Blame contrib/gpg2_check.sh
|
Packit |
762fc5 |
#!/bin/sh
|
|
Packit |
762fc5 |
# $Id$
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
# Script by Vincent Danen <vdanen@linsec.ca>
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
hostname=`uname -n`
|
|
Packit |
762fc5 |
echo "AIDE integrity check for ${hostname} beginning (`date`)"
|
|
Packit |
762fc5 |
echo ""
|
|
Packit |
762fc5 |
if [ ! -e /var/lib/aide/aide.db ] ; then
|
|
Packit |
762fc5 |
echo "**** Error: AIDE database for ${hostname} not found."
|
|
Packit |
762fc5 |
echo "**** Run 'aide --init' and move the appropriate database file."
|
|
Packit |
762fc5 |
else
|
|
Packit |
762fc5 |
if [ -f /etc/aide.conf ]; then
|
|
Packit |
762fc5 |
if [ -f /var/lib/aide/aide.db.sig ]; then
|
|
Packit |
762fc5 |
pushd /var/lib/aide >/dev/null
|
|
Packit |
762fc5 |
echo "Verifying the GPG signature on the database..."
|
|
Packit |
762fc5 |
echo ""
|
|
Packit |
762fc5 |
gpg --verify aide.db.sig
|
|
Packit |
762fc5 |
echo ""
|
|
Packit |
762fc5 |
if [ "$?" == "1" ]; then
|
|
Packit |
762fc5 |
echo "************************************************************"
|
|
Packit |
762fc5 |
echo "GPG signature FAILED! Your database has been tampered with!"
|
|
Packit |
762fc5 |
echo "************************************************************"
|
|
Packit |
762fc5 |
exit 1
|
|
Packit |
762fc5 |
fi
|
|
Packit |
762fc5 |
popd >/dev/null
|
|
Packit |
762fc5 |
fi
|
|
Packit |
762fc5 |
nice -20 /usr/sbin/aide --check 2>/dev/null
|
|
Packit |
762fc5 |
fi
|
|
Packit |
762fc5 |
fi
|
|
Packit |
762fc5 |
|
|
Packit |
762fc5 |
exit 0
|