17.2. Configure the /var/tmp/install.cfg file

Recall that Tripwire version 2.2.1 is not open source, so you cannot compile and install it like other archives source files, instead you must modify the install.cfg file of tripwire that will install automatically Tripwire software for you to specify installation paths for your system. We must modify this file to be compliant with Red Hats file system structure and install Tripwire binaries under our PATH Environment Variable.

  1. Edit the install.cfg file, vi install.cfg and change this file to look like:
    
           #
               # install.cfg
               #
               # default install.cfg for:
               # Tripwire(R) 2.2.1 for Unix
               #
               # NOTE:  This is a Bourne shell script that stores installation
               #        parameters for your installation.  The installer will
               #        execute this file to generate your config file and also to
               #        locate any special configuration needs for your install.
               #        Protect this file, because it is possible for
               #        malicious code to be inserted here
               #
               # To set your Root directory for install, set TWROOT= to something
               # other than /usr/TSS as necessary.
               #
               #=======================================================
    
               # If CLOBBER is true, then existing files are overwritten.
               # If CLOBBER is false, existing files are not overwritten.
               CLOBBER=false
    
               # The root of the TSS directory tree.
               TWROOT="/usr"
    
               # Tripwire binaries are stored in TWBIN.
               TWBIN="${TWROOT}/bin"
    
               # Tripwire policy files are stored in TWPOLICY.
               TWPOLICY="${TWROOT}/TSS/policy"
    
               # Tripwire manual pages are stored in TWMAN.
               TWMAN="${TWROOT}/man"
    
               # Tripwire database files are stored in TWDB.
               TWDB="${TWROOT}/TSS/db"
    
               # The Tripwire site key files are stored in TWSITEKEYDIR.
               TWSITEKEYDIR="${TWROOT}/TSS/key"
    
               # The Tripwire local key files are stored in TWLOCALKEYDIR.
               TWLOCALKEYDIR="${TWROOT}/TSS/key"
    
               # Tripwire report files are stored in TWREPORT.
               TWREPORT="${TWROOT}/TSS/report"
    
               # This sets the default text editor for Tripwire.
               TWEDITOR="/bin/vi"
    
               # TWLATEPROMTING controls the point when tripwire asks for a password.
               TWLATEPROMPTING=false
    
               # TWLOOSEDIRCHK selects whether the directory should be monitored for 
               # properties that change when files in the directory are monitored.
               TWLOOSEDIRCHK=false
    
               # TWMAILNOVIOLATIONS determines whether Tripwire sends a no violation 
               # report when integrity check is run with --email-report but no rule
               # violations are found.  This lets the admin know that the integrity 
               # was run, as opposed to having failed for some reason.
               TWMAILNOVIOLATIONS=true
    
               # TWEMAILREPORTLEVEL determines the verbosity of e-mail reports.
               TWEMAILREPORTLEVEL=3
    
               # TWREPORTLEVEL determines the verbosity of report printouts.
               TWREPORTLEVEL=3
    
               # TWSYSLOG determines whether Tripwire will log events to the system log
               TWSYSLOG=false
    
               #####################################
               # Mail Options - Choose the appropriate
               # method and comment the other section
               #####################################
    
               #####################################
               # SENDMAIL options - DEFAULT
               #
               # Either SENDMAIL or SMTP can be used to send reports via TWMAILMETHOD.
               # Specifies which sendmail program to use.
               #####################################
    
               TWMAILMETHOD=SENDMAIL
               TWMAILPROGRAM="/usr/lib/sendmail -oi -t"
    
               #####################################
               # SMTP options
               #
               # TWSMTPHOST selects the SMTP host to be used to send reports.
               # SMTPPORT selects the SMTP port for the SMTP mail program to use.
               #####################################
    
               # TWMAILMETHOD=SMTP
               # TWSMTPHOST="mail.domain.com"
               # TWSMTPPORT=25
    
               ################################################################################
               # Copyright (C) 1998-2000 Tripwire (R) Security Systems, Inc. Tripwire (R) is a
               # registered trademark of the Purdue Research Foundation and is licensed
               # exclusively to Tripwire (R) Security Systems, Inc.
               ################################################################################
               

    Note: The file install.cfg is a Bourne shell script used by the installer to set configuration variables. These variables specify the target directories where the installer will copy files and what the installer should do if the installation process would overwrite existing Tripwire software files.

  2. Now we must run the installation script to install Tripwire binaries and related files on to our system according to whether you are using default or custom configuration values. To run the installation script and install Tripwire, use the following command:
    
           [root@deep ]/tmp#./install.sh
               

    Important: The install.sh file is the installation script which you run to begin installation of Tripwire. During the installation procedure, you will:

    1. Answer some questions related to the installation.

    2. Specify two pass phrases to be assigned for your site and local keys.

  3. When Tripwire is installed in our system it will copy License.txt, README, and Release_Notes files under /usr directory. Of course after finishing reading those files you can safely remove them from your /usr directory with the following command: To remove these files from your system, use the following command:
    
           [root@deep ]/usr# rm -f  /usr/License.txt README Release_Notes
               

Dont forget to clean up later:

           [root@deep] /#cd /var/tmp
           [root@deep ]/tmp# rm -rf License.txt README Release-Notes install.cfg install.sh pkg/ Tripwire_version_for_Linux_x86_tar.gz
           
The rm command as used above will remove all related files and directories we have used to install Tripwire for Linux. It will also remove the Tripwire for Linux compressed archive from the /var/tmp directory.