On Mon, 03 Jul 2006 19:00:38 EDT, Bill Davidsen said: > [email protected] wrote: > >There's other issues as well. Why do people run 'tripwire' on boxes that > >have RAID on them? > What has RAID got to do with detecting hacking? Actually, I've had tripwire detect more *accidental* changes due to buggy software than I have had it detect actual hacking. Oh, and it's good at catching unintended config changes - I started using tripwire after I fat-fingered a script, and the machine backed up to /dev/null instead of /dev/rmt0. In fact, I've never actually had tripwire detect actual hacking.
Attachment:
pgphUkQ7bTy8G.pgp
Description: PGP signature
- Follow-Ups:
- Re: ext4 features
- From: Bill Davidsen <[email protected]>
- Re: ext4 features
- References:
- ext4 features
- From: Thomas Glanzmann <[email protected]>
- Re: ext4 features
- From: Tomasz Torcz <[email protected]>
- Re: ext4 features
- From: Thomas Glanzmann <[email protected]>
- Re: ext4 features
- From: Tomasz Torcz <[email protected]>
- Re: ext4 features
- From: Helge Hafting <[email protected]>
- Re: ext4 features
- From: Bill Davidsen <[email protected]>
- Re: ext4 features
- From: [email protected]
- Re: ext4 features
- From: Bill Davidsen <[email protected]>
- ext4 features
- Prev by Date: [BUG] scsi/io-elevator held lock freed.
- Next by Date: Re: [Hdaps-devel] Generic interface for accelerometers (AMS, HDAPS, ...)
- Previous by thread: Re: ext4 features
- Next by thread: Re: ext4 features
- Index(es):
 |