AIDE cron job

Support for security such as Firewalls and securing linux
Post Reply
User avatar
KernelOops
Posts: 428
Joined: 2013/12/18 15:04:03
Location: xfs file system

AIDE cron job

Post by KernelOops » 2019/12/26 16:42:03

In CentOS 7 we could easily setup the AIDE configuration (/etc/aide.conf) with "verbose=4" and then run a cronjob with "aide --check", if there was a failed check then the output would be emailed to the admin.

Unfortunately this stopped working in CentOS 8. The newer AIDE version always prints something even if all tests passed ok. Even if we set "verbose=0" it still prints something. The solution to the problem, is a new parameter that needs to be added to the configuration file: "report_quiet=yes"

Once that parameter is added, then verbose may be set to any value and output will be printed only on failed checks. Unfortunately, this parameter seems undocumented in CentOS 8.

Enjoy!
--
R.I.P. CentOS :cry:
--

Post Reply