ChkRootKit

Install ChkRootKit

Follow these steps to install ChkRootKit
cd /usr/local/src/

– Down load the chkrootkit.
 
# wget http://www.spenneberg.org/chkrootkit-mirror/files/chkrootkit.tar.gz
# wget ftp://ftp.pangeia.com.br/pub/seg/pac/chkrootkit.tar.gz

- Unpack the chkrootkit you just downloaded. 
# tar -xvzf chkrootkit.tar.gz

- Change to new directory  
# cd chkrootkit-*
(select the version )

- Compile chkrootkit
# make sense

- Run chkrootkit
# ./chkrootkit

__________________________________________________

How to setup a daily scan report?
- Load crontab
# crontab -e
- Add this line to the top:
===============================================================>
0 1 * * * (cd /usr/local/src/chkrootkit*; ./chkrootkit 2>&1 | mail -s “chkrootkit output” email@domain.com)
===============================================================>