On Wednesday 09 April 2014 06:01:05 Al Varnell did opine: > On Wed, Apr 09, 2014 at 02:16 AM, ellanios82 wrote: > > Hello List > > > > - today, clamscan advises that rkhunter is infected : > > > > - run on openSuSE 13.01 : rkhunter-1.4.0-8.1.2.x86_64 > > > > file permissions : > > > > -rw------- 1 root root 491600 Apr 9 11:16 rkhunter > > > > …………………. > > I addressed that earlier this evening. Both are looking for the same two > ASCII strings and since rkhunter is a plain text script it’s going to > find them there. > > You can either exclude it from scan or upload it to the clamAV® false > positive page if you believe that’s what it is. > <http://www.clamav.net/sendvirus/> and post the file's MD5 back here. > > BTW, rkhunter is at v1.4.2, but will have the same issue. > > > -Al-
I wasn't aware it had been updated, thanks Al. The md5sum for 1.4.0.tar.gz is 37b1ceb79a5ff3debca335d6550ac6b0 Cheers, Gene -- "There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order." -Ed Howdershelt (Author) Genes Web page <http://geneslinuxbox.net:6309/gene> US V Castleman, SCOTUS, Mar 2014 is grounds for Impeaching SCOTUS _______________________________________________ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/support/ml
