Your message dated Sat, 26 Feb 2005 07:32:25 -0500
with message-id <[EMAIL PROTECTED]>
and subject line Bug#296927: fixed in snort 2.3.0-7
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--------------------------------------
Received: (at submit) by bugs.debian.org; 25 Feb 2005 20:01:43 +0000
>From [EMAIL PROTECTED] Fri Feb 25 12:01:43 2005
Return-path: <[EMAIL PROTECTED]>
Received: from exmail.nebcoinc.com [216.170.12.227]
by spohr.debian.org with smtp (Exim 3.35 1 (Debian))
id 1D4leh-0006cj-00; Fri, 25 Feb 2005 12:01:43 -0800
Received: (qmail 27881 invoked by uid 213); 25 Feb 2005 20:02:02 -0000
Received: from [EMAIL PROTECTED] by Owl-24 by uid 201 with qmail-scanner-
(f-prot: spamassassin Clear:RC:1(192.168.9.3):.
Processed in 1.083877 secs); 25 Feb 2005 20:02:02 -0000
Received: from rptarch.corpnet (HELO mx.nebcoinc.com) (192.168.9.3)
by 0 with SMTP; 25 Feb 2005 20:02:01 -0000
Received: (qmail 31746 invoked from network); 25 Feb 2005 20:02:01 -0000
Received: from info.corpnet (HELO debian-ws.corpnet) (192.168.9.41)
by 0 with SMTP; 25 Feb 2005 20:02:01 -0000
Received: (qmail 8177 invoked by uid 1000); 25 Feb 2005 20:04:42 -0000
Date: 25 Feb 2005 14:04:41 -0600
From: Steve Bremer <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
Organization: NEBCO, Inc.
To: [EMAIL PROTECTED]
Subject: snort preinst/postinst prevents dpkg-statoverride from working
Date: Fri, 25 Feb 2005 14:04:41 -0600
User-Agent: KMail/1.7.2
MIME-Version: 1.0
Content-Type: text/plain;
charset="us-ascii"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Message-Id: <[EMAIL PROTECTED]>
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE
autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level:
Package: snort
Version: 2.3.0-5
Severity: normal
So that mudpit doesn't have to run as root, I modified the permissions
on /var/log/snort. So I don't have to change those permissions everytime I
upgrade, I used dpkg-statoverride:
dpkg-override --add --update snort snort 2770 /var/log/snort
However, this doesn't work because the snort.preinst script explicitly sets
the permissions:
# 5. adjust file and directory permissions
chown -R $SNORTUSER:adm $LOGDIR
chmod u=rwx,g=rxs,o= $LOGDIR
Can these statements be wrapped in an "if" statement so that it isn't executed
if the administrator wishes to override the permissions?
For example:
# 5. adjust file and directory permissions
if ! dpkg-statoverride --list /var/log/snort >/dev/null
then
chown -R $SNORTUSER:adm $LOGDIR
chmod u=rwx,g=rxs,o= $LOGDIR
fi
Also, so that oinkmaster can modify /etc/snort/snort.conf, I adjusted the
permissions of that file as well. However, the snort.postinst script
explicitly sets permissions on it here :
# Ensure the config file is readable by root.root and mode 600
chown root.snort /etc/snort/snort.conf
chmod 640 /etc/snort/snort.conf
Can this also be wrapped in an "if" statement?
# Ensure the config file is readable by root.root and mode 600
if ! dpkg-statoverride --list /etc/snort/snort.conf >/dev/null
then
chown root.snort /etc/snort/snort.conf
chmod 640 /etc/snort/snort.conf
fi
-- System Information
Debian Release: unstable
Architecture: i386
Kernel: Linux 2.6.10
Thanks,
Steve Bremer
NEBCO, Inc.
---------------------------------------
Received: (at 296927-close) by bugs.debian.org; 26 Feb 2005 12:40:09 +0000
>From [EMAIL PROTECTED] Sat Feb 26 04:40:09 2005
Return-path: <[EMAIL PROTECTED]>
Received: from newraff.debian.org [208.185.25.31] (mail)
by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
id 1D51Ev-0004OA-00; Sat, 26 Feb 2005 04:40:09 -0800
Received: from katie by newraff.debian.org with local (Exim 3.35 1 (Debian))
id 1D517R-0000tZ-00; Sat, 26 Feb 2005 07:32:25 -0500
From: Javier Fernandez-Sanguino Pen~a <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
X-Katie: $Revision: 1.55 $
Subject: Bug#296927: fixed in snort 2.3.0-7
Message-Id: <[EMAIL PROTECTED]>
Sender: Archive Administrator <[EMAIL PROTECTED]>
Date: Sat, 26 Feb 2005 07:32:25 -0500
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER
autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level:
Source: snort
Source-Version: 2.3.0-7
We believe that the bug you reported is fixed in the latest version of
snort, which is due to be installed in the Debian FTP archive:
snort-common_2.3.0-7_all.deb
to pool/main/s/snort/snort-common_2.3.0-7_all.deb
snort-doc_2.3.0-7_all.deb
to pool/main/s/snort/snort-doc_2.3.0-7_all.deb
snort-mysql_2.3.0-7_i386.deb
to pool/main/s/snort/snort-mysql_2.3.0-7_i386.deb
snort-pgsql_2.3.0-7_i386.deb
to pool/main/s/snort/snort-pgsql_2.3.0-7_i386.deb
snort-rules-default_2.3.0-7_all.deb
to pool/main/s/snort/snort-rules-default_2.3.0-7_all.deb
snort_2.3.0-7.diff.gz
to pool/main/s/snort/snort_2.3.0-7.diff.gz
snort_2.3.0-7.dsc
to pool/main/s/snort/snort_2.3.0-7.dsc
snort_2.3.0-7_i386.deb
to pool/main/s/snort/snort_2.3.0-7_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Javier Fernandez-Sanguino Pen~a <[EMAIL PROTECTED]> (supplier of updated snort
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Sat, 26 Feb 2005 13:09:14 +0100
Source: snort
Binary: snort-mysql snort-doc snort-rules-default snort-common snort-pgsql snort
Architecture: source i386 all
Version: 2.3.0-7
Distribution: unstable
Urgency: low
Maintainer: Javier Fernandez-Sanguino Pen~a <[EMAIL PROTECTED]>
Changed-By: Javier Fernandez-Sanguino Pen~a <[EMAIL PROTECTED]>
Description:
snort - Flexible Network Intrusion Detection System
snort-common - Flexible Network Intrusion Detection System [common files]
snort-doc - Documentation for the Snort IDS [documentation]
snort-mysql - Flexible Network Intrusion Detection System [MySQL]
snort-pgsql - Flexible Network Intrusion Detection System [PostgreSQL]
snort-rules-default - Flexible Network Intrusion Detection System ruleset
Closes: 296927
Changes:
snort (2.3.0-7) unstable; urgency=low
.
* Do not change the permissions of /var/log/snort/ and
/etc/snort/snort.conf if the administrator has setup an override
using dpkg-statoverride (Closes: #296927)
* Updated translation to Catalan with the one provided by Aleix Badia i
Bosch
Files:
61f6501930d48df2619cdb30c4537727 984 net optional snort_2.3.0-7.dsc
547505644086553ab962ed4506168646 231421 net optional snort_2.3.0-7.diff.gz
af6b30dff497ff44fa9f7e23e4d3311a 88924 net optional
snort-common_2.3.0-7_all.deb
ed900477e184793e551e4bfb5b4f721b 1100536 doc optional snort-doc_2.3.0-7_all.deb
c77f6c7f43be820c85d63297b62279ca 216792 net optional
snort-rules-default_2.3.0-7_all.deb
077632ebf7215dfdb7d0a40d097394b1 395902 net optional snort_2.3.0-7_i386.deb
a5563a83c70a6fd6b1ed04cabfccb527 398928 net extra snort-mysql_2.3.0-7_i386.deb
563e17eadce084d00a01f1e94ff6c1a3 398906 net optional
snort-pgsql_2.3.0-7_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (GNU/Linux)
iQCVAwUBQiBp1ftEPvakNq0lAQKyRwP/Yfm0IOtAp8dpFIbgs2CNnqrfh+A+GG80
X7j78KZqmcHfxQbmc7wPQZrxYxcESNOK2tEd5ZC5r2Nq0rjxATRSUvXB+ImFlnFX
chtZDdrSEyQLL/2B2go/twvoaV6Ktmvo9DB02SlUMhYEjp1WJo/WRgf0qk5jMkBQ
obWZ24tuqd8=
=zKU+
-----END PGP SIGNATURE-----
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
