rkhunter-1.1.9-1.ps.noarch.rpm available
rkhunter-1.1.9-1.ps.noarch.rpm is available for download: http://wahoo.no-ip.org/~pat/rkhunter-1.1.9-1.ps.noarch.rpm Rootkit Hunter scans files and systems for known and unknown rootkits, backdoors, and sniffers. The package contains one shell script, a few text-based databases, and optional Perl modules. It should run on almost every Unix clone. This release contains support for RH-Sharpe's rootkit and the SHV5 rootkit, a special test for tripwire, metalog (syslog), and support for many new distributions. Many MD5 hashes have been added to the database, and some code/documentation cleanup has been performed. Description Rootkit scanner is scanning tool to ensure you for about 99.9%* you're clean of nasty tools. This tool scans for rootkits, backdoors and local exploits by running tests like: - MD5 hash compare - Look for default files used by rootkits - Wrong file permissions for binaries - Look for suspected strings in LKM and KLD modules - Look for hidden files - Optional scan within plaintext and binary files Rootkit Hunter is released as GPL licensed project and free for everyone to use. * No, not really 99.9%.. It's just another security layer * 1.1.9 (28/12/2004) New: - Added RH-Sharpe's rootkit (rootkit) - Added SHV5 rootkit (rootkit) - Added special test for tripwire - Added support for metalog (syslog daemon) - Added support for ALTLinux 2.2 and 2.4 - Added support for CentOS 3.3 - Added support for Gentoo 1.6 - Added support for FreeBSD 4.10 (alpha platform) - Added support for SuSE SLES8. Thanks to Mario Lenz - Added support for SuSE 9.2 (i586) - Added support for Fedora Core 3 - Added support for Red Hat Enterprise Linux ES/WS release 4 - Added hashes for Fedora Core 3. Thanks to Steph - Official port is now available for ALTLinux - Change text when an old software package has been found. This will happen with backporting operating systems (Red Hat, Fedora etc) Changes: - Improved logging for lsof test - Updated hashes for Fedora Core 1 - Updated hashes for Debian woody - Updated hashes for Red Hat Enterprise Linux ES/WS release 3 - Updated hashes for Slackware 9 - Updated hashes for Slackware 10 - Updated hashes for SuSE 9.1 - Updated wishlist/todo, updated readme and manpage. - Code cleanup (added more remarks, cleanup of old/buggy things).. - Improved logging Bugfixes: - Changed binary search path due typo. Thanks to Bertrand author: Michael Boelen <michael@rootkit.nl> http://www.rootkit.nl -- Patrick Shanahan Registered Linux User #207535 http://wahoo.no-ip.org @ http://counter.li.org HOG # US1244711 Photo Album: http://wahoo.no-ip.org/photos
On Tue, 28 Dec 2004 15:23:07 -0500 Patrick Shanahan <ptilopteri@gmail.com> wrote:
rkhunter-1.1.9-1.ps.noarch.rpm is available for download: http://wahoo.no-ip.org/~pat/rkhunter-1.1.9-1.ps.noarch.rpm
Thanks for the "head-up", Patrick. I'm using it, and will upgrade. Happy New Year to you all. Terence
* Terence McCarthy <tjmc@torhouse.eclipse.co.uk> [12-28-04 15:47]:
Thanks for the "head-up", Patrick.
yer welcome
I'm using it, and will upgrade.
Happy New Year to you all.
and to you and everyone.... been available for ~25 minutes and already four downloads... -- Patrick Shanahan Registered Linux User #207535 http://wahoo.no-ip.org @ http://counter.li.org HOG # US1244711 Photo Album: http://wahoo.no-ip.org/photos
On Tuesday, December 28, 2004 03:52 pm, Patrick Shanahan wrote:
been available for ~25 minutes and already four downloads...
Make that five... Thanks! Mark -- _______________________________________________________________ A Message From... L. Mark Stone Reliable Networks of Maine, LLC "We manage your network so you can manage your business." 477 Congress Street Portland, ME 04101 Tel: (207) 772-5678 Web: http://www.RNoME.com
Thank you Patrick for your constent update of rkhunter. I am using it for several months now and i really appreciate the packages you made. Thank you again Matthias __________________________________ Matthias Titeux, PhD INSERM U563 - CPTP Departement de Genetique fonctionnelle des maladies des epitheliums Batiment Lefebvre - 2eme etage CHU Purpan Avenue de Grande Bretagne 31059 Toulouse Cedex 03 FRANCE --------------- Tel: 33 (5) 62 74 45 03 _________________________________
rkhunter -1.2.0-1.noarch.rpm is available for download: http://wahoo.no-ip.org/~pat/rkhunter-1.2.0-1.noarch.rpm http://wahoo.no-ip.org/~pat/rkhunter-1.2.0-1.src.rpm http://wahoo.no-ip.org/~pat/rkhunter-1.2.0.tar.gz Project description: Rootkit Hunter scans files and systems for known and unknown rootkits, backdoors, and sniffers. The package contains one shell script, a few text-based databases, and optional Perl modules. It should run on almost every Unix clone. The changes in this release are as follows: This release adds support for CentOS 3.4, and updates hashes for Fedora, RHEL, and Debian. The manual and man page have been updated, and some small bugs have been fixed. Release focus: 4 - Minor feature enhancements Changelog Below is the changelog of Rootkit Hunter. It will contain changes of early released versions and the active development version. Current public version: 1.2.0 Current development version: 1.2.1 (not available yet) ----------------------------------------------- * 1.2.0 (10/02/2005) New: - Added support for CentOS 3.4 - Added new configuration option 'ALLOW_SSH_ROOT_USER' and program parameter '--allow-ssh-root-user' to allow directly login of a root user, in your SSH configuration file. Changes: - Updated hashes for Fedora Core 1, Core 2, Core 3 - Changed RHEL 3, so taroon 4 uses the hashes of taroon 3 - Updated Debian hashes - Removed ClamAV from application scan. It warns the user now when it runs an too old version. - Updated manpage - Changed detection for SuSE versions. SuSE Linux Enterprise Server didn't work, because of the capitals (instead of the usual name) - Warn if user uses /tmp as temporary directory (possible security issue) - Updated wishlist/todo and manpage. Bugfixes: - Fixed wrong message when group was added/deleted from /etc/groups author: Michael Boelen <michael@rootkit.nl> http://www.rootkit.nl -- Patrick Shanahan Registered Linux User #207535 http://wahoo.no-ip.org @ http://counter.li.org HOG # US1244711 Photo Album: http://wahoo.no-ip.org/photos
participants (4)
-
L. Mark Stone -
Matthias Titeux -
Patrick Shanahan -
Terence McCarthy