[2428] in linux-security and linux-alert archive
Re: Tripwire and cron
daemon@ATHENA.MIT.EDU (Jack Lloyd)
Sat Aug 19 16:53:53 2000
Date: Thu, 17 Aug 2000 11:24:43 -0400 (EDT)
From: Jack Lloyd <lloyd@chimera.acm.jhu.edu>
To: Larry Thomas <lot@sbec.com>
Cc: linux-security@redhat.com
In-Reply-To: <399AA9AD.55A52F51@sbec.com>
Message-ID: <Pine.LNX.4.21.0008171116570.4472-100000@chimera.acm.jhu.edu>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: linux-security-admin@redhat.com
On Wed, 16 Aug 2000, Larry Thomas wrote:
Might I recommend AIDE (http://www.cs.tut.fi/~rammer/aide.html)? A fully
GPLed replacement. RMS would be pleased!
Here's the script I use to run aide from cron (in /etc/cron.daily/).
Probably this can be changed to run tripwire easily (though I don't know
how).
---- CUT ----
#!/bin/sh
/usr/local/bin/aide --check | (cat <<EOF
Output of AIDE:
EOF
cat
) | /bin/mail -s "File integrity report" root
---- CUT ----
I should probably fix this so that no mail is send if aide doesn't print
anything, but I'm basically a very lazy person, so I haven't yet.
This script has worked perfectly for me on several machines over the last
6 months or so.
Good Luck,
Jack
> I am trying to get tripwire 1.2 patch level 2 on Redhat 6.2 to run out
> of cron and so far have failed miserably.
> It runs fine from the command line so I know my configuration is ok, but
> when it runs from cron it gets to Phase 3 and simply exits. It doesn't
> generate any error messages or leave any core files laying around.
_______________________________________________
Linux-security mailing list
Linux-security@redhat.com
https://listman.redhat.com/mailman/listinfo/linux-security
