|
@@ -9869,6 +9869,8 @@ function intrusion_detection {
|
9869
|
9869
|
chmod +x /usr/bin/reset-tripwire
|
9870
|
9870
|
|
9871
|
9871
|
sed -i 's/SYSLOGREPORTING.*/SYSLOGREPORTING =false/g' /etc/tripwire/twcfg.txt
|
|
9872
|
+ # only send emails if something has changed
|
|
9873
|
+ sed -i 's|MAILNOVIOLATIONS.*|MAILNOVIOLATIONS = false|g' /etc/tripwire/twcfg.txt
|
9872
|
9874
|
sed -i '/# These files change the behavior of the root account/,/}/ s/.*//g' /etc/tripwire/twpol.txt
|
9873
|
9875
|
sed -i 's|/etc/rc.boot.*||g' /etc/tripwire/twpol.txt
|
9874
|
9876
|
# Don't show any changes to /proc
|