[unix-history] / etc / security

#!/bin/sh -
#
#	@(#)security	5.3 (Berkeley) 5/28/91
#
PATH=/sbin:/bin:/usr/bin

host=`hostname -s`
echo "Subject: $host security check output"

LOG=/var/log
TMP=/tmp/_secure.$$

if false; then
echo "checking setuid files and devices:"
MP=`mount -t ufs | sed 's;/dev/;&r;' | awk '{ print $1 " " $3 }'`
set $MP
ls -lgT `while test $# -ge 2; do
	device=$1
	shift
	mount=$1
	shift
	ncheck -s $device | sed -e "/:$/d" -e "/\/dev\//d" \
	    -e "s;[^/]*;$mount;" -e "s;//;/;g" | sort
done` > $TMP

if cmp $LOG/setuid.today $TMP >/dev/null; then :; else
	echo "$host setuid/device diffs:"
	diff $LOG/setuid.today $TMP
	mv $LOG/setuid.today $LOG/setuid.yesterday
	mv $TMP $LOG/setuid.today
fi
rm -f $TMP
fi

echo ""
echo ""
echo "checking for uids of 0:"
awk 'BEGIN {FS=":"} $3=="0" {print $1,$3}' /etc/master.passwd
Commit	Line	Data
25767e9e RG	1	#!/bin/sh -
	2	#
	3	# @(#)security 5.3 (Berkeley) 5/28/91
	4	#
	5	PATH=/sbin:/bin:/usr/bin
	6
	7	host=`hostname -s`
	8	echo "Subject: $host security check output"
	9
	10	LOG=/var/log
	11	TMP=/tmp/_secure.$$
	12
1446962c	13	if false; then
25767e9e RG	14	echo "checking setuid files and devices:"
	15	MP=`mount -t ufs \| sed 's;/dev/;&r;' \| awk '{ print $1 " " $3 }'`
	16	set $MP
	17	ls -lgT `while test $# -ge 2; do
	18	device=$1
	19	shift
	20	mount=$1
	21	shift
	22	ncheck -s $device \| sed -e "/:$/d" -e "/\/dev\//d" \
	23	-e "s;[^/]*;$mount;" -e "s;//;/;g" \| sort
	24	done` > $TMP
	25
	26	if cmp $LOG/setuid.today $TMP >/dev/null; then :; else
	27	echo "$host setuid/device diffs:"
	28	diff $LOG/setuid.today $TMP
	29	mv $LOG/setuid.today $LOG/setuid.yesterday
	30	mv $TMP $LOG/setuid.today
	31	fi
	32	rm -f $TMP
1446962c	33	fi
25767e9e RG	34
	35	echo ""
	36	echo ""
	37	echo "checking for uids of 0:"
	38	awk 'BEGIN {FS=":"} $3=="0" {print $1,$3}' /etc/master.passwd