Skip to content

v0.19

Choose a tag to compare

View all tags
@hvhaugwitz hvhaugwitz released this 05 Apr 16:58
· 11 commits to master since this release
v0.19
This tag was signed with the committer’s verified signature.
hvhaugwitz Hannes von Haugwitz
GPG key ID: 18EE86386022EF57
Verified
Learn about vigilant mode.
20e6d36 
* BACKWARDS INCOMPATIBLE CHANGES
    - switch from libmhash to libnettle
    - semantic change of unrestricted negative rules (!<regex>): The
      children and sub-directories of matching directories are no longer
      ignored by default but recursed into and only ignored if they also
      match the regular expression. This makes the behaviour consistent
      with restricted (recursive) negative rules. Use the new non-recursive
      negative rules (-<regex>) to always ignore children and
      sub-directories of matched directories.
    - 'database' config option is no longer supported, use
      'database_in' instead
    - 'summarize_changes' config option is no longer supported, use
      'report_summarize_changes' instead
    - 'grouped' config option is no longer supported, use
      'report_grouped' instead
    - an incomplete written input database is now handled as an error
    - SIGHUP and SIGTERM are no longer ignored
    - SIGINT, SIGTERM or SIGHUP are now handled by removing an incompletely
      written database (if file was created by aide) and exiting aide (code 25)
    - move COMPARE log level before RULE log level
    - switch hashsum in default R group from md5 to sha3_256
    - remove unsupported hashsums (haval, crc32, crc32b, tiger, whirlpool)
    - H default group now contains all compiled in hashsums that are not
      deprecated
    - rules are no longer applied to the database entries but only to the
      file system entries, meaning aide displays files/directories that are
      no longer matched by any rule as removed entries in the report
    - require pthread (remove --without-pthread configure option)
    - remove contrib/ scripts
* Deprecations (to be removed in the release after next):
    - md5 hashsum
    - sha1 hashsum
    - rmd160 hashsum
    - gost hashsum
* Add support for file system type restricted rules (Linux only)
    - add 'fstype' attribute
    - add '--without-fstype' configure option
* Add 'version_ge' boolean operator
* Add limited support for hashsum transitions (see aide.conf(5) for details)
* Add 'sha512_256', sha3_256, and 'sha3_512' hashsums
* Add AIDE_VERSION macro variable
* Add progress bar (add '--no-progress' parameter)
* Add log level 'limit'
* Add colors to log output (add '--no-color' parameter)
* Add '--list' command (to list database in human readable format)
* Add new error codes
    - 24: database error
    - 25: received SIGINT, SIGTERM or SIGHUP signal
* Performance improvements
* Improve error handling
* Improve logging
* Update documentation
* Bug fixes
* Code clean up
* Add more unit tests
Assets 4
Loading