2 # Installation script for the OSSEC
3 # Author: Daniel B. Cid <daniel.cid@gmail.com>
4 # Last modification: Mar 02, 2006
6 # Changelog 19/03/2006 - Rafael M. Capovilla <under@underlinux.com.br>
7 # New function AddWhite to allow users to add more Ips in the white_list
8 # Minor *echos* modifications to better look
9 # Bug fix - When email address is blank
10 # Bug fix - delete INSTALLDIR - Default is yes but if the user just press enter the script wasn't deleting it as it should
11 # Changelog 15/07/2006 - Rafael M. Capovilla <under@underlinux.com.br>
12 # New function AddTable to add support for OpenBSD pf rules in firewall-drop active response
16 ### Looking up for the execution directory
20 ### Looking for echo -n
23 if [ ! "X$hs" = "Xa" ]; then
24 ls "/usr/ucb/echo" > /dev/null 2>&1
26 ECHO="/usr/ucb/echo -n"
33 echo "xxxx" | grep -E "xxx" > /dev/null 2>&1
35 ls "/usr/xpg4/bin/grep" > /dev/null 2>&1
37 PATH=/usr/xpg4/bin:$PATH
44 # Checking for command line arguments
46 if [ "X$i" = "Xdebug" ]; then
48 elif [ "X$i" = "Xbinary-install" ]; then
49 USER_BINARYINSTALL="yes"
50 elif [ "X$i" = "Xhelp" ]; then
52 echo "$0 binary-install"
65 echo "5- ${installing}"
67 echo "DIR=\"${INSTALLDIR}\"" > ${LOCATION}
68 echo "CC=${CC}" >> ${LOCATION}
70 # Changing Config.OS with the new C flags
71 # Checking if debug is enabled
72 if [ "X${SET_DEBUG}" = "Xdebug" ]; then
73 CEXTRA="${CEXTRA} -DDEBUGAD"
76 echo "CEXTRA=${CEXTRA}" >> ./src/Config.OS
79 echo " - ${runningmake}"
82 # Binary install will use the previous generated code.
83 if [ "X${USER_BINARYINSTALL}" = "X" ]; then
98 # If update, stop ossec
99 if [ "X${update_only}" = "Xyes" ]; then
103 # Making the right installation type
104 if [ "X$INSTYPE" = "Xserver" ]; then
107 elif [ "X$INSTYPE" = "Xagent" ]; then
110 elif [ "X$INSTYPE" = "Xlocal" ]; then
111 ./InstallServer.sh local
117 # Generate the /etc/ossec-init.conf
118 VERSION_FILE="./src/VERSION"
119 VERSION=`cat ${VERSION_FILE}`
120 chmod 700 ${OSSEC_INIT} > /dev/null 2>&1
121 echo "DIRECTORY=\"${INSTALLDIR}\"" > ${OSSEC_INIT}
122 echo "VERSION=\"${VERSION}\"" >> ${OSSEC_INIT}
123 echo "DATE=\"`date`\"" >> ${OSSEC_INIT}
124 echo "TYPE=\"${INSTYPE}\"" >> ${OSSEC_INIT}
125 chmod 600 ${OSSEC_INIT}
126 cp -pr ${OSSEC_INIT} ${INSTALLDIR}${OSSEC_INIT}
127 chmod 644 ${INSTALLDIR}${OSSEC_INIT}
130 # If update_rules is set, we need to tweak
131 # ossec.conf to read the new signatures.
132 if [ "X${update_rules}" = "Xyes" ]; then
136 # If update, start OSSEC
137 if [ "X${update_only}" = "Xyes" ]; then
141 # Calling the init script to start ossec hids during boot
142 if [ "X${update_only}" = "X" ]; then
160 # Integrity check config
162 $ECHO " 3.2- ${runsyscheck} ($yes/$no) [$yes]: "
163 if [ "X${USER_ENABLE_SYSCHECK}" = "X" ]; then
166 AS=${USER_ENABLE_SYSCHECK}
171 echo " - ${nosyscheck}."
175 echo " - ${yessyscheck}."
179 # Adding to the config file
180 if [ "X$SYSCHECK" = "Xyes" ]; then
181 cat ${SYSCHECK_TEMPLATE} >> $NEWCONFIG
194 # Rootkit detection configuration
196 $ECHO " 3.3- ${runrootcheck} ($yes/$no) [$yes]: "
198 if [ "X${USER_ENABLE_ROOTCHECK}" = "X" ]; then
201 ES=${USER_ENABLE_ROOTCHECK}
207 echo " - ${norootcheck}."
211 echo " - ${yesrootcheck}."
216 # Adding to the config file
217 if [ "X$ROOTCHECK" = "Xyes" ]; then
218 echo "" >> $NEWCONFIG
219 echo " <rootcheck>" >> $NEWCONFIG
220 echo " <rootkit_files>$INSTALLDIR/etc/shared/rootkit_files.txt</rootkit_files>" >> $NEWCONFIG
221 echo " <rootkit_trojans>$INSTALLDIR/etc/shared/rootkit_trojans.txt</rootkit_trojans>" >> $NEWCONFIG
222 echo " <system_audit>$INSTALLDIR/etc/shared/system_audit_rcl.txt</system_audit>" >> $NEWCONFIG
223 echo " <system_audit>$INSTALLDIR/etc/shared/cis_debian_linux_rcl.txt</system_audit>" >> $NEWCONFIG
224 echo " <system_audit>$INSTALLDIR/etc/shared/cis_rhel_linux_rcl.txt</system_audit>" >> $NEWCONFIG
225 echo " <system_audit>$INSTALLDIR/etc/shared/cis_rhel5_linux_rcl.txt</system_audit>" >> $NEWCONFIG
226 echo " </rootcheck>" >> $NEWCONFIG
228 echo "" >> $NEWCONFIG
229 echo " <rootcheck>" >> $NEWCONFIG
230 echo " <disabled>yes</disabled>" >> $NEWCONFIG
231 echo " </rootcheck>" >> $NEWCONFIG
246 echo " $NB- ${readlogs}"
248 echo " <!-- Files to monitor (localfiles) -->" >> $NEWCONFIG
249 LOG_FILES=`cat ${SYSLOG_TEMPLATE}`
250 for i in ${LOG_FILES}; do
251 # If log file present, add it
252 ls $i > /dev/null 2>&1
255 echo "" >> $NEWCONFIG
256 echo " <localfile>" >> $NEWCONFIG
257 echo " <log_format>syslog</log_format>" >> $NEWCONFIG
258 echo " <location>$i</location>" >>$NEWCONFIG
259 echo " </localfile>" >> $NEWCONFIG
263 # Getting snort files
264 SNORT_FILES=`cat ${SNORT_TEMPLATE}`
265 for i in ${SNORT_FILES}; do
266 ls $i > /dev/null 2>&1
268 echo "" >> $NEWCONFIG
269 echo " <localfile>" >> $NEWCONFIG
271 head -n 1 $i|grep "\[**\] "|grep -v "Classification:" > /dev/null
273 echo " <log_format>snort-full</log_format>" >> $NEWCONFIG
274 echo " -- $i (snort-full file)"
276 echo " <log_format>snort-fast</log_format>" >> $NEWCONFIG
277 echo " -- $i (snort-fast file)"
279 echo " <location>$i</location>" >>$NEWCONFIG
280 echo " </localfile>" >> $NEWCONFIG
284 # Getting apache logs
285 APACHE_FILES=`cat ${APACHE_TEMPLATE}`
286 for i in ${APACHE_FILES}; do
287 ls $i > /dev/null 2>&1
289 echo "" >> $NEWCONFIG
290 echo " <localfile>" >> $NEWCONFIG
291 echo " <log_format>apache</log_format>" >> $NEWCONFIG
292 echo " <location>$i</location>" >>$NEWCONFIG
293 echo " </localfile>" >> $NEWCONFIG
295 echo " -- $i (apache log)"
299 # Getting postgresql logs
300 PGSQL_FILES=`cat ${PGSQL_TEMPLATE}`
301 for i in ${PGSQL_FILES}; do
302 ls $i > /dev/null 2>&1
304 echo "" >> $NEWCONFIG
305 echo " <localfile>" >> $NEWCONFIG
306 echo " <log_format>postgresql_log</log_format>" >> $NEWCONFIG
307 echo " <location>$i</location>" >>$NEWCONFIG
308 echo " </localfile>" >> $NEWCONFIG
310 echo " -- $i (postgresql log)"
319 if [ "X$USER_NO_STOP" = "X" ]; then
333 echo "3- ${configuring} $NAME."
336 if [ "X${USER_AGENT_SERVER_IP}" = "X" ]; then
337 # Looping and asking for server ip
339 $ECHO " 3.1- ${serverip}: "
341 echo $IPANSWER | grep -E "^[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}$" > /dev/null 2>&1
345 echo " - ${addingip} $IP"
350 IP=${USER_AGENT_SERVER_IP}
353 echo "<ossec_config>" > $NEWCONFIG
354 echo " <client>" >> $NEWCONFIG
355 echo " <server-ip>$IP</server-ip>" >> $NEWCONFIG
356 echo " </client>" >> $NEWCONFIG
357 echo "" >> $NEWCONFIG
366 $ECHO " 3.4 - ${enable_ar} ($yes/$no) [$yes]: "
368 if [ "X${USER_ENABLE_ACTIVE_RESPONSE}" = "X" ]; then
371 ANY=${USER_ENABLE_ACTIVE_RESPONSE}
377 echo " - ${noactive}."
378 echo "" >> $NEWCONFIG
379 echo " <active-response>" >> $NEWCONFIG
380 echo " <disabled>yes</disabled>" >> $NEWCONFIG
381 echo " </active-response>" >> $NEWCONFIG
382 echo "" >> $NEWCONFIG
390 # Set up the log files
393 echo "</ossec_config>" >> $NEWCONFIG
405 echo "3- ${configuring} $NAME."
408 # Configuring e-mail notification
410 $ECHO " 3.1- ${mailnotify} ($yes/$no) [$yes]: "
412 if [ "X${USER_ENABLE_EMAIL}" = "X" ]; then
415 ANSWER=${USER_ENABLE_EMAIL}
421 echo " --- ${nomail}."
426 $ECHO " - ${whatsemail} "
427 if [ "X${USER_EMAIL_ADDRESS}" = "X" ]; then
430 echo "${EMAIL}" | grep -E "^[a-zA-Z0-9_.-]{1,36}@[a-zA-Z0-9_.-]{1,54}$" > /dev/null 2>&1 ;RVAL=$?;
431 # Ugly e-mail validation
432 while [ "$EMAIL" = "" -o ! ${RVAL} = 0 ] ; do
433 $ECHO " - ${whatsemail} "
435 echo "${EMAIL}" | grep -E "^[a-zA-Z0-9_.-]{1,36}@[a-zA-Z0-9_.-]{1,54}$" > /dev/null 2>&1 ;RVAL=$?;
438 EMAIL=${USER_EMAIL_ADDRESS}
441 ls ${HOST_CMD} > /dev/null 2>&1
443 HOSTTMP=`${HOST_CMD} -W 5 -t mx devmail.ossec.net 2>/dev/null`
445 # Trying without the -W
446 HOSTTMP=`${HOST_CMD} -t mx devmail.ossec.net 2>/dev/null`
448 if [ "X$HOSTTMP" = "X${OSSECMX}" -o "X$HOSTTMP" = "X${OSSECMX2}" -o "X$HOSTTMP" = "X${OSSECMX3}" ];then
449 # Breaking down the user e-mail
450 EMAILHOST=`echo ${EMAIL} | cut -d "@" -f 2`
451 if [ "X${EMAILHOST}" = "Xlocalhost" ]; then
454 HOSTTMP=`${HOST_CMD} -W 5 -t mx ${EMAILHOST}`
455 SMTPHOST=`echo ${HOSTTMP} | cut -d " " -f 7`
460 if [ "X${USER_EMAIL_SMTP}" = "X" ]; then
461 if [ "X${SMTPHOST}" != "X" ]; then
463 echo " - ${yoursmtp}: ${SMTPHOST}"
464 $ECHO " - ${usesmtp} ($yes/$no) [$yes]: "
474 echo " --- ${usingsmtp} ${SMTP}"
479 if [ "X${SMTP}" = "X" ]; then
480 $ECHO " - ${whatsmtp} "
484 SMTP=${USER_EMAIL_SMTP}
490 # Writting global parameters
491 echo "<ossec_config>" > $NEWCONFIG
492 echo " <global>" >> $NEWCONFIG
493 if [ "$EMAILNOTIFY" = "yes" ]; then
494 echo " <email_notification>yes</email_notification>" >> $NEWCONFIG
495 echo " <email_to>$EMAIL</email_to>" >> $NEWCONFIG
496 echo " <smtp_server>$SMTP</smtp_server>" >> $NEWCONFIG
497 echo " <email_from>ossecm@${HOST}</email_from>" >> $NEWCONFIG
499 echo " <email_notification>no</email_notification>" >> $NEWCONFIG
502 echo " </global>" >> $NEWCONFIG
503 echo "" >> $NEWCONFIG
505 # Writting rules configuration
506 cat ${RULES_TEMPLATE} >> $NEWCONFIG
507 echo "" >> $NEWCONFIG
510 # Checking if syscheck should run
513 # Checking if rootcheck should run
519 $ECHO " - ${enable_ar} ($yes/$no) [$yes]: "
521 if [ "X${USER_ENABLE_ACTIVE_RESPONSE}" = "X" ]; then
524 AR=${USER_ENABLE_ACTIVE_RESPONSE}
530 echo " - ${noactive}."
531 echo "" >> $NEWCONFIG
532 echo " <active-response>" >> $NEWCONFIG
533 echo " <disabled>yes</disabled>" >> $NEWCONFIG
534 echo " </active-response>" >> $NEWCONFIG
535 echo "" >> $NEWCONFIG
540 catMsg "0x108-ar-enabled"
543 $ECHO " - ${firewallar} ($yes/$no) [$yes]: "
545 if [ "X${USER_ENABLE_FIREWALL_RESPONSE}" = "X" ]; then
548 HD2=${USER_ENABLE_FIREWALL_RESPONSE}
554 echo " - ${nofirewall}"
557 echo " - ${yesfirewall}"
561 echo "" >> $NEWCONFIG
562 echo " <global>" >> $NEWCONFIG
563 echo " <white_list>127.0.0.1</white_list>" >> $NEWCONFIG
564 echo " <white_list>^localhost.localdomain$</white_list>">>$NEWCONFIG
566 echo " - ${defaultwhitelist}"
567 for ip in ${NAMESERVERS} ${NAMESERVERS2};
569 if [ ! "X${ip}" = "X" ]; then
571 echo " <white_list>${ip}</white_list>" >>$NEWCONFIG
576 # If Openbsd or Freebsd with pf enable, ask about
577 # automatically setting it up.
578 # Commenting it out in case I change my mind about it
580 #if [ "X`sh ./src/init/fw-check.sh`" = "XPF" ]; then
582 # $ECHO " - ${pfenable} ($yes/$no) [$yes]: "
583 # if [ "X${USER_ENABLE_PF}" = "X" ]; then
586 # PFENABLE=${USER_ENABLE_PF}
600 echo " </global>" >> $NEWCONFIG
605 if [ "X$INSTYPE" = "Xserver" ]; then
606 # Configuring remote syslog
608 $ECHO " 3.5- ${syslog} ($yes/$no) [$yes]: "
610 if [ "X${USER_ENABLE_SYSLOG}" = "X" ]; then
613 ANSWER=${USER_ENABLE_SYSLOG}
619 echo " --- ${nosyslog}."
622 echo " - ${yessyslog}."
627 # Configuring remote connections
633 if [ "X$RLOG" = "Xyes" ]; then
634 echo "" >> $NEWCONFIG
635 echo " <remote>" >> $NEWCONFIG
636 echo " <connection>syslog</connection>" >> $NEWCONFIG
637 echo " </remote>" >> $NEWCONFIG
640 if [ "X$SLOG" = "Xyes" ]; then
641 echo "" >> $NEWCONFIG
642 echo " <remote>" >> $NEWCONFIG
643 echo " <connection>secure</connection>" >> $NEWCONFIG
644 echo " </remote>" >> $NEWCONFIG
649 echo "" >> $NEWCONFIG
650 echo " <alerts>" >> $NEWCONFIG
651 echo " <log_alert_level>1</log_alert_level>" >> $NEWCONFIG
652 if [ "$EMAILNOTIFY" = "yes" ]; then
653 echo " <email_alert_level>7</email_alert_level>">> $NEWCONFIG
655 echo " </alerts>" >> $NEWCONFIG
658 if [ "X$ACTIVERESPONSE" = "Xyes" ]; then
659 # Add commands in here
660 echo "" >> $NEWCONFIG
661 cat ${HOST_DENY_TEMPLATE} >> $NEWCONFIG
662 echo "" >> $NEWCONFIG
663 cat ${FIREWALL_DROP_TEMPLATE} >> $NEWCONFIG
664 echo "" >> $NEWCONFIG
665 cat ${DISABLE_ACCOUNT_TEMPLATE} >> $NEWCONFIG
666 echo "" >> $NEWCONFIG
667 cat ${ROUTENULL_TEMPLATE} >> $NEWCONFIG
668 echo "" >> $NEWCONFIG
670 if [ "X$FIREWALLDROP" = "Xyes" ]; then
671 echo "" >> $NEWCONFIG
672 cat ${ACTIVE_RESPONSE_TEMPLATE} >> $NEWCONFIG
673 echo "" >> $NEWCONFIG
677 # Setting up the logs
679 echo "</ossec_config>" >> $NEWCONFIG
691 echo "2- ${settingupenv}."
694 if [ "X${USER_DIR}" = "X" ]; then
696 $ECHO " - ${wheretoinstall} [$INSTALLDIR]: "
698 if [ ! "X$ANSWER" = "X" ]; then
699 echo $ANSWER |grep -E "^/[a-zA-Z0-9./_-]{3,128}$">/dev/null 2>&1
709 INSTALLDIR=${USER_DIR}
713 CEXTRA="$CEXTRA -DDEFAULTDIR=\\\"${INSTALLDIR}\\\""
716 echo " - ${installat} ${INSTALLDIR} ."
719 if [ "X$INSTYPE" = "Xagent" ]; then
720 CEXTRA="$CEXTRA -DCLIENT"
721 elif [ "X$INSTYPE" = "Xlocal" ]; then
722 CEXTRA="$CEXTRA -DLOCAL"
725 ls $INSTALLDIR >/dev/null 2>&1
727 if [ "X${USER_DELETE_DIR}" = "X" ]; then
729 $ECHO " - ${deletedir} ($yes/$no) [$yes]: "
732 ANSWER=${USER_DELETE_DIR}
738 if [ ! $? = 0 ]; then
750 # checkDependencies()
751 # Thanks to gabriel@macacos.org
757 if [ "X$NUNAME" = "XSunOS" ]; then
758 PATH=$PATH:/usr/ccs/bin:/usr/xpg4/bin:/opt/csw/gcc3/bin:/opt/csw/bin:/usr/sfw/bin
760 elif [ "X$NUNAME" = "XAIX" ]; then
761 PATH=$PATH:/usr/vac/bin
765 ls "`which gcc`" > /dev/null 2>&1
766 if [ ! $? = 0 ]; then
767 ls "`which cc`" > /dev/null 2>&1
768 if [ ! $? = 0 ]; then
769 if [ "X${USER_BINARYINSTALL}" = "X" ]; then
770 catError "0x3-dependencies"
790 $ECHO " - ${addwhite} ($yes/$no)? [$no]: "
792 # If white list is set, we don't need to ask it here.
793 if [ "X${USER_WHITE_LIST}" = "X" ]; then
799 if [ "X${ANSWER}" = "X" ] ; then
808 $ECHO " - ${ipswhite}"
809 if [ "X${USER_WHITE_LIST}" = "X" ]; then
812 IPS=${USER_WHITE_LIST}
817 if [ ! "X${ip}" = "X" ]; then
818 echo $ip | grep -E "^[0-9./]{5,20}$" > /dev/null 2>&1
820 echo " <white_list>${ip}</white_list>" >>$NEWCONFIG
838 TABLE="ossec_fwtable"
840 # Add table to the first line
842 echo " - ${pfmessage}:"
844 echo " http://www.ossec.net/en/manual.html#active-response-tools"
848 echo " table <${TABLE}> persist #$TABLE "
849 echo " block in quick from <${TABLE}> to any"
850 echo " block out quick from any to <${TABLE}>"
863 . ./src/init/shared.sh
864 . ./src/init/functions.sh
866 # Reading pre-defined file
867 if [ ! `isFile ${PREDEF_FILE}` = "${FALSE}" ]; then
871 # If user language is not set
873 if [ "X${USER_LANGUAGE}" = "X" ]; then
875 # Choosing the language.
878 for i in `ls ${TEMPLATE}`; do
879 # ignore CVS (should not be there anyways and config)
880 if [ "$i" = "CVS" -o "$i" = "config" ]; then continue; fi
881 cat "${TEMPLATE}/$i/language.txt"
882 if [ ! "$i" = "en" ]; then
886 $ECHO " (${LG}) [en]: "
889 if [ "X${USER_LG}" = "X" ]; then
893 ls "${TEMPLATE}/${USER_LG}" > /dev/null 2>&1
903 # If provided language is not valid, default to english
904 ls "${TEMPLATE}/${USER_LANGUAGE}" > /dev/null 2>&1
906 LANGUAGE=${USER_LANGUAGE}
911 fi # for USER_LANGUAGE
914 . ./src/init/shared.sh
915 . ./src/init/language.sh
916 . ./src/init/functions.sh
918 . ${TEMPLATE}/${LANGUAGE}/messages.txt
921 # Must be executed as ./install.sh
922 if [ `isFile ${VERSION_FILE}` = "${FALSE}" ]; then
923 catError "0x1-location";
927 if [ ! "X$ME" = "Xroot" ]; then
928 catError "0x2-beroot";
931 # Checking dependencies
938 echo " $NAME $VERSION ${installscript} - http://www.ossec.net"
940 catMsg "0x101-initial"
942 echo " - $system: $UNAME"
944 echo " - $host: $HOST"
947 echo " -- $hitanyorabort --"
949 if [ "X$USER_NO_STOP" = "X" ]; then
953 . ./src/init/update.sh
955 if [ "`isUpdate`" = "${TRUE}" ]; then
958 while [ $ct = "1" ]; do
960 $ECHO " - ${wanttoupdate} ($yes/$no): "
961 if [ "X${USER_UPDATE}" = "X" ]; then
982 # Do some of the update steps.
983 if [ "X${update_only}" = "Xyes" ]; then
984 . ./src/init/update.sh
986 if [ "`doUpdatecleanup`" = "${FALSE}" ]; then
989 echo "${unabletoupdate}"
994 USER_INSTALL_TYPE=`getPreinstalled`
995 USER_DIR=`getPreinstalledDir`
996 USER_DELETE_DIR="$nomatch"
1001 # We dont need to update the rules on agent installs
1002 if [ "X${USER_INSTALL_TYPE}" = "Xagent" ]; then
1006 while [ $ct = "1" ]; do
1008 $ECHO " - ${updaterules} ($yes/$no): "
1009 if [ "X${USER_UPDATE_RULES}" = "X" ]; then
1032 serverm=`echo ${server} | cut -b 1`
1033 localm=`echo ${local} | cut -b 1`
1034 agentm=`echo ${agent} | cut -b 1`
1035 helpm=`echo ${help} | cut -b 1`
1037 # If user install type is not set, ask for it.
1038 if [ "X${USER_INSTALL_TYPE}" = "X" ]; then
1040 # Loop for the installation options
1044 $ECHO "1- ${whattoinstall} "
1050 catMsg "0x102-installhelp"
1053 ${server}|${serverm})
1055 echo " - ${serverchose}."
1062 echo " - ${clientchose}."
1069 echo " - ${localchose}."
1077 INSTYPE=${USER_INSTALL_TYPE}
1081 # Setting up the environment
1085 # Configuring the system (based on the installation type)
1086 if [ "X${update_only}" = "X" ]; then
1087 if [ "X$INSTYPE" = "Xserver" ]; then
1089 elif [ "X$INSTYPE" = "Xagent" ]; then
1091 elif [ "X$INSTYPE" = "Xlocal" ]; then
1094 catError "0x4-installtype"
1098 # Installing (calls the respective script
1099 # -- InstallAgent.sh or InstallServer.sh
1104 echo " - ${configurationdone}."
1106 echo " - ${tostart}:"
1107 echo " $INSTALLDIR/bin/ossec-control start"
1109 echo " - ${tostop}:"
1110 echo " $INSTALLDIR/bin/ossec-control stop"
1112 echo " - ${configat} $INSTALLDIR/etc/ossec.conf"
1116 catMsg "0x103-thanksforusing"
1119 if [ "X${update_only}" = "Xyes" ]; then
1120 # Message for the update
1121 if [ "X`sh ./src/init/fw-check.sh`" = "XPF" -a "X${ACTIVERESPONSE}" = "Xyes" ]; then
1122 if [ "X$USER_NO_STOP" = "X" ]; then
1128 echo " - ${updatecompleted}"
1134 if [ "X$USER_NO_STOP" = "X" ]; then
1139 # PF firewall message
1140 if [ "X`sh ./src/init/fw-check.sh`" = "XPF" -a "X${ACTIVERESPONSE}" = "Xyes" ]; then
1145 if [ "X$INSTYPE" = "Xserver" ]; then
1147 echo " - ${addserveragent}"
1150 echo " $INSTALLDIR/bin/manage_agents"
1153 echo " http://www.ossec.net/en/manual.html#ma"
1156 elif [ "X$INSTYPE" = "Xagent" ]; then
1157 catMsg "0x104-client"
1158 echo " $INSTALLDIR/bin/manage_agents"
1161 echo " http://www.ossec.net/en/manual.html#ma"
1165 if [ "X$notmodified" = "Xyes" ]; then
1166 catMsg "0x105-noboot"
1167 echo " $INSTALLDIR/bin/ossec-control start"
1175 ### Calling main function where everything happens
projects / ossec-hids.git / blob