-
chkrootkit output
I get the following output from chkrootkit:
Checking `chkutmp'... The tty of the following user process(es) were not found
in /var/run/utmp !
! RUID PID TTY CMD
! root 3186 tty7 /usr/bin/Xorg :0 -br -audit 0 -auth /var/gdm/:0.Xauth -nolisten tcp vt7
chkutmp: nothing deleted
I don't understand the meaning of this message. This just looks like the X-server
process. Can someone please clarify?
--
% Randy Yates % "Watching all the days go by...
%% Fuquay-Varina, NC % Who are you and who am I?"
%%% 919-577-9882 % 'Mission (A World Record)',
%%%% <yates@ieee.org> % *A New World Record*, ELO
[url]http://home.earthlink.net/~yatescr[/url]
-
Re: chkrootkit output
Bill Marcum <marcumbill@bellsouth.net> writes:
[color=blue]
> On Thu, 16 Aug 2007 16:36:53 -0400, Germantown Mutt
> <nouser@nodomain.com> wrote:[color=green]
>>
>>
>> I get the following output from chkrootkit:
>>
>> Checking `chkutmp'... The tty of the following user process(es) were not found
>> in /var/run/utmp !
>> ! RUID PID TTY CMD
>> ! root 3186 tty7 /usr/bin/Xorg :0 -br -audit 0 -auth /var/gdm/:0.Xauth -nolisten tcp vt7
>> chkutmp: nothing deleted
>>
>> I don't understand the meaning of this message. This just looks like
>> the X-server process. Can someone please clarify?[/color]
>
> It looks like an ordinary X server process. What linux distribution and
> version of chkrootkit do you have?[/color]
Linux localhost.localdomain 2.6.20-1.2948.fc6 #1 SMP Fri Apr 27 19:18:54 EDT 2007 x86_64 x86_64 x86_64 GNU/Linux
chkrootkit version 0.47
--
% Randy Yates % "Maybe one day I'll feel her cold embrace,
%% Fuquay-Varina, NC % and kiss her interface,
%%% 919-577-9882 % til then, I'll leave her alone."
%%%% <yates@ieee.org> % 'Yours Truly, 2095', *Time*, ELO
[url]http://home.earthlink.net/~yatescr[/url]
