Revision as of 23:11, 5 March 2022

Overview

What is it?

Tripwire is an open-source program that monitors file integrity. It performs a check of the filesystem state against a known baseline state, and alerts on changes that are detected.

Tripwire can monitor file contents, but also permissions, ownership, or directories.

Installing

Tripwire is a bit of a pain to install in an automated way, because it wants to try and walk you through a few initial setup steps.

We cover automated installation below.

Manual Installation

Install Tripwire using aptitude, since it is present in the official Debian repositories:

sudo apt-get -y update
sudo apt-get -y install tripwire

This will present several interactive prompts for the mulit-step setup process.

The steps are described on the Tripwire Readme: https://github.com/Tripwire/tripwire-open-source

Automated Installation

This SO answer gives some help, but this Unix SE answer is also needed. Here's the final incantation:

sudo DEBIAN_FRONTEND=noninteractive apt-get -y install tripwire

This should install tripwire with zero user intervention required.

Flags

@@ Line 9: / Line 9: @@
 ==Installing==
-Tripwire is a bit of a pain to install in an automated way, because it wants to try and walk you through a few initial setup steps, one of which includes setting up a postgres mail server.
+Tripwire is a bit of a pain to install in an automated way, because it wants to try and walk you through a few initial setup steps.
-We cover automation strategies for installing Tripwire below.
+We cover automated installation below.
 ===Manual Installation===

Tripwire: Difference between revisions

From charlesreid1