Difference between revisions of "AIDE"
Jump to navigation
Jump to search
| (9 intermediate revisions by 2 users not shown) | |||
| Line 1: | Line 1: | ||
[[wikipedia:Advanced Intrusion Detection Environment]] | [[wikipedia:Advanced Intrusion Detection Environment]] | ||
* https://github.com/aide/aide | * https://github.com/aide/aide | ||
| + | |||
| + | * <code>[[brew install aide]]</code> | ||
* To update DB: <code>[[aide -c --update]]</code> | * To update DB: <code>[[aide -c --update]]</code> | ||
| + | * <code>[[aide --help]]</code> | ||
== Configuration == | == Configuration == | ||
* [[Ubuntu]]: <code>[[/etc/aide/aide.conf]]</code> Examples: https://rfxn.com/downloads/cron.aide, https://sources.gentoo.org/cgi-bin/viewvc.cgi/gentoo-x86/app-forensics/aide/files/aide.cron | * [[Ubuntu]]: <code>[[/etc/aide/aide.conf]]</code> Examples: https://rfxn.com/downloads/cron.aide, https://sources.gentoo.org/cgi-bin/viewvc.cgi/gentoo-x86/app-forensics/aide/files/aide.cron | ||
| − | * [[ArchLinux]]: <code>[[/etc/aide.conf]]</code> | + | * [[ArchLinux]], [[Amazon Linux]]: <code>[[/etc/aide.conf]]</code> |
| − | ==Usage== | + | == Usage == |
* Initialize database: <code>[[aideinit]]</code> | * Initialize database: <code>[[aideinit]]</code> | ||
| − | * Check configuration: <code>aide -D</code> | + | * Check configuration: <code>[[aide -D]]</code> |
| − | * Check systems: <code>aide -c /etc/aide/aide.conf -C</code> | + | * Check systems: <code>[[aide -c]] /etc/aide/aide.conf -C</code> |
| − | * Update DB: <code>aide -u</code> | + | * Update DB: <code>[[aide -u]]</code> |
| − | Jan 26 16:23:34 SERVER [[systemd-logind]][876]: Failed to save user data /run/systemd/users/0: No space left on device | + | == Related == |
| + | Jan 26 16:23:34 SERVER [[systemd-logind]][876]: Failed to save user data [[/run/systemd/users/]]0: [[No space left on device]] | ||
== See also == | == See also == | ||
| + | * {{aide}} | ||
* {{Audit}} | * {{Audit}} | ||
* {{logging}} | * {{logging}} | ||
[[Category:IT Security]] | [[Category:IT Security]] | ||
Latest revision as of 12:09, 19 December 2023
wikipedia:Advanced Intrusion Detection Environment
- To update DB:
aide -c --update aide --help
Contents
Configuration[edit]
- Ubuntu:
/etc/aide/aide.confExamples: https://rfxn.com/downloads/cron.aide, https://sources.gentoo.org/cgi-bin/viewvc.cgi/gentoo-x86/app-forensics/aide/files/aide.cron - ArchLinux, Amazon Linux:
/etc/aide.conf
Usage[edit]
- Initialize database:
aideinit - Check configuration:
aide -D - Check systems:
aide -c /etc/aide/aide.conf -C - Update DB:
aide -u
Related[edit]
Jan 26 16:23:34 SERVER systemd-logind[876]: Failed to save user data /run/systemd/users/0: No space left on device
See also[edit]
Advertising:
