Help - Search - Members - Calendar
Full Version: Tripwire Question
Linuxhelp > Support > Technical Support
Robert83
Hi,

I've left yum [service] to start up at boot, is this because of yum?

Tripwire® 2.3.0 Integrity Check Report

Report generated by: root
Report created on: Fri Mar 5 06:05:00 2004
Database last updated on: Never

===============================================================================
Report Summary:
===============================================================================

Host name: WindowsXP.zt2f48X
Host IP address: xxx.xxx.xxx.xxx
Host ID: None
Policy file used: /etc/tripwire/tw.pol
Configuration file used: /etc/tripwire/tw.cfg
Database file used: /var/lib/tripwire/WindowsXP.zt2f48X.twd
Command line used: /usr/sbin/tripwire -m c -M

===============================================================================
Rule Summary:
===============================================================================

-------------------------------------------------------------------------------
Section: Unix File System
-------------------------------------------------------------------------------

Rule Name Severity Level Added Removed Modified
--------- -------------- ----- ------- --------
Invariant Directories 66 0 0 0
Temporary directories 33 0 0 0
Tripwire Data Files 100 0 0 0
Critical devices 100 0 0 0
* User binaries 66 0 0 2
Tripwire Binaries 100 0 0 0
* Libraries 66 0 0 7
Critical system boot files 100 0 0 0
File System and Disk Administraton Programs
100 0 0 0
Kernel Administration Programs 100 0 0 0
Networking Programs 100 0 0 0
Shell Binaries 100 0 0 0
System Administration Programs 100 0 0 0
Hardware and Device Control Programs
100 0 0 0
System Information Programs 100 0 0 0
Application Information Programs
100 0 0 0
Shell Related Programs 100 0 0 0
Operating System Utilities 100 0 0 0
Critical Utility Sym-Links 100 0 0 0
Critical configuration files 100 0 0 0
System boot changes 100 0 0 0
* OS executables and libraries 100 1 0 0
Security Control 100 0 0 0
Boot Scripts 100 0 0 0
(/etc/rc)
Login Scripts 100 0 0 0
Root config files 100 0 0 0

Total objects scanned: 12093
Total violations found: 10

===============================================================================
Object Detail:
===============================================================================

-------------------------------------------------------------------------------
Section: Unix File System
-------------------------------------------------------------------------------

-------------------------------------------------------------------------------
Rule Name: Libraries (/usr/lib)
Severity Level: 66
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 7
----------------------------------------

Modified object name: /usr/lib/libxml2.so.2

Property: Expected Observed
------------- ----------- -----------
* Inode Number 1152135 1152219
* Mode lrwxr-xr-x lrwxrwxrwx
* Modify Time Wed Feb 25 12:20:49 2004 Fri Mar 5 04:34:59 2004


Modified object name: /usr/lib/libxml2.so.2.5.10

Property: Expected Observed
------------- ----------- -----------
* Inode Number 1152136 1152135
* Modify Time Fri Dec 12 16:55:46 2003 Mon Mar 1 19:28:34 2004
* CRC32 B5Km5W DzcXe1
* MD5 BI3lE1EYwHmMrSAnlJ3zPm AZDkL5o0GQ1EahsZtn5PCm


Modified object name: /usr/lib/python2.2/site-packages/drv_libxml2.py

Property: Expected Observed
------------- ----------- -----------
* Inode Number 762866 762873
* Modify Time Fri Dec 12 16:55:45 2003 Mon Mar 1 19:28:32 2004


Modified object name: /usr/lib/python2.2/site-packages/libxml2.py

Property: Expected Observed
------------- ----------- -----------
* Inode Number 762867 762866
* Modify Time Fri Dec 12 16:55:45 2003 Mon Mar 1 19:28:32 2004


Modified object name: /usr/lib/python2.2/site-packages/libxml2mod.a

Property: Expected Observed
------------- ----------- -----------
* Inode Number 762868 762867
* Modify Time Fri Dec 12 16:55:46 2003 Mon Mar 1 19:28:34 2004
* CRC32 AuVl80 BIMLy4
* MD5 Cvt9IzSjBB4/ui9Za6dG7y Cqe8BXeC48xlrkn1+W5tKa


Modified object name: /usr/lib/python2.2/site-packages/libxml2mod.la

Property: Expected Observed
------------- ----------- -----------
* Inode Number 762869 762868
* Modify Time Fri Dec 12 16:55:45 2003 Mon Mar 1 19:28:33 2004


Modified object name: /usr/lib/python2.2/site-packages/libxml2mod.so

Property: Expected Observed
------------- ----------- -----------
* Inode Number 762870 762869
* Modify Time Fri Dec 12 16:55:46 2003 Mon Mar 1 19:28:34 2004
* CRC32 Btvssl AMf7q1
* MD5 CatMhAu7dGhLcXh70CG6O4 AtE2tTpIoawOO9LNyIIL7Z



-------------------------------------------------------------------------------
Rule Name: User binaries (/usr/bin)
Severity Level: 66
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 2
----------------------------------------

Modified object name: /usr/bin/xmlcatalog

Property: Expected Observed
------------- ----------- -----------
* Inode Number 1071120 1071423
* Modify Time Fri Dec 12 16:55:46 2003 Mon Mar 1 19:28:34 2004


Modified object name: /usr/bin/xmllint

Property: Expected Observed
------------- ----------- -----------
* Inode Number 1071121 1071120
* Modify Time Fri Dec 12 16:55:46 2003 Mon Mar 1 19:28:34 2004



-------------------------------------------------------------------------------
Rule Name: OS executables and libraries (/lib)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Added Objects: 1
----------------------------------------

Added object name: /lib/libdb.so.3

===============================================================================
Error Report:
===============================================================================

No Errors

-------------------------------------------------------------------------------
*** End of report ***

Tripwire 2.3 Portions copyright 2000 Tripwire, Inc. Tripwire is a registered
trademark of Tripwire, Inc. This software comes with ABSOLUTELY NO WARRANTY;
for details use --version. This is free software which may be redistributed
or modified only under certain conditions; see COPYING for details.
All rights reserved.


Sincerely
Robert B
hughesjr
look in /var/log/yum.log
Robert83
Hi,

I've already looked into it, forgot to post here ...sorry...

phewwww, I was almost scared smile.gif smile.gif , that little yum thingie there automaticaly downloaded the latest version of both packages smile.gif , I think I'll turn it off...by the way , that package thingie [with the testing you mentioned , about those broken packages], same thing with these enterprise level rpm's and kernels right? or should I leave it on?



Sincerely
Robert B
hughesjr
libxml2-2.5.10-6.i386.rpm
libxml2-devel-2.5.10-6.i386.rpm
libxml2-python-2.5.10-6.i386.rpm
mod_python-3.0.3-3.ent.i386.rpm

All these packages changed in the last couple days in WhiteBox Enterprise Linux...due to security updates by RHEL...
Robert83
Hi,

sorry to bother you again with this smile.gif

but where can I read about these news? where can I find that place?

I mean about vurnabilities [sorry if spelled wrong], and for these updates , changes...?


Sincerely
Robert B
hughesjr
I like to do all my updates by manually typing in yum a couple times a week.

If you join the whitebox-announce mailing list, you will get e-mailed whenever an update happens. ... and/or if you join the RedHat enterprise-watch mailing list, you will be notified whenever a RHEL patch is created, and can start looking for it in WBEL.
hughesjr
And for RedHat 9 ... until April 30, you can get updates from the RedHat-watch-list

You can also review the archives from links on the signup pages...
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
Invision Power Board © 2001-2017 Invision Power Services, Inc.