The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

.rkhunter problem

Discussion in 'Security' started by polkocholo, May 7, 2011.

  1. polkocholo

    polkocholo Active Member

    Joined:
    Nov 22, 2010
    Messages:
    42
    Likes Received:
    0
    Trophy Points:
    6
    I have a problem in .rkhunter

    Invalid option specified: .versioncheck
    Invalid option specified: .update
    Invalid option specified: .cronjob


    pls help me
    regards,
     
  2. LinuxTechie

    LinuxTechie Well-Known Member

    Joined:
    Jan 22, 2011
    Messages:
    502
    Likes Received:
    2
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    Hello,

    May I know when are you getting these errors? Is it when you run rkhutner?
     
  3. polkocholo

    polkocholo Active Member

    Joined:
    Nov 22, 2010
    Messages:
    42
    Likes Received:
    0
    Trophy Points:
    6
    every 24h i receive this email:

    subject: .rkhunter
    Body: Invalid option specified: .versioncheck
    Invalid option specified: .update
    Invalid option specified: .cronjob
     
  4. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,623
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    What are the cron entries for rkhunter? If it is in /etc/cron.daily, please post the contents for the cron job.
     
  5. polkocholo

    polkocholo Active Member

    Joined:
    Nov 22, 2010
    Messages:
    42
    Likes Received:
    0
    Trophy Points:
    6
    /etc/cron.daily is empty
     
  6. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,623
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    So there are no files in /etc/cron.daily and yet rkhunter is sending a daily cron? Please do post the output of this command:

    Code:
    ls -lah /etc/cron.daily
    Otherwise, where is the cron you've setup for rkhunter. Since this is not a cPanel product, we need more details on what you are using to get that cron and the contents of the cron.

    Thank you.
     
  7. polkocholo

    polkocholo Active Member

    Joined:
    Nov 22, 2010
    Messages:
    42
    Likes Received:
    0
    Trophy Points:
    6
    Yes, /etc/cron.daily is empty

    PHP:
    # ls -lah /etc/cron.daily
    total 48K
    drwxr
    -xr-x  2 root root 4.0K May  5 11:47 ./
    drwxr-xr-x 75 root root  12K May 11 10:05 ../
    -
    rwxr-xr-x  1 root root  436 Feb  8 13:08 freshclam*
    -
    rwxr-xr-x  1 root root  219 Nov 14 15:07 logrotate*
    -
    rwxr-xr-x  1 root root  418 Jan  6  2007 makewhatis.cron*
    -
    rwxr-xr-x  1 root root  137 Sep  3  2009 mlocate.cron*
    -
    rwxr-xr-x  1 root root 2.2K Jun 21  2006 prelink*
    -
    rwxr-xr-x  1 root root  194 May  5 11:47 rkhunter.sh*
    -
    rwxr-xr-x  1 root root  296 Mar  6 07:10 rpm*
    -
    rwxr-xr-x  1 root root  354 Aug 11  2010 tmpwatch*

    Thank you.
     
  8. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,623
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    The output of the ls -lah command shows that /etc/cron.daily is not empty but has files, which includes this file:

    -rwxr-xr-x 1 root root 194 May 5 11:47 rkhunter.sh*

    Please post the output of that file:

    Code:
    cat /etc/cron.daily/rkhunter.sh
    Thank you.
     
  9. polkocholo

    polkocholo Active Member

    Joined:
    Nov 22, 2010
    Messages:
    42
    Likes Received:
    0
    Trophy Points:
    6
    Thank you dear

    PHP:
    # cat /etc/cron.daily/rkhunter.sh
    #!/bin/sh
    (
    /
    usr/local/bin/rkhunter .versioncheck
    /usr/local/bin/rkhunter .update
    /usr/local/bin/rkhunter .cronjob \
    .
    report-warnings-only
    ) | /bin/mail -.rkhunter outputmisug1366@gmail.com
     
  10. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,623
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    The commands are not right. The commands should not have . but -- in front of them:

    Code:
    # cat /etc/cron.daily/rkhunter.sh
    #!/bin/sh
    (
    /usr/local/bin/rkhunter --versioncheck
    /usr/local/bin/rkhunter --update
    /usr/local/bin/rkhunter --cronjob \
    --report-warnings-only
    ) | /bin/mail -s .rkhunter output. someuser@gmail.com
    I've hidden your email address on what I've posted. You'll need to re-add your email address if you copy and paste the cron contents into the file. I'd suggest removing your email address in your prior post so that it cannot be picked up by email harvesters for spamming purposes.
     
Loading...

Share This Page