Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
| Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
 |
GNU/Linux Basic Guide
This 255-page guide will provide you with the keys to understand the philosophy of free software, teach you how to use and handle it, and give you the tools required to move easily in the world of GNU/Linux. Many users and administrators will be taking their first steps with this GNU/Linux Basic guide and it will show you how to approach and solve the problems you encounter.
Click Here to receive this Complete Guide absolutely free. |
|
 |
11-23-2008, 05:24 PM
|
#1
|
|
LQ Newbie
Registered: Nov 2008
Posts: 9
Rep: 
|
RKHunter Output Question
Quote:
[23:14:17] Checking kernel module commands [ Warning ]
[23:14:17] Warning: No output found from the lsmod command or the /proc/modules file:
[23:14:17] /proc/modules output:
[23:14:18] lsmod output:
|
Is there anyway to fix/bypass this check?
Sysinfo:
Quote:
Kernel Version 2.6.16.29-11774_1 (SMP)
Distro Name Ubuntu 8.04.1
Uptime 55 days 21 hours 12 minutes
Current Users 1
Load Averages 0.01 0.15 0.11 0%
RAM: 256.16 MB
Disk: 18.98 GB
|
[This is a VPS machine] |
|
|
|
|
11-23-2008, 10:37 PM
|
#2
|
|
Senior Member
Registered: Jan 2005
Location: Nottingham, UK
Distribution: Mageia 2 / CrunchBang Linux 10 Statler / Easy Peasy
Posts: 4,287
|
Check the options available with |
|
|
|
|
11-24-2008, 05:30 PM
|
#3
|
|
Moderator
Registered: May 2001
Posts: 24,779
|
Quote:
Originally Posted by cedricd
Is there anyway to fix/bypass this check?
|
RKH allows you to disable some tests from the CLI using --disable or in rkhunter.conf with DISABLE_TESTS. The one you're looking for is called "loaded_modules". |
|
|
|
|
11-25-2008, 12:43 AM
|
#4
|
|
LQ Newbie
Registered: Nov 2008
Posts: 9
Original Poster
Rep:
|
Quote:
Originally Posted by unSpawn
RKH allows you to disable some tests from the CLI using --disable or in rkhunter.conf with DISABLE_TESTS. The one you're looking for is called "loaded_modules".
|
Unknown disable test name given: loaded_modules
Had a look over the main list, didn't see anything, or may just have missed it.
Quote:
Available test names:
additional_rkts all apps attributes deleted_files filesystem
group_accounts group_changes hashes hidden_procs immutable known_rkts
local_host malware network none os_specific other_malware
packet_cap_apps passwd_changes ports possible_rkt_files possible_rkt_strings possible_rkts
promisc properties rootkits running_procs scripts shared_libs
shared_libs_path startup_files startup_malware strings suspscan system_commands
system_configs trojans
|
Last edited by cedricd; 11-25-2008 at 12:46 AM.
|
|
|
|
|
11-25-2008, 12:09 PM
|
#5
|
|
Moderator
Registered: May 2001
Posts: 24,779
|
Heh, that's sposed to be the "os_specific" checks, sorry.
|
|
|
|
| Thread Tools |
Search this Thread |
|
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
All times are GMT -5. The time now is 01:01 PM.
|
|
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
|
 Latest Threads
LQ News
|
|
