[Aide] Permission denied when scanning readable directory below unreadable directory

Keith Constable kccricket at gmail.com
Fri Jul 6 00:27:31 EEST 2012 

Thanks for the response. Unfortunately,
I am not an administrator of the system. I was only hoping to insure the
integrity of my home dir.

Regards,

Keith Constable


On Jul 5, 2012, at 4:55 PM, Shirkdog <shirkdog at gmail.com> wrote:

Configure sudo to allow you to run aide with the necessary privilege to
read the contents of the directory.

This depends on your version of sudo.

--
Michael Shirk
On Jul 5, 2012 4:25 PM, "Keith Constable" <kccricket at gmail.com> wrote:

> 0 down vote favorite
>
>
> I would like to use AIDE to help me verify the integrity of my home
> directory on
> a shared Linux system. I am not an administrator of this system. I have
> built
> and installed AIDE in my home directory and it seems to work properly.
>
> The sysadmin has set permissions on /home to 0751. This allows users to
> enter
> /home, but not list the contents of the directory (an ineffective security
> measure, in my opinion).
>
> For demonstration purposes, consider this overly simple aide.conf:
>
>   database_out=file:aide.db.new
>   /home/kccricket R
>
> Given this setup, running aide -i will output:
>
>   open_dir():Permission denied: /home
>
>   AIDE, version 0.15.1
>
>   ### AIDE database at aide.db.new initialized.
>
> The resulting AIDE database will be empty. If I run the same command with
> -V255
> (highest verbosity), I can see that AIDE examines every directory in / and
> then
> attempts to do the same with /home. It chokes because it can't list the
> contents
> of /home.
>
> Is there a way to make this work, short of asking the sysadmin to change
> the
> perms on /home?
>
> Regards,
>
> Keith Constable
>
> _______________________________________________
> Aide mailing list
> Aide at cs.tut.fi
> https://mailman.cs.tut.fi/mailman/listinfo/aide
>
_______________________________________________
Aide mailing list
Aide at cs.tut.fi
https://mailman.cs.tut.fi/mailman/listinfo/aide
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://mailman.cs.tut.fi/pipermail/aide/attachments/20120705/dd8ea1d5/attachment.html

More information about the Aide mailing list