I don't think this guy realizes just how much of a pain in the ass it is to look at tripwire logs EVERY DAY. You can have tripwire running 24x7x36[56] and still get broken into because you didn't check your logs (syslog, mail logs, ftp logs, tripwire file modified/created/deleted logs, etc)."Tripwire (an application to detect intruders) can be amazingly effective," says Beale.
Once again for those in the cheap seats: Security = 1 / Convenience
And if anyone thinks anything's secure right out of the box, they deserve to be broken into (almost...complete n00bs are understandable).
Edit: I should say complete newbies to linux or anything else like that would not know what to do with tripwire logs or anything else and probably have no idea as to what "security" means on a *nix box.
