From: [email protected]

Package: acidlab
Version: 0.9.6b20-7
Severity: normal


I recently installed snort-mysql and acidlab on a new system. The first
random password I tried for the MySQL database monitor had several
special chracters from the set !$@. This resulted in the config file not
being updated, presumably due to the input not being properly escaped
before being to sed:

ids:~# dpkg-reconfigure acidlab
sed: file /etc/acidlab/acidlab2861.conf line 6: unknown option to `s'

When I used a password without special characters, everything worked
normally.

-- System Information:
Debian Release: 3.1
APT prefers testing
APT policy: (500, 'testing')
Architecture: i386 (i686)
Kernel: Linux 2.6.7-1-k7-smp
Locale: LANG=C, LC_CTYPE=C

Versions of packages acidlab depends on:
ii acidlab-pgsql 0.9.6b20-7 Analysis Console for Intrusion Dat ii apache [httpd] 1.3.31-3 Versatile, high-performance HTTP s ii debconf 1.4.30 Debian configuration management sy ii libphp-adodb 4.50-1 The 'adodb' database abstraction l ii libphp-phplot 4.4.6+5.0rc1-1 The graphic library for PHP
ii php4 4:4.3.4-4 A server-side, HTML-embedded scrip ii php4-gd 4:4.3.4-4 GD module for php4
ii wwwconfig-common 0.0.38 Debian web auto configuration

-- debconf information:
* acidlab/alert_user: snort
* acidlab/archive_user: snort
* acidlab/alert_port:
* acidlab/alert_name: snort
* acidlab/alert_host: localhost
* acidlab/webserver: Both
* acidlab/archive_port:
* acidlab/archive_name: snort_archive
* acidlab/db_type: mysql
* acidlab/acidlab_advisory:
* acidlab/archive_host: localhost


--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]

--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)

From: [email protected]

That would be because the '@" character is used for the sed
command to terminate the expressions as such:

s@ALERT_PASSWORD@$alert_password@
s@ARCHIVE_PASSWORD@$archive_password@

Where $alert_password and $archive_password are the variables
given from the debconf questions. If either includes the '@" symbol they
will fail. I'll try to find a special character to change all the sed
commands to use if you can find one that no one will use in a password.

Regards,
Jeremy

On Thu, Aug 19, 2004 at 10:39:55PM -0700, Chris Adams wrote:

Package: acidlab
Version: 0.9.6b20-7
Severity: normal

I recently installed snort-mysql and acidlab on a new system. The first random password I tried for the MySQL database monitor had several
special chracters from the set !$@. This resulted in the config file not being updated, presumably due to the input not being properly escaped
before being to sed:

ids:~# dpkg-reconfigure acidlab
sed: file /etc/acidlab/acidlab2861.conf line 6: unknown option to `s'

When I used a password without special characters, everything worked normally.

-- System Information:
Debian Release: 3.1
APT prefers testing
APT policy: (500, 'testing')
Architecture: i386 (i686)
Kernel: Linux 2.6.7-1-k7-smp
Locale: LANG=C, LC_CTYPE=C

Versions of packages acidlab depends on:
ii acidlab-pgsql 0.9.6b20-7 Analysis Console for Intrusion Dat
ii apache [httpd] 1.3.31-3 Versatile, high-performance HTTP s
ii debconf 1.4.30 Debian configuration management sy
ii libphp-adodb 4.50-1 The 'adodb' database abstraction l
ii libphp-phplot 4.4.6+5.0rc1-1 The graphic library for PHP
ii php4 4:4.3.4-4 A server-side, HTML-embedded scrip
ii php4-gd 4:4.3.4-4 GD module for php4
ii wwwconfig-common 0.0.38 Debian web auto configuration

-- debconf information:
* acidlab/alert_user: snort
* acidlab/archive_user: snort
* acidlab/alert_port:
* acidlab/alert_name: snort
* acidlab/alert_host: localhost
* acidlab/webserver: Both
* acidlab/archive_port:
* acidlab/archive_name: snort_archive
* acidlab/db_type: mysql
* acidlab/acidlab_advisory:
* acidlab/archive_host: localhost

--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]

--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)