Skip site navigation (1)Skip section navigation (2)
Date:      11 Aug 2002 11:31:44 +0100
From:      Stacey Roberts <stacey@Demon.vickiandstacey.com>
To:        Volker Kindermann <freebsd@secspace.de>
Cc:        sroberts@dsl.pipex.com, FreeBSD Questions <freebsd-questions@FreeBSD.ORG>
Subject:   Re: aide-0.7_1 docs?
Message-ID:  <1029061905.38776.139.camel@Demon.vickiandstacey.com>
In-Reply-To: <20020811115009.01fa251a.freebsd@secspace.de>
References:  <20020810180914.Y9801-100000@x1-6-00-80-c8-3a-b8-46> <1029018608.38776.126.camel@Demon.vickiandstacey.com>  <20020811115009.01fa251a.freebsd@secspace.de>

next in thread | previous in thread | raw e-mail | index | archive | help

--=-13Vhh+OpcGp8GMQPIn4+
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable

Hi Volker,
   Thanks for the your thoughts and suggestions. I've not looked at the
aide docs (as suggested by Dru earlier in the post), and it looks as if
I'll only be able to find the URL for the aide docs *after* installing
the thing - not happy with that!

I'll take a look at samhain today - one thing, is it compatible with
FBSD 4.6Stable?

Stacey



On Sun, 2002-08-11 at 10:50, Volker Kindermann wrote:
> Hi Stacey,
>=20
> > I used to use tripwire, but found that it didn't *really* do what I
> > thought it would (which is provide real-time notification of intrusion
> > attempts / hacks).
>=20
> I know tripwire and I think it is not intended to do real-time monitoring=
. I don't know aide but I can imagine that it don't have real-time monitori=
ng, too. Please correct me, if I'm wrong.
>=20
> Lately I found a tool called samhain (http://la-samhna.de/samhain/) that =
is able to run as a daemon and therefore does some kind of real-time monito=
ring. Perhaps you'll give it a try.
>=20
> HTH
>  -volker
>=20
--=20
Stacey Roberts
B.Sc (HONS) Computer Science

--=-13Vhh+OpcGp8GMQPIn4+
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part

-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5.8

iQEVAwUAPVY9DZvQeubckvvXAQEcLQgApnk48fXfT2qcbfrWl/0kzPgPfp0mg5Mo
H96Yx30KoIZl0eU1/cPsSK/Xl+J32bXO3Sj5Sb38sKR5XMi0vrivYw+c4p4qO3wv
YzTV3A69srCaew5FUt6rmvt7DIB3+uP1WtqqxTZvpeT/UF2bdTSzdoskL1asXyiy
gTJiPWKy3/ZiEldUARw/yur07tMwrKBpGJbozcG8j1tUkjSaGzQrEbFEYvgXyeGt
XI2grdbK6f5TQFGeS3xpYyLw2IBXfHmJpHiGqxCDUPONUG5nipeAQx/tYcv6fe/9
czAwdAz+Zmfmb7ItmAwAYKQBf71joIMieeBApdQmm7ydkhyZguKzIQ==
=PYEL
-----END PGP SIGNATURE-----

--=-13Vhh+OpcGp8GMQPIn4+--


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1029061905.38776.139.camel>