2004/11/07 AIDE

Some material is very old and may be incorrect today

© November 2004 Tony Lawrence

A free replacement for tripwire. According to the source page ( http://sourceforge.net/projects/aide), this caught a break in at debian.org.

I was more interested in the break in itself, which (according to http://lists.debian.org/debian-announce/debian-announce-2003/msg00003.html) was done with sniffed passwords. That can't be all there was to it: are we supposed to think they were using unencrypted telnet logins?? Or was this a case of laziness: using the same password in too many places, and someone sniffed an ftp session? Seems fishy or extremely careless to me. How can you be certain passwords were in fact sniffed? Is this just assumed because someone can't imagine any other way that the passwords could have been obtained? I don't know about you, but the explanation leaves me unstatisfied. But AIDE is worth looking at anyway.

If you found something useful today, please consider a small donation.

Got something to add? Send me email.

---

Have you tried Searching this site?

This is a Unix/Linux resource website. It contains technical articles about Unix, Linux and general computing related subjects, opinion, news, help files, how-to's, tutorials and more.

Contact us