I've similar issue. I ran sogo in a docker container, and rkhunter report this process as spam. I tried some configurations in rkhunter.conf, but without any success. Invalid RTKT_FILE_WHITELIST configuration option: Non-existent pathname: /usr/sbin/sogod Warning: The following processes are using suspicious files: Command: sogod UID: 999 PID: 10736 Pathname: Possible Rootkit: Spam tool component Command: sogod UID: 999 PID: 13219 Pathname: Possible Rootkit: Spam tool component Command: sogod UID:...