How to use and Install RkHunter (Rootkit) RkHunter

Ideal place for discussions related to Linux/Windows server security, Apache, MySQL, MS SQL and PHP, including tutorials and questions.
hrdedicated
Site Admin
Posts: 50
Joined: Thu May 30, 2013 10:28 pm

How to use and Install RkHunter (Rootkit) RkHunter

Postby hrdedicated » Sat Jun 01, 2013 12:03 pm

Install RkHunter (Rootkit)

Introduction:

RKHunter - (RootKit Hunter) Is a security scanning tool which will scan for rootkits, backdoors, and local exploits.

Installation:

1. Login to your server via SSH as root.

Then Type: cd /usr/local/src/

2. Download latest rkhuner version

Type: wget http://sourceforge.n...se_mirror=space

3. Extract files

Type: tar -xzvf rkhunter-1.3.8.tar.gz

4. Type: cd rkhunter-1.3.8

5. Type: ./installer.sh --layout /usr/local --install

6. Lets setup RKHunter to e-mail you you daily scan reports.

Type: pico -w /etc/cron.daily/rkhunter.sh

Add The Following:

#!/bin/bash
/usr/local/bin/rkhunter -c --cronjob 2>&1 | mail -s "RKhunter Scan Details" replace-this@with-your-email.com

Replace the e-mail above with your e-mail!!

Updating rkhunter

gets the latest database updates from their central server and matches your OS better to prevent false positives.

rkhunter --update

Return to “System Security”

Who is online

Users browsing this forum: No registered users and 2 guests