linux-baseline icon indicating copy to clipboard operation
linux-baseline copied to clipboard

Published 20 hours ago verified publisher icon dev-sec

Timeout issue with NFS mounts - Don't transverse file system

Open smford22 opened this issue 7 years ago • 0 comments

We are seeing timeout issues on control os-06 https://github.com/dev-sec/linux-baseline/blob/60ae1a5723bca01a9f87b846ede3f8b23a7bd0ed/controls/os_spec.rb#L180 when transversing the file system hits an NFS mount. The result is a timeout error of mixlibshellout exceeding 600s.

[2017-08-09T03:35:28+00:00] ERROR: Report handler Chef::Handler::AuditReport raised #<Mixlib::ShellOut::CommandTimeout: Command timed out after 600s:
Command exceeded allowed execution time, process terminated
---- Begin output of find / -perm -4000 -o -perm -2000 -type f ! -path '/proc/*' ! -path '/var/lib/lxd/containers/*' -print 2>/dev/null | grep -v '^find:' ----
STDOUT:
STDERR:
---- End output of find / -perm -4000 -o -perm -2000 -type f ! -path '/proc/*' ! -path '/var/lib/lxd/containers/*' -print 2>/dev/null | grep -v '^find:' ----
Ran find / -perm -4000 -o -perm -2000 -type f ! -path '/proc/*' ! -path '/var/lib/lxd/containers/*' -print 2>/dev/null | grep -v '^find:' returned >

Is there a better way to do this control?

smford22 avatar Aug 09 '17 18:08 smford22