Re: [Rkhunter-users] Question re: os_specific check
On 10/11/2009, John Horne (john.ho...@plymouth.ac.uk) wrote: At that time the Linux os_specific test did just the one test, so disabling 'os_specific' was valid at that time. Gotcha... thanks again... -- Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference ___ Rkhunter-users mailing list Rkhunter-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/rkhunter-users
Re: [Rkhunter-users] Question re: os_specific check
On Sun, 2009-10-11 at 16:37 -0400, Tanstaafl wrote: I found a recommendation to disable the 'os_specific' check in DISABLED_TESTS in rkhunter.conf to fix this The config file provided by us makes no such recommendation. , but, what other tests/checks are being disabled by this? Or is it just the check for modules? If the latter, why not just rename this check to 'loadable_modules' or something? The os_specific test runs different tests depending on the O/S you are using. I assume you are using Linux, so there are two tests runs. The 'loaded_modules' test, checks the modules currently loaded on your system, but since you don't have /proc/modules you can disable this test. The 'avail_modules' test checks the modules on disk. It requires the pathname to the modules, which is usually something like /lib/modules or /lib/modules/2.6.30.8-64.fc11.x86_64 (where the O/S version is determined from 'uname -r'). You can set the pathname in the config file if RKH can't work it out for itself. I would suggest disabling just the 'loaded_modules' test. John. -- John Horne, University of Plymouth, UK Tel: +44 (0)1752 587287Fax: +44 (0)1752 587001 -- Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference ___ Rkhunter-users mailing list Rkhunter-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/rkhunter-users
Re: [Rkhunter-users] Question re: os_specific check
On 10/11/2009 5:30 PM, John Horne wrote: I found a recommendation to disable the 'os_specific' check in DISABLED_TESTS in rkhunter.conf to fix this The config file provided by us makes no such recommendation. Sorry, I was not clear... the recommendation I found was while googling... Heh - and it was an email on this list, and you were the one doing the recommending... ;) http://www.mail-archive.com/rkhunter-users@lists.sourceforge.net/msg01431.html The os_specific test runs different tests depending on the O/S you are using. I assume you are using Linux, so there are two tests runs. The 'loaded_modules' test, checks the modules currently loaded on your system, but since you don't have /proc/modules you can disable this test. The 'avail_modules' test checks the modules on disk. snip I would suggest disabling just the 'loaded_modules' test. Perfect... no more warnings. Thanks for the explanation! -- Best regards, Charles Marcus I.T. Director Media Brokers International, Inc. 678.514.6200 x224 678.514.6299 fax -- Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference ___ Rkhunter-users mailing list Rkhunter-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/rkhunter-users
Re: [Rkhunter-users] Question re: os_specific check
On Sun, 2009-10-11 at 18:00 -0400, Tanstaafl wrote: On 10/11/2009 5:30 PM, John Horne wrote: I found a recommendation to disable the 'os_specific' check in DISABLED_TESTS in rkhunter.conf to fix this The config file provided by us makes no such recommendation. Sorry, I was not clear... the recommendation I found was while googling... Heh - and it was an email on this list, and you were the one doing the recommending... ;) I deny it all! :-) At that time the Linux os_specific test did just the one test, so disabling 'os_specific' was valid at that time. John. -- John Horne, University of Plymouth, UK Tel: +44 (0)1752 587287Fax: +44 (0)1752 587001 -- Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference ___ Rkhunter-users mailing list Rkhunter-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/rkhunter-users
