This article applies to BoKS Manager 7.1.

Description

If a user runs 'nested' suexec sessions (e.g. in a shell started by suexec), the audit log entries contain the wrong username.

For instance, if the user "ua" runs 'suexec /opt/boksm/sbin/boksadm', and from that shell then runs 'suexec /bin/pwd', then the user "root" would be recorded as running 'suexec /bin/pwd', instead of the user "ua".

This problem was introduced in hotfix HFBM-0161-1. That means if you install any of the hotfixes in the list below, the problem can occur:

HFBM-0161-1
HFBM-0165-1
HFBM-0165-2
HFBM-0180-1
HFBM-0180-2
HFBM-0166-1
HFBM-0166-2
HFBM-0203-1
HFBM-0189-1
HFBM-0189-2
HFBM-0231-1

The erroneous code in the suexec binary has been fixed. 

Resolution / Workaround

To resolve this issue, apply hotfixes HFBM-0252 and HFBM-0253, available for download from the HelpSystems Community Portal.

 


Still have questions? We can help. Submit a case to Technical Support.

Last Modified On: August 03, 2018