How to install Tripwire on CentOS and Redhat. Open Source Tripwire is a free software security and data integrity tool for monitoring and alerting on specific file change(s) on a range of systems. The project is based on code originally contributed by Tripwire, Inc. in 2000.
Tripwire, Inc., a leading global provider of security and compliance solutions for enterprises and industrial organisations, today announced the results of a survey conducted by Dimensional Research examining industrial control systems (ICS) security in the energy industry. The survey was conducted in March, and its respondents included 151 IT and operational technology (OT) security professionals at energy and oil and gas companies.
It’s encouraging to see that companies have increased their security investment somewhat. However, it’s concerning that more than half would wait for an attack to happen before investing properly, given what’s at stake with critical infrastructure. The energy industry should invest in establishing more robust cybersecurity strategies, with a proper foundation of critical security controls and layers of defense.
Firstly we install epel-release, install it if you did not have it.
$ yum -y install epel-release
Then only we could install tripwire.
$ yum -y install tripwire
Then have a look at “/etc/tripwire/twcfg.txt” and “/etc/tripwire/twpol.txt”. Nothing needs changing unless you need to.
Run the following:
The above requires you to enter a new passphrase. It will ask for it several times.
Finally you should initialise the database:
$ tripwire –init
$ tripwire –check
Issue the command “/usr/sbin/tripwire –check” to check the system for changes. Or add the following to “crontab -e”:
0 3 * * * tripwire –check | mail -s “Tripwire Report” firstname.lastname@example.org
And you should be fine now.