Security Dashboard
Rootkit Hunter V1.3.0 in the wild
Friday 28 September 2007
Rootkit scanner is scanning tool to ensure you for about 99.9%* you’re clean of nasty tools. This tool scans for rootkits, backdoors and local exploits by running tests like:The changelog for this release is packed listing over 30 new features, 47 changes and 16 bugfixes. To name a few:
New command-line option ’—propupd’ replaces ’hashupd.sh’.
New command-line option ’—pkgmgr’ supporting RPM, Dpkg and BSD-style package managers.
New command-line option ’—hash’ to select the hash function command for the file hash value check and the properties update.
Added support for Ubuntu, and the ’dash’ and ’ash’ shells.
Added basic internationalization (i18n) functionality.
Added two new command-line and configuration file options, ’—enable’ and ’—disable’
to specify which tests are to be carried out and which are to be ignored.
Added support for Solaris 10 inetd mechanism (inetadm).
Application version numbers can now be whitelisted. This caters for those distributions
that may patch a ’known bad’ version, but without updating the original version number.
Fixes since rkhunter-1.3.0-beta 2
POSTSCRIPTUM
RELATED ARTICLES
Enumeration, Local auditing, Rootkit Hunter, 28 September 2007 : Rootkit Hunter V1.3.0 in the wild8 January 2007 : Rootkit Hunter v1.2.9 released
