On Mon, Aug 25, 2014 at 12:55 AM, absolutely_f...@libero.it wrote: > > Hi, > > I am trying to tune Rkhunter configuration on our production server in order > to minimize false positive results. > What configuration do you use? Which test do you keep enabled?
Default values work for most users, but it would also depend on what OS you use on that production server. If I were to share my configuration for OS X it would probably wouldn’t be of any help at all. After you have made your initial run and satisfied yourself that any alerts are false alarms, then you can whitelist them. Pretty simple, actually. -Al- -- Al Varnell Mountain View, CA ------------------------------------------------------------------------------ Slashdot TV. Video for Nerds. Stuff that matters. http://tv.slashdot.org/ _______________________________________________ Rkhunter-users mailing list Rkhunter-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/rkhunter-users
