Hi, I was reading my tripwire log today, and there is a couple entries I don't understand:
Code:
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/run)
Severity Level: 100
-------------------------------------------------------------------------------
Added:
"/var/run/sudo/my_username/0:root"
-------------------------------------------------------------------------------
Rule Name: Critical configuration files (/etc/sysconfig)
Severity Level: 100
-------------------------------------------------------------------------------
Modified:
"/etc/sysconfig/hwconf"
-------------------------------------------------------------------------------
Rule Name: Security Control (/etc/security)
Severity Level: 100
-------------------------------------------------------------------------------
Modified:
"/etc/security/console.apps/ethereal"
I find the first one particularily troubling. Can anyone give me some info on what they mean?