How to install Tripwire on CentOS and Redhat

How to install Tripwire on CentOS and Redhat. Open Source Tripwire is a free software security and data integrity tool for monitoring and alerting on specific file change(s) on a range of systems. The project is based on code originally contributed by Tripwire, Inc. in 2000.

Tripwire, Inc., a leading global provider of security and compliance solutions for enterprises and industrial organisations, today announced the results of a survey conducted by Dimensional Research examining industrial control systems (ICS) security in the energy industry. The survey was conducted in March, and its respondents included 151 IT and operational technology (OT) security professionals at energy and oil and gas companies.

It’s encouraging to see that companies have increased their security investment somewhat. However, it’s concerning that more than half would wait for an attack to happen before investing properly, given what’s at stake with critical infrastructure. The energy industry should invest in establishing more robust cybersecurity strategies, with a proper foundation of critical security controls and layers of defense.

This post, i will show you how to install Tripwire on CentOS and Redhat.

Firstly we install epel-release, install it if you did not have it.
$ yum -y install epel-release

Then only we could install tripwire.

$ yum -y install tripwire

Then have a look at “/etc/tripwire/twcfg.txt” and “/etc/tripwire/twpol.txt”. Nothing needs changing unless you need to.

Run the following:

$ tripwire-setup-keyfiles

The above requires you to enter a new passphrase. It will ask for it several times.

Finally you should initialise the database:

$ tripwire –init

$ tripwire –check

Issue the command “/usr/sbin/tripwire –check” to check the system for changes. Or add the following to “crontab -e”:

0 3 * * * tripwire –check | mail -s “Tripwire Report”

And you should be fine now.

Leave a Reply

Your email address will not be published. Required fields are marked *