Good Morning,
Thanx to the folks that provided usefull information. Some of your
feedback was quite helpfull, and much appreciated. My requirements
for research were fairly broad: (1) The capability to generate and
compare mathematical hash's of files and/or directories; (2) the
ability to store system specific configuration meta-data and compare;
(3) the ability to store ACL meta-data and compare. Exactly WHAT
files, directories, etc...to monitor and comply with the requirements
against was not specified. Thus my questions.
"TripWire" (to the best of my understanding) is both a commercial
product offering, and a SourceForge Open Source tool that has the
capability of computing, storing and comparing a mathematical hash of
a file, directory of BLOB object.
Not so many thanx to the folks that superior attitude, thinly veiled
as knowledge. It is this behavior that gives the technologist such a
bad reputation to the business side of the house.
|
|
0
|
|
|
|
Reply
|
 rfc2307 (2)
|
3/24/2008 6:53:30 PM |
|
rfc2307@gmail.com wrote:
> Good Morning,
>
> Thanx to the folks that provided usefull information. Some of your
> feedback was quite helpfull, and much appreciated. My requirements
> for research were fairly broad: (1) The capability to generate and
> compare mathematical hash's of files and/or directories; (2) the
> ability to store system specific configuration meta-data and compare;
> (3) the ability to store ACL meta-data and compare. Exactly WHAT
> files, directories, etc...to monitor and comply with the requirements
> against was not specified. Thus my questions.
>
> "TripWire" (to the best of my understanding) is both a commercial
> product offering, and a SourceForge Open Source tool that has the
> capability of computing, storing and comparing a mathematical hash of
> a file, directory of BLOB object.
>
> Not so many thanx to the folks that superior attitude, thinly veiled
> as knowledge. It is this behavior that gives the technologist such a
> bad reputation to the business side of the house.
>
Since you explained exactly none of this in your original post, I
think the superior attitude was entirely appropriate.
--
John Santos
Evans Griffiths & Hart, Inc.
781-861-0670 ext 539
|
|
|
0
|
|
|
|
Reply
|
 john5 (550)
|
3/24/2008 8:57:44 PM
|
|
John Santos wrote:
> rfc2307@gmail.com wrote:
>
>> Good Morning,
>>
>> Thanx to the folks that provided usefull information. Some of your
>> feedback was quite helpfull, and much appreciated. My requirements
>> for research were fairly broad: (1) The capability to generate and
>> compare mathematical hash's of files and/or directories; (2) the
>> ability to store system specific configuration meta-data and compare;
>> (3) the ability to store ACL meta-data and compare. Exactly WHAT
>> files, directories, etc...to monitor and comply with the requirements
>> against was not specified. Thus my questions.
>>
>> "TripWire" (to the best of my understanding) is both a commercial
>> product offering, and a SourceForge Open Source tool that has the
>> capability of computing, storing and comparing a mathematical hash of
>> a file, directory of BLOB object.
>>
>> Not so many thanx to the folks that superior attitude, thinly veiled
>> as knowledge. It is this behavior that gives the technologist such a
>> bad reputation to the business side of the house.
>>
>
>
> Since you explained exactly none of this in your original post, I
> think the superior attitude was entirely appropriate.
>
I think it would have been approriate to provide this link:
How To Ask Questions The Smart Way
http://catb.org/~esr/faqs/smart-questions.html
|
|
|
0
|
|
|
|
Reply
|
 rgilbert88 (4359)
|
3/24/2008 9:29:38 PM
|
|
In article <39288283-1d6f-4af5-a87f-694ab5af9197@e23g2000prf.googlegroups.com>, rfc2307@gmail.com writes:
> Thanx to the folks that provided usefull information. Some of your
> feedback was quite helpfull, and much appreciated. My requirements
> for research were fairly broad: (1) The capability to generate and
> compare mathematical hash's of files and/or directories; (2) the
> ability to store system specific configuration meta-data and compare;
As you saw from the checklists at the URLs I posted, LJK/Security
does those two steps.
> (3) the ability to store ACL meta-data and compare. Exactly WHAT
> files, directories, etc...to monitor and comply with the requirements
> against was not specified. Thus my questions.
Devising general rules for ACL contents is a tough task, whereas
simply recording the values and looking for changes is trivial
(SHOW SECURITY/OUTPUT=<filespec>, followed by DIFFERENCES <filespec>).
What files are worthy of your consideration depends entirely on the
use to which the target system is put. For a production system,
hashes of all executable image should remain invariant as should
hashes of all command procedures. For a development system, that
would be an intolerable set of rules.
But looking for changes in files is really useless on a VMS system
unless you have first taken care of all the possible configuration
errors that might enable an unauthorized person to make changes.
> "TripWire" (to the best of my understanding) is both a commercial
> product offering, and a SourceForge Open Source tool that has the
> capability of computing, storing and comparing a mathematical hash of
> a file, directory of BLOB object.
I have never heard of someone using that on VMS. Perhaps someone else
has.
|
|
|
0
|
|
|
|
Reply
|
 Kilgallen (2737)
|
3/24/2008 10:45:12 PM
|
|
rfc2307@gmail.com wrote:
>
> Good Morning,
>
> Thanx to the folks that provided usefull information. Some of your
> feedback was quite helpfull, and much appreciated. My requirements
> for research were fairly broad: (1) The capability to generate and
> compare mathematical hash's of files and/or directories; (2) the
> ability to store system specific configuration meta-data and compare;
> (3) the ability to store ACL meta-data and compare. Exactly WHAT
> files, directories, etc...to monitor and comply with the requirements
> against was not specified. Thus my questions.
>
> "TripWire" (to the best of my understanding) is both a commercial
> product offering, and a SourceForge Open Source tool that has the
> capability of computing, storing and comparing a mathematical hash of
> a file, directory of BLOB object.
>
> Not so many thanx to the folks that superior attitude, thinly veiled
> as knowledge. It is this behavior that gives the technologist such a
> bad reputation to the business side of the house.
As Larry pointed out, without knowing what "Tripwire" might be, it was a
crap-shoot at best how to answer such a question.
Best to make sure "everyone" knows what you're talking about by offering
the definition or, at the very least, enough supporting context for
someone to draw a reasonably intelligent inference.
David J Dachtera
(formerly dba) DJE Systems
|
|
|
0
|
|
|
|
Reply
|
 djesys.no (1536)
|
3/25/2008 11:59:34 PM
|
|
|
4 Replies
55 Views
(page loaded in 0.112 seconds)
Similiar Articles: scripting a telnet session to VMS - comp.os.vms... am happy with what I have right now, thanks for the help ... you'd be so lax with system security to have username and password to a VMS ... " Hacking is the general ... How to disable outgoing FTP service? - comp.os.vmsAssuming that ultimate security is not ... in updated sales file to both VMS servers. > > Both machine had been sync with ... will request for one. Any help? Thanks. List available files in web directory? - comp.lang.java.help ...... HTTP server which serves the URL in question ... and precautions this is a huge security hole ... need help with corrupt MAIL.MAI file - comp.os.vms List available files in web ... another simple question - comp.emacsYou get help with `C-h i', that is, first press ... simple questions - comp.lang.java.security ... I have also another question ... Thanx - comp.lang.java ... Proxy, SSL, and ... Intel Visual Fortran Error Message - comp.lang.fortranI would bet that the problem has to to with either VMS ... Steve, thank you for your help with this immediate ... the caller and callee it's not possible in general ... getting inside X-10 DS7000 controller - comp.home.automation ...... Post Question ... DS7000 is compatible with the components in the Radio Shack Security System 49-1000. Thanks for any help ... box inside to do my general ... How tu use multivalent pdf tools - comp.text.pdfmany many thanks, last question (I hope in future rest you mercy of your help on this ... text.pdf... in general ... do ... need help with corrupt MAIL.MAI file - comp.os.vms ... Replacement of SCSI tape drives and loaders - comp.os.vms ...QUESTION: Can I do this live ? My experience ... Thanks for the help on all that, to everyone who ... SCSI tape drives and loaders - comp.os.vms ... Adaptec 1542C with ... VMWare Player running SCO 5.0.6? - comp.unix.sco.miscIn general, do not try to optimize ... with 5.0.7 (and 5.0.6) with SMP. One comment that seems germane is the question as to ... I don't have any experience with VMs ... Looking for a solution where VPN Client access can use site to ...... equipment would best be used for this? Thanks in ... want to use anyconnect client (and ssl vpn in general ... Help with Cisco VPN client 4.0.3 (upgraded from 3.6.0 ... VMs - few general questions - Microsoft Corporation: Software ...VMs - few general questions ... Hello, I want to ask few questions that came during my work with Hyper-V VMs... ... still not clear for me. Thanks, ... VMs few general questions - Microsoft Corporation: Software ...VMs few general questions ... Hello, I want to ask few questions that came during my work with Hyper-V VMs... ... SID of the cloned VM? Thanks, ... 7/25/2012 5:45:18 AM
|
Search |
Post Question |
Groups |
Stream |
About |
Register
10 followers. 