This article demonstrates how to install Tripwire on CentOS and Redhat.
yum -y install tripwire
Then have a look at “/etc/tripwire/twcfg.txt” and “/etc/tripwire/twpol.txt”. Nothing needs changing unless you need to. I’d suggest adding “[email protected]” to “/etc/tripwire/twpol.txt” to have reports emailed to you.
Run the following:
tripwire-setup-keyfiles
The above requires you to enter a new passphrase. It will ask for it several times.
Finally you should initialise the database:
tripwire --init
Issue the command “/usr/sbin/tripwire –check” to check the system for changes. Or add the following to “crontab -e”:
# Midnight every night 0 0 * * * /usr/sbin/tripwire --check --email-report
And you should be fine now.