[Aide] AIDE + Apache 2.2 reload Problem

Daniel Gerne daniel.gerne at googlemail.com
Tue Aug 28 11:27:48 EEST 2012


Hello,


we want to use AIDE on our webservers running apache 2.2.
To manage the logs we use logrotate on the apache logs. As far as I
know it is best practice to do a "reload" on rotate for apache logs so
apache will continue writing to log.
The problem is that AIDE recognizes changes on the httpd binary and
many logfiles when reloading. This makes it impossible for use to
recognize intrusion on all apache files.


I think somebody else must have had the same problem. Do you have any
suggestions?


Regards Daniel


More information about the Aide mailing list