free
/
freedombone
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Browse Source

Improve the tripwire policy

Bob Mottram 10 years ago
parent
4fd8c901b2
commit
7979839cc3
1 changed files with 5 additions and 1 deletions
Unified View Show Diff Stats
  1. 5
    1
      src/freedombone

+ 5
- 1
src/freedombone View File

8038 
   chmod +x /usr/bin/reset-tripwire
 8038 
   chmod +x /usr/bin/reset-tripwire
8039
8039
8040 
   reset-tripwire
 8040 
   reset-tripwire
8041 
-  sed -i 's/SYSLOGREPORTING =true/#SYSLOGREPORTING =false/g' /etc/tripwire/twcfg.txt
8041 
+  sed -i 's/SYSLOGREPORTING.*/SYSLOGREPORTING =false/g' /etc/tripwire/twcfg.txt
8042 
   sed -i '/# These files change the behavior of the root account/,/}/ s/.*//g' /etc/tripwire/twpol.txt
 8042 
   sed -i '/# These files change the behavior of the root account/,/}/ s/.*//g' /etc/tripwire/twpol.txt
8043 
+  # Don't show any changes to /proc
8044 
+  sed -i 's|/proc.*||g' /etc/tripwire/twpol.txt
8045 
+  # Don't report log changes
8046 
+  sed -i 's|/var/log.*||g' /etc/tripwire/twpol.txt
8043 
   reset-tripwire
 8047 
   reset-tripwire
8044
8048
8045 
   echo 'intrusion_detection' >> $COMPLETION_FILE
 8049 
   echo 'intrusion_detection' >> $COMPLETION_FILE