Package: samhain Version: 4.1.4-2 Priority: wishlist As requested by a samhain user, it would be good to add checking POSIX ACL (add "--enable-posix-acl" to the configuration of the package). This would allow the software to also detect file permissions changes done by an attacker (currently the change is detected only as inode update).
Additionally, the package could also include checking Selinux attributes too (add "--enable-selinux"). Best regards Javier
