RKhunter log file - Is there any malicious issues?
I am presently having a server with CentOS 6.x installed with DA panel and also Rkhunter installed and running, today i got a mail with the following information from the server
-------- Warning: The command '/sbin/ifdown' has been replaced by a script: /sbin/ifdown: Bourne-Again shell script text executable Warning: The command '/sbin/ifup' has been replaced by a script: /sbin/ifup: Bourne-Again shell script text executable Warning: The command '/usr/bin/GET' has been replaced by a script: /usr/bin/GET: perl script text executable Warning: The command '/usr/bin/groups' has been replaced by a script: /usr/bin/groups: Bourne shell script text executable Warning: The command '/usr/bin/ldd' has been replaced by a script: /usr/bin/ldd: Bourne shell script text executable Warning: The command '/usr/bin/whatis' has been replaced by a script: /usr/bin/whatis: Bourne shell script text executable Warning: The SSH configuration option 'PermitRootLogin' has not been set. The default value may be 'yes', to allow root access. Warning: Hidden directory found: /dev/.udev Warning: Hidden file found: /usr/share/man/man1/..1.gz: gzip compressed data, from Unix, max compression Warning: Hidden file found: /usr/bin/.fipscheck.hmac: ASCII text Warning: Hidden file found: /usr/bin/.ssh.hmac: ASCII text Warning: Hidden file found: /usr/sbin/.sshd.hmac: ASCII text Warning: Application 'openssl', version '0.9.8e', is out of date, and possibly a security risk. Warning: Application 'sshd', version '4.3p2', is out of date, and possibly a security risk. ----------------------- is this a potential harm, what this indicates? How to rectify this ? Also I came to know that Chunter and rkhunter will only identify the malicious codes but will not remove it, how to remove it automatically, is there any tools available for that. I read through some forums that this softwares are totally outdate and is there any equivalent software for this ? |
I think so many binaries have been replaced !
|
Quote:
Quote:
Quote:
Quote:
Quote:
|
All times are GMT -5. The time now is 05:18 PM. |