-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi folks!
I'd like to ask what people do with their AIDE output at times when a
lot of things change on their system?
I've gone through the AIDE configuration, and I feel like having
configured it well, to catch the things that might be trojaned
On 2002/10/22 04:27:26PM +0200, Tue, Kjetil Kjernsmo wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi folks!
I'd like to ask what people do with their AIDE output at times when a
lot of things change on their system?
I've gone through the AIDE configuration, and I feel like
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Tue, 22 Oct 2002, Kjetil Kjernsmo wrote:
I'd like to ask what people do with their AIDE output at times when a
lot of things change on their system?
I've gone through the AIDE configuration, and I feel like having
configured it well, to catch
Arthur de Jong [EMAIL PROTECTED] writes:
On Tue, 22 Oct 2002, Kjetil Kjernsmo wrote:
I'd like to ask what people do with their AIDE output at times when a
lot of things change on their system?
I've gone through the AIDE configuration, and I feel like having
configured it well, to catch the
On Tue, 22 Oct 2002, Arthur de Jong wrote:
Apart from that I also use tools like debsums to keep me informed of
integrity (although a lot of packages don't provide all or correct
md5sums) (maybe I should file some bugreports for wrong md5sums)
you also might want to checkout tiger, it will
Hi all,
I'm not providing an answer, but rather asking another question on
this topic.
Which files do people exclude when using integrity checkers
(e.g. aide/tripwire etc)?
Under normal system use, certain files do change
(e.g. /etc/mtab, /dev/tty*). Including these files in the integrity
[EMAIL PROTECTED] (Dion Mendel) writes:
I'm not providing an answer, but rather asking another question on this
topic.
Which files do people exclude when using integrity checkers (e.g.
aide/tripwire etc)?
Under normal system use, certain files do change (e.g. /etc/mtab,
That does? Maybe
On Tue, Oct 22, 2002 at 11:36:06PM +0800, Dion Mendel wrote:
Which files do people exclude when using integrity checkers
(e.g. aide/tripwire etc)?
I don't typically exclude many files, but I often limit the changes that
tripwire notifies me about. For example, if one of my users changes
their
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi folks!
I'd like to ask what people do with their AIDE output at times when a
lot of things change on their system?
I've gone through the AIDE configuration, and I feel like having
configured it well, to catch the things that might be trojaned
On 2002/10/22 04:27:26PM +0200, Tue, Kjetil Kjernsmo wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi folks!
I'd like to ask what people do with their AIDE output at times when a
lot of things change on their system?
I've gone through the AIDE configuration, and I feel like
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Tue, 22 Oct 2002, Kjetil Kjernsmo wrote:
I'd like to ask what people do with their AIDE output at times when a
lot of things change on their system?
I've gone through the AIDE configuration, and I feel like having
configured it well, to catch
Arthur de Jong [EMAIL PROTECTED] writes:
On Tue, 22 Oct 2002, Kjetil Kjernsmo wrote:
I'd like to ask what people do with their AIDE output at times when a
lot of things change on their system?
I've gone through the AIDE configuration, and I feel like having
configured it well, to catch the
On Tue, 22 Oct 2002, Arthur de Jong wrote:
Apart from that I also use tools like debsums to keep me informed of
integrity (although a lot of packages don't provide all or correct
md5sums) (maybe I should file some bugreports for wrong md5sums)
you also might want to checkout tiger, it will
Hi all,
I'm not providing an answer, but rather asking another question on
this topic.
Which files do people exclude when using integrity checkers
(e.g. aide/tripwire etc)?
Under normal system use, certain files do change
(e.g. /etc/mtab, /dev/tty*). Including these files in the integrity
[EMAIL PROTECTED] (Dion Mendel) writes:
I'm not providing an answer, but rather asking another question on this
topic.
Which files do people exclude when using integrity checkers (e.g.
aide/tripwire etc)?
Under normal system use, certain files do change (e.g. /etc/mtab,
That does? Maybe
On Tue, Oct 22, 2002 at 11:36:06PM +0800, Dion Mendel wrote:
Which files do people exclude when using integrity checkers
(e.g. aide/tripwire etc)?
I don't typically exclude many files, but I often limit the changes that
tripwire notifies me about. For example, if one of my users changes
their
16 matches
Mail list logo