Chkrootkit or Check Rootkit is a common Linux security tool which will scan your server for any signs of rootkits or worms which could severely impact the security of your server if they are not removed. In this blog post we are going to cover installing chkrootkit on a dedicated server and configure it to run daily and e-mail the results to a system administrator.

1. Move to /usr/local/src

cd /usr/local/src

2. Download and install the RPM

rpm -ivh

3. Create file /etc/cron.daily/ with the following contents.

) | /bin/mail -s 'CHROOTKIT Daily Run (ServerNameHere)'

Replace ServerNameHere with the actual serer name and with your mail address.

Now you have installed Chkrootkit on the server and setup the cron that will run everyday.