A free replacement for tripwire. According to the source page ( http://sourceforge.net/projects/aide), this caught a break in at debian.org.I was more interested in the break in itself, which (according to http://lists.debian.org/debian-announce/debian-announce-2003/msg00003.html) was done with sniffed passwords. That can't be all there was to it: are we supposed to think they were using unencrypted telnet logins?? Or was this a case of laziness: using the same password in too many places, and someone sniffed an ftp session? Seems fishy or extremely careless to me. How can you be certain passwords were in fact sniffed? Is this just assumed because someone can't imagine any other way that the passwords could have been obtained? I don't know about you, but the explanation leaves me unstatisfied. But AIDE is worth looking at anyway.
If you found something useful today, please consider a small donation.
Got something to add? Send me email.
More Articles by Tony Lawrence © 2011-07-06 Tony Lawrence
Whenever the literary German dives into a sentence, that is the last you are going to see of him till he emerges on the other side of his Atlantic with his verb in his mouth. (Mark Twain)