Hi all
rkhunter produced the following /var/log/rkhunter.log
log file sections and I could use your informed interpretation
1. First 2 sections: What are these 2 file warnings about ?
2. Third section: 'possible rkt string' - What is it ?
3. Fourth section: I did not request rkhunter to have any testing disabled !!!
Where should i start ?
Arye
[11:22:09] /usr/sbin/unhide [ Warning ]
[11:22:10] Warning: The file '/usr/sbin/unhide' exists on the system, but it is not present in the rkhunter.dat file.
......
.........
[11:22:18] /usr/sbin/unhide-linux26 [ Warning ]
[11:22:19] Warning: The file '/usr/sbin/unhide-linux26' exists on the system, but it is not present in the rkhunter.dat file.
........
............
Performing check for possible rootkit strings
[11:29:23] Info: Starting test name 'possible_rkt_strings'
[11:29:23] Info: Found local startup file: /etc/rc.local
............
..............
Performing malware checks
[11:29:49] Info: Starting test name 'malware'
[11:29:49]
[11:29:49] Info: Test 'deleted_files' disabled at users request.
[11:29:50] Info: Starting test name 'running_procs'
[11:29:52] Checking running processes for suspicious files [ None found ]
[11:29:53]
[11:29:53] Info: Test 'hidden_procs' disabled at users request.
[11:29:53]
[11:29:53] Info: Test 'suspscan' disabled at users request.
