Folks, I'm lokking for info about FIDS(File System-based IDS) in order to track file system changes (executable, library, shell scripts, ....) in order to "guaranty*" my file system integrity.
As a good AO member I have performed a quick search on google and I found the following list of tools:
- AIDE (Advanced Intrusion Detection Environment)
- chkrootkit
- Dragon Squire
- FCheck
- integrit
- samhain
- ....

I didn't intentionnaly include TripWire bcoz its commercial. Did I mention that I'm looking for an open sourtce for Linux?

I'm sure some AOs have experienced such tools, could u give personnal feedback!
u'll make my day !

thanx

*some will say that we can't guaranty anything since some attackers could compromise the host and change log files but ....