On Monday 10 July 2006 01:38, Colin J Thomson - G6AVK wrote:
> Hi Nigel,
>
> On Monday 10 July 2006 00:18, Nigel Henry wrote:
> > Thanks for that Colin. /etc/aliases exists in FC5. I can access the mail
> > ok, but as the file in /var/spool/mail/root was locked, Kmail sent back
> > an error until I changed permisions on the file, and which may well
> > revert to a locked file on the next reboot, based on past experiences.
> >
> > Well I've just rebooted FC5. The file in /var/spool/mail/root is still
> > unlocked, with "user" as my username rather than root. I know this is a
> > bit OT, but am not sure whether I should have changed permissions on the
> > file, but Kmail couldn't handle the locked file.
>
> Hmm... you should not have to do this, and probably not a good idea. Did
> you edit "/etc/aliases" to send Roots mail to your User account?
Yes, changing the default "marc" to my login username "djmons"
>
> Then in Kmail set the file path to "/var/spool/mail/your user" name. I
> assumed that "/var/spool/mail/your user" was there? if not run "mail" from
> a shell and it should create it.
With FC2, Kmail config > Network ("Accounts" in later FC, and KDE versions) >
Receiving tab. Selected Local mailbox, Named the account as Root account.
Location was already set as /var/spool/mail/djmons. Locking method was
defaulted as "Procmail lockfile", so changed it to FCNTL. What does that
stand for? . Ok'd the account page, applied, and OK'd the receiving page.
btw. With FC5 where I'd changed permissions on the locked file named root
in /var/spool/mail, Kmail had no problem in reading it, but it was only to do
with SSH. It verifies nevertheless that Kmail is able to read mail
from /var/spool/mail.
This is the first time I've used rkhunter, so am a bit in the dark, and there
ain't much documentation for it.
The FC2 install is from the 1.2.8 tarball. This has created the rkhunter
shellscript in /usr/local/bin, and a directory named rkhunter in /usr/local.
This directory has 3 subdirectories in it. bin, etc, and lib. Lib has further
subdirectories, and amongst other things contains the db files. Bin, and etc
are empty directories. The only other file I can find for rkh is
in /usr/local/etc, and is rkhunter.conf.
Couple of questions on this file.
1. Does the shellscript in /usr/local/bin/rkhunter refer to this config file
when it runs.
2. I do get some MD5 checks showing as bad, so mail should be sent. How do I
configure the bit of the file shown below?
# Send a warning message to the admin when one or more warnings
# are available (rootkit and MD5 check). Note: uses default `mail`
# commmand to send the warning message.
[EMAIL PROTECTED] (have uncommented this, but it still doesn't
work)
I'm not trying to be a total ignoramus here, but is "[EMAIL PROTECTED]"
interpreted
by rkhunter to automatically send warning messages to /var/spool/mail, or
should I be changing this, and if so, to what?
Any help appreciated. Nigel.
>
>
-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
Rkhunter-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/rkhunter-users
