> So, You Tripwire Users Out There: what methods are you using
> to both keep the Tripwire database secure, *and* to make
> Tripwire easy to maintain?
Use a workstation with a floppy disk drive. The tripwire binaries
and database for a firewall will easily fit on a floppy. Access speed
is not high but since tripwire is usually run automatically by the
system, run time is not a large consideration. By using the write protect
tab on the floppy, it is possible to easily update the database
when needed (in standalone mode) and to prevent network crackers
from modifying the database. Using a floppy makes it easy to keep
an extra copy offsite and run database comparisons on other systems
by removing the floppy disk.