Thanks for that.  I think there is a newer version available now so I'll 
look to update the package and test in on 2.0_* and 1.6.*.

adrian.

César Catrián C. wrote:

> Hi
> 
> The package security/chkrootkit gives a false positive target on /usr/bin/login .
> I am using 2.0 RC5
> 
> regards
> 
> César
> 
> Subject: CVS commit: pkgsrc/security/chkrootkit
> To: None <pkgsrc-changes@NetBSD.org>
> From: Adrian Portelli <adrianp@netbsd.org>
> List: pkgsrc-changes
> Date: 09/28/2004 10:41:59 
> 
> Module Name:pkgsrc
> Committed By:adrianp
> Date:Tue Sep 28 10:41:59 UTC 2004
> 
> Modified Files:
> pkgsrc/security/chkrootkit: Makefile PLIST distinfo
> Added Files:
> pkgsrc/security/chkrootkit/patches: patch-ac
> 
> Log Message:
> Update chkrootkit to 0.44
> 
> - Fix false positive on NetBSD for "login".  Thanks to Richard Ibbotson for
>   helping sort this out.
> - Install main shell script and documentation.
> 
> chkwtmp.c
> fix: del counter (Thanks to Dietrich Raisin)
> chkproc.c
> fix: better support for Linux threads
> chkrootkit;
> new rootkit detected: Madalin rootkit
> top and find tests improved for Suse Linux
> more ports added in the bindshell test
> fix: FreeBSD false positives
> fix: slammer detection
> lots of minor bug fixes
> 
> 
> To generate a diff of this commit:
> cvs rdiff -r1.5 -r1.6 pkgsrc/security/chkrootkit/Makefile
> cvs rdiff -r1.1.1.1 -r1.2 pkgsrc/security/chkrootkit/PLIST
> cvs rdiff -r1.3 -r1.4 pkgsrc/security/chkrootkit/distinfo
> cvs rdiff -r0 -r1.1 pkgsrc/security/chkrootkit/patches/patch-ac
> 
> Please note that diffs are not public domain; they are subject to the
> copyright notices on the relevant files.
> 
>