Difference between revisions of "Rkhunter"

From CBLFS
Jump to navigationJump to search
(Version bump; new installation instructions)
Line 4: Line 4:
 
|http://downloads.sourceforge.net/rkhunter/rkhunter-{{Rkhunter-Version}}.tar.gz
 
|http://downloads.sourceforge.net/rkhunter/rkhunter-{{Rkhunter-Version}}.tar.gz
 
|-
 
|-
!Download Patch:
 
|http://svn.cross-lfs.org/svn/repos/patches/rkhunter/rkhunter-{{Rkhunter-Version}}-fhscomply-1.patch
 
|-
 
!Download Patch:
 
|http://svn.cross-lfs.org/svn/repos/patches/rkhunter/rkhunter-{{Rkhunter-Version}}-CLFSSupport-1.patch
 
 
|}
 
|}
  
 
----
 
----
  
{{Package-Introduction|rkhunter is a security monitoring and analyzing tool.|http://rkhunter.sourceforge.net/index.html}}
+
{{Package-Introduction|rkhunter is a security monitoring and analyzing tool.|http://www.rootkit.nl/}}
  
 
== Dependencies ==
 
== Dependencies ==
Line 27: Line 22:
  
 
== Non-Multilib or Multilib ==
 
== Non-Multilib or Multilib ==
 
{{Note|You must apply the fhscomply patch to use the installer script flags.}}
 
 
Apply the patch that allows user-defined installation paths and provides OS support for CLFS:
 
 
patch -Np1 -i ../rkhunter-1.2.9-fhscomply-1.patch &&
 
patch -Np1 -i ../rkhunter-1.2.9-CLFSSupport-1.patch
 
  
 
Run the install script as a privileged user to install rkhunter.
 
Run the install script as a privileged user to install rkhunter.
  
  ./installer.sh --installdir /usr --sysconfdir /etc
+
  ./installer.sh --layout /usr --install
  
 
== Configuring ==
 
== Configuring ==
  
Update the supported OS database and then add the CLFS-1.0.0 support for checking system tools.
+
Update the rkhunter databases.
  
  rkhunter --update &&
+
  rkhunter --update
echo "991:Cross Linux from Scratch 1.0.0 (x86_64):/usr/bin/md5sum:/bin:" >> /etc/rkhunter/db/os.dat &&
 
echo "992:Cross Linux from Scratch 1.0.0 (i386):/usr/bin/md5sum:/bin:" >> /etc/rkhunter/db/os.dat
 
  
 
Runtime options are defined in the rkhunter configuration file.  Edit this file to change the behavior of rkhunter.
 
Runtime options are defined in the rkhunter configuration file.  Edit this file to change the behavior of rkhunter.
Line 61: Line 47:
 
|-valign="top"
 
|-valign="top"
 
!Installed Directories:
 
!Installed Directories:
|/usr/lib/rkhunter, /etc/rkhunter
+
|/usr/lib/rkhunter, /var/lib/rkhunter
 
|-valign="top"
 
|-valign="top"
 
!Installed Programs:
 
!Installed Programs:

Revision as of 15:34, 23 May 2008

Download Source: http://downloads.sourceforge.net/rkhunter/rkhunter-1.3.2.tar.gz

Introduction to Rkhunter

rkhunter is a security monitoring and analyzing tool.

Project Homepage: http://www.rootkit.nl/

Dependencies

Required

Recommended

Optional

Non-Multilib or Multilib

Run the install script as a privileged user to install rkhunter. 

./installer.sh --layout /usr --install

Configuring

Update the rkhunter databases. 

rkhunter --update

Runtime options are defined in the rkhunter configuration file. Edit this file to change the behavior of rkhunter.

Add entries to your (f)crontab to periodically run rkhunter. 

# Run rkhunter update every Friday at 2:00 am.
& 00 02 * * fri /usr/bin/rkhunter --update
# Run rkhunter as a cronjob every Friday at 3:00 am.
& 00 03 * * fri /usr/bin/rkhunter --cronjob

Contents

Installed Directories: /usr/lib/rkhunter, /var/lib/rkhunter
Installed Programs: rkhunter

Short Descriptions

rkhunter is a script for security monitoring and analyses of your system.
Retrieved from "https://cblfs.clfs.org/index.php?title=Rkhunter&oldid=14246"