Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 3 > Installation/Configuration

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 4th December 2009, 14:14
Ovidiu Ovidiu is offline
Senior Member
 
Join Date: Sep 2005
Posts: 1,262
Thanks: 78
Thanked 24 Times in 20 Posts
Default question regarding rkhutner findings/warnings

recently, 3-5 days ago, rkhutner started giving me these warnings:
Code:
Warning: Application 'gpg', version '1.4.9', is out of date, and possibly a security
risk.
Warning: Application 'openssl', version '0.9.8g', is out of date, and possibly a
security risk.
Warning: Application 'php', version '5.2.6', is out of date, and possibly a security
risk.
Warning: Application 'sshd', version '5.1p1', is out of date, and possibly a
security risk.

One or more warnings have been found while checking the system.
Please check the log file (/var/log/rkhunter.log)
I am jsut wondering now, as I keep my system up to date with apt-get dist-upgrade and have the newest upgrades. What to do about these warnigns now?
Reply With Quote
Sponsored Links
  #2  
Old 4th December 2009, 15:41
Mark_NL Mark_NL is offline
Senior Member
 
Join Date: Sep 2008
Location: The Netherlands
Posts: 912
Thanks: 12
Thanked 100 Times in 96 Posts
Default

If you update files that are being monitored by rkhunter, you ned to update the rkhunter database file as well so it knows the files are updated.

Code:
rkhunter --propupd
was the command for that if i'm not mistaken.
Reply With Quote
  #3  
Old 5th December 2009, 15:42
Ovidiu Ovidiu is offline
Senior Member
 
Join Date: Sep 2005
Posts: 1,262
Thanks: 78
Thanked 24 Times in 20 Posts
Default

I knew that, I was doing that when rkhutner was alertign em that some fiels had changed where I knew I had changed them, but this seemed different to me, its complaining about old versions but my system is up to date, that is what confused me..
Reply With Quote
  #4  
Old 7th December 2009, 09:31
Mark_NL Mark_NL is offline
Senior Member
 
Join Date: Sep 2008
Location: The Netherlands
Posts: 912
Thanks: 12
Thanked 100 Times in 96 Posts
Default

interresting, i got the exact same mail today from rkhunter

the apt repos ain't updated, for debian, so can't download newer versions (i think they've updated the rkhunter db and decided to spam these warnings)
Reply With Quote
  #5  
Old 16th December 2009, 10:03
Ovidiu Ovidiu is offline
Senior Member
 
Join Date: Sep 2005
Posts: 1,262
Thanks: 78
Thanked 24 Times in 20 Posts
Default

rkhunter --propupd doesn't seem to make rkhunter ignore these warnings...
Reply With Quote
  #6  
Old 16th December 2009, 11:07
Mark_NL Mark_NL is offline
Senior Member
 
Join Date: Sep 2008
Location: The Netherlands
Posts: 912
Thanks: 12
Thanked 100 Times in 96 Posts
Default

i know, i have the same warnings every day in my mailbox
Quote:
Warning: Application 'gpg', version '1.4.9', is out of date, and possibly a security risk.
Warning: Application 'httpd', version '2.2.9', is out of date, and possibly a security risk.
Warning: Application 'named', version '9.5.1', is out of date, and possibly a security risk.
Warning: Application 'openssl', version '0.9.8g', is out of date, and possibly a security risk.
Warning: Application 'php', version '5.2.6', is out of date, and possibly a security risk.
Warning: Application 'proftpd', version '1.3.1', is out of date, and possibly a security risk.
Warning: Application 'sshd', version '5.1p1', is out of date, and possibly a security risk.

One or more warnings have been found while checking the system.
Please check the log file (/var/log/rkhunter.log)
I think it's nothing really to worrie about .. when you use the apt repo's then you're stuck with the version that it supplies .. you can manually install the software upgrades, but won't advise it. So i guess we've to wait until there is a .deb file for it.
Reply With Quote
  #7  
Old 16th December 2009, 11:24
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 35,678
Thanks: 819
Thanked 5,318 Times in 4,171 Posts
 
Default

Debian updates these applications which patches without rising the version number. So your server is secure and these warnings are wrong as long as you install all available updates with apt.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
The Following User Says Thank You to till For This Useful Post:
Tenaka (18th December 2009)
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Networking: Routing / subnet question paulievox HOWTO-Related Questions 1 15th February 2010 23:45
Ubuntu Hardy server + OpenLDAP + Samba PDC. Simple question about groups. awe HOWTO-Related Questions 3 3rd September 2009 12:20
Question with email jdamron General 1 20th May 2009 10:33
Hostname question, and DNS question andrewfashion General 1 20th April 2009 13:30
RedHat AS 4 firewall iptables question. fbifido Installation/Configuration 2 9th November 2007 22:13


All times are GMT +2. The time now is 06:27.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.