Security of your web server is one of the more important issue now a days….Risk of your server security increaseswith the increase in popularity of your websites and your service.. Here is an article to teach you that how you can protect your server from rootkits..
root kit hunter is one of the best root kit scanner I found in my experience..
You can check its updates at
http://rootkit.nl/projects/rootkit_hunter.html
To install rootkit hunter, you need to login to your server with root login and download
|
1 2 3 4 5 6 7 8 |
# wget http://downloads.sourceforge.net/project/rkhunter/rkhunter/1.3.8/rkhunter-1.3.8.tar.gz # tar - xzvf rkhunter-1.3.8.tar.gz # cd rkhunter-1.3.8.tar.gz # ./installer.sh --layout default --install # cd .. # rm -Rf rkhunter* # /usr/local/bin/rkhunter --update # /usr/local/bin/rkhunter --propupd |
Now cron it to run on daily basis and email you
|
1 |
# nano -w /etc/cron.daily/rkhunter.sh |
|
1 2 3 4 5 6 |
#!/bin/sh ( /usr/local/bin/rkhunter --versioncheck /usr/local/bin/rkhunter --update /usr/local/bin/rkhunter --cronjob --report-warnings-only ) | /bin/mail -s 'rkhunter Daily Run (YourServerNameHere)' your@email.com |
Remember to change YourServerNameHere and [email protected]
|
1 |
#chmod 700 /etc/cron.daily/rkhunter.sh |
You can update rootkit hunter to latest version using
|
1 |
# rkhunter --update |
and you can do scan using
|
1 |
#/usr/local/bin/rkhunter -c |
Please follow and like us:
About shk
Thanks for this helping tutorial and thanks for all the other articles about Kloxo, helped me very much 😉 !
Just one Mistake in the articel, its not “cd rkhunter-1.3.8.tar.gz” , its “cd rkhunter-1.3.8”.
Pls keep on posting about Kloxo!