Jump to letter: [
ABCDEFGHIJKLMNOPQRSTUVWXYZ
]
rkhunter: A host-based tool to scan for rootkits, backdoors and local exploits
- Summary
- Rootkit Hunter scans files and systems for known and unknown rootkits,
backdoors, and sniffers. The package contains one shell script, a few
text-based databases, and optional Perl modules. It should run on almost
every Unix clone. This tool scans for rootkits, backdoors and local
exploits by running tests like:
- MD5 hash compare
- Look for default files used by rootkits
- Wrong file permissions for binaries
- Look for suspected strings in LKM and KLD modules
- Look for hidden files
- Optional scan within plaintext and binary files
- Software version checks
- Application tests
Rootkit Hunter is released as a GPL licensed project and
is free for everyone to use.
Changelog
- * Tue Mar 7 16:00:00 2006 Greg Houlette <tamaster{%}pobox{*}com> - 1.2.8-1
- New package version release
- reworked the .spec file to support optional dist tag
- Updated the application check default patchfile (chunk failure)
- Changed to SHA1 for optional message digest (canary check)
- Added a couple of suggested skip entries to rkhunter.conf
- * Sat Jun 11 17:00:00 2005 Greg Houlette <tamaster{%}pobox{*}com> - 1.2.7-1
- Added signature auto-updating to CRON scan (new script)
- Removed BOOTSCAN pending rewrite to full SysV Init scan in background
- Added the --append-log command line option
- Added Date Stamping to output
- Fixed bug in /etc/group missing report
- New package version release
- * Sun Jan 2 16:00:00 2005 Greg Houlette <tamaster{%}tekarmory{*}com> - 0:1.1.9-1
- New package version release
- Added the --run-application-check command line option
to listing in command help
- Replaced 'Here' Doc editing of rkhunter.conf file
with in-place Perl edit
- tweaked rpmbuild -bb Autoclean