[Question] rkhunter warming thế nầy thì fix thế nào, nhờ mọi người chỉ giúp |
04/09/2011 23:29:25 (+0700) | #1 | 246500 |
khang0001
Member
|
0 |
|
|
Joined: 20/05/2011 07:22:25
Messages: 196
Location: Final Fantasy 8
Offline
|
|
trong quá trình build con LAMP, mình đến giai đoạn cài các công cụ như rkhunter , sau khi cài xong và quét thì ra kết quả warming thế nầy:
Code:
Warning: The command '/sbin/ifdown' has been replaced by a script: /sbin/ifdown: Bourne-Again shell script text executable
Warning: The command '/sbin/ifup' has been replaced by a script: /sbin/ifup: Bourne-Again shell script text executable
Warning: The command '/usr/bin/groups' has been replaced by a script: /usr/bin/groups: Bourne shell script text executable
Warning: The command '/usr/bin/ldd' has been replaced by a script: /usr/bin/ldd: Bourne shell script text executable
Warning: The command '/usr/bin/whatis' has been replaced by a script: /usr/bin/whatis: Bourne shell script text executable
Warning: The syslog daemon is not running.
Warning: Hidden directory found: /dev/.udev
Warning: Hidden file found: /etc/.ptmp.swp: data
Warning: Hidden file found: /usr/share/man/man1/..1.gz: gzip compressed data, from Unix, max compression
Warning: Hidden file found: /usr/bin/.fipscheck.hmac: ASCII text
ngoài ra nó còn báo 1 số lỗi nữa nhưng những lỗi đó mình đã hiểu và fix xong, còn trên đây là những lỗi nó báo nhưng mình không biết làm thế nào để fix, mình đã xem qua các file nó báo lỗi thì ko thấy có gì bất thường, mọi người ai có kn về việc nầy xin chỉ giúp |
|
Mộ em hoa cỏ nào xanh, Rêu phong nào bám lòng anh càng buồn, Tử thần sao cướp mất em, Để mình anh lại bơ vơ chốn nầy, Em ra đi để mặc mình anh với đời, Hận mình nghèo không mua nổi tình em |
|
|
|
[Question] rkhunter warming thế nầy thì fix thế nào, nhờ mọi người chỉ giúp |
05/09/2011 13:02:29 (+0700) | #2 | 246508 |
khang0001
Member
|
0 |
|
|
Joined: 20/05/2011 07:22:25
Messages: 196
Location: Final Fantasy 8
Offline
|
|
|
Mộ em hoa cỏ nào xanh, Rêu phong nào bám lòng anh càng buồn, Tử thần sao cướp mất em, Để mình anh lại bơ vơ chốn nầy, Em ra đi để mặc mình anh với đời, Hận mình nghèo không mua nổi tình em |
|
|
|
[Question] rkhunter warming thế nầy thì fix thế nào, nhờ mọi người chỉ giúp |
13/06/2012 20:14:56 (+0700) | #3 | 265145 |
cacthanh123
Member
|
0 |
|
|
Joined: 03/08/2009 23:28:51
Messages: 7
Offline
|
|
khang0001 wrote:
đã fix thành công lỗi
Pác ? Fix sao thế pác ... mình bị lỗi y chang ... hơn nữa, còn lỗi này nữa
[17:39:45] Info: Starting test name 'group_changes'
[17:39:45] Checking for group file changes [ Warning ]
[17:39:45] Warning: Group 'svtm' has been added to the group file.
[17:39:45] Warning: Group 'kenluv' has been added to the group file.
[17:39:45] Warning: Group 'jaoviet' has been added to the group file.
[17:39:45] Warning: Group 'nct' has been added to the group file.
[17:39:45] Warning: Group 'matthu' has been removed from the group file.
[17:39:45] Checking root account shell history files [ OK ]
[17:39:46]
[17:39:46] Info: Starting test name 'system_configs'
[17:39:46] Performing system configuration file checks
[17:39:46] Checking for SSH configuration file [ Found ]
[17:39:46] Info: Found SSH configuration file: /etc/ssh/sshd_config
[17:39:46] Info: Rkhunter option ALLOW_SSH_ROOT_USER set to 'no'.
[17:39:46] Info: Rkhunter option ALLOW_SSH_PROT_V1 set to '0'.
[17:39:46] Checking if SSH root access is allowed [ Warning ]
[17:39:46] Warning: The SSH configuration option 'PermitRootLogin' has not been set.
The default value may be 'yes', to allow root access.
[17:39:46] Checking if SSH protocol v1 is allowed [ Not allowed ]
[17:39:46] Checking for running syslog daemon [ Found ]
[17:39:47] Info: Found syslog configuration file: /etc/syslog.conf
[17:39:47] Checking for syslog configuration file [ Found ]
[17:39:47] Checking if syslog remote logging is allowed [ Not allowed ]
[17:39:47]
[17:39:47] Info: Starting test name 'filesystem'
[17:39:47] Performing filesystem checks
[17:39:47] Info: SCAN_MODE_DEV set to 'THOROUGH'
[17:39:47] Checking /dev for suspicious file types [ Warning ]
[17:39:47] Warning: Suspicious file types found in /dev:
[17:39:47] /dev/.udev/uevent_seqnum: ASCII text
[17:39:47] Checking for hidden files and directories [ Warning ]
[17:39:47] Warning: Hidden directory found: '/dev/.udev'
[17:39:47] Warning: Hidden file found: /usr/share/man/man1/..1.gz: gzip compressed data, from Unix, max compression
[17:39:47] Warning: Hidden file found: /usr/bin/.fipscheck.hmac: ASCII text
[17:39:47] Warning: Hidden file found: /usr/bin/.ssh.hmac: ASCII text
[17:39:47] Warning: Hidden file found: /usr/sbin/.sshd.hmac: ASCII text
[17:39:49] Checking version of OpenSSL [ Warning ]
[17:39:49] Warning: Application 'openssl', version '0.9.8e', is out of date, and possibly a security risk.
[17:39:49] Checking version of PHP [ OK ]
[17:39:49] Info: Application 'php' version '5.2.17' found.
[17:39:49] Checking version of Procmail MTA [ OK ]
[17:39:49] Info: Application 'procmail' version '3.22' found.
[17:39:49] Checking version of ProFTPD [ OK ]
[17:39:49] Info: Application 'proftpd' version '1.3.3c' found.
[17:39:49] Checking version of OpenSSH [ Warning ]
[17:39:50] Warning: Application 'sshd', version '4.3p2', is out of date, and possibly a security risk.
[17:39:50] Info: Applications checked: 9 out of 9
[17:00:35] /usr/bin/sha512sum [ Warning ]
[17:00:35] Warning: The file properties have changed:
[17:00:35] File: /usr/bin/sha512sum
[17:00:35] Current hash: 6a934326b709a136f57616de1a6b7244406894e6
[17:00:35] Stored hash : b42f735e8754cab4c5a017e7e3c815535ec3eedb
[17:00:35] Current size: 74660 Stored size: 75748
[17:00:36] Current file modification time: 1232519311 (21-Jan-2009 09:28:31)
[17:00:36] Stored file modification time : 1332333358 (21-Mar-2012 15:35:58)
[17:00:36] /usr/bin/size [ Warning ]
======================================================
Giúp mình fix mấy cái trên nhé !!! Mình cảm ơn nhìu lắm |
|
|
|
|
|
|
|
Users currently in here |
1 Anonymous
|
|
Powered by JForum - Extended by HVAOnline
hvaonline.net | hvaforum.net | hvazone.net | hvanews.net | vnhacker.org
1999 - 2013 ©
v2012|0504|218|
|
|