Tripwire, Radmind, Others?
Cameron Simpson
cs at zip.com.au
Sun Jan 13 23:56:24 UTC 2008
On 11Jan2008 15:08, David Tonhofer <redhatter at m-plify.net> wrote:
> In order to lock down my little system I wanted to invest some time/money
> into a program to keeps a
> snapshot of the state of the filesystem, i.e. file names, file attributes
> and hashes.
> I have used "Tripwire" in the 90's and early 00's with some good results
> (but had some problems with
> its configuration) but then abandoned it as it was no longer packaged with
> Red Hat above 8 I think (?).
>
> Anyway, I wanted to look at "radmind" - does anyone have any particular
> notable points on it? Are
> these filesystem-synapshot approaches still current or are there new
> approaches (an enforcing SELinux
> or kernel modules collecting information at runtime come to mind).
FYI, I'm using osiris on a bunch of machines:
http://freshmeat.net/projects/osiris/
Cheers,
--
Cameron Simpson <cs at zip.com.au> DoD#743
http://www.cskk.ezoshosting.com/cs/
I think... Therefore I ride. I ride... Therefore I am.
- Mark Pope <erectus at yarrow.wt.uwa.edu.au>
More information about the redhat-list
mailing list