On Sat, Feb 06, 2010 at 08:29:28PM +0000, John Horne wrote:
> On Sat, 2010-02-06 at 06:20 -0800, Marc MERLIN wrote:
> > Hi,
> >
> > rkhunter 1.6 now reports:
> >
> > Warning: Application 'exim', version '4.69', is out of date, and possibly a
> > security risk.
> > Warning: Application 'openssl', version '0.9.8g', is out of date, and
> > possibly a security risk.
> > Warning: Application 'sshd', version '4.7p1', is out of date, and possibly
> > a security risk.
> >
> > Some of the reports are correct and useful, some aren't and/or I have a
> > good reason for running a specific version.
> > I would be really nice if there were a way to whitelist application
> > versions I'm aware of and ok with.
> >
> You can. Look at APP_WHITELIST in the configuration file. You can either
> whitelist the application name alone, which then, in effect, whitelists
> any version of the software. E.g:
>
> APP_WHITELIST="exim openssl sshd"
>
> Or you can whitelist specific versions by appending a colon and then the
> version. E.g:
>
> APP_WHITELIST="exim:4.69 openssl:0.9.8g sshd:4.7p1"
Doh, it was there all along and I missed it.
Thanks and again my apology for the mail bounces.
Marc
--
"A mouse is a device used to point at the xterm you want to type in" - A.S.R.
Microsoft is to operating systems & security ....
.... what McDonalds is to gourmet cooking
Home page: http://marc.merlins.org/
------------------------------------------------------------------------------
Download Intel® Parallel Studio Eval
Try the new software tools for yourself. Speed compiling, find bugs
proactively, and fine-tune applications for parallel performance.
See why Intel Parallel Studio got high marks during beta.
http://p.sf.net/sfu/intel-sw-dev
_______________________________________________
Rkhunter-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/rkhunter-users
