Tripwire: Difference between revisions

From James's Wiki
No edit summary
No edit summary
Line 15: Line 15:


  sudo tripwire --check
  sudo tripwire --check
after editing the configuration file:
sudo twadmin --create-cfgfile -S /etc/tripwire/site.key /etc/tripwire/twcfg.txt


if the passwords arn't set up for whatever reason:
if the passwords arn't set up for whatever reason:

Revision as of 23:38, 3 March 2018

sudo apt install tripwire

setpassphrases ect during install 

sudo tripwire --init

sudo tripwire --check


after editing the policy file do this: 

sudo twadmin -m P /etc/tripwire/twpol.txt

sudo tripwire --init

sudo tripwire --check

after editing the configuration file: 

sudo twadmin --create-cfgfile -S /etc/tripwire/site.key /etc/tripwire/twcfg.txt

if the passwords arn't set up for whatever reason: 

sudo dpkg-reconfigure tripwire

to update changes to your system the easy way: 

sudo tripwire -m c -I

References

https://www.howtoforge.com/tutorial/how-to-monitor-and-detect-modified-files-using-tripwire-on-ubuntu-1604/

https://www.digitalocean.com/community/tutorials/how-to-use-tripwire-to-detect-server-intrusions-on-an-ubuntu-vps

Retrieved from "https://wiki.jamesclaus.com/index.php?title=Tripwire&oldid=240"
Powered by MediaWiki