#1 2018-04-02 20:14:53

m1rr0r5h4d35

Member

Registered: 2017-01-08

Posts: 67

rkhunter

Perhaps there is a better place to post this, but I thought here might be the best. Anyway, installing rkhunter on BunsenLabs, you will first encounter a problem when running it. It will throw the following error:

Invalid SCRIPTWHITELIST configuration option: Non-existent pathname: /usr/bin/lwp-request

As referenced here, the fix is as follows:

I had to comment out the "SCRIPTWHITELIST=/usr/bin/lwp-request" to get
rkhunter running on the affected systems.

The next issue is the "--update" option failing with the following error:

Invalid WEB_CMD configuration option: Relative pathname: "/bin/false"

Bug report is here. Fix is here.

TLDR:

Therefore, all I needed to do is to replace the following entries in the /etc/rkhunter.conf file

Old value    New value
UPDATE_MIRRORS=0    UPDATE_MIRRORS=1
MIRRORS_MODE=1    MIRRORS_MODE=0
WEB_CMD="/bin/false"    WEB_CMD=""

I have tested both of these fixes, and they seem to work, at least for now. Not sure if anyone else was interested, but it is easier for me to post these little notes for future me, and if others benefit from them as well, then more's the better.

---

"A graphic representation of data abstracted from the banks of every computer in the human system. Unthinkable complexity. Lines of light ranged in the nonspace of the mind, clusters and constellations of data. Like city lights, receding."

- William Gibson