aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
-rwxr-xr-xcron-sh/security.sh2
-rwxr-xr-xinit-sh/custom.sh17
-rwxr-xr-xinit-sh/level3.sh3
-rwxr-xr-xinit-sh/level4.sh7
-rwxr-xr-xinit-sh/level5.sh6
5 files changed, 15 insertions, 20 deletions
diff --git a/cron-sh/security.sh b/cron-sh/security.sh
index a12d46c..f8916d5 100755
--- a/cron-sh/security.sh
+++ b/cron-sh/security.sh
@@ -62,6 +62,8 @@ cat ${SUID_ROOT_TODAY} | while read line; do
done > ${SUID_MD5_TODAY}
+/etc/security/msec/cron-sh/diff_check.sh
+/etc/security/msec/cron-sh/security_check.sh
diff --git a/init-sh/custom.sh b/init-sh/custom.sh
index 5bb623b..99154f9 100755
--- a/init-sh/custom.sh
+++ b/init-sh/custom.sh
@@ -48,7 +48,7 @@ echo "Do you want your system to daily check important security problem ?"
WaitAnswer; clear
if [[ ${answer} == yes ]]; then
AddRules "CHECK_SECURITY=yes" /etc/security/msec/security.conf
- AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security_check.sh" /etc/crontab
+ AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab
fi
###
@@ -56,8 +56,7 @@ echo "Do you want your system to daily check new open port listening ?"
WaitAnswer; clear
if [[ ${answer} == yes ]]; then
AddRules "CHECK_OPEN_PORT=yes" /etc/security/msec/security.conf
- AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security_check.sh" /etc/crontab
- AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/diff_check.sh" /etc/crontab
+ AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab
fi
###
@@ -65,7 +64,7 @@ echo "Do you want your system to check for grave permission problem on senssible
WaitAnswer; clear
if [[ ${answer} == yes ]]; then
AddRules "CHECK_PERMS=yes" /etc/security/msec/security.conf
- AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security_check.sh" /etc/crontab
+ AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab
fi
###
@@ -73,7 +72,7 @@ echo "Do you want your system to daily check SUID Root file change ?"
WaitAnswer; clear
if [[ ${answer} == yes ]]; then
AddRules "CHECK_SUID_ROOT=yes" /etc/security/msec/security.conf
- AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/diff_check.sh" /etc/crontab
+ AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab
fi
###
@@ -81,7 +80,7 @@ echo "Do you want your system to daily check suid files md5 checksum changes ?"
WaitAnswer; clear
if [[ ${answer} == yes ]]; then
AddRules "CHECK_SUID_MD5=yes" /etc/security/msec/security.conf
- AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/diff_check.sh" /etc/crontab
+ AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab
fi
###
@@ -89,7 +88,7 @@ echo "Do you want your system to daily check SUID Group file change ?"
WaitAnswer; clear
if [[ ${answer} == yes ]]; then
AddRules "CHECK_SUID_GROUP=yes" /etc/security/msec/security.conf
- AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/diff_check.sh" /etc/crontab
+ AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab
fi
###
@@ -97,7 +96,7 @@ echo "Do you want your system to daily check Writeable file change ?"
WaitAnswer; clear
if [[ ${answer} == yes ]]; then
AddRules "CHECK_WRITEABLE=yes" /etc/security/msec/security.conf
- AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/diff_check.sh" /etc/crontab
+ AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab
fi
###
@@ -105,7 +104,7 @@ echo "Do you want your system to daily check Unowned file change ?"
WaitAnswer; clear
if [[ ${answer} == yes ]]; then
AddRules "CHECK_UNOWNED=yes" /etc/security/msec/security.conf
- AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/diff_check.sh" /etc/crontab
+ AddRules "0 0-23 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab
fi
###
diff --git a/init-sh/level3.sh b/init-sh/level3.sh
index 8027034..e4a9b11 100755
--- a/init-sh/level3.sh
+++ b/init-sh/level3.sh
@@ -56,8 +56,7 @@ echo -e "\t- Security warning in syslog : yes."
# Crontab
echo "Adding permission check in crontab (scheduled every midnight) :"
-AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/diff_check.sh" /etc/crontab
-AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security_check.sh" /etc/crontab
+AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab
# lilo update
echo -n "Running lilo to record new config : "
diff --git a/init-sh/level4.sh b/init-sh/level4.sh
index e1bf56d..e07c4c7 100755
--- a/init-sh/level4.sh
+++ b/init-sh/level4.sh
@@ -67,11 +67,8 @@ echo -e "\t- Security warning in syslog : yes."
echo "Adding promisc check in crontab (scheduled every minutes) :"
AddRules "*/1 * * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/promisc_check.sh" /etc/crontab
-echo "Adding \"diff\" security check in crontab (scheduled every midnight) :"
-AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/diff_check.sh" /etc/crontab
-
-echo "Adding \"global\" security check in crontab (scheduled every midnight) :"
-AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security_check.sh" /etc/crontab
+echo "Adding \"diff\" & \"global\" security check in crontab (scheduled every midnight) :"
+AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab
# Do you want a password ?
LiloUpdate;
diff --git a/init-sh/level5.sh b/init-sh/level5.sh
index e443488..fb577bb 100755
--- a/init-sh/level5.sh
+++ b/init-sh/level5.sh
@@ -59,11 +59,9 @@ echo -e "\t- Security warning in syslog : yes."
echo "Adding promisc check in crontab (scheduled every minutes) :"
AddRules "*/1 * * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/promisc_check.sh" /etc/crontab
-echo "Adding \"diff\" security check in crontab (scheduled every midnight) :"
-AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/diff_check.sh" /etc/crontab
+echo "Adding \"diff\" & \"global\" security check in crontab (scheduled every midnight) :"
+AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security.sh" /etc/crontab
-echo "Adding \"global\" security check in crontab (scheduled every midnight) :"
-AddRules "0 0 * * * root nice --adjustment=+19 /etc/security/msec/cron-sh/security_check.sh" /etc/crontab
###################################################
# Wanna a password ?