Knowledge

Advanced Intrusion Detection Environment

Source 📝

245: 338: 91: 46: 221:
When the administrator wants to run an integrity test, the administrator places the previously built database in an accessible place and commands AIDE to compare the database against the real status of the system. Should a change have happened to the computer between the snapshot creation and the
217:
AIDE takes a "snapshot" of the state of the system, register hashes, modification times, and other data regarding the files defined by the administrator. This "snapshot" is used to build a database that is saved and may be stored on an external device for safekeeping.
300: 222:
test, AIDE will detect it and report it to the administrator. Alternatively, AIDE can be configured to run on a schedule and report changes daily using scheduling technologies such as
304: 233:
This is mainly useful for security purposes, given that any malicious change which could have happened inside the system would be reported by AIDE.
258: 129: 348: 383: 373: 202: 358: 190: 123: 378: 70: 36: 183: 142: 189:
The primary developers are named as Rami Lehti and Pablo Virolainen, who are both associated with the
104: 45: 250: 8: 90: 337: 179: 353: 278: 271: 137: 111: 367: 175: 301:"Using Aide on Ubuntu 12.04 LTS (Precise Pangolin) and Debian 7 (Wheezy)" 194: 22: 198: 116: 206: 343: 227: 79: 223: 331: 153: 240: 197:security consultant. The project is used on many 193:, along with Richard van den Berg, an independent 365: 259:Host-based intrusion detection system comparison 336: 89: 44: 168:Advanced Intrusion Detection Environment 17:Advanced Intrusion Detection Environment 359:OpenSUSE Security Guide chapter on AIDE 226:, which is the default behavior of the 366: 13: 14: 395: 323: 243: 212: 191:Tampere University of Technology 182:licensed under the terms of the 174:) was initially developed as a 293: 1: 354:AIDE reference in Ubuntu wiki 264: 27:Rami Lehti, Pablo Virolainen 7: 384:Intrusion detection systems 236: 10: 400: 374:Computer security software 201:systems as an inexpensive 184:GNU General Public License 143:GNU General Public License 148: 136: 122: 110: 100: 69: 65: 35: 31: 21: 379:Unix security software 52:; 4 months ago 251:Free Software portal 349:AIDE online manpage 344:AIDE Github project 18: 209:detection system. 16: 307:on 9 January 2013 164: 163: 391: 340: 335: 334: 332:Official website 317: 316: 314: 312: 303:. Archived from 297: 291: 290: 288: 286: 279:"Release 0.18.8" 275: 253: 248: 247: 246: 178:replacement for 160: 157: 155: 112:Operating system 93: 88: 85: 83: 81: 60: 58: 53: 49: 48: 19: 15: 399: 398: 394: 393: 392: 390: 389: 388: 364: 363: 330: 329: 326: 321: 320: 310: 308: 299: 298: 294: 284: 282: 277: 276: 272: 267: 249: 244: 242: 239: 215: 152: 96: 78: 61: 56: 54: 51: 43: 12: 11: 5: 397: 387: 386: 381: 376: 362: 361: 356: 351: 346: 341: 325: 324:External links 322: 319: 318: 292: 269: 268: 266: 263: 262: 261: 255: 254: 238: 235: 230:AIDE package. 214: 211: 162: 161: 150: 146: 145: 140: 134: 133: 126: 120: 119: 114: 108: 107: 102: 98: 97: 95: 94: 75: 73: 67: 66: 63: 62: 41: 39: 37:Stable release 33: 32: 29: 28: 25: 9: 6: 4: 3: 2: 396: 385: 382: 380: 377: 375: 372: 371: 369: 360: 357: 355: 352: 350: 347: 345: 342: 339: 333: 328: 327: 306: 302: 296: 280: 274: 270: 260: 257: 256: 252: 241: 234: 231: 229: 225: 219: 213:Functionality 210: 208: 204: 200: 196: 192: 187: 185: 181: 177: 173: 169: 159: 151: 147: 144: 141: 139: 135: 131: 127: 125: 121: 118: 115: 113: 109: 106: 103: 99: 92: 87: 77: 76: 74: 72: 68: 64: 47: 40: 38: 34: 30: 26: 24: 20: 309:. Retrieved 305:the original 295: 283:. Retrieved 281:. 9 May 2024 273: 232: 220: 216: 205:control and 188: 171: 167: 165: 50:/ 9 May 2024 23:Developer(s) 368:Categories 265:References 128:Security ( 101:Written in 71:Repository 57:9 May 2024 199:Unix-like 117:Unix-like 311:12 March 237:See also 203:baseline 180:Tripwire 207:rootkit 186:(GPL). 156:.github 149:Website 138:License 55: ( 285:20 May 228:Debian 80:github 42:0.18.8 195:Dutch 86:/aide 84:/aide 313:2013 287:2024 224:cron 176:free 172:AIDE 166:The 154:aide 130:HIDS 124:Type 82:.com 158:.io 370:: 315:. 289:. 170:( 132:) 105:C 59:)

Index

Developer(s)
Stable release
Edit this on Wikidata
Repository
github.com/aide/aide
Edit this at Wikidata
C
Operating system
Unix-like
Type
HIDS
License
GNU General Public License
aide.github.io
free
Tripwire
GNU General Public License
Tampere University of Technology
Dutch
Unix-like
baseline
rootkit
cron
Debian
Free Software portal
Host-based intrusion detection system comparison
"Release 0.18.8"
"Using Aide on Ubuntu 12.04 LTS (Precise Pangolin) and Debian 7 (Wheezy)"
the original
Official website

Text is available under the Creative Commons Attribution-ShareAlike License. Additional terms may apply.