Home page logo
/

basics logo Security Basics mailing list archives

Re: Tripwire valuable security tool or major overhead
From: xyberpix <xyberpix () xyberpix com>
Date: Wed, 29 Mar 2006 22:10:49 +0100

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

As a rule we monitor all system binaries, and anything else that you would really want to know about if it got replaced.
Also on Windows boxes it's a good idea to monitor the Registry as well.

If you have any specific questions, feel free to mail me off list.

xyberpix

Blog: http://blogs.securiteam.com



On 19 Mar 2006, at 22:59, wcamp () cox net wrote:

I started a project using Tripwire for servers and I am at a lost on what should be protected in a Solarix (UNIX) and Windows 2003 environments. What has been your experience in these environments using Tripwire.

---------------------------------------------------------------------- -----
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity Planning,
Computer Emergency Response Teams, and Digital Investigations.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------- -----


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (Darwin)

iD8DBQFEKvfZ2VKEoIQBZwkRAgOHAKC9DntN2BLVta/1nTvZzQTSR7DiyQCbBVRP
JwStUKtB+SIGI+N7HlkjYzU=
=CeWg
-----END PGP SIGNATURE-----

---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Tailor your education to your own professional goals with degree customizations including Emergency Management, Business Continuity Planning, Computer Emergency Response Teams, and Digital Investigations.
http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]