On Oct 15, 2004 at 13:43, François Patte in a soothing rage wrote: > >Bonjour, > >who has experienced rkhunter? I have just installed it and tried and everything >seems ok on my machine, expect these warning messages: > >* Application version scan > - GnuPG 1.2.3 [ Vulnerable ] > - Apache 2.0.47 [ Vulnerable ] > - OpenSSL 0.9.7a [ Vulnerable ] > - PHP 4.3.3 [ Vulnerable ] > - OpenSSH 3.6.1p2 [ Vulnerable ] > >I'm running fc1 and tried to update these soft but yum answer is that everything >in installed in the latest version... > >Are fedoralegacy mirrors not up to date or rkhunter is wrong? > >There is one mistake in the above list: Apache is not installed. But is httpd installed? Cause that is Apache. Just because rkhunter says something is vulnerable does not necessarily mean that the FC rpm is. You need to look at the changelog for each rpm to find out whether it contains patches for posted vulnerabilities. N.Emile... -- Registered Linux User # 125653 (http://counter.li.org) Switch to: http://www.speakeasy.net/refer/190653 Brandy-and-water spoils two good things. -- Charles Lamb 07:50:47 up 109 days, 1:05, 5 users, load average: 0.00, 0.00, 0.00
