|
Packit |
762fc5 |
#
|
|
Packit |
762fc5 |
# AIDE @VERSION@
|
|
Packit |
762fc5 |
#
|
|
Packit |
762fc5 |
# example configuration file
|
|
Packit |
762fc5 |
#
|
|
Packit |
762fc5 |
# IMPORTANT NOTE!! PLEASE READ
|
|
Packit |
762fc5 |
#
|
|
Packit |
762fc5 |
# This configuration file checks the integrity of the
|
|
Packit |
762fc5 |
# AIDE package.
|
|
Packit |
762fc5 |
#
|
|
Packit |
762fc5 |
# This file is not intended to be used as the primary aide.conf file for
|
|
Packit |
762fc5 |
# your system. This file is intended to be a showcase for different
|
|
Packit |
762fc5 |
# features for aide.conf file.
|
|
Packit |
762fc5 |
#
|
|
Packit |
762fc5 |
# WRITE YOUR OWN CONFIGURATION FILE AND UNDERSTAND WHAT YOU ARE WRITING
|
|
Packit |
762fc5 |
#
|
|
Packit |
762fc5 |
#
|
|
Packit |
762fc5 |
# Default values for the parameters are in comments before the
|
|
Packit |
762fc5 |
# corresponding line.
|
|
Packit |
762fc5 |
#
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
@@define TOPDIR @abs_top_srcdir@
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
@@ifndef TOPDIR
|
|
Packit |
762fc5 |
@@define TOPDIR /
|
|
Packit |
762fc5 |
@@endif
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
@@ifdef DEBUG
|
|
Packit |
762fc5 |
@@define DEBUG ison
|
|
Packit |
762fc5 |
@@undef NOT_DEBUG
|
|
Packit |
762fc5 |
@@else
|
|
Packit |
762fc5 |
@@define NOT_DEBUG true
|
|
Packit |
762fc5 |
@@undef DEBUG
|
|
Packit |
762fc5 |
@@endif
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
@@ifhost korppi
|
|
Packit |
762fc5 |
@@define KORPPI yes
|
|
Packit |
762fc5 |
@@endif
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
@@ifnhost ftp
|
|
Packit |
762fc5 |
@@define BUMMER true
|
|
Packit |
762fc5 |
@@endif
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
# The location of the database to be read.
|
|
Packit |
762fc5 |
#database=file:aide.db
|
|
Packit |
762fc5 |
database=file:@@{TOPDIR}/doc/aide.db
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
# The location of the database to be written.
|
|
Packit |
762fc5 |
#database_out=sql:host:port:database:login_name:passwd:table
|
|
Packit |
762fc5 |
#database_out=file:aide.db.new
|
|
Packit |
762fc5 |
database_out=file:aide.db.new
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
# Whether to gzip the output to database
|
|
Packit |
762fc5 |
# gzip_dbout=no
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
#verbose=5
|
|
Packit |
762fc5 |
verbose=20
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
#report_url=stdout
|
|
Packit |
762fc5 |
#other possibilities
|
|
Packit |
762fc5 |
#report_url=stderr
|
|
Packit |
762fc5 |
#NOT IMPLEMENTED report_url=mailto:root@foo.com
|
|
Packit |
762fc5 |
#report_url=file:/tmp/some_file.txt
|
|
Packit |
762fc5 |
#report_url=syslog:LOG_AUTH
|
|
Packit |
762fc5 |
report_url=stdout
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
# @@{TOPDIR} is replaced with @abs_top_srcdir@ when
|
|
Packit |
762fc5 |
# read by aide.
|
|
Packit |
762fc5 |
#p: permissions
|
|
Packit |
762fc5 |
#ftype: file type
|
|
Packit |
762fc5 |
#i: inode
|
|
Packit |
762fc5 |
#n: number of links
|
|
Packit |
762fc5 |
#l: link name
|
|
Packit |
762fc5 |
#u: user
|
|
Packit |
762fc5 |
#g: group
|
|
Packit |
762fc5 |
#s: size
|
|
Packit |
762fc5 |
#b: block count
|
|
Packit |
762fc5 |
#m: mtime
|
|
Packit |
762fc5 |
#a: atime
|
|
Packit |
762fc5 |
#c: ctime
|
|
Packit |
762fc5 |
#S: check for growing size
|
|
Packit |
762fc5 |
#I: ignore changed filename
|
|
Packit |
762fc5 |
#md5: md5 checksum
|
|
Packit |
762fc5 |
#sha1: sha1 checksum
|
|
Packit |
762fc5 |
#sha256: sha256 checksum
|
|
Packit |
762fc5 |
#sha512: sha512 checksum
|
|
Packit |
762fc5 |
#rmd160: rmd160 checksum
|
|
Packit |
762fc5 |
#tiger: tiger checksum
|
|
Packit |
762fc5 |
#haval: haval checksum
|
|
Packit |
762fc5 |
#crc32: crc32 checksum
|
|
Packit |
762fc5 |
#R: p+ftype+i+l+n+u+g+s+m+c+md5
|
|
Packit |
762fc5 |
#L: p+ftype+i+l+n+u+g
|
|
Packit |
762fc5 |
#E: Empty group
|
|
Packit |
762fc5 |
#>: Growing file p+ftype+l+u+g+i+n+S
|
|
Packit |
762fc5 |
#The following are available if you have mhash support enabled:
|
|
Packit |
762fc5 |
#gost: gost checksum
|
|
Packit |
762fc5 |
#whirlpool: whirlpool checksum
|
|
Packit |
762fc5 |
#The following are available and added to the default groups R, L and >
|
|
Packit |
762fc5 |
#only when explicitly enabled using configure:
|
|
Packit |
762fc5 |
#acl: access control list
|
|
Packit |
762fc5 |
#selinux SELinux security context
|
|
Packit |
762fc5 |
#xattrs: extended file attributes
|
|
Packit |
762fc5 |
#e2fsattrs: file attributes on a second extended file system
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
# Rule definition
|
|
Packit |
762fc5 |
All=R+a+sha1+rmd160+sha256+sha512+tiger@aideextragroups@
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
# report_ignore_added_attrs, report_ignore_removed_attrs and
|
|
Packit |
762fc5 |
# report_ignore_changed_attrs are special rule definitions
|
|
Packit |
762fc5 |
# the addition, removal or change of the attributes listed are not displayed in
|
|
Packit |
762fc5 |
# the final report
|
|
Packit |
762fc5 |
#report_ignore_added_attrs = b
|
|
Packit |
762fc5 |
#report_ignore_removed_attrs = b
|
|
Packit |
762fc5 |
#report_ignore_changed_attrs = b
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
# report_force_attrs is a special rule definition
|
|
Packit |
762fc5 |
# the attributes listed in it are always displayed for changed files in the
|
|
Packit |
762fc5 |
# final report. If an attribute is both ignored and forced the attribute is not
|
|
Packit |
762fc5 |
# considered for file change but printed in the final report if the file has
|
|
Packit |
762fc5 |
# been otherwise changed.
|
|
Packit |
762fc5 |
#report_force_attrs = u+g
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
# Attributes that can be used to verify that aide in intact
|
|
Packit |
762fc5 |
# by people that have downloaded it from the web.
|
|
Packit |
762fc5 |
# Let's be paranoid
|
|
Packit |
762fc5 |
Norm=l+s+n+b+md5+sha1+rmd160+sha256+sha512+tiger@aideextragroups@
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
# The commented rules are just examples the rest are used by
|
|
Packit |
762fc5 |
# make check
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
#Selection regexp rule
|
|
Packit |
762fc5 |
@@{TOPDIR}/.* Norm
|
|
Packit |
762fc5 |
#Equals selection only the directory doc is checked and not it's children
|
|
Packit |
762fc5 |
#=@@{TOPDIR}/doc L
|
|
Packit |
762fc5 |
#Negative selection no rule is necessary but ignored if there
|
|
Packit |
762fc5 |
!@@{TOPDIR}/.*~
|
|
Packit |
762fc5 |
!@@{TOPDIR}/src/.*\.o
|
|
Packit |
762fc5 |
!@@{TOPDIR}/src/(aide|core)$ L
|
|
Packit |
762fc5 |
!@@{TOPDIR}/.*RCS
|
|
Packit |
762fc5 |
!@@{TOPDIR}/.*CVS
|
|
Packit |
762fc5 |
!@@{TOPDIR}/.*aide\.db.*
|
|
Packit |
762fc5 |
!@@{TOPDIR}/.*\.cvsignore.*
|
|
Packit |
762fc5 |
# @@{TOPDIR}/doc/.* All
|
|
Packit |
762fc5 |
|