Wednesday, October 15, 2014

Linux Malware Detect - Maldet - could not download signature data from server

[root@srv inetholic]# maldet -u
Linux Malware Detect v1.4.2
            (C) 2002-2013, R-fx Networks
            (C) 2013, Ryan MacDonald
inotifywait (C) 2007, Rohan McGovern
This program may be freely redistributed under the terms of the GNU GPL v2

maldet(30339): {sigup} performing signature update check...
maldet(30339): {sigup} local signature set is version 201205035915
maldet(30339): {sigup} could not download signature data from server, please try again later.

add in hosts


[root@srv inetholic]# vi /etc/hosts


129.121.132.46 cdn.rfxn.com
174.136.14.250 cdn.rfxn.com
129.121.182.192 cdn.rfxn.com



[root@srv inetholic]# maldet -u
Linux Malware Detect v1.4.2
            (C) 2002-2013, R-fx Networks
            (C) 2013, Ryan MacDonald
inotifywait (C) 2007, Rohan McGovern
This program may be freely redistributed under the terms of the GNU GPL v2

maldet(30407): {sigup} performing signature update check...
maldet(30407): {sigup} local signature set is version 201205035915
maldet(30407): {sigup} new signature set (2014100624041) available
maldet(30407): {sigup} downloaded http://cdn.rfxn.com/downloads/md5.dat
maldet(30407): {sigup} downloaded http://cdn.rfxn.com/downloads/hex.dat
maldet(30407): {sigup} downloaded http://cdn.rfxn.com/downloads/rfxn.ndb
maldet(30407): {sigup} downloaded http://cdn.rfxn.com/downloads/rfxn.hdb
maldet(30407): {sigup} downloaded http://cdn.rfxn.com/downloads/maldet-clean.tgz
maldet(30407): {sigup} signature set update completed
maldet(30407): {sigup} 11792 signatures (9899 MD5 / 1893 HEX)



[root@srv inetholic]# maldet --scan-all /home
Linux Malware Detect v1.4.2
            (C) 2002-2013, R-fx Networks
            (C) 2013, Ryan MacDonald
inotifywait (C) 2007, Rohan McGovern
This program may be freely redistributed under the terms of the GNU GPL v2

maldet(30534): {scan} signatures loaded: 11792 (9899 MD5 / 1893 HEX)
maldet(30534): {scan} building file list for /home, this might take awhile...
maldet(30534): {scan} file list completed, found 54427 files...
maldet(30534): {scan} found ClamAV clamscan binary, using as scanner engine...
maldet(30534): {scan} scan of /home (54427 files) in progress...