Server Software and Configuration Services
New csf v3.18
Changes:
- Fixed bug in the generic csf release where the default csf.conf was missing the DROP, CT_STATES and GLOBAL_IGNORE settings – Thanks to Jim for the help in tracking the issue down
Changes:
Changes:
Changes:
Changes:
Changes:
Changes:
Changes:
The Rootkit Hunter project team announces release 1.3.2.The changelog lists 3 additions, 6 changes and 14 bugfixes. Naming a few:- Socklog and rsyslog daemons support.- IRIX/IRIX64 support.- Application version check errors mostly ignored.- Unset ALLOW_SSH_ROOT_USER and ALLOW_SSH_PROT_V1.- Application check whitelisting.- ‘pflog’ checked for all *BSD now.- Correct scanning of /dev in LAZY mode.- Whitelisted passwordless account names logged.- Corrected obtaining process names in Solaris.- Unset MANPATH for .spec (OpenSuSE).- Correct hidden files/directories test behaviour.This is the procedure we use to upgrade rkhunter:
Changes:
Looks like there is very important kernel upgrade that you should perform if you’re running RHEv5 (and presumably CentOSv5 when it’s released) which allows non-priv root escalation:https://rhn.redhat.com/errata/RHSA-2008-0129.html