Hi, Just started using AIDE, and so far I'm liking it.
I'm curious though what some of the best practices are on storing the AIDE databases. When aide.db.new is created, it's in the same directory as aide.db. When I copy aide.db.new to aide.db, should I be deleting aide.db.new? What is to prevent someone who happens to gain root from running AIDE again, generating a new aide.db.new, and copying over aide.db before the next cron job, therefore making their trespass undetectable? Thanks, Bobby
_______________________________________________ Aide mailing list [email protected] https://mailman.cs.tut.fi/mailman/listinfo/aide
