Thursday, February 9, 2012

Install CHKROOTKIT on centos

This post explains how to install chkrootkit on linux.

Downloading and installing chkrootkit
Change to usr/local/src to download the package
#cd /usr/local/src

Download the package
#wget ftp://ftp.pangeia.com.br/pub/seg/pac/chkrootkit.tar.gz

Untar the source
#tar -zxvf chkrootkit.tar.gz

Install RKHunter in centos

This post explains how to install RKHunter  in Linux. Rootkit scanner is a scanning tool. This tool scans for rootkits, backdoors and local exploits by running tests like:

- MD5 hash compare
- Look for default files used by rootkits
- Wrong file permissions for binaries
- Look for suspected strings in LKM and KLD modules
- Look for hidden files
- Optional scan within plaintext and binary files

Rootkit Hunter is released as GPL licensed project and free for everyone to use. Can be downloaded from http://www.rootkit.nl

Wednesday, February 8, 2012

Moving a physical volume using pvmove

Suppose we want to move a physical volume /dev/sda3 from hard disk /dev/sda to /dev/sde3 of hard disk /dev/sde

First make the /dev/sde3 to a physical volume using the following command.
#pvcreate /dev/sde3

verify it using the command.
#pvs

add the newly created physical volume to the Volume group.
#vgextend  vg_name  /dev/sde3

Now move the /dev/sda3 to /dev/sde3
#pvmove   /dev/sda3  /dev/sde3

After completing the move, you can remove the  /dev/sda3 from the VG.
#vgreduce   vg_name  /dev/sda3

Now we can remove the physical volume itself
#pvremove /dev/sda3

You can check the vg status using following commands.
#vgs
#pvs
#lvs