LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Newbie (http://www.linuxquestions.org/questions/linux-newbie-8/)
-   -   rkhunter for centos (http://www.linuxquestions.org/questions/linux-newbie-8/rkhunter-for-centos-752324/)

qwertyjjj 09-03-2009 03:37 AM

rkhunter for centos
 
I get this in my rkhunter report everyday:

Determining OS... Unknown
Warning: This operating system is not fully supported!
All MD5 checks will be skipped!

Any ideas on how to add centos to rkhunter?

unSpawn 09-03-2009 03:56 AM

If you're not running version 1.3.4 of RKH then install the new version?

qwertyjjj 09-03-2009 03:59 AM

Quote:

Originally Posted by unSpawn (Post 3667936)
If you're not running version 1.3.4 of RKH then install the new version?

it's 1.2.9 but this
says it's the latest:

Quote:

[root@localhost ~]# yum update rkhunter
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
* rpmforge: apt.sw.be
* base: mirror.sov.uk.goscomb.net
* updates: mirror.sov.uk.goscomb.net
* addons: mirror.sov.uk.goscomb.net
* extras: mirror.sov.uk.goscomb.net
rpmforge | 1.1 kB 00:00
base | 1.1 kB 00:00
updates | 951 B 00:00
addons | 951 B 00:00
extras | 1.1 kB 00:00
Excluding Packages in global exclude list
Finished
Setting up Update Process
No Packages marked for Update
[root@localhost ~]#


ronlau9 09-03-2009 05:07 AM

Install the new version of rkhunter .
Updates are for the data

unSpawn 09-03-2009 05:13 AM

Quote:

Originally Posted by qwertyjjj (Post 3667942)
it's 1.2.9 but this says it's the latest:

Yeah, that may be true for your repo, but not in R/L. The 1.2 series is utterly deprecated. And 1.3.4 shouldn't be hard to RPM-ify since the tarball includes a .spec file.

qwertyjjj 09-03-2009 05:28 AM

Quote:

Originally Posted by unSpawn (Post 3668010)
Yeah, that may be true for your repo, but not in R/L. The 1.2 series is utterly deprecated. And 1.3.4 shouldn't be hard to RPM-ify since the tarball includes a .spec file.

any ideas on why it hasn't been added to CentOS?
Installing using RPM is such a painstaking process, don't really understand it yet :) unpacking then making some configure file, then making some directories and installing into that? Why not just have an autoinstall.

qwertyjjj 09-03-2009 05:36 AM

could it be in the centosplus repo?
http://wiki.centos.org/AdditionalRes...s%2FCentOSPlus

unSpawn 09-03-2009 06:14 AM

Quote:

Originally Posted by qwertyjjj (Post 3668020)
any ideas on why it hasn't been added to CentOS?

Check EPEL repo and you'll find rkhunter-1.4.3-5.el5 there or grab the rkhunter-1.3.4.tar.gz tarball and (as unprivileged user) run 'rpmbuild -tb rkhunter-1.3.4.tar.gz' after you configured your buildroot.


All times are GMT -5. The time now is 05:41 PM.