Installer fails to correctly install when ossec users are in LDAP #1278

mjbroekman · 2017-10-09T19:11:05Z

The installer looks for users and groups only in the local passwd and group file on Unix systems. If the ossec user and group are in LDAP, it fails to detect them and then the install dies when it tries to groupadd and useradd.

I had to hack the adduser.sh script to add getent checks to prevent it from adding the user and group that already exist.

54:    if [ `getent group ossec | wc -l` -lt 1 -a ! grep "^${GROUP}" /etc/group > /dev/null 2>&1 ]; then
70:        if [ `getent passwd ossec | wc -l` -lt 1 -a ! grep "^${U}" /etc/passwd > /dev/null 2>&1 ]; then

The text was updated successfully, but these errors were encountered:

This should hopefully help in the case of users being in ldap instead of on the system. The original checks in issue ossec#1278 didn't quite work for me, so broke them out a bit more.

ddpbsd · 2017-10-10T13:34:29Z

I need to run this through some tests, but it might work:
ddpbsd@9a6add8

ddpbsd added enhancement rn:install labels Oct 9, 2017

ddpbsd mentioned this issue Oct 11, 2017

Attempt to use getent to check for users/group. #1282

Merged

ddpbsd closed this as completed Dec 12, 2017

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Installer fails to correctly install when ossec users are in LDAP #1278

Installer fails to correctly install when ossec users are in LDAP #1278

mjbroekman commented Oct 9, 2017 •

edited

Loading

ddpbsd commented Oct 10, 2017

Installer fails to correctly install when ossec users are in LDAP #1278

Installer fails to correctly install when ossec users are in LDAP #1278

Comments

mjbroekman commented Oct 9, 2017 • edited Loading

ddpbsd commented Oct 10, 2017

mjbroekman commented Oct 9, 2017 •

edited

Loading