[Aide] aide segfault when using acls
John Ratliff
john at bluemarble.net
Wed Feb 28 16:47:06 EET 2018
On 2/22/2018 8:01 AM, Hannes von Haugwitz wrote:
> Hi John,
>
> On Wed, Feb 21, 2018 at 01:31:01PM -0500, John Ratliff wrote:
>> A couple weeks back, my daily AIDE jobs started failing. I've traced it to
>> using acl in my config. If I remove them, it no longer segfaults. I'm not
>> sure why this is happening.
>>
>> I'm using Debian 8 Jessie. I've used the packaged version of aide, and I've
>> also built it from source from the 0.16 tarball and the last daily tarball
>> release. This made no difference.
>>
>> Is there a way I can find out why this is happening and what to do to fix
>> it?
>
> Can you reproduce your issue with a single file configuration:
>
> /path/to/file$ p+acl
>
> ?
database = file:/root/temp/aide.db.gz
database_out = file:/root/temp/aide.db.new.gz
database_new = file:/root/temp/aide.db.new.gz
gzip_dbout = yes
verbose = 10
report_url = stdout
/var/www/smithville.com/htdocs/xmlrpc.php p+acl
>
> If yes, please provide the output of
>
> $ getfacl /path/to/file
>
# getfacl /var/www/smithville.com/htdocs/xmlrpc.php
getfacl: Removing leading '/' from absolute path names
# file: var/www/smithville.com/htdocs/xmlrpc.php
# owner: www-data
# group: www-data
user::rw-
group::r--
group:mek:rw-
mask::rw-
other::r--
Yes, it segfaulted. The group mek is in our RedHat Idm solution. If I
remove the ACL from that file, the segfault goes away.
Thanks.
More information about the Aide
mailing list