Rkhunter Set Up in systemd : Revisited

I made a post about setting up rkhunter using systemd. And little did I know it's going to be a work in progress for weeks. But I have finally set up the service and timer units just right.

[donato@archdesktop ~]$ systemctl list-timers

NEXT LEFT LAST PASSED UNIT ACTIVATES

Fri 2017-10-06 00:00:00 +08 16h left Thu 2017-10-05 00:00:20 +08 7h ago logrotate.timer logrotate.service

Fri 2017-10-06 00:00:00 +08 16h left Thu 2017-10-05 00:00:20 +08 7h ago man-db.timer man-db.service

Fri 2017-10-06 00:00:00 +08 16h left Thu 2017-10-05 00:00:20 +08 7h ago shadow.timer shadow.service

Fri 2017-10-06 00:00:00 +08 16h left Thu 2017-10-05 00:00:20 +08 7h ago updatedb.timer updatedb.service

Fri 2017-10-06 00:08:16 +08 16h left Thu 2017-10-05 04:28:45 +08 3h 15min ago rkhunter.timer rkhunter.service

Fri 2017-10-06 01:38:57 +08 17h left Wed 2017-10-04 19:12:48 +08 12h ago systemd-tmpfiles-clean.timer systemd-tmpfiles-clean.service

Mon 2017-10-09 08:46:49 +08 4 days left Mon 2017-10-02 19:37:22 +08 2 days ago reflector.timer reflector.service

7 timers listed.

Pass --all to see loaded but inactive timers, too.

[donato@archdesktop ~]$ systemctl status rkhunter.service

donato@archdesktop ~]$ systemctl status rkhunter.service
● rkhunter.service - rkhunter rootkit scan and malware detection
   Loaded: loaded (/etc/systemd/system/rkhunter.service; static; vendor preset: disabled)
   Active: inactive (dead)
     Docs: man:rkhunter
           man:systemd.service
[donato@archdesktop ~]$

If I want rkhunter to start scanning at boot, I should enable the service with:

$ systemctl enable rkhunter.service

Since I don't want that behavior I'm disabling the service. It won't start at boot but will start when its timer elapse.

rkhunter update process fails in this instance, but the main process goes on at the elapse time set in the timer file. My tip with creating service and timer files in systemd is letting the default behavior take you where you want to go. So it's a given that you know what those defaults are.

My current rkhunter.service file is:

[donato@archdesktop ~]$ systemctl cat rkhunter.service

# /etc/systemd/system/rkhunter.service

[Unit]

Description=rkhunter rootkit scan and malware detection

Documentation=man:rkhunter man:systemd.service

[Service]

ExecStartPre=-/usr/bin/rkhunter --update

ExecStartPre=-/usr/bin/rkhunter --propupd

ExecStart=/usr/bin/rkhunter --check -sk

SuccessExitStatus=1 2 8 SIGKILL TERM

[Install]

WantedBy=multi-user.target

[donato@archdesktop ~]$

My current rkhunter.timer file is:

[donato@archdesktop ~]$ systemctl cat rkhunter.timer

# /etc/systemd/system/rkhunter.timer

[Unit]

Description=Run rkhunter daily

Documentation=man:rkhunter man:systemd.timer

[Timer]

OnCalendar=*-*-* 00:00:00

RandomizedDelaySec=5h

WakeSystem=true

Persistent=true

[Install]

WantedBy=timers.target

[donato@archdesktop ~]$

Password Issues On Ubuntu Login

I found myself unable to enter my login credentials when prompted to do so in Ubuntu. I think I might have changed it then forget about it. I've been running the current session for more days than I should have. I forget. So what's the solution to my problem. How do I get in to my system now? It involved getting into the grub menu somehow. I am uncertain as to how to do that exactly in your system. So there's a couple of ways to do it (finger's crossed). When booting at system start, use the esc key or the shift key. The first one worked for me. The timing is key. Wait until the bios banner shows then hit the esc key once. I am using Ubuntu 22.04.4 here. I have a current version of grub. The grub menu will give you options and the one you want is: root. Yes you want root privileges to set the root password. It should give you a terminal access where you can issue commands. Type: #mount -rw -o -s remount / ==> this command mounts the filesyste

2024 So Far

I have a feeling of moving earth or walking off my itchiness. The growing fat in my belly tells me I am failing on many occasions to give in to this urge. My eyes are blurred by morning glory. I remember my father having the same ritual in the morning. After his weak stroke, he couldn't speak much, just a grunt but he would demonstrate with hand how he liked to wash his face. The weather wasn't helping. It's been raining cats and dogs the past week. The province of Rizal was soaked and spilled volumes of water into the bay and Laguna lake. Our Caimito tree was cut to no more than 4 feet from the ground. It was towering above the corrugated sheet metal of our roof. Now it lay horizontal on the yard. I calculated it could be made into a whole table and chairs set by a talented carpenter artist. I showed Lino the two big pieces of trunk that could only be moved if cut by a power saw in place. The road widening project in San Mateo was in the middle stage. One side of the road

New ZFS Pool And the New 4TB Hard Drive

I am using the new pool for my videos and music. Downloading them using my torrent client, transmission. The old pool is raidz2 and now I am using a raidz1 only. But and a big but I gained space of up to 4.5 TB.

Danny's Space

Search This Blog