[CentOS] How to install rkhunter properly

Sat Dec 2 18:00:44 UTC 2006
Michael Kress <kress at hal.saar.de>

Hi list,

after a bit of struggling I found out how to cleanly install rkhunter
... maybe this is useful for you:
* Download rkhunter (I downloaded v 1.2.8)
* mv /etc/rpm/platform /root/etc_rpm_platform
* setarch i386 rpmbuild -ta --target=i386 rkhunter-1.2.8.tar.gz
* mv /root/etc_rpm_platform /etc/rpm/platform
* rpm -ivh /usr/src/redhat/RPMS/noarch/rkhunter-1.2.8-1.noarch.rpm
* wget http://prdownloads.sourceforge.net/rkhunter/hashupd.sh?download
* chmod +x hashupd.sh
* ./hashupd.sh

In general I had 2 problems:
* On my 64 bit machine, the __libdir was set to /usr/lib64 whereas
rkhunter uses an ugly "/usr/lib"
   (solved with moving the platform file temporarily)
* rkhunter -c showed me all the binaries in /bin /sbin/ and /usr/bin as
'bad'.
   (solved with downloading and calling ./hashupd.sh)

HTH
cu - Michael

-- 
Michael Kress, kress at hal.saar.de
http://www.michael-kress.de / http://kress.net
P E N G U I N S   A R E   C O O L