How To Install RKHunter

RKHunter also known as RootKit Hunter is a scanning tool to ensure you for about 99.9% that you don't have any rootkits, backdoors, and local exploits but running tests and e-mailing you results.

1. cd /usr/src/

2. Download latest RKHunter Version 1.3.4
wget Browse Rootkit Hunter Files on SourceForge.net

3. Extract files
Type: tar -xzvf rkhunter-1.3.4.tar.gz

4. cd rkhunter-1.3.4.tar.gz

5. ./installer.sh --help

The default should do

./installer.sh --layout /usr/local --install


6. Lets setup RKHunter to e-mail you you daily scan reports.
Type: vi /etc/cron.daily/rkhunter.sh

Add The Following:

#!/bin/bash
(/usr/local/bin/rkhunter -c --cronjob 2>&1 | mail -s "RKhunter Scan Details" replace-this@with-your-email.com This e-mail address is being protected from spam bots, you need JavaScript enabled to view it )

"Replace the e-mail above with your e-mail!! It is best to send the e-mail to an e-mail off-site so that if the box IS compromised the hacker can't erase the scan report unless he hacks another server too."
7. chmod +x /etc/cron.daily/rkhunter.sh