Tripwire news
Keith G. Robertson-Turner
redhat-forums at genesis-x.nildram.co.uk
Mon Nov 24 15:05:33 UTC 2003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Mon, 24 Nov 2003 13:09:02 +0100, Michael Schwendt wrote:
> On Mon, 24 Nov 2003 10:03:27 +0200, Marius Andreiana wrote:
>
>> On Sî, 2003-11-22 at 21:22, Keith G. Robertson-Turner wrote:
>> > To do:
>> > Post-install scripts for baseline configuration.
>>
>> Will this make a filelist with only the existing files in the system?
>> I've found tripwire's reports hard to use because of the warnings for
>> non-existent files.
>
> You are expected to tune the default configuration and drop all
> non-existant files to get rid of those warnings. There are small helper
> scripts (posted in various places) that take a Tripwire report and modify
> the policy file automatically.
If I get time (or someone volunteers) I may be able to include a script
that "gawk's" out any non-existent entries in twpol.txt (preferably by
comment rather than removal).
Then it's just a matter of doing a "tripwire -m p /etc/tripwire/twpol.txt"
(you may need to specify the "-Z low" flag too) on the new policy file,
and you're all set.
That's at least a week away though, as it's low priority.
Volunteers?
- -
Keith G. Robertson-Turner
tripwire-devel at genesis-x.nildram.co.uk
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
iD8DBQE/wh312XoLj+pGfn8RAibSAJ9XCaYy7mbx2lglQ1Xs+EZgZO+logCcDZ0E
PQ/h1A+7GwBmICJK9rm0M/Y=
=mr/R
-----END PGP SIGNATURE-----
More information about the fedora-devel-list
mailing list