/usr/share/doc/samhain/manual.html/checking-userfiles.html

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN""http://www.w3.org/TR/html4/loose.dtd">
<HTML
><HEAD
><TITLE
>Checking for user files</TITLE
><META
NAME="GENERATOR"
CONTENT="Modular DocBook HTML Stylesheet Version 1.79"><LINK
REL="HOME"
TITLE="The Samhain Host Integrity Monitoring System"
HREF="index.html"><LINK
REL="UP"
TITLE="Configuration file syntax and options"
HREF="the-configuration-file.html"><LINK
REL="PREVIOUS"
TITLE="Checking for mount options"
HREF="checking-mounts.html"><LINK
REL="NEXT"
TITLE="Checking for hidden/fake/required processes"
HREF="checking-processes.html"><LINK
REL="STYLESHEET"
TYPE="text/css"
HREF="./docbook.css"></HEAD
><BODY
CLASS="SECT1"
BGCOLOR="#FFFFFF"
TEXT="#000000"
LINK="#0000FF"
VLINK="#840084"
ALINK="#0000FF"
><!--#if expr="! ($HTTP_USER_AGENT = /MSIE/)"--><!--#include virtual="/resources/ssi/header.html"--><!--#endif --><DIV
CLASS="NAVHEADER"
><TABLE
SUMMARY="Header navigation table"
WIDTH="100%"
BORDER="0"
CELLPADDING="0"
CELLSPACING="0"
><TR
><TH
COLSPAN="3"
ALIGN="center"
>The Samhain Host Integrity Monitoring System</TH
></TR
><TR
><TD
WIDTH="10%"
ALIGN="left"
VALIGN="bottom"
><A
HREF="checking-mounts.html"
ACCESSKEY="P"
>Prev</A
></TD
><TD
WIDTH="80%"
ALIGN="center"
VALIGN="bottom"
>Appendix C. Configuration file syntax and options</TD
><TD
WIDTH="10%"
ALIGN="right"
VALIGN="bottom"
><A
HREF="checking-processes.html"
ACCESSKEY="N"
>Next</A
></TD
></TR
></TABLE
><HR
ALIGN="LEFT"
WIDTH="100%"></DIV
><DIV
CLASS="SECT1"
><H1
CLASS="SECT1"
><A
NAME="CHECKING-USERFILES"
>C.9. Checking for user files</A
></H1
><P
>Section heading:</P
><P
><B
CLASS="COMMAND"
>[UserFiles]</B
></P
><P
>Entries:</P
><P
>  <B
CLASS="COMMAND"
>UserfilesActive=<TT
CLASS="REPLACEABLE"
><I
>boolean</I
></TT
></B
>        &mdash; '1' to switch on, '0' to switch off.</P
><P
>  <B
CLASS="COMMAND"
>UserfilesName=<TT
CLASS="REPLACEABLE"
><I
>filename policy</I
></TT
></B
>        &mdash; Files to check for under each $HOME. Allowed values for 'policy'
are: allignore, attributes, logfiles, loggrow, noignore (default), 
readonly, user0, user1, user2, user3, and user4.</P
><P
>  <B
CLASS="COMMAND"
>UserfilesCheckUids=<TT
CLASS="REPLACEABLE"
><I
>uid list</I
></TT
></B
>        &mdash; A list of UIDs where we want to check. The default
is all. Ranges (e.g. 100-500) are allowed. If there is an open range (e.g.
1000-), it must be last in the list.</P
></DIV
><DIV
CLASS="NAVFOOTER"
><HR
ALIGN="LEFT"
WIDTH="100%"><TABLE
SUMMARY="Footer navigation table"
WIDTH="100%"
BORDER="0"
CELLPADDING="0"
CELLSPACING="0"
><TR
><TD
WIDTH="33%"
ALIGN="left"
VALIGN="top"
><A
HREF="checking-mounts.html"
ACCESSKEY="P"
>Prev</A
></TD
><TD
WIDTH="34%"
ALIGN="center"
VALIGN="top"
><A
HREF="index.html"
ACCESSKEY="H"
>Home</A
></TD
><TD
WIDTH="33%"
ALIGN="right"
VALIGN="top"
><A
HREF="checking-processes.html"
ACCESSKEY="N"
>Next</A
></TD
></TR
><TR
><TD
WIDTH="33%"
ALIGN="left"
VALIGN="top"
>Checking for mount options</TD
><TD
WIDTH="34%"
ALIGN="center"
VALIGN="top"
><A
HREF="the-configuration-file.html"
ACCESSKEY="U"
>Up</A
></TD
><TD
WIDTH="33%"
ALIGN="right"
VALIGN="top"
>Checking for hidden/fake/required processes</TD
></TR
></TABLE
></DIV
><!--#if expr="! ($HTTP_USER_AGENT = /MSIE/)"--><!--#include virtual="/resources/ssi/footer.html"--><!--#endif --></BODY
></HTML
>
samhain 3.1.0-5ubuntu1 / usr / share / doc / samhain / manual.html / checking-userfiles.html
