I am trying to exclude one directory under /etc from the check. Right now, the file reads:
# Other configuration files
rulename = "Other configuration files",
severity = $(SIG_MED)
/etc -> $(SEC_BIN) ;
Other than putting in all of the directories uder /etc and excluding the one I don't want to scan, how does one exclude just one directory?
Thanks in advance…
I am currently revamping the policy creation with a script which will custom match your system better, although it doesn't help you in that case, you might find it useful in the longer term.
Now onto your issue, there are ways to exclude stuff from the policy monitoring, Take a look at the policyguide.txt file provided with tripwire, it has extensive examples about this.
Sign up for the SourceForge newsletter:
You seem to have CSS turned off.
Please don't fill out this field.