Changeset 8f44fa03 for postlfs/security/tripwire/tripwire-config.xml

Timestamp:

09/13/2003 03:01:40 PM (21 years ago)

Author:

Larry Lawrence <larry@…>

Branches:

10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 12.0, 12.1, 6.0, 6.1, 6.2, 6.2.0, 6.2.0-rc1, 6.2.0-rc2, 6.3, 6.3-rc1, 6.3-rc2, 6.3-rc3, 7.10, 7.4, 7.5, 7.6, 7.6-blfs, 7.6-systemd, 7.7, 7.8, 7.9, 8.0, 8.1, 8.2, 8.3, 8.4, 9.0, 9.1, basic, bdubbs/svn, elogind, gnome, kde5-13430, kde5-14269, kde5-14686, kea, ken/TL2024, ken/inkscape-core-mods, ken/tuningfonts, krejzi/svn, lazarus, lxqt, nosym, perl-modules, plabs/newcss, plabs/python-mods, python3.11, qt5new, rahul/power-profiles-daemon, renodr/vulkan-addition, systemd-11177, systemd-13485, trunk, upgradedb, v5_0, v5_0-pre1, v5_1, v5_1-pre1, xry111/intltool, xry111/llvm18, xry111/soup3, xry111/test-20220226, xry111/xf86-video-removal

Children:

30f1425

Parents:

781e273

Message:

tripwire and pam edits

git-svn-id: svn://svn.linuxfromscratch.org/BLFS/trunk/BOOK@1056 af4574ff-66df-0310-9fd7-8a98e5e911e0

File:

• postlfs/security/tripwire/tripwire-config.xml (modified) (5 diffs)

postlfs/security/tripwire/tripwire-config.xml

@@ -1 +1 @@
 <sect2>
-<title>Configuring tripwire</title>
+<title>Configuring <application>tripwire</application></title>
 
 <sect3><title>Config files</title>
-<para><userinput>/etc/tripwire</userinput></para>
+<para><filename>/etc/tripwire</filename></para>
 </sect3>
 
 <sect3><title>Configuration Information</title>
 
-<para>Tripwire uses a policy file to determine which files integrity
- are checked. The default policy file (<filename>twpol.txt</filename> found in
-<filename>/etc/tripwire/</filename>) is for a default installation of Redhat 
-7.0 and is woefully outdated.</para>
+<para><application>Tripwire</application> uses a policy file to determine which 
+files integrity are checked. The default policy file (<filename>twpol.txt
+</filename> found in <filename>/etc/tripwire/</filename>) is for a default 
+installation of Redhat 7.0 and is woefully outdated.</para>
 
-<para>Policy files are also a custom thing and should be tailored to
- each individual distro and/or installation. Some custom policy files
- can be found below: </para>
+<para>Policy files are also a custom thing and should be tailored to each 
+individual distribution and/or installation. Some custom policy files can be 
+found below: </para>
 <screen><ulink  url="http://home.iprimus.com.au/glombowski/blfs/twpol-all.txt"/>
 Checks integrity of all files
@@ -23 +23 @@
 Custom policy file for SuSE 7.2 system</screen>
 
-<para>Download the custom policy file you'd like to try, copy it into
-<filename>/etc/tripwire/</filename>, and use it instead of <filename>twpol.txt</filename>. It
- is, however, recommended that you make your own policy file. Get ideas
- from the examples above and read
- <filename>/usr/share/doc/tripwire/policyguide.txt</filename>.
-<filename>twpol.txt</filename> is a good policy file for beginners as it will note any changes to the  filesystem and can even be used as an annoying way of keeping track of changes for uninstallation of software.</para>
+<para>Download the custom policy file you'd like to try, copy it into <filename>
+/etc/tripwire/</filename>, and use it instead of <filename>twpol.txt
+</filename>. It is, however, recommended that you make your own policy file. 
+Get ideas from the examples above and read <filename>
+/usr/share/doc/tripwire/policyguide.txt</filename>. <filename>twpol.txt
+</filename> is a good policy file for beginners as it will note any changes to 
+the  filesystem and can even be used as an annoying way of keeping track of 
+changes for uninstallation of software.</para>
 
- <para>After your policy file has been transferred to <filename>/etc/tripwire/</filename> you may begin the configuration steps:</para>
+<para>After your policy file has been transferred to <filename>/etc/tripwire/
+</filename> you may begin the configuration steps:</para>
 
-<screen><userinput>twadmin -m P /etc/tripwire/twpol.txt &amp;&amp;
-tripwire -m i</userinput></screen>
+<screen><userinput><command>twadmin -m P /etc/tripwire/twpol.txt &amp;&amp;
+tripwire -m i</command></userinput></screen>
 
 <para>During configuration tripwire will create 2 keys: a site key and
- a local key which will be stored in <filename class="directory">/etc/tripwire/</filename>.</para>
+ a local key which will be stored in <filename class="directory">/etc/tripwire/
+</filename>.</para>
 
 </sect3>
@@ -43 +47 @@
 <para>To use tripwire after this and run a report using the following command:
 
-<screen><userinput>tripwire -m c &gt; /etc/tripwire/report.txt</userinput></screen></para>
+<screen><userinput><command>tripwire -m c &gt; /etc/tripwire/report.txt
+</command></userinput></screen></para>
 
 <para>View the output to check the integrity of your files. An automatic
@@ -52 +57 @@
 on your system so that tripwire will not continually notify you that
 files you intentionally changed are a security violation. To do this you
-must first <userinput>ls /var/lib/tripwire/report/</userinput> and note
-the name of the newest file which starts with
-<filename>linux-</filename> and ends in <filename>.twr</filename>. This
-encrypted file was created during the last report creation and is needed
-to update the tripwire database of your system. Then, type in the
-following command making the appropriate substitutions for '?':
-<screen><userinput>tripwire -m u -r /var/lib/tripwire/report/linux-???????-??????.twr</userinput></screen></para>
+must first <command>ls /var/lib/tripwire/report/</command> and note
+the name of the newest file which starts with <filename>linux-</filename> and 
+ends in <filename>.twr</filename>. This encrypted file was created during the 
+last report creation and is needed to update the tripwire database of your 
+system. Then, type in the following command making the appropriate 
+substitutions for '?':
+<screen><userinput><command>tripwire -m u -r /var/lib/tripwire/report/linux-???????-??????.twr </command></userinput></screen></para>
 
-<para>You will be placed into vim with a copy of the report in front of
- you. If all the changes were good, then just type
- <userinput>:x</userinput> and after entering your local key, the
-database will be updated. If there are files which you
- still want to be warned about, please remove the x before the filename
- in the report and type <userinput>:x</userinput>. </para>
+<para>You will be placed into vim with a copy of the report in front of you. If 
+all the changes were good, then just type <command>:x</command> and after 
+entering your local key, the database will be updated. If there are files which 
+you still want to be warned about, please remove the x before the filename in 
+the report and type <command>:x</command>. </para>
 
 </sect3>
@@ -71 +75 @@
 <sect3><title>Changing the Policy File</title>
 
-<para>If you are unhappy with your policy file and would like to modify it or use a new one, modify the policy file and then execute the following commands:
-<screen><userinput>twadmin -m P /etc/tripwire/twpol.txt &amp;&amp;
-tripwire -m i</userinput></screen></para>
+<para>If you are unhappy with your policy file and would like to modify it or 
+use a new one, modify the policy file and then execute the following commands:
+<screen><userinput><command>twadmin -m P /etc/tripwire/twpol.txt &amp;&amp;
+tripwire -m i</command></userinput></screen></para>
 
 </sect3>