Rkhunter compares SHA-1 hashes from the local directories with the online database and checks the system to identify the rootkits. This tool is written in Bash to offer higher portability, making it idle for all UNIX-based systems. If you also want to install and use Rkhunter for security on Ubuntu, this guide is just for you.
The first step is to update the system as per the latest updates available:
Now, execute the following command to install Rkhunter from the official repository of Ubuntu:
The system redirects you to the package configuration window.
Press the “Tab” button. Then, click “OK” and press the “Enter” button to move to the next page. Here, select the mail configuration type:
Finally, type the mail name. Then, press the “Enter” button to finalize the installation process:
Configuration of Rkhunter
Once you install Rkhunter, it is now time to configure it. Run the following command to open the config file:
Scroll down to the UPDATE_MIRRORS section and change it from 0 to 1. Similarly, change the MIRRORS_MODE to 0:
After making the previous changes, scroll down until you reach the WEB_CMD. Here, remove the /bin/false to make it Null:
Save the file to successfully finalize the changes. You can also check any unexpected configuration through the following commands:
If the command returns 1 as the output, it means that there is an issue with the configuration.
Finally, run the following command to update the Rkhunter database to check the rootkits and all the other threats:
How to Use Rkhunter for Security
After setting up the Rkhunter, you can now run the following command to start the Rkhunter scan:
If Rkhunter finds security threats, it gives you instructions on how to resolve them.
If you want to check the scan results, you can access the log file of Rkhunter using the following command:
Rkhunter is a threat detection tool which is especially designed for rootkits, exploits, and backdoors. We recommend that you run the Rkhunter scan regularly to ensure the system’s security and protection from potential threats. Rkhunter can also manage the listening programs, startup files, network interfaces, and local system commands. In this guide, we explained the simple ways to install and use Rkhunter on Ubuntu 22.04.
With an ambition to become Asia’s technology hub for telecommunications in the 5G/6G era, India…
October 2024 marks the 20th anniversary of Ubuntu. The cybersecurity landscape has significantly shifted since…
This article provides a complete guide to setting up an Apache reverse proxy for an…
Canonical is excited to be a part of the Dell Technologies Forum in São Paulo…
In 2020, it was announced that CentOS 7 would reach end of life (EoL) by…
The launch of Ubuntu in 2004 was a step-change for everyday users and developers everywhere.…