AIDE

About AIDE

AIDE (Advanced Intrusion Detection Environment) is a file and directory integrity checker.

What does it do?

It creates a database from the regular expression rules that it finds from the config file(s). Once this database is initialized it can be used to verify the integrity of the files. It has several message digest algorithms (see below) that are used to check the integrity of the file. All of the usual file attributes can also be checked for inconsistencies. It can read databases from older or newer versions. See the manual pages within the distribution for further info.

Features

Get AIDE

The current stable version of AIDE is 0.15.1 (manual page)
The current development version of AIDE is 0.16a2 (manual page)

Downstreams

AIDE is included in the following distributions. Please use the corresponding command to install AIDE. See also the output of whohas aide.

Please contact aide-devel if your distribution is not listed above.

Platforms

Basically AIDE runs on any modern Unix. Below is a table of platforms people has tested AIDE (compiled with standard options).

Platforms
PlatformAIDE versionMaintainerHints
Linux 2.615.xHannes von Haugwitznone
Solaris 10/OpenSolarisunknownwantedsee README
Mac OS X Leopardunknownwantedsee README
FreeBSD 2.2.8,3.4unknownwantednone
Unixware 7.0.1unknownwantednone
BSDi 4.1unknownwantednone
OpenBSD 2.6,3.0unknownwantednone
AIX 4.2unknownwantednone
TRU64 4.0xunknownwantednone
HP-UX 11iunknownwantednone
Cygwinunknownwantednone
The list is updated after each stable release.

If you run AIDE on a platform not listed above or currently not maintained, please consider to become an AIDE platform maintainer (see here for details).

Source

Both the source tarballs from sf.net and the tags of the git repository (since v0.16a1) are GnuPG-signed.
Since v0.16a2 the key used for signing is the GnuPG key of Hannes von Haugwitz (the current maintainer of AIDE).
The current public key can be downloaded from one of the well known PGP key servers.
The public keys used to sign the releases before v0.16a2 are available here or can also be downloaded from one of the well known PGP key servers.

The current key is:

pub   4096R/68E7B931 2011-06-28 [expires: 2017-06-26]
      Key fingerprint = 2BBB D30F AAB2 9B32 53BC  FBA6 F694 7DAB 68E7 B931
uid                  Hannes von Haugwitz <hannes@vonhaugwitz.com>
Please always verify the signature of a release before using it (see below).

Source tarballs

The source code of the current stable version can be downloaded here. Currently there are no mirrors.
Use the following command to verify the signature of the downloaded source tarball (see README file for details):
gpg --verify aide-<VERSION_NUMBER>.tar.gz.asc

You can find releases <=0.9 at ftp://ftp.cs.tut.fi/pub/src/gnu. Note that they are buggy and do not contain all the features.

GIT

Informations about the AIDE git repository can be found here.
Use the following command to verify the signature of a git tag (see README file for details):
git verify-tag v<VERSION_NUMBER>

Daily snapshot releases

A daily snapshot release can be downloaded here. Thanks to Richard van den Berg for providing the snapshots.

License

AIDE is licensed under GPL.

User support

If you have questions about the usage of AIDE please write to the mailing list for users.

FAQ

Frequently asked questions will be published here.

Bug reports

First, make sure the bug still exists in the current version from GIT. If it does, report the bug via the SourceForge Bug system.

Mailinglists

There are several AIDE related mailing lists:
aide-announce
Read only mailing list for announcements about rc and final releases or other project news.
aide
The user mailing list is maintained on cs.tut.fi. Thanks to Rami Lehti for maintaining it.
aide-devel
The developers mailing list. Development releases (alpha and beta releases) are announced on this list.
aide-tracker
Read only mailing list for notifications from SourceForge trackers for AIDE.
aide-commits
Read only mailing list for commits pushed to the git repository.

Development

Future plans

For a complete and more detailed list see the Todo file.

Support AIDE

If you want to help with the development of AIDE please contact the aide-devel mailing list.

AIDE platform maintainer

AIDE platform maintainers test if AIDE runs on their platform. We expect that a platform maintainer provides feedback about the status of at least one release candidate (if it compiles and runs without errors) on their platform.
Each platform maintainer must be subscribed to aide-devel to follow the development and should be subscribed to aide so he/she can help on platform specific issues.
If you want to become an AIDE platform maintainer for an existing (but unmaintained) or a new platform please contact the aide-devel mailing list.

Who's behind AIDE?

AIDE was originally written by Rami Lehti and Pablo Virolainen in 1999.
Between 2003 and 2010 it was maintained by Richard van den Berg.
In October 2010 Hannes von Haugwitz took over the project.
For the mail addresses of the authors please see the AUTHORS file.

Last Update: 04 May 2013
Get aide at SourceForge.net. Fast, secure and Free Open Source software downloads