Home

Technical Papers  How to setup Rkhunter q-Status™ q-Alerts How to setup q-Status™ q-Alerts to identify security warning changes identified from Rootkit scanner (e.g. rkhunter). q-Status™ q-Alerts uses the Rkhunter log file which to identify changes in warnings that have occured from the previous rkhunter log. Rkhunter is a shell script program written by Michael Boelen. It supports Unix, Linux and Solaris type operating systems. This tool scans for rootkits, backdoors and local exploits by running tests like: MD5 hash compare Look for default files used by rootkits Wrong file permissions for binaries Look for suspected strings in LKM and KLD modules Look for hidden files Optional scan within plaintext and binary files Rootkit Hunter is released as GPL licensed project and free for everyone. See "Rootkit Hunter" at http://www.rootkit.nl/projects/rootkit_hunter.html for download and more information of Rkhunter. It can also be downloaded from the Source Forge Repository. Also see Rkhunter rpm Issues q-Status™ and Sun IT Processes Comparison How does q-Status™ Configuration Management compare to the following types of Sun Microsystems IT Processes? Asset Management Patch Management Reporting (e.g. Teamquest) Monitoring (SunMC) Computing on Demand. Using rpm ro Intall System Scripts in Linux System Managers utilize shell script programming to support their data center. These scripts are distributed to multiple servers. Scripts get change an update. There becomes a need with large server installations to have a method to easily install these scripts, identify which version and provide a standardized method for their deployment. This technical documents uses q-StatusLinux collection scripts to demonstrate how to create an rmp module to distribute scripts to server. Tips for Updating Custom Modules for q-Status Rev 5.20 Provides documentation for migration of q-Status™ Rev 5.10 custom modules to Rev 5.20

LogiQwest, Inc. - USA        sales@logiqwest.com       Phone 714.377.3705        Fax 714.840.3937