[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

has anyone built a 'tripwire'-like ids detection system using svn's or other scm tools?

From: Urs Rau <urs.rau_at_uk.om.org>
Date: 2006-01-17 15:30:36 CET

Here is another whacky 'off the wall' idea. And I promise that is the third
and last of those sort of open ended questions, to this list.

Has anyone thought off or tried building a set of scripts that would allow
an admin to monitor and track remote unix servers (in my case mostly plesk
webservers) and the files on them. I would be mainly interested in the
actual OS files themselves, and maybe start watchign the html content of the
websites on it as well, but that wouldn't be the primary use for this tool.

The main aim would be to be able to easily and quickly see when a file has
changed and what the exact change was (for config or text fles anyway). I
would hope these script(s) would also allow me to monitor both binaries or
executables and store such things like permissions as well as checksums as
well as of course specified unix configuration text files.

In some respects using scm tools like svn seems to be a much more appealing
proposition to me, than using a tool like the free open sourced old version
of 'tripwire'.

The main advantage I can see is that with svn or any other scm tool used for
this task, the admin would have the additonal help of having an exact record
 of what the file used to look like and what exactly has changed. And not
jsut be told this has changed and then have to go figure why.

And 'restores' or fixes fo problems could be done without having to go
through the often cumbersome and long path of restoring from tape, or worse
offsite tar file.

Any thoughts?

PS: I am hanging around on as BigBear @ #svn at irc.freenode.net if you want
to brainstorm these ideas or bounce comments around, or simply tell me off
for asking these borderline to off-topic questions on the mailing list. ;-)

Urs Rau						
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Tue Jan 17 18:20:00 2006

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.