Justin, I also use Tripwire on a write protected floppy.
FYI, I use the older 1.2 version instead of the newer 2.x versions since the 2.x versions have additional overhead and create larger tripwire databases. The main differences in the 2.x versions are that the database is cryptographically signed and there are new ciphers and options available. None of these features were worth it for me. On my floppy, I keep not only my compressed database, but a secure copy of the tripwire program, my tw.config file and the script that checks the system. Whenever I make major changes to the system, I update the database, compress it and put it back on my floppy. If you are interested in my script, just drop me an e-mail and I'll ship it off to ya. Sincerely, Keith --- Tom Carroll <[EMAIL PROTECTED]> wrote: > I would recommend leaving the templates directories in the > tripwire > configuration. By removing them from your checks, someone > could possibly > change one of the templates and wait for you to update > something else that > may update the configuration file that belongs to the hacked > template. > > I use Tripwire on my ESSG 4.12. I don't update my templates > very often > (hobby system) but if I do, I normally run a script that > updates my tripwire > config files. > > As another security measure I keep all my tripwire config and > data files on > a write protected floppy. > > Tom > > ----- Original Message ----- > From: "Justin Funke" <[EMAIL PROTECTED]> > To: "e-smith-devinfo" <[EMAIL PROTECTED]> > Sent: Thursday, November 01, 2001 12:05 PM > Subject: [e-smith-devinfo] Tripwire Config > > > > Has anyone done an e-smith specific Tripwire config? I am > anticipating > that > > everytime the templates restructure Tripwire is going to > blast my email > box > > off the Internet. If anyone is interested in the end results > let me know. > > > > Justin. > > > > -- > > Please report bugs to [EMAIL PROTECTED] > > Please mail [EMAIL PROTECTED] (only) to discuss security > issues > > Support for registered customers and partners to > [EMAIL PROTECTED] > > To unsubscribe, e-mail: > [EMAIL PROTECTED] > > For additional commands, e-mail: > [EMAIL PROTECTED] > > Archives by mail and > http://www.mail-archive.com/devinfo%40lists.e-smith.org > > > > > > > -- > Please report bugs to [EMAIL PROTECTED] > Please mail [EMAIL PROTECTED] (only) to discuss security > issues > Support for registered customers and partners to > [EMAIL PROTECTED] > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: > [EMAIL PROTECTED] > Archives by mail and > http://www.mail-archive.com/devinfo%40lists.e-smith.org > ===== LPIC-1 N+ MCSE The difference between Linux and Microsoft is the difference between trust and anti-trust. __________________________________________________ Do You Yahoo!? Find a job, post your resume. http://careers.yahoo.com -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
