HI All, I sit on this list looking for tips n tricks, but thought I would comment on this thread.
I personally use Osiris for monitoring about 100 hosts. http://osiris.shmoo.com/handbook.html#part1_chap1 It does file system integrity checks but also reports on open/closed ports & user account changes. I receive daily emails reporting only the changes from each host. The scan rules can be easily tweaked using regexs to filter out cruft resulting in a very low noise system. It helps immensely with detection of machines that have been compromised. -- Paul De Audney _______________________________________________ Fedora-infrastructure-list mailing list [email protected] https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
