summaryrefslogtreecommitdiff
path: root/localintegritupdate
blob: be1b3c8354a7d442abb14763d5c5806dcfd260f3 (plain) 
    

  1. #!/bin/sh
    2. 

  2. 

  3. # /etc/cron.daily/localintegritupdate : update integrit db
    4. 

  4. # initially written by Andras Bali (as a cron job)
    5. 

  5. 

  6. SAVECYCLE=3
    7. 

  7. 

  8. test -x /usr/sbin/integrit || exit 0
    9. 

  9. test -x /usr/bin/savelog || exit 0
    10. 

  10. test -f /etc/integrit/integrit.debian.conf || exit 0
    11. 

  11. CONFIGS=""
    12. 

  12. . /etc/integrit/integrit.debian.conf
    13. 

  13. test -n "$CONFIGS" || exit 0
    14. 

  14. 

  15. for config in $CONFIGS; do
    16. 

  16.     known=$(egrep '^ *known *= *.+' $config | sed 's/^ *known *= *\(.\+\)$/\1/')
    17. 

  17.     current=$(egrep '^ *current *= *.+' $config | sed 's/^ *current *= *\(.\+\)$/\1/')
    18. 

  18.     options="-cu"
    19. 

  19.     if [ ! -f "$known" ]; then
    20. 

  20.     if [ -f "$current" ]; then
    21. 

  21.         mv "$current" "$known"
    22. 

  22.     else
    23. 

  23.         options="-u"
    24. 

  24.     fi
    25. 

  25.     else
    26. 

  26.     if [ -f "$current" ]; then
    27. 

  27.         savelog -m 640 -u root -g root -c $SAVECYCLE "$known" > /dev/null
    28. 

  28.         mv "$current" "$known"
    29. 

  29.     fi
    30. 

  30.     fi
    31. 

  31. 

  32. #    nice integrit -C $config -cu 2>&1
    33. 

  33.     nice integrit -C $config $options
    34. 

  34. done
    35.
generated by cgit v1.2.3 (git 2.39.1) at 2024-04-24 04:12:21 +0000