Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #!/usr/local/bin/bash
- #
- ## Calomel.org ids.sh
- #
- if [ $# -eq 0 ]
- then
- echo ""
- echo " Calomel.org ./ids.sh \$arg"
- echo "--------------------------------------"
- echo "generate = generate IDS signatures"
- echo "verify = verify files against known signatures"
- echo ""
- exit
- fi
- ## mtree binary (OpenBSD: mtree and Linux: freebsd-mtree)
- MTREE=mtree
- ## IDS seed signature key
- KEY=12345946598234534539234
- ## IDS signature directory
- DIR=/ids_dir
- if [ $1 = "generate" ]
- then
- rm -rf $DIR/mtree_*
- cd $DIR
- $MTREE -c -K cksum,md5,sha1,sha512 -s $KEY -p /bin > mtree_bin
- $MTREE -c -K cksum,md5,sha1,sha512 -s $KEY -p /sbin > mtree_sbin
- $MTREE -c -K cksum,md5,sha1,sha512 -s $KEY -p /usr > mtree_usr
- logger IDS generate IDS signatures
- chmod 600 $DIR/mtree_*
- exit
- fi
- if [ $1 = "verify" ]
- then
- cd $DIR
- $MTREE -s $KEY -p /bin < mtree_bin >> temp 2>&1
- $MTREE -s $KEY -p /sbin < mtree_sbin >> temp 2>&1
- $MTREE -s $KEY -p /usr < mtree_usr >> temp 2>&1
- cat temp | mail -s "`hostname` file integrity check" root
- rm temp
- logger IDS verify files against known signatures
- exit
- fi
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
