From owner-freebsd-questions Sat Aug 10 16:52:15 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C8F1737B401 for ; Sat, 10 Aug 2002 16:52:08 -0700 (PDT) Received: from colossus.systems.pipex.net (colossus.systems.pipex.net [62.241.160.73]) by mx1.FreeBSD.org (Postfix) with ESMTP id F183D43E6E for ; Sat, 10 Aug 2002 16:52:07 -0700 (PDT) (envelope-from stacey@Demon.vickiandstacey.com) Received: from Demon (81-86-129-77.dsl.pipex.com [81.86.129.77]) by colossus.systems.pipex.net (Postfix) with ESMTP id 65E2B160002D6; Sun, 11 Aug 2002 00:51:59 +0100 (BST) Subject: Re: aide-0.7_1 docs? From: Stacey Roberts Reply-To: sroberts@dsl.pipex.com To: Dru Cc: sroberts@dsl.pipex.com, FreeBSD Questions In-Reply-To: <20020810193522.J9801-100000@x1-6-00-80-c8-3a-b8-46> References: <20020810193522.J9801-100000@x1-6-00-80-c8-3a-b8-46> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-EdeBsF54RM0jbonwtLoc" X-Mailer: Ximian Evolution 1.0.8 Date: 11 Aug 2002 00:52:46 +0100 Message-Id: <1029023568.38776.134.camel@Demon.vickiandstacey.com> Mime-Version: 1.0 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG --=-EdeBsF54RM0jbonwtLoc Content-Type: text/plain Content-Transfer-Encoding: quoted-printable I'll do that. Thanks again for the information. Stacey On Sun, 2002-08-11 at 00:37, Dru wrote: >=20 >=20 > On 10 Aug 2002, Stacey Roberts wrote: >=20 > > Thanks for the quick reply Dru (I read your articles quite often!). > > > > I used to use tripwire, but found that it didn't *really* do what I > > thought it would (which is provide real-time notification of intrusion > > attempts / hacks). In the end, tripwire proved to be a heavy-weight fil= e > > (system) changes indicator, more than anything else. > > > > I'll not want to go with yet another app that appears to promise a lot, > > but doesn't "do what it say on the tin", so to speak. > > > > The description of aide mentions: > > > > AIDE is Advanced Intrusion Detection Environment. > > This piece of software was written as a replacement and extension > > for Tripwire. Tripwire is an excellent program in itself but lacks > > some features and is a closed product. > > > > Current Features: > > Multiple integrity checking algorithms (Even more with mhash support) > > Ability to output the database to stdout/file > > Easy configuration through a powerful configuration file > > > > Planned Features: > > Multiple database retrieval backends > > Encrypted databases > > Compressed databases(zlib bzip2 support) > > Windows NT port > > Email report > > More elaborate report options > > Recurse=3Dn > > Interactive db update > > > > Not that I want to weigh you down on this, but does aide as yet do any > > of the "Planned Features" as yet? In particular, compressed dbases, > > E-Mail reporting & Interactive dbase updates? > > > > Thanks again for getting back to me. From your response, it does appear > > that you are happy with aide, and I'm happy that it will prove to be as > > useful and effective to me as well. > > > > Hope to hear from you again soon. >=20 > Hi Stacey, >=20 > You know, you forced me to take a closer look at "man aide.conf", and it > gives the proper URL to the docs on the guy's website. Check out that > manpage and his docs to get an idea of what aide does/doesn't do. >=20 > :) >=20 > Dru >=20 >=20 > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message --=20 Stacey Roberts B.Sc (HONS) Computer Science --=-EdeBsF54RM0jbonwtLoc Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: PGP 6.5.8 iQEVAwUAPVWnTJvQeubckvvXAQGsXAgAs7c9q9sO2lyz6OKoYstrc7goA+N0vIxY FfgdIccadjJNd1rfmMa1bM3ZXCJNoXrF0EObmB3AvncFJ5HxkpBB3Ern9GfkfQmI oepz1yxObDDkB96JZB/Ky9wkzMrOdmzYHKjmCtW92AEaw3KRmuwt659NbDgMJF7v 4IspmnUYWO+CpF+Vb/P0WWj3SLpRaPj+sTkBP8HDpUso2t02i+v6TwzST3kx5GTv WfHzTM9GXGcC10GHaMTZbbXKG99dBd5PddP3mp6+hRJFhJHo+mZzsm3asfN+XcuZ Nq/pdJSPz0AcStBWDhD479wQFdFRz+yamgDoa9+c4wKzNS3nH8RkIg== =dZRg -----END PGP SIGNATURE----- --=-EdeBsF54RM0jbonwtLoc-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message