Otu esi etinye Tripwire IDS (Sistemụ Nchọpụta Intrusion) na Linux


Tripwire bụ Sistemụ Nchọpụta Intrusion Linux ama ama (IDS) nke na-arụ na sistemu iji chọpụta ma ọ bụrụ na mgbanwe sistemụ faịlụ na-akwadoghị mere ka oge na-aga.

Na nkesa CentOS na RHEL, tripwire abụghị akụkụ nke ebe nchekwa gọọmentị. Agbanyeghị, enwere ike itinye ngwungwu tripwire site na ebe nchekwa Epel.

Iji malite, buru ụzọ wụnye Epel repositories na CentOS na RHEL usoro, site n'inye iwu dị n'okpuru.

# yum install epel-release

Mgbe ị wụnyechara Epel repositories, jide n'aka na ị na-eji iwu na-esonụ emelite usoro ahụ.

# yum update

Mgbe usoro mmelite ahụ mechara, wụnye Tripwire IDS software site na ịme iwu dị n'okpuru.

# yum install tripwire

Ọ dabara nke ọma, Tripwire bụ akụkụ nke Ubuntu na Debian ndabere nchekwa ma enwere ike itinye ya na iwu ndị a.

$ sudo apt update
$ sudo apt install tripwire

Na Ubuntu na Debian, a ga-ajụ nrụnye tripwire ka ọ họrọ ma kwado igodo saịtị yana passphrase igodo mpaghara. A na-eji igodo ndị a tripwire chekwaa faịlụ nhazi ya.

Na CentOS na RHEL, ịkwesịrị ịmepụta igodo tripwire site na iwu dị n'okpuru wee weta passphrase maka igodo saịtị na igodo mpaghara.

# tripwire-setup-keyfiles

Iji kwado sistemụ gị, ịkwesịrị ibido nchekwa data Tripwire site na iwu a. N'ihi n'eziokwu na ebidobeghị nchekwa data ahụ, tripwire ga-egosipụta ọtụtụ ịdọ aka ná ntị ụgha.

# tripwire --init

N'ikpeazụ, mepụta akụkọ usoro tripwire iji lelee nhazi site na ịnye iwu dị n'okpuru. Jiri --help gbanwee ka ịdepụta nhọrọ nlele nlele tripwire niile.

# tripwire --check --help
# tripwire --check

Ka emechara iwu nlele tripwire, nyochaa akụkọ ahụ site na imepe faịlụ na ndọtị .twr sitere na /var/lib/tripwire/report/ directory na iwu editọ ederede ọkacha mmasị gị, mana tupu nke ahụ, ịkwesịrị ịtụgharị na faịlụ ederede.

# twprint --print-report --twrfile /var/lib/tripwire/report/tecmint-20170727-235255.twr > report.txt
# vi report.txt

Ọ bụ ya! ị tinyela Tripwire na sava Linux nke ọma. Enwere m olileanya na ị nwere ike hazie IDS Tripwire gị ngwa ngwa.