Changeset dc94017e


Ignore:
Timestamp:
12/22/2004 03:48:05 AM (17 years ago)
Author:
Bruce Dubbs <bdubbs@…>
Branches:
10.0, 10.1, 11.0, 6.0, 6.1, 6.2, 6.2.0, 6.2.0-rc1, 6.2.0-rc2, 6.3, 6.3-rc1, 6.3-rc2, 6.3-rc3, 7.10, 7.4, 7.5, 7.6, 7.6-blfs, 7.6-systemd, 7.7, 7.8, 7.9, 8.0, 8.1, 8.2, 8.3, 8.4, 9.0, 9.1, basic, bdubbs/svn, elogind, gnome, kde5-13430, kde5-14269, kde5-14686, ken/refactor-virt, krejzi/svn, lazarus, nosym, perl-modules, qt5new, systemd-11177, systemd-13485, trunk, xry111/git-date, xry111/git-date-for-trunk, xry111/git-date-test
Children:
def11b7
Parents:
1586494
Message:

Updated tripwire

git-svn-id: svn://svn.linuxfromscratch.org/BLFS/trunk/BOOK@3135 af4574ff-66df-0310-9fd7-8a98e5e911e0

Files:
3 edited

Legend:

Unmodified
Added
Removed
  • general.ent

    r1586494 rdc94017e  
    3434<!ENTITY iptables-version             "1.2.11">
    3535<!ENTITY gnupg-version                "1.2.6"> 
    36 <!ENTITY tripwire-version             "2.3.1-2">   
     36<!ENTITY tripwire-version             "portable-0.9">   
    3737<!ENTITY heimdal-version              "0.6.2">   
    3838<!ENTITY mitkrb-version               "1.3.5">
  • introduction/welcome/changelog.xml

    r1586494 rdc94017e  
    2222
    2323<itemizedlist>
     24
     25<listitem><para>December 21st, 2004 [bdubbs]: Updated tripwire.</para></listitem>
    2426
    2527<listitem><para>December 21st, 2004 [randy]: Updated to KOffice-1.3.5 and
  • postlfs/security/tripwire.xml

    r1586494 rdc94017e  
    55  %general-entities;
    66
    7   <!ENTITY tripwire-download-http "http://prdownloads.sourceforge.net/tripwire/tripwire-&tripwire-version;.tar.gz">
    8   <!ENTITY tripwire-download-ftp  "ftp://ftp.fu-berlin.de/unix/security/tripwire/tripwire-&tripwire-version;.tar.gz">
    9   <!ENTITY tripwire-size          "1.4 MB">
    10   <!ENTITY tripwire-buildsize     "63 MB">
    11   <!ENTITY tripwire-time          "2.35 SBU">
     7  <!ENTITY tripwire-download-http "http://www.frenchfries.net/paul/tripwire/tripwire-&tripwire-version;.tar.gz">
     8  <!ENTITY tripwire-download-ftp  " ">
     9  <!ENTITY tripwire-size          "869 KB">
     10  <!ENTITY tripwire-buildsize     "22 MB">
     11  <!ENTITY tripwire-time          "2.96 SBU">
    1212]>
    1313
    14 <sect1 id="tripwire" xreflabel="Tripwire-&tripwire-version;">
     14<sect1 id="tripwire-portable" xreflabel="Tripwire-&tripwire-version;">
    1515<sect1info>
    1616<othername>$LastChangedBy$</othername>
     
    3939</sect3>
    4040
    41 <sect3><title>Additional downloads</title>
    42 <itemizedlist spacing='compact'>
    43 <listitem><para>Required patch to fix multiple build issues (see patch for
    44 more information): <ulink
    45 url="&patch-root;/tripwire-&tripwire-version;-gcc3_build_fixes-1.patch"/></para></listitem>
    46 </itemizedlist>
    47 </sect3>
    48 
    4941<sect3><title><application>Tripwire</application> dependencies</title>
    5042<sect4><title>Optional</title>
     
    6052commands:</para>
    6153
    62 <screen><userinput><command>patch -Np1 -i ../tripwire-&tripwire-version;-gcc3_build_fixes-1.patch &amp;&amp;
    63 make -C src release &amp;&amp;
    64 cp install/install.{sh,cfg} .</command></userinput></screen>
     54<screen><userinput><command>sed -i -e 's@TWDB="${prefix}@TWDB="/var/lib@' install/install.cfg &amp;&amp;
     55./configure --prefix=/usr --sysconfdir=/etc/tripwire &amp;&amp;
     56make &amp;&amp;
     57make install &amp;&amp;
     58cp policy/*.txt /usr/share/doc/tripwire</command></userinput></screen>
    6559
    6660<para>The default configuration is to use a local <acronym>MTA</acronym>. If
    6761you don't have an <acronym>MTA</acronym> installed and have no wish to install
    6862one, modify <filename>install.cfg</filename> to use an <acronym>SMTP</acronym>
    69 server instead. Install <application>Tripwire</application> by running the
    70 following commands:</para>
    71 
    72 <screen><userinput><command>./install.sh &amp;&amp;
    73 cp /etc/tripwire/tw.cfg /usr/sbin &amp;&amp;
    74 cp policy/*.txt /usr/share/doc/tripwire</command></userinput></screen>
     63server instead.</para>
    7564
    7665</sect2>
     
    7968<title>Command explanations</title>
    8069
    81 <para><command>make release</command>: This command creates the
    82 <application>Tripwire</application> binaries.</para>
    83 
    84 <para><command>cp install.{sh,cfg} .</command>: These files are copied to
    85 the main <application>Tripwire</application> directory so that the script
    86 can be used to install the package.</para>
     70<para><command>sed -i -e 's@TWDB="${prefix}@TWDB="/var/lib@' install/install.cfg</command>:
     71This command tells the package to install the program database and reports in
     72<filename>/var/lib/tripwire</filename>.</para>
     73
     74<para><command>make install</command>: This command creates the
     75<application>Tripwire</application> security keys as well as installing the
     76binaries. There are two keys: a site key and a local key which are stored in
     77<filename class="directory">/etc/tripwire/</filename>.</para>
    8778
    8879<para><command>cp policy/*.txt /usr/share/doc/tripwire</command>: This command
     
    10394files are integrity checked. The default policy file
    10495(<filename>/etc/tripwire/twpol.txt</filename>) is for a default
    105 installation of Redhat 7.0 and is woefully outdated.</para>
    106 
    107 <para>Policy files are also a custom thing and should be tailored to each
    108 individual distribution and/or installation. Some custom policy files can be
    109 found below: </para>
     96installation Redhat and will need to be updated for your system.</para>
     97
     98<para>Policy files should be tailored to each individual distribution and/or
     99installation. Some custom policy files can be found below: </para>
    110100
    111101<screen><ulink url="http://home.iprimus.com.au/glombowski/blfs/twpol-all.txt"/>
     
    129119configuration steps:</para>
    130120
    131 <screen><userinput><command>twadmin -m P /etc/tripwire/twpol.txt &amp;&amp;
    132 tripwire -m i</command></userinput></screen>
    133 
    134 <para>During installation <application>Tripwire</application> will create two
    135 keys: a site key and a local key which are stored in
    136 <filename class="directory">/etc/tripwire/</filename>.</para>
     121<screen><userinput><command>twadmin --create-polfile --site-keyfile=/etc/tripwire site.key /etc/tripwire/twpol.txt &amp;&amp;
     122tripwire --init</command></userinput></screen>
    137123
    138124</sect3>
     
    142128to run a report, use the following command:</para>
    143129
    144 <screen><userinput><command>tripwire -m c &gt; /etc/tripwire/report.txt</command></userinput></screen>
     130<screen><userinput><command>tripwire --check &gt; /etc/tripwire/report.txt</command></userinput></screen>
    145131
    146132<para>View the output to check the integrity of your files. An automatic
     
    161147substitutions for <replaceable>[?]</replaceable>:</para>
    162148
    163 <screen><userinput><command>tripwire -m u -r /var/lib/tripwire/report/linux-<replaceable>[???????]</replaceable>-<replaceable>[??????]</replaceable>.twr</command></userinput></screen>
     149<screen><userinput><command>tripwire --update -twrfile /var/lib/tripwire/report/linux-<replaceable>[???????]</replaceable>-<replaceable>[??????]</replaceable>.twr</command></userinput></screen>
    164150
    165151<para>You will be placed into <application>vim</application> with a copy of
     
    177163commands:</para>
    178164
    179 <screen><userinput><command>twadmin -m P /etc/tripwire/twpol.txt &amp;&amp;
    180 tripwire -m i</command></userinput></screen>
     165<screen><userinput><command>twadmin --create-polfile /etc/tripwire/twpol.txt &amp;&amp;
     166tripwire --init</command></userinput></screen>
    181167
    182168</sect3>
     
    186172<sect2>
    187173<title>Contents</title>
    188 
    189 <para>The <application>Tripwire</application> package contains
    190 <command>siggen</command>, <command>tripwire</command>,
    191 <command>twadmin</command> and <command>twprint</command>.</para>
    192 
    193 </sect2>
    194 
    195 <sect2>
    196 <title>Description</title>
    197 
    198 <sect3>
    199 <title>siggen</title>
    200 <para><command>siggen</command> is a signature gathering utility that displays
    201 the hash function values for the specified files.</para></sect3>
    202 
    203 <sect3>
    204 <title>tripwire</title>
    205 <para><command>tripwire</command> is the main file integrity checking program.
    206 </para></sect3>
    207 
    208 <sect3>
    209 <title>twadmin</title>
    210 <para><command>twadmin</command> is <application>Tripwire</application>'s
    211 administrative and utility tool used to perform certain administrative
    212 functions related to <application>Tripwire</application> files and
    213 configuration options.</para></sect3>
    214 
    215 <sect3>
    216 <title>twprint</title>
    217 <para><command>twprint</command> prints <application>Tripwire</application>
    218 database and report files in clear text format.</para></sect3>
     174<segmentedlist>
     175  <segtitle>Installed Programs</segtitle>
     176  <seglistitem>
     177    <seg>siggen, tripwire, twadmin and twprint.</seg>
     178  </seglistitem>
     179</segmentedlist>
     180
     181<variablelist>
     182  <bridgehead renderas="sect3">Short Descriptions</bridgehead>
     183  <?dbfo list-presentation="list"?>
     184
     185  <varlistentry id="siggen">
     186    <term><command>siggen</command></term>
     187    <listitem><para>is a signature gathering utility that displays
     188      the hash function values for the specified files.</para>
     189    </listitem>
     190  </varlistentry>
     191
     192  <varlistentry id='tripwire'>
     193    <term><command>tripwire</command></term>
     194    <listitem><para>is the main file integrity checking program.</para></listitem>
     195  </varlistentry>
     196
     197  <varlistentry id='twadmin'>
     198    <term><command>twadmin</command></term>
     199    <listitem><para>administrative and utility tool used to perform
     200      certain administrative functions related to
     201      <application>Tripwire</application> files and configuration options.</para>
     202    </listitem>
     203  </varlistentry>
     204
     205  <varlistentry id='twprint'>
     206    <term><command>twprint</command></term>
     207    <listitem><para>prints <application>Tripwire</application>
     208      database and report files in clear text format.</para>
     209    </listitem>
     210  </varlistentry>
     211</variablelist>
    219212
    220213</sect2>
Note: See TracChangeset for help on using the changeset viewer.