Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > comp.os.linux.misc > #860
| From | Robert Riches <spamtrap42@jacob21819.net> |
|---|---|
| Newsgroups | comp.os.linux.misc |
| Subject | Re: Question about configuration management/system auditing. |
| Date | 2011-04-21 03:56 +0000 |
| Organization | none-at-all |
| Message-ID | <slrniqvan8.7sc.spamtrap42@one.localnet> (permalink) |
| References | <d3ac7897-3e4c-464b-9334-3a5374c7bde6@a11g2000pro.googlegroups.com> |
On 2011-04-20, Adam Sandler <corn29@excite.com> wrote:
> Hello:
>
> I just wondering what software everyone uses to audit their
> machines... to keep track of things like installed programs, versions,
> configurations, etc.
>
> I know Linux has a package manager and some things can be derived from
> scripting... but I'm looking for a total, centrall administered
> solution -- looking for a program or a suite of apps which takes the
> work out of CM -- NOT a disjointed solution of running doxens of
> different scripts for example.
>
> Also curious about if the application you use has an API and/or can
> work with multiple operating systems. I've tried to google these last
> two capabilities and haven't been able to find squat.
>
> Suggestions are greatly appreciated.
>
> Thanks!
Several years ago, I wrote two scripts. There's no rocket
science in them. You would want to write your own that would fit
how _you_ want to manage your system(s). My first script tracks
installed packages:
Do "rpm -qa" and put the output in a file.
For each line in that file, do "rpm -V $pkg" and append that
to a second file, with a header and trailer line so I can
tell what package had what mismatches.
I run the script very shortly after installation and then
immediately before and after any package update or installation
or any other significant system maintenance function. It lets me
see whether there are any unauthorized changes. Also, it lets me
see whether an update to one group of packages messed up
something else.
The other script goes along with an RCS repository of copies of
system configuration files and the output of several system
status commands. That also helps me watch for unauthorized
changes caused by package updates or etc. It also helps me
during installation of a new release, because I can use rcsdiff
to see what I changed when I customized the previous release and
what changed in the stock version between the previous release
and the current one.
HTH
--
Robert Riches
spamtrap42@jacob21819.net
(Yes, that is one of my email addresses.)
Back to comp.os.linux.misc | Previous | Next — Previous in thread | Next in thread | Find similar
Question about configuration management/system auditing. Adam Sandler <corn29@excite.com> - 2011-04-20 13:00 -0700 Re: Question about configuration management/system auditing. gazelle@shell.xmission.com (Kenny McCormack) - 2011-04-21 03:21 +0000 Re: Question about configuration management/system auditing. Robert Riches <spamtrap42@jacob21819.net> - 2011-04-21 03:56 +0000 Re: Question about configuration management/system auditing. Gregory Shearman <ZekeGregory@netscape.net> - 2011-05-06 07:42 +0000
csiph-web