• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

FreeBSD AIDE Port Default Configuration File Vulnerability

AIDE is a host based intrusion detection system. An error has been reported in the default configuration file included in the FreeBSD port of AIDE.

If the default configuration is used, AIDE may not check some subdirectories, although the configuration file suggests that it will. This may allow a local attacker to take malicious actions against the system without detection.