Skip to content

Open Source Tripwire 2.4.3.2
Compare
Choose a tag to compare
@brc0x1 brc0x1 released this 01 Feb 05:41
· 221 commits to master since this release
2.4.3.2
2f41ee1

What's New:

i18n

  • Optionally use iconv(), where available, for report/db files that are portable across different character encodings. This is disabled by default for the sake of backward compatibility.
  • Properly display multibyte/high ascii chars when displaying reports or DBs.

Hash generation

  • Disk cache hinting with posix_fadvise() or similar mechanism (where available), to avoid filling the system disk cache with files we've already read & aren't immediately going to revisit.
  • HASH_DIRECT_IO config option, to use direct i/o while hashing files, where available (only Linux in 2.4.3.2), per longstanding user request.
  • Use O_NOATIME, where available, so that scanning a file/dir/symlink doesn't update its access time attribute.
  • Optionally use system CommonCrypto for hashes on Mac OS X.

Build System

  • Regenerated build system with automake 1.15 (we were previously on the ancient version 1.8).
  • ‘make dist’ now generates a complete, buildable source bundle.
  • Can now use OpenSSL while cross compiling, if the appropriate libs are available.
  • Can finally use a build directory outside of the OST source tree.

Platform(s)

  • MS-DOS/FreeDOS + DJGPP support added
  • AROS-specific fixes for not echoing passphrases, & deleting temporary files.
  • Cygwin: paths with leading double slashes are now handled correctly. Cygwin uses this syntax for UNC paths.

Other

  • Remove dead code & unused files
  • Add embedded version strings for 'what' command (or 'version' command on AROS)
  • Add a new config file option RESOLVE_IDS_TO_NAMES to control whether we try to
    resolve uid/gid values to user & group names. Static binaries are known to segfault when
    doing this given certain nsswitch.conf setups (particularly LDAP/AD), so setting this
    to false bypasses name resolution and just displays the numeric uid/gid.
  • Add a new optional --key-size argument to twadmin --generate-keys mode, with available
    sizes of 1024 or 2048 bits. Previously twadmin always created 1024-bit El Gamal keys,
    and this remains the default if --key-size is not specified, at least for the time being.
  • Fix a compilation issue with C++11 and -Werror=terminate.
Assets 2
Loading