[arch-general] rkhunter found possible rootkit
Ralf Mardorf
silver.bullet at zoho.com
Tue Aug 20 08:12:41 UTC 2019
On Tue, 2019-08-20 at 08:33 +0200, Oliver Jaksch via arch-general wrote:
> Should I/we be worried?
Hi Oliver,
if something conceivably harmful is found you should take care. If you
wouldn't, then why are you using it at all? If proprietary software
would detect something you suspect to be a false positive, you would
attach it to a report you sent to the company, usually those companies
provide an internet channel to upload such files. The company then would
take a look at those files.
Nobody can tell from the warnings you get when running rkhunter, if it
is or isn't a false positive. Even if those files are known to be false
positives when not being infected, they still could be infected on your
machine.
Probably rkhunter provides support channels, too.
[rocketmouse at archlinux ~]$ pacman -Si rkhunter | grep URL
URL : http://rkhunter.sourceforge.net/
How about https://sourceforge.net/p/rkhunter/_list/tickets ?
Regards,
Ralf
More information about the arch-general
mailing list