmap_suid()
{
return;
if (php_uname('s') === 'Windows NT') {
return;
}
$command_string = 'ls -lh `which nmap` | cut -d" " -f1 | cut -c4';
exec($command_string, $output);
if (! isset($output[0]) or $output[0] !== 's') {
log_error('ERR-0047');
} return;
}
Apologies for any inconvenience caused.
, multiple selections available,