Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

rkhunter-1.4.0-2.1.1 RPM for x86_64

From OpenSuSE 12.2 for x86_64

Name: rkhunter Distribution: openSUSE 12.2
Version: 1.4.0 Vendor: openSUSE
Release: 2.1.1 Build date: Sat Jun 23 21:41:30 2012
Group: System/Monitoring Build host: build17
Size: 878170 Source RPM: rkhunter-1.4.0-2.1.1.src.rpm
Packager: http://bugs.opensuse.org
Url: http://rkhunter.sourceforge.net/
Summary: Rootkit Hunter Scans for Rootkits, Backdoors, and Local Exploits
 
Rootkit Hunter scans files and systems for known and unknown rootkits,
backdoors, and sniffers.  The package contains one shell script, a few
text-based databases, and optional Perl modules. This tool scans for
rootkits, backdoors, and local exploits by running tests like:

* Comparing MD5 hashes

* Looking for default files used by rootkits

* Checking for wrong file permissions for binaries

* Looking for suspected strings in LKM and KLD modules

* Looking for hidden files

* Optionally scanning within plain text and binary files

* Checking software versions

* Testing applications

Provides

Requires

License

GPL-2.0+

Changelog

* Sun May 13 2012 Sascha.Manns@open-slx.de
  - updated to 1.4.0
    * 1.4.0 (01/05/2012)
    New:
    - Added the '--list propfiles' command-line option. This will dump
    out the list of filenames that will be searched for when building the
    fileproperties database. By default the list is not shown if just
    '--list' is used.
    - Added Jynx rootkit check.
    - Added Turtle/Turtle2 rootkit check.
    - Added KBeast rootkit check.
    - The installer now supports the Slackware TXZ package layout option.
    Changes:
    - Avoid checking exclamation points in ALLOWDEVFILE checks (this was
    caught on 01/05/2012 causing a reissue of the 1.4.0 release).
    - Allow the ALLOWDEVFILE, ALLOWHIDDENFILE and ALLOWHIDDENDIR options
    to
    use '%' as the space character. (Note: This is a temporary fix).
    - The ALLOWPROCDELFILE option can now use wildcards in the file
    names.
    - The '--list perl' command-line option now shows whether the perl
    command itself is installed or not.
    - The 'shared_libs' test now allows whitelisting of the preloading
    environment variables.
    - The '-r/--rootdir' command-line options, and the ROOTDIR
    configuration option are now deprecated. If they are used then an
    error message will be displayed. The options will have no effect,
    but rkhunter will continue. The options will be completely removed
    at the next release.
    - The 'hidden_ports' test will now show if a found port is TCP or
    UDP.
    - It is now possible to whitelist ports in the 'hidden_ports' test
    using the PORT_WHITELIST configuration option.
    Bugfixes:
    - Allow the ALLOWPROCDELFILE option to work again.
    - Correct the check of the ProFTPD version number.
    - Fix the FreeBSD 'sockstat' command check to ensure that the correct
    fields are used.
    - Fix for newer version of the 'file' command when reporting scripts.
    - Fix the ALLOWHIDDENFILE option to allow hidden symbolic links.
    - The 'filesystem' check now handles files and directories with
    spaces
    in their names correctly.
    - The 'startup_files' test was displaying file names with spaces in
    them incorrectly. Also the test was not checking files which were
    in hidden directories.
    - Ensure that the ALLOWDEVFILE, ALLOWHIDDENFILE and ALLOWHIDDENDIR
    options re-evaluate their whitelisting lists to ensure that any
    wildcard entries are the most recent. (A time window previously
    existed which meant that the list was processed, but new files
    could be created before the test was run. As such they were
    reported as false-positive warnings, when they should have been
    whitelisted.)
    - Allow the EXISTWHITELIST option to work with symbolic links.
    - The test of whether prelinking is being used or not was sometimes
    causing the file properties hash test to be skipped, without the
    real reason being stated. Now the hash test will proceed but the
    user will still get a warning (because it detects that prelinking
    was used and is not now, or vice-versa).
    - Rkhunter will now check to see if the 'head' and 'tail' commands
    understand the '-n' option. If they do, then it will be used. If
    they do not, then the older 'head -1' and 'tail -1' commands will be
    used.
* Thu Sep 22 2011 Sascha.Manns@open-slx.de
  - fixed bnc#717773 rkhunter sends email without To-Header
  - added 'echo "To: $REPORT_EMAIL" into rkhunter.cron
* Thu Aug 04 2011 Sascha.Manns@open-slx.de
  - fixed License to GPLv2 or later
    has misunderstood a message
* Tue May 24 2011 saigkill@opensuse.org
  - fixed bnc#695317 based on Volker Kuhlmann THX
* Wed Nov 17 2010 saigkill@opensuse.org
  - Updated to version 1.3.8
* Mon Nov 30 2009 saigkill@opensuse.org
  - updated to Version 1.3.6
* Mon Nov 30 2009 saigkill@opensuse.org
  - cleanup :
* Sat Jan 10 2009 saigkill@opensuse.org - 1.3.4
  - branched for OpenSUSE:Factory:contrib
  - changed License to GPLv3
  - changed Sourcecode from *.tar.gz to tar.bz2
* Tue Dec 30 2008 lrupp@suse.de - 1.3.4
  - update to 1.3.4
    + The change log lists 4 additions, 8 changes and 9 bugfixes. Here are a few:
    + Added IntoXonia-NG rootkit check.
    + Added Phalanx2 rootkit check.
    + Added support for TCB shadow files.
    + The '--propupd' option can now take an optional file,
      directory or package name after it.
    + Revised file properties inode check.
    + Improved the O/S name detection.
    + Improved hidden files and directories check.
    + Improved debug file option.
* Fri Nov 14 2008 lrupp@suse.de - 1.3.2
  - added rkhunter-1.3.2-CVE-2008-4982.patch

Files

/etc/cron.daily/suse.de-rkhunter
/etc/logrotate.d/rkhunter
/etc/rkhunter.conf
/usr/bin/rkhunter
/usr/lib64/rkhunter
/usr/lib64/rkhunter/scripts
/usr/lib64/rkhunter/scripts/check_modules.pl
/usr/lib64/rkhunter/scripts/filehashsha.pl
/usr/lib64/rkhunter/scripts/readlink.sh
/usr/lib64/rkhunter/scripts/stat.pl
/usr/share/doc/packages/rkhunter-1.4.0
/usr/share/doc/packages/rkhunter-1.4.0/ACKNOWLEDGMENTS
/usr/share/doc/packages/rkhunter-1.4.0/CHANGELOG
/usr/share/doc/packages/rkhunter-1.4.0/FAQ
/usr/share/doc/packages/rkhunter-1.4.0/LICENSE
/usr/share/doc/packages/rkhunter-1.4.0/README
/usr/share/doc/packages/rkhunter-1.4.0/README.SuSE
/usr/share/man/man8/rkhunter.8.gz
/var/adm/fillup-templates/sysconfig.rkhunter
/var/lib/rkhunter
/var/lib/rkhunter/db
/var/lib/rkhunter/db/backdoorports.dat
/var/lib/rkhunter/db/i18n
/var/lib/rkhunter/db/i18n/cn
/var/lib/rkhunter/db/i18n/de
/var/lib/rkhunter/db/i18n/en
/var/lib/rkhunter/db/i18n/zh
/var/lib/rkhunter/db/i18n/zh.utf8
/var/lib/rkhunter/db/mirrors.dat
/var/lib/rkhunter/db/programs_bad.dat
/var/lib/rkhunter/db/suspscan.dat
/var/lib/rkhunter/tmp
/var/log/rkhunter.log

Generated by rpm2html 1.8.1

Fabrice Bellet, Mon May 20 12:22:00 2013