David McGuffey wrote: > Starting with a fresh load and after I finish hardening the load > following the Center for Internet Security (CIS) guidance, I'm wondering > whether AIDE or OSSEC would be a better intrusion detection system. <snip> We've just started with OSSEC at work. I'm told they'd tried AIDE before I started, and it gave a *humongous* number of warnings. OSSEC is bad enough, when I do a yum update, for example. mark -- "This country has medicalized social problems. Instead of being concerned about widescale unemployment, underemployment, and job outsourcing, people act as if the problem were nothing more than the victims being depressed, as if depression always took place in a vacuum." - M. DuPree