I'm trying to get tripwire up and running on my CentOS box. I've already downloaded and installed tripwire-2.3.1-21, creating the /etc/tripwire directory and the two files twcfg.txt and twpol.txt in the process.
I've looked around at different guides and most of them refer to a setup script called twinstall.sh that doesn't exist. Eventually I found a guide that recognizes this fact and explains the commands to get around not having this script:
How to Set Up and Use Tripwire | Linux Journal
Despite some problems with filenames I've been able to trial-and-error my way to the point where I have generated encrypted verions of both the policy and the config files. I have also been able to initialize the database (/var/lib/tripwire/databasefile.twd).
The next step would be to check the policy and begin removing unnecessary entries to make the policy useful. That's where I run into a problem. I try to check the file with the command tripwire --check and get an error referring to the file tw.cfg which doesn't exist!
Does anyone have any ideas why I would be able to generate a database file but not be able to check it? Better yet, does anyone know of a guide that actually works (and doesn't refer to the non-existant twinstall.sh)?