I have similar problems with rkhunter's latest version and fedora. eg. wget shows a bad md5 sum on a fedora core 5 box, and the prelink / hashupd solution outlined in the FAQ will not fix it.
te Emanuele Maiarelli wrote: > possible rootkit? > > rpmverify -a don't report problems > i've run prelink -a but nothing change > > * System tools > Info: prelinked files found > Performing 'known good' check... > /bin/cat [ BAD ] > /bin/chmod [ BAD ] > /bin/chown [ BAD ] > /bin/date [ BAD ] > /bin/dmesg [ BAD ] > /bin/env [ BAD ] > /bin/grep [ BAD ] > /bin/kill [ BAD ] > /bin/login [ BAD ] > /bin/ls [ BAD ] > /bin/more [ BAD ] > /bin/mount [ BAD ] > /bin/netstat [ OK ] > /bin/ps [ BAD ] > /bin/su [ BAD ] > /sbin/chkconfig [ OK ] > /sbin/depmod [ OK ] > /sbin/ifconfig [ OK ] > /sbin/init [ OK ] > /sbin/insmod [ OK ] > /sbin/ip [ BAD ] > /sbin/lsmod [ OK ] > /sbin/modinfo [ OK ] > /sbin/modprobe [ OK ] > /sbin/rmmod [ OK ] > /sbin/runlevel [ OK ] > /sbin/sulogin [ OK ] > /sbin/sysctl [ BAD ] > /sbin/syslogd [ BAD ] > /usr/bin/chattr [ BAD ] > /usr/bin/du [ BAD ] > /usr/bin/file [ BAD ] > /usr/bin/find [ OK ] > /usr/bin/head [ BAD ] > /usr/bin/killall [ OK ] > /usr/bin/lsattr [ BAD ] > /usr/bin/md5sum [ BAD ] > /usr/bin/passwd [ OK ] > /usr/bin/pstree [ OK ] > /usr/bin/sha1sum [ BAD ] > /usr/bin/stat [ BAD ] > /usr/bin/strings [ BAD ] > /usr/bin/top [ BAD ] > /usr/bin/users [ BAD ] > /usr/bin/vmstat [ BAD ] > /usr/bin/w [ BAD ] > /usr/bin/watch [ BAD ] > /usr/bin/wc [ BAD ] > /usr/bin/wget [ BAD ] > /usr/bin/whereis [ BAD ] > /usr/bin/who [ BAD ] > /usr/bin/whoami [ BAD ] > -------------------------------------------------------------------------------- > .. > .. > > ---------------------------- Scan results ---------------------------- > > MD5 scan > Scanned files: 52 > Incorrect MD5 checksums: 36 > > File scan > Scanned files: 342 > Possible infected files: 0 > > Application scan > Vulnerable applications: 0 > > Scanning took 88 seconds > > > > ------------------------------------------------------------------------- > Using Tomcat but need to do more? Need to support web services, security? > Get stuff done quickly with pre-integrated technology to make your job easier. > Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo > http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 > _______________________________________________ > Rkhunter-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/rkhunter-users ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier. Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ Rkhunter-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/rkhunter-users
