[Aide] Security question.
Tobias Weisserth
tobias.weisserth at gmail.com
Mon Jun 25 04:14:46 EEST 2007
Hi,
On Jun 25, 2007, at 2:51 AM, andy baxter wrote:
> - check the md5sum before running aide --check
Which md5 binary are you using to do this? What if someone
manipulated the md5 binary to show a specific md5 checksum after
modifying your database?
All binaries you depend on should be compiled statically and put on a
read-only mount.
regards,
Tobias
*****
"God is real, unless declared integer."
More information about the Aide
mailing list