linux security - Jan 1999 - Re: Tripwire mess

Actually I just looked at my RH 5.2 dist and it looks as if Tripwire 1.3 is
shipped with it.

If tripwire 1.3 is included, I''d be very surprised, as tripewire 1.3 is
if
I recall the new and cupported and non-shareware/freeware version of the
product.  perhaps they are only charging commercial institutions, I have
not fully reviewed they licensing files...

As for the 1.2 patches.  There was a patch on one of the old distribution
sites for tripwire 1.2, the patch failed to function, and was done by a
fellow close here to my location im minnesota, at the UofM.  when tripwire
repeatedly coredumped for me, I contacted all involved and after a bit of
work, was able to get a working patch from the individual that had
produced the patch.  I could look up all the info for folks, but, damn, I
hate having to locate e-mail in my archives unless really forced to, so,
unless someone really requires bounces or forwards from that archive and
endeavor, I''ll hold back.

I would venture the new working patch is out in the old dist sites now, if
not if anyone would like the patch, runs damned fine on my slackware
system <hate the way redhat redoes everything, and am used to slackware>
I''d be happy to make it available to those without the time to search.
drop me a note if you so wish.

Ron DuFresne

On Tue, 5 Jan 1999, Kevin wrote:
> Actually I just looked at my RH 5.2 dist and it looks as if Tripwire 1.3 is
> shipped with it.
>
> --
> ----------------------------------------------------------------------
> Please refer to the information about this list as well as general
> information about Linux security at http://www.aoy.com/Linux/Security.
> ----------------------------------------------------------------------
>
> To unsubscribe:
>   mail -s unsubscribe linux-security-request@redhat.com < /dev/null
>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
        admin & senior consultant:  darkstar.sysinfo.com
                  http://darkstar.sysinfo.com

"Cutting the space budget really restores my faith in humanity.  It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation."
                -- Johnny Hart

testing, only testing, and damn good at it too!

On Tue Jan 05 1999 at 12:26, "Kevin" wrote:
> Actually I just looked at my RH 5.2 dist and it looks as if Tripwire 1.3 is
> shipped with it.
tripwire 1.2 is shipped with the RedHat 5.2 Powertools - no 1.3
version in sight.  If I recall, this version is several years old -
later versions of it went commercial.

I''ve experienced the segfault myself, in exactly the manner described
by "CyberPsychotic" <fygrave@tigerteam.net> describes.  Thanks
for the
patch.

Very useful tool.  I''m glad RH is including it with its powertools
collection.  More "security" utilities such as this should be
included, including things like "cheops"...

[mod: I''m getting conflicting reports "yes it shipped version
X" "no
it didn''t, version X was shipped". Figure it out for yourself if
you
need to know. I''m no longer approving stuff in this yes/no debate. --
REW]

Cheers
Tony