1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
|
Author: Unknown
Description: fix Windigo rootkit search with openssh
---
This patch header follows DEP-3: http://dep.debian.net/deps/dep3/
--- a/chkrootkit
+++ b/chkrootkit
@@ -1165,6 +1165,8 @@
files="`${find} ${ROOTDIR}tmp ${ROOTDIR}var/tmp ${findargs} -name vuln.txt -o -name ssh-scan -o -name pscan2 2> /dev/null`"
if [ "${files}" = "" ]; then
if [ "${QUIET}" != "t" ]; then echo "nothing found"; fi
+ elif $ssh -G 2>&1 | grep usage > /dev/null; then
+ if [ "${QUIET}" != "t" ]; then echo "nothing found"; fi
else
echo "${files}"
fi
|
