CentOS 7 / RKHunter / Can't whitelist Google API (Python) cache file in /tmp

Posted August 21, 2016 3.6k views
CentOSSecurityPythonCachingConfiguration Management

I have cron frequently running a script that uses the Google API to access drive, etc.

It keeps a cache file:


And no matter how I try to white list it in ** /etc/rkhunter.conf**, RKHunter gives this back:

Warning: File '/tmp/google-api-python-client-discovery-doc.cache' (score: 212) contains some suspicious content and should be checked.
Warning: Checking for files with suspicious contents [ Warning ]

Any ideas on how to whitelist that file from throwing a warning when RKHunter runs?

I’ve tried whitelisting it under:

edited by asb

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Submit an Answer
1 answer

After making your changes did you run sudo rkhunter --propupd to update rkhunter and have it use the new rules?