[NTLUG:Discuss] Tripwire frustration!
Wayne Dahl
w.dahl4 at verizon.net
Wed Aug 21 19:55:06 CDT 2002
Hi again...
I've got everything back the way I want it...I took the hard way out. I
reinstalled everything, but really, only because I installed a 40Gig drive
to the machine and put everything but /, /boot, /root and /swap on the new
drive...leaving the OS on the old drive. Made it easier to dual boot from
XOSL. I didn't have to set up a /boot directory that XOSL had trouble
seeing on the new drive.
Now, I've got another question. I've installed Tripwire, set the
passphrases and initiated a database. I had installed some new stuff, so I
redid the policy file and went to update it and got an error message
telling me my site passphrase was incorrect. I wrote down all 3
passphrases...1 for the site keyfile, 1 for the local keyfile, and 1 for
the site, but it appears I wrote the site passphrase down wrong. I've
tried everything to get rid of all the files and start over. I've deleted
the tw.pol file, I've even tried removing the RPM and reinstalling
it. Every time I run twinstall.sh, it asks me to set the site keyfile
passphrase, I type it in twice and it takes. It asks me for a local
keyfile passphrase, I type it in twice and it takes it just fine. It asks
me for the site passphrase, I type in what I *thought* I had put in there
before and I always get the message that the passphrase is
incorrect. After 3 ties, it dumps me back out to the shell prompt.
This is driving me nuts. Obviously, there's a password file for this
somewhere that I'm not aware of and it doesn't appear to be in any of the
directories that RPM shows the Tripwire files were installed in.
How do I get rid of the old passphrase so I can get this updated? The
install dumps out and doesn't sign the config or policy file...can't
remember which, so I can't update the policy file with the new files to watch.
Also, I don't really use sendmail for anything, but since it's there and
running...and it's the default mailer in the config file, what do I have to
do to get it to mail notifications to my email address? I know absolutely
nothing about sendmail other than it's a mail agent. What would the line
look like in the tw.cfg file to use for mail notification?
Thanks for the help.
Wayne
More information about the Discuss
mailing list