Article
Listing 1
Listing 1 Basic Tripwire configuration file
#################################################################################
# # #
# This is a cut-down tripwire script that covers the basic binary directories # #
# for Redhat Linux systems running Tripwire 2.3.0 # #
# # #
# Written by David Hughes 3/2/2001 # #
# # #
#################################################################################
@@section GLOBAL
TWROOT="/usr/sbin";
TWBIN="/usr/sbin";
TWPOL="/etc/tripwire";
TWDB="/var/lib/tripwire";
TWSKEY="/etc/tripwire";
TWLKEY="/etc/tripwire";
TWREPORT="/var/lib/tripwire/report";
HOSTNAME=kryten;
@@section FS
SEC_CRIT = $(IgnoreNone)-SHa ; # Critical files that cannot change
SEC_SUID = $(IgnoreNone)-SHa ; # Binaries with the SUID or SGID flags set
SEC_BIN = $(ReadOnly) ; # Binaries that should not change
SEC_CONFIG = $(Dynamic) ; # Config files that are changed
# infrequently but accessed often
SEC_LOG = $(Growing) ; # Files that grow, but that should never
# change ownership
SEC_INVARIANT = +tpug ; # Directories that should never change
# permission or ownership
SIG_LOW = 33 ; # Non-critical files that are of minimal
# security impact
SIG_MED = 66 ; # Non-critical files that are of
# significant security impact
SIG_HI = 100 ; # Critical files that are significant
# points of vulnerability
# Rest of critical system binaries
(
rulename = "OS executables and libraries",
emailto = root@kryten.reddwarf.com,
severity = 100
)
{
/sbin -> $(ReadOnly) ;
/bin -> $(ReadOnly) ;
/usr/bin -> $(ReadOnly) ;
/usr/sbin -> $(ReadOnly) ;
/usr/local/bin -> $(ReadOnly) ;
/usr/local/sbin -> $(ReadOnly) ;
}
# End of File
|