It is good trick is to have rkhunter check your server for rootkits!
Yes this tutorial is already out there but you should use it!
SSH into root
wget http://downloads.rootkit.nl/rkhunter-1.2.8.tar.gz
tar -zxvf rkhunter-1.2.8.tar.gz
cd rkhunter-1.2.8
./installer.sh
Now cron this!
pico /etc/cron.daily/rkhunter.sh
#!/bin/bash
(/usr/local/bin/rkhunter -c --cronjob 2>&1 | mail -s "Daily Rkhunter Scan Report" email
@domain.com)
chmod +x /etc/cron.daily/rkhunter.sh
Now update..
rkhunter --update
and finaly do a scan!
/usr/local/bin/rkhunter -c
There may be some sectors that show as Bad but this should’nt concern you unless it states on results you have a rootkit!
If you have any findings or extra tweaks please post them in here.
Intraday Tips
Commodity Tips