[clue-admin] file cleanup on clue server, yum, wiki access
Jed S. Baer
thag at frii.com
Sun Mar 27 15:20:42 MST 2005
On Thu, 24 Mar 2005 17:33:12 -0700
David Anselmi wrote:
> Probably you could add these to logrotate (that you probably already
> have). And speaking of Tripwire, I just ran across this:
Given the problems we're having with logrotate, I'd rather not use it for
this. And, there's no need to rename files and restart deamons here
anyway.
Also, I just as soon keep user-supplied scripts seperate from
vendor-supplied.
I've created /usr/local/bin/cleanwire
Last chance for admins to object before I add it to root's crontab.
> http://linuxgazette.net/issue98/moen.html
>
> which suggests AIDE in combination with Tripwire.
Interesting approach. I agree with the author that Tripwire is a byzantine
mess. I haven't played with any of the other system verification tools he
mentions. I don't know why he calls them intrusion detection systems,
though. After all, what they detect is file tampering, and intrusion isn't
the only way that can happen.
jed
--
http://s88369986.onlinehome.us/freedomsight/
Key fingerprint = B027 FEFB 4281 CC72 67D1 4237 F2D0 D356 077A A30E
... it is poor civic hygiene to install technologies that could someday
facilitate a police state. -- Bruce Schneier
More information about the clue-admin
mailing list