>>> While md5 checksumming is indeed a bit more secure than the standard
>>> *nix sum, there are plenty of cracker kits out there that contain tools
>>> to modify files in such a way that the md5sum remains the same.
>
>> Could you please point at a source for such a kit? Or could you please
>> produce an example file whose MD5 sum matches
>
>> 50489244b4036b4d476fd165f6de9373
>
>What Bennett said. Are you sure you don't mean that crackers are known to
>replace either the tripwire binary or the database?
If you follow the instructions with tripwire, you put the
tripwire binary and database on a _read only_ drive (you used to be
able to do this with some scsi drives by setting a jumper, but I
guess they don't do it any more).
At least put your database on a floppy with the write protect
tab set so you can do a manual md5 or other hash of the binary from
time to time.
--
We have only come here seeking knowledge
Things they would not teach us of in college.--The Police
http://www.atypon.com [EMAIL PROTECTED]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
