[Rkhunter-users] Problems with hashes after upgrading to 1.30

Wed, 08 Aug 2007 01:05:33 -0700 

I just upgraded to 1.30 on a couple of RHEL 4systems but I get a full 
list of no hashes found. So I downloaded the hashupd.sh script, ran it 
and then ran rkhunter -c again but still no difference. I even followed 
the instructions from the previous post about deleting the os version 
from os.dat and then re-running hashupd.sh.

[EMAIL PROTECTED]:/mnt/Downloads# ./hashupd.sh
[INFO] Found release: "Red Hat Enterprise Linux ES release 4 (Nahant 
Update 3)"
[INFO] "Red Hat Enterprise Linux ES release 4 (Nahant Update 3)" wasn't 
found in /usr/local/rkhunter/lib/rkhunter/db/os.dat.
[INFO] "Red Hat Enterprise Linux ES release 4 (Nahant Update 3)" has 
local number 723.
[INFO] Found md5sum at /usr/bin/md5sum
[INFO] Found sha1sum at /usr/bin/sha1sum
[INFO] Adding distribution/release "Red Hat Enterprise Linux ES release 
4 (Nahant Update 3)" to "/usr/local/rkhunter/lib/rkhunter/db/os.dat"
[INFO] Looking for 65 hashes.
[WARN] Found 54 of 65 hashes, 0 errors found.
[INFO] added new hashes.

But running rkhunter -c still shows many of these warnings below.

Any suggestions on getting 1.30 working properly?


[EMAIL PROTECTED]:/mnt/Downloads# rkhunter -c
[ Rootkit Hunter version 1.3.0 ]

Checking system commands...

  Performing 'strings' command checks
    Checking 'strings' command                               [ OK ]

  Performing 'shared libraries' checks
    Checking for preloading variables                        [ None found ]
    Checking for preload file                                [ Not found ]
    Checking LD_LIBRARY_PATH variable                        [ OK ]

  Performing file properties checks
    Checking for prerequisites                               [ OK ]
    /bin/awk                                                 [ Warning ]
    /bin/basename                                            [ Warning ]
    /bin/bash                                                [ Warning ]
    /bin/cat                                                 [ Warning ]
    /bin/chmod                                               [ Warning ]
    /bin/chown                                               [ Warning ]
    /bin/cp                                                  [ Warning ]
    /bin/csh                                                 [ Warning ]


-- 
*Johnny Stork*
Business & Technology Consultant
[EMAIL PROTECTED]


-------------------------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc.
Still grepping through log files to find problems?  Stop.
Now Search log events and configuration files using AJAX and a browser.
Download your FREE copy of Splunk now >>  http://get.splunk.com/
_______________________________________________
Rkhunter-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/rkhunter-users

Reply via email to