Your message dated Fri, 26 Oct 2018 02:42:46 +0000 with message-id <[email protected]> and subject line Bug#911216: fixed in net-snmp 5.7.3+dfsg-4 has caused the Debian Bug report #911216, regarding snmpd: Upgrading the package may change UID/GID of the Debian-snmp user, triggering e.g. rkhunter warnings to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [email protected] immediately.) -- 911216: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911216 Debian Bug Tracking System Contact [email protected] with problems
--- Begin Message ---Package: snmpd Version: 5.7.3+dfsg-1.7+deb9u1 Severity: normal Dear Maintainer, Upgrading the snmpd package appears to remove and re-add the user "Debian-snmp" every time. If any other users have been removed in the meantime, this triggers a change of UID/GID for Debian-snmp, and that in turn may trigger an IDS, antivirus or anti-rootkit solution like rkhunter to raise an alarm. Steps to reproduce: 1. Add a new system user. 2. Install the snmpd package. 3. Remove the system user added during 1. 4. Upgrade the snmpd package (e.g. by adding the security repository where a newer version is available) 5. Observe that the Debian-snmp user has been removed and re-added while upgrading the package, thus UID/GID has changed. Please note that step 3 may also be performed by any packages added or removed intermittently, it doesn't have to be a manual operation consciously performed by an admin. After such an upgrade, rkhunter now reports: Info: Starting test name 'passwd_changes' Checking for passwd file changes [ Warning ] Warning: User 'snmp' has been removed from the passwd file. Warning: Changes found in the passwd file for user 'Debian-snmp': The UID has changed from '117' to '109' The GID has changed from '123' to '113' Info: Starting test name 'group_changes' Checking for group file changes [ Warning ] Warning: Group 'snmp' has been removed from the group file. Warning: Changes found in the group file for group 'Debian-snmp': The group number has changed from '123' to '113' The expected result would be that Debian-snmp is not removed and re-added during every upgrade, but that the user simply remains there and also keeps its GID and UID. -- System Information: Debian Release: 9.5 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 4.9.0-8-amd64 (SMP w/16 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US:en (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages snmpd depends on: ii adduser 3.115 ii debconf [debconf-2.0] 1.5.61 ii init-system-helpers 1.48 ii libc6 2.24-11+deb9u3 ii libsnmp-base 5.7.3+dfsg-1.7+deb9u1 ii libsnmp30 5.7.3+dfsg-1.7+deb9u1 ii lsb-base 9.20161125 snmpd recommends no packages. Versions of packages snmpd suggests: pn snmptrapd <none> -- Configuration Files: /etc/default/snmpd changed: export MIBS= SNMPDRUN=yes SNMPDOPTS='-LS4d -Lf /dev/null -u snmp -g snmp -I -smux,mteTrigger,mteTriggerConf -p /run/snmpd.pid' /etc/snmp/snmpd.conf [Errno 13] Permission denied: '/etc/snmp/snmpd.conf' /etc/snmp/snmptrapd.conf [Errno 13] Permission denied: '/etc/snmp/snmptrapd.conf' -- debconf information: snmpd/upgradefrom521:
--- End Message ---
--- Begin Message ---Source: net-snmp Source-Version: 5.7.3+dfsg-4 We believe that the bug you reported is fixed in the latest version of net-snmp, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [email protected], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Craig Small <[email protected]> (supplier of updated net-snmp package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [email protected]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 26 Oct 2018 12:40:34 +1100 Source: net-snmp Binary: snmpd snmptrapd snmp libsnmp-base libsnmp30 libsnmp30-dbg libsnmp-dev libsnmp-perl python-netsnmp tkmib Architecture: source all amd64 Version: 5.7.3+dfsg-4 Distribution: unstable Urgency: medium Maintainer: Net-SNMP Packaging Team <[email protected]> Changed-By: Craig Small <[email protected]> Description: libsnmp-base - SNMP configuration script, MIBs and documentation libsnmp-dev - SNMP (Simple Network Management Protocol) development files libsnmp-perl - SNMP (Simple Network Management Protocol) Perl5 support libsnmp30 - SNMP (Simple Network Management Protocol) library libsnmp30-dbg - SNMP (Simple Network Management Protocol) library debug python-netsnmp - SNMP (Simple Network Management Protocol) Python support snmp - SNMP (Simple Network Management Protocol) applications snmpd - SNMP (Simple Network Management Protocol) agents snmptrapd - Net-SNMP notification receiver tkmib - SNMP (Simple Network Management Protocol) MIB browser Closes: 898197 910638 911216 Changes: net-snmp (5.7.3+dfsg-4) unstable; urgency=medium . [ Craig Small ] * Use correct snmpwalk args in snmpcheck Closes: #898197 * Remove user only on purge Closes: #911216 . [ Ondřej Nový ] * d/copyright: Use https protocol in Format field * d/control: Removing redundant Priority field in binary package * d/changelog: Remove trailing whitespaces * d/control: Remove trailing whitespaces * d/watch: Use https protocol . [ Salvatore Bonaccorso ] * snmpd crashes when receiving a GetNext PDU with multiple Varbinds (CVE-2018-18065) (Closes: #910638) Checksums-Sha1: 8bfc656e0a9a30a2ed8c3eed75c580414ff6f81a 2988 net-snmp_5.7.3+dfsg-4.dsc 2533c2d3cd3c0c8391ac7c9b6e3ecc25f17040a7 77028 net-snmp_5.7.3+dfsg-4.debian.tar.xz f69a8643bb87eacab4c3198101711d715c849957 1594512 libsnmp-base_5.7.3+dfsg-4_all.deb 5bc7b6235ba67ad4cffd35ca5c2f2614e6980ad5 1100024 libsnmp-dev_5.7.3+dfsg-4_amd64.deb b2ca7723e398f005f4281b7314b0da837f9bfec6 346868 libsnmp-perl-dbgsym_5.7.3+dfsg-4_amd64.deb 34160fb2de752862ee21b7ca90c62bc56590b7e2 1532324 libsnmp-perl_5.7.3+dfsg-4_amd64.deb 12229379a8a92aed182defbb6bd0ed89677f6764 2730916 libsnmp30-dbg_5.7.3+dfsg-4_amd64.deb 01f5030521cdd1f32a76ad1944f0c44901044a1d 2321260 libsnmp30_5.7.3+dfsg-4_amd64.deb 890414fd79056798a879a231cf51069a2e7f8172 10978 net-snmp_5.7.3+dfsg-4_amd64.buildinfo 073e95fed3d099c8c5dd8e3995d8a1d3c47fec54 47316 python-netsnmp-dbgsym_5.7.3+dfsg-4_amd64.deb e0e99f8fdbf48f69918818855ea72ec76d2480da 19860 python-netsnmp_5.7.3+dfsg-4_amd64.deb a29f2fbaa83960134f9a9ae20350cec4676d6949 281948 snmp-dbgsym_5.7.3+dfsg-4_amd64.deb 6ae0b1504b643f086f90048a57c5b5d5ea0ca08c 155660 snmp_5.7.3+dfsg-4_amd64.deb 17847e6c6b2ffc4141b68a39c3e0fdb4557af7d6 21668 snmpd-dbgsym_5.7.3+dfsg-4_amd64.deb 3a1ebaf18508711a5e6b23ce2ecc406e1b63dfeb 56040 snmpd_5.7.3+dfsg-4_amd64.deb aa925494fd173c11797fa41f1b6937f1bbcde047 25236 snmptrapd-dbgsym_5.7.3+dfsg-4_amd64.deb 746273959ee9dad956c5029ee609f5278f4c9151 24364 snmptrapd_5.7.3+dfsg-4_amd64.deb 8186513fdea4f5a798b4fa355c44ff411dd75297 1471236 tkmib_5.7.3+dfsg-4_all.deb Checksums-Sha256: 8f519449f536d833bea2d09dd967f3497c7843d03b3e071f81d935ea54488367 2988 net-snmp_5.7.3+dfsg-4.dsc 69a3db77e969cf95b7039f73369374962da94192d2bb08ed21586caa4d0c8359 77028 net-snmp_5.7.3+dfsg-4.debian.tar.xz 5001d8abd99b13f39344e5726c5396381165d46199fe66db9fe2367946ce6f5b 1594512 libsnmp-base_5.7.3+dfsg-4_all.deb 2c8e74f6d49e3e4fa2928cc74fef880e189b7b825743b6258d86ef736083420b 1100024 libsnmp-dev_5.7.3+dfsg-4_amd64.deb 3b155814cd6b7fda1c98e9b43d074c7868844b2b0318e580aa8ee06374eaebd8 346868 libsnmp-perl-dbgsym_5.7.3+dfsg-4_amd64.deb 6ea936c94579a21bd1829adda0bc33a63b4e2d99fbaeeb5b2d3e0a9e9a7f9df1 1532324 libsnmp-perl_5.7.3+dfsg-4_amd64.deb 62cccca6bf92013ad28ead2a43a5bebf5ebee5f6c0d34ca3c39a42eb78d1ab5b 2730916 libsnmp30-dbg_5.7.3+dfsg-4_amd64.deb be58523ab2b7c6f610b5798a89c88a060e33e0f6851f6d65a9eb8aab9ce1fd6d 2321260 libsnmp30_5.7.3+dfsg-4_amd64.deb 92af5c4c777abf433d698d1b48c5409efe586785fc6229051de59033ca691a50 10978 net-snmp_5.7.3+dfsg-4_amd64.buildinfo eacc7c70d8871460e7ba1fb31ea222960bb5711bf1045e6131bf5b07bb54aad1 47316 python-netsnmp-dbgsym_5.7.3+dfsg-4_amd64.deb 74947f37775d225d70dd6854c67711f6fd058f9fa7f528baf4d5112b74f75def 19860 python-netsnmp_5.7.3+dfsg-4_amd64.deb 828d93fe72ffee2d6bb01a5235b003edf566be1e16ed8acc8cb91c74edd2757c 281948 snmp-dbgsym_5.7.3+dfsg-4_amd64.deb ee74e798e90875e7129b4d88a0e9a364a521981b7192566d47bf6032a89b5844 155660 snmp_5.7.3+dfsg-4_amd64.deb 4e976e449214f0b23040c41176f13c5ca97a118a58f5d5f91a383381fbb7cdc2 21668 snmpd-dbgsym_5.7.3+dfsg-4_amd64.deb 69f1db80096392c975a9c1875cf302a1a5e5b698cc50c250a15650595e9cdcd4 56040 snmpd_5.7.3+dfsg-4_amd64.deb 94f6fb34729b84fb9fde7e231ce0d35c30b0017ef319aedfa93f7bb3813f57f8 25236 snmptrapd-dbgsym_5.7.3+dfsg-4_amd64.deb c50ede31d17d2042895adb6787db80b7f7096aed5fa0c034bc712c3685417f3b 24364 snmptrapd_5.7.3+dfsg-4_amd64.deb 48d5bbd8b91cd5bf6e39782dd240bff8c1453f4c7f87253b08e442088eea4b1f 1471236 tkmib_5.7.3+dfsg-4_all.deb Files: 673b3ff7549b5a708085752b6f5a6eeb 2988 net optional net-snmp_5.7.3+dfsg-4.dsc 3b000e779122d7ebab04807583bd5bff 77028 net optional net-snmp_5.7.3+dfsg-4.debian.tar.xz 7806e02cea671467c7b0b044dba3378a 1594512 libs optional libsnmp-base_5.7.3+dfsg-4_all.deb 6d731f693b9f40f4016b7aa579539448 1100024 libdevel optional libsnmp-dev_5.7.3+dfsg-4_amd64.deb 49d67daa978734ee99b8c3c6e1717998 346868 debug optional libsnmp-perl-dbgsym_5.7.3+dfsg-4_amd64.deb 891c53dc650506281cad6b428423da56 1532324 perl optional libsnmp-perl_5.7.3+dfsg-4_amd64.deb aef1299f1e71ab8c7132ef6bce5417d8 2730916 debug optional libsnmp30-dbg_5.7.3+dfsg-4_amd64.deb aa1277a5e1dcf16c2ecf9c96bea2bd22 2321260 libs optional libsnmp30_5.7.3+dfsg-4_amd64.deb 52b0c8234551de564900ddafc4850d38 10978 net optional net-snmp_5.7.3+dfsg-4_amd64.buildinfo f058494f18eff6bcf090171bf2f1f8e8 47316 debug optional python-netsnmp-dbgsym_5.7.3+dfsg-4_amd64.deb 10fa499179299ccf81718b25d9d4e638 19860 python optional python-netsnmp_5.7.3+dfsg-4_amd64.deb df2c3e5481961f0e3612ddc027568408 281948 debug optional snmp-dbgsym_5.7.3+dfsg-4_amd64.deb 3a9c57fd1064c0fef53c0f35079cf4d7 155660 net optional snmp_5.7.3+dfsg-4_amd64.deb 856d4983de6d651548b79009b725afd8 21668 debug optional snmpd-dbgsym_5.7.3+dfsg-4_amd64.deb 1da6de08dacf05f5ef27a4415d02521d 56040 net optional snmpd_5.7.3+dfsg-4_amd64.deb 0d080116d1332c55defdfc0acb10e6bc 25236 debug optional snmptrapd-dbgsym_5.7.3+dfsg-4_amd64.deb c62f32babcfc1b0fcd72c1caf49614b8 24364 net optional snmptrapd_5.7.3+dfsg-4_amd64.deb 0e478ead9cb484dee25d98747398b211 1471236 net optional tkmib_5.7.3+dfsg-4_all.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEXT3w9TizJ8CqeneiAiFmwP88hOMFAlvScr8ACgkQAiFmwP88 hOPGnw/8CMPIxGpF0+7+WBLiFgL7s7+dkYH8/sGI5CsAhJrHDZ14eJ9cRETgzbFo TNyb4XES73ELyMPaW0/edyjB6rBx5S1MrC3GonGtwdzjoZGICetL6bKGh/MSHCx5 Noxa88gXRpabhiGHVYO/opq0AQg0q0w8wMyAvyhOPG2/8ZtGaL/G1lbbxWsnwXpl dKvMKtvQ3q/Kvf36xG1vj66MwLeui0gV9GoeP8Gbd7mnUDeBhJ9PRW3CtgG5aYVT zb/HjXbg9C2dzALCnX7pbOvOhPvTxkn4/1RVLVq2iYKVJ0lDAm0AlHCw1vOPo479 3vi1tqzu4iisH1Amk2UruyG3cg3E0zBV9iFcFeRf5EFxAOsStDM7gKwD2XiWHRar qFH2qEiRlZh+5nWqKZGhL/vBE3l7hzPP+klC5QBzklNF0lOP0CvHXu+Mla667Fr/ owX4e41eRRGP/1CusxYcs8To2zK2DvpCkIBuzzzVNSIDlRlBKl9MGK2zh5TDd01q PnKSGBgg/rtEF+F3ikztXmYPMZ61XIWgsdAf4x7CO4P7GMIQHcuySZxHu0SFzIoO zo14b7pMjwiDUQsdRcDzZ58xFB3Dym4WZR4bkWJwbrBympOkJBoWgvbX1BomfxqF wb8BPQbZ/Z1qOzKDei/xojDNSCFT1fUkvbUbA1h/i1NDnwqwk6g= =KieH -----END PGP SIGNATURE-----
--- End Message ---
