Messages de sectool

Système et matériels / Installation et configuration

Biniou Lamothe Membre non connecté

Le 21/11/2011 à 17h56

Bonjour,

En jetant un oeil dans dead.letter, je découvre que depuis que sectool à été ajouté lors d'une mise à jour de Mageia, ce fichier affiche chaque semaine un impressionnante quantité de messages d'avertissements. Ces messages se répètent à l'identique chaque semaine.

Ne sachant faire autrement, je colle ces messages ci-dessous.

Ces messages m'ont l'air inquiétant. A votre avis, faut-il faire quelque chose ?

Merci de votre aide

Caché :

[i]Test finished: oct. 30 08:44:19

Total of Suid Root files: 37

Total of Sgid files: 18

Total of World Writable files: 22

Total of Un-owned files: 23

Total of Un-owned group files: 24

Total of SUID files with controlled MD5 checksum: 37

Sectool report:

group ->

Attention: /etc/group: Line 30: Group nogroup has GID out of range

group: ATTENTION

passwd ->

Attention: Wrong permissions on fichier "/etc/shadow": 440 (Shadow user database, required permissions are 400)

Attention: Wrong permissions on fichier "/etc/gshadow": 440 (Shadow group database, required permissions are 400)

Erreur: /etc/passwd: Line 15: User messagebus has strange shell /sbin/nologin

Erreur: /etc/passwd: Line 16: User vcsa has strange shell /sbin/nologin

Erreur: /etc/passwd: Line 17: User sshd has strange shell /bin/true

Erreur: /etc/passwd: Line 18: User rpm has strange shell /bin/false

Erreur: /etc/passwd: Line 20: User avahi has strange shell /bin/false

Erreur: /etc/passwd: Line 21: User avahi-autoipd has strange shell /bin/false

Erreur: /etc/passwd: Line 22: User rpc has strange shell /sbin/nologin

Erreur: /etc/passwd: Line 23: User rpcuser has strange shell /bin/false

Erreur: /etc/passwd: Line 24: User rtkit has strange shell /sbin/nologin

Erreur: /etc/passwd: Line 25: User usbmux has strange shell /sbin/nologin

Erreur: /etc/passwd: Line 26: User polkituser has strange shell /sbin/nologin

Erreur: /etc/passwd: Line 27: User haldaemon has strange shell /sbin/nologin

Erreur: /etc/passwd: Line 28: User ntp has strange shell /bin/false

Erreur: /etc/passwd: Line 29: User davfs2 has strange shell /bin/false

Erreur: /etc/passwd: Line 31: User vdr has strange shell /bin/nologin

passwd: ERREUR

shadow ->

Attention: Wrong permissions on fichier "/etc/shadow": 440 (User shadow database, required permissions are 400)

Attention: Wrong permissions on fichier "/etc/gshadow": 440 (Group shadow database, required permissions are 400)

shadow: ATTENTION

home_dirs ->

Attention: This is a first run of the test. Some parts of audit are skipped.

Erreur: Home directory of user "rpm" is world-readable.

Erreur: Home directory of user "rpm" is world-accessible.

Erreur: Home directory of user "mysql" is world-readable.

Erreur: Home directory of user "mysql" is world-accessible.

Erreur: Home directory of user "avahi-autoipd" does not exist!

Erreur: Home directory of user "rpcuser" has wrong uid: 0. Expected uid is 492.

Attention: Home directory of user "rpcuser" has wrong gid: 0. Expected gid is 491.

Erreur: Home directory of user "rpcuser" is world-readable.

Erreur: Home directory of user "rpcuser" is world-accessible.

Erreur: Home directory of user "davfs2" has wrong uid: 0. Expected uid is 486.

Erreur: Home directory of user "davfs2" is world-readable.

Erreur: Home directory of user "davfs2" is world-accessible.

Attention: Home directory of user "davfs2" is group-writable.

Erreur: Home directory of user "vdr" is world-readable.

Erreur: Home directory of user "vdr" is world-accessible.

home_dirs: ERREUR

home_files ->

home_files: REUSSIR

root_dirs ->

Erreur: There should not be a "/.config" directory under "/"

root_dirs: ERREUR

filesystem ->

filesystem: ECHOUER

path ->

Erreur: File /usr/bin/atq, which is placed in PATH directory /usr/bin, is owned by someone else than by root!

Attention: Path variable contains directory /usr/X11R6/bin, which doesn't exist or is not an directory.

path: ERREUR

firewall ->

Attention: Test firewall has missing dependencies: lsof

firewall: INVALIDE

netserv ->

Attention: Test netserv has missing dependencies: yum

netserv: INVALIDE

openssh ->

Attention: This is a first run of the test. Some parts of audit are skipped.

Erreur: Missing file or directory: "/var/empty/sshd" (directory used by sshd during privilege separation in the pre-authentication phase)

Attention: Remote root login IS ENABLED only with publickey authentication.

openssh: ERREUR

openvpn ->

Attention: Test openvpn tests package openvpn which is not installed, cannot run the test

openvpn: INVALIDE

removedlibs ->

removedlibs: REUSSIR

xinetd ->

Attention: Test xinetd tests package xinetd which is not installed, cannot run the test

xinetd: INVALIDE

suid ->

Attention: This is a first run of the test. Some parts of audit are skipped.

suid: ATTENTION

logfiles ->

logfiles: REUSSIR

pam ->

pam: REUSSIR

permissions ->

Erreur: Directory /srv doesn't exist!

permissions: ERREUR

exec-shield ->

exec-shield: REUSSIR

selinux ->

Attention: Test selinux has missing dependencies: getenforce, pkg(libselinux-python)

selinux: INVALIDE

mountopt ->

mountopt: REUSSIR

aliases ->

Attention: Alias 'cd..' contains command 'cd', which was not found

Attention: Alias 'p' contains command 'cd', which was not found

Attention: Alias 's' contains command 'cd', which was not found

aliases: ATTENTION

cron ->

cron: REUSSIR

vsftpd ->

Attention: Test vsftpd tests package vsftpd which is not installed, cannot run the test

vsftpd: INVALIDE

nfs ->

Attention: Test nfs tests package nfs-utils which is not installed, cannot run the test

nfs: INVALIDE

routing ->

Attention: This is a first run of the test. Some parts of audit are skipped.

routing: ATTENTION

Modération : pour cacher le texte il faut utiliser des balises hide. Yann

Mageia 4 Live CD
Antec Sonata III 500
Intel Core i5 CPU 750 2.67 GHz / RAM 4 Go
Carte graphique Asus GeForce GT 520 Silent
Chipset son intégré Intel ‎5 Series/3400
Graveur TSSTcorp CDDVDW SH-S223C

Répondre

Vous n'êtes pas autorisé à écrire dans cette catégorie

Notre Mission	Liens du site	Nous joindre	MLO est hébergé par
MLO est le forum francophone de la distribution Mageia et vous propose également un portail dédié aux débutants. MLO vous apporte un support sur la distribution grâce à son forum et vous offre des nouvelles de la distribution, des logiciels libres et de l'Open Source en général. Notre site a aussi pour but de vous montrer que Mageia est un système d'exploitation complet et facile à prendre en main. Vous apprendrez à installer simplement et à administrer efficacement votre système en un temps record.	Forum Documentation News du libre Mageia	Contacter MLO Mastodon MLO Flux RSS	MLO est un projet soutenu par Nos partenaires et amis
MLO est mis à disposition selon les termes de la licence Creative Commons.

Biniou Lamothe Membre non connecté

PaLmAs Membre non connecté

PaLmAs Membre non connecté