Hi,
I have an FC2 system which rkhunter reports some suspicious
files. In particular, during the MD5 hash scan, it reports
/bin/dmesg
/bin/kill
/bin/login
/bin/mount
/usr/bin/kill
as having unknown/incorrect hashes, and comments that this can
be caused by using an old database or new binaries. I ran it
again with --update, and it indeed pulled more database. However,
it still reports those five files. It also now reports more
packages as being old (it was complaining about 3, now about 4).
It also doesn't like the fact that root can log in, and that
SSHv1 is permitted to run.
Anyway, does anyone have more information about why rkhunter
might flag these programs?
Mike
--
p="p=%c%s%c;main(){printf(p,34,p,34);}";main(){printf(p,34,p,34);}
This message made from 100% recycled bits.
You have found the bank of Larn.
I can explain it for you, but I can't understand it for you.
I speak only for myself, and I am unanimous in that!
--
fedora-legacy-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-legacy-list
