Rootkit Hunter on Linux VPS

Posted on March 6, 2009
Filed Under Linux Hosting, VPS hosting |

What is RKHunter?
RKHunter stands for Rootkit Hunter. It’s one of the most powerful application that you can install easily on your Cpanel VPS.
As rootkits are installed into system files they cannot be removed easily however, RKHunter will still notify you of any rootkits that may exist in your system so that you can take the necessary steps to reload your cPanel server. One of the bset things about RKHunter is that you can configure it to do daily scans so, that you can ensure that if any rootkits are discovered they aren’t able to affect your VPS too much.

Follow the below steps to install RKHunter on VPS:-

1) wget http://downloads.sourceforge.net/rkhunter/rkhunter-1.3.2.tar.gz
tar -xzf rkhunter-1.3.2.tar.gz
cd rkhunter-1.3.2
./installer.sh

2) After you install RKHunter on VPS you can schedule it to do daily scans and to update itself on a regular basis. Configure RKHunter to schedule it to do a daily scan Please follow the below steps:-

a) vi /etc/cron.daily/rkhunter.sh (press ’shift + I’ to make the file editable)
b) (/usr/local/bin/rkhunter –update && /usr/local/bin/rkhunter -c –cronjob 2>&1 | mail -s “RKhunter Scan Details” email@domain.com) - (replace email@domain.com with your own email address)
c) press ‘esc’ and then type ‘:wq’, and your file will be saved
d) chmod 700 /etc/cron.daily/rkhunter.sh

Once this RKHunter is configured on your VPS to run a daily scan, then you will receive an automated emails as well as scripts will also check for latest updates.

Update me when site is updated

Comments

Leave a Reply