Re: aide or tripwire
From: Jim Zajkowski (jim@jimz.net)Date: 12/18/01
- Previous message: Juan Ignacio Trentalance: "loging user's commands"
- In reply to: Robin Lynn Frank: "aide or tripwire"
- Next in thread: Kerberus: "Re: aide or tripwire"
- Next in thread: dewt: "Re: aide or tripwire"
- Reply: Kerberus: "Re: aide or tripwire"
- Reply: Rob 'Feztaa' Park: "Re: aide or tripwire"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 17 Dec 2001 20:34:01 -0500 From: Jim Zajkowski <jim@jimz.net> To: focus-linux@securityfocus.com
On Sun, Dec 16, 2001 at 05:48:34PM -0700, Robin Lynn Frank wrote:
> We have been using tripwire to notify us if any files were tampered with. I
> recently tried aide on one machine and was impressed by its ease of
> configuration and lower cpu usage. Are there any problem areas for aide?
At the simplest, Aide offers no protection of the signature database, while
tripwire does.
Of course, you should still protect your tripwire database by burning it onto
CD, since tripwire has no protection against the database being deleted,
only modified.
--Jim
-- Jim Zajkowski System Administrator http://www.jimz.net/pgp-pubkey.asc ITCS Contract Services 8A9E 1DDF 944D 83C3 AEAB 8F74 8697 A823 2113 5C53
- Previous message: Juan Ignacio Trentalance: "loging user's commands"
- In reply to: Robin Lynn Frank: "aide or tripwire"
- Next in thread: Kerberus: "Re: aide or tripwire"
- Next in thread: dewt: "Re: aide or tripwire"
- Reply: Kerberus: "Re: aide or tripwire"
- Reply: Rob 'Feztaa' Park: "Re: aide or tripwire"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
