Install Rootkit Hunter (1.3)
(2 votes, average: 2.50 out of 5)
Loading ...What is Rootkit Hunter ?
Rootkit scanner is scanning tool to ensure you for about 99.9%* you’re clean of nasty tools. This tool scans for rootkits, backdoors and local exploits by running tests like:
- MD5 hash compare
- Look for default files used by rootkits
- Wrong file permissions for binaries
- Look for suspected strings in LKM and KLD modules
- Look for hidden files
- Optional scan within plaintext and binary files
How to install?
- Login as root to your server
- Download the package and extract it
- Run the installer
- Run rkhunter
wget http://prdownloads.sourceforge.net/rkhunter/rkhunter-1.3.0.tar.gz
tar -xzf rkhunter*
cd rkhunter-*
./installer.sh –layout default –install
/usr/local/bin/rkhunter -c
Enjoy !
If you enjoyed this post, make sure you subscribe to my RSS feed!
- November 16th
What if your root kit scanner is a root kit?
You forgot to list updating the file property and checking for updates.
./installer.sh –layout default –install
Note there is a double “-” before layout and install.
The blog cut it
Mistake:
3 step:
./installer.sh –-layout default –-install
when I run show this message:
usr/local/bin/rkhunter: No such file or directory
Whats wrong?
Ordered valid parameters:
–help (-h) : Show this help.
–examples : Show layout examples.
–layout : Choose installation template (mandatory switch).
The templates are:
– default: (FHS compliant),
– /usr,
– /usr/local,
– oldschool: previous version file locations,
– custom: supply your own prefix,
– RPM: for building RPM’s. Requires $RPM_BUILD_ROOT.
–striproot : Strip path from custom layout (for package maintainers).
–install : Install according to chosen layout.
–show : Show chosen layout.
–remove : Uninstall according to chosen layout.
–version : Show the installer version.
this comand worked for me
./installer.sh –-layout default –-install
thanks