This article describes in some detail how to install Samhain, the host based intrusion detection system. I am not going to ramble on about what host based intrusion detection is or why to use it, as there are plenty of articles already covering those subjects.
Read more »Host Based Intrusion Detection - Samhain
http://www.howtoforge.com –
Linux Security Notes - AIDE File Integrity
http://www.howtoforge.com –
AIDE (Advanced Intrusion Detection Enviornment) is a tool to check the file integrity. It is an opensource substitute for TRIPWIRE. It allows to take snapshots of all the major configuration files, binaries as well as libraries stats. It helps to find which binaries have been changed in case of compromisation of the system.
Read more »- Login to post comments