Installing Rkhunter (Rootkit Hunter)

First download the latest stable version of Rkhunter tool:


Once you have downloaded the latest version, run the following commands as a root user to install it:
tar -xvf rkhunter-1.4.0.tar.gz
cd rkhunter-1.4.0
./ --layout default --install
Run the RKH updater to fill the database properties by running the following commands:
/usr/local/bin/rkhunter --update
/usr/local/bin/rkhunter -propupd
Create a file called under /etc/cron.daily/, which then scans your file system every day and sends email notifications to your email id. Create following file:

nano /etc/cron.daily/

Add the following lines of code to it and replace "YourServerNameHere" with your "Server Name" and "[email protected]" with your "Email":
/usr/local/bin/rkhunter --versioncheck
/usr/local/bin/rkhunter --update
/usr/local/bin/rkhunter --cronjob --report-warnings-only
) | /bin/mail -s 'rkhunter Daily Run (PutYourServerNameHere)' [email protected]
Set execute permission on the file:

chmod 755 /etc/cron.daily/

To scan the entire file system manually, run the Rkhunter as a root user.

rkhunter -check

The above command generates a log file under /var/log/rkhunter.log with the checked results made by Rkhunter.

For more information and options please run the following command:

rkhunter --help
Sign In or Register to comment.
© 2013 - 2018 Time4VPS. All rights reserved. Powered by Vanilla
The opinions or views of users on the forum are those of the author and not of Time4VPS.