[packages/aide.git] / aide.conf

#AIDE conf

database=file:/var/lib/aide/aide.db
database_out=file:/var/lib/aide/aide.db.new
gzip_dbout=no
warn_dead_symlinks=yes

   # Here are all the things we can check - these are the default rules 
   #
   #p:      permissions
   #i:      inode
   #n:      number of links
   #u:      user
   #g:      group
   #s:      size
   #b:      block count
   #m:      mtime
   #a:      atime
   #c:      ctime
   #S:      check for growing size
   #md5:    md5 checksum
   #sha1:   sha1 checksum
   #rmd160: rmd160 checksum
   #tiger:  tiger checksum
   #R:      p+i+n+u+g+s+m+c+md5
   #L:      p+i+n+u+g
   #E:      Empty group
   #>:      Growing logfile p+u+g+i+n+S

   # You can alse create custom rules - my home made rule definition goes like this 
   #
#   /etc p+i+u+g     #check only permissions, inode, user and group for etc
#   /bin MyRule      # apply the custom rule to the files in bin 
#   /sbin MyRule     # apply the same custom rule to the files in sbin 
#   /usr/bin MyRule
#   /usr/sbin MyRule
#   /var MyRule		
#   !/var/log/.*     # ignore the log dir it changes too often
#   !/var/spool/.*   # ignore spool dirs as they change too often
   
MyRule = p+i+n+u+g+s+b+m+c+md5+sha1
All=R+a+sha1+rmd160+tiger
Standard=s+p+u+g+c+md5+sha1
Min=s+p+u+g+c+sha1
Minetc=s+p+u+g+sha1
Exists=p+u+g

/boot Standard  
/lib Standard	  
/etc Minetc
/bin Standard  
/sbin MyRule
/usr/sbin MyRule
!/usr/tmp	 
#!/usr/local/man/whatis
#!/usr/lib/perl5/man/whatis
!/usr/share/man/whatis
!/usr/X11R6/man/whatis
/usr Standard
/usr/local/etc Min
/var Min  
/var/lib Exists
/var/lib/rpm Standard
!/var/lib/aide/aide.db.new$
!/var/tmp  
!/var/lock  
!/var/lost+found  
!/var/log  
!/var/spool		  
!/var/run
!/var/account
!/var/cache
!/var/mail
Commit	Line	Data
c873d5b1 GS	1	#AIDE conf
	2
	3	database=file:/var/lib/aide/aide.db
	4	database_out=file:/var/lib/aide/aide.db.new
b41a4cf2 SZ	5	gzip_dbout=no
b41a4cf2 SZ	6	warn_dead_symlinks=yes
c873d5b1 GS	7
	8	# Here are all the things we can check - these are the default rules
	9	#
	10	#p: permissions
	11	#i: inode
	12	#n: number of links
	13	#u: user
	14	#g: group
	15	#s: size
	16	#b: block count
	17	#m: mtime
	18	#a: atime
	19	#c: ctime
	20	#S: check for growing size
	21	#md5: md5 checksum
	22	#sha1: sha1 checksum
	23	#rmd160: rmd160 checksum
	24	#tiger: tiger checksum
	25	#R: p+i+n+u+g+s+m+c+md5
	26	#L: p+i+n+u+g
	27	#E: Empty group
	28	#>: Growing logfile p+u+g+i+n+S
	29
	30	# You can alse create custom rules - my home made rule definition goes like this
	31	#
	32	# /etc p+i+u+g #check only permissions, inode, user and group for etc
	33	# /bin MyRule # apply the custom rule to the files in bin
	34	# /sbin MyRule # apply the same custom rule to the files in sbin
	35	# /usr/bin MyRule
	36	# /usr/sbin MyRule
	37	# /var MyRule
	38	# !/var/log/.* # ignore the log dir it changes too often
	39	# !/var/spool/.* # ignore spool dirs as they change too often
	40
	41	MyRule = p+i+n+u+g+s+b+m+c+md5+sha1
	42	All=R+a+sha1+rmd160+tiger
	43	Standard=s+p+u+g+c+md5+sha1
	44	Min=s+p+u+g+c+sha1
	45	Minetc=s+p+u+g+sha1
c2c46841 SZ	46	Exists=p+u+g
c2c46841 SZ	47
c873d5b1 GS	48	/boot Standard
	49	/lib Standard
	50	/etc Minetc
	51	/bin Standard
	52	/sbin MyRule
	53	/usr/sbin MyRule
	54	!/usr/tmp
7006311c PG	55	#!/usr/local/man/whatis
7006311c PG	56	#!/usr/lib/perl5/man/whatis
c873d5b1 GS	57	!/usr/share/man/whatis
	58	!/usr/X11R6/man/whatis
	59	/usr Standard
	60	/usr/local/etc Min
	61	/var Min
c2c46841	62	/var/lib Exists
c873d5b1	63	/var/lib/rpm Standard
c27a802f	64	!/var/lib/aide/aide.db.new$
c873d5b1 GS	65	!/var/tmp
	66	!/var/lock
	67	!/var/lost+found
	68	!/var/log
	69	!/var/spool
	70	!/var/run
	71	!/var/account
c873d5b1 GS	72	!/var/cache
c873d5b1 GS	73	!/var/mail