I've installed and configured tripwire and have since installed quite a bit of other software. Now my email log is enormous. It does not appear to notify me of recent changes, but of all changes since the tripwire database was installed. Is this normal? There are simply too many changes to go through, so at this point it is no longer a valuable tool.

Is there a way to reset the notification log so that the emails only contain changes since the last email notification went out?

I've installed and configured tripwire and have since installed quite a bit of other software. Now my email log is enormous. It does not appear to notify me of recent changes, but of all changes since the tripwire database was installed. Is this normal? There are simply too many changes to go through, so at this point it is no longer a valuable tool.

Is there a way to reset the notification log so that the emails only contain changes since the last email notification went out?

Yes, see this link :

http://www.redhat.com/docs/manuals/linux/RHL-9-Manual/ref-guide/s1-tripwire-update-db.html