I am pretty tired of rkhunters false positives and rather scarce logs in terms of what to do with the findings.
Then I came aross lynis.
Lynis is flexible and easy to use. Installation is optional. Just copy it to a system, and use "./lynis audit system" to start the security scan. It is written in shell script and released as open source software (GPL).
I installed it and did a first scan:
Code: Select all
sudo lynis audit system --quick
And it seemed to be flexible and do a good job makings suggestions along the way.
Since it is hard to keep up with that in real time I had a look at the log after a finished scan:
Code: Select all
sudo cat /var/log/lynis.log |more
Lots of good stuff there with actuall sugestions how to fix things or harden your settings!
This thing is great for fixing your system and optimizing it.
Lynis is in the standard Manjaro repos but as mentioned above; you don't have to install it. Copying it to the computer and running it as a script will do just fine.