Better Securing The Frontlines: Leveraging Ansible Automation Platform And Aide For DoD File Integrity
Red Hat News, Thursday, August 17,2023
A lot of system administrators within the Department of Defense already use the Advanced Intrusion Detection Environment (AIDE). This is mainly because of a Security Technical Implementation Guide (STIG) that states that a file integrity checker must be configured to verify extended file attributes.
There are a lot of features to AIDE, and the combination of using AIDE with Red Hat Ansible Automation Platform gives you the ability to automate important corrections to your system configuration.
Telling AIDE what to check
AIDE can be configured to check multiple file and folder attributes. For this article, I concentrate on the permissions (p), user (u), group (g), SELinux context (selinux) and SHA512 checksum (sha512).