scap-workbench icon indicating copy to clipboard operation
scap-workbench copied to clipboard

Published 20 hours ago verified publisher icon OpenSCAP

Message error while scanning a remote machine

Open Ricky-Tigg opened this issue 5 years ago • 3 comments

Component: scap-workbench.x86_64 1.2.1-2.fc32 @fedora, compiled with Qt 5.13.2, using OpenSCAP 1.3.2; Kernel: 5.6.0-0.rc7.git0.2.fc32.x86_64

Dry-run output: oscap-ssh [email protected] 22 xccdf eval --datastream-id scap_org.open-scap_datastream_from_xccdf_ssg-fedora-xccdf-1.2.xml --xccdf-id scap_org.open-scap_cref_ssg-fedora-xccdf-1.2.xml --tailoring-file /home/yk/ssg-fedora-ds-muutos.xml --profile xccdf_firefox_profile_ospp_muokattu --oval-results --results /tmp/xccdf-results.xml --results-arf /tmp/arf.xml --report /tmp/report.html /tmp/scap-workbench-RrsTQS/ssg-fedora-ds.xml

Message produced during scanning:

15:30:31 info     SCAP Workbench 1.2.1, compiled with Qt 5.13.2, using OpenSCAP 1.3.2
15:30:35 info     Opened file '/usr/share/xml/scap/ssg/content/ssg-fedora-ds.xml'.
15:47:54 info     Establishing a connection to remote target...
15:48:00 info     Connection established.
15:48:00 info     Checking if oscap is available on remote machine...
15:48:00 info     Querying capabilities on remote machine...
15:48:00 info     Copying input data to remote target...
15:48:01 info     Starting the remote process...
15:48:01 info     Processing on the remote machine...
15:50:22 error    The 'oscap' process has written the following content to stderr: E: oscap: Can't read sysctl value from "/proc/sys/net/core/bpf_jit_harden": 13, Permission denied 
15:50:31 info     Cleaning up...
15:50:32 info     Processing has been finished!
16:02:01 info     Establishing a connection to remote target...
16:02:12 info     Connection established.
16:02:12 info     Checking if oscap is available on remote machine...
16:02:12 info     Querying capabilities on remote machine...
16:02:12 info     Copying input data to remote target...
16:02:13 info     Starting the remote process...
16:02:13 info     Processing on the remote machine...
16:04:25 error    The 'oscap' process has written the following content to stderr: E: oscap: Can't read sysctl value from "/proc/sys/net/core/bpf_jit_harden": 13, Permission denied 
16:04:33 info     Cleaning up...
16:04:33 info     Processing has been finished!

Ricky-Tigg avatar Mar 27 '20 14:03 Ricky-Tigg

@Ricky-Tigg did you run as root on the remote?

redhatrises avatar Mar 27 '20 16:03 redhatrises

On remote host, the user name is visible in the main message; then it is yk; in my system it is member of wheel group , which contains sudo-allowed users.

$ id
uid=1000(yk) gid=1000(yk) ryhmät=1000(yk),10(wheel) context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c102

Ricky-Tigg avatar Mar 28 '20 11:03 Ricky-Tigg

Planning to close my reports that remain open on this platform indefinitely in undone/unfixed states soon. Rare is the developer that comprehends that getting rid off a simplest task as soon as it arrives and keeping a challenging task for the long term are the only healthy practises. Pity for the project owner.

Ricky-Tigg avatar Dec 12 '23 12:12 Ricky-Tigg