Share your knowledge at the LQ Wiki.
Go Back > Blogs > unSpawn
User Name


Rate this Entry

Rootkit Hunter 1.3.8 release

Posted 11-16-2010 at 07:48 PM by unSpawn

The Rootkit Hunter project team is pleased to announce the release of Rootkit Hunter 1.3.8.

The change log lists 24 bug fixes, 29 changes and 18 new items. Naming a few:

* Whitelist rootkit strings (RTKT_FILE_WHITELIST).
* Whitelist items not always present (EXISTWHITELIST).
* Whitelist combined pathname and port number (PORT_WHITELIST).
* Added Whirlpool and Ripemd160 hashes to file properties check.
* Support for DragonFly BSD.
* Support for Solaris OS package management.
* The 'suspicious files' check display each item individually.
* The '--enable' and '--disable' command-line options may now be specified more than once.
* Grsecurity-enabled systems may now run the network 'ports' test.
* Allow test names for the 'unhide' command (UNHIDE_TESTS).
* Rootkit checks added: OS X Togroot and Boonana (Koobface.A) trojan, Solaris Wanuk backdoor and worm and Inqtana worm.
* Better support for *BSD commands and OS X.

For more details please see the CHANGELOG.
Rootkit Hunter 1.3.8 obsoletes all previous releases: please upgrade.

Thanks to John Horne and all contributors who made this release possible by providing code, submitting ideas, bugs, fixes, documentation, helping out on the rkhunter-users mailing list and promoting Rootkit Hunter.
Posted in Uncategorized
Views 1863 Comments 0
« Prev     Main     Next »


All times are GMT -5. The time now is 03:46 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration