CentOS 7 / RKHunter / Can't whitelist Google API (Python) cache file in /tmp

Question

I have cron frequently running a script that uses the Google API to access drive, etc.

It keeps a cache file:

/tmp/google-api-python-client-discovery-doc.cache

And no matter how I try to white list it in ** /etc/rkhunter.conf**, RKHunter gives this back:

Warning: File '/tmp/google-api-python-client-discovery-doc.cache' (score: 212) contains some suspicious content and should be checked.
Warning: Checking for files with suspicious contents [ Warning ]

Any ideas on how to whitelist that file from throwing a warning when RKHunter runs?

I’ve tried whitelisting it under:

USER_FILEPROP_FILES_DIRS=
EXCLUDE_USER_FILEPROP_FILES_DIRS=
EXISTWHITELIST=
SCRIPTWHITELIST=
RTKT_FILE_WHITELIST=

Answer 1

ryanpq December 27, 2016

After making your changes did you run sudo rkhunter --propupd to update rkhunter and have it use the new rules?

Reply Report

raimes December 29, 2016

Hi @ryanpq,

Yes, after each attempted whitelisting I ran sudo rkhunter --propupd

This one still stumps me…
Reply Report

Answer 2

raimes December 29, 2016

Hi @ryanpq,

Yes, after each attempted whitelisting I ran sudo rkhunter --propupd

This one still stumps me…
Reply Report

Related

Question

CentOS 7 / RKHunter / Can't whitelist Google API (Python) cache file in /tmp

Leave a comment

Looking for something else?

Sign up for our newsletter

Related

Question

CentOS 7 / RKHunter / Can't whitelist Google API (Python) cache file in /tmp

Leave a comment

Related

question

Workshop about cloud deployment - digitalocean coupons

question

I want to set up my Zip file on digital ocean server

question

atlast we change ip addr to our pc, i hav corectly entred the ip.still i get"You don't have permision to access /phpMyAdmin on this server."

question

Can't install php-soap to my PHP 7.0 centos

Looking for something else?