The Rootkit Hunter project

Rootkit Hunter announces final release 1.3.0

The Rootkit Hunter project is pleased to announce all the hard work and testing culminated in the final release of version 1.3.0

The changelog for this release is packed listing over 30 new features, 47 changes and 16 bugfixes. To name a few:

• New command-line option '--propupd' replaces 'hashupd.sh'.
• New command-line option '--pkgmgr' supporting RPM, Dpkg and BSD-style package managers.
• New command-line option '--hash' to select the hash function command for the file hash value check and the properties update.
• Added support for Ubuntu, and the 'dash' and 'ash' shells.
• Added basic internationalization (i18n) functionality.
• Added two new command-line and configuration file options, '--enable' and '--disable' to specify which tests are to be carried out and which are to be ignored.
• Added support for Solaris 10 inetd mechanism (inetadm).
• Application version numbers can now be whitelisted. This caters for those distributions that may patch a 'known bad' version, but without updating the original version number.
• Fixes since rkhunter-1.3.0-beta 2

There's much, much more. Please see the changelog for details on all the features, changes and bugfixes.

My sincere thanks to all who made and make this project and this release possible. While there are many known and unknown contributors, and all constructive support is viewed as equally important, I would like to thank John Horne by name. Without his efforts many improvements and features would not have been introduced *at all*.

If you decide to give RKH 1.3.0 a go please:

1. consult the off/online FAQ first and then
2. the rkhunter mailing list archives and Wiki.

If your problem is not handled in the FAQ or the rkhunter-users mailing list archives, please join (subscribe) the list and ask!

About the project 

Earlier in 2006 the Rootkit Hunter initiator and developer Michael Boelen agreed to hand over development. Since that time the team have been working hard to set up the project properly and work towards the much needed maintenance release.
* Unfortunately we do not have access to any hash updates, patches, comments or bugs sent to Michael. If you submitted anything I would like to ask you to please send it our way. Thanks in advance.
Oh, and by the way. Rootkit.nl is no longer accurate. Any repo or resource pointing to it should be updated RSN.

If you would like to:
• ask questions about usage or scan results: please see above and then join the rkhunter-users mailinglist.
• be notified about upcoming releases: please join the rkhunter-announce mailinglist.
• report downstream (maintainer) changes, supply a patch or release hashes or report a bug: please use our SF tracker (preferred) or the rkhunter-users mailinglist.