IDS (Intrusion Detection System)
Tripwire is a very valuable security tool for Linux systems, if it is installed to a clean system. Tripwire should be installed right after the OS installation, and before you have connected your system to a network (i.e., before any possibility exists that someone could alter files on your system).
When Tripwire is initially set up, it creates a database that records certain file information. Then when it is run, it compares a designated set of files and directories to the information stored in the database. Added or deleted files are flagged and reported, as are any files that have changed from their previously recorded state in the database. When Tripwire is run against system files on a regular basis, any file changes will be spotted when Tripwire is run. Tripwire will report the changes, which will give system administrators a clue that they need to enact damage control measures immediately if certain files have been altered.
Source Files (show merged sources derived from linked package)
|README.SUSE||0000001801 1.76 KB||almost 5 years|
|_link||0000000116 116 Bytes||almost 2 years|
|tripwire-22.214.171.124-src-policyconfig.patch||0000000832 832 Bytes||over 12 years|
|tripwire-126.96.36.199-config-dir-location.patch||0000001015 1015 Bytes||over 2 years|
|tripwire-open-source-188.8.131.52.tar.gz||0001002257 979 KB||about 3 years|
|tripwire.changes||0000010521 10.3 KB||over 2 years|
|tripwire.spec||0000002744 2.68 KB||over 2 years|
|twcfg.txt||0000000759 759 Bytes||over 12 years|