The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Rootcheck 0.4 ¿?

Discussion in 'General Discussion' started by sh4ka, Oct 8, 2005.

  1. sh4ka

    sh4ka Well-Known Member

    Joined:
    May 12, 2005
    Messages:
    442
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    US
    cPanel Access Level:
    DataCenter Provider
    Rootcheck 0.4 http://ossec.underlinux.com.br/rootcheck/...
    Is this recommended for cpanel boxes ? Have anyone tried it ? I need some suggestions about this before I decide to install this or not on my production servers..
     
    #1 sh4ka, Oct 8, 2005
    Last edited: Oct 8, 2005
  2. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    Considering the very limited and narrow OS's tested for that app, I would suggest that you use the more established and respected rkhunter and chkrootkit instead.
     
  3. b0072k1

    b0072k1 Well-Known Member

    Joined:
    Dec 30, 2004
    Messages:
    133
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Glasgow
    hey how would a go about installin these?
     
  4. Gareth

    Gareth Well-Known Member

    Joined:
    Feb 11, 2004
    Messages:
    71
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    Isle of Anglesey, UK
  5. sh4ka

    sh4ka Well-Known Member

    Joined:
    May 12, 2005
    Messages:
    442
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    US
    cPanel Access Level:
    DataCenter Provider
    I already have rootkithunter & chkrootkit installed.. but since last system update rootkithunter is showing lot of false-positives ( [BAD] ) at MD5 checksums, I already tried updating the app DB and the errors continue and continue.. so I need another tool to trust in.

    Any other suggestions besides rootkithunter and chkrootkit ?
     
  6. dezignguy

    dezignguy Well-Known Member

    Joined:
    Sep 26, 2004
    Messages:
    534
    Likes Received:
    0
    Trophy Points:
    16
    I've used Rootcheck in conjunction with the other scanners for some time now... Since around Dec 2003. I'm running Redhat Enterprise 3 with Cpanel.

    It's fine... no problems. (It's just scanning, so there's not really much there to break the OS or cpanel). Occaisionally I'll get a large (~1 MB) email sent to me with the long long list of all the files that are world writeable, and setguid enabled etc. It's probably my settings though. Usually, it's just a fairly short email with the checks it does, just like rootkit hunter and chkrootkit.
     
  7. sh4ka

    sh4ka Well-Known Member

    Joined:
    May 12, 2005
    Messages:
    442
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    US
    cPanel Access Level:
    DataCenter Provider
    thanks, i installed it on a server to test it and looks good for my taste.... :)
     
  8. b0072k1

    b0072k1 Well-Known Member

    Joined:
    Dec 30, 2004
    Messages:
    133
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Glasgow
    hey thanks for teh info lads
     

Share This Page