On Wed, May 7, 2008 at 7:47 PM, John Horne <[EMAIL PROTECTED]> wrote:
>> Sorry, 1.3.0 >> > Upgrade if you can. The tests of application versions was improved at > 1.3.2 to avoid these types of errors. Alas, we still run into the 'print' problem, though: [...] [Press <ENTER> to continue] Checking application versions... /usr/local/bin/rkhunter[12469]: print: -1: unknown option Checking version of Apache [ OK ] Checking version of Bind DNS [ OK ] Checking version of OpenSSL [ OK ] Checking version of PHP [ OK ] Checking version of OpenSSH [ OK ] Though this seems to have to make with my .conf file, with the original it doesn't come up. Therefore I took the time to modify the new, original .conf from 1.3.2 to our requirements. Then, I found that Apache is still shown as vulnerable [Checking application versions... Checking version of Apache [ Warning ] Checking version of Bind DNS [ OK ] though the .conf says: #APP_WHITELIST="" APP_WHITELIST="httpd:1.3.29" # Uwe [14:37:33] Checking version of Apache [ Warning ] [14:37:33] Warning: Application 'httpd', version '1.3.29', is out of date, and possibly a security risk. I guess there is a problem around the APP_WHITELIST ... Also, I made a 'mistake' at first, and marked the edited lines like THIS_IN_AN_OPTION root=/foo.bar # Uwe but it won't read the line at all / properly. May I suggest you write a small parser, that extracts everything left of an '#' as valid option? Uwe ------------------------------------------------------------------------- This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone _______________________________________________ Rkhunter-users mailing list Rkhunter-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/rkhunter-users
