[SOLVED] rkhunter no long updating under MX Linux

galen · 09-16-2018, 06:06 AM

Anyone else getting this error

Code:

rkhunter --update
Invalid WEB_CMD configuration option: Relative pathname: "/bin/false"

PS: root terminal used

Habitual · 09-16-2018, 07:34 AM

Must be you, or MX...?

Code:

rkhunter --update
[ Rootkit Hunter version 1.4.6 ]

Checking rkhunter data files...
  Checking file mirrors.dat                                  [ No update ]
  Checking file programs_bad.dat                             [ No update ]
  Checking file backdoorports.dat                            [ No update ]
  Checking file suspscan.dat                                 [ No update ]
  Checking file i18n/cn                                      [ No update ]
  Checking file i18n/de                                      [ No update ]
  Checking file i18n/en                                      [ No update ]
  Checking file i18n/tr                                      [ No update ]
  Checking file i18n/tr.utf8                                 [ No update ]
  Checking file i18n/zh                                      [ No update ]
  Checking file i18n/zh.utf8                                 [ No update ]
  Checking file i18n/ja                                      [ No update ]

galen · 09-17-2018, 04:53 AM

updated to version
Rootkit Hunter 1.4.6
same problem

individual · 09-17-2018, 06:35 AM

Quote:

Originally Posted by galen

updated to version
Rootkit Hunter 1.4.6
same problem

It sounds like you might be using an old version of the configuration file. See this bug report.

galen · 09-17-2018, 01:25 PM

thank you.

I modified the rkhunter.conf
and set the mirrors to update.
works

UPDATE_MIRRORS=0 to UPDATE_MIRRORS=1
MIRRORS_MODE=1 to MIRRORS_MODE=0
WEB_CMD="/bin/false" to WEB_CMD=""

hydrurga · 09-17-2018, 04:56 PM

I'm glad you got it working, galen.

If you consider this thread "Solved", can you please mark it as such (see "Thread Tools" at the top of the thread). Thanks.

Habitual · 09-24-2018, 11:44 AM

Quote:

Originally Posted by galen

updated to version
Rootkit Hunter 1.4.6
same problem

Yeah. "repos" generally are a version ot two behind.
Good catch!

Quote:

Originally Posted by galen

UPDATE_MIRRORS=0 to UPDATE_MIRRORS=1
MIRRORS_MODE=1 to MIRRORS_MODE=0
WEB_CMD="/bin/false" to WEB_CMD=""

Good job. Could also rem it out? Doesn't seem to affect/effect my c-line (or cron job with same)

Code:

rkhunter --update

ROTATE_MIRRORS=1
UPDATE_MIRRORS=1
MIRRORS_MODE=0
I have no such entry for web_cmd in my /etc/rkhunter.conf.local

However:
Using the source of /usr/src/rkhunter/files/rkhunter.conf OTOH shows lots

Code:

#
# The following option can be set to a command which rkhunter will use when
# downloading files from the Internet - that is, when the '--update' or
# '--versioncheck' option is used. The command can take options.
#
# This allows the user to use a command other than the one automatically
# selected by rkhunter, but still one which it already knows about.
# For example:
#
#     WEB_CMD=curl
#
# Alternatively, the user may specify a completely new command. However, note
# that rkhunter expects the downloaded file to be written to stdout, and that
# everything written to stderr is ignored. For example:
#
#     WEB_CMD="/opt/bin/dlfile --timeout 5m -q"
#
# *BSD users may want to use the 'ftp' command, provided that it supports the
# HTTP protocol:
#
#     WEB_CMD="ftp -o -"
#
# This option has no default value.
#
#WEB_CMD=""

Nice work.

John out.