Re: MD5 sums of individual files?

To: <debian-security@lists.debian.org>
Subject: Re: MD5 sums of individual files?
From: "Dan Rowles" <daniel.rowles@weboutcome.com>
Date: Thu, 29 Mar 2001 21:01:47 +0100
Message-id: <[🔎] 020f01c0b88b$27e18570$8100a8c0@internal.weboutcome.com>
References: <[🔎] Pine.LNX.4.21.0103291248240.12031-100000@www.skyjammer.com>

> That is something that I hadn't considered.  The cracker could potentially
> unmount /var/lib/aide/ro (where I have the floppy containing the AIDE
> checksums mounted) and place in that directory a newly-generated list of
> checksums, which AIDE would read the next time it runs.  When I got the
> report in my inbox, it would look like everything is fine.  IMHO,
definitely
> a hole that's there regardless of whether I use a RO floppy or a CD-R.
>

Sometimes old fashioned solutions are the best. Print your log files on an
old Dot-Matrix Printer. Costs very little, attacker can't screw with them
after breaking in, and you can read them in the bath :)

Dan

Reply to:

References:
- RE: MD5 sums of individual files?
  - From: Kenneth Pronovici <pronovic@skyjammer.com>

Prev by Date: Re: MD5 sums of individual files?
Next by Date: Re: MD5 sums of individual files?
Previous by thread: RE: MD5 sums of individual files?
Next by thread: Re: MD5 sums of individual files?
Index(es):
- Date
- Thread