Advanced Intrusion Detection Environment: Difference between revisions

Browse history interactively

← Previous edit

Content deleted Content added

VisualWikitext

Revision as of 19:12, 25 February 2017 edit 192.54.144.229 (talk) Updated broken link to OpenSUSE Security Guide chapter on AIDE ← Previous edit		Latest revision as of 06:42, 22 September 2023 edit undo AlessaNikcks (talk \| contribs) 57 edits No edit summary Tag: Visual edit
(21 intermediate revisions by 18 users not shown)
Line 10: \| released = <!-- {{Start date\|YYYY\|MM\|DD\|df=yes/no}} --> \| discontinued = \| latest release version = ~~0.15.1~~{{wikidata\|property\|preferred\|references\|edit@end\|Q2825369\|P348}} \| latest release date = {{~~Start~~Release date and age\|~~2010~~{{wikidata\|09qualifier\|10preferred\|single\|Q2825369\|P348\|P577}}}} ~~\| latest preview version = 0.16b1<ref>{{cite web\|title=Aide / Code / [6be695]\|url=https://sourceforge.net/p/aide/code/ci/master/tree/\|accessdate=6 June 2016}}</ref>~~ ~~\| latest preview date = {{Start date and age\|2016\|04\|15}}~~ ~~\| frequently updated = <!-- DO NOT include this parameter unless you know what it does -->~~ \| programming language = [[C (programming language)\|C]] \| operating system = [[Unix-like]] Line 21 ⟶ 18: \| language = \| status = \| genre = Security ([[Host-based intrusion detection system\|HIDS]]) \| license = [[GNU General Public License]] \| website = {{URL\|~~http~~https://aide.~~sourceforge~~github.~~net~~io/}} }} {{Portal\|Free software}}▼ The '''Advanced Intrusion Detection Environment''' ('''AIDE''') was initially developed as a [[free software\|free]] replacement for [[Tripwire (company)\|Tripwire]] licensed under the terms of the [[GNU General Public License]] (GPL). Line 31 ⟶ 27: ==Functionality== ~~Aide~~AIDE takes a "snapshot" of the state of the system, register hashes, modification times, and other data regarding the files defined by the administrator. This "snapshot" is used to build a database that is saved and may be stored on an external device for safekeeping. When the administrator wants to run an integrity test, the administrator places the previously built database in an accessible place and commands ~~Aide~~AIDE to compare the database against the real status of the system. Should a change have happened to the computer between the snapshot creation and the test, ~~Aide~~AIDE will detect it and report it to the administrator. Alternatively, ~~Aide~~AIDE can be configured to run on a schedule and report changes daily using scheduling technologies such as [[cron]], which is the default behavior of the [[Debian]] ~~Aide~~AIDE package.<ref>{{cite web\|title=Using Aide on Ubuntu 12.04 LTS (Precise Pangolin) and Debian 7 (Wheezy)\|url=http://www.snekul.com/wordpress/blog/2012/09/27/using-aide-on-ubuntu-12-04-lts-precise-pangolin-and-debian-7-wheezy/\|archive-url=https://web.archive.org/web/20130109055116/http://www.snekul.com/wordpress/blog/2012/09/27/using-aide-on-ubuntu-12-04-lts-precise-pangolin-and-debian-7-wheezy/\|url-status=dead\|archive-date=9 January 2013\|accessdate=12 March 2013}}</ref> This is mainly useful for security purposes, given that any malicious change which could have happened inside of the system would be reported by ~~Aide~~AIDE. ==~~External~~ ~~links~~See also == ▲{{Portal\|Free ~~software~~Software}} * [http://aide.sourceforge.net/ AIDE homepage] * [[Host-based intrusion detection system comparison]] * [http://sourceforge.net/projects/aide/ AIDE SourceForge project]▼ * [http://aide.sourceforge.net/stable/manual.html AIDE online manpage]▼ * [https://help.ubuntu.com/community/FileIntegrityAIDE AIDE reference in Ubuntu wiki]▼ * [https://doc.opensuse.org/documentation/leap/security/html/book.security/cha.aide.html OpenSUSE Security Guide chapter on AIDE]▼ == References == {{Reflist}} ==External links== * {{Official}} ▲* [~~http~~https://~~sourceforge~~github.~~net/projects~~com/aide/aide AIDE ~~SourceForge~~Github project] ▲* [https://web.archive.org/web/20141027162321/http://aide.sourceforge.net/stable/manual.html AIDE online manpage] ▲* [https://help.ubuntu.com/community/FileIntegrityAIDE AIDE reference in Ubuntu wiki] ▲* [https://doc.opensuse.org/documentation/leap/security/html/book.-security/cha.-aide.html OpenSUSE Security Guide chapter on AIDE] [[Category:Computer security software]] [[Category:Unix security software]] [[Category:Intrusion detection systems]] ~~{{security-software-stub}}~~