19.9. Updating the Tripwire Configuration File

If you want to change Tripwire's configuration file, you should first edit the sample configuration file /etc/tripwire/twcfg.txt. If you deleted this file (as you should whenever you are finished configuring Tripwire), you can regenerate it by issuing the following command:

twadmin --print-cfgfile > /etc/tripwire/twcfg.txt

Tripwire will not recognize any configuration changes until the configuration text file is correctly signed and converted to /etc/tripwire/tw.pol with the twadmin command.

Use the following command to regenerate a configuration file from the /etc/tripwire/twcfg.txt text file:

/usr/sbin/twadmin --create-cfgfile -S site.key /etc/tripwire/twcfg.txt

Since the configuration file does not not alter any Tripwire policies or files tracked by the application, it is not necessary to regenerate the Tripwire database.