Site Navigation

FreeBSD Manual Pages

   man apropos
 
   All Sections 1 - General Commands 2 - System Calls 3 - Subroutines 4 - Special Files 5 - File Formats 6 - Games 7 - Macros and Conventions 8 - Maintenance Commands 9 - Kernel Interface n - New Commands FreeBSD 16.0-CURRENT FreeBSD 15.0-STABLE FreeBSD 14.3-RELEASE FreeBSD 14.3-RELEASE and Ports FreeBSD 14.3-STABLE FreeBSD 14.2-RELEASE FreeBSD 14.2-RELEASE and Ports FreeBSD 14.1-RELEASE FreeBSD 14.1-RELEASE and Ports FreeBSD 14.0-RELEASE FreeBSD 14.0-RELEASE and Ports FreeBSD 13.5-RELEASE FreeBSD 13.5-RELEASE and Ports FreeBSD 13.5-STABLE FreeBSD 13.4-RELEASE FreeBSD 13.4-RELEASE and Ports FreeBSD 13.3-RELEASE FreeBSD 13.3-RELEASE and Ports FreeBSD 13.2-RELEASE FreeBSD 13.2-RELEASE and Ports FreeBSD 13.1-RELEASE FreeBSD 13.1-RELEASE and Ports FreeBSD 13.0-RELEASE FreeBSD 13.0-RELEASE and Ports FreeBSD 12.4-RELEASE FreeBSD 12.4-RELEASE and Ports FreeBSD 12.3-RELEASE FreeBSD 12.3-RELEASE and Ports FreeBSD 12.2-RELEASE FreeBSD 12.2-RELEASE and Ports FreeBSD 12.1-RELEASE FreeBSD 12.1-RELEASE and Ports FreeBSD 12.0-RELEASE FreeBSD 12.0-RELEASE and Ports FreeBSD 11.4-RELEASE FreeBSD 11.4-RELEASE and Ports FreeBSD 11.3-RELEASE FreeBSD 11.3-RELEASE and Ports FreeBSD 11.2-RELEASE FreeBSD 11.2-RELEASE and Ports FreeBSD 11.1-RELEASE FreeBSD 11.1-RELEASE and Ports FreeBSD 11.0-RELEASE FreeBSD 11.0-RELEASE and Ports FreeBSD 10.4-RELEASE FreeBSD 10.4-RELEASE and Ports FreeBSD 10.3-RELEASE FreeBSD 10.3-RELEASE and Ports FreeBSD 10.2-RELEASE FreeBSD 10.2-RELEASE and Ports FreeBSD 10.1-RELEASE FreeBSD 10.1-RELEASE and Ports FreeBSD 10.0-RELEASE FreeBSD 10.0-RELEASE and Ports FreeBSD 9.3-RELEASE FreeBSD 9.3-RELEASE and Ports FreeBSD 9.2-RELEASE FreeBSD 9.2-RELEASE and Ports FreeBSD 9.1-RELEASE FreeBSD 9.1-RELEASE and Ports FreeBSD 9.0-RELEASE FreeBSD 9.0-RELEASE and Ports FreeBSD 8.4-RELEASE FreeBSD 8.4-RELEASE and Ports FreeBSD 8.3-RELEASE FreeBSD 8.3-RELEASE and Ports FreeBSD 8.2-RELEASE FreeBSD 8.2-RELEASE and Ports FreeBSD 8.1-RELEASE FreeBSD 8.1-RELEASE and Ports FreeBSD 8.0-RELEASE FreeBSD 8.0-RELEASE and Ports FreeBSD 7.4-RELEASE FreeBSD 7.4-RELEASE and Ports FreeBSD 7.3-RELEASE FreeBSD 7.3-RELEASE and Ports FreeBSD 7.2-RELEASE FreeBSD 7.2-RELEASE and Ports FreeBSD 7.1-RELEASE FreeBSD 7.1-RELEASE and Ports FreeBSD 7.0-RELEASE FreeBSD 6.4-RELEASE FreeBSD 6.4-RELEASE and Ports FreeBSD 6.3-RELEASE FreeBSD 6.3-RELEASE and Ports FreeBSD 6.2-RELEASE FreeBSD 6.1-RELEASE FreeBSD 6.0-RELEASE FreeBSD 6.0-RELEASE and Ports FreeBSD 5.5-RELEASE FreeBSD 5.5-RELEASE and Ports FreeBSD 5.4-RELEASE FreeBSD 5.4-RELEASE and Ports FreeBSD 5.3-RELEASE FreeBSD 5.3-RELEASE and Ports FreeBSD 5.2.1-RELEASE FreeBSD 5.2.1-RELEASE and Ports FreeBSD 5.2-RELEASE FreeBSD 5.2-RELEASE and Ports FreeBSD 5.1-RELEASE FreeBSD 5.0-RELEASE FreeBSD 4.11-RELEASE FreeBSD 4.11-RELEASE and Ports FreeBSD 4.10-RELEASE FreeBSD 4.10-RELEASE and Ports FreeBSD 4.9-RELEASE FreeBSD 4.9-RELEASE and Ports FreeBSD 4.8-RELEASE FreeBSD 4.8-RELEASE and Ports FreeBSD 4.7-RELEASE FreeBSD 4.6.2-RELEASE FreeBSD 4.6.2-RELEASE and Ports FreeBSD 4.6-RELEASE FreeBSD 4.6-RELEASE and Ports FreeBSD 4.5-RELEASE FreeBSD 4.5-RELEASE and Ports FreeBSD 4.4-RELEASE FreeBSD 4.3-RELEASE FreeBSD 4.3-RELEASE and Ports FreeBSD 4.2-RELEASE FreeBSD 4.2-RELEASE and Ports FreeBSD 4.1.1-RELEASE FreeBSD 4.1.1-RELEASE and Ports FreeBSD 4.1-RELEASE FreeBSD 4.0-RELEASE FreeBSD 3.5.1-RELEASE FreeBSD 3.5.1-RELEASE and Ports FreeBSD 3.5-RELEASE and Ports FreeBSD 3.4-RELEASE FreeBSD 3.4-RELEASE and Ports FreeBSD 3.3-RELEASE FreeBSD 3.2-RELEASE FreeBSD 3.1-RELEASE FreeBSD 3.0-RELEASE FreeBSD 2.2.8-RELEASE FreeBSD 2.2.8-RELEASE and Ports FreeBSD 2.2.7-RELEASE FreeBSD 2.2.6-RELEASE FreeBSD 2.2.5-RELEASE FreeBSD 2.2.2-RELEASE FreeBSD 2.2.1-RELEASE FreeBSD 2.1.7.1-RELEASE FreeBSD 2.1.6.1-RELEASE FreeBSD 2.1.5-RELEASE FreeBSD 2.1.0-RELEASE FreeBSD 2.0.5-RELEASE FreeBSD 2.0-RELEASE FreeBSD 1.1.5.1-RELEASE FreeBSD 1.1-RELEASE FreeBSD 1.0-RELEASE FreeBSD Ports 14.3 FreeBSD Ports 14.3.quarterly FreeBSD Ports 14.2 FreeBSD Ports 14.1 FreeBSD Ports 14.0 FreeBSD Ports 13.5 FreeBSD Ports 13.4 FreeBSD Ports 13.3 FreeBSD Ports 13.2 FreeBSD Ports 13.1 FreeBSD Ports 13.0 FreeBSD Ports 12.4 FreeBSD Ports 12.3 FreeBSD Ports 12.2 FreeBSD Ports 12.1 FreeBSD Ports 12.0 FreeBSD Ports 11.4 FreeBSD Ports 11.3 FreeBSD Ports 11.2 FreeBSD Ports 11.1 FreeBSD Ports 11.0 FreeBSD Ports 10.4 FreeBSD Ports 10.3 FreeBSD Ports 10.2 FreeBSD Ports 10.1 FreeBSD Ports 10.0 FreeBSD Ports 9.3 FreeBSD Ports 9.2 FreeBSD Ports 9.1 FreeBSD Ports 9.0 FreeBSD Ports 8.4 FreeBSD Ports 8.3 FreeBSD Ports 8.2 FreeBSD Ports 8.1 FreeBSD Ports 8.0 FreeBSD Ports 7.4 FreeBSD Ports 7.3 FreeBSD Ports 7.2 FreeBSD Ports 7.1 FreeBSD Ports 7.0 FreeBSD Ports 6.4 FreeBSD Ports 6.3 FreeBSD Ports 6.2 FreeBSD Ports 6.0 FreeBSD Ports 5.5 FreeBSD Ports 5.4 FreeBSD Ports 5.3 FreeBSD Ports 5.2.1 FreeBSD Ports 5.2 FreeBSD Ports 5.1 FreeBSD Ports 4.11 FreeBSD Ports 4.10 FreeBSD Ports 4.9 FreeBSD Ports 4.8 FreeBSD Ports 4.7 FreeBSD Ports 4.6.2 FreeBSD Ports 4.6 FreeBSD Ports 4.5 FreeBSD Ports 4.3 FreeBSD Ports 4.2 FreeBSD Ports 4.1.1 FreeBSD Ports 3.5.1 FreeBSD Ports 3.5 FreeBSD Ports 3.4 FreeBSD Ports 2.2.8 4.4BSD Lite2 4.3BSD NET/2 4.3BSD Reno 2.11 BSD 2.10 BSD 2.9.1 BSD 2.8 BSD 386BSD 0.1 386BSD 0.0 CentOS 7.9 CentOS 7.8 CentOS 7.7 CentOS 7.6 CentOS 7.5 CentOS 7.4 CentOS 7.3 CentOS 7.2 CentOS 7.1 CentOS 7.0 CentOS 6.10 CentOS 6.9 CentOS 6.8 CentOS 6.7 CentOS 6.6 CentOS 6.5 CentOS 6.4 CentOS 6.3 CentOS 6.2 CentOS 6.1 CentOS 6.0 CentOS 5.11 CentOS 5.10 CentOS 5.9 CentOS 5.8 CentOS 5.7 CentOS 5.6 CentOS 5.5 CentOS 5.4 CentOS 4.8 CentOS 3.9 Darwin 8.0.1/ppc Darwin 7.0.1 Darwin 6.0.2/x86 Darwin 1.4.1/x86 Darwin 1.3.1/x86 Debian 14.0 unstable Debian 13.1.0 Debian 12.12.0 Debian 11.11.0 Debian 10.13.0 Debian 9.13.0 Debian 8.11.1 Debian 7.11.0 Debian 6.0.10 Debian 5.0.10 Debian 4.0.9 Debian 3.1.8 Debian 2.2.7 Debian 2.0.0 Dell UNIX SVR4 2.2 DragonFly 6.4.0 DragonFly 5.8.3 DragonFly 4.8.1 DragonFly 3.8.2 DragonFly 2.10.1 DragonFly 1.12.1 DragonFly 1.0A HP-UX 11.22 HP-UX 11.20 HP-UX 11.11 HP-UX 11.00 HP-UX 10.20 HP-UX 10.10 HP-UX 10.01 HP-UX 9.07 HP-UX 8.07 Inferno 4th Edition IRIX 6.5.30 Linux Slackware 3.1 MACH 2.5/i386 macOS 26.0 macOS 15.7 macOS 14.8 macOS 13.6.5 macOS 12.7.3 macOS 11.1 macOS 10.15.7 macOS 10.13.6 macOS 10.12.0 Minix 3.3.0 Minix 3.2.1 Minix 3.2.0 Minix 3.1.7 Minix 3.1.6 Minix 3.1.5 Minix 2.0.0 NetBSD 10.1 NetBSD 10.0 NetBSD 9.4 NetBSD 9.3 NetBSD 9.2 NetBSD 9.1 NetBSD 9.0 NetBSD 8.3 NetBSD 8.2 NetBSD 8.1 NetBSD 8.0 NetBSD 7.2 NetBSD 7.1.2 NetBSD 7.1 NetBSD 7.0 NetBSD 6.1.5 NetBSD 6.0 NetBSD 5.2.3 NetBSD 5.2 NetBSD 5.1 NetBSD 5.0 NetBSD 4.0.1 NetBSD 4.0 NetBSD 3.1 NetBSD 3.0 NetBSD 2.1 NetBSD 2.0.2 NetBSD 2.0 NetBSD 1.6.2 NetBSD 1.6.1 NetBSD 1.6 NetBSD 1.5.3 NetBSD 1.5.2 NetBSD 1.5.1 NetBSD 1.5 NetBSD 1.4.3 NetBSD 1.4.2 NetBSD 1.4.1 NetBSD 1.4 NetBSD 1.3.3 NetBSD 1.3.2 NetBSD 1.3.1 NetBSD 1.3 NetBSD 1.2.1 NetBSD 1.2 NetBSD 1.1 NetBSD 1.0 NeXTSTEP 3.3 OpenBSD 7.8 OpenBSD 7.7 OpenBSD 7.6 OpenBSD 7.5 OpenBSD 7.4 OpenBSD 7.3 OpenBSD 7.2 OpenBSD 7.1 OpenBSD 7.0 OpenBSD 6.9 OpenBSD 6.8 OpenBSD 6.7 OpenBSD 6.6 OpenBSD 6.5 OpenBSD 6.4 OpenBSD 6.3 OpenBSD 6.2 OpenBSD 6.1 OpenBSD 6.0 OpenBSD 5.9 OpenBSD 5.8 OpenBSD 5.7 OpenBSD 5.6 OpenBSD 5.5 OpenBSD 5.4 OpenBSD 5.3 OpenBSD 5.2 OpenBSD 5.1 OpenBSD 5.0 OpenBSD 4.9 OpenBSD 4.8 OpenBSD 4.7 OpenBSD 4.6 OpenBSD 4.5 OpenBSD 4.4 OpenBSD 4.3 OpenBSD 4.2 OpenBSD 4.1 OpenBSD 4.0 OpenBSD 3.9 OpenBSD 3.8 OpenBSD 3.7 OpenBSD 3.6 OpenBSD 3.5 OpenBSD 3.4 OpenBSD 3.3 OpenBSD 3.2 OpenBSD 3.1 OpenBSD 3.0 OpenBSD 2.9 OpenBSD 2.8 OpenBSD 2.7 OpenBSD 2.6 OpenBSD 2.5 OpenBSD 2.4 OpenBSD 2.3 OpenBSD 2.2 OpenBSD 2.1 OpenBSD 2.0 OpenDarwin 7.2.1 OpenDarwin 6.6.2/x86 OpenDarwin 6.6.1/x86 OpenDarwin 20030208pre4/ppc OpenIndiana 2024.10 OpenIndiana 2022.10 OpenIndiana 2020.10 OpenIndiana 2017.10 OpenIndiana 2015.10 OpenIndiana 2013.08 OpenSolaris 2010.03 OpenSolaris 2009.06 OpenStep 4.2 openSUSE 42.3 openSUSE 42.2 openSUSE 42.1 openSUSE 16.0 openSUSE 15.6 openSUSE 15.5 openSUSE 15.4 openSUSE 15.3 openSUSE 15.2 openSUSE 15.1 openSUSE 15.0 openSUSE 13.2 openSUSE 13.1 openSUSE 11.4 openSUSE 11.3 openSUSE 11.2 openSUSE 10.3 openSUSE 10.2 OSF1 V5.1/alpha OSF1 V4.0/alpha OSF1 V1.0/mips Plan 9 Red Hat 9.0 Red Hat 8.0 Red Hat 7.3 Red Hat 7.2 Red Hat 7.1 Red Hat 7.0 Red Hat 6.2 Red Hat 6.1 Red Hat 5.2 Red Hat 5.0 Red Hat 4.2 Rhapsody DR1 Rhapsody DR2 Rocky 10.0 Rocky 9.6 Rocky 9.5 Rocky 9.4 Rocky 9.3 Rocky 9.2 Rocky 9.1 Rocky 9.0 Rocky 8.10 Rocky 8.9 Rocky 8.8 Rocky 8.7 Rocky 8.6 Rocky 8.5 Rocky 8.4 Rocky 8.3 Sun UNIX 0.4 SunOS 5.10 SunOS 5.9 SunOS 5.8 SunOS 5.7 SunOS 5.6 SunOS 5.5.1 SunOS 4.1.3 SuSE 11.3 SuSE 11.2 SuSE 11.1 SuSE 11.0 SuSE 10.3 SuSE 10.2 SuSE 10.1 SuSE 10.0 SuSE 9.3 SuSE 9.2 SuSE 8.2 SuSE 8.1 SuSE 8.0 SuSE 7.3 SuSE 7.2 SuSE 7.1 SuSE 7.0 SuSE 6.4 SuSE 6.3 SuSE 6.1 SuSE 6.0 SuSE 5.3 SuSE 5.2 SuSE 5.0 SuSE 4.3 SuSE ES 10 SP1 Ubuntu 24.04 noble Ubuntu 23.10 mantic Ubuntu 22.04 jammy Ubuntu 20.04 focal Ubuntu 18.04 bionic Ubuntu 16.04 xenial Ubuntu 14.04 trusty ULTRIX 4.2 Ultrix-32 2.0/VAX Unix Seventh Edition X11R7.4 X11R7.3.2 X11R7.2 X11R6.9.0 X11R6.8.2 X11R6.7.0 XFree86 4.8.0 XFree86 4.7.0 XFree86 4.6.0 XFree86 4.5.0 XFree86 4.4.0 XFree86 4.3.0 XFree86 4.2.99.3 XFree86 4.2.0 XFree86 4.1.0 XFree86 4.0.2 XFree86 4.0.1 XFree86 4.0 XFree86 3.3.6 XFree86 3.3 XFree86 2.1 All Architectures html pdf ascii

home | help

---

TWADMIN(8)		    System Manager's Manual		    TWADMIN(8)

NAME
       twadmin - Tripwire administrative and utility tool

SYNOPSIS
       twadmin { -m F |	--create-cfgfile }  options...
	    configfile.txt
       twadmin { -m f |	--print-cfgfile	} [ options... ]
       twadmin { -m P |	--create-polfile } [ options...	]
	    policyfile.txt
       twadmin { -m p |	--print-polfile	} [ options... ]
       twadmin { -m R |	--remove-encryption } [	options... ]
	    file1 [ file2... ]
       twadmin { -m E |	--encrypt } [ options... ]
	    file1 [ file2... ]
       twadmin { -m e |	--examine } [ options... ]
	    file1 [ file2... ]
       twadmin { -m G |	--generate-keys	} options...
       twadmin { -m C |	--change-passphrases } options...

DESCRIPTION
       The twadmin utility is used to perform certain administrative functions
       related	to  Tripwire  files  and configuration options.	 Specifically,
       twadmin allows encoding,	decoding, signing, and verification  of	 Trip-
       wire  files, and	provides a means to generate and change	local and site
       keys.

   Creating a configuration file (--create-cfgfile)
       This command mode designates an existing	text file as the new  configu-
       ration  file  for  Tripwire.  The plain text configuration file must be
       specified on the	command	line.  Using the site key, the new  configura-
       tion file is encoded and	saved.

   Printing a configuration file (--print-cfgfile)
       This command mode prints	the specified encoded and signed configuration
       file in clear-text form to standard output.

   Replacing a policy file (--create-polfile)
       This  command  mode  designates an existing text	file as	the new	policy
       file for	Tripwire.  The plain text policy file must be specified	on the
       command line.  Using the	site key, the new policy file is  encoded  and
       saved.

   Printing a policy file (--print-polfile)
       This  command  mode prints the specified	encoded	and signed policy file
       in clear-text form to standard output.

   Removing encryption from a file (--remove-encryption)
       This command mode allows	the user to remove signing from	signed config-
       uration,	policy,	database, or report  files.   Multiple	files  may  be
       specified  on  the command line.	The user will need to enter the	appro-
       priate local or site keyfile, or	both if	a combination of files	is  to
       be  verified.  Even with	the cryptographic signing removed, these files
       will be in a binary encoded (non-human-readable)	form.

   Encrypting a	file (--encrypt)
       This command mode allows	the user to sign configuration,	policy,	 data-
       base files, or reports.	Multiple files may be specified	on the command
       line.   The files will be signed	using either the site or local key, as
       appropriate for the  type  of  file.   To  automate  the	 process,  the
       passphrase for the key files can	be included on the command line.

   Examining the signing status	of a file (--examine)
       This  command  allows  the user to examine the listed files and print a
       report of their signing status.	This  report  displays	the  filename,
       file  type,  whether  or	not a file is signed, and what key (if any) is
       used to sign it.

   Generating keys (--generate-keys)
       This command mode generates site	and/or	local  key  files  with	 names
       specified by the	user.

   Changing passphrases	(--change-passphrases)
       This  command  reencrypts the private part of the site and/or local key
       files using the key filenames and passphrases specified by the user.

OPTIONS
   Creating a configuration file:
	   -m F		   --create-cfgfile
	   -v		   --verbose
	   -s		   --silent, --quiet
	   -c cfgfile	   --cfgfile cfgfile
	   -S sitekey	   --site-keyfile sitekey
	   -Q passphrase   --site-passphrase passphrase
	   -e		   --no-encryption
	   configfile.txt

       -m F, --create-cfgfile
	      Mode selector.

       -v, --verbose
	      Verbose output mode.  Mutually exclusive with (-s).

       -s, --silent, --quiet
	      Silent output mode.  Mutually exclusive with (-v).

       -c cfgfile, --cfgfile cfgfile
	      Specify the destination of the encoded (and  optionally  signed)
	      configuration file.

       -S sitekey, --site-keyfile sitekey
	      Use  the specified site key file to encode and sign the new con-
	      figuration file.	Exactly	one of (-S) or (-e) must be specified.

       -Q passphrase, --site-passphrase	passphrase
	      Specifies	passphrase to be used with site	key for	 configuration
	      file encoding and	signing.  Valid	only in	conjunction with (-S).

       -e, --no-encryption
	      Do not sign the configuration file being stored.	The configura-
	      tion  file will still be compressed, and will not	be human-read-
	      able.  Mutually exclusive	with (-Q) and (-S).

       configfile.txt
	      Specifies	the text configuration file that will become  the  new
	      configuration file.

______________________________________________________________________________
   Printing a configuration file:
	   -m f		  --print-cfgfile
	   -v		  --verbose
	   -s		  --silent, --quiet
	   -c cfgfile	  --cfgfile cfgfile

       -m f, --print-cfgfile
	      Mode selector.

       -v, --verbose
	      Verbose output mode.  Mutually exclusive with (-s).

       -s, --silent, --quiet
	      Silent output mode.  Mutually exclusive with (-v).

       -c cfgfile, --cfgfile cfgfile
	      Print the	specified configuration	file.

______________________________________________________________________________

   Creating a policy file:
	   -m P		   --create-polfile
	   -v		   --verbose
	   -s		   --silent, --quiet
	   -c cfgfile	   --cfgfile cfgfile
	   -p polfile	   --polfile polfile
	   -S sitekey	   --site-keyfile sitekey
	   -Q passphrase   --site-passphrase passphrase
	   -e		   --no-encryption
	   policyfile.txt

       -m P, --create-polfile
	      Mode selector.

       -v, --verbose
	      Verbose output mode. Mutually exclusive with (-s).

       -s, --silent, --quiet
	      Silent output mode.  Mutually exclusive with (-v).

       -c cfgfile, --cfgfile cfgfile
	      Use the specified	configuration file.

       -p polfile, --polfile polfile
	      Specify  the  destination	of the encoded (and optionally signed)
	      policy file.

       -S sitekey, --site-keyfile sitekey
	      Use the specified	site key file.	Mutually exclusive with	(-e).

       -Q passphrase, --site-passphrase	passphrase
	      Specifies	passphrase to be used with site	key for	 policy	 sign-
	      ing.  Mutually exclusive with (-e).

       -e, --no-encryption
	      Do  not sign the policy file being stored.  The policy file will
	      still be compressed, and will not	be  human-readable.   Mutually
	      exclusive	with (-Q) and (-S).

       policyfile.txt
	      Specifies	 the  text policy file that will become	the new	policy
	      file.

______________________________________________________________________________

   Printing a policy file:
	   -m p		  --print-polfile
	   -v		  --verbose
	   -s		  --silent, --quiet
	   -c cfgfile	  --cfgfile cfgfile
	   -p polfile	  --polfile polfile
	   -S sitekey	  --site-keyfile sitekey

       -m p, --print-polfile
	      Mode selector.

       -v, --verbose
	      Verbose output mode.  Mutually exclusive with (-s).

       -s, --silent, --quiet
	      Silent output mode.  Mutually exclusive with (-v).

       -c cfgfile, --cfgfile cfgfile
	      Use the specified	configuration file.

       -p polfile, --polfile polfile
	      Print the	specified policy file.

       -S sitekey, --site-keyfile sitekey
	      Use the specified	site key file.

______________________________________________________________________________
   Removing encryption from a file:
	   -m R		   --remove-encryption
	   -v		   --verbose
	   -s		   --silent, --quiet
	   -c cfgfile	   --cfgfile cfgfile
	   -L localkey	   --local-keyfile localkey
	   -S sitekey	   --site-keyfile sitekey
	   -P passphrase   --local-passphrase passphrase
	   -Q passphrase   --site-passphrase passphrase
	   file1 [ file2... ]

       -m R, --remove-encryption
	      Mode selector.

       -v, --verbose
	      Verbose output mode.  Mutually exclusive with (-s).

       -s, --silent, --quiet
	      Silent output mode.  Mutually exclusive with (-v).

       -c cfgfile, --cfgfile cfgfile
	      Use the specified	configuration file.

       -L localkey, --local-keyfile localkey
	      Specify the local	keyfile	to use to verify  database  files  and
	      reports.

       -S sitekey, --site-keyfile sitekey
	      Specify the site keyfile to use to verify	configuration and pol-
	      icy files.

       -P passphrase, --local-passphrase passphrase
	      Specify  the passphrase to use when verifying with the old local
	      keyfile.

       -Q passphrase, --site-passphrase	passphrase
	      Specify the passphrase to	use when verifying with	the  old  site
	      keyfile.

       file1 [ file2...	]
	      List of files from which signing is to be	removed.

______________________________________________________________________________

   Encrypting a	file:
	   -m E		   --encrypt
	   -v		   --verbose
	   -s		   --silent, --quiet
	   -c cfgfile	   --cfgfile cfgfile
	   -L localkey	   --local-keyfile localkey
	   -S sitekey	   --site-keyfile sitekey
	   -P passphrase   --local-passphrase passphrase
	   -Q passphrase   --site-passphrase passphrase
	   file1 [ file2... ]

       -m E, --encrypt
	      Mode selector.

       -v, --verbose
	      Verbose output mode.  Mutually exclusive with (-s).

       -s, --silent, --quiet
	      Silent output mode.  Mutually exclusive with (-v).

       -c cfgfile, --cfgfile cfgfile
	      Use the specified	configuration file.

       -L localkey, --local-keyfile localkey
	      Specify  the local keyfile to use	to sign	database files and re-
	      ports.

       -S sitekey, --site-keyfile sitekey
	      Specify the site keyfile to use to sign configuration and	policy
	      files.

       -P passphrase, --local-passphrase passphrase
	      Specify the passphrase to	use when signing with the  local  key-
	      file.

       -Q passphrase, --site-passphrase	passphrase
	      Specify  the  passphrase	to use when signing with the site key-
	      file.

       file1 [ file2...	]
	      List of files to sign using the new key(s).

______________________________________________________________________________

   Examining the encryption status of a	file:
	   -m e		  --examine
	   -v		  --verbose
	   -s		  --silent, --quiet
	   -c cfgfile	  --cfgfile cfgfile
	   -L localkey	  --local-keyfile localkey
	   -S sitekey	  --site-keyfile sitekey
	   file1 [ file2... ]

       -m e, --examine
	      Mode selector.

       -v, --verbose
	      Verbose output mode.  Mutually exclusive with (-s).

       -s, --silent, --quiet
	      Silent output mode.  Mutually exclusive with (-v).

       -c cfgfile, --cfgfile cfgfile
	      Use the specified	configuration file.

       -L localkey, --local-keyfile localkey
	      Specifies	the key	to use as a local key.

       -S sitekey, --site-keyfile sitekey
	      Specifies	the key	to use as a site key.

       file1 [ file2...	]
	      List of files to examine.

______________________________________________________________________________
   Generating keys:
	   -m G		   --generate-keys
	   -v		   --verbose
	   -s		   --silent, --quiet
	   -L localkey	   --local-keyfile localkey
	   -S sitekey	   --site-keyfile sitekey
	   -P passphrase   --local-passphrase passphrase
	   -Q passphrase   --site-passphrase passphrase

       -m G, --generate-keys
	      Mode selector.

       -v, --verbose
	      Verbose output mode.  Mutually exclusive with (-s).

       -s, --silent, --quiet
	      Silent output mode.  Mutually exclusive with (-v).

       -L localkey, --local-keyfile localkey
	      Generate the local key into the specified	file.  At least	one of
	      (-L) or (-S) must	be specified.

       -S sitekey, --site-keyfile sitekey
	      Generate the site	key into the specified file.  At least one  of
	      (-S) or (-L) must	be specified.

       -P passphrase, --local-passphrase passphrase
	      Specify  local  passphrase  to be	used when generating the local
	      key.

       -Q passphrase, --site-passphrase	passphrase
	      Specify site passphrase to be used when generating the site key.

       -K size,	--key-size size
	      Specify the key size (1024 or 2048 bits) when  generating	 keys.
	      (Default is 1024.)

______________________________________________________________________________
   Changing passphrases:
	   -m C		   --change-passphrases
	   -v		   --verbose
	   -s		   --silent, --quiet
	   -L localkey	   --local-keyfile localkey
	   -S sitekey	   --site-keyfile sitekey
	   -P passphrase   --local-passphrase passphrase
	   -Q passphrase   --site-passphrase passphrase
			   --local-passphrase-old passphraseOld
			   --site-passphrase-old passphraseOld

       -m C, --change-passphrases
	      Mode selector.

       -v, --verbose
	      Verbose output mode.  Mutually exclusive with (-s).

       -s, --silent, --quiet
	      Silent output mode.  Mutually exclusive with (-v).

       -L localkey, --local-keyfile localkey
	      Change  passphrase used to encrypt the private key in the	speci-
	      fied localkey file.  At least one	of (-L)	or (-S)	must be	speci-
	      fied.

       -S sitekey, --site-keyfile sitekey
	      Change passphrase	used to	encrypt	the private key	in the	speci-
	      fied  sitekey file.  At least one	of (-L)	or (-S)	must be	speci-
	      fied.

       -P passphrase, --local-passphrase passphrase
	      Specify passphrase used to encrypt the private key in the	speci-
	      fied localkey file.

       -Q passphrase, --site-passphrase	passphrase
	      Specify passphrase used to encrypt the private key in the	speci-
	      fied sitekey file.

       --local-passphrase-old passphraseOld
	      Specify passphrase used to decrypt the private key in the	speci-
	      fied localkey file.

       --site-passphrase-old passphraseOld
	      Specify passphrase used to decrypt the private key in the	speci-
	      fied sitekey file.

EXIT STATUS
       twadmin exits 0 on success, 1 on	error.

VERSION	INFORMATION
       This man	page describes twadmin version 2.4.

AUTHORS
       Tripwire, Inc.

COPYING	PERMISSIONS
       Permission is granted to	make and distribute verbatim  copies  of  this
       man  page  provided the copyright notice	and this permission notice are
       preserved on all	copies.

       Permission is granted to	copy and distribute modified versions of  this
       man  page  under	the conditions for verbatim copying, provided that the
       entire resulting	derived	work is	distributed under the terms of a  per-
       mission notice identical	to this	one.

       Permission  is  granted to copy and distribute translations of this man
       page into another language, under the  above  conditions	 for  modified
       versions,  except that this permission notice may be stated in a	trans-
       lation approved by Tripwire, Inc.

       Copyright 2000-2019 Tripwire, Inc. Tripwire is a	 registered  trademark
       of  Tripwire, Inc. in the United	States and other countries. All	rights
       reserved.

SEE ALSO
       twintro(8), tripwire(8),	twprint(8),  siggen(8),	 twconfig(4),  twpoli-
       cy(4), twfiles(5)

Open Source Tripwire 2.4	  04 Jan 2018			    TWADMIN(8)

---

NAME | SYNOPSIS | DESCRIPTION | OPTIONS | EXIT STATUS | VERSION INFORMATION | AUTHORS | COPYING PERMISSIONS | SEE ALSO

Want to link to this manual page? Use this URL:
<https://man.freebsd.org/cgi/man.cgi?query=twadmin&sektion=8&manpath=FreeBSD+Ports+14.3.quarterly>

home | help

---

Legal Notices | © 1995-2025 The FreeBSD Project. All rights reserved.

Contact