Maldet is Saving Signatures to Root?

maldetquest · Jul 10, 2017

As of last week, maldet has started saving its update files in the root directory instead of /usr/local/maldetect/ . This is not only giving us false positives but I'm also worried that maldet is still using the old signatures since the new ones are in the wrong spot. Is there a way to configure where these files are saved? Or is the another solution to this issue?

(The following files are the files that are saving to root instead of maldet folder)
/sigs/rfxn.hdb
/sigs/hex.dat
/sigs/rfxn.ndb
/sigs/md5.dat
/sigs/md5v2.dat
/sigs/rfxn.yara
/clean/gzbase64.inject.unclassed
/maldet-clean.tgz
/maldet-sigpack.tgz

cPanelMichael · Jul 10, 2017

Hello,

Maldet is a third-party application. I recommend submitting issues with the software to their Development team. It looks like an issue is already opened for this topic at their GitHub page:

New Signatures are Saving to Root Directory · Issue #242 · rfxn/linux-malware-detect · GitHub

Thank you.

Forums

The Community Forums

Interact with an entire community of cPanel & WHM users!

Maldet is Saving Signatures to Root?

maldetquest Registered

cPanelMichael Technical Support Community Manager
Staff Member

Automating Maldet scan question

Anacron job 'cron.daily' Maldet

Maldet Configuration Questions

maldet - inotify-tools

IP Migration Wizard error prevented saving http.conf

Share This Page

Useful Searches

The Community Forums

Interact with an entire community of cPanel & WHM users!

Maldet is Saving Signatures to Root?

maldetquest Registered

cPanelMichael Technical Support Community Manager Staff Member

Automating Maldet scan question

Anacron job 'cron.daily' Maldet

Maldet Configuration Questions

maldet - inotify-tools

IP Migration Wizard error prevented saving http.conf

Share This Page

cPanelMichael Technical Support Community Manager
Staff Member