On Thu, 2008-02-14 at 07:11 -0600, JimC wrote:
>
> Question 1)
>
> I have 1.2.8 installed on one of my boxes and I tried to update it a
> few days ago, yet it would not.. If I remember, it could not find the
> mirror.
>
Okay, Nils has given you the URL for RKH version 1.3.0, so you should be
able to use wget to get that.
>
> Question 2) I'm not that hot on my *nix commands, and I "had" saved
> the wget and install commands from Michael from a few years ago, but I
> had a hard disk crash a month ago, and lost all my e-mails..
>
> I was wondering if would not mind posting "how to" using SSH to
> install for me?
>
To get the file onto your local machine you just use:
wget http://...
using the URL. To get the file onto a remote server using SSH you can
use the 'scp' command. From the (Windows) command-line you can try
something like:
scp rkhunter-1.3.0.tar.gz [EMAIL PROTECTED]:
where 'username' is the userid you use on the server, and 'server' is
the DNS name for the remote server.
Since you are upgrading from RKH 1.2.8 I would suggest removing from the
server the old 1.2.8 version (it's possibly in /usr/local/rkhunter
and /usr/local/etc). The new version uses some different locations for
files, and the configuration file has many more options to it.
Once the file is on the server, and you are logged in to the server as
yourself, you then need to become the root user (use the 'su -'
command). Next, change directory to wherever you initially copied the
file (typically this will be the home directory of 'username'). You can
then unpack the file using:
tar xvfz rkhunter-1.3.0.tar.gz
This will create the directory 'rkhunter'. Again, since you are
upgrading from RKH 1.2.8, I would recommend looking through the README,
FAQ and CHANGELOG files. For installation notes look in the README file
(these can be found in the directory './rkhunter/files'). Once
installed, the 'rkhunter -h' command or the man page ('man rkhunter')
may also be useful. A basic installation would be (as the 'root' user):
cd ./rkhunter
./installer.sh --layout default --install
Your configuration file (rkhunter.conf) will be installed in '/etc'.
Personally I take a copy of the file before making any changes - just in
case things go really wrong:
cp /etc/rkhunter.conf /etc/rkhunter.conf.orig
I would suggest looking through the config file to see what is and is
not possible, but, initially at least, not change anything. As the
README file suggests, first run:
rkhunter --propupd
and then something like:
rkhunter -c --sk
This will more than likely throw up some warnings. Go through these and
whitelist or disable them in the config file - making sure though that
any hidden files, etc are supposed to be hidden on your system! After
that re-run 'rkhunter -c --sk' to ensure that no warnings show up. If
you change the PKGMGR option in your config file, then don't forget to
re-run 'rkhunter --propupd'.
And that's about it I think :-)
John.
--
---------------------------------------------------------------
John Horne, University of Plymouth, UK Tel: +44 (0)1752 233914
E-mail: [EMAIL PROTECTED] Fax: +44 (0)1752 233839
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Rkhunter-users mailing list
Rkhunter-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/rkhunter-users
