|
|
Sponsored Content
Special Forums
Cybersecurity
Server has been compromised
Post 302756691 by Neo on Wednesday 16th of January 2013 10:12:58 AM
|
|
9 More Discussions You Might Find Interesting
1. IP Networking
/* Linux Slackware */
looking in my logs I see tons of entries similar to below. Does anyone know what these mean, and should I be concerned. I looked up a few of the IP's at Arin.net and saw that many of them belong to isp's (not good).. Any information is helpful..
Body of Messages log... (1 Reply)
Discussion started by: LowOrderBit
1 Replies
2. Solaris
Hello!
I have a Linux nfs server (called server100 below) with a export nfs. My problem is that the Solaris client (called client100 below) doesn't seems to like it. In the Solaris syslog I got following messages (and after a while the solaris client behave liked its hanged/to buzy). Also see... (3 Replies)
Discussion started by: sap4ever
3 Replies
3. Windows & DOS: Issues & Discussions
Hi All,
I need your expertise in finding a way to solve my problem.Please excuse if this is not the right forum to ask this question and guide me to the correct forum,if possible.
I am a DBA and on a daily basis i have to ftp huge dump files from my company server to my laptop and then... (3 Replies)
Discussion started by: kunwar
3 Replies
4. Shell Programming and Scripting
Dear Friends,
Sorry for this basic request. But I just started learning Ksh recently and still I am a newbie in this field.
Q: I have files on one server and the date format is 20121001000009_224625.in which has year (yyyy) month (mm) and date (dd). I have these files on server A. The task... (8 Replies)
Discussion started by: BrownBob
8 Replies
5. Shell Programming and Scripting
I need to connect to a ftp server-1 from linux server-2 and copy/get a file from server-1 which follows a name pattern of FILENAME* (located on the root directory) and copy on a directory on server-2. Later, I have to use this file for ETL loading... For this I tried using as below
/usr/bin/ftp... (8 Replies)
Discussion started by: dhruuv369
8 Replies
6. Shell Programming and Scripting
Hi ,
Is there any script to copy a files (weblogic bianary + silent.xml ) from one server (linux) to another servers and then execute the copy file.
We want to copy a file on multiple servers and run the installation.
Thanks (1 Reply)
Discussion started by: Nawrajesh
1 Replies
7. UNIX for Dummies Questions & Answers
I have 3 servers A, B, C and server B is having some files in /u01/soa/ directory, these files i want to copy to server C, and i want to run the script from server A.
Script(Server A) --> Files at Server B (Source server) --> Copy the files to Server C(Target Server).
We dont have RSA key... (4 Replies)
Discussion started by: kiran_j
4 Replies
8. Solaris
Hi,
I am trying to automate the process of fetching files from remote server to local server through sftp. I have the username and password for the remote solaris server. But I need to give password manually everytime i run the script.
Can anyone help me in automating the script such that it... (3 Replies)
Discussion started by: ssk250
3 Replies
9. UNIX for Dummies Questions & Answers
Hi everyone,
I hope I am posting in the right spot and I really need some help. I am going through a horrible divorce and I am afraid that my husband has compromised . He set up my mac computer and router and for my job set up remote access for me. I caught him cheating on me and I think he... (6 Replies)
Discussion started by: kk243665
6 Replies
LEARN ABOUT DEBIAN
twfiles
TWFILES(5) File Formats Manual TWFILES(5) NAME
twfiles - overview of files used by Tripwire and file backup process DESCRIPTION
Configuration File default: /etc/tripwire/tw.cfg The configuration file stores system-specific information, such as the location of Tripwire data files. The configuration settings are gen- erated during the installation process, but can be changed by the system administrator at any time. See the twconfig(4) man page for a more complete discussion. Policy File default: /etc/tripwire/tw.pol The policy file consists of a series of rules specifying the system objects that Tripwire should monitor, and the data for each object that should be collected and stored in the database file. Should unexpected changes occur, the policy file can describe the person to be noti- fied and the severity of the violation. See the policyguide.txt file in the policy directory and the twpolicy(4) man page for a more com- plete discussion. Database File default: /var/lib/$(HOSTNAME).twd The database file serves as the baseline for integrity checking. After installation, Tripwire creates the initial database file, a "snap- shot" of the filesystem in a known secure state. Later, when an integrity check is run, Tripwire compares each system object described in the policy file against its corresponding entry in the database. A report is created, and if an object has changed outside of constraints defined in the policy file, a violation is reported. See the tripwire(8) and twprint(8) man pages for more information on creating and maintaining database files. Report Files default: /var/lib/tripwire/report/$(HOSTNAME)-$(DATE).twr Once the above three files have been created, Tripwire can run an integrity check and search for any differences between the current system and the data stored in the "baseline" Tripwire database. This information is archived into report files, a collection of rule violations discovered during an integrity check. With the appropriate settings, a report can also be emailed to one or more recipients. See the tripwire(8) and twprint(8) man pages for information on creating and printing report files. Key Files defaults: /etc/tripwire/site.key and /etc/tripwire/$(HOSTNAME)-local.key It is critical that Tripwire files be protected from unauthorized access--an attacker who is able to modify these files can subvert Trip- wire operation. For this reason, all of the above files are signed using public key cryptography to prevent unauthorized modification. Two separate sets of keys protect critical Tripwire data files. One or both of these key sets is necessary for performing almost every Tripwire task. The site key is used to protect files that could be used across several systems. This includes the policy and configuration files. The local key is used to protect files specific to the local machine, such as the Tripwire database. The local key may also be used for sign- ing integrity check reports. See the twadmin(8) man page for more information on keys. File Backup To prevent the accidental deletion of important data, Tripwire automatically creates backup files whenever any Tripwire file is overwrit- ten. The existing file will be renamed with a .bak extension, and the new version of the file will take its place. Only one backup copy for each filename can exist at any time. If a backup copy of a file already exists, the older backup file will be deleted and replaced with the newer one. File backup is an integral part of Tripwire, and cannot be removed or changed. VERSION INFORMATION
This man page describes Tripwire 2.4. AUTHORS
Tripwire, Inc. COPYING PERMISSIONS
Permission is granted to make and distribute verbatim copies of this man page provided the copyright notice and this permission notice are preserved on all copies. Permission is granted to copy and distribute modified versions of this man page under the conditions for verbatim copying, provided that the entire resulting derived work is distributed under the terms of a permission notice identical to this one. Permission is granted to copy and distribute translations of this man page into another language, under the above conditions for modified versions, except that this permission notice may be stated in a translation approved by Tripwire, Inc. Copyright 2000 Tripwire, Inc. Tripwire is a registered trademark of Tripwire, Inc. in the United States and other countries. All rights reserved. SEE ALSO
twintro(8), tripwire(8), twadmin(8), twprint(8), siggen(8), twconfig(4), twpolicy(4) 1 July 2000 TWFILES(5)