Configurations
All software we describe in this book has a specific directory and subdirectory in a tar compressed archive named “floppy.tgz” containing file configurations for specific programs. If you get this archive file, you won’t be obliged to reproduce the different configuration files below, manually, or cut and paste them to create your configuration files. (Далее…)
Linux Tripwire ASR 1.3.1
Overview
Tripwire ASR 1.3.1 is the “Academic Source Release (ASR)” of Tripwire software. Personally, I prefer the 1.3.1 version of the software rather than the 2.2.1 version because it can compile and be installed without any compatibility problems on all versions of Linux systems.
As explained in the Tripwire ASR goals: (Далее…)
Securing Tripwire for Linux
Security Issue
It is important to make sure that the integrity of the system you are running has not been already compromised. For maximum confidence in your baseline database, you should generate operating system and application files from a clean installation and original media.
Also, it is recommended that you delete the plain text copy of the Tripwire configuration file named “twcfg.txt” located under the 7usr/bin” directory to hide the location of Tripwire’s files and prevent anyone from creating a second, or alternate, configuration file. (Далее…)
Configurations
All software we describe in this book has a specific directory and subdirectory in a tar compressed archive named “floppy.tgz” containing file configurations for specific programs. If you get this archive file, you won’t be obliged to reproduce the different configuration files below, manually, or cut and paste them to create your configuration files. (Далее…)
Securities Software (System Integrity).Linux Tripwire 2.2.1
Overview
A typical Red Hat Linux server installation handles approximately 30,400 files. At their busiest times, administrators can’t check the integrity of all system files, and if a cracker has accessed your server, he or she can install or modify files without your knowledge quite easily. Due to the possibility of this event some programs have been created to respond to this kind of problem. (Далее…)