colin
/
tripwire-open-source
mirror of https://github.com/Tripwire/tripwire-open-source.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
tripwire-open-source/contrib/osx
History
Brian Cox 1ee24a68bd Merge in contributed files from 2.4.2.3 fork (https://github.com/steakknife/tripwire); Update ChangeLog, Maintainers, Packaging & ReadMe to reflect changes & credit contributors 2016-04-03 20:27:07 -07:00
..
README.md Merge in contributed files from 2.4.2.3 fork (https://github.com/steakknife/tripwire); Update ChangeLog, Maintainers, Packaging & ReadMe to reflect changes & credit contributors 2016-04-03 20:27:07 -07:00
homebrew_install_scripts_and_config Merge in contributed files from 2.4.2.3 fork (https://github.com/steakknife/tripwire); Update ChangeLog, Maintainers, Packaging & ReadMe to reflect changes & credit contributors 2016-04-03 20:27:07 -07:00
org.tripwire.Tripwire.plist Merge in contributed files from 2.4.2.3 fork (https://github.com/steakknife/tripwire); Update ChangeLog, Maintainers, Packaging & ReadMe to reflect changes & credit contributors 2016-04-03 20:27:07 -07:00
twcfg.txt.sample Merge in contributed files from 2.4.2.3 fork (https://github.com/steakknife/tripwire); Update ChangeLog, Maintainers, Packaging & ReadMe to reflect changes & credit contributors 2016-04-03 20:27:07 -07:00
twpol.txt.sample Merge in contributed files from 2.4.2.3 fork (https://github.com/steakknife/tripwire); Update ChangeLog, Maintainers, Packaging & ReadMe to reflect changes & credit contributors 2016-04-03 20:27:07 -07:00

README.md

OSX readme

What this does

  • Runs tripwire whenever connected to power
  • Automatically grooms logs (not reports, its a todo)

Installation

  1. Edit ./homebrew_install_scripts_and_config to taste
  2. Run ./homebrew_install_scripts_and_config as root
  3. Modify TRIPWIRE_ETC_DIR/twcfg.txt and TRIPWIRE_ETC_DIR/twpol.txt to taste
  4. Make up two brand-new, 24+ character passwords (they MUST not be the same), and store them securely before continuing:
  • site passphrase
  • local passphrase

  1. Run the following commands as root:

    TRIPWIRE_ROOT/sbin/tripwire_set_site_and_local_passphrases
TRIPWIRE_ROOT/sbin/tripwire_update_config_file # twcfg.txt -> tw.cfg
TRIPWIRE_ROOT/sbin/tripwire_update_policy_file # twpol.txt -> tw.pol
TRIPWIRE_ROOT/sbin/tripwire --init             # this creates a new encrypted database

  2. Enable periodic jobs (run as root):

    launchctl load -w /Library/LaunchDaemons/org.tripwire.Tripwire.plist

Uninstallation (run with sudo or su)

launchctl unload -w /Library/LaunchDaemons/org.tripwire.Tripwire.plist
rm -f /Library/LaunchDaemons/org.tripwire.Tripwire.plist
TRIPWIRE_ROOT/sbin/tripwire_uninstall
# or remove everything: TRIPWIRE_ROOT/sbin/tripwire_uninstall -A