1. Advertising
    y u no do it?

    Advertising (learn more)

    Advertise virtually anything here, with CPM banner ads, CPM email ads and CPC contextual links. You can target relevant areas of the site and show ads based on geographical location of the user if you wish.

    Starts at just $1 per CPM or $0.10 per CPC.

Help setting up RKhunter 1.4.0

Discussion in 'Security' started by colin008, Feb 1, 2014.

  1. #1
    I have been getting a blank email from rkhunter 1.4.0 running on my server and on investigation i get this error about the directories not being accessible.
    I have searched the web but can not find an answer to fix the problem below. Any help would be appreciated...

    [root]# rkhunter --propupd
    Invalid SCRIPTDIR configuration option: Non-existent pathname: /usr/local/lib64/rkhunter/scripts
    [root]# rkhunter --check
    Invalid SCRIPTDIR configuration option: Non-existent pathname: /usr/local/lib64/rkhunter/scripts
    [root]# cd /usr/local/lib64/rkhunter/scripts
    [root]# ls -al
    total 24
    drwxr-xr-x 2 root root 4096 Jan 20 16:44 .
    drwxr-xr-x 3 root root 4096 Jan 20 16:44 ..
    -rwxr-x--- 1 root root 1894 Jan 20 16:44 check_modules.pl
    -rwxr-x--- 1 root root 689 Jan 20 16:44 filehashsha.pl
    -rwxr-x--- 1 root root 3227 Jan 20 16:44 readlink.sh
    -rwxr-x--- 1 root root 3091 Jan 20 16:44 stat.pl
     
    colin008, Feb 1, 2014 IP
  2. HalfDedi

    HalfDedi Greenhorn

    Messages:
    30
    Likes Received:
    1
    Best Answers:
    0
    Trophy Points:
    8
    #2
    try run
    rkhunter -C
    Code (markup):
    and see if it gives error message
     
    HalfDedi, Feb 3, 2014 IP
  3. colin008

    colin008 Active Member

    Messages:
    162
    Likes Received:
    2
    Best Answers:
    0
    Trophy Points:
    68
    #3
    WOW it looks like the installation has lots of problems.

    Any suggestions..
    
    [root]# rkhunter -C
    Invalid SCRIPTDIR configuration option: Non-existent pathname: /usr/local/lib64/rkhunter/scripts
    Installation directory does not exist: /usr/local
    Invalid APPEND_LOG configuration option: not a valid number: 0
    Invalid COPY_LOG_ON_ERROR configuration option: not a valid number: 0
    Invalid TMPDIR configuration option: Non-existent pathname: /var/lib/rkhunter/tmp
    Invalid DBDIR configuration option: Non-existent pathname: /var/lib/rkhunter/db
    /i18nnternationalisation directory does not exist: /var/lib/rkhunter/db
    Invalid AUTO_X_DETECT configuration option: not a valid number: 1
    : integer expression expected 2719: [: 1
    Invalid COLOR_SET2 configuration option: not a valid number: 0
    Invalid WHITELISTED_IS_WHITE configuration option: not a valid number: 0
    Invalid USE_LOCKING configuration option: not a valid number: 0
    Unknown enabled test name given: all"
    Unknown disabled test name in the configuration file: packet_cap_apps"
    Invalid ALLOW_SSH_PROT_V1 configuration option: not a valid number: 0
    Invalid ALLOW_SYSLOG_REMOTE_LOGGING configuration option: not a valid number: 0
    Invalid ROOTKIT_PHALANX2_DIRTESTVAL configuration option: not a valid number: 0
    Invalid IMMUTABLE_SET configuration option: not a valid number: 0
    Invalid ROTATE_MIRRORS configuration option: not a valid number: 1
    Invalid MIRRORS_MODE configuration option: not a valid number: 0
    Unknown configuration file option: #
    Unknown configuration file option:
    Unknown configuration file option:
    
    Code (markup):
     
    colin008, Feb 3, 2014 IP
  4. HalfDedi

    HalfDedi Greenhorn

    Messages:
    30
    Likes Received:
    1
    Best Answers:
    0
    Trophy Points:
    8
    #4
    i think it didn't installed correctly, try download it again and reinstall it. make sure you use root user when installing it.

    i did install rkhunter following its README document:

    STANDALONE INSTALLATION
    =======================
    
    It is possible to run RKH standalone, that is, with it all being
    installed into one directory.
    
    To do this unpack RKH as described above, and then install it using
    the following command:
    
        ./installer.sh --layout custom . --install
    
    It is then necessary to change to the 'files' directory:
    
        cd files
    
    Within the directory will be a copy of the 'rkhunter.conf' configuration
    file. You can modify this file according to your requirements if you
    wish.
    
    To run RKH, as root simply enter the following command:
    
        ./rkhunter --propupd --check --sk
    Code (markup):
     
    HalfDedi, Feb 4, 2014 IP
  5. colin008

    colin008 Active Member

    Messages:
    162
    Likes Received:
    2
    Best Answers:
    0
    Trophy Points:
    68
    #5
    Thanks for the advice, i did reinstall it and when running the check it all seamed ok. I am 98% sure the cron will work and send me the details during the night. Regards.
     
    colin008, Feb 5, 2014 IP