1 |
On Wed, 2003-12-03 at 11:27, Daniel Robbins wrote: |
2 |
> http://www.gentoo.org/proj/en/portage/ |
3 |
> [which includes] |
4 |
|
5 |
"* Stop using mtimes for packages. Have portage look up all files in the |
6 |
vardb to ensure that a file isn't duplicated and unmerge it if not. |
7 |
Potentially slow... Need some way to speed it up... hash of filenames?" |
8 |
|
9 |
One piece of work that has focused on this is a tool called RadMind, out |
10 |
of the University of Michigan; http://www.radmind.org/ . |
11 |
|
12 |
It uses a concept of MD5 sums on system files to detect system changes; |
13 |
sets of such changes can be used in deployment (both configuration and |
14 |
binary) and can also be used to detect unwanted changes. It's fairly |
15 |
impressive, because, unlike cfengine or tripwire, system validity still |
16 |
after its used to deploy a configuration change. |
17 |
|
18 |
You might want to have a read of a paper presented at LISA a few weeks |
19 |
back: |
20 |
|
21 |
http://rsug.itd.umich.edu/software/radmind/files/LISA-radmind.pdf |
22 |
|
23 |
AfC |
24 |
Sydney |
25 |
|
26 |
-- |
27 |
Andrew Frederick Cowie |
28 |
Operational Dynamics Consulting Pty Ltd |
29 |
|
30 |
Australia: +61 2 9977 6866 |
31 |
|
32 |
http://www.operationaldynamics.com/ |
33 |
|
34 |
-- |
35 |
gentoo-dev@g.o mailing list |