Bug#655055: rkhunter: a couple of (debian specific?) warnings

Karl Goetz karl at kgoetz.id.au
Sun Jan 8 05:56:21 UTC 2012 

Package: rkhunter
Version: 1.3.6-4
Severity: minor

Hi,
I've got a couple of comments after running rkhunter, hopefully you'll
agree they are bugs :)

* it warns that /sbin/chkconfig has been replaced by a script, but its
  shipped as a (perl) script in debian. Could this be included in
  SCRIPTWHITELIST please?
* With etckeeper becoming popular, could the config example include
  /etc/.etckeeper and /etc/.{git,bzr}ignore as comments in
  ALLOWHIDDENDIR and ALLOWHIDDENFILE?

thanks,
kk

-- System Information:
Debian Release: 6.0.3
  APT prefers stable
  APT policy: (990, 'stable')
Architecture: i386 (i686)

Kernel: Linux 2.6.32-5-686-bigmem (SMP w/2 CPU cores)
Locale: LANG=en_AU.utf8, LC_CTYPE=en_AU.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages rkhunter depends on:
ii  binutils               2.20.1-16         The GNU assembler, linker and bina
ii  debconf [debconf-2.0]  1.5.36.1          Debian configuration management sy
ii  exim4                  4.72-6+squeeze2   metapackage to ease Exim MTA (v4) 
ii  exim4-daemon-light [ma 4.72-6+squeeze2   lightweight Exim MTA (v4) daemon
ii  file                   5.04-5            Determines file type using "magic"
ii  net-tools              1.60-23           The NET-3 networking toolkit
ii  perl                   5.10.1-17squeeze2 Larry Wall's Practical Extraction 

Versions of packages rkhunter recommends:
ii  curl                   7.21.0-2          Get a file from an HTTP, HTTPS or 
ii  elinks                 0.12~pre5-2       advanced text-mode WWW browser
ii  iproute                20100519-3        networking and traffic control too
ii  lsof                   4.81.dfsg.1-1     List open files
ii  lynx                   2.8.8dev.5-1      Text-mode WWW Browser (transitiona
ii  perl [libdigest-sha-pe 5.10.1-17squeeze2 Larry Wall's Practical Extraction 
ii  unhide                 20100201-1        Forensic tool to find hidden proce
ii  wget                   1.12-2.1          retrieves files from the web

Versions of packages rkhunter suggests:
ii  bsd-mailx          8.1.2-0.20100314cvs-1 simple mail user agent
ii  tripwire           2.4.2-9               file and directory integrity check

-- debconf information:
  rkhunter/apt_autogen: false
  rkhunter/cron_db_update:
  rkhunter/cron_daily_run:

More information about the forensics-devel mailing list