SBDavid
Apr 9th, 2010
Apr 9th, 2010
Scanning for rootkits with rkhunter
Scanning for rootkits with rkhunter
The first thing we want to do after installation is to update the signatures and files rkhunter uses to detect anomalies:
sudo /usr/local/bin/rkhunter –update
Interactive mode
sudo /usr/local/bin/rkhunter -c
That command starts rkhunter in an interactive mode.
When it gets to the end of a particular scan, you need to press ‘enter’ to continue.
If you want to skip the interactive prompts, add the -sk option at the end:
sudo /usr/local/bin/rkhunter -c -sk
