https://bugzilla.novell.com/show_bug.cgi?id=695317 https://bugzilla.novell.com/show_bug.cgi?id=695317#c2 Volker Kuhlmann changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |NEW CC| |volker3204@paradise.net.nz InfoProvider|volker3204@paradise.net.nz | --- Comment #2 from Volker Kuhlmann 2011-05-23 11:00:18 UTC --- Sorry I didn't notice it was from contrib, I find the current BS structure a bit confusing. It's rkhunter-1.3.8-4.2.x86_64 Vendor: obs://build.opensuse.org/openSUSE:11.4:Contrib and searching OBS there is only that one in openSUSE:11.4:Contrib/standard and another in security/openSUSE_11.4, which however has exactly the same bad script. That sort of programming shouldn't be shipped with security software :-( -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=695317 https://bugzilla.novell.com/show_bug.cgi?id=695317#c4 --- Comment #4 from Volker Kuhlmann 2011-05-23 13:07:37 UTC --- Hm, I'm not making this up. My policy is to set keeppackages for all repos.

rpm -q rkhunter rkhunter-1.3.8-4.2.x86_64

rpm -qi rkhunter Name : rkhunter Relocations: (not relocatable) Version : 1.3.8 Vendor: obs://build.opensuse.org/openSUSE:11.4:Contrib Release : 4.2 Build Date: Wed 09 Mar 2011 10:21:35 NZDT Install Date: Mon 25 Apr 2011 11:34:23 NZST Build Host: build17 Group : System/Monitoring Source RPM: rkhunter-1.3.8-4.2.src.rpm Size : 879314 License: GPL v3 Signature : DSA/SHA1, Wed 09 Mar 2011 10:22:49 NZDT, Key ID 4c236e3c62b21ea4

dl -d /var/cache/zypp/packages/ | grep rkhunt 190418 2011-04-25 11:34:19 download.opensuse.org-standard/x86_64/rkhunter-1.3.8-4.2.x86_64.rpm

grep -l download.opensuse.org-standard /etc/zypp/repos.d/* /etc/zypp/repos.d/download.opensuse.org-standard.repo

cat /etc/zypp/repos.d/download.opensuse.org-standard.repo [download.opensuse.org-standard] name=Main Repository (Contrib) .. baseurl=http://download.opensuse.org/repositories/openSUSE:/11.4:/Contrib/standard/

This is where is most surely came from. It is 1 of 2 packages found here (first one): http://software.opensuse.org/search?baseproject=openSUSE%3A11.4&p=1&q=rkhunter I checked, and the second package has exactly the same broken script: http://software.opensuse.org/search/download?base=openSUSE%3A11.4&file=security%2FopenSUSE_11.4%2Fx86_64%2Frkhunter-1.3.8-1.1.x86_64.rpm HTH -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=695317 https://bugzilla.novell.com/show_bug.cgi?id=695317#c Sascha Manns changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |ASSIGNED -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=695317 https://bugzilla.novell.com/show_bug.cgi?id=695317#c7 --- Comment #7 from Volker Kuhlmann 2011-05-24 09:50:55 UTC --- @Marcus: ;-) Just giving more info; as it turns out, both packages are broken. @Sascha: Sorry I don't mean to be rude, but are you serious? Have you read the bug's "$SUBJECT"? /etc/cron.daily/suse.de-rkhunter was written by someone who needs a lesson in safe shell script programming. I had already attached a fix for the most obvious error (which is a manifestation of unsafe shell script programming). -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.