Nikhil Sole
2015-05-06 17:25:42 UTC
Hi,
I'm new to aide and this list.
I'm setting up aide on a SuSE box and so far things look great.
I tweaked the default /etc/aide.conf file to add my specific needs but left the config parameters as is, esp.:
database=file:/var/lib/aide/aide.db
database_out=file:/var/lib/aide/aide.db.new
My concern is, after init, I have to move aide.db.new to aide.db
However, every subsequent check then tells me "aide.db.new" is removed and "aide.db" is added.
Thats the only change and but it raises false positives.
Is it recommended to ignore these two files from the checks? Or should the database_out be changed to "aide.db"? Or am I missing something basic here?
I sounds like a pretty generic issues but I couldnt find any mention on this or other mailing lists.
Thank you!
I'm new to aide and this list.
I'm setting up aide on a SuSE box and so far things look great.
I tweaked the default /etc/aide.conf file to add my specific needs but left the config parameters as is, esp.:
database=file:/var/lib/aide/aide.db
database_out=file:/var/lib/aide/aide.db.new
My concern is, after init, I have to move aide.db.new to aide.db
However, every subsequent check then tells me "aide.db.new" is removed and "aide.db" is added.
Thats the only change and but it raises false positives.
Is it recommended to ignore these two files from the checks? Or should the database_out be changed to "aide.db"? Or am I missing something basic here?
I sounds like a pretty generic issues but I couldnt find any mention on this or other mailing lists.
Thank you!