[arch-general] rkhunter found possible rootkit

Ralf Mardorf silver.bullet at zoho.com
Tue Aug 20 08:12:41 UTC 2019

On Tue, 2019-08-20 at 08:33 +0200, Oliver Jaksch via arch-general wrote:
> Should I/we be worried?

Hi Oliver,

if something conceivably harmful is found you should take care. If you
wouldn't, then why are you using it at all? If proprietary software
would detect something you suspect to be a false positive, you would
attach it to a report you sent to the company, usually those companies
provide an internet channel to upload such files. The company then would
take a look at those files.

Nobody can tell from the warnings you get when running rkhunter, if it
is or isn't a false positive. Even if those files are known to be false
positives when not being infected, they still could be infected on your

Probably rkhunter provides support channels, too.

[rocketmouse at archlinux ~]$ pacman -Si rkhunter | grep URL
URL             : http://rkhunter.sourceforge.net/

How about https://sourceforge.net/p/rkhunter/_list/tickets ?


More information about the arch-general mailing list