On Tue, 2007-05-01 at 14:37 +0100, John Horne wrote: > > > I have to admit that I don't like the application version check, it can > be very confusing. My RHEL4 system has PHP 4.3.9 installed by default; > GPG 1.2.6 (which is a bit old now), and openssl 0.9.7a, which too is a > bit old. The main thing is that RKH does not indicate that any of them > are known to be unsecure. > I should perhaps add that in the next release you can whitelist your own version numbers if you are sure they are secure. So even if RKH does, or even does not, recognise a version number, you can whitelist it so that RKH does not always flag it as unsecure.
John. -- --------------------------------------------------------------- John Horne, University of Plymouth, UK Tel: +44 (0)1752 233914 E-mail: [EMAIL PROTECTED] Fax: +44 (0)1752 233839 ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ _______________________________________________ Rkhunter-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/rkhunter-users
