[Aide] Renaming aide.db.new cause false positives
Nikhil Sole
nsole at hotmail.com
Wed May 6 20:25:42 EEST 2015
Hi,
I'm new to aide and this list.
I'm setting up aide on a SuSE box and so far things look great.
I tweaked the default /etc/aide.conf file to add my specific needs but left the config parameters as is, esp.:
database=file:/var/lib/aide/aide.db
database_out=file:/var/lib/aide/aide.db.new
My concern is, after init, I have to move aide.db.new to aide.db
However, every subsequent check then tells me "aide.db.new" is removed and "aide.db" is added.
Thats the only change and but it raises false positives.
Is it recommended to ignore these two files from the checks? Or should the database_out be changed to "aide.db"? Or am I missing something basic here?
I sounds like a pretty generic issues but I couldnt find any mention on this or other mailing lists.
Thank you!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.cs.tut.fi/pipermail/aide/attachments/20150506/f921039a/attachment.html>
More information about the Aide
mailing list