(f31, gnome; just patched)
Before doing an rkhunter scan, I do an rkhunter database update. Today, that's not working: ----- bash.6[~]: rkhunter --update [ Rootkit Hunter version 1.4.6 ]
Checking rkhunter data files... Checking file mirrors.dat [ Update failed ] Checking file programs_bad.dat [ Update failed ] Checking file backdoorports.dat [ Update failed ] Checking file suspscan.dat [ Update failed ] Checking file i18n versions [ Update failed ]
Please check the log file (/var/log/rkhunter/rkhunter.log)
bash.7[~]: ----- The relevant part of the logs is here: ----- [10:44:44] Warning: Download of 'mirrors.dat' failed: Unable to determine the latest version number. [10:44:44] Checking file mirrors.dat [ Update failed ] [10:44:44] Info: Executing download command '/usr/bin/wget -q -O "/var/lib/rkhunter/rkhunter.upd.rJwBkFr06W" http://rkhunter.sourceforge.net/1.4/programs_bad.dat 2>/dev/null' [10:44:45] Info: Download failed - 1 mirror(s) left. [10:44:45] Info: Created temporary file '/var/lib/rkhunter/mirrors.dat.sndtdOPXmE' [10:44:45] Info: The mirrors file has been rotated: /var/lib/rkhunter/db/mirrors.dat [10:44:45] Info: Executing download command '/usr/bin/wget -q -O "/var/lib/rkhunter/rkhunter.upd.rJwBkFr06W" http://rkhunter.sourceforge.net/1.4/programs_bad.dat 2>/dev/null' [10:44:45] Warning: Download of 'programs_bad.dat' failed: Unable to determine the latest version number. [10:44:45] Checking file programs_bad.dat [ Update failed ] [10:44:45] Info: Executing download command '/usr/bin/wget -q -O "/var/lib/rkhunter/rkhunter.upd.rJwBkFr06W" http://rkhunter.sourceforge.net/1.4/backdoorports.dat 2>/dev/null' [10:44:45] Info: Download failed - 1 mirror(s) left. [10:44:45] Info: Created temporary file '/var/lib/rkhunter/mirrors.dat.cPKocU0Wox' [10:44:45] Info: The mirrors file has been rotated: /var/lib/rkhunter/db/mirrors.dat [10:44:45] Info: Executing download command '/usr/bin/wget -q -O "/var/lib/rkhunter/rkhunter.upd.rJwBkFr06W" http://rkhunter.sourceforge.net/1.4/backdoorports.dat 2>/dev/null' [10:44:46] Warning: Download of 'backdoorports.dat' failed: Unable to determine the latest version number. [10:44:46] Checking file backdoorports.dat [ Update failed ] [10:44:46] Info: Executing download command '/usr/bin/wget -q -O "/var/lib/rkhunter/rkhunter.upd.rJwBkFr06W" http://rkhunter.sourceforge.net/1.4/suspscan.dat 2>/dev/null' [10:44:46] Info: Download failed - 1 mirror(s) left. [10:44:46] Info: Created temporary file '/var/lib/rkhunter/mirrors.dat.4cvVwEkfFa' [10:44:46] Info: The mirrors file has been rotated: /var/lib/rkhunter/db/mirrors.dat [10:44:46] Info: Executing download command '/usr/bin/wget -q -O "/var/lib/rkhunter/rkhunter.upd.rJwBkFr06W" http://rkhunter.sourceforge.net/1.4/suspscan.dat 2>/dev/null' [10:44:46] Warning: Download of 'suspscan.dat' failed: Unable to determine the latest version number. [10:44:46] Checking file suspscan.dat [ Update failed ] [10:44:46] Info: Executing download command '/usr/bin/wget -q -O "/var/lib/rkhunter/rkhunter.upd.rJwBkFr06W" http://rkhunter.sourceforge.net/1.4/i18n/1.4.6/i18n.ver 2>/dev/null' [10:44:47] Info: Download failed - 1 mirror(s) left. [10:44:47] Info: Created temporary file '/var/lib/rkhunter/mirrors.dat.5lRNNWqySI' [10:44:47] Info: The mirrors file has been rotated: /var/lib/rkhunter/db/mirrors.dat [10:44:47] Info: Executing download command '/usr/bin/wget -q -O "/var/lib/rkhunter/rkhunter.upd.rJwBkFr06W" http://rkhunter.sourceforge.net/1.4/i18n/1.4.6/i18n.ver 2>/dev/null' [10:44:47] Checking file i18n versions [ Update failed ] [10:44:47] Warning: Download of 'i18n.ver' failed: Unable to determine the latest version number. ----- Today is the first I've seen this happen. This happened both before and after doing today's "dnf upgrade". Trying "dnf upgrade rkhunter" does nothing.
Is the problem on my workstation or somewhere else? If it's on my workstation, how do I fix it?
thank-you in advance, Bill.
On Thu, 30 Jul 2020 16:55:53 -0000, home user wrote:
[10:44:44] Checking file mirrors.dat [ Update failed ] [10:44:44] Info: Executing download command '/usr/bin/wget -q -O "/var/lib/rkhunter/rkhunter.upd.rJwBkFr06W" http://rkhunter.sourceforge.net/1.4/programs_bad.dat 2>/dev/null' [10:44:45] Info: Download failed - 1 mirror(s) left.
Were you able to access those URLs manually with your favorite web browser or download tool like wget/curl?
On Thu, 30 Jul 2020 16:55:53 -0000, home user wrote:
Were you able to access those URLs manually with your favorite web browser or download tool like wget/curl?
Thank-you, Michael, for your reply.
It did not occur to me to try that yesterday. The logs gave no hint that a server was down, not responding, etc.. Rather, they seem to suggest a version number was missing, something I never had to provide before. That's why I checked to see if rkhunter (the software) was patched or updated. (I also had checked the rkhunter web site for indications of trouble.)
Today, I did try accessing those URLs via Firefox. It worked. So I retried the "rkhunter --update". It worked: ----- bash.3[~]: rkhunter --update [ Rootkit Hunter version 1.4.6 ]
Checking rkhunter data files... Checking file mirrors.dat [ No update ] Checking file programs_bad.dat [ No update ] Checking file backdoorports.dat [ No update ] Checking file suspscan.dat [ No update ] Checking file i18n/cn [ No update ] Checking file i18n/de [ No update ] Checking file i18n/en [ No update ] Checking file i18n/tr [ No update ] Checking file i18n/tr.utf8 [ No update ] Checking file i18n/zh [ No update ] Checking file i18n/zh.utf8 [ No update ] Checking file i18n/ja [ No update ] bash.4[~]: ----- Am I correct in concluding at least one server was not available?
Bill.
(on Friday, July 31 at 12:50pm mountain time, I wrote)
Am I correct in concluding at least one server was not available?
That question was referring to Thursday's "rkhunter --update" run, not Friday's.
Since Thursday's problem went away on its own, I'm tagging this CLOSED. I thank Michael for his help.
Bill.
-
home user -
Michael Schwendt