From owner-freebsd-security  Fri Jun 28 17:22:53 2002
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id A44FD37B400
	for <freebsd-security@FreeBSD.ORG>; Fri, 28 Jun 2002 17:22:50 -0700 (PDT)
Received: from a2.scoop.co.nz (aurora.scoop.co.nz [203.96.152.68])
	by mx1.FreeBSD.org (Postfix) with ESMTP id ED7E743E09
	for <freebsd-security@FreeBSD.ORG>; Fri, 28 Jun 2002 17:22:49 -0700 (PDT)
	(envelope-from andrew@scoop.co.nz)
Received: from localhost (localhost [127.0.0.1])
	by a2.scoop.co.nz (8.12.2/8.12.2) with ESMTP id g5T0MmkI092270;
	Sat, 29 Jun 2002 12:22:49 +1200 (NZST)
	(envelope-from andrew@scoop.co.nz)
Date: Sat, 29 Jun 2002 12:22:48 +1200 (NZST)
From: Andrew McNaughton <andrew@scoop.co.nz>
X-X-Sender: andrew@a2
To: Cy Schubert - CITS Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>
Cc: Jan Lentfer <Jan.Lentfer@web.de>,
	FreeBSD Security Mailling List <freebsd-security@FreeBSD.ORG>
Subject: Re: Tripwire for Dummies 
In-Reply-To: <200206281633.g5SGXQ4V001429@cwsys.cwsent.com>
Message-ID: <20020629121442.Y90506-100000@a2>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org



On Fri, 28 Jun 2002, Cy Schubert - CITS Open Systems Group wrote:

> In message <1025280108.2819.27.camel@jan-linux.lan>, Jan Lentfer writes:
>
> > could someone be so kind and point my nose to a configuration How-To of
> > Tripwire for a dummie like me?
>
> I'm assuming you're talking about configuring the Tripwire 2.3 port,
> not the 1.2 or 1.3 ports.  If so, here is a good document to start you
> off.
>
> http://download.sourceforge.net/tripwire/tripwire-2.3.0-docs-pdf.tar.gz

Since the topic has come up, I thought I'd mention that I just sent in a
port for 'l5', a minimalist tool which might be a good substitute for
tripwire in some circumstances.

http://www.freebsd.org/cgi/query-pr.cgi?pr=39970

This is far simpler than tripwire - it just recurses file trees and lists
file details, including MD5 sums.  Whatever checks you want to run can
then be implemented using other simple tools like diff, grep and sed, or
perhaps with perl.

Andrew McNaughton


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message