Re: [Aide] Strange behaviour
Hi, Thank you for ointing this. I am using the aide package provided by Redhat for RHEL8. I will check with redhat Best Regards -Message d'origine- De : Aide [mailto:aide-boun...@ipi.fi] De la part de Hannes von Haugwitz Envoyé : mercredi 20 novembre 2019 18:51 À : Aide user mailinglist Objet : ** SUSPICIOUS SENDER ** Re: [Aide] Strange behaviour Hi, On Mon, Nov 18, 2019 at 02:53:17PM +, MAUPERTUIS, PHILIPPE wrote: > [root@otvmi613s aide]# aide -C -Breport_quiet=no -Bsyslog_format=yes There is no 'syslog_format' option in upstream AIDE (or at least I'm not aware of such an option). Are you using a patched AIDE binary? Best regards Hannes ___ Aide mailing list Aide@ipi.fi https://www.ipi.fi/mailman/listinfo/aide equensWorldline is a registered trade mark and trading name owned by the Worldline Group through its holding company. This e-mail and the documents attached are confidential and intended solely for the addressee. If you receive this e-mail in error, you are not authorized to copy, disclose, use or retain it. Please notify the sender immediately and delete this email from your systems. As emails may be intercepted, amended or lost, they are not secure. EquensWorldline and the Worldline Group therefore can accept no liability for any errors or their content. Although equensWorldline and the Worldline Group endeavours to maintain a virus-free network, we do not warrant that this transmission is virus-free and can accept no liability for any damages resulting from any virus transmitted. The risks are deemed to be accepted by everyone who communicates with equensWorldline and the Worldline Group by email ___ Aide mailing list Aide@ipi.fi https://www.ipi.fi/mailman/listinfo/aide
Re: [Aide] Strange behaviour
Hi, On Mon, Nov 18, 2019 at 02:53:17PM +, MAUPERTUIS, PHILIPPE wrote: > [root@otvmi613s aide]# aide -C -Breport_quiet=no -Bsyslog_format=yes There is no 'syslog_format' option in upstream AIDE (or at least I'm not aware of such an option). Are you using a patched AIDE binary? Best regards Hannes ___ Aide mailing list Aide@ipi.fi https://www.ipi.fi/mailman/listinfo/aide
Re: [Aide] Strange behaviour
On Mon, Nov 18, 2019 at 9:53 AM MAUPERTUIS, PHILIPPE < philippe.maupert...@equensworldline.com> wrote: > Hi, > > I have noticed a different behavior when using the syslog_format or not > > [root@otvmi613s aide]# aide -C -Breport_quiet=no -Bsyslog_format=no > > Start timestamp: 2019-11-18 13:47:23 +0100 (AIDE 0.16) > > *AIDE found NO differences between database and filesystem. Looks okay!!* > > > > Number of entries:89738 > > > > --- > > The attributes of the (uncompressed) database(s): > > --- > > > > /var/lib/aide/aide.db.gz > > MD5 : XvDz755c9qVEFFme1CsAhw== > > SHA1 : UnRu5/C5M4HWr7sAFvlZuhaOyxQ= > > RMD160 : bjJt9PFyn2qXNDBYN2zkw3PRrDQ= > > TIGER: pRe+drowreel3gBs/Y6hjw1U3ahmX4Se > > SHA256 : QBH+QrkE+Pow5XbBk7pNid8v97eKIn4W > > ySn1h46z74s= > > SHA512 : tKFyjO4P4kDqZ6YQiqIz4pmWJlxSaRv5 > > kv49SFAJ1HDrY++W0RgZv93EQaK3ZX76 > > zEgM5BTK5+keITtDcJbFtw== > > > > > > End timestamp: 2019-11-18 13:48:43 +0100 (run time: 1m 20s) > > [root@otvmi613s aide]# aide -C -Breport_quiet=no -Bsyslog_format=yes > > [root@otvmi613s aide]# > > > > If there is no differences, Aide says so whithout syslog_format but says > nothing at all when this format is used. > > It’s look like syslog_format=yes implies report_quiet=yes > > Is it the intended behavior ? > > Is there a way to get a message when everything is ok with the syslog > format ? > > > > Best regards > > Philippe > Just a shot in the dark here, but have you tried flipping the order of those two parameters? - Keith ___ Aide mailing list Aide@ipi.fi https://www.ipi.fi/mailman/listinfo/aide
