[Aide] Protecting multiple containers
Marc Haber
mh+aide at zugschlus.de
Tue Apr 18 13:06:46 EEST 2023
On Mon, Apr 17, 2023 at 12:45:07PM +0200, Hannes von Haugwitz wrote:
> On Mon, Apr 17, 2023 at 10:21:27AM +0000, Rick van Rein wrote:
> > > Look at aide 0.18's --limit option, it might be what you want.
> > > Otherwise, please be more verbose in your wishes and give some simple
> > > exmples.
> >
> > Yes, that is almost exactly what I had in mind. Lovely!
> > (The name differs, to be precise, and you had the idea to make it a regex.)
>
> As Marc already mentioned, there is the --limit option (added in AIDE
> v0.16) to check/update only parts of the database. If you have a common
> rule set you might want to look at the RULE_PREFIX option (added in AIDE
> v0.18) for the @@include/@@x_include macro.
>
> Another option would be to create one database for each container and
> use the root_prefix config option to point to the container's root mount
> point in each AIDE run.
As this is a common usecase in containerized environments, do we already
have a "how to handle containers" chapter in our docs? If not, then we
could invite Rick to contribute to the docs. I am available for
cooperation in this matter.
Greetings
Marc
--
-----------------------------------------------------------------------------
Marc Haber | "I don't trust Computers. They | Mailadresse im Header
Leimen, Germany | lose things." Winona Ryder | Fon: *49 6224 1600402
Nordisch by Nature | How to make an American Quilt | Fax: *49 6224 1600421
More information about the Aide
mailing list