Excluding those 2 files explicitly is another problem. An attacker can simply overwrite them with whatever files he wants knowing they will be ignored.
I understand that chkrootkit is not 100% accurate. -- GPG-Key: 0xA3FD0DF7 - 9F73 032E EAC9 F7AD 951F 280E CB66 8E29 A3FD 0DF7 Debian User and Developer. Homepage: www.foolab.org
signature.asc
Description: Digital signature
