Debian has a nice option built into dpkg that lists all files on the system with repsect to a specified package. That comes in handy quite often and provides similar information as to what Tripwire would.
Speaking of comparison scripts, I wrote a comparison script I run from cron every night. It checks for file tampering by checking what files have suid permissons against a little flat file it generates the first time it runs. It checks permissions on other sensitive files and looks for any files on the system that have unidentified UID or GID. I also wrote a "lockdown" script that uses the chattr command to mark file attributes "read only" for sensitive files. Not only does it help protect my system from intruders, but it has saved me a few times since I have to run an "unlock" script to modify system configuration files even as root...keeps me from having accidents. - Craig _______________________________________________ RLUG mailing list [EMAIL PROTECTED] http://www.rlug.org/mailman/listinfo/rlug
