what to use instead of tripwire?t
Craig Ringer
craig at postnewspapers.com.au
Sun Oct 12 17:22:40 UTC 2003
>>> sorry, let me rephrase that. now that tripwire is not shipped
>>> *automatically* with fedora, is there an alternate file integrity
>>> checker covered by the GPL that would be a good replacement?
>>
>> For everything in RPM format you can use rpm --verify
>
> But that will signal every config file you have changed from it's
> default settings. And it will miss config files that aren't part of the
> RPM.
For that matter, it can be easily bypassed by a modified RPM database or
binary.
It's a useful check against corruption, but probably not skilled &
determined deliberate modification.
Craig Ringer
More information about the test
mailing list