KfWiki: Host based IDE

Revision [3804]

Last edited on 2010-08-19 07:53:57 by KenFong

Additions:

===Host based IDE===
[[AIDE IdsAIDE]]
[[OSSEC IdsOSSEC]]

Revision [1034]

Edited on 2007-10-16 20:26:43 by WikiAdmin

Additions:

Download AIDE from sourceforge and do a source install. configure will tell you libgpg-error-devel, bison and flex are required if not already installed.

Deletions:

~~Download AIDE from sourceforge and do a source install. configure will tell you bison and flex are required if not already installed.~~

Revision [844]

Edited on 2007-08-07 00:53:24 by WikiAdmin

Additions:

Schedule check via crontab
01 * * * * root aide --check || mutt -s AIDE_WARN_hostname someone@somewhere.com < /var/log/aide.out

Revision [843]

Edited on 2007-08-07 00:46:43 by WikiAdmin

No differences.

Revision [842]

Edited on 2007-08-07 00:45:25 by WikiAdmin

Additions:

less /var/log/aide.out

Revision [841]

Edited on 2007-08-07 00:44:20 by WikiAdmin

Additions:

==Usage==
First initialize the database
aide --init
cp /var/lib/aide.db.new /var/lib/aide.db
Check for changes
aide --check
Update database
aide --update

Revision [840]

The oldest known version of this page was created on 2007-08-07 00:42:57 by WikiAdmin

KfWiki : SecurityIDS

Revision [3804]

Additions:

Revision [1034]

Additions:

Deletions:

Revision [844]

Additions:

Revision [843]

Revision [842]

Additions:

Revision [841]

Additions:

Revision [840]