Several applications exist in this product space, but none of them are written in a scripting language and as a result require package installation or compilation.
This can cause some problems on systems where a compiler is not available or where administrative privileges have not been granted. Also current applications (tripwire, aide, integrit, etc) require configuring a file before they can be used. While detectChanges does not provide as much functionality, it is sufficient for most users.
Here are some key features of "detectChanges":
· provides a simple command line interface
· md5, sha1, permissions, and user/group ownership modifcation support
· permissions set to strict settings to prevent tampering
· ability to exclude directories
· good error checking
The following is the script syntax:
detectChanges [ -init | -diff ] directory ... directoryN -exclude dirA -exclude dirB
-help print this screen
-init initialize checksums
-diff detect checksums changes (must run -init first)
-exclude exclude these directories (must be included with init and diff)
-verbose show differences in files instead of only listing filename changes
-debug enable debug mode (most verbose, does not delete storage files)