The Types of AIDE Checks
You may be wondering about the different types of checks AIDE can perform. The checks are described again in Table 12.2.
DIRECTIVE | DESCRIPTION |
---|---|
p | permissions |
i | inode |
n | number of links |
u | user |
g | group |
s | size |
b | block count |
m | Mtime |
a | Atime |
c | Ctime |
S | check for growing size |
md5 | md5 checksum |
sha1 | sha1 checksum |
rmd160 | rmd160 checksum |
tiger | tiger checksum |
R | p+i+n+u+g+s+m+c+md5 |
L | p+i+n+u+g |
E | Empty group |
> | Growing logfile p+u+g+i+n+S |
haval | haval checksum |
gost | gost checksum |
crc32 | crc32 checksum |
It's probably helpful to break down the types of AIDE checks into categories. There are three basic categories of AIDE checks: what I will term standard checks, grouped checks, and checksums. The standard type of AIDE check looks for information that can be ...
Get Linux Firewalls, Third Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.