tripwire report

tripwire is pointing those files as modified:

/etc/rc.d/init.d/filelimits
/etc/rc.d/rc3.d/S11filelimits
/etc/rc.d/rc4.d/S11filelimits
/etc/rc.d/rc5.d/S11filelimits

should I remove them from tripwire policy?

also, anyone know a "less paranoid" policy? that's obvious that, if I run a webhosting, /etc/passwd, /etc/group/, /etc/httpd/conf/, /etc/named.conf will be changed almost everyday

thanks

 

 

 

 

Top