W have here a CentOS 7 server with rkhunter installed. Since yesterday we get following rkhunter warning:
[01:10:30] Info: Starting test name 'packet_cap_apps'
[01:10:30] Checking for packet capturing applications [ Warning ]
[01:10:30] Warning: Process '/usr/sbin/NetworkManager' (PID 4654) is listening on the network.
Is there a way to whitelist /usr/sbin/NetworkManager
for the packet_cap_apps
test?