X-Git-Url: http://ftp.carnet.hr/carnet-debian/scm?a=blobdiff_plain;ds=sidebyside;f=debian%2Fossec-hids%2Fusr%2Fshare%2Fdoc%2Fossec-hids%2Fcontrib%2Fossec-eps.sh;fp=debian%2Fossec-hids%2Fusr%2Fshare%2Fdoc%2Fossec-hids%2Fcontrib%2Fossec-eps.sh;h=248d5a035cf2d6bd3cdf96afcecb38a6876fa09e;hb=3f728675941dc69d4e544d3a880a56240a6e394a;hp=0000000000000000000000000000000000000000;hpb=927951d1c1ad45ba9e7325f07d996154a91c911b;p=ossec-hids.git

diff --git a/debian/ossec-hids/usr/share/doc/ossec-hids/contrib/ossec-eps.sh b/debian/ossec-hids/usr/share/doc/ossec-hids/contrib/ossec-eps.sh
new file mode 100644
index 0000000..248d5a0
--- /dev/null
+++ b/debian/ossec-hids/usr/share/doc/ossec-hids/contrib/ossec-eps.sh
@@ -0,0 +1,30 @@
+#!/bin/sh
+# Calculate OSSEC events per second
+# Author Michael Starks ossec [at] michaelstarks [dot] com
+# License: GPLv3
+
+if [ ! -e /etc/ossec-init.conf ]; then
+  echo OSSEC does not appear to be installed on this system. Goodbye.
+  exit 1
+else
+  grep -q agent /etc/ossec-init.conf && echo This script can only be run on the manager. Goodbye. && exit 1
+fi
+
+#Reset counters
+COUNT=0
+EPSSUM=0
+EPSAVG=0
+#Source OSSEC Dir
+. /etc/ossec-init.conf
+
+for i in $(grep 'Total events for day' ${DIRECTORY}/stats/totals/*/*/ossec-totals-*.log | cut -d: -f3); do
+  COUNT=$((COUNT+1))
+  DAILYEVENTS=$i
+  EPSSUM=$(($DAILYEVENTS+$EPSSUM))
+done
+
+EPSAVG=$(($EPSSUM/$COUNT/(86400)))
+
+echo Your total lifetime number of events collected is: $EPSSUM
+echo Your total daily number of events average is: $(($EPSSUM/$COUNT))
+echo Your daily events per second average is: $EPSAVG