diff options
author | Frederic Lepied <flepied@mandriva.com> | 2002-01-17 19:56:19 +0000 |
---|---|---|
committer | Frederic Lepied <flepied@mandriva.com> | 2002-01-17 19:56:19 +0000 |
commit | 68ebfc5fc46591d84ed1b0887c1c0b19ba7aa47d (patch) | |
tree | 4e2d7e6f16f8bb65f61c2913dfe35fd767e62040 /cron-sh/security.sh | |
parent | 1ff71ce4eb92eeeb629ce2669a8db801f182249c (diff) | |
download | msec-68ebfc5fc46591d84ed1b0887c1c0b19ba7aa47d.tar msec-68ebfc5fc46591d84ed1b0887c1c0b19ba7aa47d.tar.gz msec-68ebfc5fc46591d84ed1b0887c1c0b19ba7aa47d.tar.bz2 msec-68ebfc5fc46591d84ed1b0887c1c0b19ba7aa47d.tar.xz msec-68ebfc5fc46591d84ed1b0887c1c0b19ba7aa47d.zip |
0.17
Diffstat (limited to 'cron-sh/security.sh')
-rwxr-xr-x | cron-sh/security.sh | 36 |
1 files changed, 27 insertions, 9 deletions
diff --git a/cron-sh/security.sh b/cron-sh/security.sh index 01d3e4c..5b974a4 100755 --- a/cron-sh/security.sh +++ b/cron-sh/security.sh @@ -30,6 +30,12 @@ UNOWNED_USER_DIFF="/var/log/security/unowned_user.diff" export UNOWNED_GROUP_TODAY="/var/log/security/unowned_group.today" UNOWNED_GROUP_YESTERDAY="/var/log/security/unowned_group.yesterday" UNOWNED_GROUP_DIFF="/var/log/security/unowned_group.diff" +export RPM_VA_TODAY="/var/log/security/rpm-va.today" +RPM_VA_YESTERDAY="/var/log/security/rpm-va.yesterday" +RPM_VA_DIFF="/var/log/security/rpm-va.diff" +export RPM_QA_TODAY="/var/log/security/rpm-qa.today" +RPM_QA_YESTERDAY="/var/log/security/rpm-qa.yesterday" +RPM_QA_DIFF="/var/log/security/rpm-qa.diff" # Modified filters coming from debian security scripts. CS_NFSAFS='(nfs|afs|xfs|coda)' @@ -72,6 +78,13 @@ if [[ -f ${SUID_MD5_TODAY} ]]; then mv ${SUID_MD5_TODAY} ${SUID_MD5_YESTERDAY}; fi +if [[ -f ${RPM_VA_TODAY} ]]; then + mv -f ${RPM_VA_TODAY} ${RPM_VA_YESTERDAY} +fi + +if [[ -f ${RPM_QA_TODAY} ]]; then + mv -f ${RPM_QA_TODAY} ${RPM_QA_YESTERDAY} +fi netstat -pvlA inet 2> /dev/null > ${OPEN_PORT_TODAY}; @@ -109,6 +122,19 @@ if [[ -f ${SUID_ROOT_TODAY} ]]; then done < ${SUID_ROOT_TODAY} > ${SUID_MD5_TODAY} fi +### rpm database check + +if [[ ${RPM_CHECK} == yes ]]; then + if [ -f /var/lib/rpm/__db.001 -o -f /var/lib/rpm/__db.002 ]; then + rm -f /var/lib/rpm/__db.00* + rpm --rebuilddb + fi + + rpm -qa --qf "%{NAME}-%{VERSION}-%{RELEASE}\t%{INSTALLTIME}\n" | sort > ${RPM_QA_TODAY} + + nice --adjustment=+19 rpm -V `cut -f 1 < ${RPM_QA_TODAY} | grep -v '^dev-[0-9]'` | grep '^..5' | sed 's/...........//' | sort > ${RPM_VA_TODAY} +fi + ### Functions ### Syslog() { @@ -121,7 +147,7 @@ Syslog() { Ttylog() { if [[ ${TTY_WARN} == yes ]]; then - for i in `w | grep -v "load\|TTY" | awk '{print $2}'` ; do + for i in `w | grep -v "load\|TTY" | grep '^root' | awk '{print $2}'` ; do cat ${1} > /dev/$i done fi @@ -146,11 +172,3 @@ Maillog() { . /usr/share/msec/diff_check.sh . /usr/share/msec/security_check.sh - - - - - - - - |