On Tue, Oct 22, 2002 at 11:36:06PM +0800, Dion Mendel wrote:
> Which files do people exclude when using integrity checkers
> (e.g. aide/tripwire etc)?
I don't typically exclude many files, but I often limit the changes that
tripwire notifies me about. For example, if one of my users changes
their
On Tue, Oct 22, 2002 at 11:36:06PM +0800, Dion Mendel wrote:
> Which files do people exclude when using integrity checkers
> (e.g. aide/tripwire etc)?
I don't typically exclude many files, but I often limit the changes that
tripwire notifies me about. For example, if one of my users changes
their
[EMAIL PROTECTED] (Dion Mendel) writes:
> I'm not providing an answer, but rather asking another question on this
> topic.
>
> Which files do people exclude when using integrity checkers (e.g.
> aide/tripwire etc)?
>
> Under normal system use, certain files do change (e.g. /etc/mtab,
That does? M
Hi all,
I'm not providing an answer, but rather asking another question on
this topic.
Which files do people exclude when using integrity checkers
(e.g. aide/tripwire etc)?
Under normal system use, certain files do change
(e.g. /etc/mtab, /dev/tty*). Including these files in the integrity
check
On Tue, 22 Oct 2002, Arthur de Jong wrote:
> Apart from that I also use tools like debsums to keep me informed of
> integrity (although a lot of packages don't provide all or correct
> md5sums) (maybe I should file some bugreports for wrong md5sums)
you also might want to checkout tiger, it will
Arthur de Jong <[EMAIL PROTECTED]> writes:
> On Tue, 22 Oct 2002, Kjetil Kjernsmo wrote:
>
>> I'd like to ask what people do with their AIDE output at times when a
>> lot of things change on their system?
>>
>> I've gone through the AIDE configuration, and I feel like having
>> configured it well,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Tue, 22 Oct 2002, Kjetil Kjernsmo wrote:
> I'd like to ask what people do with their AIDE output at times when a
> lot of things change on their system?
>
> I've gone through the AIDE configuration, and I feel like having
> configured it well, to c
On 2002/10/22 04:27:26PM +0200, Tue, Kjetil Kjernsmo wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Hi folks!
>
> I'd like to ask what people do with their AIDE output at times when a
> lot of things change on their system?
>
> I've gone through the AIDE configuration, and I feel
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi folks!
I'd like to ask what people do with their AIDE output at times when a
lot of things change on their system?
I've gone through the AIDE configuration, and I feel like having
configured it well, to catch the things that might be trojaned wh
[EMAIL PROTECTED] (Dion Mendel) writes:
> I'm not providing an answer, but rather asking another question on this
> topic.
>
> Which files do people exclude when using integrity checkers (e.g.
> aide/tripwire etc)?
>
> Under normal system use, certain files do change (e.g. /etc/mtab,
That does? M
Hi all,
I'm not providing an answer, but rather asking another question on
this topic.
Which files do people exclude when using integrity checkers
(e.g. aide/tripwire etc)?
Under normal system use, certain files do change
(e.g. /etc/mtab, /dev/tty*). Including these files in the integrity
check
On Tue, 22 Oct 2002, Arthur de Jong wrote:
> Apart from that I also use tools like debsums to keep me informed of
> integrity (although a lot of packages don't provide all or correct
> md5sums) (maybe I should file some bugreports for wrong md5sums)
you also might want to checkout tiger, it will
Arthur de Jong <[EMAIL PROTECTED]> writes:
> On Tue, 22 Oct 2002, Kjetil Kjernsmo wrote:
>
>> I'd like to ask what people do with their AIDE output at times when a
>> lot of things change on their system?
>>
>> I've gone through the AIDE configuration, and I feel like having
>> configured it well,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Tue, 22 Oct 2002, Kjetil Kjernsmo wrote:
> I'd like to ask what people do with their AIDE output at times when a
> lot of things change on their system?
>
> I've gone through the AIDE configuration, and I feel like having
> configured it well, to c
On 2002/10/22 04:27:26PM +0200, Tue, Kjetil Kjernsmo wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Hi folks!
>
> I'd like to ask what people do with their AIDE output at times when a
> lot of things change on their system?
>
> I've gone through the AIDE configuration, and I feel
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi folks!
I'd like to ask what people do with their AIDE output at times when a
lot of things change on their system?
I've gone through the AIDE configuration, and I feel like having
configured it well, to catch the things that might be trojaned wh
16 matches
Mail list logo
