It would be useful to be able to quickly enable only those tests that are relevant to testing a chroot jail using the --rootdir option.
I'm not sure if this would be a shortcut to running --enable with specific arguments, or if its more complex than that, and when testing a jail you want to still run some tests but surpress particular warnings (e.g. On testings for the Phalanx Rootkit (strings) I got a messsage:
[ Warning ]
[07:02:09] The file '/web/bin/hostname' does not exist!
If rkhunter knew it was tesing the chroot jail /web, it could know to run /bin/hostname instead.
Log in to post a comment.