- Category:
- File Formats
- Tags:
-
[PDF]
- File Size:
- 308kb
- Update:
- 2012-11-26
- Downloads:
- 0 Times
- Uploaded by:
- 王涛
Description: Tripwire is a most commonly used open source integrity checking tool can be used to implement a safety management system, it generates the target file checksum and periodic check whether a file was changed. Here we briefly explain the operation mechanism of Tripwire. Most of the integrity checker, Tripwire will need to monitor the file
Uses a checksum to generate a unique identifier for a state of the file (also known as a "snapshot"), and store them for later use. When the Tripwire program runs, it first calculates the new identity, and to compare the original logo in storage, if we find do not match, it is the reporting system management personnel file has been
Modified. Next, the system administrator can use this match to determine whether the system was the invasion. For example, if Tripwire/bin/login and/bin/ls stored snapshot, then any modification of their size, inode number, permissions and other attributes, can not escape at Tripwire eyes. Modify the contents of the file, ev
To Search:
File list (Check if you may need any files):
Tripwire-intro.pdf