Re: [Rkhunter-users] Comments on 1.3.0 on OpenBSD

Tue, 20 Nov 2007 02:40:47 -0800 

On Tue, 2007-11-20 at 12:29 +0800, Uwe Dippel wrote:
>
>   Checking file suspscan.dat                                 [ No update ]
> /usr/local/bin/rkhunter[12229]: [: file: unexpected operator/operand
>   Checking file i18n/cn                                      [ No update ]
>   Checking file i18n/en                                      [ No update ]
> 
If this happens consistently, then could you email me a copy of the log
file please.


> Also, the daily output looks kind of ugly now:
> [ Rootkit Hunter version 1.3.0 ]
>  [1;33mChecking rkhunter version... [0;39m
>  This version  : 1.3.0
>  Latest version: 1.3.0
> [ Rootkit Hunter version 1.3.0 ]
>  [1;33mChecking rkhunter data files... [0;39m
>  Checking file mirrors.dat [34C[  [1;32mNo update [0;39m ]
>  Checking file programs_bad.dat [29C[  [1;32mNo update [0;39m ]
>  Checking file backdoorports.dat [28C[  [1;32mNo update [0;39m ]
>  Checking file suspscan.dat [33C[  [1;32mNo update [0;39m ]
>  Checking file i18n/cn [38C[  [1;32mNo update [0;39m ]
>  Checking file i18n/en [38C[  [1;32mNo update [0;39m ]
> 
Use the '--nocolors' option when running cron jobs. (Now mentioned in
the CVS FAQ file.)

> 
>  #
>  # Allow the specified processes to use deleted files.
> @@ -329,6 +332,7 @@
>  # One file per line (use multiple ALLOWDEVFILE lines).
>  #
>  #ALLOWDEVFILE=/dev/abc
> +ALLOWDEVFILE=/dev/MAKEDEV
> 
Fixed in CVS, so you won't need to whitelist MAKEDEV.

>  #
>  #SYSTEM_RC_DIR=/etc/rc.d
> +SYSTEM_RC_DIR=/etc
> 
This will cause all the files in /etc to be looked at. It could well
slow RKH down somewhat. Does OpenBSD not keep it's system startup files
in something like /etc/rc.d ?


John.

-- 
---------------------------------------------------------------
John Horne, University of Plymouth, UK  Tel: +44 (0)1752 233914
E-mail: [EMAIL PROTECTED]       Fax: +44 (0)1752 233839

-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2005.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Rkhunter-users mailing list
Rkhunter-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/rkhunter-users

Reply via email to