I don't use aide. However according to the documentation, the config file can be used to specify another database which is read by the --compare operation. And the manual suggests doing this:
You can run <code>aide ##init</code> on all of the hosts and move the generated databas# es to a central host where you compare different versions of the databases with <code>aide ##compare</code> This has the benefit of freeing up resources on the monitored machines. In this method of operation, any client could provide a trojaned aide database to the central host, thus compromising it and the entire network-wide aide setup. Which seems pretty bad, and worth the 5 minute hassle of a recompile. -- see shy jo
signature.asc
Description: Digital signature
