rkhunter marks bootchart files as suspicious
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
rkhunter (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
1. Rkhunter thinks many files in /dev/.bootchart are suspicious.
2. Takes lot more time to complete.
_______
# sudo rkhunter -c -sk
[ Rootkit Hunter version 1.4.2 ]
[11:54:47] Checking configuration file and command-line options...
[11:54:47] Info: Detected operating system is 'Linux'
[11:54:47] Info: Found O/S name: Ubuntu 16.04 LTS
[11:54:47] Info: Command line is /usr/bin/rkhunter -c -sk
[11:54:47] Info: Environment shell is /bin/bash; rkhunter is using dash
[11:54:47] Info: Using configuration file '/etc/rkhunter.
[11:54:47] Info: Installation directory is '/usr'
[11:54:47] Info: Using language 'en'
[11:54:47] Info: Using '/var/lib/
[11:54:47] Info: Using '/usr/share/
(skip)
[11:56:33] Info: SCAN_MODE_DEV set to 'THOROUGH'
[12:25:30] Checking /dev for suspicious file types
12:25:30] Checking /dev for suspicious file types [ Warning ]
[12:25:30] Warning: Suspicious file types found in /dev:
[12:25:30] /dev/.udev/
[12:25:30] /dev/.bootchart
[12:25:30] /dev/.bootchart
[12:25:30] /dev/.bootchart
[12:25:30] /dev/.bootchart
[12:25:30] /dev/.bootchart
[12:25:30] /dev/.bootchart
[12:25:30] /dev/.bootchart
[12:25:30] /dev/.bootchart
[12:25:30] /dev/.bootchart
(skip)
[12:25:30] /dev/.bootchart
[12:25:30] /dev/.bootchart
(skip)
[12:25:33] The system checks took: 30 minutes and 45 seconds
_______