[Aide] Permission denied when scanning readable directory below unreadable directory

Rami Lehti rammer at ipi.fi
Fri Jul 6 08:43:01 EEST 2012 

You could use chroot to your home directory. You need to change your config to reflect the change. 

Kind regards, 
Rami Lehti 
-- 
Lähetetty Android-puhelimestani K-9 Mail:lla.

Keith Constable <kccricket at gmail.com> kirjoitti:

Thanks for the response. Unfortunately, 
I am not an administrator of the system. I was only hoping to insure the integrity of my home dir.


Regards,


Keith Constable


On Jul 5, 2012, at 4:55 PM, Shirkdog <shirkdog at gmail.com> wrote:

Configure sudo to allow you to run aide with the necessary privilege to read the contents of the directory. 

This depends on your version of sudo.

--
Michael Shirk

On Jul 5, 2012 4:25 PM, "Keith Constable" <kccricket at gmail.com> wrote:

0 down vote favorite


I would like to use AIDE to help me verify the integrity of my home directory on
a shared Linux system. I am not an administrator of this system. I have built
and installed AIDE in my home directory and it seems to work properly.

The sysadmin has set permissions on /home to 0751. This allows users to enter
/home, but not list the contents of the directory (an ineffective security
measure, in my opinion).

For demonstration purposes, consider this overly simple aide.conf:

  database_out=file:aide.db.new
  /home/kccricket R

Given this setup, running aide -i will output:

  open_dir():Permission denied: /home

  AIDE, version 0.15.1

  ### AIDE database at aide.db.new initialized.

The resulting AIDE database will be empty. If I run the same command with -V255
(highest verbosity), I can see that AIDE examines every directory in / and then
attempts to do the same with /home. It chokes because it can't list the contents
of /home.

Is there a way to make this work, short of asking the sysadmin to change the
perms on /home?

Regards,

Keith Constable

_______________________________________________
Aide mailing list
Aide at cs.tut.fi
https://mailman.cs.tut.fi/mailman/listinfo/aide

_______________________________________________
Aide mailing list
Aide at cs.tut.fi
https://mailman.cs.tut.fi/mailman/listinfo/aide

-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://mailman.cs.tut.fi/pipermail/aide/attachments/20120706/6226c95e/attachment.html

More information about the Aide mailing list