You can just set up Tripwire to do this sort of thing
I wanted something that was completely independent of the machine. Separate box, separate network, separate architecture, etc...
What that won't do is save you from malicious code inserted into 3rd party content (script libraries, etc.) that you load from a CDN. If you're worried about that, you should make a copy of a verified version and serve it yourself.
I don't CDN on work projects. It's not worth the risk. If something goes wrong, I'd rather it be my fault and something I can understand and fix, whenever possible. Farming stuff out just leads to layers of things that can break, be compromised, or simply go wrong.
Again, it works at my scale (about 15 sites). It won't work for everyone.
I wanted something that was completely independent of the machine. Separate box, separate network, separate architecture, etc...
What that won't do is save you from malicious code inserted into 3rd party content (script libraries, etc.) that you load from a CDN. If you're worried about that, you should make a copy of a verified version and serve it yourself.
I don't CDN on work projects. It's not worth the risk. If something goes wrong, I'd rather it be my fault and something I can understand and fix, whenever possible. Farming stuff out just leads to layers of things that can break, be compromised, or simply go wrong.
Again, it works at my scale (about 15 sites). It won't work for everyone.