Bonjour Refuznik
voila le résultat de
anna@linux ~]$ sudo rkhunter --check
[ Rootkit Hunter version 1.4.6 ]
Checking system commands...
Performing 'strings' command checks
Checking 'strings' command [ OK ]
Performing 'shared libraries' checks
Checking for preloading variables [ None found ]
Checking for preloaded libraries [ None found ]
Checking LD_LIBRARY_PATH variable [ Not found ]
Performing file properties checks
Checking for prerequisites [ Warning ]
/usr/sbin/adduser [ OK ]
/usr/sbin/chkconfig [ OK ]
/usr/sbin/chroot [ OK ]
/usr/sbin/depmod [ OK ]
/usr/sbin/fsck
ensuite , un peu plus loin
/usr/bin/ed [ OK ]
/usr/bin/egrep [ Warning ]
/usr/bin/env [ OK ]
/usr/bin/fgrep [ Warning ]
/usr/bin/file [ OK ]
/usr/bin/find
et encore
usr/bin/gawk [ OK ]
/usr/bin/mailx [ OK ]
/usr/libexec/nm-ifdown [ Warning ]
/usr/libexec/nm-ifup [ Warning ]
/usr/libexec/gawk [ OK ]
/usr/lib/systemd/systemd [ OK ]
[Press <ENTER> to continue]
J'ai donc pressé " enter " , suit la liste de tous les rootkits connus , ' not found " pour l'ensemble
je continue sur les verifs supplémentaires , il échappe
Checking running processes for suspicious files [ None found ]
Checking for hidden processes [ Skipped ]
Checking for login backdoors [ None found ]
Checking for sniffer log files
là , il trouve des " choses " , mais comme c'est en vert , je suppose qu'il trouve les fichiers et non un menace
Checking the local host...
Performing system boot checks
Checking for local host name [ Found ]
Checking for system startup files [ Found ]
Checking system startup files for malware [ None found ]
Performing group and account checks
Checking for passwd file [ Found ]
Checking for root equivalent (UID 0) accounts [ None found ]
Checking for passwordless accounts [ None found ]
Checking for passwd file changes [ None found ]
Checking for group file changes [ None found ]
Checking root account shell history files [ OK ]
Performing system configuration file checks
Checking for an SSH configuration file [ Found ]
Checking if SSH root access is allowed [ Not set ]
Checking if SSH protocol v1 is allowed [ Not set ]
Checking for other suspicious configuration settings [ None found ]
Checking for a running system logging daemon [ Found ]
Checking for a system logging configuration file [ Found ]
Checking if syslog remote logging is allowed [ Not allowed ]
Voila le résultat de l'analyse , il trouve donc 4 fichiers suspects
System checks summary
=====================
File properties checks...
Required commands check failed
Files checked: 136
Suspect files: 4
Rootkit checks...
Rootkits checked : 502
Possible rootkits: 0
Applications checks...
All checks skipped
The system checks took: 16 minutes and 40 seconds
All results have been written to the log file: /var/log/rkhunter/rkhunter.log
One or more warnings have been found while checking the system.
Please check the log file (/var/log/rkhunter/rkhunter.log)
comme il me le demande , mais là je n'ai pas bon , j'ai fait
[anna@linux ~]$ sudo --check /var/log/rkhunter/rkhunter.log
sudo : option non reconnue '--check'
je vais aller voir dans rkhunter.log en passant par le gestionnaire de fichiers , en ligne de commandes j'hésite pour ouvrir avec nano
sinon , comment je fais pour trouver les fichiers suspects , puisque je n'ai pas leur noms dans le résumé
J'ai essayé d'aérer un peu en mettant un peu d'espace
Bonne journée