I am running a VPS on a Linux system. Most of my websites are php with mysql databases. I'm concerned about SQL injection and other forms of hacking. While I am securing my code the best I can, I have 30+ sites and use some third-party stuff (about a dozen Wordpress installs, CMS's, etc.), so I can't ever be 100% sure.
What I would like is an automated report that sends out when files are edited, excluding maybe apache logs and things like that. Or even if it was a file I could go check for a log of edits.
Is there a way to do that via command line or WHM? Or anyone know of a solution? I think it would be a great security measure for my case, where tons of files aren't edited all the time, and I am the only person who would be making any changes.
While I've not used Samhain myself, Monit can notify you of changes to files that you specify to be monitored as well. They aren't exactly the same type of product, but if all that you're wanting to do is to be notified when files change, Monit can do that.