| 1 |
Daniel Brandt wrote: |
| 2 |
> I would check out AIDE (also in portage) as a replacement for Tripwire. It is completely open source (not just for linux) and allows use of a lot of different cryptographic checksums. |
| 3 |
|
| 4 |
I was using AIDE for a while, but I got fed up with its bugs. I doesn't |
| 5 |
always behave as advertised in the documentation, always outputs some |
| 6 |
annoying debugging messages, and segfaults when it doesn't like some |
| 7 |
config options. |
| 8 |
|
| 9 |
More recently, I've been using Integrit. It seems rock solid, very |
| 10 |
small, and very simple. However, it's a little too simple, since it |
| 11 |
can't even use globbing or regexps in the config file. Using a |
| 12 |
preprocessor for the config file might be a good option and would keep |
| 13 |
the most important component as simple as possible. Come to think of it, |
| 14 |
that might work especially well with an automated system, since config |
| 15 |
files would have to be generated anyway. |
| 16 |
|
| 17 |
Jonathan Rogers |
| 18 |
|
| 19 |
-- |
| 20 |
gentoo-security@g.o mailing list |
Archives