Errata - 4.3.4 - Bad suid test on Nmap binary prevents discoveries from being executed on Redhat
We have come across a bug when testing for the Nmap SUID bit being set on Redhat based distros.
The work-around until our next release is to edit the file /usr/local/open-audit/code_igniter/application/controllers/discoveries.php
Make the function return without testing anything.
Change from (at about line 463).
private function test_nmap_suid() { if (php_uname('s') === 'Windows NT') { return; } $command_string = 'ls -lh `which nmap` | cut -d" " -f1 | cut -c4'; exec($command_string, $output); if (! isset($output[0]) or $output[0] !== 's') { log_error('ERR-0047'); } return; }
to
private function test_nmap_suid() { return; if (php_uname('s') === 'Windows NT') { return; } $command_string = 'ls -lh `which nmap` | cut -d" " -f1 | cut -c4'; exec($command_string, $output); if (! isset($output[0]) or $output[0] !== 's') { log_error('ERR-0047'); } return; }
Apologies for any inconvenience caused.