On Wed, 2003-12-03 at 11:27, Daniel Robbins wrote: > http://www.gentoo.org/proj/en/portage/ > [which includes]
"* Stop using mtimes for packages. Have portage look up all files in the vardb to ensure that a file isn't duplicated and unmerge it if not. Potentially slow... Need some way to speed it up... hash of filenames?" One piece of work that has focused on this is a tool called RadMind, out of the University of Michigan; http://www.radmind.org/ . It uses a concept of MD5 sums on system files to detect system changes; sets of such changes can be used in deployment (both configuration and binary) and can also be used to detect unwanted changes. It's fairly impressive, because, unlike cfengine or tripwire, system validity still after its used to deploy a configuration change. You might want to have a read of a paper presented at LISA a few weeks back: http://rsug.itd.umich.edu/software/radmind/files/LISA-radmind.pdf AfC Sydney -- Andrew Frederick Cowie Operational Dynamics Consulting Pty Ltd Australia: +61 2 9977 6866 http://www.operationaldynamics.com/ -- [EMAIL PROTECTED] mailing list
