-   Linux - Software (
-   -   Question on the tripwire config file, twpol.txt (

abefroman 05-04-2008 09:53 PM

Question on the tripwire config file, twpol.txt
Question on the tripwire config file, twpol.txt: Can I use wild cards?

to get it not to check everything inside any users mail directory?

And does it process every thing from top down and remember what it is suppose to ignore?
Ex. If i have
then further down I have
/home -> $(ReadOnly) ;
Will it know to skip /home/user/mail


eggixyz 05-05-2008 07:25 PM

Hey There,

I'm not sure if the last version of tripwire I used was up to today's standards but it used to be able to ignore using * wildcards like

!/this/dir --- to totally ignore the dir


=/usr/mail --- to only check user mail and stop there (don't descend into users boxes)

But I'm pretty sure it's still true that the policy file reads left to right top to bottom, like before so it will execute the first command before it realizes you don't want it to look in that directory (that you have later in the file)

Hope that helps :)

, Mike

eggixyz 05-05-2008 07:28 PM

Actually, in re-reading your posts,

regarding the second /home/ entry should give you an error for a duplicate rule when you parse it with tripwire, since it would be the second rule on the same location, with conflicting directions.

Worst case, give it a shot :) I haven't used it since they started charging for it. I kept the old Solaris binaries and they still compile :)

, Mike

All times are GMT -5. The time now is 12:55 AM.