Securing-Optimizing-RH-Linux-1_2_211
Comments and suggestions concerning this book should be mailed to gmourani@videotron.ca
© Copyright 1999-2000 Gerhard Mourani and Open Network Architecture ®
211
running Tripwire in Interactive Checking Mode and waiting for the long scan to finish, the script
file tripwire.verify will scan the system and report via mail the result, then you run Tripwire in
Database Update Mode and update only single files or directories that has changed.
As an example:
If a single file has changed, you can:
[root@deep /]# tripwire -update /etc/newly.installed.file
Or, if an entire set of files or directories has changed, you can:
[root@deep /]# tripwire -update /usr/lib/Package_Dir
In either case, Tripwire regenerates the database entries for every specified file. A backup of the
old database is created in the ./databases directory.
Some possible uses of Tripwire software
Tripwire can be used to:
1.
Check the integrity of your files system.
2.
Get a list of new installed files on your system.
Installed files
> /etc/cron.daily/tripwire.verify
> /etc/tw.config
> /usr/man/man5/tw.config.5
> /usr/man/man8/siggen.8
> /usr/man/man8/tripwire.8
> /usr/sbin/tripwire
> /usr/sbin/siggen
> /var/spool/tripwire
> /var/spool/tripwire/tw.db_TEST
Alternatives to Tripwire
ViperDB
ViperDB Homepage: http://www.resentment.org/projects/viperdb/
FCHECK
FCHECK Homepage: http://sites.netscape.net/fcheck/fcheck.html
Sentinel
Sentinel Homepage: http://zurk.netpedia.net/zfile.html