Howdy, It purports to be a better file integrity checker than tripwire; it even supports using postgresql for very large needs.
There is a scant list of files suggested in the aide docs to generate the initial md5 records of these (critically) monitored files. [1] <snip> # Next decide what directories/files you want in the database /etc p+i+u+g #check only permissions, inode, user and group for etc /bin MyRule # apply the custom rule to the files in bin /sbin MyRule # apply the same custom rule to the files in sbin /var MyRule !/var/log/.* # ignore the log dir it changes too often !/var/spool/.* # ignore spool dirs as they change too often !/var/adm/utmp$ # ignore the file /var/adm/utmp <end/snip> I'd be curious if anyone has a more, gentoo-specific list tailored to royjrt gentoo servers or workstations, to generate the initial md5 records for a (newly installed) gentoo system. [1] http://aide.sourceforge.net/stable/manual.html TIA, James
