我从rkhunter收到以下错误.我最近将我的服务器从lenny升级为squeeze,这可能导致了这个问题.如何解决此问题或隐藏错误消息?
Warning: The modules file '/proc/modules' is missing. Warning: SuspicIoUs file types found in /dev: /dev/shm/network/ifstate: ASCII text Warning: Hidden directory found: /dev/.udev
解决方法
首先,它们只是警告,而不是错误.
Warning: The modules file '/proc/modules' is missing.
rkhunter正在尝试检查内核模块,但它不能,因为文件/ proc / modules不存在.您可以通过更改以下行禁用测试:
DISABLE_TESTS="suspscan hidden_procs deleted_files packet_cap_apps"
至:
DISABLE_TESTS="suspscan hidden_procs deleted_files packet_cap_apps os_specific"
关于第二个警告:
Warning: SuspicIoUs file types found in /dev: /dev/shm/network/ifstate: ASCII text
如果/ dev / shm / network / ifstate是一个已知的好文件,您可以通过在/etc/rkhunter.conf中添加以下行来对其进行白名单:
ALLOWDEVFILE=/dev/shm/network/ifstate
关于第三行:
Warning: Hidden directory found: /dev/.udev
与上面类似,为了避免此警告,您可以重新配置rkhunter以忽略此目录:
ALLOWHIDDENDIR=/dev/.udev
