diff options
-rwxr-xr-x | cron-sh/security.sh | 2 | ||||
-rwxr-xr-x | init-sh/custom.sh | 17 | ||||
-rwxr-xr-x | init-sh/level3.sh | 3 | ||||
-rwxr-xr-x | init-sh/level4.sh | 7 | ||||
-rwxr-xr-x | init-sh/level5.sh | 6 |
5 files changed, 15 insertions, 20 deletions
diff --git a/cron-sh/security.sh b/cron-sh/security.sh index a12d46c..f8916d5 100755 --- a/cron-sh/security.sh +++ b/cron-sh/security.sh @@ -62,6 +62,8 @@ cat ${SUID_ROOT_TODAY} | while read line; do done > ${SUID_MD5_TODAY} +/etc/security/msec/cron-sh/diff_check.sh +/etc/security/msec/cron-sh/security_check.sh diff --git a/init-sh/custom.sh b/init-sh/custom.sh index 5bb623b..99154f9 100755 --- a/init-sh/custom.sh +++ b/init-sh/custom.sh @@ -48,7 +48,7 @@ echo "Do you want your system to daily check important security problem ?" WaitAnswer; clear if [[ ${answer} == yes ]]; then AddRules "CHECK_SECURITY=yes" /etc/security/msec/security.conf - AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security_check.sh" /etc/crontab + AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab fi ### @@ -56,8 +56,7 @@ echo "Do you want your system to daily check new open port listening ?" WaitAnswer; clear if [[ ${answer} == yes ]]; then AddRules "CHECK_OPEN_PORT=yes" /etc/security/msec/security.conf - AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security_check.sh" /etc/crontab - AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/diff_check.sh" /etc/crontab + AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab fi ### @@ -65,7 +64,7 @@ echo "Do you want your system to check for grave permission problem on senssible WaitAnswer; clear if [[ ${answer} == yes ]]; then AddRules "CHECK_PERMS=yes" /etc/security/msec/security.conf - AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security_check.sh" /etc/crontab + AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab fi ### @@ -73,7 +72,7 @@ echo "Do you want your system to daily check SUID Root file change ?" WaitAnswer; clear if [[ ${answer} == yes ]]; then AddRules "CHECK_SUID_ROOT=yes" /etc/security/msec/security.conf - AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/diff_check.sh" /etc/crontab + AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab fi ### @@ -81,7 +80,7 @@ echo "Do you want your system to daily check suid files md5 checksum changes ?" WaitAnswer; clear if [[ ${answer} == yes ]]; then AddRules "CHECK_SUID_MD5=yes" /etc/security/msec/security.conf - AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/diff_check.sh" /etc/crontab + AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab fi ### @@ -89,7 +88,7 @@ echo "Do you want your system to daily check SUID Group file change ?" WaitAnswer; clear if [[ ${answer} == yes ]]; then AddRules "CHECK_SUID_GROUP=yes" /etc/security/msec/security.conf - AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/diff_check.sh" /etc/crontab + AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab fi ### @@ -97,7 +96,7 @@ echo "Do you want your system to daily check Writeable file change ?" WaitAnswer; clear if [[ ${answer} == yes ]]; then AddRules "CHECK_WRITEABLE=yes" /etc/security/msec/security.conf - AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/diff_check.sh" /etc/crontab + AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab fi ### @@ -105,7 +104,7 @@ echo "Do you want your system to daily check Unowned file change ?" WaitAnswer; clear if [[ ${answer} == yes ]]; then AddRules "CHECK_UNOWNED=yes" /etc/security/msec/security.conf - AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/diff_check.sh" /etc/crontab + AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab fi ### diff --git a/init-sh/level3.sh b/init-sh/level3.sh index 8027034..e4a9b11 100755 --- a/init-sh/level3.sh +++ b/init-sh/level3.sh @@ -56,8 +56,7 @@ echo -e "\t- Security warning in syslog : yes." # Crontab echo "Adding permission check in crontab (scheduled every midnight) :" -AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/diff_check.sh" /etc/crontab -AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security_check.sh" /etc/crontab +AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab # lilo update echo -n "Running lilo to record new config : " diff --git a/init-sh/level4.sh b/init-sh/level4.sh index e1bf56d..e07c4c7 100755 --- a/init-sh/level4.sh +++ b/init-sh/level4.sh @@ -67,11 +67,8 @@ echo -e "\t- Security warning in syslog : yes." echo "Adding promisc check in crontab (scheduled every minutes) :" AddRules "*/1 * * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/promisc_check.sh" /etc/crontab -echo "Adding \"diff\" security check in crontab (scheduled every midnight) :" -AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/diff_check.sh" /etc/crontab - -echo "Adding \"global\" security check in crontab (scheduled every midnight) :" -AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security_check.sh" /etc/crontab +echo "Adding \"diff\" & \"global\" security check in crontab (scheduled every midnight) :" +AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab # Do you want a password ? LiloUpdate; diff --git a/init-sh/level5.sh b/init-sh/level5.sh index e443488..fb577bb 100755 --- a/init-sh/level5.sh +++ b/init-sh/level5.sh @@ -59,11 +59,9 @@ echo -e "\t- Security warning in syslog : yes." echo "Adding promisc check in crontab (scheduled every minutes) :" AddRules "*/1 * * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/promisc_check.sh" /etc/crontab -echo "Adding \"diff\" security check in crontab (scheduled every midnight) :" -AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/diff_check.sh" /etc/crontab +echo "Adding \"diff\" & \"global\" security check in crontab (scheduled every midnight) :" +AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab -echo "Adding \"global\" security check in crontab (scheduled every midnight) :" -AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security_check.sh" /etc/crontab ################################################### # Wanna a password ? |