"logwatch" vanished after WHM/CPanel Update

[JapAniManga.ch]

"logwatch" vanished after WHM/CPanel Update

Hello,

at the first Time I made a manual 'Update System Software' I saw this on the first Line:

error: package logwatch is not installed


Got this on both Server (RH7.2), so I installed the LOGWATCH-Package from the RedHat Site.

Now Today (~ 2-3 Days later) I made again a manuall 'Update System Software' and once again I got a ...

error: package logwatch is not installed

I looked on the Server and ... hey where is My manuall installed LOGWATCH-Package ????

OK I can once again install this Package but I dont have the Time to make this every Day again and again and again !

Are I'm the only one with this Problem ? What does the others think about it ??



[[when in wrong Treat please move it]]

 

[bdraco]

Logwatch currently has a root exploit .... I have a working copy in my inbox .. I think its best to not have it installed until the logwatch author produces a patch.

 

[JapAniManga.ch]

aahhaaa.. OK then is all fine.

One little Note: Hows about when you write in the WHM-News also about the Exploit's ?!? Something like this: .. ROOT EXPLOIT &LOGWATCH&. Has been autom. removed with Update ???.

 

[bdraco]

[quote:24f37824c3][i:24f37824c3]Originally posted by AnimeHosting.net[/i:24f37824c3]

aahhaaa.. OK then is all fine.

One little Note: Hows about when you write in the WHM-News also about the Exploit's ?!? Something like this: .. ROOT EXPLOIT &LOGWATCH&. Has been autom. removed with Update ???.[/quote:24f37824c3]

Its usually better to let the author of the program know before making the exploit public as they can produce a patch. If everyone knows about it someone is going to figure it out, start breaking into systems because nobody has a patched version installed...

 

[HollyRidge]

Yeah it would be nice to know about this. You should NEVER remove files unless you at least provide some kind of warning. Also if you know of a exploit why dont you report this to the author so they may fix it. So far nothing not seeing any report there since before the last version was put out.

cPanel.net Support Ticket Number:

 

[HollyRidge]

for those that dont want it removed you can chattr the directory so that cpanel cant remove it.

chattr +i /etc/log.d/

To remove the block...

chattr -i /etc/log.d/

That should do it.

Also just to point out there are still no reports over there about any vunerability with logwatch.

cPanel.net Support Ticket Number: