Sehr geehrte Damen und Herren,
wenn ich im Terminal den Befehl „sudo chkrootkit“ eingebe und mit returne bestätige, wird nach dem Passwort gefragt. Leider schreibt Ubuntu kein Passwort. Im Software-Center finde ich das „Paket chkrootkit“ zum Installieren auch nicht. Wie komme ich hier weiter, um den Rootkit-Test zu machen wie in Ausgabe 8/14 emfohlen?
Vielen Dank für Ihre Rückantwort.
Mit freundlichen Grüßen
OttokarBrill
Hallo Herr Kleemann, folgende Liste erscheint nach Eingabe der Befehle; Sie können das einschätzen:ottokar@ottokar-HP-Compaq-6000-Pro-MT-PC:~$ sudo rkhunter –update
[sudo] password for ottokar:
[ Rootkit Hunter version 1.4.0 ]
Checking rkhunter data files…
Checking file mirrors.dat [ No update ]
Checking file programs_bad.dat [ No update ]
Checking file backdoorports.dat [ No update ]
Checking file suspscan.dat [ No update ]
Checking file i18n/cn [ No update ]
Checking file i18n/de [ No update ]
Checking file i18n/en [ No update ]
Checking file i18n/tr [ No update ]
Checking file i18n/tr.utf8 [ No update ]
Checking file i18n/zh [ No update ]
Checking file i18n/zh.utf8 [ No update ]
ottokar@ottokar-HP-Compaq-6000-Pro-MT-PC:~$ sudo rkhunter
Usage: rkhunter {–check | –unlock | –update | –versioncheck |
–propupd [{filename | directory | package name},…] |
–list [{tests | {lang | languages} | rootkits | perl | propfiles}] |
–config-check | –version | –help} [options]
Current options are:
–append-log Append to the logfile, do not overwrite
–bindir
-c, –check Check the local system
-C, –config-check Check the configuration file(s), then exit
–cs2, –color-set2 Use the second color set for output
–configfile
–cronjob Run as a cron job
(implies -c, –sk and –nocolors options)
–dbdir
–debug Debug mode
(Do not use unless asked to do so)
–disable
(Default is to disable no tests)
–display-logfile Display the logfile at the end
–enable
(Default is to enable all tests)
–hash {MD5 | SHA1 | SHA224 | SHA256 | SHA384 | SHA512 |
NONE |
(Default is SHA1, then MD5)
-h, –help Display this help menu, then exit
–lang, –language
(Default is English)
–list [tests | languages | List the available test names, languages,
rootkits | perl | rootkit names, perl module status
propfiles] or file properties database, then exit
-l, –logfile [file] Write to a logfile
(Default is /var/log/rkhunter.log)
–noappend-log Do not append to the logfile, overwrite it
–nocf Do not use the configuration file entries
for disabled tests (only valid with –disable)
–nocolors Use black and white output
–nolog Do not write to a logfile
–nomow, –no-mail-on-warning Do not send a message if warnings occur
–ns, –nosummary Do not show the summary of check results
–novl, –no-verbose-logging No verbose logging
–pkgmgr {RPM | DPKG | BSD | Use the specified package manager to obtain or
SOLARIS | NONE} verify file property values. (Default is NONE)
–propupd [file | directory | Update the entire file properties database,
package]… or just for the specified entries
-q, –quiet Quiet mode (no output at all)
–rwo, –report-warnings-only Show only warning messages
–sk, –skip-keypress Don´t wait for a keypress after each test
–summary Show the summary of system check results
(This is the default)
–syslog [facility.priority] Log the check start and finish times to syslog
(Default level is authpriv.notice)
–tmpdir
–unlock Unlock (remove) the lock file
–update Check for updates to database files
–vl, –verbose-logging Use verbose logging (on by default)
-V, –version Display the version number, then exit
–versioncheck Check for latest version of program
-x, –autox Automatically detect if X is in use
-X, –no-autox Do not automatically detect if X is in use
ottokar@ottokar-HP-Compaq-6000-Pro-MT-PC:~$
Ich hoffe, ich habe es nicht übertrieben. Das (no update) erscheint grün, alles andere ist weiß.
Mit freundlichen Grüßen
Ottokar Brill