Date: Tue, 04 Jan 2011 10:52:13 -0800 From: Chuck Swiger <cswiger@mac.com> To: Torfinn Ingolfsen <tingox@gmail.com> Cc: FreeBSD Ports ML <freebsd-ports@freebsd.org> Subject: Re: security/rkhunter 1.3.8 - false warning? Message-ID: <35113D20-59B2-4924-823B-DF5F97BE1F7A@mac.com> In-Reply-To: <AANLkTimkPG7cLfyVM8QHO=GSNyY5U0sp%2B9eo3xsPkiye@mail.gmail.com> References: <AANLkTimkPG7cLfyVM8QHO=GSNyY5U0sp%2B9eo3xsPkiye@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Jan 4, 2011, at 9:38 AM, Torfinn Ingolfsen wrote: > rkhunter 1.3.8 from ports complains about the /etc/passwd file. Why does it do that? It's buggy? RKHunter is better known for generating vast numbers of obscure false positives than it is for actually providing a security benefit. Something like tripwire or a functioning backup system which can provide a comparison of changes against current filesystem state is much more likely to be useful. Regards, -- -Chuck
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?35113D20-59B2-4924-823B-DF5F97BE1F7A>