I just stumbled upon this LIDS (Linux Intrusion Detection/Defense System) see: http://www.lids.org
I just wanted to know if anyone is using this and what they think of it. Is it hard to set up? What happens when you do an apt-get dist-upgrade - will it refuse to change the binaries you want to upgrade? Is something like Tripwire / AIDE better because it doesn't stop root from changing/deleting files but will tell you later which ones have changed. Anyone with any experience in using this LIDS? Cheers. Mark.
pgpz7zctp8aM8.pgp
Description: PGP signature
