{"id":509,"date":"2016-05-16T22:49:57","date_gmt":"2016-05-17T02:49:57","guid":{"rendered":"http:\/\/easy-admin.ca\/?p=509"},"modified":"2017-03-21T13:40:57","modified_gmt":"2017-03-21T17:40:57","slug":"rootkit-hunter","status":"publish","type":"post","link":"https:\/\/easy-admin.ca\/index.php\/2016\/05\/16\/rootkit-hunter\/","title":{"rendered":"Install rkhunter (Rootkit Hunter)"},"content":{"rendered":"

rkhunter<\/b> (Rootkit Hunter<\/b>) is a Unix-based tool that scans for rootkits<\/a>, backdoors<\/a> and possible local exploits<\/a>. It does this by comparing SHA-1 hashes of important files with known good<\/i> ones in online databases, searching for default directories (of rootkits), wrong permissions, hidden files, suspicious strings in kernel modules, and special tests for Linux and FreeBSD.<\/p>\n

Install RKHunter which is the Rootkit Detection tool<\/strong><\/p>\n

Install from EPEL<\/a><\/strong><\/div>\n

# yum – -enablerepo=epel -y install rkhunter<\/p>\n

#\u00a0nano \/etc\/sysconfig\/rkhunter<\/div>\n
\n
\n
Recipient address for report<\/strong><\/div>\n

MAILTO=root@localhost<\/p>\n

If specified “yes”, scan more detaily<\/strong><\/div>\n

DIAG_SCAN=no<\/p>\n<\/div>\n

\n
Update database<\/strong><\/div>\n

# rkhunter – -update<\/p>\n<\/div>\n

\n
Update system file properties<\/strong><\/div>\n

# rkhunter – -propupd<\/p>\n<\/div>\n

Execute checking<\/strong><\/div>\n
–sk means sikpping to push Enter key.
\nIf specified –rwo , display only warnings<\/strong><\/div>\n

# rkhunter – -check – -sk<\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"

rkhunter (Rootkit Hunter) is a Unix-based tool that scans for rootkits, backdoors and possible local exploits. It does this by comparing SHA-1 hashes of important files with known good ones in online databases, searching for default directories (of rootkits), wrong permissions, hidden files, suspicious strings in kernel modules, and special tests for Linux and FreeBSD. … Continue reading Install rkhunter (Rootkit Hunter)<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-509","post","type-post","status-publish","format-standard","hentry","category-general"],"_links":{"self":[{"href":"https:\/\/easy-admin.ca\/index.php\/wp-json\/wp\/v2\/posts\/509","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/easy-admin.ca\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/easy-admin.ca\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/easy-admin.ca\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/easy-admin.ca\/index.php\/wp-json\/wp\/v2\/comments?post=509"}],"version-history":[{"count":0,"href":"https:\/\/easy-admin.ca\/index.php\/wp-json\/wp\/v2\/posts\/509\/revisions"}],"wp:attachment":[{"href":"https:\/\/easy-admin.ca\/index.php\/wp-json\/wp\/v2\/media?parent=509"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/easy-admin.ca\/index.php\/wp-json\/wp\/v2\/categories?post=509"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/easy-admin.ca\/index.php\/wp-json\/wp\/v2\/tags?post=509"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}