** Changed in: chkrootkit (Ubuntu)
Importance: Undecided => Low
** Also affects: chkrootkit
Importance: Undecided
Status: New
** No longer affects: chkrootkit
** Bug watch added: Email to nelson@pangeia #
mailto:nel...@pangeia.com.br
** Also affects: chkrootkit via
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: chkrootkit (Ubuntu)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to chkrootkit in Ubuntu.
chkrootkit scan on Ubuntu 15.10 live DVD results infected by Ebury, then
in my opinion it is clear that this is not a real infection, but only a
false positive. Chkrootkit should be corrected as soon as possible.
--
You received this bug notification because you are a member of Ubuntu
Server
** Changed in: chkrootkit (Ubuntu)
Status: Incomplete => New
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to chkrootkit in Ubuntu.
https://bugs.launchpad.net/bugs/1508248
Title:
chkrootkit gives false positive ebury
To
there is not much have to do to produce this error other than install the
program and type : sudo chkrootkit
according to relevent websites i found this error occurs because ssh didn't use
implement -g so chkrootkits method of this rootkit is no longer valid. par the
following conversation on
please i am using the newest version of chkrootkit 0.50-3.1 not 0.49
exchange discusses and it is supposed to correct detect the rootkit
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to chkrootkit in Ubuntu.
Thank you for taking the time to report this bug and helping to make
Ubuntu better.
chkrootkit is in universe in Wily so will not receive much attention
now. But I don't really understand your bug report either - you have not
provided steps to reproduce the bug or detailed the difference between
I had the impression that chkrootkit hadn't been maintained for many
years the last time I looked at it; it may require significant work to
make it functional.
Thanks
** Information type changed from Private Security to Public
--
You received this bug notification because you are a member of