Hello ! I've install rkhunter 1.2.8 but it was not fully working.
I discovered, that my system "Debian 4.0 (i386)" is not found in file os.dat. I wrote a line 185:Debian 4.0 (i386):/usr/bin/md5sum:/bin: and now it works. Furthermore I saw some lines in os.dat which are not ended by a ":" sign. To make all lines following the same syntax I changed them too. ciao, Ralf PS: Here you see the diff: ---------------------- # diff /tmp/rkhunter/files/os.dat /usr/local/rkhunter/lib/rkhunter/db/os.dat >/tmp/rkhunter/os.dat.diff 53,54c53,54 < 133:Yellow Dog Linux release 3.0 (Sirius):/usr/bin/md5sum:/bin < 134:Slackware 9.1.0:/usr/bin/md5sum:/bin --- > 133:Yellow Dog Linux release 3.0 (Sirius):/usr/bin/md5sum:/bin: > 134:Slackware 9.1.0:/usr/bin/md5sum:/bin: 60c60 < 140:Slackware 9.0.0:/usr/bin/md5sum:/bin --- > 140:Slackware 9.0.0:/usr/bin/md5sum:/bin: 68c68 < 147:Slackware 10.0.0:/usr/bin/md5sum:/bin --- > 147:Slackware 10.0.0:/usr/bin/md5sum:/bin: 76c76 < 155:White Box Enterprise Linux release 3.0 (Liberation Respin 1):/usr/bin/md5sum:/bin --- > 155:White Box Enterprise Linux release 3.0 (Liberation Respin > 1):/usr/bin/md5sum:/bin: 86,88c86,88 < 165:CentOS release 3.3 (final):/usr/bin/md5sum:/bin: < 165:CentOS release 3.3 (Final):/usr/bin/md5sum:/bin: < 166:CentOS release 3.4 (final):/usr/bin/md5sum:/bin: --- > 165:CentOS release 3.3 (final):/usr/bin/md5sum:/bin: > 165:CentOS release 3.3 (Final):/usr/bin/md5sum:/bin: > 166:CentOS release 3.4 (final):/usr/bin/md5sum:/bin: 90c90 < 168:Slackware 10.1.0:/usr/bin/md5sum:/bin --- > 168:Slackware 10.1.0:/usr/bin/md5sum:/bin: 108c108,109 < 184:Slackware 10.2.0:/usr/bin/md5sum:/bin --- > 184:Slackware 10.2.0:/usr/bin/md5sum:/bin: > 185:Debian 4.0 (i386):/usr/bin/md5sum:/bin: ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Rkhunter-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/rkhunter-users
