Results 1 to 3 of 3

Thread: Possible false positive; chkrootkit

  1. #1
    Join Date
    May 2014
    Beans
    1

    Question Possible false positive; chkrootkit

    Platform here is Ubuntu 12.04 LTS. A routine run of chkrootkit gave a warning of the following hidden file: /usr/lib/jvm/.java-1.6.0-openjdk-i386.jinfo A check against the Debian Package manager ( dpkg -S ) seemed to recognise this file so the warning may well be a false positive. However, for my own peace of mind, can somebody tell me: 1. Did chkrootkit show a false positive? 2. If so, what is the pupose of the file .java-1.6.0-openjdk-i386.jinfo and why does it have to be hidden? Thanks in advance for any helpful answers. Mike. --

  2. #2
    Join Date
    Jan 2009
    Location
    Santander, Spain
    Beans
    1,825
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: Possible false positive; chkrootkit

    Please see: http://ubuntuforums.org/showthread.php?t=1876109

    It seems a well known false positive.

    I think, you had to ask the question in the security subforum, for more specialized advice. You can ask a moderator to move the thread there.

  3. #3
    Join Date
    Jul 2007
    Location
    Magic City of the Plains
    Beans
    Hidden!
    Distro
    Kubuntu Development Release

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •