Monitoring config changes and new package installations on Debian server
Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Monitoring config changes and new package installations on Debian server
Hi
Is there any software or script that would monitor changes made to server configuration and new packages installed ?
Our IT team is growing and sometimes people make changes to servers without letting others know. They are supposed to email all changes to "changes" distribution list so that everyone is aware, but if they fail to do that nobody knows that something has been added or changed which makes it really hard to troubleshoot if something else fails because of that change.
Ideally I would like to receive an email every time someone changes or installs anything and be able to view changes on some kind of dashboard. Tried googling for it but did not find anything useful so far.
I'm using Linux Debian on majority of my servers ( a couple of OpenBSD boxes, but the problem relates to Debian boxes )
I have found a solution called Tripwire, which I am about to test. Might be worthwhile.
I would like to be notified whenever someone installs a package or modifies any config file and ideally know who's done it. I would be fine with the output of "last" command as this pretty much shows who's logged in at the time. I use sudo anyway and nobody can log in as root directly.
There was a data guy, we have fired recently, that was trying to prove how skilled he was and made a terrible mess trying to install some software on a database server. To tell you how skilled he was, enough to say he installed php-cgi wanting to install php-cli ( Debian package for php commandline ) and left it as that. The problem is not that he installed that, but he did not say anything ( probably because he's failed ). I do not log in to each server everyday, I monitor them with nagios, but it will not tell me if the configs have been changed.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.