Index: postlfs/security/pam/linux_pam-config.xml
===================================================================
--- postlfs/security/pam/linux_pam-config.xml (revision 781e273328eec4df03be7c14a0ceefdbbfe563be)
+++ postlfs/security/pam/linux_pam-config.xml (revision 8f44fa0313a69c52005c799cf5266d5add05e4c6)
@@ -1,16 +1,16 @@
-Configuring Linux_PAM
+Configuring Linux_PAM
+
Config files
-/etc/pam.d or /etc/pam.conf
-
+/etc/pam.d or /etc/pam.conf
+
Configuration Information
-Configuration information is placed in
-/etc/pam.d or /etc/pam.conf
-depending on the application that is using PAM. Below are example files of
-each type:
-
+Configuration information is placed in /etc/pam.d or
+/etc/pam.conf depending on the application that is using
+PAM. Below are example files of
+each type:
# Begin /etc/pam.d/other
@@ -32,9 +32,10 @@
# End /etc/pam.conf
-The pam man page provides a good starting point for descriptions of
-fields and allowable entries. The Linux-PAM
-guide for system administrators and two PAM hints located at are also available for further reading.
-
+The pam man page provides a
+good starting point for descriptions of fields and allowable entries. The
+
+Linux-PAM guide for system administrators and two
+PAM hints located at
+ are also available for further reading.
Index: postlfs/security/pam/linux_pam-desc.xml
===================================================================
--- postlfs/security/pam/linux_pam-desc.xml (revision 781e273328eec4df03be7c14a0ceefdbbfe563be)
+++ postlfs/security/pam/linux_pam-desc.xml (revision 8f44fa0313a69c52005c799cf5266d5add05e4c6)
@@ -2,7 +2,7 @@
Contents
-The Linux_PAM package contains
-unix-chkpwd
-and libpam libraries.
+The Linux_PAM package
+contains unix-chkpwd and libpam
+libraries.
@@ -14,6 +14,6 @@
libpam libraries
-libpam libraries provide the interfaces between applications and
-the PAM modules.
+libpam libraries provide the interfaces between
+applications and the PAM modules.
Index: postlfs/security/pam/linux_pam-exp.xml
===================================================================
--- postlfs/security/pam/linux_pam-exp.xml (revision 781e273328eec4df03be7c14a0ceefdbbfe563be)
+++ postlfs/security/pam/linux_pam-exp.xml (revision 8f44fa0313a69c52005c799cf5266d5add05e4c6)
@@ -8,6 +8,5 @@
the mailspool directory FHS compliant.
---enable-read-both-confs : This switch lets the local administrator choose which configuration file setup to
-use.
+--enable-read-both-confs : This switch lets the local administrator choose which configuration file setup to use.
mv /lib/libpam.a /lib/libpam_misc.a /lib/libpamc.a
Index: postlfs/security/pam/linux_pam-inst.xml
===================================================================
--- postlfs/security/pam/linux_pam-inst.xml (revision 781e273328eec4df03be7c14a0ceefdbbfe563be)
+++ postlfs/security/pam/linux_pam-inst.xml (revision 8f44fa0313a69c52005c799cf5266d5add05e4c6)
@@ -1,6 +1,8 @@
-Installation of Linux_PAM
+Installation of Linux_PAM
+
-Install Linux_PAM by running the following commands:
+Install Linux_PAM by
+running the following commands:
./configure --enable-static-libpam --with-mailspool=/var/mail \
Index: postlfs/security/pam/linux_pam-intro.xml
===================================================================
--- postlfs/security/pam/linux_pam-intro.xml (revision 781e273328eec4df03be7c14a0ceefdbbfe563be)
+++ postlfs/security/pam/linux_pam-intro.xml (revision 8f44fa0313a69c52005c799cf5266d5add05e4c6)
@@ -1,8 +1,9 @@
-Introduction to Linux_PAM
+Introduction to Linux_PAM
+
-The Linux_PAM package contains Pluggable Authentication Modules.
-This is useful to enable the local system administrator to choose how
-applications authenticate users.
+The Linux_PAM package
+contains Pluggable Authentication Modules. This is useful to enable the local
+system administrator to choose how applications authenticate users.
Package information
@@ -19,7 +20,10 @@
-Linux_PAM dependencies
+Linux_PAM
+dependencies
Optional
-cracklib v2.7
+
+cracklib v2.7
Index: postlfs/security/tripwire/tripwire-config.xml
===================================================================
--- postlfs/security/tripwire/tripwire-config.xml (revision 781e273328eec4df03be7c14a0ceefdbbfe563be)
+++ postlfs/security/tripwire/tripwire-config.xml (revision 8f44fa0313a69c52005c799cf5266d5add05e4c6)
@@ -1,19 +1,19 @@
-Configuring tripwire
+Configuring tripwire
Config files
-/etc/tripwire
+/etc/tripwire
Configuration Information
-Tripwire uses a policy file to determine which files integrity
- are checked. The default policy file (twpol.txt found in
-/etc/tripwire/) is for a default installation of Redhat
-7.0 and is woefully outdated.
+Tripwire uses a policy file to determine which
+files integrity are checked. The default policy file (twpol.txt
+ found in /etc/tripwire/) is for a default
+installation of Redhat 7.0 and is woefully outdated.
-Policy files are also a custom thing and should be tailored to
- each individual distro and/or installation. Some custom policy files
- can be found below:
+Policy files are also a custom thing and should be tailored to each
+individual distribution and/or installation. Some custom policy files can be
+found below:
Checks integrity of all files
@@ -23,18 +23,22 @@
Custom policy file for SuSE 7.2 system
-Download the custom policy file you'd like to try, copy it into
-/etc/tripwire/, and use it instead of twpol.txt. It
- is, however, recommended that you make your own policy file. Get ideas
- from the examples above and read
- /usr/share/doc/tripwire/policyguide.txt.
-twpol.txt is a good policy file for beginners as it will note any changes to the filesystem and can even be used as an annoying way of keeping track of changes for uninstallation of software.
+Download the custom policy file you'd like to try, copy it into
+/etc/tripwire/, and use it instead of twpol.txt
+. It is, however, recommended that you make your own policy file.
+Get ideas from the examples above and read
+/usr/share/doc/tripwire/policyguide.txt. twpol.txt
+ is a good policy file for beginners as it will note any changes to
+the filesystem and can even be used as an annoying way of keeping track of
+changes for uninstallation of software.
- After your policy file has been transferred to /etc/tripwire/ you may begin the configuration steps:
+After your policy file has been transferred to /etc/tripwire/
+ you may begin the configuration steps:
-twadmin -m P /etc/tripwire/twpol.txt &&
-tripwire -m i
+twadmin -m P /etc/tripwire/twpol.txt &&
+tripwire -m i
During configuration tripwire will create 2 keys: a site key and
- a local key which will be stored in /etc/tripwire/.
+ a local key which will be stored in /etc/tripwire/
+.
@@ -43,5 +47,6 @@
To use tripwire after this and run a report using the following command:
-tripwire -m c > /etc/tripwire/report.txt
+tripwire -m c > /etc/tripwire/report.txt
+
View the output to check the integrity of your files. An automatic
@@ -52,18 +57,17 @@
on your system so that tripwire will not continually notify you that
files you intentionally changed are a security violation. To do this you
-must first ls /var/lib/tripwire/report/ and note
-the name of the newest file which starts with
-linux- and ends in .twr. This
-encrypted file was created during the last report creation and is needed
-to update the tripwire database of your system. Then, type in the
-following command making the appropriate substitutions for '?':
-tripwire -m u -r /var/lib/tripwire/report/linux-???????-??????.twr
+must first ls /var/lib/tripwire/report/ and note
+the name of the newest file which starts with linux- and
+ends in .twr. This encrypted file was created during the
+last report creation and is needed to update the tripwire database of your
+system. Then, type in the following command making the appropriate
+substitutions for '?':
+tripwire -m u -r /var/lib/tripwire/report/linux-???????-??????.twr
-You will be placed into vim with a copy of the report in front of
- you. If all the changes were good, then just type
- :x and after entering your local key, the
-database will be updated. If there are files which you
- still want to be warned about, please remove the x before the filename
- in the report and type :x.
+You will be placed into vim with a copy of the report in front of you. If
+all the changes were good, then just type :x and after
+entering your local key, the database will be updated. If there are files which
+you still want to be warned about, please remove the x before the filename in
+the report and type :x.
@@ -71,7 +75,8 @@
Changing the Policy File
-If you are unhappy with your policy file and would like to modify it or use a new one, modify the policy file and then execute the following commands:
-twadmin -m P /etc/tripwire/twpol.txt &&
-tripwire -m i
+If you are unhappy with your policy file and would like to modify it or
+use a new one, modify the policy file and then execute the following commands:
+twadmin -m P /etc/tripwire/twpol.txt &&
+tripwire -m i
Index: postlfs/security/tripwire/tripwire-desc.xml
===================================================================
--- postlfs/security/tripwire/tripwire-desc.xml (revision 781e273328eec4df03be7c14a0ceefdbbfe563be)
+++ postlfs/security/tripwire/tripwire-desc.xml (revision 8f44fa0313a69c52005c799cf5266d5add05e4c6)
@@ -2,7 +2,7 @@
Contents
-The tripwire package contains siggen,
-tripwire, twadmin
-and twprint.
+The tripwire package contains siggen,
+tripwire, twadmin
+and twprint.
Index: postlfs/security/tripwire/tripwire-exp.xml
===================================================================
--- postlfs/security/tripwire/tripwire-exp.xml (revision 781e273328eec4df03be7c14a0ceefdbbfe563be)
+++ postlfs/security/tripwire/tripwire-exp.xml (revision 8f44fa0313a69c52005c799cf5266d5add05e4c6)
@@ -2,13 +2,16 @@
Command explanations
-ln -s make /usr/bin/gmake : The reason we create the gmake symlink is that tripwire will only install if the symlink is present. It may be safely removed after installation.
+ln -s make /usr/bin/gmake : The reason we create the
+gmake symlink is that tripwire will only install if the symlink is present. It
+may be safely removed after installation.
-gmake release : This command creates the
- tripwire binaries.
+gmake release : This command creates the tripwire
+binaries.
-cp install.{sh,cfg} . : These are copied to the main
+cp install.{sh,cfg} . : These are copied to the main
tripwire directory so that the script can be used to install the package.
-cp policy/*.txt /usr/share/doc/tripwire : This command installs the documentation.
+cp policy/*.txt /usr/share/doc/tripwire : This command
+installs the documentation.
Index: postlfs/security/tripwire/tripwire-inst.xml
===================================================================
--- postlfs/security/tripwire/tripwire-inst.xml (revision 781e273328eec4df03be7c14a0ceefdbbfe563be)
+++ postlfs/security/tripwire/tripwire-inst.xml (revision 8f44fa0313a69c52005c799cf5266d5add05e4c6)
@@ -1,11 +1,13 @@
-Installation of tripwire
+Installation of tripwire
-Download the patch for tripwire config from .
+Download the patch for tripwire config from
+.
-Install tripwire by running the following commands:
+Install tripwire by running the following
+commands:
-export PATH_HOLD=$PATH &&
-export PATH=/opt/gcc2/bin:$PATH &&
+export PATH_HOLD=$PATH &&
+export PATH=/opt/gcc-2.95.3/bin:$PATH &&
ln -s make /usr/bin/gmake &&
cd src &&
@@ -16,9 +18,9 @@
./install.sh &&
cp /etc/tripwire/tw.cfg /usr/sbin &&
-cp policy/*.txt /usr/share/doc/tripwire
+cp policy/*.txt /usr/share/doc/tripwire
Reverse the modifications made above:
-rm /usr/bin/gmake &&
-export PATH=$PATH_HOLD
+rm /usr/bin/gmake &&
+export PATH=$PATH_HOLD
Index: postlfs/security/tripwire/tripwire-intro.xml
===================================================================
--- postlfs/security/tripwire/tripwire-intro.xml (revision 781e273328eec4df03be7c14a0ceefdbbfe563be)
+++ postlfs/security/tripwire/tripwire-intro.xml (revision 8f44fa0313a69c52005c799cf5266d5add05e4c6)
@@ -1,15 +1,21 @@
-Introduction to tripwire
+Introduction to tripwire
-Download location (HTTP):
-Download location (FTP):
-Version used: &tripwire-version;
-Package size: &tripwire-size;
-Estimated Disk space required: &tripwire-buildsize;
+The tripwire package contains the programs
+used by tripwire to verify the integrity of the
+files on a given system.
-The tripwire package contains the tripwire programs used by tripwire to verify the integrity of the files on a given system.
-
-tripwire depends on:
-
+Package information
+
+Download (HTTP):
+Download (FTP):
+Download size: &tripwire-size;
+Estimated Disk space required:
+&tripwire-buildsize;
+Estimated build time:
+&tripwire-time;
+