A system administrator has just completed a series of planned software updates on a Linux server. They use the Advanced Intrusion Detection Environment (AIDE) to monitor file integrity. After the updates, an aide --check command reports numerous changed files, as expected. Which of the following commands should the administrator run to update the AIDE database with these legitimate changes?
The correct command is aide --update. This command checks the system against the current database and then creates a new database file (e.g., aide.db.new.gz) reflecting the current state of the filesystem. The administrator would then typically replace the old database with this new one to establish a new baseline.
aide --init is used to create an entirely new, initial database from scratch, which is not the correct procedure for updating an existing one after legitimate changes.
rkhunter --propupd is a command for a different file integrity and rootkit scanning tool, Rootkit Hunter. It updates the file properties database for rkhunter, not AIDE.
aide --check --rebuild is incorrect because --rebuild is not a valid option for the aide command.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is AIDE and how does it work?
Open an interactive chat with Bash
What is the difference between `aide --update` and `aide --init`?
Open an interactive chat with Bash
How does AIDE differ from Rootkit Hunter (rkhunter)?
Open an interactive chat with Bash
CompTIA Linux+ XK0-006 (V8)
Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access