How to install rkhunter on CentOS 6

by Daniel Pham
Published: Updated:

Rootkit Hunter (rkhunter) is a small tool for Linux to scan rootkits, backdoors and local exploits. As the name implies, you can use it to scan rootkits on your system automatically. This article will guide you to install rkhunter on CentOS 6.

Install rkhunter on CentOS 6

First, you need to install the epel repository. Type the command below:

yum install epel-release -y

Next, type the following command to install rkhunter:

yum install rkhunter -y

After the installation, we need to update the database for rkhunter, you type:

rkhunter --update
How to install rkhunter on CentOS 6
Update database for rkhunter.

Update the properties file. This is necessary, at the first install, when you run the propupd command, rkhunter will create a database file. In subsequent scans, rkhunter will compare the current file in the system with this database file to detect the change.

rkhunter --propupd

Use rkhunter manually

To use manual scan rkhunter then you can type the command below. With this command, whenever the rkhunter finishes a part of the scan, you need to press “Enter” to continue.

rkhunter -c

To automatically ignore the “Enter” between scan sections, you can use -sk as the command below.

rkhunter -c -sk

And the result look like this.

How to install rkhunter on CentOS 6
Rkhunter scan manually.

Use rkhunter automatically

At the time I wrote this article, I was using rkhunter version 1.4.6 and this version has automatically added scripts scanned daily for you.

The only thing you need to set up is to open the /etc/sysconfig/rkhunter file and edit your email address to the MAILTO line.

How to install rkhunter on CentOS 6


With this article, hopefully you can successfully install rkhunter on your system. Using rkhunter can make your system more secure and you can also rest assured.

(This is an article from my old blog that has been inactive for a long time, I don’t want to throw it away so I will keep it and hope it helps someone).

0 0 votes
Article Rating
Notify of
Inline Feedbacks
View all comments

DevOps Lite is a personal blog specializing in technology with main topics about DevOps, DevSecOps, SRE and System Administrator. Articles are shared for free and contributed to the community.



Subscribe my Newsletter for new blog posts. Stay updated from your inbox!

© 2021-2024 – All rights reserved.

Please write sources “” when using articles from this website.

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More

Would love your thoughts, please comment.x

Adblock Detected

Please support us by disabling your AdBlocker extension from your browsers for our website.