Anyone know what I can do about these rkhunter warnings?
Warning: No output found from the lsmod command or the /proc/modules file:
/proc/modules output:
lsmod output:
Warning: The kernel modules directory '/lib/modules' is missing or empty.
Warning: Found passwordless account in shadow file: atomic
rkhunter warning
rkhunter warning
They say that good intentions, pave the road to hell;
If a thing is not worth doing, it's not worth doing well.
If a thing is not worth doing, it's not worth doing well.
Re: rkhunter warning
Hi,
The first two look like they're because you're running within Virtuozzo or OpenVZ, so just disable the checks in the rkhunter.conf .
The last one I haven't a clue on I'm afraid,
Paul.
The first two look like they're because you're running within Virtuozzo or OpenVZ, so just disable the checks in the rkhunter.conf .
The last one I haven't a clue on I'm afraid,
Paul.
- mikeshinn
- Atomicorp Staff - Site Admin
- Posts: 4149
- Joined: Thu Feb 07, 2008 7:49 pm
- Location: Chantilly, VA
Re: rkhunter warning
You dont have a kernel, so you wont have any modules. You can ignore that (if thats true for you, which if its a virtual system it would be true)Warning: The kernel modules directory '/lib/modules' is missing or empty.
That means you have given us access to the system and that account uses only keys to log in. You can ignore that.Warning: Found passwordless account in shadow file: atomic
Michael Shinn
Atomicorp - Security For Everyone
Atomicorp - Security For Everyone
-
- Long Time Forum Regular
- Posts: 2813
- Joined: Sat Aug 20, 2005 9:30 am
- Location: The Netherlands
Re: rkhunter warning
Instead of ignoring it (which might be hard if rkhunter is e-mailing you about it every day) you can also disable the tests that check for kernel modules. You'll want to add 'avail_modules' and 'loaded_modules' to DISABLE_TESTS in /etc/rkhunter.conf or leave /etc/rkhunter.conf unmodified and override DISABLE_TESTS in /etc/rkhunter.conf.local (create that file if it doesn't exist yet).
Maybe ASL could disable these tests automatically if it detects a kernel without modules?
Maybe ASL could disable these tests automatically if it detects a kernel without modules?
Lemonbit Internet Dedicated Server Management
Re: rkhunter warning
Sounds like a good idea.breun wrote:Maybe ASL could disable these tests automatically if it detects a kernel without modules?
They say that good intentions, pave the road to hell;
If a thing is not worth doing, it's not worth doing well.
If a thing is not worth doing, it's not worth doing well.