Topic: Controlling Root Kit Hunter (rkhunter)

[hollymcr]

Is there anyway I can control Root Kit Hunter?

Specifically I want to disable checks for PermitRootLogin (I understand the reasons for it complaining but once I've made my decision to ignore that warning I don't want to be told about it every day).

I don't want to disable rkhunter (although if that's my only option then please tell me how to do it!).

[mdo]

/etc/rkhunter.conf
might be the file that you want to change for this?

E.g.:
# MDO, 18.6.06 changed to 1 to allow ssh root access
ALLOW_SSH_ROOT_USER=1

It looks to me that this file is NOT created as a template, instead it comes from the rpm (rkhunter-1.2.7-1sme07). If you edit/change it, it might be overwritten with a next program/version update for rkhunter.
Michael

[hollymcr]

/etc/rkhunter.conf
might be the file that you want to change for this?

Doh! Obvious now you say it.

It looks to me that this file is NOT created as a template, instead it comes from the rpm (rkhunter-1.2.7-1sme07). If you edit/change it, it might be overwritten with a next program/version update for rkhunter.

I'll keep an eye on it, thanks. Hopefully the update won't overwrite the config but we'll see.

Thanks, Michael.