[unisog] Host Based IDS

Reg Quinton reggers at ist.uwaterloo.ca
Wed May 11 16:27:58 GMT 2005


Before installing an IDS on a Linux machine have you considered using the 
rpm tools? The command 'rpm -V -a' will verify the integrity of your system 
and makes a distinction between configuration files which will change and 
static files which should not. You can even ask it to verify small 
components of the OS.

Of course it's not fancy like the other packages mentioned, but it is there 
and can be effective at catching intrusions. 



More information about the unisog mailing list