Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- + test 1 -eq 1
- + alias print=false
- + false rkh-ksh-string-test
- + [ '' = rkh-ksh-string-test ]
- + [ 0 -eq 1 ]
- + MYSHELL=/bin/sh
- + test -h /bin/sh
- + basename /bin/sh
- + MYSHELL=sh
- + test -z sh
- + echo -e 'rkh-ksh\tstring-test'
- + [ 'rkh-ksh string-test' = 'rkh-ksh string-test' ]
- + ECHOOPT=-e
- + echo -n -e rkh-ksh-string-test
- + [ '-e rkh-ksh-string-test' = rkh-ksh-string-test ]
- + echo -e 'rkh-ksh-string-test\c'
- + [ rkh-ksh-string-test = rkh-ksh-string-test ]
- + ECHON=c
- + head -n 1
- + HEAD_OPT='-n '
- + tail -n 1
- + TAIL_OPT='-n '
- + [ 1 -eq 1 -a sh = ksh ]
- + trap - 13
- + PROGRAM_NAME='Rootkit Hunter'
- + PROGRAM_version=1.4.2
- + PROGRAM_copyright_owner='Michael Boelen'
- + PROGRAM_copyright='Copyright (c) 2003-2014, Michael Boelen'
- + PROGRAM_blurb='
- Currently under active development by the Rootkit Hunter project team.
- Please review your rkhunter.conf before using.
- Please review the documentation before posting bug reports or questions.
- To report bugs, obtain updates, or provide patches or comments, please go to:
- http://rkhunter.sourceforge.net
- To ask questions about rkhunter, please use the rkhunter-users mailing list.
- Note this is a moderated list: please subscribe before posting.
- Rootkit Hunter comes with ABSOLUTELY NO WARRANTY.
- This is free software, and you are welcome to redistribute it under the
- terms of the GNU General Public License. See the LICENSE file for details.
- '
- + PROGRAM_license='
- Rootkit Hunter 1.4.2, Copyright (c) 2003-2014, Michael Boelen
- Currently under active development by the Rootkit Hunter project team.
- Please review your rkhunter.conf before using.
- Please review the documentation before posting bug reports or questions.
- To report bugs, obtain updates, or provide patches or comments, please go to:
- http://rkhunter.sourceforge.net
- To ask questions about rkhunter, please use the rkhunter-users mailing list.
- Note this is a moderated list: please subscribe before posting.
- Rootkit Hunter comes with ABSOLUTELY NO WARRANTY.
- This is free software, and you are welcome to redistribute it under the
- terms of the GNU General Public License. See the LICENSE file for details.
- '
- + LEAVE=0
- + ERRCODE=0
- + CRONJOB=0
- + CHECK=0
- + CATLOGFILE=0
- + NOLOG=0
- + RKHLOGFILE=''
- + DFLT_LOGFILE=/var/log/rkhunter.log
- + APPEND_LOG=0
- + APPEND_OPT=0
- + COPY_LOG_ON_ERROR=0
- + USE_SYSLOG=''
- + SYSLOG_DFLT_PRIO=authpriv.notice
- + NOMOW=0
- + MAILONWARNING=''
- + HASH_FUNC=''
- + OLD_HASH_FUNC=''
- + PKGMGR=''
- + OLD_PKGMGR=''
- + OLD_ATTRUPD=''
- + HASH_OPT=0
- + SHA_SIZE=0
- + HASH_FLD_IDX=1
- + PROP_DIR_LIST=''
- + PROP_FILE_LIST=''
- + PROP_FILE_LIST_COUNT=0
- + PROP_FILE_LIST_TOTAL=0
- + PRELINKED=0
- + PRELINK_CMD=''
- + PRELINK_HASH=''
- + PKGMGR_MD5_HASH=''
- + MD5_CMD=''
- + EPOCH_DATE_CMD=''
- + PKGMGRNOVRFY=''
- + UPDATE=0
- + PROP_UPDATE=0
- + PROPUPD_OPT=''
- + VERSIONCHECK=0
- + COLORS=1
- + CLRSET2=0
- + WLIST_IS_WHITE=0
- + AUTO_X_DTCT=0
- + AUTO_X_OPT=0
- + QUIET=0
- + SHOWWARNINGSONLY=0
- + HASH_CHECK_ENABLED=0
- + SKIP_HASH_MSG=0
- + RKHTMPDIR=''
- + DB_PATH=''
- + CONFIGFILE=''
- + LOCALCONFIGFILE=''
- + LOCALCONFIGDIR=''
- + LOCALCONFDIRCOUNT=0
- + LOCALCONFDIRFILES=''
- + BINPATHS=''
- + DFLT_BINPATHS='/bin /usr/bin /sbin /usr/sbin /usr/local/bin /usr/local/sbin /usr/libexec /usr/local/libexec'
- + BINDIR_OPT=0
- + BINISLINK=0
- + ID_CMD=id
- + SKIP_KEY_PRESS=0
- + GREP_OPT=''
- + BSDOS=0
- + SUNOS=0
- + IRIXOS=0
- + MACOSX=0
- + LINUXOS=0
- + BSDOS=1
- + HASH_FLD_IDX=4
- + GREP_OPT=-a
- + OS_CHANGED=0
- + WARN_ON_OS_CHANGE=1
- + UPDT_ON_OS_CHANGE=0
- + ALLOW_SSH_PROT_V1=0
- + ALLOW_SSH_ROOT_USER=''
- + SSH_CONFIG_DIR=''
- + ALLOW_SYSLOG_REMOTE_LOGGING=0
- + SYSLOG_CONFIG_FILE=''
- + ROOTKIT_COUNT=0
- + ROOTKIT_FAILED_COUNT=0
- + ROOTKIT_FAILED_NAMES=''
- + PROP_FAILED_COUNT=0
- + SUMMARY_PROP_REQCMDS=0
- + APPS_COUNT=0
- + APPS_TOTAL_COUNT=0
- + APPS_FAILED_COUNT=0
- + BEGINTIME=0
- + TOTAL_SCANTIME=''
- + WARNING_COUNT=0
- + KSYMS_FILE=''
- + CMD_LINE='/usr/local/bin/rkhunter --enable filesystem --check --debug'
- + tr : ' '
- + echo /sbin:/bin:/usr/sbin:/usr/bin:/usr/games:/usr/local/sbin:/usr/local/bin:/home/mike/bin
- + RKHROOTPATH='/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /home/mike/bin'
- + CMDLIST='basename diff dirname file find ifconfig ip ipcs ldd lsattr lsmod lsof mktemp netstat perl pgrep ps pwd readlink stat strings'
- + ABSOLUTELY_REQUIRED_CMDS='cut egrep grep sed tail tr'
- + REQCMDS='awk cat chmod chown cp cut date egrep grep head ls mv sed sort tail touch tr uname uniq wc'
- + WEBCMDLIST='wget curl elinks links lynx bget GET'
- + RKHWEBCMD=''
- + RKHWEBCMD_OPTS=''
- + RKHWEBCMD_BASE=''
- + HOST_NAME=''
- + RET_CODE=0
- + LANGUAGE=''
- + UPDATE_LANG=''
- + LOCALE_CMD=''
- + ICONV_CMD=''
- + RKHCHRMAP=''
- + RKHCHKLOCALE=0
- + KNOWN_TESTS='strings properties hashes scripts immutable attributes
- deleted_files packet_cap_apps apps rootkits known_rkts
- additional_rkts malware local_host network passwd_changes
- group_changes possible_rkt_files possible_rkt_strings
- system_commands shared_libs shared_libs_path running_procs
- hidden_procs trojans other_malware os_specific startup_malware
- startup_files group_accounts system_configs filesystem suspscan
- ports hidden_ports promisc loaded_modules avail_modules'
- + GROUPED_TESTS='system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- properties:hashes:scripts:immutable:attributes
- shared_libs:shared_libs_path
- rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- additional_rkts:possible_rkt_files:possible_rkt_strings
- network:packet_cap_apps:ports:hidden_ports:promisc
- malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- startup_files:startup_malware
- os_specific:loaded_modules:avail_modules
- group_accounts:passwd_changes:group_changes'
- + KNOWN_ROOTKITS='55808 Trojan - Variant A, AjaKit, aPa Kit, Adore, Apache Worm, Ambient (ark),
- Balaur, BeastKit, beX2, BOBKit, Boonana (Koobface.A), cb, CiNIK Worm (Slapper.B variant), CX,
- Danny-Boy'\''s Abuse Kit, Devil, Dica, Dreams, Duarawkz, Enye LKM, Flea Linux, FreeBSD, Fu,
- Fuck`it, GasKit, Heroin LKM, HjC Kit, ignoKit, iLLogiC, Inqtana-A, Inqtana-B, Inqtana-C,
- IntoXonia-NG, Irix, Jynx, KBeast, Kitko, Knark, ld-linuxv.so, Li0n Worm, Lockit/LJK2, Mood-NT, MRK, Ni0,
- Ohhara, Optic Kit (Tux), OSXRK, Oz, Phalanx, Phalanx2, Portacelo, R3dstorm Toolkit,
- RH-Sharpe'\''s, RSHA'\''s, Scalper Worm, Shutdown, SHV4, SHV5, Sin, SInAR, Slapper,
- Sneakin, Solaris Wanuk, Spanish, Suckit, SunOS / NSDAP, SunOS Rootkit, Superkit, TBD (Telnet BackDoor),
- TeLeKiT, Togroot, T0rn, trNkit, Trojanit Kit, Turtle2, Tuxtendo, URK, Vampire, VcKit, Volc, w00tkit,
- weaponX, Xzibit, X-Org SunOS, zaRwT.KiT, ZK'
- + LIST_MODULES='File::stat Getopt::Long Crypt::RIPEMD160 Digest::MD5 Digest::SHA Digest::SHA1 Digest::SHA256
- Digest::SHA::PurePerl Digest::Whirlpool LWP URI HTTP::Status HTTP::Date Socket Carp'
- + SPACE_LIST_OPTS='ALLOWPROMISCIF APP_WHITELIST BINDIR DISABLE_TESTS EMPTY_LOGFILES ENABLE_TESTS
- IGNORE_PRELINK_DEP_ERR INETD_ALLOWED_SVC MAIL-ON-WARNING MISSING_LOGFILES
- PORT_WHITELIST PWDLESS_ACCOUNTS SHARED_LIB_WHITELIST STARTUP_PATHS SUSPSCAN_DIRS
- SYSLOG_CONFIG_FILE UID0_ACCOUNTS UNHIDE_TESTS UNHIDETCP_OPTS UPDATE_LANG
- XINETD_ALLOWED_SVC'
- + echo ALLOWPROMISCIF APP_WHITELIST BINDIR DISABLE_TESTS EMPTY_LOGFILES ENABLE_TESTS IGNORE_PRELINK_DEP_ERR INETD_ALLOWED_SVC MAIL-ON-WARNING MISSING_LOGFILES PORT_WHITELIST PWDLESS_ACCOUNTS SHARED_LIB_WHITELIST STARTUP_PATHS SUSPSCAN_DIRS SYSLOG_CONFIG_FILE UID0_ACCOUNTS UNHIDE_TESTS UNHIDETCP_OPTS UPDATE_LANG XINETD_ALLOWED_SVC
- + SPACE_LIST_OPTS=' ALLOWPROMISCIF APP_WHITELIST BINDIR DISABLE_TESTS EMPTY_LOGFILES ENABLE_TESTS IGNORE_PRELINK_DEP_ERR INETD_ALLOWED_SVC MAIL-ON-WARNING MISSING_LOGFILES PORT_WHITELIST PWDLESS_ACCOUNTS SHARED_LIB_WHITELIST STARTUP_PATHS SUSPSCAN_DIRS SYSLOG_CONFIG_FILE UID0_ACCOUNTS UNHIDE_TESTS UNHIDETCP_OPTS UPDATE_LANG XINETD_ALLOWED_SVC '
- + NEWLINE_LIST_OPTS='ALLOWDEVFILE ALLOWHIDDENDIR ALLOWHIDDENFILE ALLOWPROCDELFILE ALLOWPROCLISTEN
- ATTRWHITELIST EXCLUDE_USER_FILEPROP_FILES_DIRS EXISTWHITELIST IMMUTWHITELIST
- PKGMGR_NO_VRFY PORT_PATH_WHITELIST RTKT_DIR_WHITELIST RTKT_FILE_WHITELIST
- SCRIPTWHITELIST USER_FILEPROP_FILES_DIRS WRITEWHITELIST'
- + echo ALLOWDEVFILE ALLOWHIDDENDIR ALLOWHIDDENFILE ALLOWPROCDELFILE ALLOWPROCLISTEN ATTRWHITELIST EXCLUDE_USER_FILEPROP_FILES_DIRS EXISTWHITELIST IMMUTWHITELIST PKGMGR_NO_VRFY PORT_PATH_WHITELIST RTKT_DIR_WHITELIST RTKT_FILE_WHITELIST SCRIPTWHITELIST USER_FILEPROP_FILES_DIRS WRITEWHITELIST
- + NEWLINE_LIST_OPTS=' ALLOWDEVFILE ALLOWHIDDENDIR ALLOWHIDDENFILE ALLOWPROCDELFILE ALLOWPROCLISTEN ATTRWHITELIST EXCLUDE_USER_FILEPROP_FILES_DIRS EXISTWHITELIST IMMUTWHITELIST PKGMGR_NO_VRFY PORT_PATH_WHITELIST RTKT_DIR_WHITELIST RTKT_FILE_WHITELIST SCRIPTWHITELIST USER_FILEPROP_FILES_DIRS WRITEWHITELIST '
- + ENABLE_TESTS=''
- + DISABLE_TESTS=''
- + CL_ENABLE_TESTS=''
- + CL_DISABLE_TESTS=''
- + CONFIG_DISABLE_TESTS=''
- + ENDIS_OPT=0
- + ENABLE_OPT=0
- + USECF=1
- + LIST_OPT=''
- + BLANK_LINE=' '
- + NOTTY=0
- + SHOW_SUMMARY=1
- + SHOW_SUMMARY_OPT=0
- + SHOW_SUMMARY_TIME=3
- + SHOW_SUMMARY_WARNINGS_NUMBER=0
- + VERBOSE_LOGGING=1
- + ORIGIFS='
- '
- + RKHIFS='
- '
- + IFSNL='
- '
- + IFS='
- '
- + STARTUP_PATHS=''
- + STARTUP_PATHS_LOGGED=0
- + INETD_CONF_PATH=/etc/inetd.conf
- + INETDALLOWEDSVCS=''
- + XINETD_CONF_PATH=/etc/xinetd.conf
- + XINETDALLOWEDSVCS=''
- + UPDATE_ONLY=0
- + RKHLANGUPDT=0
- + ROTATE_MIRRORS=1
- + UPDATE_MIRRORS=1
- + MIRRORS_MODE=0
- + SUSPSCAN_DEBUG=0
- + USE_RUNCON=0
- + SELINUX_ENABLED=0
- + PORT_WHITELIST=''
- + PORT_PATH_WHITELIST=''
- + PORT_WHITELIST_ALL_TRUSTED=0
- + SHADOW_FILE=''
- + HAVE_TCB_SHADOW=0
- + OS_VERSION_FILE=''
- + RTKT_DIR_WHITELIST=''
- + RTKT_FILE_WHITELIST=''
- + RKHDAT_FILE=''
- + RKH_FILEPROP_LIST=''
- + HAVE_READLINK=0
- + PRELINK_DEP_ERR_CMDS=''
- + USER_FILE_LIST=''
- + USER_SIMPLE_FILE_LIST=''
- + USER_DIR_LIST=''
- + USER_EXCLUDE_PROP=''
- + SHARED_LIB_WHITELIST=''
- + USE_LOCKING=0
- + LOCK_TIMEOUT=0
- + SHOW_LOCK_MSGS=1
- + UNLOCK=0
- + EXISTWHITELIST=''
- + CONFIG_CHECK=0
- + IFWLIST=''
- + ALLOWPROCLIST_OPT=''
- + [ 4 -eq 0 ]
- + [ 4 -ge 1 ]
- + RKHTMPVAR=filesystem
- + shift
- + CHECK=1
- + ENDIS_OPT=1
- + ENABLE_OPT=1
- + CL_ENABLE_TESTS=' filesystem'
- + [ -z filesystem ]
- + shift
- + [ 2 -ge 1 ]
- + CHECK=1
- + shift
- + [ 1 -ge 1 ]
- + SKIP_KEY_PRESS=1
- + shift
- + [ 0 -ge 1 ]
- + [ 0 -eq 1 ]
- + id -u
- + RKHTMPVAR=0
- + [ -z 0 ]
- + [ -z 0 ]
- + [ 0 != 0 -a 0 != root ]
- + [ 1 -eq 1 ]
- + echo filesystem
- + CL_ENABLE_TESTS=filesystem
- + echo
- + CL_DISABLE_TESTS=''
- + test -z ''
- + USECF=1
- + test 0 -eq 1 -a 1 -eq 0 -a 0 -eq 0 -a 0 -eq 0
- + check_required_commands 1
- + LEAVE=0
- + [ 1 -eq 1 ]
- + CMDDIR='/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /home/mike/bin'
- + CMDNAMES='cut egrep grep sed tail tr'
- + SEEN=0
- + [ -f /sbin/cut -a -x /sbin/cut ]
- + [ -f /bin/cut -a -x /bin/cut ]
- + [ -f /usr/sbin/cut -a -x /usr/sbin/cut ]
- + [ -f /usr/bin/cut -a -x /usr/bin/cut ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/egrep -a -x /sbin/egrep ]
- + [ -f /bin/egrep -a -x /bin/egrep ]
- + [ -f /usr/sbin/egrep -a -x /usr/sbin/egrep ]
- + [ -f /usr/bin/egrep -a -x /usr/bin/egrep ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/grep -a -x /sbin/grep ]
- + [ -f /bin/grep -a -x /bin/grep ]
- + [ -f /usr/sbin/grep -a -x /usr/sbin/grep ]
- + [ -f /usr/bin/grep -a -x /usr/bin/grep ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/sed -a -x /sbin/sed ]
- + [ -f /bin/sed -a -x /bin/sed ]
- + [ -f /usr/sbin/sed -a -x /usr/sbin/sed ]
- + [ -f /usr/bin/sed -a -x /usr/bin/sed ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/tail -a -x /sbin/tail ]
- + [ -f /bin/tail -a -x /bin/tail ]
- + [ -f /usr/sbin/tail -a -x /usr/sbin/tail ]
- + [ -f /usr/bin/tail -a -x /usr/bin/tail ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/tr -a -x /sbin/tr ]
- + [ -f /bin/tr -a -x /bin/tr ]
- + [ -f /usr/sbin/tr -a -x /usr/sbin/tr ]
- + [ -f /usr/bin/tr -a -x /usr/bin/tr ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + [ 0 -eq 1 ]
- + return
- + [ -z '' ]
- + [ -f /usr/local/etc/rkhunter.conf ]
- + CONFIGFILE=/usr/local/etc/rkhunter.conf
- + [ ! -f /usr/local/etc/rkhunter.conf ]
- + [ ! -r /usr/local/etc/rkhunter.conf ]
- + [ ! -s /usr/local/etc/rkhunter.conf ]
- + echo /usr/local/etc/rkhunter.conf
- + sed -e 's:/[^/]*$::'
- + RKHTMPVAR=/usr/local/etc
- + test -f /usr/local/etc/rkhunter.conf.local -a ! -h /usr/local/etc/rkhunter.conf.local -a -r /usr/local/etc/rkhunter.conf.local
- + [ -d /usr/local/etc/rkhunter.d ]
- + get_configfile_options
- + get_bindir_option
- + LEAVE=0
- + [ 0 -eq 1 ]
- + get_option space-list BINDIR
- + OPTMULTI=space-list
- + OPTNAME=BINDIR
- + ERRCODE=0
- + [ -z space-list -o -z BINDIR ]
- + grep -h ^BINDIR= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + BINPATHS=''
- + [ 0 -eq 0 ]
- + [ -z '' ]
- + BINPATHS='/bin /usr/bin /sbin /usr/sbin /usr/local/bin /usr/local/sbin /usr/libexec /usr/local/libexec'
- + [ 0 -eq 1 -o 0 -eq 1 -o FreeBSD = AIX ]
- + add_extra_dirs
- + EXTRA_DIRS=''
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + test -d /usr/pkg
- + test -d /opt
- + test -d /usr/opt
- + return
- + BINPATHS='/bin /usr/bin /sbin /usr/sbin /usr/local/bin /usr/local/sbin /usr/libexec /usr/local/libexec'
- + [ 0 -eq 0 ]
- + RKHTMPVAR=''
- + PREPEND_PATHS=''
- + echo /bin
- + grep '^\+'
- + [ -n '' ]
- + echo /usr/bin
- + grep '^\+'
- + [ -n '' ]
- + echo /sbin
- + grep '^\+'
- + [ -n '' ]
- + grep '^\+'
- + echo /usr/sbin
- + [ -n '' ]
- + grep '^\+'
- + echo /usr/local/bin
- + [ -n '' ]
- + echo /usr/local/sbin
- + grep '^\+'
- + [ -n '' ]
- + echo /usr/libexec
- + grep '^\+'
- + [ -n '' ]
- + echo /usr/local/libexec
- + grep '^\+'
- + [ -n '' ]
- + echo
- + PREPEND_PATHS=''
- + grep '^\+'
- + echo /sbin
- + [ -n '' ]
- + grep ^/
- + echo /sbin
- + [ -z /sbin ]
- + [ -e /sbin ]
- + [ -d /sbin ]
- + test -h /sbin
- + echo /sbin
- + sed -e 's:/$::'
- + tr -s /
- + DIR=/sbin
- + echo ' '
- + grep ' /sbin '
- + [ -z '' ]
- + RKHTMPVAR=' /sbin'
- + grep '^\+'
- + echo /bin
- + [ -n '' ]
- + grep ^/
- + echo /bin
- + [ -z /bin ]
- + [ -e /bin ]
- + [ -d /bin ]
- + test -h /bin
- + echo /bin
- + sed -e 's:/$::'
- + tr -s /
- + DIR=/bin
- + echo ' /sbin '
- + grep ' /bin '
- + [ -z '' ]
- + RKHTMPVAR=' /sbin /bin'
- + grep '^\+'
- + echo /usr/sbin
- + [ -n '' ]
- + grep ^/
- + echo /usr/sbin
- + [ -z /usr/sbin ]
- + [ -e /usr/sbin ]
- + [ -d /usr/sbin ]
- + test -h /usr/sbin
- + echo /usr/sbin
- + tr -s /
- + sed -e 's:/$::'
- + DIR=/usr/sbin
- + echo ' /sbin /bin '
- + grep ' /usr/sbin '
- + [ -z '' ]
- + RKHTMPVAR=' /sbin /bin /usr/sbin'
- + grep '^\+'
- + echo /usr/bin
- + [ -n '' ]
- + echo /usr/bin
- + grep ^/
- + [ -z /usr/bin ]
- + [ -e /usr/bin ]
- + [ -d /usr/bin ]
- + test -h /usr/bin
- + echo /usr/bin
- + sed -e 's:/$::'
- + tr -s /
- + DIR=/usr/bin
- + echo ' /sbin /bin /usr/sbin '
- + grep ' /usr/bin '
- + [ -z '' ]
- + RKHTMPVAR=' /sbin /bin /usr/sbin /usr/bin'
- + echo /usr/games
- + grep '^\+'
- + [ -n '' ]
- + echo /usr/games
- + grep ^/
- + [ -z /usr/games ]
- + [ -e /usr/games ]
- + [ -d /usr/games ]
- + test -h /usr/games
- + tr -s /
- + sed -e 's:/$::'
- + echo /usr/games
- + DIR=/usr/games
- + grep ' /usr/games '
- + echo ' /sbin /bin /usr/sbin /usr/bin '
- + [ -z '' ]
- + RKHTMPVAR=' /sbin /bin /usr/sbin /usr/bin /usr/games'
- + echo /usr/local/sbin
- + grep '^\+'
- + [ -n '' ]
- + echo /usr/local/sbin
- + grep ^/
- + [ -z /usr/local/sbin ]
- + [ -e /usr/local/sbin ]
- + [ -d /usr/local/sbin ]
- + test -h /usr/local/sbin
- + tr -s /
- + sed -e 's:/$::'
- + echo /usr/local/sbin
- + DIR=/usr/local/sbin
- + echo ' /sbin /bin /usr/sbin /usr/bin /usr/games '
- + grep ' /usr/local/sbin '
- + [ -z '' ]
- + RKHTMPVAR=' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin'
- + echo /usr/local/bin
- + grep '^\+'
- + [ -n '' ]
- + echo /usr/local/bin
- + grep ^/
- + [ -z /usr/local/bin ]
- + [ -e /usr/local/bin ]
- + [ -d /usr/local/bin ]
- + test -h /usr/local/bin
- + tr -s /
- + sed -e 's:/$::'
- + echo /usr/local/bin
- + DIR=/usr/local/bin
- + echo ' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin '
- + grep ' /usr/local/bin '
- + [ -z '' ]
- + RKHTMPVAR=' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin'
- + echo /home/mike/bin
- + grep '^\+'
- + [ -n '' ]
- + echo /home/mike/bin
- + grep ^/
- + [ -z /home/mike/bin ]
- + [ -e /home/mike/bin ]
- + grep '^\+'
- + echo /bin
- + [ -n '' ]
- + echo /bin
- + grep ^/
- + [ -z /bin ]
- + [ -e /bin ]
- + [ -d /bin ]
- + test -h /bin
- + echo /bin
- + sed -e 's:/$::'
- + tr -s /
- + DIR=/bin
- + grep ' /bin '
- + echo ' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin '
- + [ -z ' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin ' ]
- + grep '^\+'
- + echo /usr/bin
- + [ -n '' ]
- + echo /usr/bin
- + grep ^/
- + [ -z /usr/bin ]
- + [ -e /usr/bin ]
- + [ -d /usr/bin ]
- + test -h /usr/bin
- + echo /usr/bin
- + sed -e 's:/$::'
- + tr -s /
- + DIR=/usr/bin
- + grep ' /usr/bin '
- + echo ' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin '
- + [ -z ' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin ' ]
- + echo /sbin
- + grep '^\+'
- + [ -n '' ]
- + echo /sbin
- + grep ^/
- + [ -z /sbin ]
- + [ -e /sbin ]
- + [ -d /sbin ]
- + test -h /sbin
- + tr -s /
- + sed -e 's:/$::'
- + echo /sbin
- + DIR=/sbin
- + grep ' /sbin '
- + echo ' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin '
- + [ -z ' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin ' ]
- + echo /usr/sbin
- + grep '^\+'
- + [ -n '' ]
- + echo /usr/sbin
- + grep ^/
- + [ -z /usr/sbin ]
- + [ -e /usr/sbin ]
- + [ -d /usr/sbin ]
- + test -h /usr/sbin
- + tr -s /
- + sed -e 's:/$::'
- + echo /usr/sbin
- + DIR=/usr/sbin
- + echo ' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin '
- + grep ' /usr/sbin '
- + [ -z ' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin ' ]
- + echo /usr/local/bin
- + grep '^\+'
- + [ -n '' ]
- + echo /usr/local/bin
- + grep ^/
- + [ -z /usr/local/bin ]
- + [ -e /usr/local/bin ]
- + [ -d /usr/local/bin ]
- + test -h /usr/local/bin
- + tr -s /
- + sed -e 's:/$::'
- + echo /usr/local/bin
- + DIR=/usr/local/bin
- + echo ' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin '
- + grep ' /usr/local/bin '
- + [ -z ' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin ' ]
- + echo /usr/local/sbin
- + grep '^\+'
- + [ -n '' ]
- + grep ^/
- + echo /usr/local/sbin
- + [ -z /usr/local/sbin ]
- + [ -e /usr/local/sbin ]
- + [ -d /usr/local/sbin ]
- + test -h /usr/local/sbin
- + echo /usr/local/sbin
- + tr -s /
- + sed -e 's:/$::'
- + DIR=/usr/local/sbin
- + echo ' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin '
- + grep ' /usr/local/sbin '
- + [ -z ' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin ' ]
- + echo /usr/libexec
- + grep '^\+'
- + [ -n '' ]
- + echo /usr/libexec
- + grep ^/
- + [ -z /usr/libexec ]
- + [ -e /usr/libexec ]
- + [ -d /usr/libexec ]
- + test -h /usr/libexec
- + echo /usr/libexec
- + tr -s /
- + sed -e 's:/$::'
- + DIR=/usr/libexec
- + echo ' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin '
- + grep ' /usr/libexec '
- + [ -z '' ]
- + RKHTMPVAR=' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec'
- + echo /usr/local/libexec
- + grep '^\+'
- + [ -n '' ]
- + grep ^/
- + echo /usr/local/libexec
- + [ -z /usr/local/libexec ]
- + [ -e /usr/local/libexec ]
- + [ -d /usr/local/libexec ]
- + test -h /usr/local/libexec
- + echo /usr/local/libexec
- + tr -s /
- + sed -e 's:/$::'
- + DIR=/usr/local/libexec
- + echo ' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec '
- + grep ' /usr/local/libexec '
- + [ -z '' ]
- + RKHTMPVAR=' /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'
- + [ 0 -eq 0 ]
- + echo /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec
- + BINPATHS='/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'
- + test 0 -eq 1
- + RKHTMPVAR=BINDIR
- + check_paths BINPATHS BINDIR NOWILD
- + OPT_VALUE_OPT=BINPATHS
- + OPT_NAME=BINDIR
- + STRICT=NOWILD
- + test -z BINDIR
- + eval echo '"$BINPATHS"'
- + echo '/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'
- + OPT_VALUE='/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'
- + ERRCODE=0
- + test -z '/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'
- + MUSTEXIST=0
- + NOWILD=0
- + NOLINK=0
- + NOWILD=1
- + grep ^-
- + echo '/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec '
- + RKHTMPVAR=''
- + [ -n '' ]
- + [ 1 -eq 1 ]
- + egrep '(^|[^\])[][?*{}]'
- + echo '/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'
- + RKHTMPVAR=''
- + [ -n '' ]
- + echo ' ALLOWDEVFILE ALLOWHIDDENDIR ALLOWHIDDENFILE ALLOWPROCDELFILE ALLOWPROCLISTEN ATTRWHITELIST EXCLUDE_USER_FILEPROP_FILES_DIRS EXISTWHITELIST IMMUTWHITELIST PKGMGR_NO_VRFY PORT_PATH_WHITELIST RTKT_DIR_WHITELIST RTKT_FILE_WHITELIST SCRIPTWHITELIST USER_FILEPROP_FILES_DIRS WRITEWHITELIST '
- + grep ' BINDIR '
- + [ -n '' ]
- + test -z /sbin
- + echo /sbin
- + egrep '(^[./]*$)|[;&]|/\.\./'
- + [ -n '' ]
- + grep '^[^/].*/'
- + echo /sbin
- + [ -n '' ]
- + grep ^/
- + echo /sbin
- + [ -z /sbin ]
- + [ -f /sbin ]
- + [ -d /sbin ]
- + test BINDIR = ALLOWHIDDENFILE -a -h /sbin
- + test -z /bin
- + echo /bin
- + egrep '(^[./]*$)|[;&]|/\.\./'
- + [ -n '' ]
- + echo /bin
- + grep '^[^/].*/'
- + [ -n '' ]
- + grep ^/
- + echo /bin
- + [ -z /bin ]
- + [ -f /bin ]
- + [ -d /bin ]
- + test BINDIR = ALLOWHIDDENFILE -a -h /bin
- + test -z /usr/sbin
- + egrep '(^[./]*$)|[;&]|/\.\./'
- + echo /usr/sbin
- + [ -n '' ]
- + echo /usr/sbin
- + grep '^[^/].*/'
- + [ -n '' ]
- + echo /usr/sbin
- + grep ^/
- + [ -z /usr/sbin ]
- + [ -f /usr/sbin ]
- + [ -d /usr/sbin ]
- + test BINDIR = ALLOWHIDDENFILE -a -h /usr/sbin
- + test -z /usr/bin
- + egrep '(^[./]*$)|[;&]|/\.\./'
- + echo /usr/bin
- + [ -n '' ]
- + echo /usr/bin
- + grep '^[^/].*/'
- + [ -n '' ]
- + echo /usr/bin
- + grep ^/
- + [ -z /usr/bin ]
- + [ -f /usr/bin ]
- + [ -d /usr/bin ]
- + test BINDIR = ALLOWHIDDENFILE -a -h /usr/bin
- + test -z /usr/games
- + echo /usr/games
- + egrep '(^[./]*$)|[;&]|/\.\./'
- + [ -n '' ]
- + grep '^[^/].*/'
- + echo /usr/games
- + [ -n '' ]
- + echo /usr/games
- + grep ^/
- + [ -z /usr/games ]
- + [ -f /usr/games ]
- + [ -d /usr/games ]
- + test BINDIR = ALLOWHIDDENFILE -a -h /usr/games
- + test -z /usr/local/sbin
- + echo /usr/local/sbin
- + egrep '(^[./]*$)|[;&]|/\.\./'
- + [ -n '' ]
- + grep '^[^/].*/'
- + echo /usr/local/sbin
- + [ -n '' ]
- + grep ^/
- + echo /usr/local/sbin
- + [ -z /usr/local/sbin ]
- + [ -f /usr/local/sbin ]
- + [ -d /usr/local/sbin ]
- + test BINDIR = ALLOWHIDDENFILE -a -h /usr/local/sbin
- + test -z /usr/local/bin
- + echo /usr/local/bin
- + egrep '(^[./]*$)|[;&]|/\.\./'
- + [ -n '' ]
- + echo /usr/local/bin
- + grep '^[^/].*/'
- + [ -n '' ]
- + grep ^/
- + echo /usr/local/bin
- + [ -z /usr/local/bin ]
- + [ -f /usr/local/bin ]
- + [ -d /usr/local/bin ]
- + test BINDIR = ALLOWHIDDENFILE -a -h /usr/local/bin
- + test -z /usr/libexec
- + egrep '(^[./]*$)|[;&]|/\.\./'
- + echo /usr/libexec
- + [ -n '' ]
- + echo /usr/libexec
- + grep '^[^/].*/'
- + [ -n '' ]
- + echo /usr/libexec
- + grep ^/
- + [ -z /usr/libexec ]
- + [ -f /usr/libexec ]
- + [ -d /usr/libexec ]
- + test BINDIR = ALLOWHIDDENFILE -a -h /usr/libexec
- + test -z /usr/local/libexec
- + egrep '(^[./]*$)|[;&]|/\.\./'
- + echo /usr/local/libexec
- + [ -n '' ]
- + echo /usr/local/libexec
- + grep '^[^/].*/'
- + [ -n '' ]
- + echo /usr/local/libexec
- + grep ^/
- + [ -z /usr/local/libexec ]
- + [ -f /usr/local/libexec ]
- + [ -d /usr/local/libexec ]
- + test BINDIR = ALLOWHIDDENFILE -a -h /usr/local/libexec
- + IFS='
- '
- + return
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + return
- + get_scriptdir_option
- + LEAVE=0
- + get_option single SCRIPTDIR
- + OPTMULTI=single
- + OPTNAME=SCRIPTDIR
- + ERRCODE=0
- + [ -z single -o -z SCRIPTDIR ]
- + grep -h ^SCRIPTDIR= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=SCRIPTDIR=/usr/local/lib/rkhunter/scripts
- + [ -z SCRIPTDIR=/usr/local/lib/rkhunter/scripts ]
- + tail -n 1
- + sed -e s/SCRIPTDIR=//
- + echo SCRIPTDIR=/usr/local/lib/rkhunter/scripts
- + OPTVAR=/usr/local/lib/rkhunter/scripts
- + [ -z /usr/local/lib/rkhunter/scripts -o /usr/local/lib/rkhunter/scripts = '""' -o /usr/local/lib/rkhunter/scripts = \'\' ]
- + echo /usr/local/lib/rkhunter/scripts
- + tr -d \'
- + tr -d '" '
- + OPTVAR=/usr/local/lib/rkhunter/scripts
- + echo /usr/local/lib/rkhunter/scripts
- + return 0
- + SCRIPT_PATH=/usr/local/lib/rkhunter/scripts
- + [ 0 -eq 0 ]
- + check_paths SCRIPT_PATH SCRIPTDIR 'NOWILD EXIST NOBROKENLINK'
- + OPT_VALUE_OPT=SCRIPT_PATH
- + OPT_NAME=SCRIPTDIR
- + STRICT='NOWILD EXIST NOBROKENLINK'
- + test -z SCRIPTDIR
- + eval echo '"$SCRIPT_PATH"'
- + echo /usr/local/lib/rkhunter/scripts
- + OPT_VALUE=/usr/local/lib/rkhunter/scripts
- + ERRCODE=0
- + test -z /usr/local/lib/rkhunter/scripts
- + MUSTEXIST=0
- + NOWILD=0
- + NOLINK=0
- + NOWILD=1
- + MUSTEXIST=1
- + NOLINK=1
- + grep ^-
- + echo '/usr/local/lib/rkhunter/scripts '
- + RKHTMPVAR=''
- + [ -n '' ]
- + [ 1 -eq 1 ]
- + echo /usr/local/lib/rkhunter/scripts
- + egrep '(^|[^\])[][?*{}]'
- + RKHTMPVAR=''
- + [ -n '' ]
- + echo ' ALLOWDEVFILE ALLOWHIDDENDIR ALLOWHIDDENFILE ALLOWPROCDELFILE ALLOWPROCLISTEN ATTRWHITELIST EXCLUDE_USER_FILEPROP_FILES_DIRS EXISTWHITELIST IMMUTWHITELIST PKGMGR_NO_VRFY PORT_PATH_WHITELIST RTKT_DIR_WHITELIST RTKT_FILE_WHITELIST SCRIPTWHITELIST USER_FILEPROP_FILES_DIRS WRITEWHITELIST '
- + grep ' SCRIPTDIR '
- + [ -n '' ]
- + test -z /usr/local/lib/rkhunter/scripts
- + egrep '(^[./]*$)|[;&]|/\.\./'
- + echo /usr/local/lib/rkhunter/scripts
- + [ -n '' ]
- + grep '^[^/].*/'
- + echo /usr/local/lib/rkhunter/scripts
- + [ -n '' ]
- + echo /usr/local/lib/rkhunter/scripts
- + grep ^/
- + [ -z /usr/local/lib/rkhunter/scripts ]
- + [ -f /usr/local/lib/rkhunter/scripts ]
- + [ -d /usr/local/lib/rkhunter/scripts ]
- + test SCRIPTDIR = ALLOWHIDDENFILE -a -h /usr/local/lib/rkhunter/scripts
- + IFS='
- '
- + return
- + [ 0 -eq 0 ]
- + [ -z /usr/local/lib/rkhunter/scripts ]
- + [ 0 -eq 1 ]
- + [ ! -r /usr/local/lib/rkhunter/scripts ]
- + [ 0 -eq 1 ]
- + return
- + check_required_commands 2
- + LEAVE=0
- + [ 2 -eq 1 ]
- + CMDDIR='/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'
- + CMDNAMES='awk cat chmod chown cp cut date egrep grep head ls mv sed sort tail touch tr uname uniq wc'
- + SEEN=0
- + [ -f /sbin/awk -a -x /sbin/awk ]
- + [ -f /bin/awk -a -x /bin/awk ]
- + [ -f /usr/sbin/awk -a -x /usr/sbin/awk ]
- + [ -f /usr/bin/awk -a -x /usr/bin/awk ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/cat -a -x /sbin/cat ]
- + [ -f /bin/cat -a -x /bin/cat ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/chmod -a -x /sbin/chmod ]
- + [ -f /bin/chmod -a -x /bin/chmod ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/chown -a -x /sbin/chown ]
- + [ -f /bin/chown -a -x /bin/chown ]
- + [ -f /usr/sbin/chown -a -x /usr/sbin/chown ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/cp -a -x /sbin/cp ]
- + [ -f /bin/cp -a -x /bin/cp ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/cut -a -x /sbin/cut ]
- + [ -f /bin/cut -a -x /bin/cut ]
- + [ -f /usr/sbin/cut -a -x /usr/sbin/cut ]
- + [ -f /usr/bin/cut -a -x /usr/bin/cut ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/date -a -x /sbin/date ]
- + [ -f /bin/date -a -x /bin/date ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/egrep -a -x /sbin/egrep ]
- + [ -f /bin/egrep -a -x /bin/egrep ]
- + [ -f /usr/sbin/egrep -a -x /usr/sbin/egrep ]
- + [ -f /usr/bin/egrep -a -x /usr/bin/egrep ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/grep -a -x /sbin/grep ]
- + [ -f /bin/grep -a -x /bin/grep ]
- + [ -f /usr/sbin/grep -a -x /usr/sbin/grep ]
- + [ -f /usr/bin/grep -a -x /usr/bin/grep ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/head -a -x /sbin/head ]
- + [ -f /bin/head -a -x /bin/head ]
- + [ -f /usr/sbin/head -a -x /usr/sbin/head ]
- + [ -f /usr/bin/head -a -x /usr/bin/head ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/ls -a -x /sbin/ls ]
- + [ -f /bin/ls -a -x /bin/ls ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/mv -a -x /sbin/mv ]
- + [ -f /bin/mv -a -x /bin/mv ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/sed -a -x /sbin/sed ]
- + [ -f /bin/sed -a -x /bin/sed ]
- + [ -f /usr/sbin/sed -a -x /usr/sbin/sed ]
- + [ -f /usr/bin/sed -a -x /usr/bin/sed ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/sort -a -x /sbin/sort ]
- + [ -f /bin/sort -a -x /bin/sort ]
- + [ -f /usr/sbin/sort -a -x /usr/sbin/sort ]
- + [ -f /usr/bin/sort -a -x /usr/bin/sort ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/tail -a -x /sbin/tail ]
- + [ -f /bin/tail -a -x /bin/tail ]
- + [ -f /usr/sbin/tail -a -x /usr/sbin/tail ]
- + [ -f /usr/bin/tail -a -x /usr/bin/tail ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/touch -a -x /sbin/touch ]
- + [ -f /bin/touch -a -x /bin/touch ]
- + [ -f /usr/sbin/touch -a -x /usr/sbin/touch ]
- + [ -f /usr/bin/touch -a -x /usr/bin/touch ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/tr -a -x /sbin/tr ]
- + [ -f /bin/tr -a -x /bin/tr ]
- + [ -f /usr/sbin/tr -a -x /usr/sbin/tr ]
- + [ -f /usr/bin/tr -a -x /usr/bin/tr ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/uname -a -x /sbin/uname ]
- + [ -f /bin/uname -a -x /bin/uname ]
- + [ -f /usr/sbin/uname -a -x /usr/sbin/uname ]
- + [ -f /usr/bin/uname -a -x /usr/bin/uname ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/uniq -a -x /sbin/uniq ]
- + [ -f /bin/uniq -a -x /bin/uniq ]
- + [ -f /usr/sbin/uniq -a -x /usr/sbin/uniq ]
- + [ -f /usr/bin/uniq -a -x /usr/bin/uniq ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + SEEN=0
- + [ -f /sbin/wc -a -x /sbin/wc ]
- + [ -f /bin/wc -a -x /bin/wc ]
- + [ -f /usr/sbin/wc -a -x /usr/sbin/wc ]
- + [ -f /usr/bin/wc -a -x /usr/bin/wc ]
- + SEEN=1
- + break
- + [ 1 -eq 0 ]
- + [ 0 -eq 1 ]
- + return
- + check_commands
- + LEAVE=0
- + echo basename
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=BASENAME
- + CMDNAME=BASENAME_CMD
- + get_option single BASENAME_CMD
- + OPTMULTI=single
- + OPTNAME=BASENAME_CMD
- + ERRCODE=0
- + [ -z single -o -z BASENAME_CMD ]
- + grep -h ^BASENAME_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd basename
- + CMD=basename
- + test -z basename
- + grep /
- + echo basename
- + [ -n '' ]
- + [ -f /sbin/basename -a -x /sbin/basename ]
- + [ -f /bin/basename -a -x /bin/basename ]
- + [ -f /usr/sbin/basename -a -x /usr/sbin/basename ]
- + [ -f /usr/bin/basename -a -x /usr/bin/basename ]
- + echo /usr/bin/basename
- + return
- + eval BASENAME_CMD=/usr/bin/basename
- + BASENAME_CMD=/usr/bin/basename
- + echo diff
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=DIFF
- + CMDNAME=DIFF_CMD
- + get_option single DIFF_CMD
- + OPTMULTI=single
- + OPTNAME=DIFF_CMD
- + ERRCODE=0
- + [ -z single -o -z DIFF_CMD ]
- + grep -h ^DIFF_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd diff
- + CMD=diff
- + test -z diff
- + echo diff
- + grep /
- + [ -n '' ]
- + [ -f /sbin/diff -a -x /sbin/diff ]
- + [ -f /bin/diff -a -x /bin/diff ]
- + [ -f /usr/sbin/diff -a -x /usr/sbin/diff ]
- + [ -f /usr/bin/diff -a -x /usr/bin/diff ]
- + echo /usr/bin/diff
- + return
- + eval DIFF_CMD=/usr/bin/diff
- + DIFF_CMD=/usr/bin/diff
- + echo dirname
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=DIRNAME
- + CMDNAME=DIRNAME_CMD
- + get_option single DIRNAME_CMD
- + OPTMULTI=single
- + OPTNAME=DIRNAME_CMD
- + ERRCODE=0
- + [ -z single -o -z DIRNAME_CMD ]
- + grep -h ^DIRNAME_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd dirname
- + CMD=dirname
- + test -z dirname
- + grep /
- + echo dirname
- + [ -n '' ]
- + [ -f /sbin/dirname -a -x /sbin/dirname ]
- + [ -f /bin/dirname -a -x /bin/dirname ]
- + [ -f /usr/sbin/dirname -a -x /usr/sbin/dirname ]
- + [ -f /usr/bin/dirname -a -x /usr/bin/dirname ]
- + echo /usr/bin/dirname
- + return
- + eval DIRNAME_CMD=/usr/bin/dirname
- + DIRNAME_CMD=/usr/bin/dirname
- + echo file
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=FILE
- + CMDNAME=FILE_CMD
- + get_option single FILE_CMD
- + OPTMULTI=single
- + OPTNAME=FILE_CMD
- + ERRCODE=0
- + [ -z single -o -z FILE_CMD ]
- + grep -h ^FILE_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd file
- + CMD=file
- + test -z file
- + grep /
- + echo file
- + [ -n '' ]
- + [ -f /sbin/file -a -x /sbin/file ]
- + [ -f /bin/file -a -x /bin/file ]
- + [ -f /usr/sbin/file -a -x /usr/sbin/file ]
- + [ -f /usr/bin/file -a -x /usr/bin/file ]
- + echo /usr/bin/file
- + return
- + eval FILE_CMD=/usr/bin/file
- + FILE_CMD=/usr/bin/file
- + echo find
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=FIND
- + CMDNAME=FIND_CMD
- + get_option single FIND_CMD
- + OPTMULTI=single
- + OPTNAME=FIND_CMD
- + ERRCODE=0
- + [ -z single -o -z FIND_CMD ]
- + grep -h ^FIND_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd find
- + CMD=find
- + test -z find
- + grep /
- + echo find
- + [ -n '' ]
- + [ -f /sbin/find -a -x /sbin/find ]
- + [ -f /bin/find -a -x /bin/find ]
- + [ -f /usr/sbin/find -a -x /usr/sbin/find ]
- + [ -f /usr/bin/find -a -x /usr/bin/find ]
- + echo /usr/bin/find
- + return
- + eval FIND_CMD=/usr/bin/find
- + FIND_CMD=/usr/bin/find
- + echo ifconfig
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=IFCONFIG
- + CMDNAME=IFCONFIG_CMD
- + get_option single IFCONFIG_CMD
- + OPTMULTI=single
- + OPTNAME=IFCONFIG_CMD
- + ERRCODE=0
- + [ -z single -o -z IFCONFIG_CMD ]
- + grep -h ^IFCONFIG_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd ifconfig
- + CMD=ifconfig
- + test -z ifconfig
- + echo ifconfig
- + grep /
- + [ -n '' ]
- + [ -f /sbin/ifconfig -a -x /sbin/ifconfig ]
- + echo /sbin/ifconfig
- + return
- + eval IFCONFIG_CMD=/sbin/ifconfig
- + IFCONFIG_CMD=/sbin/ifconfig
- + echo ip
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=IP
- + CMDNAME=IP_CMD
- + get_option single IP_CMD
- + OPTMULTI=single
- + OPTNAME=IP_CMD
- + ERRCODE=0
- + [ -z single -o -z IP_CMD ]
- + grep -h ^IP_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd ip
- + CMD=ip
- + test -z ip
- + echo ip
- + grep /
- + [ -n '' ]
- + [ -f /sbin/ip -a -x /sbin/ip ]
- + [ -f /bin/ip -a -x /bin/ip ]
- + [ -f /usr/sbin/ip -a -x /usr/sbin/ip ]
- + [ -f /usr/bin/ip -a -x /usr/bin/ip ]
- + [ -f /usr/games/ip -a -x /usr/games/ip ]
- + [ -f /usr/local/sbin/ip -a -x /usr/local/sbin/ip ]
- + [ -f /usr/local/bin/ip -a -x /usr/local/bin/ip ]
- + [ -f /usr/libexec/ip -a -x /usr/libexec/ip ]
- + [ -f /usr/local/libexec/ip -a -x /usr/local/libexec/ip ]
- + return
- + eval IP_CMD=
- + IP_CMD=''
- + echo ipcs
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=IPCS
- + CMDNAME=IPCS_CMD
- + get_option single IPCS_CMD
- + OPTMULTI=single
- + OPTNAME=IPCS_CMD
- + ERRCODE=0
- + [ -z single -o -z IPCS_CMD ]
- + grep -h ^IPCS_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd ipcs
- + CMD=ipcs
- + test -z ipcs
- + echo ipcs
- + grep /
- + [ -n '' ]
- + [ -f /sbin/ipcs -a -x /sbin/ipcs ]
- + [ -f /bin/ipcs -a -x /bin/ipcs ]
- + [ -f /usr/sbin/ipcs -a -x /usr/sbin/ipcs ]
- + [ -f /usr/bin/ipcs -a -x /usr/bin/ipcs ]
- + echo /usr/bin/ipcs
- + return
- + eval IPCS_CMD=/usr/bin/ipcs
- + IPCS_CMD=/usr/bin/ipcs
- + echo ldd
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=LDD
- + CMDNAME=LDD_CMD
- + get_option single LDD_CMD
- + OPTMULTI=single
- + OPTNAME=LDD_CMD
- + ERRCODE=0
- + [ -z single -o -z LDD_CMD ]
- + grep -h ^LDD_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd ldd
- + CMD=ldd
- + test -z ldd
- + echo ldd
- + grep /
- + [ -n '' ]
- + [ -f /sbin/ldd -a -x /sbin/ldd ]
- + [ -f /bin/ldd -a -x /bin/ldd ]
- + [ -f /usr/sbin/ldd -a -x /usr/sbin/ldd ]
- + [ -f /usr/bin/ldd -a -x /usr/bin/ldd ]
- + echo /usr/bin/ldd
- + return
- + eval LDD_CMD=/usr/bin/ldd
- + LDD_CMD=/usr/bin/ldd
- + echo lsattr
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=LSATTR
- + CMDNAME=LSATTR_CMD
- + get_option single LSATTR_CMD
- + OPTMULTI=single
- + OPTNAME=LSATTR_CMD
- + ERRCODE=0
- + [ -z single -o -z LSATTR_CMD ]
- + grep -h ^LSATTR_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd lsattr
- + CMD=lsattr
- + test -z lsattr
- + echo lsattr
- + grep /
- + [ -n '' ]
- + [ -f /sbin/lsattr -a -x /sbin/lsattr ]
- + [ -f /bin/lsattr -a -x /bin/lsattr ]
- + [ -f /usr/sbin/lsattr -a -x /usr/sbin/lsattr ]
- + [ -f /usr/bin/lsattr -a -x /usr/bin/lsattr ]
- + [ -f /usr/games/lsattr -a -x /usr/games/lsattr ]
- + [ -f /usr/local/sbin/lsattr -a -x /usr/local/sbin/lsattr ]
- + [ -f /usr/local/bin/lsattr -a -x /usr/local/bin/lsattr ]
- + [ -f /usr/libexec/lsattr -a -x /usr/libexec/lsattr ]
- + [ -f /usr/local/libexec/lsattr -a -x /usr/local/libexec/lsattr ]
- + return
- + eval LSATTR_CMD=
- + LSATTR_CMD=''
- + echo lsmod
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=LSMOD
- + CMDNAME=LSMOD_CMD
- + get_option single LSMOD_CMD
- + OPTMULTI=single
- + OPTNAME=LSMOD_CMD
- + ERRCODE=0
- + [ -z single -o -z LSMOD_CMD ]
- + grep -h ^LSMOD_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd lsmod
- + CMD=lsmod
- + test -z lsmod
- + echo lsmod
- + grep /
- + [ -n '' ]
- + [ -f /sbin/lsmod -a -x /sbin/lsmod ]
- + [ -f /bin/lsmod -a -x /bin/lsmod ]
- + [ -f /usr/sbin/lsmod -a -x /usr/sbin/lsmod ]
- + [ -f /usr/bin/lsmod -a -x /usr/bin/lsmod ]
- + [ -f /usr/games/lsmod -a -x /usr/games/lsmod ]
- + [ -f /usr/local/sbin/lsmod -a -x /usr/local/sbin/lsmod ]
- + [ -f /usr/local/bin/lsmod -a -x /usr/local/bin/lsmod ]
- + [ -f /usr/libexec/lsmod -a -x /usr/libexec/lsmod ]
- + [ -f /usr/local/libexec/lsmod -a -x /usr/local/libexec/lsmod ]
- + return
- + eval LSMOD_CMD=
- + LSMOD_CMD=''
- + echo lsof
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=LSOF
- + CMDNAME=LSOF_CMD
- + get_option single LSOF_CMD
- + OPTMULTI=single
- + OPTNAME=LSOF_CMD
- + ERRCODE=0
- + [ -z single -o -z LSOF_CMD ]
- + grep -h ^LSOF_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd lsof
- + CMD=lsof
- + test -z lsof
- + echo lsof
- + grep /
- + [ -n '' ]
- + [ -f /sbin/lsof -a -x /sbin/lsof ]
- + [ -f /bin/lsof -a -x /bin/lsof ]
- + [ -f /usr/sbin/lsof -a -x /usr/sbin/lsof ]
- + [ -f /usr/bin/lsof -a -x /usr/bin/lsof ]
- + [ -f /usr/games/lsof -a -x /usr/games/lsof ]
- + [ -f /usr/local/sbin/lsof -a -x /usr/local/sbin/lsof ]
- + echo /usr/local/sbin/lsof
- + return
- + eval LSOF_CMD=/usr/local/sbin/lsof
- + LSOF_CMD=/usr/local/sbin/lsof
- + echo mktemp
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=MKTEMP
- + CMDNAME=MKTEMP_CMD
- + get_option single MKTEMP_CMD
- + OPTMULTI=single
- + OPTNAME=MKTEMP_CMD
- + ERRCODE=0
- + [ -z single -o -z MKTEMP_CMD ]
- + grep -h ^MKTEMP_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd mktemp
- + CMD=mktemp
- + test -z mktemp
- + echo mktemp
- + grep /
- + [ -n '' ]
- + [ -f /sbin/mktemp -a -x /sbin/mktemp ]
- + [ -f /bin/mktemp -a -x /bin/mktemp ]
- + [ -f /usr/sbin/mktemp -a -x /usr/sbin/mktemp ]
- + [ -f /usr/bin/mktemp -a -x /usr/bin/mktemp ]
- + echo /usr/bin/mktemp
- + return
- + eval MKTEMP_CMD=/usr/bin/mktemp
- + MKTEMP_CMD=/usr/bin/mktemp
- + echo netstat
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=NETSTAT
- + CMDNAME=NETSTAT_CMD
- + get_option single NETSTAT_CMD
- + OPTMULTI=single
- + OPTNAME=NETSTAT_CMD
- + ERRCODE=0
- + [ -z single -o -z NETSTAT_CMD ]
- + grep -h ^NETSTAT_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd netstat
- + CMD=netstat
- + test -z netstat
- + echo netstat
- + grep /
- + [ -n '' ]
- + [ -f /sbin/netstat -a -x /sbin/netstat ]
- + [ -f /bin/netstat -a -x /bin/netstat ]
- + [ -f /usr/sbin/netstat -a -x /usr/sbin/netstat ]
- + [ -f /usr/bin/netstat -a -x /usr/bin/netstat ]
- + echo /usr/bin/netstat
- + return
- + eval NETSTAT_CMD=/usr/bin/netstat
- + NETSTAT_CMD=/usr/bin/netstat
- + echo perl
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=PERL
- + CMDNAME=PERL_CMD
- + get_option single PERL_CMD
- + OPTMULTI=single
- + OPTNAME=PERL_CMD
- + ERRCODE=0
- + [ -z single -o -z PERL_CMD ]
- + grep -h ^PERL_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd perl
- + CMD=perl
- + test -z perl
- + grep /
- + echo perl
- + [ -n '' ]
- + [ -f /sbin/perl -a -x /sbin/perl ]
- + [ -f /bin/perl -a -x /bin/perl ]
- + [ -f /usr/sbin/perl -a -x /usr/sbin/perl ]
- + [ -f /usr/bin/perl -a -x /usr/bin/perl ]
- + [ -f /usr/games/perl -a -x /usr/games/perl ]
- + [ -f /usr/local/sbin/perl -a -x /usr/local/sbin/perl ]
- + [ -f /usr/local/bin/perl -a -x /usr/local/bin/perl ]
- + echo /usr/local/bin/perl
- + return
- + eval PERL_CMD=/usr/local/bin/perl
- + PERL_CMD=/usr/local/bin/perl
- + echo pgrep
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=PGREP
- + CMDNAME=PGREP_CMD
- + get_option single PGREP_CMD
- + OPTMULTI=single
- + OPTNAME=PGREP_CMD
- + ERRCODE=0
- + [ -z single -o -z PGREP_CMD ]
- + grep -h ^PGREP_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd pgrep
- + CMD=pgrep
- + test -z pgrep
- + grep /
- + echo pgrep
- + [ -n '' ]
- + [ -f /sbin/pgrep -a -x /sbin/pgrep ]
- + [ -f /bin/pgrep -a -x /bin/pgrep ]
- + echo /bin/pgrep
- + return
- + eval PGREP_CMD=/bin/pgrep
- + PGREP_CMD=/bin/pgrep
- + echo ps
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=PS
- + CMDNAME=PS_CMD
- + get_option single PS_CMD
- + OPTMULTI=single
- + OPTNAME=PS_CMD
- + ERRCODE=0
- + [ -z single -o -z PS_CMD ]
- + grep -h ^PS_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd ps
- + CMD=ps
- + test -z ps
- + grep /
- + echo ps
- + [ -n '' ]
- + [ -f /sbin/ps -a -x /sbin/ps ]
- + [ -f /bin/ps -a -x /bin/ps ]
- + echo /bin/ps
- + return
- + eval PS_CMD=/bin/ps
- + PS_CMD=/bin/ps
- + echo pwd
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=PWD
- + CMDNAME=PWD_CMD
- + get_option single PWD_CMD
- + OPTMULTI=single
- + OPTNAME=PWD_CMD
- + ERRCODE=0
- + [ -z single -o -z PWD_CMD ]
- + grep -h ^PWD_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd pwd
- + CMD=pwd
- + test -z pwd
- + grep /
- + echo pwd
- + [ -n '' ]
- + [ -f /sbin/pwd -a -x /sbin/pwd ]
- + [ -f /bin/pwd -a -x /bin/pwd ]
- + echo /bin/pwd
- + return
- + eval PWD_CMD=/bin/pwd
- + PWD_CMD=/bin/pwd
- + echo readlink
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=READLINK
- + CMDNAME=READLINK_CMD
- + get_option single READLINK_CMD
- + OPTMULTI=single
- + OPTNAME=READLINK_CMD
- + ERRCODE=0
- + [ -z single -o -z READLINK_CMD ]
- + grep -h ^READLINK_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd readlink
- + CMD=readlink
- + test -z readlink
- + grep /
- + echo readlink
- + [ -n '' ]
- + [ -f /sbin/readlink -a -x /sbin/readlink ]
- + [ -f /bin/readlink -a -x /bin/readlink ]
- + [ -f /usr/sbin/readlink -a -x /usr/sbin/readlink ]
- + [ -f /usr/bin/readlink -a -x /usr/bin/readlink ]
- + echo /usr/bin/readlink
- + return
- + eval READLINK_CMD=/usr/bin/readlink
- + READLINK_CMD=/usr/bin/readlink
- + echo stat
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=STAT
- + CMDNAME=STAT_CMD
- + get_option single STAT_CMD
- + OPTMULTI=single
- + OPTNAME=STAT_CMD
- + ERRCODE=0
- + [ -z single -o -z STAT_CMD ]
- + grep -h ^STAT_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd stat
- + CMD=stat
- + test -z stat
- + grep /
- + echo stat
- + [ -n '' ]
- + [ -f /sbin/stat -a -x /sbin/stat ]
- + [ -f /bin/stat -a -x /bin/stat ]
- + [ -f /usr/sbin/stat -a -x /usr/sbin/stat ]
- + [ -f /usr/bin/stat -a -x /usr/bin/stat ]
- + echo /usr/bin/stat
- + return
- + eval STAT_CMD=/usr/bin/stat
- + STAT_CMD=/usr/bin/stat
- + echo strings
- + tr '[:lower:]' '[:upper:]'
- + CMDNAME=STRINGS
- + CMDNAME=STRINGS_CMD
- + get_option single STRINGS_CMD
- + OPTMULTI=single
- + OPTNAME=STRINGS_CMD
- + ERRCODE=0
- + [ -z single -o -z STRINGS_CMD ]
- + grep -h ^STRINGS_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CFG_CMD=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + test -z ''
- + find_cmd strings
- + CMD=strings
- + test -z strings
- + grep /
- + echo strings
- + [ -n '' ]
- + [ -f /sbin/strings -a -x /sbin/strings ]
- + [ -f /bin/strings -a -x /bin/strings ]
- + [ -f /usr/sbin/strings -a -x /usr/sbin/strings ]
- + [ -f /usr/bin/strings -a -x /usr/bin/strings ]
- + echo /usr/bin/strings
- + return
- + eval STRINGS_CMD=/usr/bin/strings
- + STRINGS_CMD=/usr/bin/strings
- + [ 0 -eq 1 ]
- + [ -n /usr/local/bin/perl -a /usr/local/bin/perl != DISABLED ]
- + [ -z /usr/bin/stat -o /usr/bin/stat = BUILTIN ]
- + [ -z /usr/bin/readlink -o /usr/bin/readlink = BUILTIN ]
- + /usr/bin/readlink -f /usr/local/lib/rkhunter/scripts/readlink.sh
- + [ -n '' ]
- + test -n /usr/bin/readlink
- + HAVE_READLINK=1
- + [ 0 -eq 1 ]
- + AWK_CMD=awk
- + echo basename
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=BASENAME
- + RKHTMPVAR=BASENAME_CMD
- + eval echo '$BASENAME_CMD'
- + echo /usr/bin/basename
- + RKHTMPVAR2=/usr/bin/basename
- + test /usr/bin/basename = DISABLED -o /usr/bin/basename = BUILTIN
- + echo diff
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=DIFF
- + RKHTMPVAR=DIFF_CMD
- + eval echo '$DIFF_CMD'
- + echo /usr/bin/diff
- + RKHTMPVAR2=/usr/bin/diff
- + test /usr/bin/diff = DISABLED -o /usr/bin/diff = BUILTIN
- + tr '[:lower:]' '[:upper:]'
- + echo dirname
- + RKHTMPVAR=DIRNAME
- + RKHTMPVAR=DIRNAME_CMD
- + eval echo '$DIRNAME_CMD'
- + echo /usr/bin/dirname
- + RKHTMPVAR2=/usr/bin/dirname
- + test /usr/bin/dirname = DISABLED -o /usr/bin/dirname = BUILTIN
- + echo file
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=FILE
- + RKHTMPVAR=FILE_CMD
- + eval echo '$FILE_CMD'
- + echo /usr/bin/file
- + RKHTMPVAR2=/usr/bin/file
- + test /usr/bin/file = DISABLED -o /usr/bin/file = BUILTIN
- + tr '[:lower:]' '[:upper:]'
- + echo find
- + RKHTMPVAR=FIND
- + RKHTMPVAR=FIND_CMD
- + eval echo '$FIND_CMD'
- + echo /usr/bin/find
- + RKHTMPVAR2=/usr/bin/find
- + test /usr/bin/find = DISABLED -o /usr/bin/find = BUILTIN
- + echo ifconfig
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=IFCONFIG
- + RKHTMPVAR=IFCONFIG_CMD
- + eval echo '$IFCONFIG_CMD'
- + echo /sbin/ifconfig
- + RKHTMPVAR2=/sbin/ifconfig
- + test /sbin/ifconfig = DISABLED -o /sbin/ifconfig = BUILTIN
- + tr '[:lower:]' '[:upper:]'
- + echo ip
- + RKHTMPVAR=IP
- + RKHTMPVAR=IP_CMD
- + eval echo '$IP_CMD'
- + echo
- + RKHTMPVAR2=''
- + test '' = DISABLED -o '' = BUILTIN
- + tr '[:lower:]' '[:upper:]'
- + echo ipcs
- + RKHTMPVAR=IPCS
- + RKHTMPVAR=IPCS_CMD
- + eval echo '$IPCS_CMD'
- + echo /usr/bin/ipcs
- + RKHTMPVAR2=/usr/bin/ipcs
- + test /usr/bin/ipcs = DISABLED -o /usr/bin/ipcs = BUILTIN
- + tr '[:lower:]' '[:upper:]'
- + echo ldd
- + RKHTMPVAR=LDD
- + RKHTMPVAR=LDD_CMD
- + eval echo '$LDD_CMD'
- + echo /usr/bin/ldd
- + RKHTMPVAR2=/usr/bin/ldd
- + test /usr/bin/ldd = DISABLED -o /usr/bin/ldd = BUILTIN
- + tr '[:lower:]' '[:upper:]'
- + echo lsattr
- + RKHTMPVAR=LSATTR
- + RKHTMPVAR=LSATTR_CMD
- + eval echo '$LSATTR_CMD'
- + echo
- + RKHTMPVAR2=''
- + test '' = DISABLED -o '' = BUILTIN
- + echo lsmod
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=LSMOD
- + RKHTMPVAR=LSMOD_CMD
- + eval echo '$LSMOD_CMD'
- + echo
- + RKHTMPVAR2=''
- + test '' = DISABLED -o '' = BUILTIN
- + echo lsof
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=LSOF
- + RKHTMPVAR=LSOF_CMD
- + eval echo '$LSOF_CMD'
- + echo /usr/local/sbin/lsof
- + RKHTMPVAR2=/usr/local/sbin/lsof
- + test /usr/local/sbin/lsof = DISABLED -o /usr/local/sbin/lsof = BUILTIN
- + echo mktemp
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=MKTEMP
- + RKHTMPVAR=MKTEMP_CMD
- + eval echo '$MKTEMP_CMD'
- + echo /usr/bin/mktemp
- + RKHTMPVAR2=/usr/bin/mktemp
- + test /usr/bin/mktemp = DISABLED -o /usr/bin/mktemp = BUILTIN
- + echo netstat
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=NETSTAT
- + RKHTMPVAR=NETSTAT_CMD
- + eval echo '$NETSTAT_CMD'
- + echo /usr/bin/netstat
- + RKHTMPVAR2=/usr/bin/netstat
- + test /usr/bin/netstat = DISABLED -o /usr/bin/netstat = BUILTIN
- + echo perl
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=PERL
- + RKHTMPVAR=PERL_CMD
- + eval echo '$PERL_CMD'
- + echo /usr/local/bin/perl
- + RKHTMPVAR2=/usr/local/bin/perl
- + test /usr/local/bin/perl = DISABLED -o /usr/local/bin/perl = BUILTIN
- + echo pgrep
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=PGREP
- + RKHTMPVAR=PGREP_CMD
- + eval echo '$PGREP_CMD'
- + echo /bin/pgrep
- + RKHTMPVAR2=/bin/pgrep
- + test /bin/pgrep = DISABLED -o /bin/pgrep = BUILTIN
- + echo ps
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=PS
- + RKHTMPVAR=PS_CMD
- + eval echo '$PS_CMD'
- + echo /bin/ps
- + RKHTMPVAR2=/bin/ps
- + test /bin/ps = DISABLED -o /bin/ps = BUILTIN
- + echo pwd
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=PWD
- + RKHTMPVAR=PWD_CMD
- + eval echo '$PWD_CMD'
- + echo /bin/pwd
- + RKHTMPVAR2=/bin/pwd
- + test /bin/pwd = DISABLED -o /bin/pwd = BUILTIN
- + tr '[:lower:]' '[:upper:]'
- + echo readlink
- + RKHTMPVAR=READLINK
- + RKHTMPVAR=READLINK_CMD
- + eval echo '$READLINK_CMD'
- + echo /usr/bin/readlink
- + RKHTMPVAR2=/usr/bin/readlink
- + test /usr/bin/readlink = DISABLED -o /usr/bin/readlink = BUILTIN
- + tr '[:lower:]' '[:upper:]'
- + echo stat
- + RKHTMPVAR=STAT
- + RKHTMPVAR=STAT_CMD
- + eval echo '$STAT_CMD'
- + echo /usr/bin/stat
- + RKHTMPVAR2=/usr/bin/stat
- + test /usr/bin/stat = DISABLED -o /usr/bin/stat = BUILTIN
- + tr '[:lower:]' '[:upper:]'
- + echo strings
- + RKHTMPVAR=STRINGS
- + RKHTMPVAR=STRINGS_CMD
- + eval echo '$STRINGS_CMD'
- + echo /usr/bin/strings
- + RKHTMPVAR2=/usr/bin/strings
- + test /usr/bin/strings = DISABLED -o /usr/bin/strings = BUILTIN
- + return
- + get_installdir_option
- + LEAVE=0
- + get_option single INSTALLDIR
- + OPTMULTI=single
- + OPTNAME=INSTALLDIR
- + ERRCODE=0
- + [ -z single -o -z INSTALLDIR ]
- + grep -h ^INSTALLDIR= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=INSTALLDIR=/usr/local
- + [ -z INSTALLDIR=/usr/local ]
- + echo INSTALLDIR=/usr/local
- + tail -n 1
- + sed -e s/INSTALLDIR=//
- + OPTVAR=/usr/local
- + [ -z /usr/local -o /usr/local = '""' -o /usr/local = \'\' ]
- + echo /usr/local
- + tr -d '" '
- + tr -d \'
- + OPTVAR=/usr/local
- + echo /usr/local
- + return 0
- + RKHINSTALLDIR=/usr/local
- + [ 0 -eq 0 ]
- + [ -z /usr/local ]
- + [ ! -d /usr/local ]
- + [ ! -r /usr/local ]
- + [ 0 -eq 1 ]
- + return
- + get_rootdir_option
- + get_option single ROOTDIR
- + OPTMULTI=single
- + OPTNAME=ROOTDIR
- + ERRCODE=0
- + [ -z single -o -z ROOTDIR ]
- + grep -h ^ROOTDIR= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + RKHTMPVAR=''
- + [ -n '' ]
- + return
- + get_logfile_option
- + LEAVE=0
- + [ -n '' ]
- + get_option single LOGFILE
- + OPTMULTI=single
- + OPTNAME=LOGFILE
- + ERRCODE=0
- + [ -z single -o -z LOGFILE ]
- + grep -h ^LOGFILE= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=LOGFILE=/var/log/rkhunter.log
- + [ -z LOGFILE=/var/log/rkhunter.log ]
- + echo LOGFILE=/var/log/rkhunter.log
- + sed -e s/LOGFILE=//
- + tail -n 1
- + OPTVAR=/var/log/rkhunter.log
- + [ -z /var/log/rkhunter.log -o /var/log/rkhunter.log = '""' -o /var/log/rkhunter.log = \'\' ]
- + tr -d '" '
- + tr -d \'
- + echo /var/log/rkhunter.log
- + OPTVAR=/var/log/rkhunter.log
- + echo /var/log/rkhunter.log
- + return 0
- + RKHLOGFILE=/var/log/rkhunter.log
- + [ 0 -eq 0 ]
- + check_paths RKHLOGFILE LOGFILE 'NOWILD NOBROKENLINK'
- + OPT_VALUE_OPT=RKHLOGFILE
- + OPT_NAME=LOGFILE
- + STRICT='NOWILD NOBROKENLINK'
- + test -z LOGFILE
- + eval echo '"$RKHLOGFILE"'
- + echo /var/log/rkhunter.log
- + OPT_VALUE=/var/log/rkhunter.log
- + ERRCODE=0
- + test -z /var/log/rkhunter.log
- + MUSTEXIST=0
- + NOWILD=0
- + NOLINK=0
- + NOWILD=1
- + NOLINK=1
- + echo '/var/log/rkhunter.log '
- + grep ^-
- + RKHTMPVAR=''
- + [ -n '' ]
- + [ 1 -eq 1 ]
- + egrep '(^|[^\])[][?*{}]'
- + echo /var/log/rkhunter.log
- + RKHTMPVAR=''
- + [ -n '' ]
- + grep ' LOGFILE '
- + echo ' ALLOWDEVFILE ALLOWHIDDENDIR ALLOWHIDDENFILE ALLOWPROCDELFILE ALLOWPROCLISTEN ATTRWHITELIST EXCLUDE_USER_FILEPROP_FILES_DIRS EXISTWHITELIST IMMUTWHITELIST PKGMGR_NO_VRFY PORT_PATH_WHITELIST RTKT_DIR_WHITELIST RTKT_FILE_WHITELIST SCRIPTWHITELIST USER_FILEPROP_FILES_DIRS WRITEWHITELIST '
- + [ -n '' ]
- + test -z /var/log/rkhunter.log
- + echo /var/log/rkhunter.log
- + egrep '(^[./]*$)|[;&]|/\.\./'
- + [ -n '' ]
- + echo /var/log/rkhunter.log
- + grep '^[^/].*/'
- + [ -n '' ]
- + grep ^/
- + echo /var/log/rkhunter.log
- + [ -z /var/log/rkhunter.log ]
- + [ -f /var/log/rkhunter.log ]
- + IFS='
- '
- + return
- + [ 0 -eq 0 ]
- + [ -z /var/log/rkhunter.log ]
- + [ 0 -eq 1 ]
- + [ /var/log/rkhunter.log = /dev/null ]
- + echo /var/log/rkhunter.log
- + sed -e 's:/[^/][^/]*$::'
- + LOGDIR=/var/log
- + echo /var/log
- + grep /
- + [ -z /var/log ]
- + [ /var/log = /var/log/rkhunter.log ]
- + [ ! -e /var/log ]
- + [ ! -d /var/log ]
- + [ ! -w /var/log ]
- + [ ! -r /var/log ]
- + [ -h /var/log/rkhunter.log ]
- + [ -e /var/log/rkhunter.log -a ! -f /var/log/rkhunter.log ]
- + [ 0 -eq 0 ]
- + get_option single APPEND_LOG
- + OPTMULTI=single
- + OPTNAME=APPEND_LOG
- + ERRCODE=0
- + [ -z single -o -z APPEND_LOG ]
- + grep -h ^APPEND_LOG= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + APPEND_LOG=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + APPEND_LOG=0
- + get_option single COPY_LOG_ON_ERROR
- + OPTMULTI=single
- + OPTNAME=COPY_LOG_ON_ERROR
- + ERRCODE=0
- + [ -z single -o -z COPY_LOG_ON_ERROR ]
- + grep -h ^COPY_LOG_ON_ERROR= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + RKHTMPVAR=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + COPY_LOG_ON_ERROR=0
- + [ 0 -eq 1 ]
- + return
- + get_tmpdir_option
- + LEAVE=0
- + [ -n '' ]
- + get_option single TMPDIR
- + OPTMULTI=single
- + OPTNAME=TMPDIR
- + ERRCODE=0
- + [ -z single -o -z TMPDIR ]
- + grep -h ^TMPDIR= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=TMPDIR=/usr/local/var/lib/rkhunter/tmp
- + [ -z TMPDIR=/usr/local/var/lib/rkhunter/tmp ]
- + tail -n 1
- + echo TMPDIR=/usr/local/var/lib/rkhunter/tmp
- + sed -e s/TMPDIR=//
- + OPTVAR=/usr/local/var/lib/rkhunter/tmp
- + [ -z /usr/local/var/lib/rkhunter/tmp -o /usr/local/var/lib/rkhunter/tmp = '""' -o /usr/local/var/lib/rkhunter/tmp = \'\' ]
- + tr -d '" '
- + tr -d \'
- + echo /usr/local/var/lib/rkhunter/tmp
- + OPTVAR=/usr/local/var/lib/rkhunter/tmp
- + echo /usr/local/var/lib/rkhunter/tmp
- + return 0
- + RKHTMPDIR=/usr/local/var/lib/rkhunter/tmp
- + [ 0 -eq 0 ]
- + check_paths RKHTMPDIR TMPDIR 'NOWILD NOBROKENLINK EXIST'
- + OPT_VALUE_OPT=RKHTMPDIR
- + OPT_NAME=TMPDIR
- + STRICT='NOWILD NOBROKENLINK EXIST'
- + test -z TMPDIR
- + eval echo '"$RKHTMPDIR"'
- + echo /usr/local/var/lib/rkhunter/tmp
- + OPT_VALUE=/usr/local/var/lib/rkhunter/tmp
- + ERRCODE=0
- + test -z /usr/local/var/lib/rkhunter/tmp
- + MUSTEXIST=0
- + NOWILD=0
- + NOLINK=0
- + NOWILD=1
- + NOLINK=1
- + MUSTEXIST=1
- + echo '/usr/local/var/lib/rkhunter/tmp '
- + grep ^-
- + RKHTMPVAR=''
- + [ -n '' ]
- + [ 1 -eq 1 ]
- + echo /usr/local/var/lib/rkhunter/tmp
- + egrep '(^|[^\])[][?*{}]'
- + RKHTMPVAR=''
- + [ -n '' ]
- + grep ' TMPDIR '
- + echo ' ALLOWDEVFILE ALLOWHIDDENDIR ALLOWHIDDENFILE ALLOWPROCDELFILE ALLOWPROCLISTEN ATTRWHITELIST EXCLUDE_USER_FILEPROP_FILES_DIRS EXISTWHITELIST IMMUTWHITELIST PKGMGR_NO_VRFY PORT_PATH_WHITELIST RTKT_DIR_WHITELIST RTKT_FILE_WHITELIST SCRIPTWHITELIST USER_FILEPROP_FILES_DIRS WRITEWHITELIST '
- + [ -n '' ]
- + test -z /usr/local/var/lib/rkhunter/tmp
- + echo /usr/local/var/lib/rkhunter/tmp
- + egrep '(^[./]*$)|[;&]|/\.\./'
- + [ -n '' ]
- + echo /usr/local/var/lib/rkhunter/tmp
- + grep '^[^/].*/'
- + [ -n '' ]
- + echo /usr/local/var/lib/rkhunter/tmp
- + grep ^/
- + [ -z /usr/local/var/lib/rkhunter/tmp ]
- + [ -f /usr/local/var/lib/rkhunter/tmp ]
- + [ -d /usr/local/var/lib/rkhunter/tmp ]
- + test TMPDIR = ALLOWHIDDENFILE -a -h /usr/local/var/lib/rkhunter/tmp
- + IFS='
- '
- + return
- + [ 0 -eq 0 ]
- + [ -z /usr/local/var/lib/rkhunter/tmp ]
- + [ 0 -eq 1 ]
- + [ ! -e /usr/local/var/lib/rkhunter/tmp ]
- + [ ! -d /usr/local/var/lib/rkhunter/tmp ]
- + [ ! -w /usr/local/var/lib/rkhunter/tmp ]
- + [ ! -r /usr/local/var/lib/rkhunter/tmp ]
- + [ /usr/local/var/lib/rkhunter/tmp = /tmp -o /usr/local/var/lib/rkhunter/tmp = /var/tmp ]
- + [ /usr/local/var/lib/rkhunter/tmp = /etc ]
- + [ 0 -eq 1 ]
- + return
- + get_dbdir_option
- + LEAVE=0
- + [ -n '' ]
- + get_option single DBDIR
- + OPTMULTI=single
- + OPTNAME=DBDIR
- + ERRCODE=0
- + [ -z single -o -z DBDIR ]
- + grep -h ^DBDIR= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=DBDIR=/usr/local/var/lib/rkhunter/db
- + [ -z DBDIR=/usr/local/var/lib/rkhunter/db ]
- + echo DBDIR=/usr/local/var/lib/rkhunter/db
- + sed -e s/DBDIR=//
- + tail -n 1
- + OPTVAR=/usr/local/var/lib/rkhunter/db
- + [ -z /usr/local/var/lib/rkhunter/db -o /usr/local/var/lib/rkhunter/db = '""' -o /usr/local/var/lib/rkhunter/db = \'\' ]
- + echo /usr/local/var/lib/rkhunter/db
- + tr -d \'
- + tr -d '" '
- + OPTVAR=/usr/local/var/lib/rkhunter/db
- + echo /usr/local/var/lib/rkhunter/db
- + return 0
- + DB_PATH=/usr/local/var/lib/rkhunter/db
- + [ 0 -eq 0 ]
- + check_paths DB_PATH DBDIR 'NOWILD EXIST NOBROKENLINK'
- + OPT_VALUE_OPT=DB_PATH
- + OPT_NAME=DBDIR
- + STRICT='NOWILD EXIST NOBROKENLINK'
- + test -z DBDIR
- + eval echo '"$DB_PATH"'
- + echo /usr/local/var/lib/rkhunter/db
- + OPT_VALUE=/usr/local/var/lib/rkhunter/db
- + ERRCODE=0
- + test -z /usr/local/var/lib/rkhunter/db
- + MUSTEXIST=0
- + NOWILD=0
- + NOLINK=0
- + NOWILD=1
- + MUSTEXIST=1
- + NOLINK=1
- + echo '/usr/local/var/lib/rkhunter/db '
- + grep ^-
- + RKHTMPVAR=''
- + [ -n '' ]
- + [ 1 -eq 1 ]
- + egrep '(^|[^\])[][?*{}]'
- + echo /usr/local/var/lib/rkhunter/db
- + RKHTMPVAR=''
- + [ -n '' ]
- + echo ' ALLOWDEVFILE ALLOWHIDDENDIR ALLOWHIDDENFILE ALLOWPROCDELFILE ALLOWPROCLISTEN ATTRWHITELIST EXCLUDE_USER_FILEPROP_FILES_DIRS EXISTWHITELIST IMMUTWHITELIST PKGMGR_NO_VRFY PORT_PATH_WHITELIST RTKT_DIR_WHITELIST RTKT_FILE_WHITELIST SCRIPTWHITELIST USER_FILEPROP_FILES_DIRS WRITEWHITELIST '
- + grep ' DBDIR '
- + [ -n '' ]
- + test -z /usr/local/var/lib/rkhunter/db
- + echo /usr/local/var/lib/rkhunter/db
- + egrep '(^[./]*$)|[;&]|/\.\./'
- + [ -n '' ]
- + grep '^[^/].*/'
- + echo /usr/local/var/lib/rkhunter/db
- + [ -n '' ]
- + echo /usr/local/var/lib/rkhunter/db
- + grep ^/
- + [ -z /usr/local/var/lib/rkhunter/db ]
- + [ -f /usr/local/var/lib/rkhunter/db ]
- + [ -d /usr/local/var/lib/rkhunter/db ]
- + test DBDIR = ALLOWHIDDENFILE -a -h /usr/local/var/lib/rkhunter/db
- + IFS='
- '
- + return
- + [ 0 -eq 0 ]
- + [ -z /usr/local/var/lib/rkhunter/db ]
- + [ 0 -eq 1 ]
- + [ ! -e /usr/local/var/lib/rkhunter/db ]
- + [ ! -d /usr/local/var/lib/rkhunter/db ]
- + [ ! -r /usr/local/var/lib/rkhunter/db ]
- + [ 0 -eq 1 -o 0 -eq 1 -o 0 -eq 1 ]
- + [ 0 -eq 0 ]
- + RKHDAT_FILE=/usr/local/var/lib/rkhunter/db/rkhunter.dat
- + RKH_FILEPROP_LIST=/usr/local/var/lib/rkhunter/db/rkhunter_prop_list.dat
- + return
- + get_language_option
- + LEAVE=0
- + [ -n '' ]
- + get_option single LANGUAGE
- + OPTMULTI=single
- + OPTNAME=LANGUAGE
- + ERRCODE=0
- + [ -z single -o -z LANGUAGE ]
- + grep -h ^LANGUAGE= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + LANGUAGE=''
- + test 0 -eq 1
- + test -z ''
- + LANGUAGE=en
- + [ ! -d /usr/local/var/lib/rkhunter/db/i18n ]
- + [ 0 -eq 0 ]
- + [ ! -s /usr/local/var/lib/rkhunter/db/i18n/en -a en != en ]
- + [ ! -s /usr/local/var/lib/rkhunter/db/i18n/en ]
- + [ en = de ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + return
- + get_auto_x_option
- + LEAVE=0
- + [ 0 -eq 0 ]
- + get_option single AUTO_X_DETECT
- + OPTMULTI=single
- + OPTNAME=AUTO_X_DETECT
- + ERRCODE=0
- + [ -z single -o -z AUTO_X_DETECT ]
- + grep -h ^AUTO_X_DETECT= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=AUTO_X_DETECT=1
- + [ -z AUTO_X_DETECT=1 ]
- + tail -n 1
- + sed -e s/AUTO_X_DETECT=//
- + echo AUTO_X_DETECT=1
- + OPTVAR=1
- + [ -z 1 -o 1 = '""' -o 1 = \'\' ]
- + echo 1
- + tr -d \'
- + tr -d '" '
- + OPTVAR=1
- + echo 1
- + return 0
- + AUTO_X_DTCT=1
- + [ 0 -eq 0 ]
- + [ -n 1 ]
- + check_is_digit AUTO_X_DTCT AUTO_X_DETECT
- + OPT_VALUE=AUTO_X_DTCT
- + OPT_NAME=AUTO_X_DETECT
- + OTHERS=''
- + test -z AUTO_X_DETECT
- + test -z ''
- + OTHERS=0
- + eval echo '"$AUTO_X_DTCT"'
- + echo 1
- + RKHTMPVAR=1
- + ERRCODE=0
- + test -z 1
- + [ 1 = 0 -a 0 = ANY1 ]
- + [ 1 != 0 -a 1 != 1 ]
- + return
- + test 0 -eq 1
- + [ 1 -eq 1 -a -n '' ]
- + [ 0 -eq 0 ]
- + get_option single COLOR_SET2
- + OPTMULTI=single
- + OPTNAME=COLOR_SET2
- + ERRCODE=0
- + [ -z single -o -z COLOR_SET2 ]
- + grep -h ^COLOR_SET2= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + CLRSET2=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + CLRSET2=0
- + get_option single WHITELISTED_IS_WHITE
- + OPTMULTI=single
- + OPTNAME=WHITELISTED_IS_WHITE
- + ERRCODE=0
- + [ -z single -o -z WHITELISTED_IS_WHITE ]
- + grep -h ^WHITELISTED_IS_WHITE= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + WLIST_IS_WHITE=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + WLIST_IS_WHITE=0
- + [ 0 -eq 1 ]
- + return
- + get_locking_options
- + LEAVE=0
- + get_option single USE_LOCKING
- + OPTMULTI=single
- + OPTNAME=USE_LOCKING
- + ERRCODE=0
- + [ -z single -o -z USE_LOCKING ]
- + grep -h ^USE_LOCKING= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + USE_LOCKING=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + USE_LOCKING=0
- + get_option single LOCK_TIMEOUT
- + OPTMULTI=single
- + OPTNAME=LOCK_TIMEOUT
- + ERRCODE=0
- + [ -z single -o -z LOCK_TIMEOUT ]
- + grep -h ^LOCK_TIMEOUT= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + LOCK_TIMEOUT=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + LOCK_TIMEOUT=300
- + [ 0 -eq 0 ]
- + get_option single SHOW_LOCK_MSGS
- + OPTMULTI=single
- + OPTNAME=SHOW_LOCK_MSGS
- + ERRCODE=0
- + [ -z single -o -z SHOW_LOCK_MSGS ]
- + grep -h ^SHOW_LOCK_MSGS= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + SHOW_LOCK_MSGS=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + SHOW_LOCK_MSGS=1
- + [ 0 -eq 1 ]
- + return
- + [ 1 -eq 1 -o 0 -eq 1 -o 0 -eq 1 ]
- + get_enable_option
- + LEAVE=0
- + [ 1 -eq 1 ]
- + tr -d '"'
- + tr -d \'
- + echo filesystem
- + tr , ' '
- + ENABLE_TESTS=filesystem
- + echo filesystem
- + ENABLE_TESTS=filesystem
- + [ -z filesystem ]
- + echo filesystem
- + tr '[:upper:]' '[:lower:]'
- + ENABLE_TESTS=filesystem
- + grep ' '
- + echo filesystem
- + [ filesystem != all -a -z '' ]
- + SKIP_KEY_PRESS=1
- + [ 0 -eq 1 ]
- + return
- + get_disable_option
- + LEAVE=0
- + [ -n '' ]
- + [ 1 -eq 1 ]
- + get_option space-list DISABLE_TESTS
- + OPTMULTI=space-list
- + OPTNAME=DISABLE_TESTS
- + ERRCODE=0
- + [ -z space-list -o -z DISABLE_TESTS ]
- + grep -h ^DISABLE_TESTS= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2='DISABLE_TESTS=suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + [ -z 'DISABLE_TESTS=suspscan hidden_ports hidden_procs deleted_files packet_cap_apps' ]
- + echo 'DISABLE_TESTS=suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + sed -e s/DISABLE_TESTS=//
- + tail -n 1
- + RKHTMPVAR3='suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + [ -z 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps' -o 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps' = '""' -o 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps' = \'\' ]
- + sed -e s/DISABLE_TESTS=//
- + echo 'DISABLE_TESTS=suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + OPTVAR='suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + grep ^-
- + echo 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps '
- + test -n ''
- + [ space-list = space-list ]
- + tr -s ' ' ' '
- + echo 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + OPTVAR='suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + sed -e 's/^ *"* *//; s/ *"* *$//'
- + sed -e 's/^ *'\''* *//; s/ *'\''* *$//'
- + echo 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + OPTVAR='suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + grep ^-
- + echo 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps '
- + test -n ''
- + [ -n 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps' ]
- + echo 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + wc -l
- + tr -d ' '
- + RKHLINES=1
- + echo 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + echo 1
- + awk -v l=1 '/./ { if (a) { a = a "\n" $0 } else a = $0 }; /^$/ { a = "" }; NR == l { print a }'
- + OPTVAR='suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + echo 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps '
- + grep ^-
- + test -n ''
- + echo 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + return 0
- + CONFIG_DISABLE_TESTS='suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + test 0 -eq 1
- + [ 0 -eq 0 ]
- + DISABLE_TESTS=' suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + echo suspscan hidden_ports hidden_procs deleted_files packet_cap_apps
- + DISABLE_TESTS='suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + [ -z 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps' ]
- + tr '[:upper:]' '[:lower:]'
- + echo 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + DISABLE_TESTS='suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + return
- + check_test_options
- + SEEN=0
- + LEAVE=0
- + echo strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules
- + RKHTMPVAR=' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules '
- + [ filesystem = all ]
- + [ filesystem = none ]
- + echo ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules '
- + grep ' filesystem '
- + [ -z ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules ' ]
- + test 0 -eq 1
- + SEEN=0
- + [ 1 -eq 1 ]
- + [ suspscan = none ]
- + [ suspscan = all ]
- + echo ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules '
- + grep ' suspscan '
- + [ -z ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules ' ]
- + [ hidden_ports = none ]
- + [ hidden_ports = all ]
- + grep ' hidden_ports '
- + echo ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules '
- + [ -z ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules ' ]
- + [ hidden_procs = none ]
- + [ hidden_procs = all ]
- + echo ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules '
- + grep ' hidden_procs '
- + [ -z ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules ' ]
- + [ deleted_files = none ]
- + [ deleted_files = all ]
- + grep ' deleted_files '
- + echo ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules '
- + [ -z ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules ' ]
- + [ packet_cap_apps = none ]
- + [ packet_cap_apps = all ]
- + echo ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules '
- + grep ' packet_cap_apps '
- + [ -z ' strings properties hashes scripts immutable attributes deleted_files packet_cap_apps apps rootkits known_rkts additional_rkts malware local_host network passwd_changes group_changes possible_rkt_files possible_rkt_strings system_commands shared_libs shared_libs_path running_procs hidden_procs trojans other_malware os_specific startup_malware startup_files group_accounts system_configs filesystem suspscan ports hidden_ports promisc loaded_modules avail_modules ' ]
- + [ 0 -eq 1 ]
- + test 0 -eq 1
- + test filesystem = all
- + [ 1 -eq 1 -a 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps' != none ]
- + GROUP_TEST_NAMES=''
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + cut -d: -f1
- + GROUP_TEST_NAMES=' system_commands'
- + echo properties:hashes:scripts:immutable:attributes
- + cut -d: -f1
- + GROUP_TEST_NAMES=' system_commands properties'
- + echo shared_libs:shared_libs_path
- + cut -d: -f1
- + GROUP_TEST_NAMES=' system_commands properties shared_libs'
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + cut -d: -f1
- + GROUP_TEST_NAMES=' system_commands properties shared_libs rootkits'
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + cut -d: -f1
- + GROUP_TEST_NAMES=' system_commands properties shared_libs rootkits additional_rkts'
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + cut -d: -f1
- + GROUP_TEST_NAMES=' system_commands properties shared_libs rootkits additional_rkts network'
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + cut -d: -f1
- + GROUP_TEST_NAMES=' system_commands properties shared_libs rootkits additional_rkts network malware'
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + cut -d: -f1
- + GROUP_TEST_NAMES=' system_commands properties shared_libs rootkits additional_rkts network malware local_host'
- + echo startup_files:startup_malware
- + cut -d: -f1
- + GROUP_TEST_NAMES=' system_commands properties shared_libs rootkits additional_rkts network malware local_host startup_files'
- + cut -d: -f1
- + echo os_specific:loaded_modules:avail_modules
- + GROUP_TEST_NAMES=' system_commands properties shared_libs rootkits additional_rkts network malware local_host startup_files os_specific'
- + cut -d: -f1
- + echo group_accounts:passwd_changes:group_changes
- + GROUP_TEST_NAMES=' system_commands properties shared_libs rootkits additional_rkts network malware local_host startup_files os_specific group_accounts'
- + echo system_commands properties shared_libs rootkits additional_rkts network malware local_host startup_files os_specific group_accounts
- + GROUP_TEST_NAMES=' system_commands properties shared_libs rootkits additional_rkts network malware local_host startup_files os_specific group_accounts '
- + DISABLE_TESTS=' suspscan hidden_ports hidden_procs deleted_files packet_cap_apps '
- + grep ' filesystem '
- + echo ' system_commands properties shared_libs rootkits additional_rkts network malware local_host startup_files os_specific group_accounts '
- + [ -z '' ]
- + echo ' suspscan hidden_ports hidden_procs deleted_files packet_cap_apps '
- + grep ' filesystem '
- + [ -n '' ]
- + echo suspscan hidden_ports hidden_procs deleted_files packet_cap_apps
- + DISABLE_TESTS='suspscan hidden_ports hidden_procs deleted_files packet_cap_apps'
- + [ -z 'suspscan hidden_ports hidden_procs deleted_files packet_cap_apps' ]
- + sort_test_lists 2
- + RKHTMPVAR=2
- + test 2 -eq 1
- + test 2 -eq 2
- + tr ' ' '\n'
- + sort
- + echo suspscan hidden_ports hidden_procs deleted_files packet_cap_apps
- + uniq
- + DISABLE_TESTS='deleted_files
- hidden_ports
- hidden_procs
- packet_cap_apps
- suspscan'
- + echo filesystem
- + ENABLE_TESTS=filesystem
- + echo deleted_files hidden_ports hidden_procs packet_cap_apps suspscan
- + DISABLE_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
- + [ filesystem = 'deleted_files hidden_ports hidden_procs packet_cap_apps suspscan' ]
- + return
- + cut -d: -f1
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + GROUP_NAME=system_commands
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + grep :
- + [ -n system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
- + cut -d: -f2-
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + GROUP_TESTS=properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + [ filesystem = system_commands ]
- + [ -z properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
- + grep :filesystem:
- + echo :properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes:
- + [ -n '' ]
- + echo properties:hashes:scripts:immutable:attributes
- + cut -d: -f1
- + GROUP_NAME=properties
- + grep :
- + echo properties:hashes:scripts:immutable:attributes
- + [ -n properties:hashes:scripts:immutable:attributes ]
- + echo properties:hashes:scripts:immutable:attributes
- + cut -d: -f2-
- + GROUP_TESTS=hashes:scripts:immutable:attributes
- + [ filesystem = properties ]
- + [ -z hashes:scripts:immutable:attributes ]
- + echo :hashes:scripts:immutable:attributes:
- + grep :filesystem:
- + [ -n '' ]
- + echo shared_libs:shared_libs_path
- + cut -d: -f1
- + GROUP_NAME=shared_libs
- + echo shared_libs:shared_libs_path
- + grep :
- + [ -n shared_libs:shared_libs_path ]
- + echo shared_libs:shared_libs_path
- + cut -d: -f2-
- + GROUP_TESTS=shared_libs_path
- + [ filesystem = shared_libs ]
- + [ -z shared_libs_path ]
- + echo :shared_libs_path:
- + grep :filesystem:
- + [ -n '' ]
- + cut -d: -f1
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + GROUP_NAME=rootkits
- + grep :
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + [ -n rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
- + cut -d: -f2-
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + GROUP_TESTS=known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + [ filesystem = rootkits ]
- + [ -z known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
- + grep :filesystem:
- + echo :known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules:
- + [ -n '' ]
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + cut -d: -f1
- + GROUP_NAME=additional_rkts
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + grep :
- + [ -n additional_rkts:possible_rkt_files:possible_rkt_strings ]
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + cut -d: -f2-
- + GROUP_TESTS=possible_rkt_files:possible_rkt_strings
- + [ filesystem = additional_rkts ]
- + [ -z possible_rkt_files:possible_rkt_strings ]
- + echo :possible_rkt_files:possible_rkt_strings:
- + grep :filesystem:
- + [ -n '' ]
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + cut -d: -f1
- + GROUP_NAME=network
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + grep :
- + [ -n network:packet_cap_apps:ports:hidden_ports:promisc ]
- + cut -d: -f2-
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + GROUP_TESTS=packet_cap_apps:ports:hidden_ports:promisc
- + [ filesystem = network ]
- + [ -z packet_cap_apps:ports:hidden_ports:promisc ]
- + grep :filesystem:
- + echo :packet_cap_apps:ports:hidden_ports:promisc:
- + [ -n '' ]
- + cut -d: -f1
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + GROUP_NAME=malware
- + grep :
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + [ -n malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + cut -d: -f2-
- + GROUP_TESTS=running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + [ filesystem = malware ]
- + [ -z running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
- + echo :running_procs:hidden_procs:deleted_files:suspscan:other_malware:
- + grep :filesystem:
- + [ -n '' ]
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + cut -d: -f1
- + GROUP_NAME=local_host
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + grep :
- + [ -n local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + cut -d: -f2-
- + GROUP_TESTS=startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + [ filesystem = local_host ]
- + [ -z startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
- + echo :startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem:
- + grep :filesystem:
- + [ -n :startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem: ]
- + ENABLE_TESTS='filesystem local_host'
- + cut -d: -f1
- + echo startup_files:startup_malware
- + GROUP_NAME=startup_files
- + grep :
- + echo startup_files:startup_malware
- + [ -n startup_files:startup_malware ]
- + cut -d: -f2-
- + echo startup_files:startup_malware
- + GROUP_TESTS=startup_malware
- + [ filesystem = startup_files ]
- + [ -z startup_malware ]
- + grep :filesystem:
- + echo :startup_malware:
- + [ -n '' ]
- + echo os_specific:loaded_modules:avail_modules
- + cut -d: -f1
- + GROUP_NAME=os_specific
- + echo os_specific:loaded_modules:avail_modules
- + grep :
- + [ -n os_specific:loaded_modules:avail_modules ]
- + echo os_specific:loaded_modules:avail_modules
- + cut -d: -f2-
- + GROUP_TESTS=loaded_modules:avail_modules
- + [ filesystem = os_specific ]
- + [ -z loaded_modules:avail_modules ]
- + echo :loaded_modules:avail_modules:
- + grep :filesystem:
- + [ -n '' ]
- + echo group_accounts:passwd_changes:group_changes
- + cut -d: -f1
- + GROUP_NAME=group_accounts
- + echo group_accounts:passwd_changes:group_changes
- + grep :
- + [ -n group_accounts:passwd_changes:group_changes ]
- + cut -d: -f2-
- + echo group_accounts:passwd_changes:group_changes
- + GROUP_TESTS=passwd_changes:group_changes
- + [ filesystem = group_accounts ]
- + [ -z passwd_changes:group_changes ]
- + echo :passwd_changes:group_changes:
- + grep :filesystem:
- + [ -n '' ]
- + echo filesystem local_host
- + ENABLE_TESTS='filesystem local_host'
- + sort_test_lists 1
- + RKHTMPVAR=1
- + test 1 -eq 1
- + echo filesystem local_host
- + tr ' ' '\n'
- + sort
- + uniq
- + ENABLE_TESTS='filesystem
- local_host'
- + test 1 -eq 2
- + echo filesystem local_host
- + ENABLE_TESTS='filesystem local_host'
- + echo deleted_files hidden_ports hidden_procs packet_cap_apps suspscan
- + DISABLE_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
- + [ 'filesystem local_host' = 'deleted_files hidden_ports hidden_procs packet_cap_apps suspscan' ]
- + return
- + [ 'deleted_files hidden_ports hidden_procs packet_cap_apps suspscan' != none ]
- + TEMP_EN_TESTS='filesystem local_host'
- + TEMP_DIS_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + cut -d: -f1
- + GROUP_NAME=system_commands
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + grep :
- + [ -n system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + cut -d: -f2-
- + GROUP_TESTS=properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + [ deleted_files = system_commands ]
- + [ -z properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
- + echo :properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes:
- + grep :deleted_files:
- + [ -n '' ]
- + echo properties:hashes:scripts:immutable:attributes
- + cut -d: -f1
- + GROUP_NAME=properties
- + echo properties:hashes:scripts:immutable:attributes
- + grep :
- + [ -n properties:hashes:scripts:immutable:attributes ]
- + cut -d: -f2-
- + echo properties:hashes:scripts:immutable:attributes
- + GROUP_TESTS=hashes:scripts:immutable:attributes
- + [ deleted_files = properties ]
- + [ -z hashes:scripts:immutable:attributes ]
- + grep :deleted_files:
- + echo :hashes:scripts:immutable:attributes:
- + [ -n '' ]
- + cut -d: -f1
- + echo shared_libs:shared_libs_path
- + GROUP_NAME=shared_libs
- + grep :
- + echo shared_libs:shared_libs_path
- + [ -n shared_libs:shared_libs_path ]
- + echo shared_libs:shared_libs_path
- + cut -d: -f2-
- + GROUP_TESTS=shared_libs_path
- + [ deleted_files = shared_libs ]
- + [ -z shared_libs_path ]
- + grep :deleted_files:
- + echo :shared_libs_path:
- + [ -n '' ]
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + cut -d: -f1
- + GROUP_NAME=rootkits
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + grep :
- + [ -n rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + cut -d: -f2-
- + GROUP_TESTS=known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + [ deleted_files = rootkits ]
- + [ -z known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
- + echo :known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules:
- + grep :deleted_files:
- + [ -n :known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules: ]
- + TEMP_DIS_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits'
- + cut -d: -f1
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + GROUP_NAME=additional_rkts
- + grep :
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + [ -n additional_rkts:possible_rkt_files:possible_rkt_strings ]
- + cut -d: -f2-
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + GROUP_TESTS=possible_rkt_files:possible_rkt_strings
- + [ deleted_files = additional_rkts ]
- + [ -z possible_rkt_files:possible_rkt_strings ]
- + grep :deleted_files:
- + echo :possible_rkt_files:possible_rkt_strings:
- + [ -n '' ]
- + cut -d: -f1
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + GROUP_NAME=network
- + grep :
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + [ -n network:packet_cap_apps:ports:hidden_ports:promisc ]
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + cut -d: -f2-
- + GROUP_TESTS=packet_cap_apps:ports:hidden_ports:promisc
- + [ deleted_files = network ]
- + [ -z packet_cap_apps:ports:hidden_ports:promisc ]
- + echo :packet_cap_apps:ports:hidden_ports:promisc:
- + grep :deleted_files:
- + [ -n '' ]
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + cut -d: -f1
- + GROUP_NAME=malware
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + grep :
- + [ -n malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
- + cut -d: -f2-
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + GROUP_TESTS=running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + [ deleted_files = malware ]
- + [ -z running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
- + echo :running_procs:hidden_procs:deleted_files:suspscan:other_malware:
- + grep :deleted_files:
- + [ -n :running_procs:hidden_procs:deleted_files:suspscan:other_malware: ]
- + TEMP_DIS_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware'
- + cut -d: -f1
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + GROUP_NAME=local_host
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + grep :
- + [ -n local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + cut -d: -f2-
- + GROUP_TESTS=startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + [ deleted_files = local_host ]
- + [ -z startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
- + echo :startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem:
- + grep :deleted_files:
- + [ -n '' ]
- + echo startup_files:startup_malware
- + cut -d: -f1
- + GROUP_NAME=startup_files
- + echo startup_files:startup_malware
- + grep :
- + [ -n startup_files:startup_malware ]
- + echo startup_files:startup_malware
- + cut -d: -f2-
- + GROUP_TESTS=startup_malware
- + [ deleted_files = startup_files ]
- + [ -z startup_malware ]
- + echo :startup_malware:
- + grep :deleted_files:
- + [ -n '' ]
- + cut -d: -f1
- + echo os_specific:loaded_modules:avail_modules
- + GROUP_NAME=os_specific
- + echo os_specific:loaded_modules:avail_modules
- + grep :
- + [ -n os_specific:loaded_modules:avail_modules ]
- + cut -d: -f2-
- + echo os_specific:loaded_modules:avail_modules
- + GROUP_TESTS=loaded_modules:avail_modules
- + [ deleted_files = os_specific ]
- + [ -z loaded_modules:avail_modules ]
- + grep :deleted_files:
- + echo :loaded_modules:avail_modules:
- + [ -n '' ]
- + cut -d: -f1
- + echo group_accounts:passwd_changes:group_changes
- + GROUP_NAME=group_accounts
- + grep :
- + echo group_accounts:passwd_changes:group_changes
- + [ -n group_accounts:passwd_changes:group_changes ]
- + echo group_accounts:passwd_changes:group_changes
- + cut -d: -f2-
- + GROUP_TESTS=passwd_changes:group_changes
- + [ deleted_files = group_accounts ]
- + [ -z passwd_changes:group_changes ]
- + grep :deleted_files:
- + echo :passwd_changes:group_changes:
- + [ -n '' ]
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + cut -d: -f1
- + GROUP_NAME=system_commands
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + grep :
- + [ -n system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + cut -d: -f2-
- + GROUP_TESTS=properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + [ hidden_ports = system_commands ]
- + [ -z properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
- + echo :properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes:
- + grep :hidden_ports:
- + [ -n '' ]
- + cut -d: -f1
- + echo properties:hashes:scripts:immutable:attributes
- + GROUP_NAME=properties
- + echo properties:hashes:scripts:immutable:attributes
- + grep :
- + [ -n properties:hashes:scripts:immutable:attributes ]
- + cut -d: -f2-
- + echo properties:hashes:scripts:immutable:attributes
- + GROUP_TESTS=hashes:scripts:immutable:attributes
- + [ hidden_ports = properties ]
- + [ -z hashes:scripts:immutable:attributes ]
- + grep :hidden_ports:
- + echo :hashes:scripts:immutable:attributes:
- + [ -n '' ]
- + cut -d: -f1
- + echo shared_libs:shared_libs_path
- + GROUP_NAME=shared_libs
- + grep :
- + echo shared_libs:shared_libs_path
- + [ -n shared_libs:shared_libs_path ]
- + echo shared_libs:shared_libs_path
- + cut -d: -f2-
- + GROUP_TESTS=shared_libs_path
- + [ hidden_ports = shared_libs ]
- + [ -z shared_libs_path ]
- + grep :hidden_ports:
- + echo :shared_libs_path:
- + [ -n '' ]
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + cut -d: -f1
- + GROUP_NAME=rootkits
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + grep :
- + [ -n rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + cut -d: -f2-
- + GROUP_TESTS=known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + [ hidden_ports = rootkits ]
- + [ -z known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
- + echo :known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules:
- + grep :hidden_ports:
- + [ -n '' ]
- + cut -d: -f1
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + GROUP_NAME=additional_rkts
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + grep :
- + [ -n additional_rkts:possible_rkt_files:possible_rkt_strings ]
- + cut -d: -f2-
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + GROUP_TESTS=possible_rkt_files:possible_rkt_strings
- + [ hidden_ports = additional_rkts ]
- + [ -z possible_rkt_files:possible_rkt_strings ]
- + grep :hidden_ports:
- + echo :possible_rkt_files:possible_rkt_strings:
- + [ -n '' ]
- + cut -d: -f1
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + GROUP_NAME=network
- + grep :
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + [ -n network:packet_cap_apps:ports:hidden_ports:promisc ]
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + cut -d: -f2-
- + GROUP_TESTS=packet_cap_apps:ports:hidden_ports:promisc
- + [ hidden_ports = network ]
- + [ -z packet_cap_apps:ports:hidden_ports:promisc ]
- + echo :packet_cap_apps:ports:hidden_ports:promisc:
- + grep :hidden_ports:
- + [ -n :packet_cap_apps:ports:hidden_ports:promisc: ]
- + TEMP_DIS_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network'
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + cut -d: -f1
- + GROUP_NAME=malware
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + grep :
- + [ -n malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
- + cut -d: -f2-
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + GROUP_TESTS=running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + [ hidden_ports = malware ]
- + [ -z running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
- + echo :running_procs:hidden_procs:deleted_files:suspscan:other_malware:
- + grep :hidden_ports:
- + [ -n '' ]
- + cut -d: -f1
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + GROUP_NAME=local_host
- + grep :
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + [ -n local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
- + cut -d: -f2-
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + GROUP_TESTS=startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + [ hidden_ports = local_host ]
- + [ -z startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
- + grep :hidden_ports:
- + echo :startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem:
- + [ -n '' ]
- + echo startup_files:startup_malware
- + cut -d: -f1
- + GROUP_NAME=startup_files
- + echo startup_files:startup_malware
- + grep :
- + [ -n startup_files:startup_malware ]
- + echo startup_files:startup_malware
- + cut -d: -f2-
- + GROUP_TESTS=startup_malware
- + [ hidden_ports = startup_files ]
- + [ -z startup_malware ]
- + echo :startup_malware:
- + grep :hidden_ports:
- + [ -n '' ]
- + echo os_specific:loaded_modules:avail_modules
- + cut -d: -f1
- + GROUP_NAME=os_specific
- + echo os_specific:loaded_modules:avail_modules
- + grep :
- + [ -n os_specific:loaded_modules:avail_modules ]
- + echo os_specific:loaded_modules:avail_modules
- + cut -d: -f2-
- + GROUP_TESTS=loaded_modules:avail_modules
- + [ hidden_ports = os_specific ]
- + [ -z loaded_modules:avail_modules ]
- + grep :hidden_ports:
- + echo :loaded_modules:avail_modules:
- + [ -n '' ]
- + cut -d: -f1
- + echo group_accounts:passwd_changes:group_changes
- + GROUP_NAME=group_accounts
- + grep :
- + echo group_accounts:passwd_changes:group_changes
- + [ -n group_accounts:passwd_changes:group_changes ]
- + cut -d: -f2-
- + echo group_accounts:passwd_changes:group_changes
- + GROUP_TESTS=passwd_changes:group_changes
- + [ hidden_ports = group_accounts ]
- + [ -z passwd_changes:group_changes ]
- + grep :hidden_ports:
- + echo :passwd_changes:group_changes:
- + [ -n '' ]
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + cut -d: -f1
- + GROUP_NAME=system_commands
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + grep :
- + [ -n system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + cut -d: -f2-
- + GROUP_TESTS=properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + [ hidden_procs = system_commands ]
- + [ -z properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
- + echo :properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes:
- + grep :hidden_procs:
- + [ -n '' ]
- + cut -d: -f1
- + echo properties:hashes:scripts:immutable:attributes
- + GROUP_NAME=properties
- + echo properties:hashes:scripts:immutable:attributes
- + grep :
- + [ -n properties:hashes:scripts:immutable:attributes ]
- + cut -d: -f2-
- + echo properties:hashes:scripts:immutable:attributes
- + GROUP_TESTS=hashes:scripts:immutable:attributes
- + [ hidden_procs = properties ]
- + [ -z hashes:scripts:immutable:attributes ]
- + grep :hidden_procs:
- + echo :hashes:scripts:immutable:attributes:
- + [ -n '' ]
- + cut -d: -f1
- + echo shared_libs:shared_libs_path
- + GROUP_NAME=shared_libs
- + echo shared_libs:shared_libs_path
- + grep :
- + [ -n shared_libs:shared_libs_path ]
- + echo shared_libs:shared_libs_path
- + cut -d: -f2-
- + GROUP_TESTS=shared_libs_path
- + [ hidden_procs = shared_libs ]
- + [ -z shared_libs_path ]
- + echo :shared_libs_path:
- + grep :hidden_procs:
- + [ -n '' ]
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + cut -d: -f1
- + GROUP_NAME=rootkits
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + grep :
- + [ -n rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + cut -d: -f2-
- + GROUP_TESTS=known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + [ hidden_procs = rootkits ]
- + [ -z known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
- + echo :known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules:
- + grep :hidden_procs:
- + [ -n :known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules: ]
- + TEMP_DIS_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network rootkits'
- + cut -d: -f1
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + GROUP_NAME=additional_rkts
- + grep :
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + [ -n additional_rkts:possible_rkt_files:possible_rkt_strings ]
- + cut -d: -f2-
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + GROUP_TESTS=possible_rkt_files:possible_rkt_strings
- + [ hidden_procs = additional_rkts ]
- + [ -z possible_rkt_files:possible_rkt_strings ]
- + grep :hidden_procs:
- + echo :possible_rkt_files:possible_rkt_strings:
- + [ -n '' ]
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + cut -d: -f1
- + GROUP_NAME=network
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + grep :
- + [ -n network:packet_cap_apps:ports:hidden_ports:promisc ]
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + cut -d: -f2-
- + GROUP_TESTS=packet_cap_apps:ports:hidden_ports:promisc
- + [ hidden_procs = network ]
- + [ -z packet_cap_apps:ports:hidden_ports:promisc ]
- + echo :packet_cap_apps:ports:hidden_ports:promisc:
- + grep :hidden_procs:
- + [ -n '' ]
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + cut -d: -f1
- + GROUP_NAME=malware
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + grep :
- + [ -n malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
- + cut -d: -f2-
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + GROUP_TESTS=running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + [ hidden_procs = malware ]
- + [ -z running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
- + echo :running_procs:hidden_procs:deleted_files:suspscan:other_malware:
- + grep :hidden_procs:
- + [ -n :running_procs:hidden_procs:deleted_files:suspscan:other_malware: ]
- + TEMP_DIS_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network rootkits malware'
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + cut -d: -f1
- + GROUP_NAME=local_host
- + grep :
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + [ -n local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + cut -d: -f2-
- + GROUP_TESTS=startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + [ hidden_procs = local_host ]
- + [ -z startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
- + echo :startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem:
- + grep :hidden_procs:
- + [ -n '' ]
- + echo startup_files:startup_malware
- + cut -d: -f1
- + GROUP_NAME=startup_files
- + echo startup_files:startup_malware
- + grep :
- + [ -n startup_files:startup_malware ]
- + echo startup_files:startup_malware
- + cut -d: -f2-
- + GROUP_TESTS=startup_malware
- + [ hidden_procs = startup_files ]
- + [ -z startup_malware ]
- + echo :startup_malware:
- + grep :hidden_procs:
- + [ -n '' ]
- + cut -d: -f1
- + echo os_specific:loaded_modules:avail_modules
- + GROUP_NAME=os_specific
- + grep :
- + echo os_specific:loaded_modules:avail_modules
- + [ -n os_specific:loaded_modules:avail_modules ]
- + cut -d: -f2-
- + echo os_specific:loaded_modules:avail_modules
- + GROUP_TESTS=loaded_modules:avail_modules
- + [ hidden_procs = os_specific ]
- + [ -z loaded_modules:avail_modules ]
- + grep :hidden_procs:
- + echo :loaded_modules:avail_modules:
- + [ -n '' ]
- + echo group_accounts:passwd_changes:group_changes
- + cut -d: -f1
- + GROUP_NAME=group_accounts
- + grep :
- + echo group_accounts:passwd_changes:group_changes
- + [ -n group_accounts:passwd_changes:group_changes ]
- + echo group_accounts:passwd_changes:group_changes
- + cut -d: -f2-
- + GROUP_TESTS=passwd_changes:group_changes
- + [ hidden_procs = group_accounts ]
- + [ -z passwd_changes:group_changes ]
- + echo :passwd_changes:group_changes:
- + grep :hidden_procs:
- + [ -n '' ]
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + cut -d: -f1
- + GROUP_NAME=system_commands
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + grep :
- + [ -n system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + cut -d: -f2-
- + GROUP_TESTS=properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + [ packet_cap_apps = system_commands ]
- + [ -z properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
- + echo :properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes:
- + grep :packet_cap_apps:
- + [ -n '' ]
- + cut -d: -f1
- + echo properties:hashes:scripts:immutable:attributes
- + GROUP_NAME=properties
- + grep :
- + echo properties:hashes:scripts:immutable:attributes
- + [ -n properties:hashes:scripts:immutable:attributes ]
- + echo properties:hashes:scripts:immutable:attributes
- + cut -d: -f2-
- + GROUP_TESTS=hashes:scripts:immutable:attributes
- + [ packet_cap_apps = properties ]
- + [ -z hashes:scripts:immutable:attributes ]
- + grep :packet_cap_apps:
- + echo :hashes:scripts:immutable:attributes:
- + [ -n '' ]
- + echo shared_libs:shared_libs_path
- + cut -d: -f1
- + GROUP_NAME=shared_libs
- + echo shared_libs:shared_libs_path
- + grep :
- + [ -n shared_libs:shared_libs_path ]
- + echo shared_libs:shared_libs_path
- + cut -d: -f2-
- + GROUP_TESTS=shared_libs_path
- + [ packet_cap_apps = shared_libs ]
- + [ -z shared_libs_path ]
- + echo :shared_libs_path:
- + grep :packet_cap_apps:
- + [ -n '' ]
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + cut -d: -f1
- + GROUP_NAME=rootkits
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + grep :
- + [ -n rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
- + cut -d: -f2-
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + GROUP_TESTS=known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + [ packet_cap_apps = rootkits ]
- + [ -z known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
- + echo :known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules:
- + grep :packet_cap_apps:
- + [ -n '' ]
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + cut -d: -f1
- + GROUP_NAME=additional_rkts
- + grep :
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + [ -n additional_rkts:possible_rkt_files:possible_rkt_strings ]
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + cut -d: -f2-
- + GROUP_TESTS=possible_rkt_files:possible_rkt_strings
- + [ packet_cap_apps = additional_rkts ]
- + [ -z possible_rkt_files:possible_rkt_strings ]
- + echo :possible_rkt_files:possible_rkt_strings:
- + grep :packet_cap_apps:
- + [ -n '' ]
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + cut -d: -f1
- + GROUP_NAME=network
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + grep :
- + [ -n network:packet_cap_apps:ports:hidden_ports:promisc ]
- + cut -d: -f2-
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + GROUP_TESTS=packet_cap_apps:ports:hidden_ports:promisc
- + [ packet_cap_apps = network ]
- + [ -z packet_cap_apps:ports:hidden_ports:promisc ]
- + echo :packet_cap_apps:ports:hidden_ports:promisc:
- + grep :packet_cap_apps:
- + [ -n :packet_cap_apps:ports:hidden_ports:promisc: ]
- + TEMP_DIS_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network rootkits malware network'
- + cut -d: -f1
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + GROUP_NAME=malware
- + grep :
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + [ -n malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + cut -d: -f2-
- + GROUP_TESTS=running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + [ packet_cap_apps = malware ]
- + [ -z running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
- + echo :running_procs:hidden_procs:deleted_files:suspscan:other_malware:
- + grep :packet_cap_apps:
- + [ -n '' ]
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + cut -d: -f1
- + GROUP_NAME=local_host
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + grep :
- + [ -n local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + cut -d: -f2-
- + GROUP_TESTS=startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + [ packet_cap_apps = local_host ]
- + [ -z startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
- + echo :startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem:
- + grep :packet_cap_apps:
- + [ -n '' ]
- + cut -d: -f1
- + echo startup_files:startup_malware
- + GROUP_NAME=startup_files
- + grep :
- + echo startup_files:startup_malware
- + [ -n startup_files:startup_malware ]
- + cut -d: -f2-
- + echo startup_files:startup_malware
- + GROUP_TESTS=startup_malware
- + [ packet_cap_apps = startup_files ]
- + [ -z startup_malware ]
- + grep :packet_cap_apps:
- + echo :startup_malware:
- + [ -n '' ]
- + echo os_specific:loaded_modules:avail_modules
- + cut -d: -f1
- + GROUP_NAME=os_specific
- + grep :
- + echo os_specific:loaded_modules:avail_modules
- + [ -n os_specific:loaded_modules:avail_modules ]
- + echo os_specific:loaded_modules:avail_modules
- + cut -d: -f2-
- + GROUP_TESTS=loaded_modules:avail_modules
- + [ packet_cap_apps = os_specific ]
- + [ -z loaded_modules:avail_modules ]
- + echo :loaded_modules:avail_modules:
- + grep :packet_cap_apps:
- + [ -n '' ]
- + echo group_accounts:passwd_changes:group_changes
- + cut -d: -f1
- + GROUP_NAME=group_accounts
- + echo group_accounts:passwd_changes:group_changes
- + grep :
- + [ -n group_accounts:passwd_changes:group_changes ]
- + echo group_accounts:passwd_changes:group_changes
- + cut -d: -f2-
- + GROUP_TESTS=passwd_changes:group_changes
- + [ packet_cap_apps = group_accounts ]
- + [ -z passwd_changes:group_changes ]
- + echo :passwd_changes:group_changes:
- + grep :packet_cap_apps:
- + [ -n '' ]
- + cut -d: -f1
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + GROUP_NAME=system_commands
- + grep :
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + [ -n system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
- + cut -d: -f2-
- + echo system_commands:properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + GROUP_TESTS=properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes
- + [ suspscan = system_commands ]
- + [ -z properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes ]
- + echo :properties:strings:hashes:scripts:shared_libs:shared_libs_path:immutable:attributes:
- + grep :suspscan:
- + [ -n '' ]
- + echo properties:hashes:scripts:immutable:attributes
- + cut -d: -f1
- + GROUP_NAME=properties
- + echo properties:hashes:scripts:immutable:attributes
- + grep :
- + [ -n properties:hashes:scripts:immutable:attributes ]
- + echo properties:hashes:scripts:immutable:attributes
- + cut -d: -f2-
- + GROUP_TESTS=hashes:scripts:immutable:attributes
- + [ suspscan = properties ]
- + [ -z hashes:scripts:immutable:attributes ]
- + echo :hashes:scripts:immutable:attributes:
- + grep :suspscan:
- + [ -n '' ]
- + cut -d: -f1
- + echo shared_libs:shared_libs_path
- + GROUP_NAME=shared_libs
- + echo shared_libs:shared_libs_path
- + grep :
- + [ -n shared_libs:shared_libs_path ]
- + cut -d: -f2-
- + echo shared_libs:shared_libs_path
- + GROUP_TESTS=shared_libs_path
- + [ suspscan = shared_libs ]
- + [ -z shared_libs_path ]
- + grep :suspscan:
- + echo :shared_libs_path:
- + [ -n '' ]
- + cut -d: -f1
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + GROUP_NAME=rootkits
- + grep :
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + [ -n rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
- + echo rootkits:known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + cut -d: -f2-
- + GROUP_TESTS=known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules
- + [ suspscan = rootkits ]
- + [ -z known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules ]
- + grep :suspscan:
- + echo :known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules:
- + [ -n :known_rkts:additional_rkts:possible_rkt_files:possible_rkt_strings:malware:running_procs:hidden_procs:deleted_files:trojans:other_malware:os_specific:suspscan:loaded_modules:avail_modules: ]
- + TEMP_DIS_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network rootkits malware network rootkits'
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + cut -d: -f1
- + GROUP_NAME=additional_rkts
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + grep :
- + [ -n additional_rkts:possible_rkt_files:possible_rkt_strings ]
- + echo additional_rkts:possible_rkt_files:possible_rkt_strings
- + cut -d: -f2-
- + GROUP_TESTS=possible_rkt_files:possible_rkt_strings
- + [ suspscan = additional_rkts ]
- + [ -z possible_rkt_files:possible_rkt_strings ]
- + echo :possible_rkt_files:possible_rkt_strings:
- + grep :suspscan:
- + [ -n '' ]
- + cut -d: -f1
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + GROUP_NAME=network
- + grep :
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + [ -n network:packet_cap_apps:ports:hidden_ports:promisc ]
- + cut -d: -f2-
- + echo network:packet_cap_apps:ports:hidden_ports:promisc
- + GROUP_TESTS=packet_cap_apps:ports:hidden_ports:promisc
- + [ suspscan = network ]
- + [ -z packet_cap_apps:ports:hidden_ports:promisc ]
- + echo :packet_cap_apps:ports:hidden_ports:promisc:
- + grep :suspscan:
- + [ -n '' ]
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + cut -d: -f1
- + GROUP_NAME=malware
- + grep :
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + [ -n malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
- + echo malware:running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + cut -d: -f2-
- + GROUP_TESTS=running_procs:hidden_procs:deleted_files:suspscan:other_malware
- + [ suspscan = malware ]
- + [ -z running_procs:hidden_procs:deleted_files:suspscan:other_malware ]
- + echo :running_procs:hidden_procs:deleted_files:suspscan:other_malware:
- + grep :suspscan:
- + [ -n :running_procs:hidden_procs:deleted_files:suspscan:other_malware: ]
- + TEMP_DIS_TESTS='deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network rootkits malware network rootkits malware'
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + cut -d: -f1
- + GROUP_NAME=local_host
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + grep :
- + [ -n local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
- + cut -d: -f2-
- + echo local_host:startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + GROUP_TESTS=startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem
- + [ suspscan = local_host ]
- + [ -z startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem ]
- + echo :startup_files:passwd_changes:group_changes:startup_malware:group_accounts:system_configs:filesystem:
- + grep :suspscan:
- + [ -n '' ]
- + cut -d: -f1
- + echo startup_files:startup_malware
- + GROUP_NAME=startup_files
- + grep :
- + echo startup_files:startup_malware
- + [ -n startup_files:startup_malware ]
- + echo startup_files:startup_malware
- + cut -d: -f2-
- + GROUP_TESTS=startup_malware
- + [ suspscan = startup_files ]
- + [ -z startup_malware ]
- + grep :suspscan:
- + echo :startup_malware:
- + [ -n '' ]
- + echo os_specific:loaded_modules:avail_modules
- + cut -d: -f1
- + GROUP_NAME=os_specific
- + echo os_specific:loaded_modules:avail_modules
- + grep :
- + [ -n os_specific:loaded_modules:avail_modules ]
- + echo os_specific:loaded_modules:avail_modules
- + cut -d: -f2-
- + GROUP_TESTS=loaded_modules:avail_modules
- + [ suspscan = os_specific ]
- + [ -z loaded_modules:avail_modules ]
- + echo :loaded_modules:avail_modules:
- + grep :suspscan:
- + [ -n '' ]
- + echo group_accounts:passwd_changes:group_changes
- + cut -d: -f1
- + GROUP_NAME=group_accounts
- + echo group_accounts:passwd_changes:group_changes
- + grep :
- + [ -n group_accounts:passwd_changes:group_changes ]
- + cut -d: -f2-
- + echo group_accounts:passwd_changes:group_changes
- + GROUP_TESTS=passwd_changes:group_changes
- + [ suspscan = group_accounts ]
- + [ -z passwd_changes:group_changes ]
- + grep :suspscan:
- + echo :passwd_changes:group_changes:
- + [ -n '' ]
- + echo deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network rootkits malware network rootkits malware
- + TEMP_DIS_TESTS=' deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network rootkits malware network rootkits malware '
- + echo ' deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network rootkits malware network rootkits malware '
- + grep ' filesystem '
- + [ -n '' ]
- + echo ' deleted_files hidden_ports hidden_procs packet_cap_apps suspscan rootkits malware network rootkits malware network rootkits malware '
- + grep ' local_host '
- + [ -n '' ]
- + echo filesystem local_host
- + TEMP_EN_TESTS='filesystem local_host'
- + [ -z 'filesystem local_host' ]
- + return
- + get_existwl_option
- + LEAVE=0
- + get_option newline-list EXISTWHITELIST
- + OPTMULTI=newline-list
- + OPTNAME=EXISTWHITELIST
- + ERRCODE=0
- + [ -z newline-list -o -z EXISTWHITELIST ]
- + grep -h ^EXISTWHITELIST= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + EXISTWL_OPT=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 ]
- + return
- + [ 1 -eq 1 -o 0 -eq 1 ]
- + get_syslog_option
- + LEAVE=0
- + [ -n '' ]
- + get_option single USE_SYSLOG
- + OPTMULTI=single
- + OPTNAME=USE_SYSLOG
- + ERRCODE=0
- + [ -z single -o -z USE_SYSLOG ]
- + grep -h ^USE_SYSLOG= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + USE_SYSLOG=''
- + test 0 -eq 1
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 ]
- + return
- + get_startup_paths_option
- + LEAVE=0
- + get_option space-list STARTUP_PATHS
- + OPTMULTI=space-list
- + OPTNAME=STARTUP_PATHS
- + ERRCODE=0
- + [ -z space-list -o -z STARTUP_PATHS ]
- + grep -h ^STARTUP_PATHS= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + STARTUP_PATHS=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 ]
- + return
- + get_rtkt_whitelist_options
- + LEAVE=0
- + get_option newline-list RTKT_FILE_WHITELIST
- + OPTMULTI=newline-list
- + OPTNAME=RTKT_FILE_WHITELIST
- + ERRCODE=0
- + [ -z newline-list -o -z RTKT_FILE_WHITELIST ]
- + grep -h ^RTKT_FILE_WHITELIST= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + RTKT_FILE_WHITELIST=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + get_option newline-list RTKT_DIR_WHITELIST
- + OPTMULTI=newline-list
- + OPTNAME=RTKT_DIR_WHITELIST
- + ERRCODE=0
- + [ -z newline-list -o -z RTKT_DIR_WHITELIST ]
- + grep -h ^RTKT_DIR_WHITELIST= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + RTKT_DIR_WHITELIST=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 ]
- + return
- + get_epoch_date_cmd_option
- + LEAVE=0
- + get_option single EPOCH_DATE_CMD
- + OPTMULTI=single
- + OPTNAME=EPOCH_DATE_CMD
- + ERRCODE=0
- + [ -z single -o -z EPOCH_DATE_CMD ]
- + grep -h ^EPOCH_DATE_CMD= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + EPOCH_DATE_CMD=''
- + [ 0 -eq 0 ]
- + [ '' = PERL ]
- + [ '' = NONE ]
- + [ -n '' ]
- + [ 0 -eq 0 ]
- + test_epoch_cmd date
- + RKHTMPVAR=date
- + date --date '5 seconds ago' +%s
- + grep '^[0-9][0-9]*$'
- + [ -n '' ]
- + return
- + test -n ''
- + [ 0 -eq 1 ]
- + return
- + get_phalanx2_option
- + test 0 -eq 0
- + return
- + get_summary_options
- + LEAVE=0
- + get_option single SHOW_SUMMARY_WARNINGS_NUMBER
- + OPTMULTI=single
- + OPTNAME=SHOW_SUMMARY_WARNINGS_NUMBER
- + ERRCODE=0
- + [ -z single -o -z SHOW_SUMMARY_WARNINGS_NUMBER ]
- + grep -h ^SHOW_SUMMARY_WARNINGS_NUMBER= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + SHOW_SUMMARY_WARNINGS_NUMBER=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + SHOW_SUMMARY_WARNINGS_NUMBER=0
- + get_option single SHOW_SUMMARY_TIME
- + OPTMULTI=single
- + OPTNAME=SHOW_SUMMARY_TIME
- + ERRCODE=0
- + [ -z single -o -z SHOW_SUMMARY_TIME ]
- + grep -h ^SHOW_SUMMARY_TIME= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + SHOW_SUMMARY_TIME=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + SHOW_SUMMARY_TIME=3
- + [ 0 -eq 1 ]
- + return
- + test 0 -eq 0
- + get_mailonwarn_option
- + LEAVE=0
- + get_option space-list MAIL-ON-WARNING
- + OPTMULTI=space-list
- + OPTNAME=MAIL-ON-WARNING
- + ERRCODE=0
- + [ -z space-list -o -z MAIL-ON-WARNING ]
- + grep -h ^MAIL-ON-WARNING= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + MAILONWARNING=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 ]
- + return
- + check_test system_configs
- + echo ' filesystem local_host '
- + grep ' system_configs '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- +
- + check_test filesystem
- + echo ' filesystem local_host '
- + grep ' filesystem '
- + [ 'filesystem local_host' = all -o -n ' filesystem local_host ' ]
- + echo ' deleted_files hidden_ports hidden_procs packet_cap_apps suspscan '
- + grep ' filesystem '
- + [ 'deleted_files hidden_ports hidden_procs packet_cap_apps suspscan' = none -o -z '' ]
- + return 0
- +
- + get_scan_mode_dev_option
- + LEAVE=0
- + get_option single SCAN_MODE_DEV
- + OPTMULTI=single
- + OPTNAME=SCAN_MODE_DEV
- + ERRCODE=0
- + [ -z single -o -z SCAN_MODE_DEV ]
- + grep -h ^SCAN_MODE_DEV= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + SCAN_MODE_DEV=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + SCAN_MODE_DEV=THOROUGH
- + [ 0 -eq 1 ]
- + return
- + get_missing_file_options
- + LEAVE=0
- + get_option space-list MISSING_LOGFILES
- + OPTMULTI=space-list
- + OPTNAME=MISSING_LOGFILES
- + ERRCODE=0
- + [ -z space-list -o -z MISSING_LOGFILES ]
- + grep -h ^MISSING_LOGFILES= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + LOGFILE_MISSING=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + get_option space-list EMPTY_LOGFILES
- + OPTMULTI=space-list
- + OPTNAME=EMPTY_LOGFILES
- + ERRCODE=0
- + [ -z space-list -o -z EMPTY_LOGFILES ]
- + grep -h ^EMPTY_LOGFILES= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + LOGFILE_EMPTY=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 ]
- + return
- + get_hidden_options
- + LEAVE=0
- + ALLOWHIDDENFILES=''
- + get_option newline-list ALLOWHIDDENFILE
- + OPTMULTI=newline-list
- + OPTNAME=ALLOWHIDDENFILE
- + ERRCODE=0
- + [ -z newline-list -o -z ALLOWHIDDENFILE ]
- + grep -h ^ALLOWHIDDENFILE= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + ALLOWHIDDENFILE_OPT=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + ALLOWHIDDENDIRS=''
- + get_option newline-list ALLOWHIDDENDIR
- + OPTMULTI=newline-list
- + OPTNAME=ALLOWHIDDENDIR
- + ERRCODE=0
- + [ -z newline-list -o -z ALLOWHIDDENDIR ]
- + grep -h ^ALLOWHIDDENDIR= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + ALLOWHIDDENDIR_OPT=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 ]
- + return
- + get_dev_options
- + LEAVE=0
- + ALLOWDEVFILES=''
- + get_option newline-list ALLOWDEVFILE
- + OPTMULTI=newline-list
- + OPTNAME=ALLOWDEVFILE
- + ERRCODE=0
- + [ -z newline-list -o -z ALLOWDEVFILE ]
- + grep -h ^ALLOWDEVFILE= /usr/local/etc/rkhunter.conf
- + RKHTMPVAR2=''
- + [ -z '' ]
- + echo ''
- + return 0
- + ALLOWDEVFILE_OPT=''
- + [ 0 -eq 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 ]
- + return
- + check_test trojans
- + grep ' trojans '
- + echo ' filesystem local_host '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- + check_test ports
- + echo ' filesystem local_host '
- + grep ' ports '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- + check_test hidden_ports
- + echo ' filesystem local_host '
- + grep ' hidden_ports '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- + check_test group_accounts
- + echo ' filesystem local_host '
- + grep ' group_accounts '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- + check_test shared_libs
- + grep ' shared_libs '
- + echo ' filesystem local_host '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- + check_test hidden_procs
- + echo ' filesystem local_host '
- + grep ' hidden_procs '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- + check_test hidden_ports
- + echo ' filesystem local_host '
- + grep ' hidden_ports '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- + check_test deleted_files
- + grep ' deleted_files '
- + echo ' filesystem local_host '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- + check_test suspscan
- + echo ' filesystem local_host '
- + grep ' suspscan '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- + check_test network
- + echo ' filesystem local_host '
- + grep ' network '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- + check_test os_specific
- + echo ' filesystem local_host '
- + grep ' os_specific '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- + check_test apps
- + grep ' apps '
- + echo ' filesystem local_host '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- + check_test properties
- + echo ' filesystem local_host '
- + grep ' properties '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- +
- + test 0 -eq 1
- + test 0 -eq 1
- + [ 0 -eq 1 -o 0 -eq 1 ]
- + [ 0 -eq 1 -o 0 -eq 1 -o 0 -eq 1 ]
- + return
- + [ 0 -eq 1 ]
- + [ -n '' ]
- + [ 0 -eq 1 ]
- + [ /var/log/rkhunter.log = /dev/null ]
- + [ 1 -eq 1 ]
- + NORMAL='[0;39m'
- + [ 0 -eq 0 ]
- + RED='[1;31m'
- + GREEN='[1;32m'
- + YELLOW='[1;33m'
- + WHITE='[1;37m'
- + [ 1 -eq 1 ]
- + [ -f /proc/ksyms ]
- + [ -f /proc/kallsyms ]
- + head -n 1 /proc/kallsyms
- + [ -z '' ]
- + KSYMS_FILE=''
- + [ 1 -eq 1 -o 0 -eq 1 ]
- + [ -e /usr/local/var/lib/rkhunter/db/rkhunter.dat ]
- + [ -h /usr/local/var/lib/rkhunter/db/rkhunter.dat ]
- + [ ! -f /usr/local/var/lib/rkhunter/db/rkhunter.dat ]
- + [ -e /usr/local/var/lib/rkhunter/db/rkhunter_prop_list.dat ]
- + [ -h /usr/local/var/lib/rkhunter/db/rkhunter_prop_list.dat ]
- + [ ! -f /usr/local/var/lib/rkhunter/db/rkhunter_prop_list.dat ]
- + [ -n '' ]
- + check_test properties
- + grep ' properties '
- + echo ' filesystem local_host '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- +
- + test 0 -eq 1
- + get_old_prop_attrs /usr/local/var/lib/rkhunter/db/rkhunter.dat
- + FNAME=/usr/local/var/lib/rkhunter/db/rkhunter.dat
- + test -z /usr/local/var/lib/rkhunter/db/rkhunter.dat -o ! -f /usr/local/var/lib/rkhunter/db/rkhunter.dat
- + [ -s /usr/local/var/lib/rkhunter/db/rkhunter.dat ]
- + grep ^Hash: /usr/local/var/lib/rkhunter/db/rkhunter.dat
- + cut -d: -f2-
- + OLD_HASH_FUNC=/sbin/sha1
- + cut -d: -f2
- + grep ^Pkgmgr: /usr/local/var/lib/rkhunter/db/rkhunter.dat
- + OLD_PKGMGR=''
- + cut -d: -f2
- + grep ^Attributes: /usr/local/var/lib/rkhunter/db/rkhunter.dat
- + OLD_ATTRUPD=Stored
- + return
- + [ 0 -eq 1 -a 0 -eq 1 -a -z '' -a '' != NONE ]
- + [ 0 -eq 1 -o 0 -eq 1 ]
- + [ 1 -eq 0 -a 0 -eq 0 -a 0 -eq 0 -a 0 -eq 0 -a 0 -eq 0 ]
- + [ 0 -eq 1 ]
- + test 0 -eq 1 -o 0 -eq 1
- + IFS='
- '
- + egrep '^MSG_(TYPE|RESULT)_' /usr/local/var/lib/rkhunter/db/i18n/en
- + echo MSG_TYPE_PLAIN:
- + cut -d: -f1
- + TYPE=MSG_TYPE_PLAIN
- + [ en != en ]
- + echo MSG_TYPE_PLAIN:
- + cut -d: -f2-
- + RKHTMPVAR=''
- + eval 'MSG_TYPE_PLAIN=""'
- + MSG_TYPE_PLAIN=''
- + echo MSG_TYPE_INFO:Info
- + cut -d: -f1
- + TYPE=MSG_TYPE_INFO
- + [ en != en ]
- + echo MSG_TYPE_INFO:Info
- + cut -d: -f2-
- + RKHTMPVAR=Info
- + eval 'MSG_TYPE_INFO="Info"'
- + MSG_TYPE_INFO=Info
- + echo MSG_TYPE_WARNING:Warning
- + cut -d: -f1
- + TYPE=MSG_TYPE_WARNING
- + [ en != en ]
- + echo MSG_TYPE_WARNING:Warning
- + cut -d: -f2-
- + RKHTMPVAR=Warning
- + eval 'MSG_TYPE_WARNING="Warning"'
- + MSG_TYPE_WARNING=Warning
- + echo MSG_RESULT_OK:OK
- + cut -d: -f1
- + TYPE=MSG_RESULT_OK
- + [ en != en ]
- + cut -d: -f2-
- + echo MSG_RESULT_OK:OK
- + RKHTMPVAR=OK
- + eval 'MSG_RESULT_OK="OK"'
- + MSG_RESULT_OK=OK
- + cut -d: -f1
- + echo MSG_RESULT_SKIPPED:Skipped
- + TYPE=MSG_RESULT_SKIPPED
- + [ en != en ]
- + echo MSG_RESULT_SKIPPED:Skipped
- + cut -d: -f2-
- + RKHTMPVAR=Skipped
- + eval 'MSG_RESULT_SKIPPED="Skipped"'
- + MSG_RESULT_SKIPPED=Skipped
- + echo MSG_RESULT_WARNING:Warning
- + cut -d: -f1
- + TYPE=MSG_RESULT_WARNING
- + [ en != en ]
- + echo MSG_RESULT_WARNING:Warning
- + cut -d: -f2-
- + RKHTMPVAR=Warning
- + eval 'MSG_RESULT_WARNING="Warning"'
- + MSG_RESULT_WARNING=Warning
- + echo MSG_RESULT_FOUND:Found
- + cut -d: -f1
- + TYPE=MSG_RESULT_FOUND
- + [ en != en ]
- + echo MSG_RESULT_FOUND:Found
- + cut -d: -f2-
- + RKHTMPVAR=Found
- + eval 'MSG_RESULT_FOUND="Found"'
- + MSG_RESULT_FOUND=Found
- + cut -d: -f1
- + echo 'MSG_RESULT_NOT_FOUND:Not found'
- + TYPE=MSG_RESULT_NOT_FOUND
- + [ en != en ]
- + cut -d: -f2-
- + echo 'MSG_RESULT_NOT_FOUND:Not found'
- + RKHTMPVAR='Not found'
- + eval 'MSG_RESULT_NOT_FOUND="Not found"'
- + MSG_RESULT_NOT_FOUND='Not found'
- + echo 'MSG_RESULT_NONE_FOUND:None found'
- + cut -d: -f1
- + TYPE=MSG_RESULT_NONE_FOUND
- + [ en != en ]
- + echo 'MSG_RESULT_NONE_FOUND:None found'
- + cut -d: -f2-
- + RKHTMPVAR='None found'
- + eval 'MSG_RESULT_NONE_FOUND="None found"'
- + MSG_RESULT_NONE_FOUND='None found'
- + echo MSG_RESULT_ALLOWED:Allowed
- + cut -d: -f1
- + TYPE=MSG_RESULT_ALLOWED
- + [ en != en ]
- + echo MSG_RESULT_ALLOWED:Allowed
- + cut -d: -f2-
- + RKHTMPVAR=Allowed
- + eval 'MSG_RESULT_ALLOWED="Allowed"'
- + MSG_RESULT_ALLOWED=Allowed
- + echo 'MSG_RESULT_NOT_ALLOWED:Not allowed'
- + cut -d: -f1
- + TYPE=MSG_RESULT_NOT_ALLOWED
- + [ en != en ]
- + echo 'MSG_RESULT_NOT_ALLOWED:Not allowed'
- + cut -d: -f2-
- + RKHTMPVAR='Not allowed'
- + eval 'MSG_RESULT_NOT_ALLOWED="Not allowed"'
- + MSG_RESULT_NOT_ALLOWED='Not allowed'
- + cut -d: -f1
- + echo 'MSG_RESULT_UNSET:Not set'
- + TYPE=MSG_RESULT_UNSET
- + [ en != en ]
- + cut -d: -f2-
- + echo 'MSG_RESULT_UNSET:Not set'
- + RKHTMPVAR='Not set'
- + eval 'MSG_RESULT_UNSET="Not set"'
- + MSG_RESULT_UNSET='Not set'
- + echo MSG_RESULT_WHITELISTED:Whitelisted
- + cut -d: -f1
- + TYPE=MSG_RESULT_WHITELISTED
- + [ en != en ]
- + echo MSG_RESULT_WHITELISTED:Whitelisted
- + cut -d: -f2-
- + RKHTMPVAR=Whitelisted
- + eval 'MSG_RESULT_WHITELISTED="Whitelisted"'
- + MSG_RESULT_WHITELISTED=Whitelisted
- + echo 'MSG_RESULT_NONE_MISSING:None missing'
- + cut -d: -f1
- + TYPE=MSG_RESULT_NONE_MISSING
- + [ en != en ]
- + echo 'MSG_RESULT_NONE_MISSING:None missing'
- + cut -d: -f2-
- + RKHTMPVAR='None missing'
- + eval 'MSG_RESULT_NONE_MISSING="None missing"'
- + MSG_RESULT_NONE_MISSING='None missing'
- + echo MSG_RESULT_UPD:Updated
- + cut -d: -f1
- + TYPE=MSG_RESULT_UPD
- + [ en != en ]
- + echo MSG_RESULT_UPD:Updated
- + cut -d: -f2-
- + RKHTMPVAR=Updated
- + eval 'MSG_RESULT_UPD="Updated"'
- + MSG_RESULT_UPD=Updated
- + cut -d: -f1
- + echo 'MSG_RESULT_NO_UPD:No update'
- + TYPE=MSG_RESULT_NO_UPD
- + [ en != en ]
- + cut -d: -f2-
- + echo 'MSG_RESULT_NO_UPD:No update'
- + RKHTMPVAR='No update'
- + eval 'MSG_RESULT_NO_UPD="No update"'
- + MSG_RESULT_NO_UPD='No update'
- + cut -d: -f1
- + echo 'MSG_RESULT_UPD_FAILED:Update failed'
- + TYPE=MSG_RESULT_UPD_FAILED
- + [ en != en ]
- + echo 'MSG_RESULT_UPD_FAILED:Update failed'
- + cut -d: -f2-
- + RKHTMPVAR='Update failed'
- + eval 'MSG_RESULT_UPD_FAILED="Update failed"'
- + MSG_RESULT_UPD_FAILED='Update failed'
- + echo 'MSG_RESULT_VCHK_FAILED:Version check failed'
- + cut -d: -f1
- + TYPE=MSG_RESULT_VCHK_FAILED
- + [ en != en ]
- + echo 'MSG_RESULT_VCHK_FAILED:Version check failed'
- + cut -d: -f2-
- + RKHTMPVAR='Version check failed'
- + eval 'MSG_RESULT_VCHK_FAILED="Version check failed"'
- + MSG_RESULT_VCHK_FAILED='Version check failed'
- + IFS='
- '
- + [ 0 -eq 1 ]
- + [ 0 -eq 0 ]
- + [ 0 -eq 0 ]
- + [ -f /var/log/rkhunter.log ]
- + cp -f -p /var/log/rkhunter.log /var/log/rkhunter.log.old
- + [ c = c ]
- + echo -e '\c'
- + hostname
- + HOST_NAME=beaglebone
- + test -z beaglebone
- + test -z beaglebone
- + echo beaglebone
- + cut -d. -f1
- + HOST_NAME=beaglebone
- + display --to SCREEN --type PLAIN VERSIONLINE 'Rootkit Hunter' 1.4.2
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to SCREEN --type PLAIN VERSIONLINE Rootkit Hunter 1.4.2'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=SCREEN
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=VERSIONLINE
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test SCREEN = SCREEN -o SCREEN = SCREEN+LOG
- + WRITETOTTY=1
- + test SCREEN = LOG -o SCREEN = SCREEN+LOG
- + WRITETOLOG=0
- + [ 1 -eq 0 -a 0 -eq 0 ]
- + [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n VERSIONLINE ]
- + grep -a ^VERSIONLINE: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='[ $1 version $2 ]'
- + [ 0 -eq 1 ]
- + [ -z '[ $1 version $2 ]' ]
- + echo '[ $1 version $2 ]'
- + sed -e 's/`/\\`/g'
- + LINE1='[ $1 version $2 ]'
- + test -n '[ $1 version $2 ]'
- + eval 'echo "[ $1 version $2 ]" | sed -e '\''s/;/\;/g'\'
- + echo '[ Rootkit Hunter version 1.4.2 ]'
- + sed -e 's/;/\;/g'
- + LINE1='[ Rootkit Hunter version 1.4.2 ]'
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 1 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + NLLOOP=0
- + test 0 -gt 0
- + [ '' = c ]
- + echo -e '[ Rootkit Hunter version 1.4.2 ]'
- [ Rootkit Hunter version 1.4.2 ]
- + [ 0 -eq 1 ]
- + test 1 -eq 1 -a 0 -eq 1
- + return
- + [ 0 -eq 0 ]
- + [ -n beaglebone ]
- + display --to LOG --type PLAIN VERSIONLINE2 'Rootkit Hunter' 1.4.2 beaglebone
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type PLAIN VERSIONLINE2 Rootkit Hunter 1.4.2 beaglebone'
- + [ 8 -le 0 ]
- + [ 8 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 6 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 4 -ge 1 ]
- + MSG=VERSIONLINE2
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n VERSIONLINE2 ]
- + grep -a ^VERSIONLINE2: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Running $1 version $2 on $3'
- + [ 0 -eq 1 ]
- + [ -z 'Running $1 version $2 on $3' ]
- + echo 'Running $1 version $2 on $3'
- + sed -e 's/`/\\`/g'
- + LINE1='Running $1 version $2 on $3'
- + test -n 'Running $1 version $2 on $3'
- + eval 'echo "Running $1 version $2 on $3" | sed -e '\''s/;/\;/g'\'
- + echo 'Running Rootkit Hunter version 1.4.2 on beaglebone'
- + sed -e 's/;/\;/g'
- + LINE1='Running Rootkit Hunter version 1.4.2 on beaglebone'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:43]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n '' ]
- + test 0 -gt 0
- + LOGLINE1='[04:21:43] Running Rootkit Hunter version 1.4.2 on beaglebone'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:43] Running Rootkit Hunter version 1.4.2 on beaglebone'
- + [ 0 -eq 1 ]
- + echo '[04:21:43] Running Rootkit Hunter version 1.4.2 on beaglebone'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + date
- + display --to LOG --type INFO --nl RKH_STARTDATE 'Sun Oct 4 04:21:43 MDT 2015'
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO --nl RKH_STARTDATE Sun Oct 4 04:21:43 MDT 2015'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + NL=1
- + shift
- + [ 2 -ge 1 ]
- + MSG=RKH_STARTDATE
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n RKH_STARTDATE ]
- + cut -d: -f2-
- + grep -a ^RKH_STARTDATE: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + LINE1='Start date is $1'
- + [ 0 -eq 1 ]
- + [ -z 'Start date is $1' ]
- + sed -e 's/`/\\`/g'
- + echo 'Start date is $1'
- + LINE1='Start date is $1'
- + test -n 'Start date is $1'
- + eval 'echo "Start date is $1" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'Start date is Sun Oct 4 04:21:43 MDT 2015'
- + LINE1='Start date is Sun Oct 4 04:21:43 MDT 2015'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:43]'
- + test 1 -gt 0 -o 0 -eq 1
- + echo '[04:21:43]'
- + [ -n Info ]
- + LOGLINE1='[04:21:43] Info: Start date is Sun Oct 4 04:21:43 MDT 2015'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:43] Info: Start date is Sun Oct 4 04:21:43 MDT 2015'
- + [ 0 -eq 1 ]
- + echo '[04:21:43] Info: Start date is Sun Oct 4 04:21:43 MDT 2015'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + display --to LOG --type PLAIN --nl CONFIG_CHECK_START
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type PLAIN --nl CONFIG_CHECK_START'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + NL=1
- + shift
- + [ 1 -ge 1 ]
- + MSG=CONFIG_CHECK_START
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n CONFIG_CHECK_START ]
- + grep -a ^CONFIG_CHECK_START: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Checking configuration file and command-line options...'
- + [ 0 -eq 1 ]
- + [ -z 'Checking configuration file and command-line options...' ]
- + echo 'Checking configuration file and command-line options...'
- + sed -e 's/`/\\`/g'
- + LINE1='Checking configuration file and command-line options...'
- + test -n 'Checking configuration file and command-line options...'
- + eval 'echo "Checking configuration file and command-line options..." | sed -e '\''s/;/\;/g'\'
- + echo 'Checking configuration file and command-line options...'
- + sed -e 's/;/\;/g'
- + LINE1='Checking configuration file and command-line options...'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:44]'
- + test 1 -gt 0 -o 0 -eq 1
- + echo '[04:21:44]'
- + [ -n '' ]
- + test 0 -gt 0
- + LOGLINE1='[04:21:44] Checking configuration file and command-line options...'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:44] Checking configuration file and command-line options...'
- + [ 0 -eq 1 ]
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + echo '[04:21:44] Checking configuration file and command-line options...'
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + display --to LOG --type INFO OPSYS FreeBSD
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO OPSYS FreeBSD'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=OPSYS
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n OPSYS ]
- + grep -a ^OPSYS: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Detected operating system is '\''$1'\'
- + [ 0 -eq 1 ]
- + [ -z 'Detected operating system is '\''$1'\' ]
- + echo 'Detected operating system is '\''$1'\'
- + sed -e 's/`/\\`/g'
- + LINE1='Detected operating system is '\''$1'\'
- + test -n 'Detected operating system is '\''$1'\'
- + eval 'echo "Detected operating system is '\''$1'\''" | sed -e '\''s/;/\;/g'\'
- + echo 'Detected operating system is '\''FreeBSD'\'
- + sed -e 's/;/\;/g'
- + LINE1='Detected operating system is '\''FreeBSD'\'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:44]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:44] Info: Detected operating system is '\''FreeBSD'\'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:44] Info: Detected operating system is '\''FreeBSD'\'
- + [ 0 -eq 1 ]
- + echo '[04:21:44] Info: Detected operating system is '\''FreeBSD'\'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + [ -s /usr/local/var/lib/rkhunter/db/rkhunter.dat ]
- + grep ^OS: /usr/local/var/lib/rkhunter/db/rkhunter.dat
- + sed -e s/^OS://
- + RKHTMPVAR='FreeBSD 10.2-STABLE'
- + [ -n 'FreeBSD 10.2-STABLE' ]
- + display --to LOG --type INFO PROPUPD_OSNAME_FOUND 'FreeBSD 10.2-STABLE'
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO PROPUPD_OSNAME_FOUND FreeBSD 10.2-STABLE'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=PROPUPD_OSNAME_FOUND
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n PROPUPD_OSNAME_FOUND ]
- + grep -a ^PROPUPD_OSNAME_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Found O/S name: $1'
- + [ 0 -eq 1 ]
- + [ -z 'Found O/S name: $1' ]
- + echo 'Found O/S name: $1'
- + sed -e 's/`/\\`/g'
- + LINE1='Found O/S name: $1'
- + test -n 'Found O/S name: $1'
- + eval 'echo "Found O/S name: $1" | sed -e '\''s/;/\;/g'\'
- + echo 'Found O/S name: FreeBSD 10.2-STABLE'
- + sed -e 's/;/\;/g'
- + LINE1='Found O/S name: FreeBSD 10.2-STABLE'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:44]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:44] Info: Found O/S name: FreeBSD 10.2-STABLE'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:44] Info: Found O/S name: FreeBSD 10.2-STABLE'
- + [ 0 -eq 1 ]
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + echo '[04:21:44] Info: Found O/S name: FreeBSD 10.2-STABLE'
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + display --to LOG --type INFO CONFIG_CMDLINE '/usr/local/bin/rkhunter --enable filesystem --check --debug'
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO CONFIG_CMDLINE /usr/local/bin/rkhunter --enable filesystem --check --debug'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=CONFIG_CMDLINE
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n CONFIG_CMDLINE ]
- + grep -a ^CONFIG_CMDLINE: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Command line is $1'
- + [ 0 -eq 1 ]
- + [ -z 'Command line is $1' ]
- + echo 'Command line is $1'
- + sed -e 's/`/\\`/g'
- + LINE1='Command line is $1'
- + test -n 'Command line is $1'
- + eval 'echo "Command line is $1" | sed -e '\''s/;/\;/g'\'
- + echo 'Command line is /usr/local/bin/rkhunter --enable filesystem --check --debug'
- + sed -e 's/;/\;/g'
- + LINE1='Command line is /usr/local/bin/rkhunter --enable filesystem --check --debug'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:44]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:44] Info: Command line is /usr/local/bin/rkhunter --enable filesystem --check --debug'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:44] Info: Command line is /usr/local/bin/rkhunter --enable filesystem --check --debug'
- + [ 0 -eq 1 ]
- + echo '[04:21:44] Info: Command line is /usr/local/bin/rkhunter --enable filesystem --check --debug'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + test 1 -eq 1
- + display --to LOG --type INFO CONFIG_DEBUGFILE /tmp/rkhunter-debug.5iMmvgeVys
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO CONFIG_DEBUGFILE /tmp/rkhunter-debug.5iMmvgeVys'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=CONFIG_DEBUGFILE
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n CONFIG_DEBUGFILE ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^CONFIG_DEBUGFILE: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Debug file is $1'
- + [ 0 -eq 1 ]
- + [ -z 'Debug file is $1' ]
- + sed -e 's/`/\\`/g'
- + echo 'Debug file is $1'
- + LINE1='Debug file is $1'
- + test -n 'Debug file is $1'
- + eval 'echo "Debug file is $1" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'Debug file is /tmp/rkhunter-debug.5iMmvgeVys'
- + LINE1='Debug file is /tmp/rkhunter-debug.5iMmvgeVys'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:44]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:44] Info: Debug file is /tmp/rkhunter-debug.5iMmvgeVys'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:44] Info: Debug file is /tmp/rkhunter-debug.5iMmvgeVys'
- + [ 0 -eq 1 ]
- + echo '[04:21:44] Info: Debug file is /tmp/rkhunter-debug.5iMmvgeVys'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + display --to LOG --type INFO CONFIG_ENVSHELL /bin/tcsh sh
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO CONFIG_ENVSHELL /bin/tcsh sh'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=CONFIG_ENVSHELL
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n CONFIG_ENVSHELL ]
- + grep -a ^CONFIG_ENVSHELL: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Environment shell is $1; rkhunter is using $2'
- + [ 0 -eq 1 ]
- + [ -z 'Environment shell is $1; rkhunter is using $2' ]
- + echo 'Environment shell is $1; rkhunter is using $2'
- + sed -e 's/`/\\`/g'
- + LINE1='Environment shell is $1; rkhunter is using $2'
- + test -n 'Environment shell is $1; rkhunter is using $2'
- + eval 'echo "Environment shell is $1; rkhunter is using $2" | sed -e '\''s/;/\;/g'\'
- + echo 'Environment shell is /bin/tcsh; rkhunter is using sh'
- + sed -e 's/;/\;/g'
- + LINE1='Environment shell is /bin/tcsh; rkhunter is using sh'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:45]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:45] Info: Environment shell is /bin/tcsh; rkhunter is using sh'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:45] Info: Environment shell is /bin/tcsh; rkhunter is using sh'
- + [ 0 -eq 1 ]
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + echo '[04:21:45] Info: Environment shell is /bin/tcsh; rkhunter is using sh'
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + display --to LOG --type INFO CONFIG_CONFIGFILE /usr/local/etc/rkhunter.conf
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO CONFIG_CONFIGFILE /usr/local/etc/rkhunter.conf'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=CONFIG_CONFIGFILE
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n CONFIG_CONFIGFILE ]
- + grep -a ^CONFIG_CONFIGFILE: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Using configuration file '\''$1'\'
- + [ 0 -eq 1 ]
- + [ -z 'Using configuration file '\''$1'\' ]
- + echo 'Using configuration file '\''$1'\'
- + sed -e 's/`/\\`/g'
- + LINE1='Using configuration file '\''$1'\'
- + test -n 'Using configuration file '\''$1'\'
- + eval 'echo "Using configuration file '\''$1'\''" | sed -e '\''s/;/\;/g'\'
- + echo 'Using configuration file '\''/usr/local/etc/rkhunter.conf'\'
- + sed -e 's/;/\;/g'
- + LINE1='Using configuration file '\''/usr/local/etc/rkhunter.conf'\'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:45]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:45] Info: Using configuration file '\''/usr/local/etc/rkhunter.conf'\'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:45] Info: Using configuration file '\''/usr/local/etc/rkhunter.conf'\'
- + [ 0 -eq 1 ]
- + echo '[04:21:45] Info: Using configuration file '\''/usr/local/etc/rkhunter.conf'\'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + test -n ''
- + [ -n '' ]
- + display --to LOG --type INFO CONFIG_INSTALLDIR /usr/local
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO CONFIG_INSTALLDIR /usr/local'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=CONFIG_INSTALLDIR
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n CONFIG_INSTALLDIR ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^CONFIG_INSTALLDIR: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Installation directory is '\''$1'\'
- + [ 0 -eq 1 ]
- + [ -z 'Installation directory is '\''$1'\' ]
- + sed -e 's/`/\\`/g'
- + echo 'Installation directory is '\''$1'\'
- + LINE1='Installation directory is '\''$1'\'
- + test -n 'Installation directory is '\''$1'\'
- + eval 'echo "Installation directory is '\''$1'\''" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'Installation directory is '\''/usr/local'\'
- + LINE1='Installation directory is '\''/usr/local'\'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:45]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:45] Info: Installation directory is '\''/usr/local'\'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:45] Info: Installation directory is '\''/usr/local'\'
- + [ 0 -eq 1 ]
- + echo '[04:21:45] Info: Installation directory is '\''/usr/local'\'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + display --to LOG --type INFO CONFIG_LANGUAGE en
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO CONFIG_LANGUAGE en'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=CONFIG_LANGUAGE
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n CONFIG_LANGUAGE ]
- + grep -a ^CONFIG_LANGUAGE: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Using language '\''$1'\'
- + [ 0 -eq 1 ]
- + [ -z 'Using language '\''$1'\' ]
- + echo 'Using language '\''$1'\'
- + sed -e 's/`/\\`/g'
- + LINE1='Using language '\''$1'\'
- + test -n 'Using language '\''$1'\'
- + eval 'echo "Using language '\''$1'\''" | sed -e '\''s/;/\;/g'\'
- + echo 'Using language '\''en'\'
- + sed -e 's/;/\;/g'
- + LINE1='Using language '\''en'\'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:45]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:45] Info: Using language '\''en'\'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:45] Info: Using language '\''en'\'
- + [ 0 -eq 1 ]
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + echo '[04:21:45] Info: Using language '\''en'\'
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + display --to LOG --type INFO CONFIG_DBDIR /usr/local/var/lib/rkhunter/db
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO CONFIG_DBDIR /usr/local/var/lib/rkhunter/db'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=CONFIG_DBDIR
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n CONFIG_DBDIR ]
- + grep -a ^CONFIG_DBDIR: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Using '\''$1'\'' as the database directory'
- + [ 0 -eq 1 ]
- + [ -z 'Using '\''$1'\'' as the database directory' ]
- + echo 'Using '\''$1'\'' as the database directory'
- + sed -e 's/`/\\`/g'
- + LINE1='Using '\''$1'\'' as the database directory'
- + test -n 'Using '\''$1'\'' as the database directory'
- + eval 'echo "Using '\''$1'\'' as the database directory" | sed -e '\''s/;/\;/g'\'
- + echo 'Using '\''/usr/local/var/lib/rkhunter/db'\'' as the database directory'
- + sed -e 's/;/\;/g'
- + LINE1='Using '\''/usr/local/var/lib/rkhunter/db'\'' as the database directory'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:45]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:45] Info: Using '\''/usr/local/var/lib/rkhunter/db'\'' as the database directory'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:45] Info: Using '\''/usr/local/var/lib/rkhunter/db'\'' as the database directory'
- + [ 0 -eq 1 ]
- + echo '[04:21:45] Info: Using '\''/usr/local/var/lib/rkhunter/db'\'' as the database directory'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + display --to LOG --type INFO CONFIG_SCRIPTDIR /usr/local/lib/rkhunter/scripts
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO CONFIG_SCRIPTDIR /usr/local/lib/rkhunter/scripts'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=CONFIG_SCRIPTDIR
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n CONFIG_SCRIPTDIR ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^CONFIG_SCRIPTDIR: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Using '\''$1'\'' as the support script directory'
- + [ 0 -eq 1 ]
- + [ -z 'Using '\''$1'\'' as the support script directory' ]
- + sed -e 's/`/\\`/g'
- + echo 'Using '\''$1'\'' as the support script directory'
- + LINE1='Using '\''$1'\'' as the support script directory'
- + test -n 'Using '\''$1'\'' as the support script directory'
- + eval 'echo "Using '\''$1'\'' as the support script directory" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'Using '\''/usr/local/lib/rkhunter/scripts'\'' as the support script directory'
- + LINE1='Using '\''/usr/local/lib/rkhunter/scripts'\'' as the support script directory'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:45]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:45] Info: Using '\''/usr/local/lib/rkhunter/scripts'\'' as the support script directory'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:45] Info: Using '\''/usr/local/lib/rkhunter/scripts'\'' as the support script directory'
- + [ 0 -eq 1 ]
- + echo '[04:21:45] Info: Using '\''/usr/local/lib/rkhunter/scripts'\'' as the support script directory'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + display --to LOG --type INFO CONFIG_BINDIR '/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO CONFIG_BINDIR /sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=CONFIG_BINDIR
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n CONFIG_BINDIR ]
- + grep -a ^CONFIG_BINDIR: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Using '\''$1'\'' as the command directories'
- + [ 0 -eq 1 ]
- + [ -z 'Using '\''$1'\'' as the command directories' ]
- + echo 'Using '\''$1'\'' as the command directories'
- + sed -e 's/`/\\`/g'
- + LINE1='Using '\''$1'\'' as the command directories'
- + test -n 'Using '\''$1'\'' as the command directories'
- + eval 'echo "Using '\''$1'\'' as the command directories" | sed -e '\''s/;/\;/g'\'
- + echo 'Using '\''/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'\'' as the command directories'
- + sed -e 's/;/\;/g'
- + LINE1='Using '\''/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'\'' as the command directories'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:46]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:46] Info: Using '\''/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'\'' as the command directories'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:46] Info: Using '\''/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'\'' as the command directories'
- + [ 0 -eq 1 ]
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + echo '[04:21:46] Info: Using '\''/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/libexec /usr/local/libexec'\'' as the command directories'
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + display --to LOG --type INFO CONFIG_TMPDIR /usr/local/var/lib/rkhunter/tmp
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO CONFIG_TMPDIR /usr/local/var/lib/rkhunter/tmp'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=CONFIG_TMPDIR
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n CONFIG_TMPDIR ]
- + grep -a ^CONFIG_TMPDIR: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Using '\''$1'\'' as the temporary directory'
- + [ 0 -eq 1 ]
- + [ -z 'Using '\''$1'\'' as the temporary directory' ]
- + echo 'Using '\''$1'\'' as the temporary directory'
- + sed -e 's/`/\\`/g'
- + LINE1='Using '\''$1'\'' as the temporary directory'
- + test -n 'Using '\''$1'\'' as the temporary directory'
- + eval 'echo "Using '\''$1'\'' as the temporary directory" | sed -e '\''s/;/\;/g'\'
- + echo 'Using '\''/usr/local/var/lib/rkhunter/tmp'\'' as the temporary directory'
- + sed -e 's/;/\;/g'
- + LINE1='Using '\''/usr/local/var/lib/rkhunter/tmp'\'' as the temporary directory'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:46]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:46] Info: Using '\''/usr/local/var/lib/rkhunter/tmp'\'' as the temporary directory'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:46] Info: Using '\''/usr/local/var/lib/rkhunter/tmp'\'' as the temporary directory'
- + [ 0 -eq 1 ]
- + echo '[04:21:46] Info: Using '\''/usr/local/var/lib/rkhunter/tmp'\'' as the temporary directory'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + [ 1 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ -z '' ]
- + display --to LOG --type INFO CONFIG_NO_MAIL_ON_WARN
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO CONFIG_NO_MAIL_ON_WARN'
- + [ 5 -le 0 ]
- + [ 5 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 3 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 1 -ge 1 ]
- + MSG=CONFIG_NO_MAIL_ON_WARN
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n CONFIG_NO_MAIL_ON_WARN ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^CONFIG_NO_MAIL_ON_WARN: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='No mail-on-warning address configured'
- + [ 0 -eq 1 ]
- + [ -z 'No mail-on-warning address configured' ]
- + sed -e 's/`/\\`/g'
- + echo 'No mail-on-warning address configured'
- + LINE1='No mail-on-warning address configured'
- + test -n 'No mail-on-warning address configured'
- + eval 'echo "No mail-on-warning address configured" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'No mail-on-warning address configured'
- + LINE1='No mail-on-warning address configured'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:46]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:46] Info: No mail-on-warning address configured'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:46] Info: No mail-on-warning address configured'
- + [ 0 -eq 1 ]
- + echo '[04:21:46] Info: No mail-on-warning address configured'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + test 1 -eq 1
- + display --to LOG --type INFO CONFIG_X_AUTO
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO CONFIG_X_AUTO'
- + [ 5 -le 0 ]
- + [ 5 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 3 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 1 -ge 1 ]
- + MSG=CONFIG_X_AUTO
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n CONFIG_X_AUTO ]
- + grep -a ^CONFIG_X_AUTO: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='X will be automatically detected'
- + [ 0 -eq 1 ]
- + [ -z 'X will be automatically detected' ]
- + echo 'X will be automatically detected'
- + sed -e 's/`/\\`/g'
- + LINE1='X will be automatically detected'
- + test -n 'X will be automatically detected'
- + eval 'echo "X will be automatically detected" | sed -e '\''s/;/\;/g'\'
- + echo 'X will be automatically detected'
- + sed -e 's/;/\;/g'
- + LINE1='X will be automatically detected'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:46]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:46] Info: X will be automatically detected'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:46] Info: X will be automatically detected'
- + [ 0 -eq 1 ]
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + echo '[04:21:46] Info: X will be automatically detected'
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + test 0 -eq 1
- + echo basename
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=BASENAME
- + eval echo '$BASENAME_CMD'
- + echo /usr/bin/basename
- + RKHTMPVAR=/usr/bin/basename
- + [ -n /usr/bin/basename ]
- + display --to LOG --type INFO FOUND_CMD basename /usr/bin/basename
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD basename /usr/bin/basename'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FOUND_CMD ]
- + grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Found the '\''$1'\'' command: $2'
- + [ 0 -eq 1 ]
- + [ -z 'Found the '\''$1'\'' command: $2' ]
- + echo 'Found the '\''$1'\'' command: $2'
- + sed -e 's/`/\\`/g'
- + LINE1='Found the '\''$1'\'' command: $2'
- + test -n 'Found the '\''$1'\'' command: $2'
- + eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
- + echo 'Found the '\''basename'\'' command: /usr/bin/basename'
- + sed -e 's/;/\;/g'
- + LINE1='Found the '\''basename'\'' command: /usr/bin/basename'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:46]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:46] Info: Found the '\''basename'\'' command: /usr/bin/basename'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:46] Info: Found the '\''basename'\'' command: /usr/bin/basename'
- + [ 0 -eq 1 ]
- + echo '[04:21:46] Info: Found the '\''basename'\'' command: /usr/bin/basename'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + echo diff
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=DIFF
- + eval echo '$DIFF_CMD'
- + echo /usr/bin/diff
- + RKHTMPVAR=/usr/bin/diff
- + [ -n /usr/bin/diff ]
- + display --to LOG --type INFO FOUND_CMD diff /usr/bin/diff
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD diff /usr/bin/diff'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FOUND_CMD ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Found the '\''$1'\'' command: $2'
- + [ 0 -eq 1 ]
- + [ -z 'Found the '\''$1'\'' command: $2' ]
- + sed -e 's/`/\\`/g'
- + echo 'Found the '\''$1'\'' command: $2'
- + LINE1='Found the '\''$1'\'' command: $2'
- + test -n 'Found the '\''$1'\'' command: $2'
- + eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'Found the '\''diff'\'' command: /usr/bin/diff'
- + LINE1='Found the '\''diff'\'' command: /usr/bin/diff'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:47]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:47] Info: Found the '\''diff'\'' command: /usr/bin/diff'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:47] Info: Found the '\''diff'\'' command: /usr/bin/diff'
- + [ 0 -eq 1 ]
- + echo '[04:21:47] Info: Found the '\''diff'\'' command: /usr/bin/diff'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + tr '[:lower:]' '[:upper:]'
- + echo dirname
- + RKHTMPVAR=DIRNAME
- + eval echo '$DIRNAME_CMD'
- + echo /usr/bin/dirname
- + RKHTMPVAR=/usr/bin/dirname
- + [ -n /usr/bin/dirname ]
- + display --to LOG --type INFO FOUND_CMD dirname /usr/bin/dirname
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD dirname /usr/bin/dirname'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FOUND_CMD ]
- + grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Found the '\''$1'\'' command: $2'
- + [ 0 -eq 1 ]
- + [ -z 'Found the '\''$1'\'' command: $2' ]
- + sed -e 's/`/\\`/g'
- + echo 'Found the '\''$1'\'' command: $2'
- + LINE1='Found the '\''$1'\'' command: $2'
- + test -n 'Found the '\''$1'\'' command: $2'
- + eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'Found the '\''dirname'\'' command: /usr/bin/dirname'
- + LINE1='Found the '\''dirname'\'' command: /usr/bin/dirname'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:47]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:47] Info: Found the '\''dirname'\'' command: /usr/bin/dirname'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:47] Info: Found the '\''dirname'\'' command: /usr/bin/dirname'
- + [ 0 -eq 1 ]
- + echo '[04:21:47] Info: Found the '\''dirname'\'' command: /usr/bin/dirname'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + echo file
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=FILE
- + eval echo '$FILE_CMD'
- + echo /usr/bin/file
- + RKHTMPVAR=/usr/bin/file
- + [ -n /usr/bin/file ]
- + display --to LOG --type INFO FOUND_CMD file /usr/bin/file
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD file /usr/bin/file'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FOUND_CMD ]
- + grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Found the '\''$1'\'' command: $2'
- + [ 0 -eq 1 ]
- + [ -z 'Found the '\''$1'\'' command: $2' ]
- + echo 'Found the '\''$1'\'' command: $2'
- + sed -e 's/`/\\`/g'
- + LINE1='Found the '\''$1'\'' command: $2'
- + test -n 'Found the '\''$1'\'' command: $2'
- + eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
- + echo 'Found the '\''file'\'' command: /usr/bin/file'
- + sed -e 's/;/\;/g'
- + LINE1='Found the '\''file'\'' command: /usr/bin/file'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:47]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:47] Info: Found the '\''file'\'' command: /usr/bin/file'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:47] Info: Found the '\''file'\'' command: /usr/bin/file'
- + [ 0 -eq 1 ]
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + echo '[04:21:47] Info: Found the '\''file'\'' command: /usr/bin/file'
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + echo find
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=FIND
- + eval echo '$FIND_CMD'
- + echo /usr/bin/find
- + RKHTMPVAR=/usr/bin/find
- + [ -n /usr/bin/find ]
- + display --to LOG --type INFO FOUND_CMD find /usr/bin/find
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD find /usr/bin/find'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FOUND_CMD ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Found the '\''$1'\'' command: $2'
- + [ 0 -eq 1 ]
- + [ -z 'Found the '\''$1'\'' command: $2' ]
- + echo 'Found the '\''$1'\'' command: $2'
- + sed -e 's/`/\\`/g'
- + LINE1='Found the '\''$1'\'' command: $2'
- + test -n 'Found the '\''$1'\'' command: $2'
- + eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
- + echo 'Found the '\''find'\'' command: /usr/bin/find'
- + sed -e 's/;/\;/g'
- + LINE1='Found the '\''find'\'' command: /usr/bin/find'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:47]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:47] Info: Found the '\''find'\'' command: /usr/bin/find'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:47] Info: Found the '\''find'\'' command: /usr/bin/find'
- + [ 0 -eq 1 ]
- + echo '[04:21:47] Info: Found the '\''find'\'' command: /usr/bin/find'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + echo ifconfig
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=IFCONFIG
- + eval echo '$IFCONFIG_CMD'
- + echo /sbin/ifconfig
- + RKHTMPVAR=/sbin/ifconfig
- + [ -n /sbin/ifconfig ]
- + display --to LOG --type INFO FOUND_CMD ifconfig /sbin/ifconfig
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD ifconfig /sbin/ifconfig'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FOUND_CMD ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Found the '\''$1'\'' command: $2'
- + [ 0 -eq 1 ]
- + [ -z 'Found the '\''$1'\'' command: $2' ]
- + sed -e 's/`/\\`/g'
- + echo 'Found the '\''$1'\'' command: $2'
- + LINE1='Found the '\''$1'\'' command: $2'
- + test -n 'Found the '\''$1'\'' command: $2'
- + eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'Found the '\''ifconfig'\'' command: /sbin/ifconfig'
- + LINE1='Found the '\''ifconfig'\'' command: /sbin/ifconfig'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:48]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:48] Info: Found the '\''ifconfig'\'' command: /sbin/ifconfig'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:48] Info: Found the '\''ifconfig'\'' command: /sbin/ifconfig'
- + [ 0 -eq 1 ]
- + echo '[04:21:48] Info: Found the '\''ifconfig'\'' command: /sbin/ifconfig'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + tr '[:lower:]' '[:upper:]'
- + echo ip
- + RKHTMPVAR=IP
- + eval echo '$IP_CMD'
- + echo
- + RKHTMPVAR=''
- + [ -n '' ]
- + display --to LOG --type INFO NOT_FOUND_CMD ip
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO NOT_FOUND_CMD ip'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=NOT_FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n NOT_FOUND_CMD ]
- + grep -a ^NOT_FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Unable to find the '\''$1'\'' command'
- + [ 0 -eq 1 ]
- + [ -z 'Unable to find the '\''$1'\'' command' ]
- + echo 'Unable to find the '\''$1'\'' command'
- + sed -e 's/`/\\`/g'
- + LINE1='Unable to find the '\''$1'\'' command'
- + test -n 'Unable to find the '\''$1'\'' command'
- + eval 'echo "Unable to find the '\''$1'\'' command" | sed -e '\''s/;/\;/g'\'
- + echo 'Unable to find the '\''ip'\'' command'
- + sed -e 's/;/\;/g'
- + LINE1='Unable to find the '\''ip'\'' command'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:48]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:48] Info: Unable to find the '\''ip'\'' command'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:48] Info: Unable to find the '\''ip'\'' command'
- + [ 0 -eq 1 ]
- + echo '[04:21:48] Info: Unable to find the '\''ip'\'' command'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + echo ipcs
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=IPCS
- + eval echo '$IPCS_CMD'
- + echo /usr/bin/ipcs
- + RKHTMPVAR=/usr/bin/ipcs
- + [ -n /usr/bin/ipcs ]
- + display --to LOG --type INFO FOUND_CMD ipcs /usr/bin/ipcs
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD ipcs /usr/bin/ipcs'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FOUND_CMD ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Found the '\''$1'\'' command: $2'
- + [ 0 -eq 1 ]
- + [ -z 'Found the '\''$1'\'' command: $2' ]
- + echo 'Found the '\''$1'\'' command: $2'
- + sed -e 's/`/\\`/g'
- + LINE1='Found the '\''$1'\'' command: $2'
- + test -n 'Found the '\''$1'\'' command: $2'
- + eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
- + echo 'Found the '\''ipcs'\'' command: /usr/bin/ipcs'
- + sed -e 's/;/\;/g'
- + LINE1='Found the '\''ipcs'\'' command: /usr/bin/ipcs'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:48]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:48] Info: Found the '\''ipcs'\'' command: /usr/bin/ipcs'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:48] Info: Found the '\''ipcs'\'' command: /usr/bin/ipcs'
- + [ 0 -eq 1 ]
- + echo '[04:21:48] Info: Found the '\''ipcs'\'' command: /usr/bin/ipcs'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + echo ldd
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=LDD
- + eval echo '$LDD_CMD'
- + echo /usr/bin/ldd
- + RKHTMPVAR=/usr/bin/ldd
- + [ -n /usr/bin/ldd ]
- + display --to LOG --type INFO FOUND_CMD ldd /usr/bin/ldd
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD ldd /usr/bin/ldd'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FOUND_CMD ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Found the '\''$1'\'' command: $2'
- + [ 0 -eq 1 ]
- + [ -z 'Found the '\''$1'\'' command: $2' ]
- + sed -e 's/`/\\`/g'
- + echo 'Found the '\''$1'\'' command: $2'
- + LINE1='Found the '\''$1'\'' command: $2'
- + test -n 'Found the '\''$1'\'' command: $2'
- + eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'Found the '\''ldd'\'' command: /usr/bin/ldd'
- + LINE1='Found the '\''ldd'\'' command: /usr/bin/ldd'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:48]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:48] Info: Found the '\''ldd'\'' command: /usr/bin/ldd'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:48] Info: Found the '\''ldd'\'' command: /usr/bin/ldd'
- + [ 0 -eq 1 ]
- + echo '[04:21:48] Info: Found the '\''ldd'\'' command: /usr/bin/ldd'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + tr '[:lower:]' '[:upper:]'
- + echo lsattr
- + RKHTMPVAR=LSATTR
- + eval echo '$LSATTR_CMD'
- + echo
- + RKHTMPVAR=''
- + [ -n '' ]
- + display --to LOG --type INFO NOT_FOUND_CMD lsattr
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO NOT_FOUND_CMD lsattr'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=NOT_FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n NOT_FOUND_CMD ]
- + grep -a ^NOT_FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Unable to find the '\''$1'\'' command'
- + [ 0 -eq 1 ]
- + [ -z 'Unable to find the '\''$1'\'' command' ]
- + echo 'Unable to find the '\''$1'\'' command'
- + sed -e 's/`/\\`/g'
- + LINE1='Unable to find the '\''$1'\'' command'
- + test -n 'Unable to find the '\''$1'\'' command'
- + eval 'echo "Unable to find the '\''$1'\'' command" | sed -e '\''s/;/\;/g'\'
- + echo 'Unable to find the '\''lsattr'\'' command'
- + sed -e 's/;/\;/g'
- + LINE1='Unable to find the '\''lsattr'\'' command'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:48]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:48] Info: Unable to find the '\''lsattr'\'' command'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:48] Info: Unable to find the '\''lsattr'\'' command'
- + [ 0 -eq 1 ]
- + echo '[04:21:48] Info: Unable to find the '\''lsattr'\'' command'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + echo lsmod
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=LSMOD
- + eval echo '$LSMOD_CMD'
- + echo
- + RKHTMPVAR=''
- + [ -n '' ]
- + display --to LOG --type INFO NOT_FOUND_CMD lsmod
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO NOT_FOUND_CMD lsmod'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=NOT_FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n NOT_FOUND_CMD ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^NOT_FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Unable to find the '\''$1'\'' command'
- + [ 0 -eq 1 ]
- + [ -z 'Unable to find the '\''$1'\'' command' ]
- + sed -e 's/`/\\`/g'
- + echo 'Unable to find the '\''$1'\'' command'
- + LINE1='Unable to find the '\''$1'\'' command'
- + test -n 'Unable to find the '\''$1'\'' command'
- + eval 'echo "Unable to find the '\''$1'\'' command" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'Unable to find the '\''lsmod'\'' command'
- + LINE1='Unable to find the '\''lsmod'\'' command'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:49]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:49] Info: Unable to find the '\''lsmod'\'' command'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:49] Info: Unable to find the '\''lsmod'\'' command'
- + [ 0 -eq 1 ]
- + echo '[04:21:49] Info: Unable to find the '\''lsmod'\'' command'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + tr '[:lower:]' '[:upper:]'
- + echo lsof
- + RKHTMPVAR=LSOF
- + eval echo '$LSOF_CMD'
- + echo /usr/local/sbin/lsof
- + RKHTMPVAR=/usr/local/sbin/lsof
- + [ -n /usr/local/sbin/lsof ]
- + display --to LOG --type INFO FOUND_CMD lsof /usr/local/sbin/lsof
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD lsof /usr/local/sbin/lsof'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FOUND_CMD ]
- + grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Found the '\''$1'\'' command: $2'
- + [ 0 -eq 1 ]
- + [ -z 'Found the '\''$1'\'' command: $2' ]
- + echo 'Found the '\''$1'\'' command: $2'
- + sed -e 's/`/\\`/g'
- + LINE1='Found the '\''$1'\'' command: $2'
- + test -n 'Found the '\''$1'\'' command: $2'
- + eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
- + echo 'Found the '\''lsof'\'' command: /usr/local/sbin/lsof'
- + sed -e 's/;/\;/g'
- + LINE1='Found the '\''lsof'\'' command: /usr/local/sbin/lsof'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:49]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:49] Info: Found the '\''lsof'\'' command: /usr/local/sbin/lsof'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:49] Info: Found the '\''lsof'\'' command: /usr/local/sbin/lsof'
- + [ 0 -eq 1 ]
- + echo '[04:21:49] Info: Found the '\''lsof'\'' command: /usr/local/sbin/lsof'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + echo mktemp
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=MKTEMP
- + eval echo '$MKTEMP_CMD'
- + echo /usr/bin/mktemp
- + RKHTMPVAR=/usr/bin/mktemp
- + [ -n /usr/bin/mktemp ]
- + display --to LOG --type INFO FOUND_CMD mktemp /usr/bin/mktemp
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD mktemp /usr/bin/mktemp'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FOUND_CMD ]
- + grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Found the '\''$1'\'' command: $2'
- + [ 0 -eq 1 ]
- + [ -z 'Found the '\''$1'\'' command: $2' ]
- + echo 'Found the '\''$1'\'' command: $2'
- + sed -e 's/`/\\`/g'
- + LINE1='Found the '\''$1'\'' command: $2'
- + test -n 'Found the '\''$1'\'' command: $2'
- + eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
- + echo 'Found the '\''mktemp'\'' command: /usr/bin/mktemp'
- + sed -e 's/;/\;/g'
- + LINE1='Found the '\''mktemp'\'' command: /usr/bin/mktemp'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:49]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:49] Info: Found the '\''mktemp'\'' command: /usr/bin/mktemp'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:49] Info: Found the '\''mktemp'\'' command: /usr/bin/mktemp'
- + [ 0 -eq 1 ]
- + echo '[04:21:49] Info: Found the '\''mktemp'\'' command: /usr/bin/mktemp'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + echo netstat
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=NETSTAT
- + eval echo '$NETSTAT_CMD'
- + echo /usr/bin/netstat
- + RKHTMPVAR=/usr/bin/netstat
- + [ -n /usr/bin/netstat ]
- + display --to LOG --type INFO FOUND_CMD netstat /usr/bin/netstat
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD netstat /usr/bin/netstat'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FOUND_CMD ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Found the '\''$1'\'' command: $2'
- + [ 0 -eq 1 ]
- + [ -z 'Found the '\''$1'\'' command: $2' ]
- + sed -e 's/`/\\`/g'
- + echo 'Found the '\''$1'\'' command: $2'
- + LINE1='Found the '\''$1'\'' command: $2'
- + test -n 'Found the '\''$1'\'' command: $2'
- + eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'Found the '\''netstat'\'' command: /usr/bin/netstat'
- + LINE1='Found the '\''netstat'\'' command: /usr/bin/netstat'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:49]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:49] Info: Found the '\''netstat'\'' command: /usr/bin/netstat'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:49] Info: Found the '\''netstat'\'' command: /usr/bin/netstat'
- + [ 0 -eq 1 ]
- + echo '[04:21:49] Info: Found the '\''netstat'\'' command: /usr/bin/netstat'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + tr '[:lower:]' '[:upper:]'
- + echo perl
- + RKHTMPVAR=PERL
- + eval echo '$PERL_CMD'
- + echo /usr/local/bin/perl
- + RKHTMPVAR=/usr/local/bin/perl
- + [ -n /usr/local/bin/perl ]
- + display --to LOG --type INFO FOUND_CMD perl /usr/local/bin/perl
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD perl /usr/local/bin/perl'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FOUND_CMD ]
- + grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Found the '\''$1'\'' command: $2'
- + [ 0 -eq 1 ]
- + [ -z 'Found the '\''$1'\'' command: $2' ]
- + echo 'Found the '\''$1'\'' command: $2'
- + sed -e 's/`/\\`/g'
- + LINE1='Found the '\''$1'\'' command: $2'
- + test -n 'Found the '\''$1'\'' command: $2'
- + eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'Found the '\''perl'\'' command: /usr/local/bin/perl'
- + LINE1='Found the '\''perl'\'' command: /usr/local/bin/perl'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:50]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:50] Info: Found the '\''perl'\'' command: /usr/local/bin/perl'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:50] Info: Found the '\''perl'\'' command: /usr/local/bin/perl'
- + [ 0 -eq 1 ]
- + echo '[04:21:50] Info: Found the '\''perl'\'' command: /usr/local/bin/perl'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + tr '[:lower:]' '[:upper:]'
- + echo pgrep
- + RKHTMPVAR=PGREP
- + eval echo '$PGREP_CMD'
- + echo /bin/pgrep
- + RKHTMPVAR=/bin/pgrep
- + [ -n /bin/pgrep ]
- + display --to LOG --type INFO FOUND_CMD pgrep /bin/pgrep
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD pgrep /bin/pgrep'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FOUND_CMD ]
- + grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Found the '\''$1'\'' command: $2'
- + [ 0 -eq 1 ]
- + [ -z 'Found the '\''$1'\'' command: $2' ]
- + echo 'Found the '\''$1'\'' command: $2'
- + sed -e 's/`/\\`/g'
- + LINE1='Found the '\''$1'\'' command: $2'
- + test -n 'Found the '\''$1'\'' command: $2'
- + eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
- + echo 'Found the '\''pgrep'\'' command: /bin/pgrep'
- + sed -e 's/;/\;/g'
- + LINE1='Found the '\''pgrep'\'' command: /bin/pgrep'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:50]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:50] Info: Found the '\''pgrep'\'' command: /bin/pgrep'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:50] Info: Found the '\''pgrep'\'' command: /bin/pgrep'
- + [ 0 -eq 1 ]
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + echo '[04:21:50] Info: Found the '\''pgrep'\'' command: /bin/pgrep'
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + echo ps
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=PS
- + eval echo '$PS_CMD'
- + echo /bin/ps
- + RKHTMPVAR=/bin/ps
- + [ -n /bin/ps ]
- + display --to LOG --type INFO FOUND_CMD ps /bin/ps
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD ps /bin/ps'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FOUND_CMD ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Found the '\''$1'\'' command: $2'
- + [ 0 -eq 1 ]
- + [ -z 'Found the '\''$1'\'' command: $2' ]
- + echo 'Found the '\''$1'\'' command: $2'
- + sed -e 's/`/\\`/g'
- + LINE1='Found the '\''$1'\'' command: $2'
- + test -n 'Found the '\''$1'\'' command: $2'
- + eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
- + echo 'Found the '\''ps'\'' command: /bin/ps'
- + sed -e 's/;/\;/g'
- + LINE1='Found the '\''ps'\'' command: /bin/ps'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:50]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:50] Info: Found the '\''ps'\'' command: /bin/ps'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:50] Info: Found the '\''ps'\'' command: /bin/ps'
- + [ 0 -eq 1 ]
- + echo '[04:21:50] Info: Found the '\''ps'\'' command: /bin/ps'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + tr '[:lower:]' '[:upper:]'
- + echo pwd
- + RKHTMPVAR=PWD
- + eval echo '$PWD_CMD'
- + echo /bin/pwd
- + RKHTMPVAR=/bin/pwd
- + [ -n /bin/pwd ]
- + display --to LOG --type INFO FOUND_CMD pwd /bin/pwd
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD pwd /bin/pwd'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FOUND_CMD ]
- + head -n 1
- + grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + LINE1='Found the '\''$1'\'' command: $2'
- + [ 0 -eq 1 ]
- + [ -z 'Found the '\''$1'\'' command: $2' ]
- + sed -e 's/`/\\`/g'
- + echo 'Found the '\''$1'\'' command: $2'
- + LINE1='Found the '\''$1'\'' command: $2'
- + test -n 'Found the '\''$1'\'' command: $2'
- + eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
- + echo 'Found the '\''pwd'\'' command: /bin/pwd'
- + sed -e 's/;/\;/g'
- + LINE1='Found the '\''pwd'\'' command: /bin/pwd'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:50]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:50] Info: Found the '\''pwd'\'' command: /bin/pwd'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:50] Info: Found the '\''pwd'\'' command: /bin/pwd'
- + [ 0 -eq 1 ]
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + echo '[04:21:50] Info: Found the '\''pwd'\'' command: /bin/pwd'
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + echo readlink
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=READLINK
- + eval echo '$READLINK_CMD'
- + echo /usr/bin/readlink
- + RKHTMPVAR=/usr/bin/readlink
- + [ -n /usr/bin/readlink ]
- + display --to LOG --type INFO FOUND_CMD readlink /usr/bin/readlink
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD readlink /usr/bin/readlink'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FOUND_CMD ]
- + grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Found the '\''$1'\'' command: $2'
- + [ 0 -eq 1 ]
- + [ -z 'Found the '\''$1'\'' command: $2' ]
- + echo 'Found the '\''$1'\'' command: $2'
- + sed -e 's/`/\\`/g'
- + LINE1='Found the '\''$1'\'' command: $2'
- + test -n 'Found the '\''$1'\'' command: $2'
- + eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
- + echo 'Found the '\''readlink'\'' command: /usr/bin/readlink'
- + sed -e 's/;/\;/g'
- + LINE1='Found the '\''readlink'\'' command: /usr/bin/readlink'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:50]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:50] Info: Found the '\''readlink'\'' command: /usr/bin/readlink'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:50] Info: Found the '\''readlink'\'' command: /usr/bin/readlink'
- + [ 0 -eq 1 ]
- + echo '[04:21:50] Info: Found the '\''readlink'\'' command: /usr/bin/readlink'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + echo stat
- + tr '[:lower:]' '[:upper:]'
- + RKHTMPVAR=STAT
- + eval echo '$STAT_CMD'
- + echo /usr/bin/stat
- + RKHTMPVAR=/usr/bin/stat
- + [ -n /usr/bin/stat ]
- + display --to LOG --type INFO FOUND_CMD stat /usr/bin/stat
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD stat /usr/bin/stat'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FOUND_CMD ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Found the '\''$1'\'' command: $2'
- + [ 0 -eq 1 ]
- + [ -z 'Found the '\''$1'\'' command: $2' ]
- + echo 'Found the '\''$1'\'' command: $2'
- + sed -e 's/`/\\`/g'
- + LINE1='Found the '\''$1'\'' command: $2'
- + test -n 'Found the '\''$1'\'' command: $2'
- + eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
- + echo 'Found the '\''stat'\'' command: /usr/bin/stat'
- + sed -e 's/;/\;/g'
- + LINE1='Found the '\''stat'\'' command: /usr/bin/stat'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:51]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:51] Info: Found the '\''stat'\'' command: /usr/bin/stat'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:51] Info: Found the '\''stat'\'' command: /usr/bin/stat'
- + [ 0 -eq 1 ]
- + echo '[04:21:51] Info: Found the '\''stat'\'' command: /usr/bin/stat'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + tr '[:lower:]' '[:upper:]'
- + echo strings
- + RKHTMPVAR=STRINGS
- + eval echo '$STRINGS_CMD'
- + echo /usr/bin/strings
- + RKHTMPVAR=/usr/bin/strings
- + [ -n /usr/bin/strings ]
- + display --to LOG --type INFO FOUND_CMD strings /usr/bin/strings
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FOUND_CMD strings /usr/bin/strings'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + MSG=FOUND_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FOUND_CMD ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^FOUND_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Found the '\''$1'\'' command: $2'
- + [ 0 -eq 1 ]
- + [ -z 'Found the '\''$1'\'' command: $2' ]
- + sed -e 's/`/\\`/g'
- + echo 'Found the '\''$1'\'' command: $2'
- + LINE1='Found the '\''$1'\'' command: $2'
- + test -n 'Found the '\''$1'\'' command: $2'
- + eval 'echo "Found the '\''$1'\'' command: $2" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'Found the '\''strings'\'' command: /usr/bin/strings'
- + LINE1='Found the '\''strings'\'' command: /usr/bin/strings'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:51]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:51] Info: Found the '\''strings'\'' command: /usr/bin/strings'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:51] Info: Found the '\''strings'\'' command: /usr/bin/strings'
- + [ 0 -eq 1 ]
- + echo '[04:21:51] Info: Found the '\''strings'\'' command: /usr/bin/strings'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + test -n ''
- + [ 0 -eq 1 -o 0 -eq 1 ]
- + RKHTMPVAR=0
- + test 1 -eq 1
- + check_test attributes
- + echo ' filesystem local_host '
- + grep ' attributes '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- +
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + display --to LOG --type INFO ENABLED_TESTS 'filesystem local_host'
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO ENABLED_TESTS filesystem local_host'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=ENABLED_TESTS
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n ENABLED_TESTS ]
- + grep -a ^ENABLED_TESTS: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Enabled tests are: $1'
- + [ 0 -eq 1 ]
- + [ -z 'Enabled tests are: $1' ]
- + echo 'Enabled tests are: $1'
- + sed -e 's/`/\\`/g'
- + LINE1='Enabled tests are: $1'
- + test -n 'Enabled tests are: $1'
- + eval 'echo "Enabled tests are: $1" | sed -e '\''s/;/\;/g'\'
- + echo 'Enabled tests are: filesystem local_host'
- + sed -e 's/;/\;/g'
- + LINE1='Enabled tests are: filesystem local_host'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:51]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:51] Info: Enabled tests are: filesystem local_host'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:51] Info: Enabled tests are: filesystem local_host'
- + [ 0 -eq 1 ]
- + echo '[04:21:51] Info: Enabled tests are: filesystem local_host'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + display --to LOG --type INFO DISABLED_TESTS 'deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO DISABLED_TESTS deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=DISABLED_TESTS
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n DISABLED_TESTS ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^DISABLED_TESTS: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Disabled tests are: $1'
- + [ 0 -eq 1 ]
- + [ -z 'Disabled tests are: $1' ]
- + echo 'Disabled tests are: $1'
- + sed -e 's/`/\\`/g'
- + LINE1='Disabled tests are: $1'
- + test -n 'Disabled tests are: $1'
- + eval 'echo "Disabled tests are: $1" | sed -e '\''s/;/\;/g'\'
- + echo 'Disabled tests are: deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
- + sed -e 's/;/\;/g'
- + LINE1='Disabled tests are: deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:51]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:51] Info: Disabled tests are: deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:51] Info: Disabled tests are: deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
- + [ 0 -eq 1 ]
- + echo '[04:21:51] Info: Disabled tests are: deleted_files hidden_ports hidden_procs packet_cap_apps suspscan'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + check_test properties
- + grep ' properties '
- + echo ' filesystem local_host '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- +
- + test 0 -eq 1
- + [ 0 -eq 1 -o 0 -eq 1 ]
- + [ 0 -eq 0 ]
- + test 1 -eq 0 -o 1 -eq 0
- + test 1 -eq 0
- + test 0 -eq 1
- + test 0 -eq 1
- + [ 1 -eq 1 ]
- + [ -n '' ]
- + [ -f /proc/ksyms ]
- + [ -f /proc/kallsyms ]
- + display --to LOG --type INFO KSYMS_MISSING
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO KSYMS_MISSING'
- + [ 5 -le 0 ]
- + [ 5 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 3 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 1 -ge 1 ]
- + MSG=KSYMS_MISSING
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n KSYMS_MISSING ]
- + grep -a ^KSYMS_MISSING: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='All ksyms and kallsyms checks will be skipped - neither file is present on the system.'
- + [ 0 -eq 1 ]
- + [ -z 'All ksyms and kallsyms checks will be skipped - neither file is present on the system.' ]
- + sed -e 's/`/\\`/g'
- + echo 'All ksyms and kallsyms checks will be skipped - neither file is present on the system.'
- + LINE1='All ksyms and kallsyms checks will be skipped - neither file is present on the system.'
- + test -n 'All ksyms and kallsyms checks will be skipped - neither file is present on the system.'
- + eval 'echo "All ksyms and kallsyms checks will be skipped - neither file is present on the system." | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'All ksyms and kallsyms checks will be skipped - neither file is present on the system.'
- + LINE1='All ksyms and kallsyms checks will be skipped - neither file is present on the system.'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:52]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:52] Info: All ksyms and kallsyms checks will be skipped - neither file is present on the system.'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:52] Info: All ksyms and kallsyms checks will be skipped - neither file is present on the system.'
- + [ 0 -eq 1 ]
- + echo '[04:21:52] Info: All ksyms and kallsyms checks will be skipped - neither file is present on the system.'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + test 1 -eq 0
- + [ -n '' ]
- + [ '' = NONE ]
- + [ -n '' ]
- + [ -n /usr/local/bin/perl ]
- + display --to LOG --type INFO FILE_PROP_EPOCH_DATE_CMD /usr/local/bin/perl
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO FILE_PROP_EPOCH_DATE_CMD /usr/local/bin/perl'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=FILE_PROP_EPOCH_DATE_CMD
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FILE_PROP_EPOCH_DATE_CMD ]
- + grep -a ^FILE_PROP_EPOCH_DATE_CMD: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Using '\''$1'\'' to process epoch second times'
- + [ 0 -eq 1 ]
- + [ -z 'Using '\''$1'\'' to process epoch second times' ]
- + echo 'Using '\''$1'\'' to process epoch second times'
- + sed -e 's/`/\\`/g'
- + LINE1='Using '\''$1'\'' to process epoch second times'
- + test -n 'Using '\''$1'\'' to process epoch second times'
- + eval 'echo "Using '\''$1'\'' to process epoch second times" | sed -e '\''s/;/\;/g'\'
- + echo 'Using '\''/usr/local/bin/perl'\'' to process epoch second times'
- + sed -e 's/;/\;/g'
- + LINE1='Using '\''/usr/local/bin/perl'\'' to process epoch second times'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:52]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:52] Info: Using '\''/usr/local/bin/perl'\'' to process epoch second times'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:52] Info: Using '\''/usr/local/bin/perl'\'' to process epoch second times'
- + [ 0 -eq 1 ]
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + echo '[04:21:52] Info: Using '\''/usr/local/bin/perl'\'' to process epoch second times'
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + check_test properties
- + grep ' properties '
- + echo ' filesystem local_host '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- +
- + [ 0 -eq 1 ]
- + display --to LOG --type INFO LOCK_UNUSED
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO LOCK_UNUSED'
- + [ 5 -le 0 ]
- + [ 5 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 3 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 1 -ge 1 ]
- + MSG=LOCK_UNUSED
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n LOCK_UNUSED ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^LOCK_UNUSED: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Locking is not being used'
- + [ 0 -eq 1 ]
- + [ -z 'Locking is not being used' ]
- + echo 'Locking is not being used'
- + sed -e 's/`/\\`/g'
- + LINE1='Locking is not being used'
- + test -n 'Locking is not being used'
- + eval 'echo "Locking is not being used" | sed -e '\''s/;/\;/g'\'
- + echo 'Locking is not being used'
- + sed -e 's/;/\;/g'
- + LINE1='Locking is not being used'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:52]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:52] Info: Locking is not being used'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:52] Info: Locking is not being used'
- + [ 0 -eq 1 ]
- + echo '[04:21:52] Info: Locking is not being used'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + test 0 -eq 1
- + test 0 -eq 1
- + test 0 -eq 1
- + test 1 -eq 1 -o 1 -eq 1
- + do_system_check
- + display --to LOG --type PLAIN --nl CHECK_START
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type PLAIN --nl CHECK_START'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + NL=1
- + shift
- + [ 1 -ge 1 ]
- + MSG=CHECK_START
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n CHECK_START ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^CHECK_START: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Starting system checks...'
- + [ 0 -eq 1 ]
- + [ -z 'Starting system checks...' ]
- + sed -e 's/`/\\`/g'
- + echo 'Starting system checks...'
- + LINE1='Starting system checks...'
- + test -n 'Starting system checks...'
- + eval 'echo "Starting system checks..." | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'Starting system checks...'
- + LINE1='Starting system checks...'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:52]'
- + test 1 -gt 0 -o 0 -eq 1
- + echo '[04:21:52]'
- + [ -n '' ]
- + test 0 -gt 0
- + LOGLINE1='[04:21:52] Starting system checks...'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:52] Starting system checks...'
- + [ 0 -eq 1 ]
- + echo '[04:21:52] Starting system checks...'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + do_system_check_initialisation
- + W55808A_FILES='/tmp/.../r
- /tmp/.../a'
- + W55808A_DIRS=''
- + W55808A_KSYMS=''
- + AKIT_FILES='/usr/secure
- /usr/doc/sys/qrt
- /usr/doc/sys/run
- /usr/doc/sys/crond
- /usr/sbin/kfd
- /usr/doc/kern/var
- /usr/doc/kern/string.o
- /usr/doc/kern/ava
- /usr/doc/kern/adore.o
- /var/log/ssh/old'
- + AKIT_DIRS='/lib/security/.config/ssh
- /usr/doc/kern
- /usr/doc/backup
- /usr/doc/backup/txt
- /lib/backup
- /lib/backup/txt
- /usr/doc/work
- /usr/doc/sys
- /var/log/ssh
- /usr/doc/.spool
- /usr/lib/kterm'
- + AKIT_KSYMS=''
- + AJAKIT_FILES='/dev/tux/.addr
- /dev/tux/.proc
- /dev/tux/.file
- /lib/.libgh-gh/cleaner
- /lib/.libgh-gh/Patch/patch
- /lib/.libgh-gh/sb0k'
- + AJAKIT_DIRS='/dev/tux
- /lib/.libgh-gh'
- + AJAKIT_KSYMS=''
- + APAKIT_FILES=/usr/share/.aPa
- + APAKIT_DIRS=''
- + APAKIT_KSYMS=''
- + APACHEWORM_FILES=/bin/.log
- + APACHEWORM_DIRS=''
- + APACHEWORM_KSYMS=''
- + ARK_FILES='/usr/lib/.ark?
- /dev/ptyxx/.log
- /dev/ptyxx/.file
- /dev/ptyxx/.proc
- /dev/ptyxx/.addr'
- + ARK_DIRS=/dev/ptyxx
- + ARK_KSYMS=''
- + BALAUR_FILES=/usr/lib/liblog.o
- + BALAUR_DIRS='/usr/lib/.kinetic
- /usr/lib/.egcs
- /usr/lib/.wormie'
- + BALAUR_KSYMS=''
- + BEASTKIT_FILES='/usr/sbin/arobia
- /usr/sbin/idrun
- /usr/lib/elm/arobia/elm
- /usr/lib/elm/arobia/elm/hk
- /usr/lib/elm/arobia/elm/hk.pub
- /usr/lib/elm/arobia/elm/sc
- /usr/lib/elm/arobia/elm/sd.pp
- /usr/lib/elm/arobia/elm/sdco
- /usr/lib/elm/arobia/elm/srsd'
- + BEASTKIT_DIRS=/lib/ldd.so/bktools
- + BEASTKIT_KSYMS=''
- + BEX_FILES='/usr/info/termcap.info-5.gz
- /usr/bin/sshd2'
- + BEX_DIRS=/usr/include/bex
- + BEX_KSYMS=''
- + BOBKIT_FILES='/usr/sbin/ntpsx
- /usr/sbin/.../bkit-ava
- /usr/sbin/.../bkit-d
- /usr/sbin/.../bkit-shd
- /usr/sbin/.../bkit-f
- /usr/include/.../proc.h
- /usr/include/.../.bash_history
- /usr/include/.../bkit-get
- /usr/include/.../bkit-dl
- /usr/include/.../bkit-screen
- /usr/include/.../bkit-sleep
- /usr/lib/.../bkit-adore.o
- /usr/lib/.../ls
- /usr/lib/.../netstat
- /usr/lib/.../lsof
- /usr/lib/.../bkit-ssh/bkit-shdcfg
- /usr/lib/.../bkit-ssh/bkit-shhk
- /usr/lib/.../bkit-ssh/bkit-pw
- /usr/lib/.../bkit-ssh/bkit-shrs
- /usr/lib/.../bkit-ssh/bkit-mots
- /usr/lib/.../uconf.inv
- /usr/lib/.../psr
- /usr/lib/.../find
- /usr/lib/.../pstree
- /usr/lib/.../slocate
- /usr/lib/.../du
- /usr/lib/.../top'
- + BOBKIT_DIRS='/usr/sbin/...
- /usr/include/...
- /usr/include/.../.tmp
- /usr/lib/...
- /usr/lib/.../.ssh
- /usr/lib/.../bkit-ssh
- /usr/lib/.bkit-
- /tmp/.bkp'
- + BOBKIT_KSYMS=''
- + BOONANA_FILES='/Library/StartupItems/OSXDriverUpdates/OSXDriverUpdates
- /Library/StartupItems/OSXDriverUpdates/StartupParameters.plist'
- + BOONANA_DIRS=/var/root/.jnana
- + BOONANA_KSYMS=''
- + CB_FILES='/dev/srd0
- /lib/libproc.so.2.0.6
- /dev/mounnt
- /etc/rc.d/init.d/init
- /usr/bin/.zeen/..%/cl
- /usr/bin/.zeen/..%/.x.tgz
- /usr/bin/.zeen/..%/statdx
- /usr/bin/.zeen/..%/wted
- /usr/bin/.zeen/..%/write
- /usr/bin/.zeen/..%/scan
- /usr/bin/.zeen/..%/sc
- /usr/bin/.zeen/..%/sl2
- /usr/bin/.zeen/..%/wroot
- /usr/bin/.zeen/..%/wscan
- /usr/bin/.zeen/..%/wu
- /usr/bin/.zeen/..%/v
- /usr/bin/.zeen/..%/read
- /usr/lib/sshrc
- /usr/lib/ssh_host_key
- /usr/lib/ssh_host_key.pub
- /usr/lib/ssh_random_seed
- /usr/lib/sshd_config
- /usr/lib/shosts.equiv
- /usr/lib/ssh_known_hosts
- /u/zappa/.ssh/pid
- /usr/bin/.system/..%/tcp.log
- /usr/bin/.zeen/..%/curatare/attrib
- /usr/bin/.zeen/..%/curatare/chattr
- /usr/bin/.zeen/..%/curatare/ps
- /usr/bin/.zeen/..%/curatare/pstree
- /usr/bin/.system/..%/.x/xC.o'
- + CB_DIRS='/usr/bin/.zeen
- /usr/bin/.zeen/..%/curatare
- /usr/bin/.zeen/..%/scan
- /usr/bin/.system/..%'
- + CB_KSYMS=''
- + CINIK_FILES=/tmp/.cinik
- + CINIK_DIRS=/tmp/.font-unix/.cinik
- + CINIK_KSYMS=''
- + CXKIT_FILES='/usr/lib/ldlibso
- /usr/lib/configlibso
- /usr/lib/shklibso
- /usr/lib/randomlibso
- /usr/lib/ldlibstrings.so
- /usr/lib/ldlibdu.so
- /usr/lib/ldlibns.so
- /usr/include/db'
- + CXKIT_DIRS=/usr/include/cxk
- + CXKIT_KSYMS=''
- + DANNYBOYS_FILES='/dev/mdev
- /usr/lib/libX.a'
- + DANNYBOYS_DIRS=''
- + DANNYBOYS_KSYMS=''
- + DEVIL_FILES='/var/lib/games/.src
- /dev/dsx
- /dev/caca
- /dev/pro
- /bin/bye
- /bin/homedir
- /usr/bin/xfss
- /usr/sbin/tzava
- /usr/doc/tar/.../.dracusor/stuff/holber
- /usr/doc/tar/.../.dracusor/stuff/sense
- /usr/doc/tar/.../.dracusor/stuff/clear
- /usr/doc/tar/.../.dracusor/stuff/tzava
- /usr/doc/tar/.../.dracusor/stuff/citeste
- /usr/doc/tar/.../.dracusor/stuff/killrk
- /usr/doc/tar/.../.dracusor/stuff/searchlog
- /usr/doc/tar/.../.dracusor/stuff/gaoaza
- /usr/doc/tar/.../.dracusor/stuff/cleaner
- /usr/doc/tar/.../.dracusor/stuff/shk
- /usr/doc/tar/.../.dracusor/stuff/srs
- /usr/doc/tar/.../.dracusor/utile.tgz
- /usr/doc/tar/.../.dracusor/webpage
- /usr/doc/tar/.../.dracusor/getpsy
- /usr/doc/tar/.../.dracusor/getbnc
- /usr/doc/tar/.../.dracusor/getemech
- /usr/doc/tar/.../.dracusor/localroot.sh
- /usr/doc/tar/.../.dracusor/stuff/old/sense'
- + DEVIL_DIRS=/usr/doc/tar/.../.dracusor
- + DEVIL_KSYMS=''
- + DICA_FILES='/lib/.sso
- /lib/.so
- /var/run/...dica/clean
- /var/run/...dica/dxr
- /var/run/...dica/read
- /var/run/...dica/write
- /var/run/...dica/lf
- /var/run/...dica/xl
- /var/run/...dica/xdr
- /var/run/...dica/psg
- /var/run/...dica/secure
- /var/run/...dica/rdx
- /var/run/...dica/va
- /var/run/...dica/cl.sh
- /var/run/...dica/last.log
- /usr/bin/.etc
- /etc/sshd_config
- /etc/ssh_host_key
- /etc/ssh_random_seed'
- + DICA_DIRS='/var/run/...dica
- /var/run/...dica/mh
- /var/run/...dica/scan'
- + DICA_KSYMS=''
- + DREAMS_FILES='/dev/ttyoa
- /dev/ttyof
- /dev/ttyop
- /usr/bin/sense
- /usr/bin/sl2
- /usr/bin/logclear
- /usr/bin/(swapd)
- /usr/bin/initrd
- /usr/bin/crontabs
- /usr/bin/snfs
- /usr/lib/libsss
- /usr/lib/libsnf.log
- /usr/lib/libshtift/top
- /usr/lib/libshtift/ps
- /usr/lib/libshtift/netstat
- /usr/lib/libshtift/ls
- /usr/lib/libshtift/ifconfig
- /usr/include/linseed.h
- /usr/include/linpid.h
- /usr/include/linkey.h
- /usr/include/linconf.h
- /usr/include/iceseed.h
- /usr/include/icepid.h
- /usr/include/icekey.h
- /usr/include/iceconf.h'
- + DREAMS_DIRS='/dev/ida/.hpd
- /usr/lib/libshtift'
- + DREAMS_KSYMS=''
- + DUARAWKZ_FILES=/usr/bin/duarawkz/loginpass
- + DUARAWKZ_DIRS=/usr/bin/duarawkz
- + DUARAWKZ_KSYMS=''
- + ENYELKM_FILES='/etc/.enyelkmHIDE^IT.ko
- /etc/.enyelkmOCULTAR.ko'
- + ENYELKM_DIRS=''
- + ENYELKM_KSYMS=''
- + FLEA_FILES='/etc/ld.so.hash
- /lib/security/.config/ssh/sshd_config
- /lib/security/.config/ssh/ssh_host_key
- /lib/security/.config/ssh/ssh_host_key.pub
- /lib/security/.config/ssh/ssh_random_seed
- /usr/bin/ssh2d
- /usr/lib/ldlibns.so
- /usr/lib/ldlibps.so
- /usr/lib/ldlibpst.so
- /usr/lib/ldlibdu.so
- /usr/lib/ldlibct.so'
- + FLEA_DIRS='/lib/security/.config/ssh
- /dev/..0
- /dev/..0/backup'
- + FLEA_KSYMS=''
- + FREEBSD_RK_FILES='/dev/ptyp
- /dev/ptyq
- /dev/ptyr
- /dev/ptys
- /dev/ptyt
- /dev/fd/.88/freshb-bsd
- /dev/fd/.88/fresht
- /dev/fd/.88/zxsniff
- /dev/fd/.88/zxsniff.log
- /dev/fd/.99/.ttyf00
- /dev/fd/.99/.ttyp00
- /dev/fd/.99/.ttyq00
- /dev/fd/.99/.ttys00
- /dev/fd/.99/.pwsx00
- /etc/.acid
- /usr/lib/.fx/sched_host.2
- /usr/lib/.fx/random_d.2
- /usr/lib/.fx/set_pid.2
- /usr/lib/.fx/setrgrp.2
- /usr/lib/.fx/TOHIDE
- /usr/lib/.fx/cons.saver
- /usr/lib/.fx/adore/ava/ava
- /usr/lib/.fx/adore/adore/adore.ko
- /bin/sysback
- /usr/local/bin/sysback'
- + FREEBSD_RK_DIRS='/dev/fd/.88
- /dev/fd/.99
- /usr/lib/.fx
- /usr/lib/.fx/adore'
- + FREEBSD_RK_KSYMS=''
- + FU_FILES='/sbin/xc
- /usr/include/ivtype.h
- /bin/.lib'
- + FU_DIRS=''
- + FU_KSYMS=''
- + FUCKIT_FILES='/lib/libproc.so.2.0.7
- /dev/proc/.bash_profile
- /dev/proc/.bashrc
- /dev/proc/.cshrc
- /dev/proc/fuckit/hax0r
- /dev/proc/fuckit/hax0rshell
- /dev/proc/fuckit/config/lports
- /dev/proc/fuckit/config/rports
- /dev/proc/fuckit/config/rkconf
- /dev/proc/fuckit/config/password
- /dev/proc/fuckit/config/progs
- /dev/proc/fuckit/system-bins/init
- /usr/lib/libcps.a
- /usr/lib/libtty.a'
- + FUCKIT_DIRS='/dev/proc
- /dev/proc/fuckit
- /dev/proc/fuckit/system-bins
- /dev/proc/toolz'
- + FUCKIT_KSYMS=''
- + GASKIT_FILES=/dev/dev/gaskit/sshd/sshdd
- + GASKIT_DIRS='/dev/dev
- /dev/dev/gaskit
- /dev/dev/gaskit/sshd'
- + GASKIT_KSYMS=''
- + HEROIN_FILES=''
- + HEROIN_DIRS=''
- + HEROIN_KSYMS=heroin
- + HJCKIT_FILES=''
- + HJCKIT_DIRS=/dev/.hijackerz
- + HJCKIT_KSYMS=''
- + IGNOKIT_FILES='/lib/defs/p
- /lib/defs/q
- /lib/defs/r
- /lib/defs/s
- /lib/defs/t
- /usr/lib/defs/p
- /usr/lib/defs/q
- /usr/lib/defs/r
- /usr/lib/defs/s
- /usr/lib/defs/t
- /usr/lib/.libigno/pkunsec
- /usr/lib/.libigno/.igno/psybnc/psybnc'
- + IGNOKIT_DIRS='/usr/lib/.libigno
- /usr/lib/.libigno/.igno'
- + IGNOKIT_KSYMS=''
- + ILLOGIC_FILES='/dev/kmod
- /dev/dos
- /usr/lib/crth.o
- /usr/lib/crtz.o
- /etc/ld.so.hash
- /usr/bin/sia
- /usr/bin/ssh2d
- /lib/security/.config/sn
- /lib/security/.config/iver
- /lib/security/.config/uconf.inv
- /lib/security/.config/ssh/ssh_host_key
- /lib/security/.config/ssh/ssh_host_key.pub
- /lib/security/.config/ssh/sshport
- /lib/security/.config/ssh/ssh_random_seed
- /lib/security/.config/ava
- /lib/security/.config/cleaner
- /lib/security/.config/lpsched
- /lib/security/.config/sz
- /lib/security/.config/rcp
- /lib/security/.config/patcher
- /lib/security/.config/pg
- /lib/security/.config/crypt
- /lib/security/.config/utime
- /lib/security/.config/wget
- /lib/security/.config/instmod
- /lib/security/.config/bin/find
- /lib/security/.config/bin/du
- /lib/security/.config/bin/ls
- /lib/security/.config/bin/psr
- /lib/security/.config/bin/netstat
- /lib/security/.config/bin/su
- /lib/security/.config/bin/ping
- /lib/security/.config/bin/passwd'
- + ILLOGIC_DIRS='/lib/security/.config
- /lib/security/.config/ssh
- /lib/security/.config/bin
- /lib/security/.config/backup
- /root/%%%/.dir
- /root/%%%/.dir/mass-scan
- /root/%%%/.dir/flood'
- + ILLOGIC_KSYMS=''
- + INQTANAA_FILES='/Users/w0rm-support.tgz
- /Users/InqTest.class
- /Users/com.openbundle.plist
- /Users/com.pwned.plist
- /Users/libavetanaBT.jnilib'
- + INQTANAA_DIRS='/Users/de
- /Users/javax'
- + INQTANAA_KSYMS=''
- + INQTANAB_FILES='/Users/w0rms.love.apples.tgz
- /Users/InqTest.class
- /Users/InqTest.java
- /Users/libavetanaBT.jnilib
- /Users/InqTanaHandler
- /Users/InqTanaHandler.bundle'
- + INQTANAB_DIRS='/Users/de
- /Users/javax'
- + INQTANAB_KSYMS=''
- + INQTANAC_FILES='/Users/applec0re.tgz
- /Users/InqTest.class
- /Users/InqTest.java
- /Users/libavetanaBT.jnilib
- /Users/environment.plist
- /Users/pwned.c
- /Users/pwned.dylib'
- + INQTANAC_DIRS='/Users/de
- /Users/javax'
- + INQTANAC_KSYMS=''
- + INTOXONIA_FILES=''
- + INTOXONIA_DIRS=''
- + INTOXONIA_KSYMS='funces
- ixinit
- tricks
- kernel_unlink
- rootme
- hide_module
- find_sys_call_tbl'
- + IRIXRK_FILES=''
- + IRIXRK_DIRS='/dev/pts/01
- /dev/pts/01/backup
- /dev/pts/01/etc
- /dev/pts/01/tmp'
- + IRIXRK_KSYMS=''
- + JYNX_FILES='/xochikit/bc
- /xochikit/ld_poison.so
- /omgxochi/bc
- /omgxochi/ld_poison.so
- /var/local/^^/bc
- /var/local/^^/ld_poison.so'
- + JYNX_DIRS='/xochikit
- /omgxochi
- /var/local/^^'
- + JYNX_KSYMS=''
- + KBEAST_FILES='/usr/_h4x_/ipsecs-kbeast-v1.ko
- /usr/_h4x_/_h4x_bd
- /usr/_h4x_/acctlog'
- + KBEAST_DIRS=/usr/_h4x_
- + KBEAST_KSYMS='h4x_delete_module
- h4x_getdents64
- h4x_kill
- h4x_open
- h4x_read
- h4x_rename
- h4x_rmdir
- h4x_tcp4_seq_show
- h4x_write'
- + KITKO_FILES=''
- + KITKO_DIRS=/usr/src/redhat/SRPMS/...
- + KITKO_KSYMS=''
- + KNARK_FILES=/proc/knark/pids
- + KNARK_DIRS=/proc/knark
- + KNARK_KSYMS=''
- + LINUXV_FILES=/lib/ld-linuxv.so.1
- + LINUXV_DIRS='/var/opt/_so_cache
- /var/opt/_so_cache/ld
- /var/opt/_so_cache/lc'
- + LINUXV_KSYMS=''
- + LION_FILES='/bin/in.telnetd
- /bin/mjy
- /usr/man/man1/man1/lib/.lib/mjy
- /usr/man/man1/man1/lib/.lib/in.telnetd
- /usr/man/man1/man1/lib/.lib/.x
- /dev/.lib/lib/scan/1i0n.sh
- /dev/.lib/lib/scan/hack.sh
- /dev/.lib/lib/scan/bind
- /dev/.lib/lib/scan/randb
- /dev/.lib/lib/scan/scan.sh
- /dev/.lib/lib/scan/pscan
- /dev/.lib/lib/scan/star.sh
- /dev/.lib/lib/scan/bindx.sh
- /dev/.lib/lib/scan/bindname.log
- /dev/.lib/lib/1i0n.sh
- /dev/.lib/lib/lib/netstat
- /dev/.lib/lib/lib/dev/.1addr
- /dev/.lib/lib/lib/dev/.1logz
- /dev/.lib/lib/lib/dev/.1proc
- /dev/.lib/lib/lib/dev/.1file'
- + LION_DIRS=''
- + LION_KSYMS=''
- + LOCKIT_FILES='/usr/lib/libmen.oo/.LJK2/ssh_config
- /usr/lib/libmen.oo/.LJK2/ssh_host_key
- /usr/lib/libmen.oo/.LJK2/ssh_host_key.pub
- /usr/lib/libmen.oo/.LJK2/ssh_random_seed*
- /usr/lib/libmen.oo/.LJK2/sshd_config
- /usr/lib/libmen.oo/.LJK2/backdoor/RK1bd
- /usr/lib/libmen.oo/.LJK2/backup/du
- /usr/lib/libmen.oo/.LJK2/backup/ifconfig
- /usr/lib/libmen.oo/.LJK2/backup/inetd.conf
- /usr/lib/libmen.oo/.LJK2/backup/locate
- /usr/lib/libmen.oo/.LJK2/backup/login
- /usr/lib/libmen.oo/.LJK2/backup/ls
- /usr/lib/libmen.oo/.LJK2/backup/netstat
- /usr/lib/libmen.oo/.LJK2/backup/ps
- /usr/lib/libmen.oo/.LJK2/backup/pstree
- /usr/lib/libmen.oo/.LJK2/backup/rc.sysinit
- /usr/lib/libmen.oo/.LJK2/backup/syslogd
- /usr/lib/libmen.oo/.LJK2/backup/tcpd
- /usr/lib/libmen.oo/.LJK2/backup/top
- /usr/lib/libmen.oo/.LJK2/clean/RK1sauber
- /usr/lib/libmen.oo/.LJK2/clean/RK1wted
- /usr/lib/libmen.oo/.LJK2/hack/RK1parse
- /usr/lib/libmen.oo/.LJK2/hack/RK1sniff
- /usr/lib/libmen.oo/.LJK2/hide/.RK1addr
- /usr/lib/libmen.oo/.LJK2/hide/.RK1dir
- /usr/lib/libmen.oo/.LJK2/hide/.RK1log
- /usr/lib/libmen.oo/.LJK2/hide/.RK1proc
- /usr/lib/libmen.oo/.LJK2/hide/RK1phidemod.c
- /usr/lib/libmen.oo/.LJK2/modules/README.modules
- /usr/lib/libmen.oo/.LJK2/modules/RK1hidem.c
- /usr/lib/libmen.oo/.LJK2/modules/RK1phide
- /usr/lib/libmen.oo/.LJK2/sshconfig/RK1ssh'
- + LOCKIT_DIRS=/usr/lib/libmen.oo/.LJK2
- + LOCKIT_KSYMS=''
- + MRK_FILES='/dev/ida/.inet/pid
- /dev/ida/.inet/ssh_host_key
- /dev/ida/.inet/ssh_random_seed
- /dev/ida/.inet/tcp.log'
- + MRK_DIRS='/dev/ida/.inet
- /var/spool/cron/.sh'
- + MRK_KSYMS=''
- + MOODNT_FILES='/sbin/init__mood-nt-_-_cthulhu
- /_cthulhu/mood-nt.init
- /_cthulhu/mood-nt.conf
- /_cthulhu/mood-nt.sniff'
- + MOODNT_DIRS=/_cthulhu
- + MOODNT_KSYMS=''
- + NIO_FILES='/var/lock/subsys/...datafile.../...net...
- /var/lock/subsys/...datafile.../...port...
- /var/lock/subsys/...datafile.../...ps...
- /var/lock/subsys/...datafile.../...file...'
- + NIO_DIRS='/tmp/waza
- /var/lock/subsys/...datafile...
- /usr/sbin/es'
- + NIO_KSYMS=''
- + OHHARA_FILES=/var/lock/subsys/...datafile.../...datafile.../in.smbd.log
- + OHHARA_DIRS='/var/lock/subsys/...datafile...
- /var/lock/subsys/...datafile.../...datafile...
- /var/lock/subsys/...datafile.../...datafile.../bin
- /var/lock/subsys/...datafile.../...datafile.../usr/bin
- /var/lock/subsys/...datafile.../...datafile.../usr/sbin
- /var/lock/subsys/...datafile.../...datafile.../lib/security'
- + OHHARA_KSYMS=''
- + OPTICKIT_FILES=''
- + OPTICKIT_DIRS='/dev/tux
- /usr/bin/xchk
- /usr/bin/xsf
- /usr/bin/ssh2d'
- + OPTICKIT_KSYMS=''
- + OSXRK_FILES='/dev/.rk/nc
- /dev/.rk/diepu
- /dev/.rk/backd
- /Library/StartupItems/opener
- /Library/StartupItems/opener.sh
- /System/Library/StartupItems/opener
- /System/Library/StartupItems/opener.sh'
- + OSXRK_DIRS='/dev/.rk
- /Users/LDAP-daemon
- /tmp/.work'
- + OSXRK_KSYMS=''
- + OZ_FILES=/dev/.oz/.nap/rkit/terror
- + OZ_DIRS=/dev/.oz
- + OZ_KSYMS=''
- + PHALANX_FILES='/uNFuNF
- /etc/host.ph1
- /bin/host.ph1
- /usr/share/.home.ph1/phalanx
- /usr/share/.home.ph1/cb
- /usr/share/.home.ph1/kebab'
- + PHALANX_DIRS='/usr/share/.home.ph1
- /usr/share/.home.ph1/tty'
- + PHALANX_KSYMS=''
- + PHALANX2_FILES='/etc/khubd.p2/.p2rc
- /etc/khubd.p2/.phalanx2
- /etc/khubd.p2/.sniff
- /etc/khubd.p2/sshgrab.py
- /etc/lolzz.p2/.p2rc
- /etc/lolzz.p2/.phalanx2
- /etc/lolzz.p2/.sniff
- /etc/lolzz.p2/sshgrab.py
- /etc/cron.d/zupzzplaceholder
- /usr/lib/zupzz.p2/.p-2.3d
- /usr/lib/zupzz.p2/.p2rc'
- + PHALANX2_DIRS='/etc/khubd.p2
- /etc/lolzz.p2
- /usr/lib/zupzz.p2'
- + PHALANX2_KSYMS=''
- + PORTACELO_FILES='/var/lib/.../.ak
- /var/lib/.../.hk
- /var/lib/.../.rs
- /var/lib/.../.p
- /var/lib/.../getty
- /var/lib/.../lkt.o
- /var/lib/.../show
- /var/lib/.../nlkt.o
- /var/lib/.../ssshrc
- /var/lib/.../sssh_equiv
- /var/lib/.../sssh_known_hosts
- /var/lib/.../sssh_pid ~/.sssh/known_hosts'
- + PORTACELO_DIRS=''
- + PORTACELO_KSYMS=''
- + REDSTORM_FILES='/var/log/tk02/see_all
- /var/log/tk02/.scris
- /bin/.../sshd/sbin/sshd1
- /bin/.../hate/sk
- /bin/.../see_all'
- + REDSTORM_DIRS='/var/log/tk02
- /var/log/tk02/old
- /bin/...'
- + REDSTORM_KSYMS=''
- + RHSHARPES_FILES='/bin/lps
- /usr/bin/lpstree
- /usr/bin/ltop
- /usr/bin/lkillall
- /usr/bin/ldu
- /usr/bin/lnetstat
- /usr/bin/wp
- /usr/bin/shad
- /usr/bin/vadim
- /usr/bin/slice
- /usr/bin/cleaner
- /usr/include/rpcsvc/du'
- + RHSHARPES_DIRS=''
- + RHSHARPES_KSYMS=''
- + RSHA_FILES='/bin/kr4p
- /usr/bin/n3tstat
- /usr/bin/chsh2
- /usr/bin/slice2
- /usr/src/linux/arch/alpha/lib/.lib/.1proc
- /etc/rc.d/arch/alpha/lib/.lib/.1addr'
- + RSHA_DIRS='/etc/rc.d/rsha
- /etc/rc.d/arch/alpha/lib/.lib'
- + RSHA_KSYMS=''
- + SHUTDOWN_FILES='/usr/man/man5/..%/.dir/scannah/asus
- /usr/man/man5/..%/.dir/see
- /usr/man/man5/..%/.dir/nscd
- /usr/man/man5/..%/.dir/alpd
- /etc/rc.d/rc.local%'
- + SHUTDOWN_DIRS='/usr/man/man5/..%/.dir
- /usr/man/man5/..%/.dir/scannah
- /etc/rc.d/rc0.d/..%/.dir'
- + SHUTDOWN_KSYMS=''
- + SCALPER_FILES='/tmp/.a
- /tmp/.uua'
- + SCALPER_DIRS=''
- + SCALPER_KSYMS=''
- + SHV4_FILES='/etc/ld.so.hash
- /lib/libext-2.so.7
- /lib/lidps1.so
- /lib/libproc.a
- /lib/libproc.so.2.0.6
- /lib/ldd.so/tks
- /lib/ldd.so/tkp
- /lib/ldd.so/tksb
- /lib/security/.config/sshd
- /lib/security/.config/ssh/ssh_host_key
- /lib/security/.config/ssh/ssh_host_key.pub
- /lib/security/.config/ssh/ssh_random_seed
- /usr/include/file.h
- /usr/include/hosts.h
- /usr/include/lidps1.so
- /usr/include/log.h
- /usr/include/proc.h
- /usr/sbin/xntps
- /dev/srd0'
- + SHV4_DIRS='/lib/ldd.so
- /lib/security/.config
- /lib/security/.config/ssh'
- + SHV4_KSYMS=''
- + SHV5_FILES='/etc/sh.conf
- /lib/libproc.a
- /lib/libproc.so.2.0.6
- /lib/lidps1.so
- /lib/libsh.so/bash
- /usr/include/file.h
- /usr/include/hosts.h
- /usr/include/log.h
- /usr/include/proc.h
- /lib/libsh.so/shdcf2
- /lib/libsh.so/shhk
- /lib/libsh.so/shhk.pub
- /lib/libsh.so/shrs
- /usr/lib/libsh/.bashrc
- /usr/lib/libsh/shsb
- /usr/lib/libsh/hide
- /usr/lib/libsh/.sniff/shsniff
- /usr/lib/libsh/.sniff/shp
- /dev/srd0'
- + SHV5_DIRS='/lib/libsh.so
- /usr/lib/libsh
- /usr/lib/libsh/utilz
- /usr/lib/libsh/.backup'
- + SHV5_KSYMS=''
- + SINROOTKIT_FILES='/dev/.haos/haos1/.f/Denyed
- /dev/ttyoa
- /dev/ttyof
- /dev/ttyop
- /dev/ttyos
- /usr/lib/.lib
- /usr/lib/sn/.X
- /usr/lib/sn/.sys
- /usr/lib/ld/.X
- /usr/man/man1/...
- /usr/man/man1/.../.m
- /usr/man/man1/.../.w'
- + SINROOTKIT_DIRS='/usr/lib/sn
- /usr/lib/man1/...
- /dev/.haos'
- + SINROOTKIT_KSYMS=''
- + SLAPPER_FILES='/tmp/.bugtraq
- /tmp/.uubugtraq
- /tmp/.bugtraq.c
- /tmp/httpd
- /tmp/.unlock
- /tmp/update
- /tmp/.cinik
- /tmp/.b'
- + SLAPPER_DIRS=''
- + SLAPPER_KSYMS=''
- + SNEAKIN_FILES=''
- + SNEAKIN_DIRS=/tmp/.X11-unix/.../rk
- + SNEAKIN_KSYMS=''
- + WANUKDOOR_FILES='/var/adm/sa/.adm/.lp-door.i86pc
- /var/adm/sa/.adm/.lp-door.sun4
- /var/spool/lp/admins/.lp-door.i86pc
- /var/spool/lp/admins/.lp-door.sun4
- /var/spool/lp/admins/lpshut
- /var/spool/lp/admins/lpsystem
- /var/spool/lp/admins/lpadmin
- /var/spool/lp/admins/lpmove
- /var/spool/lp/admins/lpusers
- /var/spool/lp/admins/lpfilter
- /var/spool/lp/admins/lpstat
- /var/spool/lp/admins/lpd
- /var/spool/lp/admins/lpsched
- /var/spool/lp/admins/lpc'
- + WANUKDOOR_DIRS=/var/adm/sa/.adm
- + WANUKDOOR_KSYMS=''
- + WANUKWORM_FILES='/var/adm/.adm
- /var/adm/.i86pc
- /var/adm/.sun4
- /var/adm/sa/.adm
- /var/adm/sa/.adm/.i86pc
- /var/adm/sa/.adm/.sun4
- /var/adm/sa/.adm/.crontab
- /var/adm/sa/.adm/devfsadmd
- /var/adm/sa/.adm/svcadm
- /var/adm/sa/.adm/cfgadm
- /var/adm/sa/.adm/kadmind
- /var/adm/sa/.adm/zoneadmd
- /var/adm/sa/.adm/sadm
- /var/adm/sa/.adm/sysadm
- /var/adm/sa/.adm/dladm
- /var/adm/sa/.adm/bootadm
- /var/adm/sa/.adm/routeadm
- /var/adm/sa/.adm/uadmin
- /var/adm/sa/.adm/acctadm
- /var/adm/sa/.adm/cryptoadm
- /var/adm/sa/.adm/inetadm
- /var/adm/sa/.adm/logadm
- /var/adm/sa/.adm/nlsadmin
- /var/adm/sa/.adm/sacadm
- /var/adm/sa/.adm/syseventadmd
- /var/adm/sa/.adm/ttyadmd
- /var/adm/sa/.adm/consadmd
- /var/adm/sa/.adm/metadevadm
- /var/adm/sa/.i86pc
- /var/adm/sa/.sun4
- /var/adm/sa/acctadm
- /var/adm/sa/bootadm
- /var/adm/sa/cfgadm
- /var/adm/sa/consadmd
- /var/adm/sa/cryptoadm
- /var/adm/sa/devfsadmd
- /var/adm/sa/dladm
- /var/adm/sa/inetadm
- /var/adm/sa/kadmind
- /var/adm/sa/logadm
- /var/adm/sa/metadevadm
- /var/adm/sa/nlsadmin
- /var/adm/sa/routeadm
- /var/adm/sa/sacadm
- /var/adm/sa/sadm
- /var/adm/sa/svcadm
- /var/adm/sa/sysadm
- /var/adm/sa/syseventadmd
- /var/adm/sa/ttyadmd
- /var/adm/sa/uadmin
- /var/adm/sa/zoneadmd
- /var/spool/lp/admins/.lp/.crontab
- /var/spool/lp/admins/.lp/lpshut
- /var/spool/lp/admins/.lp/lpsystem
- /var/spool/lp/admins/.lp/lpadmin
- /var/spool/lp/admins/.lp/lpmove
- /var/spool/lp/admins/.lp/lpusers
- /var/spool/lp/admins/.lp/lpfilter
- /var/spool/lp/admins/.lp/lpstat
- /var/spool/lp/admins/.lp/lpd
- /var/spool/lp/admins/.lp/lpsched
- /var/spool/lp/admins/.lp/lpc'
- + WANUKWORM_DIRS='/var/adm/sa/.adm
- /var/spool/lp/admins/.lp'
- + WANUKWORM_KSYMS=''
- + SPANISH_FILES='/dev/ptyq
- /bin/ad
- /bin/ava
- /bin/server
- /usr/sbin/rescue
- /usr/share/.../chrps
- /usr/share/.../chrifconfig
- /usr/share/.../netstat
- /usr/share/.../linsniffer
- /usr/share/.../charbd
- /usr/share/.../charbd2
- /usr/share/.../charbd3
- /usr/share/.../charbd4
- /usr/man/tmp/update.tgz
- /var/lib/rpm/db.rpm
- /var/cache/man/.cat
- /var/spool/lpd/remote/.lpq'
- + SPANISH_DIRS=/usr/share/...
- + SPANISH_KSYMS=''
- + SUCKIT_FILES='/sbin/initsk12
- /sbin/initxrk
- /usr/bin/null
- /usr/share/locale/sk/.sk12/sk
- /etc/rc.d/rc0.d/S23kmdac
- /etc/rc.d/rc1.d/S23kmdac
- /etc/rc.d/rc2.d/S23kmdac
- /etc/rc.d/rc3.d/S23kmdac
- /etc/rc.d/rc4.d/S23kmdac
- /etc/rc.d/rc5.d/S23kmdac
- /etc/rc.d/rc6.d/S23kmdac'
- + SUCKIT_DIRS='/dev/sdhu0/tehdrakg
- /etc/.MG
- /usr/share/locale/sk/.sk12
- /usr/lib/perl5/site_perl/i386-linux/auto/TimeDate/.packlist'
- + SUCKIT_KSYMS=''
- + NSDAP_FILES='/dev/pts/01/55su
- /dev/pts/01/55ps
- /dev/pts/01/55ping
- /dev/pts/01/55login
- /dev/pts/01/PATCHER_COMPLETED
- /dev/prom/sn.l
- /dev/prom/dos
- /usr/lib/vold/nsdap/.kit
- /usr/lib/vold/nsdap/defines
- /usr/lib/vold/nsdap/patcher
- /usr/lib/vold/nsdap/pg
- /usr/lib/vold/nsdap/cleaner
- /usr/lib/vold/nsdap/utime
- /usr/lib/vold/nsdap/crypt
- /usr/lib/vold/nsdap/findkit
- /usr/lib/vold/nsdap/sn2
- /usr/lib/vold/nsdap/sniffload
- /usr/lib/vold/nsdap/runsniff
- /usr/lib/lpset
- /usr/lib/lpstart
- /usr/bin/mc68000
- /usr/bin/mc68010
- /usr/bin/mc68020
- /usr/ucb/bin/ps
- /usr/bin/m68k
- /usr/bin/sun2
- /usr/bin/mc68030
- /usr/bin/mc68040
- /usr/bin/sun3
- /usr/bin/sun3x
- /usr/bin/lso
- /usr/bin/u370'
- + NSDAP_DIRS='/dev/pts/01
- /dev/prom
- /usr/lib/vold/nsdap
- /.pat'
- + NSDAP_KSYMS=''
- + SUNOSROOTKIT_FILES='/etc/ld.so.hash
- /lib/libext-2.so.7
- /usr/bin/ssh2d
- /bin/xlogin
- /usr/lib/crth.o
- /usr/lib/crtz.o
- /sbin/login
- /lib/security/.config/sn
- /lib/security/.config/lpsched
- /dev/kmod
- /dev/dos'
- + SUNOSROOTKIT_DIRS=''
- + SUNOSROOTKIT_KSYMS=''
- + SUPERKIT_FILES='/usr/man/.sman/sk/backsh
- /usr/man/.sman/sk/izbtrag
- /usr/man/.sman/sk/sksniff
- /var/www/cgi-bin/cgiback.cgi'
- + SUPERKIT_DIRS=/usr/man/.sman/sk
- + SUPERKIT_KSYMS=''
- + TBD_FILES=/usr/lib/.tbd
- + TBD_DIRS=''
- + TBD_KSYMS=''
- + TELEKIT_FILES='/usr/man/man3/.../TeLeKiT/bin/sniff
- /usr/man/man3/.../TeLeKiT/bin/telnetd
- /usr/man/man3/.../TeLeKiT/bin/teleulo
- /usr/man/man3/.../cl
- /dev/ptyr
- /dev/ptyp
- /dev/ptyq
- /dev/hda06
- /usr/info/libc1.so'
- + TELEKIT_DIRS='/usr/man/man3/...
- /usr/man/man3/.../lsniff
- /usr/man/man3/.../TeLeKiT'
- + TELEKIT_KSYMS=''
- + TOGROOT_FILES='/System/Library/Extensions/Togroot.kext/Contents/Info.plist
- /System/Library/Extensions/Togroot.kext/Contents/pbdevelopment.plist
- /System/Library/Extensions/Togroot.kext/Contents/MacOS/togrootkext'
- + TOGROOT_DIRS='/System/Library/Extensions/Togroot.kext
- /System/Library/Extensions/Togroot.kext/Contents
- /System/Library/Extensions/Togroot.kext/Contents/MacOS'
- + TOGROOT_KSYMS=''
- + TORN_FILES='/dev/.lib/lib/lib/t0rns
- /dev/.lib/lib/lib/du
- /dev/.lib/lib/lib/ls
- /dev/.lib/lib/lib/t0rnsb
- /dev/.lib/lib/lib/ps
- /dev/.lib/lib/lib/t0rnp
- /dev/.lib/lib/lib/find
- /dev/.lib/lib/lib/ifconfig
- /dev/.lib/lib/lib/pg
- /dev/.lib/lib/lib/ssh.tgz
- /dev/.lib/lib/lib/top
- /dev/.lib/lib/lib/sz
- /dev/.lib/lib/lib/login
- /dev/.lib/lib/lib/in.fingerd
- /dev/.lib/lib/lib/1i0n.sh
- /dev/.lib/lib/lib/pstree
- /dev/.lib/lib/lib/in.telnetd
- /dev/.lib/lib/lib/mjy
- /dev/.lib/lib/lib/sush
- /dev/.lib/lib/lib/tfn
- /dev/.lib/lib/lib/name
- /dev/.lib/lib/lib/getip.sh
- /usr/info/.torn/sh*
- /usr/src/.puta/.1addr
- /usr/src/.puta/.1file
- /usr/src/.puta/.1proc
- /usr/src/.puta/.1logz
- /usr/info/.t0rn'
- + TORN_DIRS='/dev/.lib
- /dev/.lib/lib
- /dev/.lib/lib/lib
- /dev/.lib/lib/lib/dev
- /dev/.lib/lib/scan
- /usr/src/.puta
- /usr/man/man1/man1
- /usr/man/man1/man1/lib
- /usr/man/man1/man1/lib/.lib
- /usr/man/man1/man1/lib/.lib/.backup'
- + TORN_KSYMS=''
- + TRNKIT_FILES='/usr/lib/libbins.la
- /usr/lib/libtcs.so
- /dev/.ttpy/ulogin.sh
- /dev/.ttpy/tcpshell.sh
- /dev/.ttpy/bupdu
- /dev/.ttpy/buloc
- /dev/.ttpy/buloc1
- /dev/.ttpy/buloc2
- /dev/.ttpy/stat
- /dev/.ttpy/backps
- /dev/.ttpy/tree
- /dev/.ttpy/topk
- /dev/.ttpy/wold
- /dev/.ttpy/whoold
- /dev/.ttpy/backdoors'
- + TRNKIT_DIRS=''
- + TRNKIT_KSYMS=''
- + TROJANIT_FILES='/bin/.ls
- /bin/.ps
- /bin/.netstat
- /usr/bin/.nop
- /usr/bin/.who'
- + TROJANIT_DIRS=''
- + TROJANIT_KSYMS=''
- + TURTLE_FILES=/dev/turtle2dev
- + TURTLE_DIRS=''
- + TURTLE_KSYMS=''
- + TUXTENDO_FILES='/lib/libproc.so.2.0.7
- /usr/bin/xchk
- /usr/bin/xsf
- /dev/tux/suidsh
- /dev/tux/.addr
- /dev/tux/.cron
- /dev/tux/.file
- /dev/tux/.log
- /dev/tux/.proc
- /dev/tux/.iface
- /dev/tux/.pw
- /dev/tux/.df
- /dev/tux/.ssh
- /dev/tux/.tux
- /dev/tux/ssh2/sshd2_config
- /dev/tux/ssh2/hostkey
- /dev/tux/ssh2/hostkey.pub
- /dev/tux/ssh2/logo
- /dev/tux/ssh2/random_seed
- /dev/tux/backup/crontab
- /dev/tux/backup/df
- /dev/tux/backup/dir
- /dev/tux/backup/find
- /dev/tux/backup/ifconfig
- /dev/tux/backup/locate
- /dev/tux/backup/netstat
- /dev/tux/backup/ps
- /dev/tux/backup/pstree
- /dev/tux/backup/syslogd
- /dev/tux/backup/tcpd
- /dev/tux/backup/top
- /dev/tux/backup/updatedb
- /dev/tux/backup/vdir'
- + TUXTENDO_DIRS='/dev/tux
- /dev/tux/ssh2
- /dev/tux/backup'
- + TUXTENDO_KSYMS=''
- + URK_FILES='/dev/prom/sn.l
- /usr/lib/ldlibps.so
- /usr/lib/ldlibnet.so
- /dev/pts/01/uconf.inv
- /dev/pts/01/cleaner
- /dev/pts/01/bin/psniff
- /dev/pts/01/bin/du
- /dev/pts/01/bin/ls
- /dev/pts/01/bin/passwd
- /dev/pts/01/bin/ps
- /dev/pts/01/bin/psr
- /dev/pts/01/bin/su
- /dev/pts/01/bin/find
- /dev/pts/01/bin/netstat
- /dev/pts/01/bin/ping
- /dev/pts/01/bin/strings
- /dev/pts/01/bin/bash
- /usr/man/man1/xxxxxxbin/du
- /usr/man/man1/xxxxxxbin/ls
- /usr/man/man1/xxxxxxbin/passwd
- /usr/man/man1/xxxxxxbin/ps
- /usr/man/man1/xxxxxxbin/psr
- /usr/man/man1/xxxxxxbin/su
- /usr/man/man1/xxxxxxbin/find
- /usr/man/man1/xxxxxxbin/netstat
- /usr/man/man1/xxxxxxbin/ping
- /usr/man/man1/xxxxxxbin/strings
- /usr/man/man1/xxxxxxbin/bash
- /tmp/conf.inv'
- + URK_DIRS='/dev/prom
- /dev/pts/01
- /dev/pts/01/bin
- /usr/man/man1/xxxxxxbin'
- + URK_KSYMS=''
- + VCKIT_FILES=''
- + VCKIT_DIRS='/usr/include/linux/modules/lib.so
- /usr/include/linux/modules/lib.so/bin'
- + VCKIT_KSYMS=''
- + VAMPIRE_FILES=''
- + VAMPIRE_DIRS=''
- + VAMPIRE_KSYMS='new_getdents
- old_getdents
- should_hide_file_name
- should_hide_task_name'
- + VOLC_FILES='/usr/bin/volc
- /usr/lib/volc/backdoor/divine
- /usr/lib/volc/linsniff
- /etc/rc.d/rc1.d/S25sysconf
- /etc/rc.d/rc2.d/S25sysconf
- /etc/rc.d/rc3.d/S25sysconf
- /etc/rc.d/rc4.d/S25sysconf
- /etc/rc.d/rc5.d/S25sysconf'
- + VOLC_DIRS='/var/spool/.recent
- /var/spool/.recent/.files
- /usr/lib/volc
- /usr/lib/volc/backup'
- + VOLC_KSYMS=''
- + WEAPONX_FILES=/System/Library/Extensions/WeaponX.kext
- + WEAPONX_DIRS=/tmp/...
- + WEAPONX_KSYMS=''
- + XZIBIT_FILES='/dev/dsx
- /dev/caca
- /dev/ida/.inet/linsniffer
- /dev/ida/.inet/logclear
- /dev/ida/.inet/sense
- /dev/ida/.inet/sl2
- /dev/ida/.inet/sshdu
- /dev/ida/.inet/s
- /dev/ida/.inet/ssh_host_key
- /dev/ida/.inet/ssh_random_seed
- /dev/ida/.inet/sl2new.c
- /dev/ida/.inet/tcp.log
- /home/httpd/cgi-bin/becys.cgi
- /usr/local/httpd/cgi-bin/becys.cgi
- /usr/local/apache/cgi-bin/becys.cgi
- /www/httpd/cgi-bin/becys.cgi
- /www/cgi-bin/becys.cgi'
- + XZIBIT_DIRS=/dev/ida/.inet
- + XZIBIT_KSYMS=''
- + XORGSUNOS_FILES='/usr/lib/libX.a/bin/tmpfl
- /usr/lib/libX.a/bin/rps
- /usr/bin/srload
- /usr/lib/libX.a/bin/sparcv7/rps
- /usr/sbin/modcheck'
- + XORGSUNOS_DIRS='/usr/lib/libX.a
- /usr/lib/libX.a/bin
- /usr/lib/libX.a/bin/sparcv7
- /usr/share/man...'
- + XORGSUNOS_KSYMS=''
- + ZARWT_FILES='/dev/rd/s/sendmeil
- /dev/ttyf
- /dev/ttyp
- /dev/ttyn
- /rk/tulz'
- + ZARWT_DIRS='/rk
- /dev/rd/s'
- + ZARWT_KSYMS=''
- + ZK_FILES='/usr/share/.zk/zk
- /usr/X11R6/.zk/xfs
- /usr/X11R6/.zk/echo
- /etc/1ssue.net
- /etc/sysconfig/console/load.zk'
- + ZK_DIRS='/usr/share/.zk
- /usr/X11R6/.zk'
- + ZK_KSYMS=''
- + LOGIN_BACKDOOR_FILES='/bin/.login
- /sbin/.login'
- + SUSPICIOUS_DIRS='/usr/X11R6/bin/.,/copy
- /dev/rd/cdb'
- + STRINGSCAN='crond:LOGNAME=root:Illogic Rootkit
- hostname:phalanx:Phalanx Rootkit
- init:/dev/proc/fuckit:Fuckit Rootkit
- init:FUCK:Suckit Rootkit
- init:backdoor:Suckit Rootkit (backdoored init file)
- init:/usr/bin/rcpc:Portacelo Rootkit
- init:/usr/sbin/login:trNkit Rootkit ulogin
- killall:/dev/ptyxx/.proc:Ambient (ark) Rootkit
- login:vt200:Linux Rootkit (LRK4)
- login:/usr/bin/xstat:Linux Rootkit (LRK4)
- login:/bin/envpc:Linux Rootkit (LRK4)
- login:L4m3r0x:Linux Rootkit (LRK4)
- login:/lib/libext:SHV4 Rootkit
- login:/usr/sbin/login:Flea Linux Rootkit
- login:/usr/lib/.tbd:TBD Rootkit
- login:sendmail:Ambient (ark) Rootkit
- login:cocacola:cb Rootkit
- login:joao:Spanish Rootkit
- ls:/dev/ptyxx/.file:Dica-Kit Rootkit
- ls:/dev/ptyxx/.file:Ambient (ark) Rootkit
- ls:/dev/sgk:Linux Rootkit (LRK4)
- ls:/var/lock/subsys/...datafile...:Ohhara Rootkit
- ls:/usr/lib/.tbd:TBD Rootkit
- netstat:/dev/proc/fuckit:Fuckit Rootkit
- netstat:/lib/.sso:Dica-Kit Rootkit
- netstat:/var/lock/subsys/...datafile...:Ohhara Rootkit
- netstat:/dev/caca:MRK Rootkit
- netstat:/dev/ttyoa:Sin Rootkit
- netstat:/usr/lib/ldlibns.so:Flea Linux Rootkit
- netstat:/dev/ptyxx/.addr:Ambient (ark) Rootkit
- netstat:syg:Trojaned netstat
- nscd:sshd_config:Backdoor shell installed (SSH)
- ps:/var/lock/subsys/...datafile...:Ohhara Rootkit or Ni0 Rootkit
- ps:/dev/pts/01:Universal Rootkit (URK)
- ps:tw33dl3:SunOS Rootkit
- ps:psniff:SunOS Rootkit
- ps:uconf.inv:Universal Rootkit (URK)
- ps:lib/ldlibps.so:Flea Linux Rootkit or Universal Rootkit (URK)
- pstree:/usr/lib/ldlibpst.so:Flea Linux Rootkit
- ps:libproc.so.2.0.7:Fuckit Rootkit
- ps:/dev/ptyxx/.proc:Ambient (ark) Rootkit
- pstree:/dev/ptyxx/.proc:Ambient (ark) Rootkit
- pgrep:libproc.so.2.0.7:Fuckit Rootkit
- pkill:libproc.so.2.0.7:Fuckit Rootkit
- ping:/bin/bash:Ping Rootkit or other backdoor
- rpc.nfsd:cant open log:Sniffer installed
- rpc.nfsd:sniff.pid:Sniffer installed
- rpc.nfsd:tcp.log:Sniffer installed
- sshd:/dev/ptyxx:OpenBSD Rootkit
- sshd:/.config:SHV4 Rootkit
- sshd:+\$.*\$\!.*\!\!\$:Backdoored SSH daemon installed
- sshd:backdoor.h:Trojaned SSH daemon
- sshd:backdoor_active:Trojaned SSH daemon
- sshd:magic_pass_active:Trojaned SSH daemon
- sshd:/usr/include/gpm2.h:Trojaned SSH daemon
- sshd:/usr/include/openssl:Trojaned SSH daemon
- sshd:aion:Trojaned SSH daemon
- sshd:pcszPass:Trojaned SSH daemon
- sshd:LogPass:Trojaned SSH daemon
- sshd:Login_Check:Trojaned SSH daemon
- sshd:includes.h:Trojaned SSH daemon
- sshd:DecodeString:Trojaned SSH daemon
- sshd:EncodeString:Trojaned SSH daemon
- xntps:/.config:SHV4 Rootkit
- syslogd:promiscuous:Sniffer installed
- syslogd:/usr/lib/.tbd:TBD Rootkit
- syslogd:/dev/ptyxx/.log:Ambient (ark) Rootkit
- syslogd:/usr/share/pci.r:Trojaned Syslog daemon
- tcpd:/dev/xdta:Dica-Kit Rootkit
- top:/usr/lib/.tbd:TBD Rootkit
- top:/dev/ptyxx/.proc:Ambient (ark) Rootkit
- xtty:/bin/sh:Backdoor shell
- ttymon:fucknut:SHV5 Rootkit
- ttymon:lamersucks:SHV5 Rootkit
- ttymon:skillz:SHV5 Rootkit
- ttyload:/sbin/ttyload:SHV5 Rootkit
- ttyload:/sbin/ttymon:SHV5 Rootkit
- ttyload:propert of SH:SHV5 Rootkit
- rcfile:in.inetd:SHV4 Rootkit
- rcfile:+#<HIDE_.*>:Enye LKM
- rcfile:bin/xchk:Optic Kit (Tux) Worm
- rcfile:bin/xsf:Optic Kit (Tux) Worm
- rcfile:/usr/bin/ssh2d:Flea Linux Rootkit or Optic Kit (Tux variant) Rootkit or SunOS Rootkit
- rcfile:/usr/sbin/xntps:SHV4 Rootkit
- rcfile:ttyload:SHV5 Rootkit
- rcfile:/etc/rc.d/init.d/init:cb Rootkit or w00tkit Rootkit
- rcfile:usr/bin/xfss:Devil Rootkit
- rcfile:/usr/sbin/rpc.netinet:FreeBSD (FBRK) Rootkit
- rcfile:/usr/lib/.fx/cons.saver:FreeBSD (FBRK) Rootkit
- rcfile:/usr/lib/.fx/xs:FreeBSD (FBRK) Rootkit
- rcfile:/ssh2d:Illogic Rootkit or SunOS Rootkit
- rcfile:/dev/kmod:Illogic Rootkit or SunOS Rootkit
- rcfile:/crth.o:Illogic Rootkit or SunOS Rootkit
- rcfile:/crtz.o:Illogic Rootkit or SunOS Rootkit
- rcfile:/dev/dos:Illogic Rootkit or SunOS Rootkit
- rcfile:/lpq:Illogic Rootkit or SunOS Rootkit
- rcfile:/usr/sbin/rescue:Spanish Rootkit
- rcfile:/usr/lib/lpstart:SunOS NSDAP Rootkit or Universal Rootkit (URK)
- rcfile:/volc:Volc Rootkit
- rcfile:sourcemask:Rootkit component
- rcfile:/bin/vobiscum:Rootkit component
- rcfile:/usr/sbin/in.telnet:Rootkit component
- rcfile:/usr/bin/hdparm?-t1?-X53?-p:Xzibit Rootkit
- rcfile:/lib/.xsyslog:Flooder (Linux/Bckdr-RKC) component
- rcfile:/etc/.xsyslog:Flooder (Linux/Bckdr-RKC) component
- rcfile:/lib/.ssyslog:Flooder (Linux/Bckdr-RKC) component
- rcfile:/tmp/.sendmail:Flooder (Linux/Bckdr-RKC) component
- ssh:/lib/ldd.so/tkps:SHV4 Rootkit
- ssh1:/lib/ldd.so/tkps:SHV4 Rootkit
- ssh:t0rnkit:T0rn Rootkit
- ssh:/dev/proc/fuckit:Fuckit Rootkit
- ssh:backdoor.h:Trojaned SSH daemon
- ssh:backdoor_active:Trojaned SSH daemon
- ssh:magic_pass_active:Trojaned SSH daemon
- ssh:/usr/include/gpm2.h:Trojaned SSH daemon
- skill:libproc.so.2.0.7:Fuckit Rootkit
- snice:libproc.so.2.0.7:Fuckit Rootkit
- top:libproc.so.2.0.7:Fuckit Rootkit
- slocate:/usr/lib/ldlibct.so:Flea Linux Rootkit
- locate:/usr/lib/ldlibct.so:Flea Linux Rootkit
- du:/usr/lib/ldlibdu.so:Flea Linux Rootkit
- du:/dev/ptyxx/.file:Ambient (ark) Rootkit
- w:libproc.so.2.0.7:Fuckit Rootkit
- xlogin:/lib/libext:SHV4 Rootkit
- hdparm:/dev/ida/.inet:Xzibit Rootkit
- pgrep:/usr/include/mysql/mysql.hh1:Rootkit component
- pkill:/usr/include/mysql/mysql.hh1:Rootkit component
- pmap:/usr/include/mysql/mysql.hh1:Rootkit component
- ps:/usr/include/mysql/mysql.hh1:Rootkit component
- w:/usr/include/mysql/mysql.hh1:Rootkit component
- top:/usr/include/mysql/mysql.hh1:Rootkit component
- bc:backconnect:Jynx Rootkit
- bc:magic?packet?received:Jynx Rootkit'
- + FILESCAN='file:/dev/sdr0:T0rn Rootkit MD5 hash database
- file:/dev/pisu:Rootkit component
- file:/dev/xdta:Dica-Kit Rootkit
- file:/dev/saux:Trojaned SSH daemon sniffer log
- file:/dev/hdx:Linux.RST.B infection
- file:/dev/hdx1:Linux.RST.B infection
- file:/dev/hdx2:Linux.RST.B infection
- file:/dev/ptyy:Rootkit component
- file:/dev/ptyu:Rootkit component
- file:/dev/ptyv:Rootkit component
- file:/dev/hdbb:Rootkit component
- file:/tmp/.syshackfile:Trojaned syslog daemon
- file:/tmp/.bash_history:Lite5-r Rootkit
- file:/usr/info/.clib:Backdoor component
- file:/usr/sbin/tcp.log:Sniffer log
- file:/usr/bin/take/pid:Trojaned SSH daemon
- file:/sbin/create:MzOzD Local backdoor
- file:/dev/ttypz:spwn login backdoor
- file:/var/log/tcp.log:beX2 Rootkit
- file:/usr/include/audit.h:beX2 Rootkit
- file:/usr/bin/sourcemask:Rootkit component
- file:/usr/bin/ras2xm:Rootkit component
- file:/dev/xmx:Dica-Kit Rootkit
- file:/usr/sbin/gpm.root:Rootkit component
- file:/bin/vobiscum:Rootkit component
- file:/bin/psr:Rootkit component
- file:/dev/kdx:Rootkit component
- file:/dev/dkx:Rootkit component
- file:/usr/sbin/sshd3:Rootkit component
- file:/usr/sbin/jcd:Rootkit component
- file:/etc/rc.d/init.d/jcd:Rootkit component
- file:/usr/sbin/atd2:Rootkit component
- file:/home/httpd/cgi-bin/linux.cgi:Dica-Kit Rootkit
- file:/home/httpd/cgi-bin/psid:Dica-Kit Rootkit
- file:/home/httpd/cgi-bin/void.cgi:Dica-Kit Rootkit
- file:/etc/rc.d/init.d/system:Rootkit component
- file:/etc/rc.d/rc3.d/S93users:Rootkit component
- file:/tmp/.ush:Dica-Kit Rootkit
- file:/usr/lib/libhidefile.so:HIDEFILE envvar file-hiding library
- file:/etc/cron.d/kmod:Illogic Rootkit
- file:/usr/lib/dmis/dmisd:Trojaned SSH daemon
- file:/lib/secure/libhij.so:Solaris Trojaned SSH daemon
- file:/usr/sbin/sshd3:Rootkit component
- file:/etc/rc.d/init.d/crontab:Rootkit component
- file:/etc/rc.d/init.d/jcd:Rootkit component
- file:/usr/sbin/atd2:Rootkit component
- file:/etc/rc.d/rc5.d/S93users:Rootkit component
- file:/usr/include/mysql/mysql.hh1:Rootkit component
- file:/etc/init.d/xfs3:Rootkit component
- file:/usr/sbin/t.txt:Opyum kit component
- file:/usr/sbin/change:Opyum kit component
- file:/usr/sbin/s:Opyum kit component
- file:/bin/f:Opyum kit component
- file:/bin/i:Opyum kit component
- file:/lib/libncom.so.4.0.1:ncom rootkit library
- file:/sbin/zinit:Rootkit component
- file:/tmp/pass_ssh.log:Trojaned SSH daemon
- file:/usr/include/gpm2.h:Trojaned SSH daemon
- file:/etc/ssh/.sshd_auth:Trojaned SSH daemon (logins)
- file:/usr/lib/.sshd.h:Trojaned SSH daemon (logins)
- file:/var/run/.defunct:Trojaned SSH daemon
- file:/etc/httpd/run/.defunct:Trojaned SSH daemon
- file:/usr/share/pci.r:Trojaned Syslog daemon
- file:/etc/cron.daily/dnsquery:Sniffer
- file:/usr/lib/libutil1.2.1.2.so:Trojaned SSH daemon component (hwclock binary)
- file:/bin/ceva:Trojaned SSH daemon (client binary)
- file:/sbin/syslogd%:Trojaned SSH daemon (sebd)
- file:/usr/include/shup.h:Trojaned SSH daemon (client binary)
- file:/etc/rpm/sshdOLD:Trojaned SSH daemon (original sshd binary)
- file:/etc/rpm/sshOLD:Trojaned SSH daemon (original ssh binary)
- file:/usr/share/passwd.h:Trojaned SSH daemon (default configuration)
- file:/lib/.xsyslog:Flooder (Linux/Bckdr-RKC) component
- file:/etc/.xsyslog:Flooder (Linux/Bckdr-RKC) component
- file:/lib/.ssyslog:Flooder (Linux/Bckdr-RKC) component
- file:/tmp/.sendmail:Flooder (Linux/Bckdr-RKC) component
- file:/usr/share/sshd.sync:Trojaned SSH daemon
- file:/bin/zcut:Trojaned SSH daemon
- file:/usr/bin/zmuie:Trojaned SSH daemon
- file:/lib/libkeyutils.so.1.9:Sniffer component
- file:/lib64/libkeyutils.so.1.9:Sniffer component
- file:/usr/lib/libkeyutils.so.1.9:Spam tool component
- file:/usr/lib64/libkeyutils.so.1.9:Spam tool component
- dir:/dev/ptyas:Langsuir installation directory
- dir:/usr/bin/take:Trojaned SSH daemon
- dir:/usr/src/.lib:Rootkit component
- dir:/usr/share/man/man1/.1c:Eggdrop (IRC bot)
- dir:/lib/lblip.tk:T0rn Rootkit directory with backdoored SSH-configuration
- dir:/usr/sbin/...:Rootkit component
- dir:/usr/share/.gun:Rootkit component
- dir:/unde/vrei/tu/sa/te/ascunzi/in/server:Unknown rootkit
- dir:/usr/man/man1/..%%/.dir:Unknown rootkit
- dir:/usr/X11R6/include/X11/...:Unknown rootkit
- dir:/usr/X11R6/lib/X11/.fonts/misc/...:Unknown rootkit
- dir:/tmp/.sys:Rootkit component
- dir:/tmp/'\'':Rootkit component
- dir:/tmp/.,:Rootkit component
- dir:/tmp/,.,:Rootkit component
- dir:/dev/shm/emilien:Rootkit component
- dir:/var/tmp/.log:Rootkit component
- dir:/tmp/zmeu/...%:Rootkit component
- dir:/var/log/ssh:Rootkit component
- dir:/dev/ida:Rootkit component
- dir:/var/lib/games/.src/ssk/shit:Rootkit component
- dir:/usr/lib/libshtift:Rootkit component
- dir:/usr/src/.poop:Ramen worm
- dir:/dev/wd4:IRC bot
- dir:/var/run/.tmp:Rootkit component
- dir:/usr/man/man1/lib/.lib:Rootkit component
- dir:/dev/portd:Rootkit component
- dir:/dev/...:Rootkit component
- dir:/usr/share/man/mansps:Rootkit component
- dir:/lib/.so:Rootkit component
- dir:/lib/.sso:Rootkit component
- dir:/usr/include/sslv3:Rootkit component
- dir:/dev/shm/sshd:Trojaned SSH daemon
- dir:/usr/share/locale/mk/.dev/sk:Sniffer
- dir:/usr/share/locale/mk/.dev:Sniffer
- dir:/usr/include/netda.h:Trojaned SSH daemon
- dir:/usr/include/.ssh:Trojaned SSH daemon
- dir:/usr/share/locale/jp/.%:IRC bot
- dir:/usr/share/.sqe:IRC bot'
- + KLDSTATKEYWORDS='backd00r backdoor darkside nekit rpldev rpldev_mod spapem_core spapem_genr00t hide_process turtle'
- + RCLOCAL_STRINGS='/usr/bin/rpc.wall:Linux Rootkit (LRK4)
- sshdd:GasKit Rootkit
- hidef:Knark Rootkit
- /usr/bin/.etc:Dica-Kit Rootkit'
- + SUSP_FILES_INFO='backdoor:Generic backdoor
- adore.o:Adore kernel module
- mod_rootme.so:Apache mod_rootme backdoor
- phide_mod.o:Process hiding kernel module
- lbk.ko:LBK FreeBSD kernel module
- vlogger.o:THC-Vlogger kernel module
- cleaner.o:Adore kernel module
- cleaner:Adore Rootkit
- ava:Adore Rootkit
- tzava:Adore Rootkit
- mod_klgr.o:klgr, keyboard logger (kernel module)
- hydra:THC-Hydra (password capture)
- hydra.restore:THC-Hydra (password capture)
- ras2xm:Unknown rootkit
- vobiscum:Unknown rootkit
- sshd3:Unknown rootkit
- system:Unknown rootkit
- t0rnsb:T0rn Rootkit
- t0rns:T0rn Rootkit
- t0rnp:T0rn Rootkit
- rx4u:Unknown rootkit
- rx2me:Unknown rootkit
- sshdu:Unknown rootkit
- glotzer:Unknown rootkit
- holber:Devil Rootkit
- xhide:Process hiding software
- xh:Process hiding software (alternative of XHide)
- emech:IRC bot
- psybnc:IRC bot
- mech:IRC bot
- httpd.bin:IRC bot
- mh:Dica-Kit Rootkit IRC bot
- xl:Dica-Kit Rootkit
- write:Dica-Kit Rootkit
- Phantasmagoria.o:Process hiding Linux kernel module
- lkt.o:Portacelo Rootkit
- nlkt.o:Portacelo Rootkit
- ld_poison.so:Jynx Rootkit
- .xsyslog:Flooder (Linux/Bckdr-RKC) component
- .ssyslog:Flooder (Linux/Bckdr-RKC) component
- pscan2:Port scanner
- scanssh:Port scanner
- sshf:Possible port scanner
- ssh-scan:Port scanner
- atac:Port scanner component
- \[pdflush\]:IRC bot
- libkeyutils.so.1.9:Spam tool component'
- + RCLOCATIONS='/etc/rc.d
- /etc/rc.local
- /usr/local/etc/rc.d
- /usr/local/etc/rc.local
- /etc/conf.d/local.start
- /etc/init.d
- /etc/inittab'
- + STRINGS_INTEGRITY='/usr/sbin/ntpsx
- /usr/sbin/.../bkit-ava
- /usr/sbin/.../bkit-d
- /usr/sbin/.../bkit-shd
- /usr/sbin/.../bkit-f
- /usr/include/.../proc.h
- /usr/include/.../.bash_history
- /usr/include/.../bkit-get
- /usr/include/.../bkit-dl
- /usr/include/.../bkit-screen
- /usr/include/.../bkit-sleep
- /usr/lib/.../bkit-adore.o
- /usr/lib/.../ls
- /usr/lib/.../netstat
- /usr/lib/.../lsof
- /usr/lib/.../bkit-ssh/bkit-shdcfg
- /usr/lib/.../bkit-ssh/bkit-shhk
- /usr/lib/.../bkit-ssh/bkit-pw
- /usr/lib/.../bkit-ssh/bkit-shrs
- /usr/lib/.../bkit-ssh/bkit-mots
- /usr/lib/.../uconf.inv
- /usr/lib/.../psr
- /usr/lib/.../find
- /usr/lib/.../pstree
- /usr/lib/.../slocate
- /usr/lib/.../du
- /usr/lib/.../top /usr/sbin/...
- /usr/include/...
- /usr/include/.../.tmp
- /usr/lib/...
- /usr/lib/.../.ssh
- /usr/lib/.../bkit-ssh
- /usr/lib/.bkit-
- /tmp/.bkp /tmp/.cinik
- /tmp/.font-unix/.cinik /lib/.sso
- /lib/.so
- /var/run/...dica/clean
- /var/run/...dica/dxr
- /var/run/...dica/read
- /var/run/...dica/write
- /var/run/...dica/lf
- /var/run/...dica/xl
- /var/run/...dica/xdr
- /var/run/...dica/psg
- /var/run/...dica/secure
- /var/run/...dica/rdx
- /var/run/...dica/va
- /var/run/...dica/cl.sh
- /var/run/...dica/last.log
- /usr/bin/.etc
- /etc/sshd_config
- /etc/ssh_host_key
- /etc/ssh_random_seed /dev/ptyp
- /dev/ptyq
- /dev/ptyr
- /dev/ptys
- /dev/ptyt
- /dev/fd/.88/freshb-bsd
- /dev/fd/.88/fresht
- /dev/fd/.88/zxsniff
- /dev/fd/.88/zxsniff.log
- /dev/fd/.99/.ttyf00
- /dev/fd/.99/.ttyp00
- /dev/fd/.99/.ttyq00
- /dev/fd/.99/.ttys00
- /dev/fd/.99/.pwsx00
- /etc/.acid
- /usr/lib/.fx/sched_host.2
- /usr/lib/.fx/random_d.2
- /usr/lib/.fx/set_pid.2
- /usr/lib/.fx/setrgrp.2
- /usr/lib/.fx/TOHIDE
- /usr/lib/.fx/cons.saver
- /usr/lib/.fx/adore/ava/ava
- /usr/lib/.fx/adore/adore/adore.ko
- /bin/sysback
- /usr/local/bin/sysback
- /usr/lib/.tbd /dev/.lib/lib/lib/t0rns
- /dev/.lib/lib/lib/du
- /dev/.lib/lib/lib/ls
- /dev/.lib/lib/lib/t0rnsb
- /dev/.lib/lib/lib/ps
- /dev/.lib/lib/lib/t0rnp
- /dev/.lib/lib/lib/find
- /dev/.lib/lib/lib/ifconfig
- /dev/.lib/lib/lib/pg
- /dev/.lib/lib/lib/ssh.tgz
- /dev/.lib/lib/lib/top
- /dev/.lib/lib/lib/sz
- /dev/.lib/lib/lib/login
- /dev/.lib/lib/lib/in.fingerd
- /dev/.lib/lib/lib/1i0n.sh
- /dev/.lib/lib/lib/pstree
- /dev/.lib/lib/lib/in.telnetd
- /dev/.lib/lib/lib/mjy
- /dev/.lib/lib/lib/sush
- /dev/.lib/lib/lib/tfn
- /dev/.lib/lib/lib/name
- /dev/.lib/lib/lib/getip.sh
- /usr/info/.torn/sh*
- /usr/src/.puta/.1addr
- /usr/src/.puta/.1file
- /usr/src/.puta/.1proc
- /usr/src/.puta/.1logz
- /usr/info/.t0rn /dev/.lib
- /dev/.lib/lib
- /dev/.lib/lib/lib
- /dev/.lib/lib/lib/dev
- /dev/.lib/lib/scan
- /usr/src/.puta
- /usr/man/man1/man1
- /usr/man/man1/man1/lib
- /usr/man/man1/man1/lib/.lib
- /usr/man/man1/man1/lib/.lib/.backup'
- + SNIFFER_FILES='/usr/lib/libice.log
- /dev/prom/sn.l
- /dev/fd/.88/zxsniff.log'
- + LKM_BADNAMES='adore.o
- bkit-adore.o
- cleaner.o
- flkm.o
- knark.o
- modhide.o
- mod_klgr.o
- phide_mod.o
- vlogger.o
- p2.ko
- rpldev.o
- xC.o
- strings.o
- wkmr26.ko'
- + return
- + SOL_PROC=0
- + SOLARISX=''
- + [ 0 -eq 1 ]
- + BEGINTIME=0
- + ENDTIME=0
- + [ -n '' ]
- + [ 1 -eq 1 ]
- + date +%s
- + BEGINTIME=1443954112
- + [ -n '' ]
- + do_system_commands_checks
- + check_test system_commands
- + echo ' filesystem local_host '
- + grep ' system_commands '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- +
- + display --to LOG --type INFO --nl USER_DISABLED_TEST system_commands
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO --nl USER_DISABLED_TEST system_commands'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + NL=1
- + shift
- + [ 2 -ge 1 ]
- + MSG=USER_DISABLED_TEST
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n USER_DISABLED_TEST ]
- + grep -a ^USER_DISABLED_TEST: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Test '\''$1'\'' disabled at users request.'
- + [ 0 -eq 1 ]
- + [ -z 'Test '\''$1'\'' disabled at users request.' ]
- + echo 'Test '\''$1'\'' disabled at users request.'
- + sed -e 's/`/\\`/g'
- + LINE1='Test '\''$1'\'' disabled at users request.'
- + test -n 'Test '\''$1'\'' disabled at users request.'
- + eval 'echo "Test '\''$1'\'' disabled at users request." | sed -e '\''s/;/\;/g'\'
- + echo 'Test '\''system_commands'\'' disabled at users request.'
- + sed -e 's/;/\;/g'
- + LINE1='Test '\''system_commands'\'' disabled at users request.'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:52]'
- + test 1 -gt 0 -o 0 -eq 1
- + echo '[04:21:52]'
- + [ -n Info ]
- + LOGLINE1='[04:21:52] Info: Test '\''system_commands'\'' disabled at users request.'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:52] Info: Test '\''system_commands'\'' disabled at users request.'
- + [ 0 -eq 1 ]
- + echo '[04:21:52] Info: Test '\''system_commands'\'' disabled at users request.'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + return
- + do_rootkit_checks
- + check_test rootkits
- + echo ' filesystem local_host '
- + grep ' rootkits '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- +
- + display --to LOG --type INFO --nl USER_DISABLED_TEST rootkits
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO --nl USER_DISABLED_TEST rootkits'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + NL=1
- + shift
- + [ 2 -ge 1 ]
- + MSG=USER_DISABLED_TEST
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n USER_DISABLED_TEST ]
- + grep -a ^USER_DISABLED_TEST: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Test '\''$1'\'' disabled at users request.'
- + [ 0 -eq 1 ]
- + [ -z 'Test '\''$1'\'' disabled at users request.' ]
- + echo 'Test '\''$1'\'' disabled at users request.'
- + sed -e 's/`/\\`/g'
- + LINE1='Test '\''$1'\'' disabled at users request.'
- + test -n 'Test '\''$1'\'' disabled at users request.'
- + eval 'echo "Test '\''$1'\'' disabled at users request." | sed -e '\''s/;/\;/g'\'
- + echo 'Test '\''rootkits'\'' disabled at users request.'
- + sed -e 's/;/\;/g'
- + LINE1='Test '\''rootkits'\'' disabled at users request.'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:53]'
- + test 1 -gt 0 -o 0 -eq 1
- + echo '[04:21:53]'
- + [ -n Info ]
- + LOGLINE1='[04:21:53] Info: Test '\''rootkits'\'' disabled at users request.'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:53] Info: Test '\''rootkits'\'' disabled at users request.'
- + [ 0 -eq 1 ]
- + echo '[04:21:53] Info: Test '\''rootkits'\'' disabled at users request.'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + return
- + do_network_checks
- + check_test network
- + echo ' filesystem local_host '
- + grep ' network '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- +
- + display --to LOG --type INFO --nl USER_DISABLED_TEST network
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO --nl USER_DISABLED_TEST network'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + NL=1
- + shift
- + [ 2 -ge 1 ]
- + MSG=USER_DISABLED_TEST
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n USER_DISABLED_TEST ]
- + grep -a ^USER_DISABLED_TEST: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Test '\''$1'\'' disabled at users request.'
- + [ 0 -eq 1 ]
- + [ -z 'Test '\''$1'\'' disabled at users request.' ]
- + echo 'Test '\''$1'\'' disabled at users request.'
- + sed -e 's/`/\\`/g'
- + LINE1='Test '\''$1'\'' disabled at users request.'
- + test -n 'Test '\''$1'\'' disabled at users request.'
- + eval 'echo "Test '\''$1'\'' disabled at users request." | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'Test '\''network'\'' disabled at users request.'
- + LINE1='Test '\''network'\'' disabled at users request.'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:53]'
- + test 1 -gt 0 -o 0 -eq 1
- + echo '[04:21:53]'
- + [ -n Info ]
- + LOGLINE1='[04:21:53] Info: Test '\''network'\'' disabled at users request.'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:53] Info: Test '\''network'\'' disabled at users request.'
- + [ 0 -eq 1 ]
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + echo '[04:21:53] Info: Test '\''network'\'' disabled at users request.'
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + return
- + do_local_host_checks
- + check_test local_host
- + grep ' local_host '
- + echo ' filesystem local_host '
- + [ 'filesystem local_host' = all -o -n ' filesystem local_host ' ]
- + echo ' deleted_files hidden_ports hidden_procs packet_cap_apps suspscan '
- + grep ' local_host '
- + [ 'deleted_files hidden_ports hidden_procs packet_cap_apps suspscan' = none -o -z '' ]
- + return 0
- +
- + display --to LOG --type INFO --screen-nl --nl STARTING_TEST local_host
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO --screen-nl --nl STARTING_TEST local_host'
- + [ 8 -le 0 ]
- + [ 8 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 6 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 4 -ge 1 ]
- + SCREENNL=1
- + shift
- + [ 3 -ge 1 ]
- + NL=1
- + shift
- + [ 2 -ge 1 ]
- + MSG=STARTING_TEST
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n STARTING_TEST ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^STARTING_TEST: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Starting test name '\''$1'\'
- + [ 0 -eq 1 ]
- + [ -z 'Starting test name '\''$1'\' ]
- + sed -e 's/`/\\`/g'
- + echo 'Starting test name '\''$1'\'
- + LINE1='Starting test name '\''$1'\'
- + test -n 'Starting test name '\''$1'\'
- + eval 'echo "Starting test name '\''$1'\''" | sed -e '\''s/;/\;/g'\'
- + echo 'Starting test name '\''local_host'\'
- + sed -e 's/;/\;/g'
- + LINE1='Starting test name '\''local_host'\'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:53]'
- + test 1 -gt 0 -o 0 -eq 1
- + echo '[04:21:53]'
- + [ -n Info ]
- + LOGLINE1='[04:21:53] Info: Starting test name '\''local_host'\'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 1 -eq 1 ]
- + test 0 -eq 0 -a 0 -eq 0 -a 0 -eq 0
- + echo ''
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:53] Info: Starting test name '\''local_host'\'
- + [ 0 -eq 1 ]
- + echo '[04:21:53] Info: Starting test name '\''local_host'\'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + display --to SCREEN+LOG --type PLAIN --color YELLOW CHECK_LOCALHOST
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --color YELLOW CHECK_LOCALHOST'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=SCREEN+LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + [ 1 -eq 1 ]
- + test -n YELLOW
- + eval 'echo ${YELLOW}'
- + echo '[1;33m'
- + COLOR='[1;33m'
- + [ -z '[1;33m' ]
- + shift
- + shift
- + [ 1 -ge 1 ]
- + MSG=CHECK_LOCALHOST
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
- + WRITETOTTY=1
- + test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 1 -eq 0 -a 1 -eq 0 ]
- + [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '[1;33m' ]
- + test -n ''
- + [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n CHECK_LOCALHOST ]
- + grep -a ^CHECK_LOCALHOST: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Checking the local host...'
- + [ 0 -eq 1 ]
- + [ -z 'Checking the local host...' ]
- + echo 'Checking the local host...'
- + sed -e 's/`/\\`/g'
- + LINE1='Checking the local host...'
- + test -n 'Checking the local host...'
- + eval 'echo "Checking the local host..." | sed -e '\''s/;/\;/g'\'
- + echo 'Checking the local host...'
- + sed -e 's/;/\;/g'
- + LINE1='Checking the local host...'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:53]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n '' ]
- + test 0 -gt 0
- + LOGLINE1='[04:21:53] Checking the local host...'
- + [ 1 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 1 -eq 1 -a -n '[1;33m' ]
- + LINE1='[1;33mChecking the local host...[0;39m'
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + NLLOOP=0
- + test 0 -gt 0
- + [ '' = c ]
- + echo -e '[1;33mChecking the local host...[0;39m'
- [1;33mChecking the local host...[0;39m
- + [ 1 -eq 1 ]
- + echo -e '[04:21:53] Checking the local host...'
- + [ 0 -eq 1 ]
- + echo '[04:21:53] Checking the local host...'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 1 -eq 1 -a 0 -eq 1
- + return
- + do_system_startup_file_checks
- + check_test startup_files
- + grep ' startup_files '
- + echo ' filesystem local_host '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- +
- + display --to LOG --type INFO --nl USER_DISABLED_TEST startup_files
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO --nl USER_DISABLED_TEST startup_files'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + NL=1
- + shift
- + [ 2 -ge 1 ]
- + MSG=USER_DISABLED_TEST
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n USER_DISABLED_TEST ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^USER_DISABLED_TEST: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Test '\''$1'\'' disabled at users request.'
- + [ 0 -eq 1 ]
- + [ -z 'Test '\''$1'\'' disabled at users request.' ]
- + sed -e 's/`/\\`/g'
- + echo 'Test '\''$1'\'' disabled at users request.'
- + LINE1='Test '\''$1'\'' disabled at users request.'
- + test -n 'Test '\''$1'\'' disabled at users request.'
- + eval 'echo "Test '\''$1'\'' disabled at users request." | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'Test '\''startup_files'\'' disabled at users request.'
- + LINE1='Test '\''startup_files'\'' disabled at users request.'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:54]'
- + test 1 -gt 0 -o 0 -eq 1
- + echo '[04:21:54]'
- + [ -n Info ]
- + LOGLINE1='[04:21:54] Info: Test '\''startup_files'\'' disabled at users request.'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:54] Info: Test '\''startup_files'\'' disabled at users request.'
- + [ 0 -eq 1 ]
- + echo '[04:21:54] Info: Test '\''startup_files'\'' disabled at users request.'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + return
- + do_group_accounts_check
- + check_test group_accounts
- + echo ' filesystem local_host '
- + grep ' group_accounts '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- +
- + display --to LOG --type INFO --nl USER_DISABLED_TEST group_accounts
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO --nl USER_DISABLED_TEST group_accounts'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + NL=1
- + shift
- + [ 2 -ge 1 ]
- + MSG=USER_DISABLED_TEST
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n USER_DISABLED_TEST ]
- + grep -a ^USER_DISABLED_TEST: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Test '\''$1'\'' disabled at users request.'
- + [ 0 -eq 1 ]
- + [ -z 'Test '\''$1'\'' disabled at users request.' ]
- + echo 'Test '\''$1'\'' disabled at users request.'
- + sed -e 's/`/\\`/g'
- + LINE1='Test '\''$1'\'' disabled at users request.'
- + test -n 'Test '\''$1'\'' disabled at users request.'
- + eval 'echo "Test '\''$1'\'' disabled at users request." | sed -e '\''s/;/\;/g'\'
- + echo 'Test '\''group_accounts'\'' disabled at users request.'
- + sed -e 's/;/\;/g'
- + LINE1='Test '\''group_accounts'\'' disabled at users request.'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:54]'
- + test 1 -gt 0 -o 0 -eq 1
- + echo '[04:21:54]'
- + [ -n Info ]
- + LOGLINE1='[04:21:54] Info: Test '\''group_accounts'\'' disabled at users request.'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:54] Info: Test '\''group_accounts'\'' disabled at users request.'
- + [ 0 -eq 1 ]
- + echo '[04:21:54] Info: Test '\''group_accounts'\'' disabled at users request.'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + return
- + do_system_config_files_check
- + check_test system_configs
- + echo ' filesystem local_host '
- + grep ' system_configs '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- +
- + display --to LOG --type INFO --nl USER_DISABLED_TEST system_configs
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO --nl USER_DISABLED_TEST system_configs'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + NL=1
- + shift
- + [ 2 -ge 1 ]
- + MSG=USER_DISABLED_TEST
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n USER_DISABLED_TEST ]
- + grep -a ^USER_DISABLED_TEST: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Test '\''$1'\'' disabled at users request.'
- + [ 0 -eq 1 ]
- + [ -z 'Test '\''$1'\'' disabled at users request.' ]
- + echo 'Test '\''$1'\'' disabled at users request.'
- + sed -e 's/`/\\`/g'
- + LINE1='Test '\''$1'\'' disabled at users request.'
- + test -n 'Test '\''$1'\'' disabled at users request.'
- + eval 'echo "Test '\''$1'\'' disabled at users request." | sed -e '\''s/;/\;/g'\'
- + echo 'Test '\''system_configs'\'' disabled at users request.'
- + sed -e 's/;/\;/g'
- + LINE1='Test '\''system_configs'\'' disabled at users request.'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:54]'
- + test 1 -gt 0 -o 0 -eq 1
- + echo '[04:21:54]'
- + [ -n Info ]
- + LOGLINE1='[04:21:54] Info: Test '\''system_configs'\'' disabled at users request.'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:54] Info: Test '\''system_configs'\'' disabled at users request.'
- + [ 0 -eq 1 ]
- + echo '[04:21:54] Info: Test '\''system_configs'\'' disabled at users request.'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + return
- + do_filesystem_check
- + check_test filesystem
- + echo ' filesystem local_host '
- + grep ' filesystem '
- + [ 'filesystem local_host' = all -o -n ' filesystem local_host ' ]
- + echo ' deleted_files hidden_ports hidden_procs packet_cap_apps suspscan '
- + grep ' filesystem '
- + [ 'deleted_files hidden_ports hidden_procs packet_cap_apps suspscan' = none -o -z '' ]
- + return 0
- +
- + display --to LOG --type INFO --screen-nl --nl STARTING_TEST filesystem
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO --screen-nl --nl STARTING_TEST filesystem'
- + [ 8 -le 0 ]
- + [ 8 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 6 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 4 -ge 1 ]
- + SCREENNL=1
- + shift
- + [ 3 -ge 1 ]
- + NL=1
- + shift
- + [ 2 -ge 1 ]
- + MSG=STARTING_TEST
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n STARTING_TEST ]
- + grep -a ^STARTING_TEST: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Starting test name '\''$1'\'
- + [ 0 -eq 1 ]
- + [ -z 'Starting test name '\''$1'\' ]
- + echo 'Starting test name '\''$1'\'
- + sed -e 's/`/\\`/g'
- + LINE1='Starting test name '\''$1'\'
- + test -n 'Starting test name '\''$1'\'
- + eval 'echo "Starting test name '\''$1'\''" | sed -e '\''s/;/\;/g'\'
- + echo 'Starting test name '\''filesystem'\'
- + sed -e 's/;/\;/g'
- + LINE1='Starting test name '\''filesystem'\'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:54]'
- + test 1 -gt 0 -o 0 -eq 1
- + echo '[04:21:54]'
- + [ -n Info ]
- + LOGLINE1='[04:21:54] Info: Starting test name '\''filesystem'\'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 1 -eq 1 ]
- + test 0 -eq 0 -a 0 -eq 0 -a 0 -eq 0
- + echo ''
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:54] Info: Starting test name '\''filesystem'\'
- + [ 0 -eq 1 ]
- + echo '[04:21:54] Info: Starting test name '\''filesystem'\'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + display --to SCREEN+LOG --type PLAIN --screen-indent 2 FILESYSTEM_START
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --screen-indent 2 FILESYSTEM_START'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=SCREEN+LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + SCREENINDENT=2
- + [ -z 2 ]
- + grep '^[0-9]*$'
- + echo 2
- + [ -z 2 ]
- + shift
- + shift
- + [ 1 -ge 1 ]
- + MSG=FILESYSTEM_START
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
- + WRITETOTTY=1
- + test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 1 -eq 0 -a 1 -eq 0 ]
- + [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FILESYSTEM_START ]
- + grep -a ^FILESYSTEM_START: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Performing filesystem checks'
- + [ 0 -eq 1 ]
- + [ -z 'Performing filesystem checks' ]
- + echo 'Performing filesystem checks'
- + sed -e 's/`/\\`/g'
- + LINE1='Performing filesystem checks'
- + test -n 'Performing filesystem checks'
- + eval 'echo "Performing filesystem checks" | sed -e '\''s/;/\;/g'\'
- + echo 'Performing filesystem checks'
- + sed -e 's/;/\;/g'
- + LINE1='Performing filesystem checks'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:55]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n '' ]
- + test 0 -gt 0
- + LOGLINE1='[04:21:55] Performing filesystem checks'
- + [ 1 -eq 1 -a 2 -gt 0 ]
- + echo ' '
- + cut -c1-2
- + SPACES=' '
- + LINE1=' Performing filesystem checks'
- + [ -n '' ]
- + [ 1 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + NLLOOP=0
- + test 0 -gt 0
- + [ '' = c ]
- + echo -e ' Performing filesystem checks'
- Performing filesystem checks
- + [ 1 -eq 1 ]
- + echo -e '[04:21:55] Performing filesystem checks'
- + [ 0 -eq 1 ]
- + echo '[04:21:55] Performing filesystem checks'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 1 -eq 1 -a 0 -eq 1
- + return
- + [ ! -d /dev ]
- + [ -z /usr/bin/file ]
- + [ THOROUGH = THOROUGH -a -z /usr/bin/find ]
- + display --to LOG --type INFO CONFIG_SCAN_MODE_DEV THOROUGH
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO CONFIG_SCAN_MODE_DEV THOROUGH'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=CONFIG_SCAN_MODE_DEV
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n CONFIG_SCAN_MODE_DEV ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^CONFIG_SCAN_MODE_DEV: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='SCAN_MODE_DEV set to '\''$1'\'
- + [ 0 -eq 1 ]
- + [ -z 'SCAN_MODE_DEV set to '\''$1'\' ]
- + sed -e 's/`/\\`/g'
- + echo 'SCAN_MODE_DEV set to '\''$1'\'
- + LINE1='SCAN_MODE_DEV set to '\''$1'\'
- + test -n 'SCAN_MODE_DEV set to '\''$1'\'
- + eval 'echo "SCAN_MODE_DEV set to '\''$1'\''" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'SCAN_MODE_DEV set to '\''THOROUGH'\'
- + LINE1='SCAN_MODE_DEV set to '\''THOROUGH'\'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:21:55]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Info ]
- + LOGLINE1='[04:21:55] Info: SCAN_MODE_DEV set to '\''THOROUGH'\'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:21:55] Info: SCAN_MODE_DEV set to '\''THOROUGH'\'
- + [ 0 -eq 1 ]
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + echo '[04:21:55] Info: SCAN_MODE_DEV set to '\''THOROUGH'\'
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + [ -n '' ]
- + FDESCFS=0
- + FOUNDFILES=''
- + [ 1 -eq 1 ]
- + find_cmd mount
- + CMD=mount
- + test -z mount
- + grep /
- + echo mount
- + [ -n '' ]
- + [ -f /sbin/mount -a -x /sbin/mount ]
- + echo /sbin/mount
- + return
- + RKHTMPVAR=/sbin/mount
- + [ -n /sbin/mount ]
- + /sbin/mount
- + egrep '^fdesc(fs)? .*type fdesc'
- + test -n ''
- + [ THOROUGH = LAZY ]
- + IFS='
- '
- + /usr/bin/find /dev ! -type d -a ! -type l
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/geom.ctl
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/geom.ctl
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/3)'
- + echo 'character special (0/3)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/3)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/console
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/console
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/4)'
- + echo 'character special (0/4)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/4)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/devctl
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file /dev/devctl
- + FTYPE='character special (0/5)'
- + echo 'character special (0/5)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/5)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/ctty
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file /dev/ctty
- + FTYPE='character special (0/6)'
- + echo 'character special (0/6)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/6)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/klog
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/klog
- + cut -c2-
- + awk -F: '{ print $NF }'
- + FTYPE='character special (0/7)'
- + grep 'universal binary'
- + echo 'character special (0/7)'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/7)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/fido
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/fido
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/8)'
- + grep 'universal binary'
- + echo 'character special (0/8)'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/8)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/null
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/null
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/9)'
- + echo 'character special (0/9)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/9)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/zero
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file /dev/zero
- + FTYPE='character special (0/10)'
- + echo 'character special (0/10)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/10)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/bpf
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file /dev/bpf
- + FTYPE='character special (0/11)'
- + echo 'character special (0/11)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/11)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/openfirm
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/openfirm
- + cut -c2-
- + awk -F: '{ print $NF }'
- + FTYPE='character special (0/13)'
- + echo 'character special (0/13)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/13)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/ptmx
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/ptmx
- + cut -c2-
- + awk -F: '{ print $NF }'
- + FTYPE='character special (0/14)'
- + grep 'universal binary'
- + echo 'character special (0/14)'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/14)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/nfslock
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/nfslock
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/15)'
- + grep 'universal binary'
- + echo 'character special (0/15)'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/15)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/random
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/random
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/16)'
- + echo 'character special (0/16)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/16)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/mem
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/mem
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/18)'
- + echo 'character special (0/18)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/18)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/kmem
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/kmem
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/19)'
- + grep 'universal binary'
- + echo 'character special (0/19)'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/19)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/snp
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/snp
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/20)'
- + echo 'character special (0/20)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/20)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/fd/0
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file /dev/fd/0
- + FTYPE='character special (0/21)'
- + echo 'character special (0/21)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/21)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/fd/1
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + cut -c2-
- + /usr/bin/file /dev/fd/1
- + awk -F: '{ print $NF }'
- + FTYPE='character special (0/23)'
- + echo 'character special (0/23)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/23)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/fd/2
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/fd/2
- + cut -c2-
- + awk -F: '{ print $NF }'
- + FTYPE='character special (0/25)'
- + grep 'universal binary'
- + echo 'character special (0/25)'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/25)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/gpioc0
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/gpioc0
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/27)'
- + echo 'character special (0/27)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/27)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/led/led1
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/led/led1
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/28)'
- + grep 'universal binary'
- + echo 'character special (0/28)'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/28)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/led/led2
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/led/led2
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/29)'
- + echo 'character special (0/29)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/29)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/led/led3
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file /dev/led/led3
- + FTYPE='character special (0/30)'
- + echo 'character special (0/30)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/30)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/led/led4
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file /dev/led/led4
- + FTYPE='character special (0/31)'
- + echo 'character special (0/31)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/31)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/ttyu0
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/ttyu0
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/32)'
- + grep 'universal binary'
- + echo 'character special (0/32)'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/32)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/ttyu0.init
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/ttyu0.init
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/33)'
- + grep 'universal binary'
- + echo 'character special (0/33)'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/33)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/ttyu0.lock
- + test -z ''
- + do_dev_whitelist_check
- + cut -c2-
- + /usr/bin/file /dev/ttyu0.lock
- + awk -F: '{ print $NF }'
- + FTYPE='character special (0/34)'
- + grep 'universal binary'
- + echo 'character special (0/34)'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/34)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/cuau0
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/cuau0
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/35)'
- + grep 'universal binary'
- + echo 'character special (0/35)'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/35)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/cuau0.init
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/cuau0.init
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/36)'
- + echo 'character special (0/36)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/36)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/cuau0.lock
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/cuau0.lock
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/37)'
- + echo 'character special (0/37)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/37)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/iic0
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file /dev/iic0
- + FTYPE='character special (0/38)'
- + echo 'character special (0/38)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/38)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/iic1
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/iic1
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/39)'
- + echo 'character special (0/39)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/39)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/iic2
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/iic2
- + cut -c2-
- + awk -F: '{ print $NF }'
- + FTYPE='character special (0/40)'
- + grep 'universal binary'
- + echo 'character special (0/40)'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/40)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/pruss0
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/pruss0
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/41)'
- + grep 'universal binary'
- + echo 'character special (0/41)'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/41)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/ufssuspend
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/ufssuspend
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/42)'
- + echo 'character special (0/42)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/42)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/usbctl
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + cut -c2-
- + /usr/bin/file /dev/usbctl
- + awk -F: '{ print $NF }'
- + FTYPE='character special (0/45)'
- + echo 'character special (0/45)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/45)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/xpt0
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file /dev/xpt0
- + FTYPE='character special (0/46)'
- + echo 'character special (0/46)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/46)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/usb/0.1.0
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file /dev/usb/0.1.0
- + FTYPE='character special (0/47)'
- + echo 'character special (0/47)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/47)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/usb/1.1.0
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/usb/1.1.0
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/49)'
- + grep 'universal binary'
- + echo 'character special (0/49)'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/49)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/usb/0.1.1
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/usb/0.1.1
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/52)'
- + grep 'universal binary'
- + echo 'character special (0/52)'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/52)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/usb/1.1.1
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/usb/1.1.1
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/53)'
- + echo 'character special (0/53)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/53)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/mdctl
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file /dev/mdctl
- + FTYPE='character special (0/51)'
- + echo 'character special (0/51)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/51)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/devstat
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file /dev/devstat
- + FTYPE='character special (0/54)'
- + echo 'character special (0/54)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/54)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/mmcsd0
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/mmcsd0
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/55)'
- + grep 'universal binary'
- + echo 'character special (0/55)'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/55)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/diskid/DISK-34D2DDBF
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/diskid/DISK-34D2DDBF
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/67)'
- + grep 'universal binary'
- + echo 'character special (0/67)'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/67)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/diskid/DISK-34D2DDBFs1
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file /dev/diskid/DISK-34D2DDBFs1
- + FTYPE='character special (0/70)'
- + echo 'character special (0/70)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/70)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/diskid/DISK-34D2DDBFs2
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file /dev/diskid/DISK-34D2DDBFs2
- + FTYPE='character special (0/71)'
- + echo 'character special (0/71)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/71)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/mmcsd0s1
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/mmcsd0s1
- + cut -c2-
- + awk -F: '{ print $NF }'
- + FTYPE='character special (0/57)'
- + echo 'character special (0/57)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/57)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/mmcsd0s2
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/mmcsd0s2
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/58)'
- + grep 'universal binary'
- + echo 'character special (0/58)'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/58)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/msdosfs/MSDOSBOOT
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/msdosfs/MSDOSBOOT
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/61)'
- + echo 'character special (0/61)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/61)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/msdosfs/boot
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/msdosfs/boot
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/72)'
- + echo 'character special (0/72)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/72)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/mmcsd0s2a
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file /dev/mmcsd0s2a
- + FTYPE='character special (0/62)'
- + echo 'character special (0/62)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/62)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/ufs/rootfs
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + /usr/bin/file /dev/ufs/rootfs
- + cut -c2-
- + FTYPE='character special (0/65)'
- + echo 'character special (0/65)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/65)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/mmcsd1
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/mmcsd1
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/66)'
- + grep 'universal binary'
- + echo 'character special (0/66)'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/66)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/mmcsd1s1
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/mmcsd1s1
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/68)'
- + grep 'universal binary'
- + echo 'character special (0/68)'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/68)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/mmcsd1s2
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/mmcsd1s2
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/69)'
- + echo 'character special (0/69)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/69)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/ext2fs/rootfs
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file /dev/ext2fs/rootfs
- + FTYPE='character special (0/73)'
- + echo 'character special (0/73)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/73)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/md0
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file /dev/md0
- + FTYPE='character special (0/56)'
- + echo 'character special (0/56)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/56)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + echo /dev/md1
- + grep '/\.[^/]*$'
- + test -z ''
- + do_dev_whitelist_check
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file /dev/md1
- + FTYPE='character special (0/60)'
- + echo 'character special (0/60)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/60)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/md1.eli
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/md1.eli
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/63)'
- + grep 'universal binary'
- + echo 'character special (0/63)'
- + [ 0 -eq 1 -a -n '' ]
- + echo 'character special (0/63)'
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/fuse
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/fuse
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/64)'
- + grep 'universal binary'
- + echo 'character special (0/64)'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/64)'
- + [ -z '' ]
- + return
- + [ 0 -eq 1 ]
- + grep '/\.[^/]*$'
- + echo /dev/pts/0
- + test -z ''
- + do_dev_whitelist_check
- + /usr/bin/file /dev/pts/0
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='character special (0/79)'
- + echo 'character special (0/79)'
- + grep 'universal binary'
- + [ 0 -eq 1 -a -n '' ]
- + egrep -v '(character special|block special|socket|fifo \(named pipe\)|symbolic link to|empty|directory|/MAKEDEV:)'
- + echo 'character special (0/79)'
- + [ -z '' ]
- + return
- + IFS='
- '
- + echo ''
- + sed -e '/^$/d'
- + FOUNDFILES=''
- + [ -z '' ]
- + display --to SCREEN+LOG --type PLAIN --result NONE_FOUND --color GREEN --log-indent 2 --screen-indent 4 FILESYSTEM_DEV_CHECK
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --result NONE_FOUND --color GREEN --log-indent 2 --screen-indent 4 FILESYSTEM_DEV_CHECK'
- + [ 13 -le 0 ]
- + [ 13 -ge 1 ]
- + WRITETO=SCREEN+LOG
- + shift
- + shift
- + [ 11 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 9 -ge 1 ]
- + eval echo '$MSG_RESULT_NONE_FOUND'
- + echo None found
- + RESULT='None found'
- + [ -z 'None found' ]
- + shift
- + shift
- + [ 7 -ge 1 ]
- + [ 1 -eq 1 ]
- + test -n GREEN
- + eval 'echo ${GREEN}'
- + echo '[1;32m'
- + COLOR='[1;32m'
- + [ -z '[1;32m' ]
- + shift
- + shift
- + [ 5 -ge 1 ]
- + LOGINDENT=2
- + [ -z 2 ]
- + echo 2
- + grep '^[0-9]*$'
- + [ -z 2 ]
- + shift
- + shift
- + [ 3 -ge 1 ]
- + SCREENINDENT=4
- + [ -z 4 ]
- + echo 4
- + grep '^[0-9]*$'
- + [ -z 4 ]
- + shift
- + shift
- + [ 1 -ge 1 ]
- + MSG=FILESYSTEM_DEV_CHECK
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
- + WRITETOTTY=1
- + test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 1 -eq 0 -a 1 -eq 0 ]
- + [ 1 -eq 1 -a 1 -eq 1 -a -n 'None found' -a -z '[1;32m' ]
- + test -n ''
- + [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a 'None found' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FILESYSTEM_DEV_CHECK ]
- + grep -a ^FILESYSTEM_DEV_CHECK: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Checking /dev for suspicious file types'
- + [ 0 -eq 1 ]
- + [ -z 'Checking /dev for suspicious file types' ]
- + echo 'Checking /dev for suspicious file types'
- + sed -e 's/`/\\`/g'
- + LINE1='Checking /dev for suspicious file types'
- + test -n 'Checking /dev for suspicious file types'
- + eval 'echo "Checking /dev for suspicious file types" | sed -e '\''s/;/\;/g'\'
- + echo 'Checking /dev for suspicious file types'
- + sed -e 's/;/\;/g'
- + LINE1='Checking /dev for suspicious file types'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:06]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n '' ]
- + test 2 -gt 0
- + cut -c1-2
- + echo ' '
- + SPACES=' '
- + LOGLINE1='[04:22:06] Checking /dev for suspicious file types'
- + [ 1 -eq 1 -a 4 -gt 0 ]
- + cut -c1-4
- + echo ' '
- + SPACES=' '
- + LINE1=' Checking /dev for suspicious file types'
- + [ -n 'None found' ]
- + [ 1 -eq 1 ]
- + wc -c
- + tr -d ' '
- + echo ' Checking /dev for suspicious file types'
- + LINE1_NUM=44
- + expr 62 - 44
- + NUM_SPACES=18
- + test 18 -lt 1
- + [ 1 -eq 0 ]
- + LINE1=' Checking /dev for suspicious file types\033[18C[ [1;32mNone found[0;39m ]'
- + [ 1 -eq 1 ]
- + echo '[04:22:06] Checking /dev for suspicious file types'
- + wc -c
- + tr -d ' '
- + LOGLINE1_NUM=53
- + expr 62 - 53
- + NUM_SPACES=9
- + test 9 -lt 1
- + echo ' '
- + cut -c1-9
- + SPACES=' '
- + LOGLINE1='[04:22:06] Checking /dev for suspicious file types [ None found ]'
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + NLLOOP=0
- + test 0 -gt 0
- + [ '' = c ]
- + echo -e ' Checking /dev for suspicious file types\033[18C[ [1;32mNone found[0;39m ]'
- Checking /dev for suspicious file types[18C[ [1;32mNone found[0;39m ]
- + [ 1 -eq 1 ]
- + echo -e '[04:22:06] Checking /dev for suspicious file types [ None found ]'
- + [ 0 -eq 1 ]
- + echo '[04:22:06] Checking /dev for suspicious file types [ None found ]'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 1 -eq 1 -a 0 -eq 1
- + return
- + [ -z /usr/bin/file ]
- + FOUNDDIRS=''
- + FOUNDFILES=''
- + LOOKINDIRS=''
- + SHORTSEARCHDIRS='/usr /etc'
- + LONGSEARCHDIRS='/dev /bin /usr/man /usr/share/man /usr/bin /usr/sbin /sbin'
- + [ -z /usr/bin/find ]
- + [ -d /usr ]
- + egrep -v '/\.\.?$'
- + ls -1d /usr/. /usr/..
- + RKHTMPVAR='[1m[38;5;6m/usr/.[39;49m[m
- [1m[38;5;6m/usr/..[39;49m[m'
- + test -n '[1m[38;5;6m/usr/.[39;49m[m
- [1m[38;5;6m/usr/..[39;49m[m'
- + LOOKINDIRS='
- [1m[38;5;6m/usr/.[39;49m[m
- [1m[38;5;6m/usr/..[39;49m[m'
- + [ -d /etc ]
- + egrep -v '/\.\.?$'
- + ls -1d /etc/. /etc/..
- + RKHTMPVAR='[1m[38;5;6m/etc/.[39;49m[m
- [1m[38;5;6m/etc/..[39;49m[m'
- + test -n '[1m[38;5;6m/etc/.[39;49m[m
- [1m[38;5;6m/etc/..[39;49m[m'
- + LOOKINDIRS='
- [1m[38;5;6m/usr/.[39;49m[m
- [1m[38;5;6m/usr/..[39;49m[m
- [1m[38;5;6m/etc/.[39;49m[m
- [1m[38;5;6m/etc/..[39;49m[m'
- + [ -d /dev ]
- + /usr/bin/find /dev -name '.*'
- + RKHTMPVAR=''
- + test -n ''
- + [ -d /bin ]
- + /usr/bin/find /bin -name '.*'
- + RKHTMPVAR=''
- + test -n ''
- + [ -d /usr/man ]
- + [ -d /usr/share/man ]
- + /usr/bin/find /usr/share/man -name '.*'
- + RKHTMPVAR=''
- + test -n ''
- + [ -d /usr/bin ]
- + /usr/bin/find /usr/bin -name '.*'
- + RKHTMPVAR=''
- + test -n ''
- + [ -d /usr/sbin ]
- + /usr/bin/find /usr/sbin -name '.*'
- + RKHTMPVAR=''
- + test -n ''
- + [ -d /sbin ]
- + /usr/bin/find /sbin -name '.*'
- + RKHTMPVAR=''
- + test -n ''
- + [ -n '' ]
- + [ -n '' ]
- + IFS='
- '
- + [ 0 -eq 1 ]
- + /usr/bin/file '[1m[38;5;6m/usr/.[39;49m[m'
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
- + echo 'cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
- + egrep 'character special|block special|empty'
- + test -n ''
- + sed -e 's/\([.$*?\]\)/\\\1/g; s/\[/\\[/g; s/\]/\\]/g'
- + echo '[1m[38;5;6m/usr/.[39;49m[m'
- + FNAMEGREP='\[1m\[38;5;6m/usr/\.\[39;49m\[m'
- + grep directory
- + echo 'cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
- + [ -n 'cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)' ]
- + echo ''
- + grep '^\[1m\[38;5;6m/usr/\.\[39;49m\[m$'
- + [ -n '' ]
- + FOUNDDIRS='
- [1m[38;5;6m/usr/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 0 -eq 1 ]
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file '[1m[38;5;6m/usr/..[39;49m[m'
- + FTYPE='cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
- + echo 'cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
- + egrep 'character special|block special|empty'
- + test -n ''
- + sed -e 's/\([.$*?\]\)/\\\1/g; s/\[/\\[/g; s/\]/\\]/g'
- + echo '[1m[38;5;6m/usr/..[39;49m[m'
- + FNAMEGREP='\[1m\[38;5;6m/usr/\.\.\[39;49m\[m'
- + grep directory
- + echo 'cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
- + [ -n 'cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)' ]
- + echo ''
- + grep '^\[1m\[38;5;6m/usr/\.\.\[39;49m\[m$'
- + [ -n '' ]
- + FOUNDDIRS='
- [1m[38;5;6m/usr/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)
- [1m[38;5;6m/usr/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 0 -eq 1 ]
- + awk -F: '{ print $NF }'
- + cut -c2-
- + /usr/bin/file '[1m[38;5;6m/etc/.[39;49m[m'
- + FTYPE='cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
- + echo 'cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
- + egrep 'character special|block special|empty'
- + test -n ''
- + echo '[1m[38;5;6m/etc/.[39;49m[m'
- + sed -e 's/\([.$*?\]\)/\\\1/g; s/\[/\\[/g; s/\]/\\]/g'
- + FNAMEGREP='\[1m\[38;5;6m/etc/\.\[39;49m\[m'
- + echo 'cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
- + grep directory
- + [ -n 'cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)' ]
- + grep '^\[1m\[38;5;6m/etc/\.\[39;49m\[m$'
- + echo ''
- + [ -n '' ]
- + FOUNDDIRS='
- [1m[38;5;6m/usr/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)
- [1m[38;5;6m/usr/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)
- [1m[38;5;6m/etc/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 0 -eq 1 ]
- + /usr/bin/file '[1m[38;5;6m/etc/..[39;49m[m'
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
- + egrep 'character special|block special|empty'
- + echo 'cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
- + test -n ''
- + echo '[1m[38;5;6m/etc/..[39;49m[m'
- + sed -e 's/\([.$*?\]\)/\\\1/g; s/\[/\\[/g; s/\]/\\]/g'
- + FNAMEGREP='\[1m\[38;5;6m/etc/\.\.\[39;49m\[m'
- + echo 'cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
- + grep directory
- + [ -n 'cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)' ]
- + echo ''
- + grep '^\[1m\[38;5;6m/etc/\.\.\[39;49m\[m$'
- + [ -n '' ]
- + FOUNDDIRS='
- [1m[38;5;6m/usr/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)
- [1m[38;5;6m/usr/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)
- [1m[38;5;6m/etc/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)
- [1m[38;5;6m/etc/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
- + IFS='
- '
- + sed -e '/^$/d'
- + echo '
- [1m[38;5;6m/usr/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)
- [1m[38;5;6m/usr/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)
- [1m[38;5;6m/etc/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)
- [1m[38;5;6m/etc/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
- + FOUNDDIRS='[1m[38;5;6m/usr/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)
- [1m[38;5;6m/usr/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)
- [1m[38;5;6m/etc/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)
- [1m[38;5;6m/etc/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
- + echo ''
- + sed -e '/^$/d'
- + FOUNDFILES=''
- + [ -z '[1m[38;5;6m/usr/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)
- [1m[38;5;6m/usr/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)
- [1m[38;5;6m/etc/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)
- [1m[38;5;6m/etc/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)' -a -z '' ]
- + display --to SCREEN+LOG --type PLAIN --result WARNING --color RED --log-indent 2 --screen-indent 4 FILESYSTEM_HIDDEN_CHECK
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --result WARNING --color RED --log-indent 2 --screen-indent 4 FILESYSTEM_HIDDEN_CHECK'
- + [ 13 -le 0 ]
- + [ 13 -ge 1 ]
- + WRITETO=SCREEN+LOG
- + shift
- + shift
- + [ 11 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 9 -ge 1 ]
- + eval echo '$MSG_RESULT_WARNING'
- + echo Warning
- + RESULT=Warning
- + [ -z Warning ]
- + shift
- + shift
- + [ 7 -ge 1 ]
- + [ 1 -eq 1 ]
- + test -n RED
- + eval 'echo ${RED}'
- + echo '[1;31m'
- + COLOR='[1;31m'
- + [ -z '[1;31m' ]
- + shift
- + shift
- + [ 5 -ge 1 ]
- + LOGINDENT=2
- + [ -z 2 ]
- + grep '^[0-9]*$'
- + echo 2
- + [ -z 2 ]
- + shift
- + shift
- + [ 3 -ge 1 ]
- + SCREENINDENT=4
- + [ -z 4 ]
- + echo 4
- + grep '^[0-9]*$'
- + [ -z 4 ]
- + shift
- + shift
- + [ 1 -ge 1 ]
- + MSG=FILESYSTEM_HIDDEN_CHECK
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
- + WRITETOTTY=1
- + test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 1 -eq 0 -a 1 -eq 0 ]
- + [ 1 -eq 1 -a 1 -eq 1 -a -n Warning -a -z '[1;31m' ]
- + test -n ''
- + [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a Warning = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FILESYSTEM_HIDDEN_CHECK ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^FILESYSTEM_HIDDEN_CHECK: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Checking for hidden files and directories'
- + [ 0 -eq 1 ]
- + [ -z 'Checking for hidden files and directories' ]
- + sed -e 's/`/\\`/g'
- + echo 'Checking for hidden files and directories'
- + LINE1='Checking for hidden files and directories'
- + test -n 'Checking for hidden files and directories'
- + eval 'echo "Checking for hidden files and directories" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'Checking for hidden files and directories'
- + LINE1='Checking for hidden files and directories'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:08]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n '' ]
- + test 2 -gt 0
- + echo ' '
- + cut -c1-2
- + SPACES=' '
- + LOGLINE1='[04:22:08] Checking for hidden files and directories'
- + [ 1 -eq 1 -a 4 -gt 0 ]
- + echo ' '
- + cut -c1-4
- + SPACES=' '
- + LINE1=' Checking for hidden files and directories'
- + [ -n Warning ]
- + [ 1 -eq 1 ]
- + wc -c
- + tr -d ' '
- + echo ' Checking for hidden files and directories'
- + LINE1_NUM=46
- + expr 62 - 46
- + NUM_SPACES=16
- + test 16 -lt 1
- + [ 1 -eq 0 ]
- + LINE1=' Checking for hidden files and directories\033[16C[ [1;31mWarning[0;39m ]'
- + [ 1 -eq 1 ]
- + wc -c
- + tr -d ' '
- + echo '[04:22:08] Checking for hidden files and directories'
- + LOGLINE1_NUM=55
- + expr 62 - 55
- + NUM_SPACES=7
- + test 7 -lt 1
- + cut -c1-7
- + echo ' '
- + SPACES=' '
- + LOGLINE1='[04:22:08] Checking for hidden files and directories [ Warning ]'
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + NLLOOP=0
- + test 0 -gt 0
- + [ '' = c ]
- + echo -e ' Checking for hidden files and directories\033[16C[ [1;31mWarning[0;39m ]'
- Checking for hidden files and directories[16C[ [1;31mWarning[0;39m ]
- + [ 1 -eq 1 ]
- + echo -e '[04:22:08] Checking for hidden files and directories [ Warning ]'
- + [ 0 -eq 1 ]
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + echo '[04:22:08] Checking for hidden files and directories [ Warning ]'
- + [ 0 -eq 1 -a -n '' ]
- + test 1 -eq 1 -a 0 -eq 1
- + return
- + IFS='
- '
- + awk -F: '{ print $NF }'
- + cut -c2-
- + echo '[1m[38;5;6m/usr/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
- + FTYPE='cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
- + echo '[1m[38;5;6m/usr/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
- + sed -e 's/: [^:]*$//'
- + FNAME='[1m[38;5;6m/usr/.[39;49m[m'
- + [ 'cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)' = directory ]
- + name2text '[1m[38;5;6m/usr/.[39;49m[m'
- + echo -e '[1m[38;5;6m/usr/.[39;49m[m'
- + sed -e 's/ /<SP>/g; s/ /<TAB>/g'
- + tr -d '\n'
- + tr '[:cntrl:]' '?'
- + return
- + display --to LOG --type WARNING FILESYSTEM_HIDDEN_DIR_FOUND '?[1m?[38;5;6m/usr/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to
- LOG
- --type
- WARNING
- FILESYSTEM_HIDDEN_DIR_FOUND
- ?[1m?[38;5;6m/usr/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_WARNING'
- + echo Warning
- + TYPE=Warning
- + [ -z Warning -a WARNING != PLAIN ]
- + test WARNING = WARNING
- + WARN_MSG=1
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=FILESYSTEM_HIDDEN_DIR_FOUND
- + shift
- + break
- + test 1 -eq 1
- + expr 0 + 1
- + WARNING_COUNT=1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Warning
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FILESYSTEM_HIDDEN_DIR_FOUND ]
- + grep -a ^FILESYSTEM_HIDDEN_DIR_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head '-n 1'
- + LINE1='Hidden directory found: $1'
- + [ 0 -eq 1 ]
- + [ -z 'Hidden directory found: $1' ]
- + echo 'Hidden directory found: $1'
- + sed -e 's/`/\\`/g'
- + LINE1='Hidden directory found: $1'
- + test -n 'Hidden directory found: $1'
- + eval 'echo "Hidden directory found: $1" | sed -e '\''s/;/\;/g'\'
- + echo 'Hidden directory found: ?[1m?[38;5;6m/usr/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
- + sed -e 's/;/\;/g'
- + LINE1='Hidden directory found: ?[1m?[38;5;6m/usr/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:08]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Warning ]
- + LOGLINE1='[04:22:08] Warning: Hidden directory found: ?[1m?[38;5;6m/usr/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:22:08] Warning: Hidden directory found: ?[1m?[38;5;6m/usr/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/.\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 1 -eq 1 ]
- + test 0 -eq 1
- + LINE1=1
- + OLDIFS='
- '
- + IFS='
- '
- + grep -a ^FILESYSTEM_HIDDEN_DIR_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + [ 1 -eq 1 ]
- + LINE1=0
- + continue
- + IFS='
- '
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + echo '[1m[38;5;6m/usr/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
- + sed -e 's/: [^:]*$//'
- + echo '[1m[38;5;6m/usr/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
- + FNAME='[1m[38;5;6m/usr/..[39;49m[m'
- + [ 'cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)' = directory ]
- + name2text '[1m[38;5;6m/usr/..[39;49m[m'
- + sed -e 's/ /<SP>/g; s/ /<TAB>/g'
- + tr -d '\n'
- + tr '[:cntrl:]' '?'
- + echo -e '[1m[38;5;6m/usr/..[39;49m[m'
- + return
- + display --to LOG --type WARNING FILESYSTEM_HIDDEN_DIR_FOUND '?[1m?[38;5;6m/usr/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to
- LOG
- --type
- WARNING
- FILESYSTEM_HIDDEN_DIR_FOUND
- ?[1m?[38;5;6m/usr/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_WARNING'
- + echo Warning
- + TYPE=Warning
- + [ -z Warning -a WARNING != PLAIN ]
- + test WARNING = WARNING
- + WARN_MSG=1
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=FILESYSTEM_HIDDEN_DIR_FOUND
- + shift
- + break
- + test 1 -eq 1
- + expr 1 + 1
- + WARNING_COUNT=2
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Warning
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FILESYSTEM_HIDDEN_DIR_FOUND ]
- + grep -a ^FILESYSTEM_HIDDEN_DIR_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
- + head '-n 1'
- + cut -d: -f2-
- + LINE1='Hidden directory found: $1'
- + [ 0 -eq 1 ]
- + [ -z 'Hidden directory found: $1' ]
- + echo 'Hidden directory found: $1'
- + sed -e 's/`/\\`/g'
- + LINE1='Hidden directory found: $1'
- + test -n 'Hidden directory found: $1'
- + eval 'echo "Hidden directory found: $1" | sed -e '\''s/;/\;/g'\'
- + echo 'Hidden directory found: ?[1m?[38;5;6m/usr/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
- + sed -e 's/;/\;/g'
- + LINE1='Hidden directory found: ?[1m?[38;5;6m/usr/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:09]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Warning ]
- + LOGLINE1='[04:22:09] Warning: Hidden directory found: ?[1m?[38;5;6m/usr/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:22:09] Warning: Hidden directory found: ?[1m?[38;5;6m/usr/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/usr/..\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 1 -eq 1 ]
- + test 0 -eq 1
- + LINE1=1
- + OLDIFS='
- '
- + IFS='
- '
- + grep -a ^FILESYSTEM_HIDDEN_DIR_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + [ 1 -eq 1 ]
- + LINE1=0
- + continue
- + IFS='
- '
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + awk -F: '{ print $NF }'
- + cut -c2-
- + echo '[1m[38;5;6m/etc/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
- + FTYPE='cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
- + echo '[1m[38;5;6m/etc/.[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
- + sed -e 's/: [^:]*$//'
- + FNAME='[1m[38;5;6m/etc/.[39;49m[m'
- + [ 'cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)' = directory ]
- + name2text '[1m[38;5;6m/etc/.[39;49m[m'
- + sed -e 's/ /<SP>/g; s/ /<TAB>/g'
- + tr -d '\n'
- + echo -e '[1m[38;5;6m/etc/.[39;49m[m'
- + tr '[:cntrl:]' '?'
- + return
- + display --to LOG --type WARNING FILESYSTEM_HIDDEN_DIR_FOUND '?[1m?[38;5;6m/etc/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to
- LOG
- --type
- WARNING
- FILESYSTEM_HIDDEN_DIR_FOUND
- ?[1m?[38;5;6m/etc/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_WARNING'
- + echo Warning
- + TYPE=Warning
- + [ -z Warning -a WARNING != PLAIN ]
- + test WARNING = WARNING
- + WARN_MSG=1
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=FILESYSTEM_HIDDEN_DIR_FOUND
- + shift
- + break
- + test 1 -eq 1
- + expr 2 + 1
- + WARNING_COUNT=3
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Warning
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FILESYSTEM_HIDDEN_DIR_FOUND ]
- + head '-n 1'
- + cut -d: -f2-
- + grep -a ^FILESYSTEM_HIDDEN_DIR_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='Hidden directory found: $1'
- + [ 0 -eq 1 ]
- + [ -z 'Hidden directory found: $1' ]
- + sed -e 's/`/\\`/g'
- + echo 'Hidden directory found: $1'
- + LINE1='Hidden directory found: $1'
- + test -n 'Hidden directory found: $1'
- + eval 'echo "Hidden directory found: $1" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'Hidden directory found: ?[1m?[38;5;6m/etc/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
- + LINE1='Hidden directory found: ?[1m?[38;5;6m/etc/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:09]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Warning ]
- + LOGLINE1='[04:22:09] Warning: Hidden directory found: ?[1m?[38;5;6m/etc/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:22:09] Warning: Hidden directory found: ?[1m?[38;5;6m/etc/.?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/.\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 1 -eq 1 ]
- + test 0 -eq 1
- + LINE1=1
- + OLDIFS='
- '
- + IFS='
- '
- + cut -d: -f2-
- + grep -a ^FILESYSTEM_HIDDEN_DIR_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
- + [ 1 -eq 1 ]
- + LINE1=0
- + continue
- + IFS='
- '
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + echo '[1m[38;5;6m/etc/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
- + awk -F: '{ print $NF }'
- + cut -c2-
- + FTYPE='cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
- + sed -e 's/: [^:]*$//'
- + echo '[1m[38;5;6m/etc/..[39;49m[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
- + FNAME='[1m[38;5;6m/etc/..[39;49m[m'
- + [ 'cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)' = directory ]
- + name2text '[1m[38;5;6m/etc/..[39;49m[m'
- + echo -e '[1m[38;5;6m/etc/..[39;49m[m'
- + sed -e 's/ /<SP>/g; s/ /<TAB>/g'
- + tr -d '\n'
- + tr '[:cntrl:]' '?'
- + return
- + display --to LOG --type WARNING FILESYSTEM_HIDDEN_DIR_FOUND '?[1m?[38;5;6m/etc/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to
- LOG
- --type
- WARNING
- FILESYSTEM_HIDDEN_DIR_FOUND
- ?[1m?[38;5;6m/etc/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_WARNING'
- + echo Warning
- + TYPE=Warning
- + [ -z Warning -a WARNING != PLAIN ]
- + test WARNING = WARNING
- + WARN_MSG=1
- + shift
- + shift
- + [ 2 -ge 1 ]
- + MSG=FILESYSTEM_HIDDEN_DIR_FOUND
- + shift
- + break
- + test 1 -eq 1
- + expr 3 + 1
- + WARNING_COUNT=4
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Warning
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FILESYSTEM_HIDDEN_DIR_FOUND ]
- + grep -a ^FILESYSTEM_HIDDEN_DIR_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head '-n 1'
- + LINE1='Hidden directory found: $1'
- + [ 0 -eq 1 ]
- + [ -z 'Hidden directory found: $1' ]
- + echo 'Hidden directory found: $1'
- + sed -e 's/`/\\`/g'
- + LINE1='Hidden directory found: $1'
- + test -n 'Hidden directory found: $1'
- + eval 'echo "Hidden directory found: $1" | sed -e '\''s/;/\;/g'\'
- + echo 'Hidden directory found: ?[1m?[38;5;6m/etc/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
- + sed -e 's/;/\;/g'
- + LINE1='Hidden directory found: ?[1m?[38;5;6m/etc/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:10]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n Warning ]
- + LOGLINE1='[04:22:10] Warning: Hidden directory found: ?[1m?[38;5;6m/etc/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:22:10] Warning: Hidden directory found: ?[1m?[38;5;6m/etc/..?[39;49m?[m: cannot open `\033[1m\033[38;5;6m/etc/..\033[39;49m\033[m'\'' (No such file or directory)'
- + [ 1 -eq 1 ]
- + test 0 -eq 1
- + LINE1=1
- + OLDIFS='
- '
- + IFS='
- '
- + grep -a ^FILESYSTEM_HIDDEN_DIR_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + [ 1 -eq 1 ]
- + LINE1=0
- + continue
- + IFS='
- '
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + IFS='
- '
- + FOUNDFILES=''
- + [ -n '' ]
- + display --to LOG --type PLAIN --result SKIPPED --log-indent 2 FILESYSTEM_LOGFILE_MISSING
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type PLAIN --result SKIPPED --log-indent 2 FILESYSTEM_LOGFILE_MISSING'
- + [ 9 -le 0 ]
- + [ 9 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 7 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_RESULT_SKIPPED'
- + echo Skipped
- + RESULT=Skipped
- + [ -z Skipped ]
- + shift
- + shift
- + [ 3 -ge 1 ]
- + LOGINDENT=2
- + [ -z 2 ]
- + grep '^[0-9]*$'
- + echo 2
- + [ -z 2 ]
- + shift
- + shift
- + [ 1 -ge 1 ]
- + MSG=FILESYSTEM_LOGFILE_MISSING
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n Skipped -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a Skipped = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FILESYSTEM_LOGFILE_MISSING ]
- + grep -a ^FILESYSTEM_LOGFILE_MISSING: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Checking for missing log files'
- + [ 0 -eq 1 ]
- + [ -z 'Checking for missing log files' ]
- + echo 'Checking for missing log files'
- + sed -e 's/`/\\`/g'
- + LINE1='Checking for missing log files'
- + test -n 'Checking for missing log files'
- + eval 'echo "Checking for missing log files" | sed -e '\''s/;/\;/g'\'
- + echo 'Checking for missing log files'
- + sed -e 's/;/\;/g'
- + LINE1='Checking for missing log files'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:10]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n '' ]
- + test 2 -gt 0
- + echo ' '
- + cut -c1-2
- + SPACES=' '
- + LOGLINE1='[04:22:10] Checking for missing log files'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n Skipped ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo '[04:22:10] Checking for missing log files'
- + tr -d ' '
- + wc -c
- + LOGLINE1_NUM=44
- + expr 62 - 44
- + NUM_SPACES=18
- + test 18 -lt 1
- + echo ' '
- + cut -c1-18
- + SPACES=' '
- + LOGLINE1='[04:22:10] Checking for missing log files [ Skipped ]'
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:22:10] Checking for missing log files [ Skipped ]'
- + [ 0 -eq 1 ]
- + echo '[04:22:10] Checking for missing log files [ Skipped ]'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + [ -n '' ]
- + display --to LOG --type PLAIN --result SKIPPED --log-indent 2 FILESYSTEM_LOGFILE_EMPTY
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type PLAIN --result SKIPPED --log-indent 2 FILESYSTEM_LOGFILE_EMPTY'
- + [ 9 -le 0 ]
- + [ 9 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 7 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_RESULT_SKIPPED'
- + echo Skipped
- + RESULT=Skipped
- + [ -z Skipped ]
- + shift
- + shift
- + [ 3 -ge 1 ]
- + LOGINDENT=2
- + [ -z 2 ]
- + grep '^[0-9]*$'
- + echo 2
- + [ -z 2 ]
- + shift
- + shift
- + [ 1 -ge 1 ]
- + MSG=FILESYSTEM_LOGFILE_EMPTY
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n Skipped -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a Skipped = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n FILESYSTEM_LOGFILE_EMPTY ]
- + grep -a ^FILESYSTEM_LOGFILE_EMPTY: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Checking for empty log files'
- + [ 0 -eq 1 ]
- + [ -z 'Checking for empty log files' ]
- + echo 'Checking for empty log files'
- + sed -e 's/`/\\`/g'
- + LINE1='Checking for empty log files'
- + test -n 'Checking for empty log files'
- + eval 'echo "Checking for empty log files" | sed -e '\''s/;/\;/g'\'
- + echo 'Checking for empty log files'
- + sed -e 's/;/\;/g'
- + LINE1='Checking for empty log files'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:10]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n '' ]
- + test 2 -gt 0
- + echo ' '
- + cut -c1-2
- + SPACES=' '
- + LOGLINE1='[04:22:10] Checking for empty log files'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n Skipped ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo '[04:22:10] Checking for empty log files'
- + tr -d ' '
- + wc -c
- + LOGLINE1_NUM=42
- + expr 62 - 42
- + NUM_SPACES=20
- + test 20 -lt 1
- + echo ' '
- + cut -c1-20
- + SPACES=' '
- + LOGLINE1='[04:22:10] Checking for empty log files [ Skipped ]'
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:22:10] Checking for empty log files [ Skipped ]'
- + [ 0 -eq 1 ]
- + echo '[04:22:10] Checking for empty log files [ Skipped ]'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + return
- + keypresspause
- + [ 1 -eq 0 -a 0 -eq 0 ]
- + return
- + return
- + do_app_checks
- + check_test apps
- + echo ' filesystem local_host '
- + grep ' apps '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- +
- + display --to LOG --type INFO --nl USER_DISABLED_TEST apps
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO --nl USER_DISABLED_TEST apps'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + NL=1
- + shift
- + [ 2 -ge 1 ]
- + MSG=USER_DISABLED_TEST
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n USER_DISABLED_TEST ]
- + grep -a ^USER_DISABLED_TEST: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Test '\''$1'\'' disabled at users request.'
- + [ 0 -eq 1 ]
- + [ -z 'Test '\''$1'\'' disabled at users request.' ]
- + echo 'Test '\''$1'\'' disabled at users request.'
- + sed -e 's/`/\\`/g'
- + LINE1='Test '\''$1'\'' disabled at users request.'
- + test -n 'Test '\''$1'\'' disabled at users request.'
- + eval 'echo "Test '\''$1'\'' disabled at users request." | sed -e '\''s/;/\;/g'\'
- + echo 'Test '\''apps'\'' disabled at users request.'
- + sed -e 's/;/\;/g'
- + LINE1='Test '\''apps'\'' disabled at users request.'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:11]'
- + test 1 -gt 0 -o 0 -eq 1
- + echo '[04:22:11]'
- + [ -n Info ]
- + LOGLINE1='[04:22:11] Info: Test '\''apps'\'' disabled at users request.'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:22:11] Info: Test '\''apps'\'' disabled at users request.'
- + [ 0 -eq 1 ]
- + echo '[04:22:11] Info: Test '\''apps'\'' disabled at users request.'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + return
- + [ 1443954112 -ne 0 ]
- + [ -n '' ]
- + [ 1 -eq 1 ]
- + date +%s
- + ENDTIME=1443954131
- + expr 1443954131 - 1443954112
- + TOTAL_SCANTIME=19
- + expr 19 / 60
- + TOTALMINS=0
- + expr 19 % 60
- + TOTALSECS=19
- + [ 0 -gt 0 ]
- + TOTAL_SCANTIME=''
- + [ 19 -eq 1 ]
- + TOTAL_SCANTIME='19 seconds'
- + RKH_WARN_DISPLYD=0
- + [ 1 -eq 1 ]
- + OLD_NOTTY=0
- + test 0 -eq 1
- + display_check_summary
- + [ 0 -eq 0 -o '(' 0 -eq 1 -a 4 -gt 0 ')' ]
- + RKHTMPVAR=2
- + display --to SCREEN+LOG --type PLAIN --nl 2 SUMMARY_TITLE1
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --nl 2 SUMMARY_TITLE1'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=SCREEN+LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + NL=1
- + NL=2
- + shift
- + shift
- + [ 1 -ge 1 ]
- + MSG=SUMMARY_TITLE1
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
- + WRITETOTTY=1
- + test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 1 -eq 0 -a 1 -eq 0 ]
- + [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n SUMMARY_TITLE1 ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^SUMMARY_TITLE1: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='System checks summary'
- + [ 0 -eq 1 ]
- + [ -z 'System checks summary' ]
- + echo 'System checks summary'
- + sed -e 's/`/\\`/g'
- + LINE1='System checks summary'
- + test -n 'System checks summary'
- + eval 'echo "System checks summary" | sed -e '\''s/;/\;/g'\'
- + echo 'System checks summary'
- + sed -e 's/;/\;/g'
- + LINE1='System checks summary'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:11]'
- + test 2 -gt 0 -o 0 -eq 1
- + echo '[04:22:11]'
- + [ -n '' ]
- + test 0 -gt 0
- + LOGLINE1='[04:22:11] System checks summary'
- + [ 1 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 1 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + NLLOOP=2
- + test 2 -gt 0
- + echo ''
- + expr 2 - 1
- + NLLOOP=1
- + test 1 -gt 0
- + echo ''
- + expr 1 - 1
- + NLLOOP=0
- + test 0 -gt 0
- + [ '' = c ]
- + echo -e 'System checks summary'
- System checks summary
- + [ 1 -eq 1 ]
- + echo -e '[04:22:11] System checks summary'
- + [ 0 -eq 1 ]
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + echo '[04:22:11] System checks summary'
- + [ 0 -eq 1 -a -n '' ]
- + test 1 -eq 1 -a 0 -eq 1
- + return
- + display --to SCREEN+LOG --type PLAIN SUMMARY_TITLE2
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN SUMMARY_TITLE2'
- + [ 5 -le 0 ]
- + [ 5 -ge 1 ]
- + WRITETO=SCREEN+LOG
- + shift
- + shift
- + [ 3 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 1 -ge 1 ]
- + MSG=SUMMARY_TITLE2
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
- + WRITETOTTY=1
- + test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 1 -eq 0 -a 1 -eq 0 ]
- + [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n SUMMARY_TITLE2 ]
- + grep -a ^SUMMARY_TITLE2: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1======================
- + [ 0 -eq 1 ]
- + [ -z ===================== ]
- + echo =====================
- + sed -e 's/`/\\`/g'
- + LINE1======================
- + test -n =====================
- + eval 'echo "=====================" | sed -e '\''s/;/\;/g'\'
- + echo =====================
- + sed -e 's/;/\;/g'
- + LINE1======================
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:11]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n '' ]
- + test 0 -gt 0
- + LOGLINE1='[04:22:11] ====================='
- + [ 1 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 1 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + NLLOOP=0
- + test 0 -gt 0
- + [ '' = c ]
- + echo -e =====================
- =====================
- + [ 1 -eq 1 ]
- + echo -e '[04:22:11] ====================='
- + [ 0 -eq 1 ]
- + echo '[04:22:11] ====================='
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 1 -eq 1 -a 0 -eq 1
- + return
- + display --to SCREEN+LOG --type PLAIN --nl SUMMARY_PROP_SCAN
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --nl SUMMARY_PROP_SCAN'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=SCREEN+LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + NL=1
- + shift
- + [ 1 -ge 1 ]
- + MSG=SUMMARY_PROP_SCAN
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
- + WRITETOTTY=1
- + test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 1 -eq 0 -a 1 -eq 0 ]
- + [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n SUMMARY_PROP_SCAN ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^SUMMARY_PROP_SCAN: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='File properties checks...'
- + [ 0 -eq 1 ]
- + [ -z 'File properties checks...' ]
- + sed -e 's/`/\\`/g'
- + echo 'File properties checks...'
- + LINE1='File properties checks...'
- + test -n 'File properties checks...'
- + eval 'echo "File properties checks..." | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'File properties checks...'
- + LINE1='File properties checks...'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:11]'
- + test 1 -gt 0 -o 0 -eq 1
- + echo '[04:22:11]'
- + [ -n '' ]
- + test 0 -gt 0
- + LOGLINE1='[04:22:11] File properties checks...'
- + [ 1 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 1 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + NLLOOP=1
- + test 1 -gt 0
- + echo ''
- + expr 1 - 1
- + NLLOOP=0
- + test 0 -gt 0
- + [ '' = c ]
- + echo -e 'File properties checks...'
- File properties checks...
- + [ 1 -eq 1 ]
- + echo -e '[04:22:11] File properties checks...'
- + [ 0 -eq 1 ]
- + echo '[04:22:11] File properties checks...'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 1 -eq 1 -a 0 -eq 1
- + return
- + check_test properties
- + echo ' filesystem local_host '
- + grep ' properties '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- +
- + display --to SCREEN+LOG --type PLAIN --screen-indent 4 SUMMARY_CHKS_SKIPPED
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --screen-indent 4 SUMMARY_CHKS_SKIPPED'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=SCREEN+LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + SCREENINDENT=4
- + [ -z 4 ]
- + echo 4
- + grep '^[0-9]*$'
- + [ -z 4 ]
- + shift
- + shift
- + [ 1 -ge 1 ]
- + MSG=SUMMARY_CHKS_SKIPPED
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
- + WRITETOTTY=1
- + test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 1 -eq 0 -a 1 -eq 0 ]
- + [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n SUMMARY_CHKS_SKIPPED ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^SUMMARY_CHKS_SKIPPED: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='All checks skipped'
- + [ 0 -eq 1 ]
- + [ -z 'All checks skipped' ]
- + echo 'All checks skipped'
- + sed -e 's/`/\\`/g'
- + LINE1='All checks skipped'
- + test -n 'All checks skipped'
- + eval 'echo "All checks skipped" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'All checks skipped'
- + LINE1='All checks skipped'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:11]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n '' ]
- + test 0 -gt 0
- + LOGLINE1='[04:22:11] All checks skipped'
- + [ 1 -eq 1 -a 4 -gt 0 ]
- + echo ' '
- + cut -c1-4
- + SPACES=' '
- + LINE1=' All checks skipped'
- + [ -n '' ]
- + [ 1 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + NLLOOP=0
- + test 0 -gt 0
- + [ '' = c ]
- + echo -e ' All checks skipped'
- All checks skipped
- + [ 1 -eq 1 ]
- + echo -e '[04:22:11] All checks skipped'
- + [ 0 -eq 1 ]
- + echo '[04:22:11] All checks skipped'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 1 -eq 1 -a 0 -eq 1
- + return
- + display --to SCREEN+LOG --type PLAIN --nl SUMMARY_RKT_SCAN
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --nl SUMMARY_RKT_SCAN'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=SCREEN+LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + NL=1
- + shift
- + [ 1 -ge 1 ]
- + MSG=SUMMARY_RKT_SCAN
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
- + WRITETOTTY=1
- + test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 1 -eq 0 -a 1 -eq 0 ]
- + [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n SUMMARY_RKT_SCAN ]
- + grep -a ^SUMMARY_RKT_SCAN: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Rootkit checks...'
- + [ 0 -eq 1 ]
- + [ -z 'Rootkit checks...' ]
- + echo 'Rootkit checks...'
- + sed -e 's/`/\\`/g'
- + LINE1='Rootkit checks...'
- + test -n 'Rootkit checks...'
- + eval 'echo "Rootkit checks..." | sed -e '\''s/;/\;/g'\'
- + echo 'Rootkit checks...'
- + sed -e 's/;/\;/g'
- + LINE1='Rootkit checks...'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:12]'
- + test 1 -gt 0 -o 0 -eq 1
- + echo '[04:22:12]'
- + [ -n '' ]
- + test 0 -gt 0
- + LOGLINE1='[04:22:12] Rootkit checks...'
- + [ 1 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 1 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + NLLOOP=1
- + test 1 -gt 0
- + echo ''
- + expr 1 - 1
- + NLLOOP=0
- + test 0 -gt 0
- + [ '' = c ]
- + echo -e 'Rootkit checks...'
- Rootkit checks...
- + [ 1 -eq 1 ]
- + echo -e '[04:22:12] Rootkit checks...'
- + [ 0 -eq 1 ]
- + echo '[04:22:12] Rootkit checks...'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 1 -eq 1 -a 0 -eq 1
- + return
- + check_test rootkits
- + echo ' filesystem local_host '
- + grep ' rootkits '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- + check_test startup_malware
- + echo ' filesystem local_host '
- + grep ' startup_malware '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- +
- + test 0 -gt 0
- + display --to SCREEN+LOG --type PLAIN --screen-indent 4 SUMMARY_CHKS_SKIPPED
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --screen-indent 4 SUMMARY_CHKS_SKIPPED'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=SCREEN+LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + SCREENINDENT=4
- + [ -z 4 ]
- + echo 4
- + grep '^[0-9]*$'
- + [ -z 4 ]
- + shift
- + shift
- + [ 1 -ge 1 ]
- + MSG=SUMMARY_CHKS_SKIPPED
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
- + WRITETOTTY=1
- + test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 1 -eq 0 -a 1 -eq 0 ]
- + [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n SUMMARY_CHKS_SKIPPED ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^SUMMARY_CHKS_SKIPPED: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='All checks skipped'
- + [ 0 -eq 1 ]
- + [ -z 'All checks skipped' ]
- + sed -e 's/`/\\`/g'
- + echo 'All checks skipped'
- + LINE1='All checks skipped'
- + test -n 'All checks skipped'
- + eval 'echo "All checks skipped" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'All checks skipped'
- + LINE1='All checks skipped'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:12]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n '' ]
- + test 0 -gt 0
- + LOGLINE1='[04:22:12] All checks skipped'
- + [ 1 -eq 1 -a 4 -gt 0 ]
- + echo ' '
- + cut -c1-4
- + SPACES=' '
- + LINE1=' All checks skipped'
- + [ -n '' ]
- + [ 1 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + NLLOOP=0
- + test 0 -gt 0
- + [ '' = c ]
- + echo -e ' All checks skipped'
- All checks skipped
- + [ 1 -eq 1 ]
- + echo -e '[04:22:12] All checks skipped'
- + [ 0 -eq 1 ]
- + echo '[04:22:12] All checks skipped'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 1 -eq 1 -a 0 -eq 1
- + return
- + display --to SCREEN+LOG --type PLAIN --nl SUMMARY_APPS_SCAN
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --nl SUMMARY_APPS_SCAN'
- + [ 6 -le 0 ]
- + [ 6 -ge 1 ]
- + WRITETO=SCREEN+LOG
- + shift
- + shift
- + [ 4 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 2 -ge 1 ]
- + NL=1
- + shift
- + [ 1 -ge 1 ]
- + MSG=SUMMARY_APPS_SCAN
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
- + WRITETOTTY=1
- + test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 1 -eq 0 -a 1 -eq 0 ]
- + [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n SUMMARY_APPS_SCAN ]
- + grep -a ^SUMMARY_APPS_SCAN: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='Applications checks...'
- + [ 0 -eq 1 ]
- + [ -z 'Applications checks...' ]
- + echo 'Applications checks...'
- + sed -e 's/`/\\`/g'
- + LINE1='Applications checks...'
- + test -n 'Applications checks...'
- + eval 'echo "Applications checks..." | sed -e '\''s/;/\;/g'\'
- + echo 'Applications checks...'
- + sed -e 's/;/\;/g'
- + LINE1='Applications checks...'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:12]'
- + test 1 -gt 0 -o 0 -eq 1
- + echo '[04:22:12]'
- + [ -n '' ]
- + test 0 -gt 0
- + LOGLINE1='[04:22:12] Applications checks...'
- + [ 1 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 1 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + NLLOOP=1
- + test 1 -gt 0
- + echo ''
- + expr 1 - 1
- + NLLOOP=0
- + test 0 -gt 0
- + [ '' = c ]
- + echo -e 'Applications checks...'
- Applications checks...
- + [ 1 -eq 1 ]
- + echo -e '[04:22:12] Applications checks...'
- + [ 0 -eq 1 ]
- + echo '[04:22:12] Applications checks...'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 1 -eq 1 -a 0 -eq 1
- + return
- + check_test apps
- + echo ' filesystem local_host '
- + grep ' apps '
- + [ 'filesystem local_host' = all -o -n '' ]
- + return 1
- +
- + display --to SCREEN+LOG --type PLAIN --screen-indent 4 SUMMARY_CHKS_SKIPPED
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --screen-indent 4 SUMMARY_CHKS_SKIPPED'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=SCREEN+LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + SCREENINDENT=4
- + [ -z 4 ]
- + grep '^[0-9]*$'
- + echo 4
- + [ -z 4 ]
- + shift
- + shift
- + [ 1 -ge 1 ]
- + MSG=SUMMARY_CHKS_SKIPPED
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
- + WRITETOTTY=1
- + test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 1 -eq 0 -a 1 -eq 0 ]
- + [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n SUMMARY_CHKS_SKIPPED ]
- + grep -a ^SUMMARY_CHKS_SKIPPED: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='All checks skipped'
- + [ 0 -eq 1 ]
- + [ -z 'All checks skipped' ]
- + echo 'All checks skipped'
- + sed -e 's/`/\\`/g'
- + LINE1='All checks skipped'
- + test -n 'All checks skipped'
- + eval 'echo "All checks skipped" | sed -e '\''s/;/\;/g'\'
- + echo 'All checks skipped'
- + sed -e 's/;/\;/g'
- + LINE1='All checks skipped'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:12]'
- + test 0 -gt 0 -o 0 -eq 1
- + [ -n '' ]
- + test 0 -gt 0
- + LOGLINE1='[04:22:12] All checks skipped'
- + [ 1 -eq 1 -a 4 -gt 0 ]
- + cut -c1-4
- + echo ' '
- + SPACES=' '
- + LINE1=' All checks skipped'
- + [ -n '' ]
- + [ 1 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + NLLOOP=0
- + test 0 -gt 0
- + [ '' = c ]
- + echo -e ' All checks skipped'
- All checks skipped
- + [ 1 -eq 1 ]
- + echo -e '[04:22:12] All checks skipped'
- + [ 0 -eq 1 ]
- + echo '[04:22:12] All checks skipped'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 1 -eq 1 -a 0 -eq 1
- + return
- + [ 3 -gt 0 ]
- + [ 3 -eq 1 ]
- + [ 3 -eq 2 ]
- + RKHTMPVAR=SCREEN+LOG
- + [ 1443954112 -eq 0 ]
- + display --to SCREEN+LOG --type PLAIN --nl SUMMARY_SCAN_TIME '19 seconds'
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to SCREEN+LOG --type PLAIN --nl SUMMARY_SCAN_TIME 19 seconds'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=SCREEN+LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + NL=1
- + shift
- + [ 2 -ge 1 ]
- + MSG=SUMMARY_SCAN_TIME
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test SCREEN+LOG = SCREEN -o SCREEN+LOG = SCREEN+LOG
- + WRITETOTTY=1
- + test SCREEN+LOG = LOG -o SCREEN+LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 1 -eq 0 -a 1 -eq 0 ]
- + [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n SUMMARY_SCAN_TIME ]
- + grep -a ^SUMMARY_SCAN_TIME: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='The system checks took: $1'
- + [ 0 -eq 1 ]
- + [ -z 'The system checks took: $1' ]
- + echo 'The system checks took: $1'
- + sed -e 's/`/\\`/g'
- + LINE1='The system checks took: $1'
- + test -n 'The system checks took: $1'
- + eval 'echo "The system checks took: $1" | sed -e '\''s/;/\;/g'\'
- + echo 'The system checks took: 19 seconds'
- + sed -e 's/;/\;/g'
- + LINE1='The system checks took: 19 seconds'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:13]'
- + test 1 -gt 0 -o 0 -eq 1
- + echo '[04:22:13]'
- + [ -n '' ]
- + test 0 -gt 0
- + LOGLINE1='[04:22:13] The system checks took: 19 seconds'
- + [ 1 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 1 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + NLLOOP=1
- + test 1 -gt 0
- + echo ''
- + expr 1 - 1
- + NLLOOP=0
- + test 0 -gt 0
- + [ '' = c ]
- + echo -e 'The system checks took: 19 seconds'
- The system checks took: 19 seconds
- + [ 1 -eq 1 ]
- + echo -e '[04:22:13] The system checks took: 19 seconds'
- + [ 0 -eq 1 ]
- + echo '[04:22:13] The system checks took: 19 seconds'
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + [ 0 -eq 1 -a -n '' ]
- + test 1 -eq 1 -a 0 -eq 1
- + return
- + [ 0 -eq 0 ]
- + display --to SCREEN --type PLAIN --nl --nl-after SUMMARY_LOGFILE /var/log/rkhunter.log
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to SCREEN --type PLAIN --nl --nl-after SUMMARY_LOGFILE /var/log/rkhunter.log'
- + [ 8 -le 0 ]
- + [ 8 -ge 1 ]
- + WRITETO=SCREEN
- + shift
- + shift
- + [ 6 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 4 -ge 1 ]
- + NL=1
- + shift
- + [ 3 -ge 1 ]
- + NLAFTER=1
- + shift
- + [ 2 -ge 1 ]
- + MSG=SUMMARY_LOGFILE
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test SCREEN = SCREEN -o SCREEN = SCREEN+LOG
- + WRITETOTTY=1
- + test SCREEN = LOG -o SCREEN = SCREEN+LOG
- + WRITETOLOG=0
- + [ 1 -eq 0 -a 0 -eq 0 ]
- + [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n SUMMARY_LOGFILE ]
- + grep -a ^SUMMARY_LOGFILE: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='All results have been written to the log file: $1'
- + [ 0 -eq 1 ]
- + [ -z 'All results have been written to the log file: $1' ]
- + echo 'All results have been written to the log file: $1'
- + sed -e 's/`/\\`/g'
- + LINE1='All results have been written to the log file: $1'
- + test -n 'All results have been written to the log file: $1'
- + eval 'echo "All results have been written to the log file: $1" | sed -e '\''s/;/\;/g'\'
- + echo 'All results have been written to the log file: /var/log/rkhunter.log'
- + sed -e 's/;/\;/g'
- + LINE1='All results have been written to the log file: /var/log/rkhunter.log'
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 1 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + NLLOOP=1
- + test 1 -gt 0
- + echo ''
- + expr 1 - 1
- + NLLOOP=0
- + test 0 -gt 0
- + [ '' = c ]
- + echo -e 'All results have been written to the log file: /var/log/rkhunter.log'
- All results have been written to the log file: /var/log/rkhunter.log
- + [ 0 -eq 1 ]
- + test 1 -eq 1 -a 1 -eq 1
- + echo ''
- + return
- + return
- + [ 0 -eq 0 ]
- + [ 4 -eq 0 ]
- + RKH_WARN_DISPLYD=1
- + display --to SCREEN --type PLAIN CHECK_WARNINGS_FOUND
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to SCREEN --type PLAIN CHECK_WARNINGS_FOUND'
- + [ 5 -le 0 ]
- + [ 5 -ge 1 ]
- + WRITETO=SCREEN
- + shift
- + shift
- + [ 3 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 1 -ge 1 ]
- + MSG=CHECK_WARNINGS_FOUND
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test SCREEN = SCREEN -o SCREEN = SCREEN+LOG
- + WRITETOTTY=1
- + test SCREEN = LOG -o SCREEN = SCREEN+LOG
- + WRITETOLOG=0
- + [ 1 -eq 0 -a 0 -eq 0 ]
- + [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n CHECK_WARNINGS_FOUND ]
- + head -n 1
- + cut -d: -f2-
- + grep -a ^CHECK_WARNINGS_FOUND: /usr/local/var/lib/rkhunter/db/i18n/en
- + LINE1='One or more warnings have been found while checking the system.'
- + [ 0 -eq 1 ]
- + [ -z 'One or more warnings have been found while checking the system.' ]
- + sed -e 's/`/\\`/g'
- + echo 'One or more warnings have been found while checking the system.'
- + LINE1='One or more warnings have been found while checking the system.'
- + test -n 'One or more warnings have been found while checking the system.'
- + eval 'echo "One or more warnings have been found while checking the system." | sed -e '\''s/;/\;/g'\'
- + echo 'One or more warnings have been found while checking the system.'
- + sed -e 's/;/\;/g'
- + LINE1='One or more warnings have been found while checking the system.'
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 1 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + NLLOOP=0
- + test 0 -gt 0
- + [ '' = c ]
- + echo -e 'One or more warnings have been found while checking the system.'
- One or more warnings have been found while checking the system.
- + [ 0 -eq 1 ]
- + test 1 -eq 1 -a 0 -eq 1
- + return
- + [ 4 -gt 0 ]
- + [ 0 -eq 1 ]
- + display --to SCREEN --type PLAIN --nl-after CHECK_WARNINGS_FOUND_CHK_LOG /var/log/rkhunter.log
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to SCREEN --type PLAIN --nl-after CHECK_WARNINGS_FOUND_CHK_LOG /var/log/rkhunter.log'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=SCREEN
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_PLAIN'
- + echo
- + TYPE=''
- + [ -z '' -a PLAIN != PLAIN ]
- + test PLAIN = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + NLAFTER=1
- + shift
- + [ 2 -ge 1 ]
- + MSG=CHECK_WARNINGS_FOUND_CHK_LOG
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test SCREEN = SCREEN -o SCREEN = SCREEN+LOG
- + WRITETOTTY=1
- + test SCREEN = LOG -o SCREEN = SCREEN+LOG
- + WRITETOLOG=0
- + [ 1 -eq 0 -a 0 -eq 0 ]
- + [ 1 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n ''
- + [ 0 -eq 1 -a 1 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n CHECK_WARNINGS_FOUND_CHK_LOG ]
- + grep -a ^CHECK_WARNINGS_FOUND_CHK_LOG: /usr/local/var/lib/rkhunter/db/i18n/en
- + cut -d: -f2-
- + head -n 1
- + LINE1='Please check the log file ($1)'
- + [ 0 -eq 1 ]
- + [ -z 'Please check the log file ($1)' ]
- + echo 'Please check the log file ($1)'
- + sed -e 's/`/\\`/g'
- + LINE1='Please check the log file ($1)'
- + test -n 'Please check the log file ($1)'
- + eval 'echo "Please check the log file ($1)" | sed -e '\''s/;/\;/g'\'
- + echo 'Please check the log file (/var/log/rkhunter.log)'
- + sed -e 's/;/\;/g'
- + LINE1='Please check the log file (/var/log/rkhunter.log)'
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 1 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + NLLOOP=0
- + test 0 -gt 0
- + [ '' = c ]
- + echo -e 'Please check the log file (/var/log/rkhunter.log)'
- Please check the log file (/var/log/rkhunter.log)
- + [ 0 -eq 1 ]
- + test 1 -eq 1 -a 1 -eq 1
- + echo ''
- + return
- + NOTTY=0
- + [ -n '' ]
- + [ 4 -gt 0 ]
- + [ 0 -eq 1 -a 1 -eq 0 ]
- + [ -n '' ]
- + [ -n '' ]
- + RET_CODE=1
- + return
- + COPIEDLOG=''
- + [ 1 -gt 0 -o 4 -gt 0 ]
- + [ 0 -eq 1 -a 0 -eq 0 ]
- + date
- + display --to LOG --type INFO --nl RKH_ENDDATE 'Sun Oct 4 04:22:13 MDT 2015'
- + WARN_MSG=0
- + NL=0
- + NLAFTER=0
- + LOGINDENT=0
- + SCREENINDENT=0
- + LOGNL=0
- + SCREENNL=0
- + WRITETO=''
- + TYPE=''
- + RESULT=''
- + COLOR=''
- + MSG=''
- + LINE1=''
- + LOGLINE1=''
- + SPACES=''
- + NONL=''
- + DISPLAY_LINE='display --to LOG --type INFO --nl RKH_ENDDATE Sun Oct 4 04:22:13 MDT 2015'
- + [ 7 -le 0 ]
- + [ 7 -ge 1 ]
- + WRITETO=LOG
- + shift
- + shift
- + [ 5 -ge 1 ]
- + eval echo '$MSG_TYPE_INFO'
- + echo Info
- + TYPE=Info
- + [ -z Info -a INFO != PLAIN ]
- + test INFO = WARNING
- + shift
- + shift
- + [ 3 -ge 1 ]
- + NL=1
- + shift
- + [ 2 -ge 1 ]
- + MSG=RKH_ENDDATE
- + shift
- + break
- + test 0 -eq 1
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + test LOG = SCREEN -o LOG = SCREEN+LOG
- + WRITETOTTY=0
- + test LOG = LOG -o LOG = SCREEN+LOG
- + WRITETOLOG=1
- + [ 0 -eq 0 -a 1 -eq 0 ]
- + [ 0 -eq 1 -a 1 -eq 1 -a -n '' -a -z '' ]
- + test -n Info
- + NONL=''
- + [ 0 -eq 1 -a 0 -eq 1 -a 1 -eq 1 -a '' = Whitelisted ]
- + LANG_FILE=/usr/local/var/lib/rkhunter/db/i18n/en
- + [ -n RKH_ENDDATE ]
- + grep -a ^RKH_ENDDATE: /usr/local/var/lib/rkhunter/db/i18n/en
- + head -n 1
- + cut -d: -f2-
- + LINE1='End date is $1'
- + [ 0 -eq 1 ]
- + [ -z 'End date is $1' ]
- + sed -e 's/`/\\`/g'
- + echo 'End date is $1'
- + LINE1='End date is $1'
- + test -n 'End date is $1'
- + eval 'echo "End date is $1" | sed -e '\''s/;/\;/g'\'
- + sed -e 's/;/\;/g'
- + echo 'End date is Sun Oct 4 04:22:13 MDT 2015'
- + LINE1='End date is Sun Oct 4 04:22:13 MDT 2015'
- + [ 1 -eq 1 ]
- + date '+[%H:%M:%S]'
- + LOGLINE1='[04:22:13]'
- + test 1 -gt 0 -o 0 -eq 1
- + echo '[04:22:13]'
- + [ -n Info ]
- + LOGLINE1='[04:22:13] Info: End date is Sun Oct 4 04:22:13 MDT 2015'
- + [ 0 -eq 1 -a 0 -gt 0 ]
- + [ -n '' ]
- + [ 0 -eq 1 -a -n '' ]
- + [ 0 -eq 1 ]
- + [ 0 -eq 1 ]
- + [ 1 -eq 1 ]
- + echo -e '[04:22:13] Info: End date is Sun Oct 4 04:22:13 MDT 2015'
- + [ 0 -eq 1 ]
- + grep '^\[[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\] '
- + echo '[04:22:13] Info: End date is Sun Oct 4 04:22:13 MDT 2015'
- + [ 0 -eq 1 -a -n '' ]
- + test 0 -eq 1 -a 0 -eq 1
- + return
- + test -n ''
- + test 0 -eq 1
- + IFS='
- '
- + exit 1
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement