File Anomaly Finder [faf@r-fx.net]

1) Introduction:
FaF (File Anomaly Finder) is a wrapper for the *nix 'find' utility. It
generates audit reports for data matching specific characteristics; such data
as setgid/setuid, unowned, and more. The objectives are simply to create a
simple anomaly finder that identifies common flawed permissions or otherwise
suspicious file system characteristics.

The main features of FaF are:
        - simplistic and to the point audit reports
        - easy setup and configuration
        - audits emailed to customizable address or user
        - ideal for web servers or general purpose workstations
	- audits of setgid/setuid, hidden, unowned, & world writable data
        - very portable

2) Usage:
There is two command line arguments for FaF; they are:
-s	Standard
-q	Quiet

Standard mode invokes FaF with results being printed to stdout (console), where
as the Quiet mode invokes FaF to send results as an audit report to the e-mail
addresses configured in conf.faf.

The quiet mode will run once a day from cron.daily; it is recommended that you
configure a user e-mail address in conf.faf so these daily audits are seen by
the proper person(s).

3) License:
FaF is developed and supported on a volunteer basis by Ryan MacDonald
[ryan@r-fx.net]

FaF (File Anomaly Finder) is distributed under the GNU General Public
License (GPL) without restrictions on usage or redistribution. The FaF
copyright statement, and GNU GPL, "COPYING.GPL" are included in the top-level
directory of the distribution. Credit must be given for derivative works as
required under GNU GPL.

4) Support:
All inquiries relating to FaF should be directed to faf@r-fx.net and/or check
the r-fx.net projects page at:
http://www.r-fx.net/proj.php