--- rkhunter.conf.orig	2013-04-29 02:14:50.000000000 +0100
+++ rkhunter.conf	2014-10-08 09:23:46.048657655 +0100
@@ -214,7 +214,7 @@
 # file, then a value here of 'unset' can be used to avoid warning messages.
 # This option has a default value of 'no'.
 #
-ALLOW_SSH_ROOT_USER=no
+ALLOW_SSH_ROOT_USER=without-password
 
 #
 # Set this option to '1' to allow the use of the SSH-1 protocol, but note
@@ -484,7 +484,7 @@
 SCRIPTWHITELIST=/usr/bin/lwp-request
 SCRIPTWHITELIST=/usr/sbin/adduser
 SCRIPTWHITELIST=/usr/sbin/prelink
-#SCRIPTWHITELIST=/usr/bin/unhide.rb
+SCRIPTWHITELIST=/usr/bin/unhide.rb
 
 #
 # Allow the specified commands to have the immutable attribute set.
@@ -512,7 +512,8 @@
 #ALLOWHIDDENDIR="/dev/.static"
 #ALLOWHIDDENDIR="/dev/.SRC-unix"
 #ALLOWHIDDENDIR="/etc/.etckeeper"
-
+ALLOWHIDDENDIR="/dev/.udev"
+ALLOWHIDDENDIR="/etc/.java"
 #
 # Allow the specified hidden files to be whitelisted.
 #
@@ -539,7 +540,10 @@
 #ALLOWHIDDENFILE="/usr/share/man/man5/.k5login.5.gz"
 #ALLOWHIDDENFILE="/etc/.gitignore"
 #ALLOWHIDDENFILE="/etc/.bzrignore"
-
+ALLOWHIDDENFILE="/dev/.blkid.tab"
+ALLOWHIDDENFILE="/dev/.blkid.tab.old"
+ALLOWHIDDENFILE="/dev/.initramfs"
+ALLOWDEVFILE="/dev/.udev/rules.d/root.rules"
 #
 # Allow the specified processes to use deleted files. The
 # process name may be followed by a colon-separated list of
@@ -605,6 +609,7 @@
 #
 #ALLOWDEVFILE="/dev/shm/pulse-shm-*"
 #ALLOWDEVFILE="/dev/shm/sem.ADBE_*"
+ALLOWDEVFILE="/dev/.blkid.tab*"
 
 #
 # This setting tells rkhunter where the inetd configuration