[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: file integrity programs

To: John Smith <pagemaster41@hotmail.com>
Subject: Re: file integrity programs
From: Jonathan Rozes <jrozes+973201920.40862727@vinton.com>
Date: Thu, 2 Nov 2000 13:51:59 -0800 (PST)
Cc: misc@openbsd.org

On Thu, 2 Nov 2000, John Smith wrote:

> I have never personally used it or tried it but another file integrity 
> program I know of is AIDE a free replacement to Tripwire.  It is supposedly 
> faster and supports multiple databse types(md5,blowfish etc,etc).

Why not just use mtree(8)? It comes with OpenBSD and is pretty simple to
get started with. In a nutshell, you would do 'mtree -c -k "uid gid mode
link sha1digest"' for static directory trees like /bin and such, then 
maybe just 'mtree -c -k "uid gid mode link"' for dynamic things like log 
files. Copy the specifications to read-only media along with a 
statically-linked copy of the mtree binary and a script to check the 
system against the specification files (or on a bootable image if you're
really paranoid), and voila, you have an integrity checker.

jonathan

+++ Jonathan Rozes, System Administrator, Will Vinton Studios

References:
- Re: file integrity programs
  - From: "John Smith" <pagemaster41@hotmail.com>

Prev by Date: /etc/ppp/ppp.conf for german T-Online?
Next by Date: Re: /etc/ppp/ppp.conf for german T-Online?
Prev by thread: Re: file integrity programs
Next by thread: ipsecadm on -current
Index(es):
- Date
- Thread