10 abort-upgrade|abort-remove|abort-deconfigure)
15 echo "postinst called with unknown argument \`$1'" >&2
20 # users and group names
22 OSSEC_USER_MAIL="ossecm"
23 OSSEC_USER_EXEC="ossece"
24 OSSEC_USER_REM="ossecr"
27 # get installation directory
28 . /etc/ossec-init.conf
29 if [ "X${DIRECTORY}" = "X" ]; then
30 DIRECTORY="/var/ossec"
34 if ! getent group $OSSEC_GROUP >/dev/null; then
35 addgroup --system $OSSEC_GROUP
39 if ! getent passwd $OSSEC_USER >/dev/null; then
40 adduser --quiet --system --no-create-home \
41 --ingroup $OSSEC_GROUP \
42 --home $DIRECTORY --shell /bin/false $OSSEC_USER
44 usermod -g $OSSEC_GROUP -s /bin/false -d $DIRECTORY $OSSEC_USER
46 if ! getent passwd $OSSEC_USER_MAIL >/dev/null; then
47 adduser --quiet --system --no-create-home \
48 --ingroup $OSSEC_GROUP \
49 --home $DIRECTORY --shell /bin/false $OSSEC_USER_MAIL
51 usermod -g $OSSEC_GROUP -s /bin/false -d $DIRECTORY $OSSEC_USER_MAIL
53 if ! getent passwd $OSSEC_USER_EXEC >/dev/null; then
54 adduser --quiet --system --no-create-home \
55 --ingroup $OSSEC_GROUP \
56 --home $DIRECTORY --shell /bin/false $OSSEC_USER_EXEC
58 usermod -g $OSSEC_GROUP -s /bin/false -d $DIRECTORY $OSSEC_USER_EXEC
60 if ! getent passwd $OSSEC_USER_REM >/dev/null; then
61 adduser --quiet --system --no-create-home \
62 --ingroup $OSSEC_GROUP \
63 --home $DIRECTORY --shell /bin/false $OSSEC_USER_REM
65 usermod -g $OSSEC_GROUP -s /bin/false -d $DIRECTORY $OSSEC_USER_REM
69 chown -R root:$OSSEC_GROUP $DIRECTORY
70 chown -R $OSSEC_USER:$OSSEC_GROUP $DIRECTORY/queue/alerts
71 chown -R $OSSEC_USER:$OSSEC_GROUP $DIRECTORY/queue/ossec
72 chown -R $OSSEC_USER:$OSSEC_GROUP $DIRECTORY/queue/fts
73 chown -R $OSSEC_USER:$OSSEC_GROUP $DIRECTORY/queue/syscheck
74 chown -R $OSSEC_USER:$OSSEC_GROUP $DIRECTORY/queue/rootcheck
75 chown -R $OSSEC_USER_REM:$OSSEC_GROUP $DIRECTORY/queue/agent-info
76 chown -R $OSSEC_USER_REM:$OSSEC_GROUP $DIRECTORY/queue/rids
77 chown -R $OSSEC_USER:$OSSEC_GROUP $DIRECTORY/stats
78 chown -R $OSSEC_USER:$OSSEC_GROUP $DIRECTORY/logs
79 chown -R root:$OSSEC_GROUP $DIRECTORY/etc
80 touch $DIRECTORY/logs/ossec.log
81 chown $OSSEC_USER:$OSSEC_GROUP $DIRECTORY/logs/ossec.log
82 chown $OSSEC_USER:$OSSEC_GROUP $DIRECTORY/.ssh
83 chown -R root:$OSSEC_GROUP $DIRECTORY/rules
84 chown root:$OSSEC_GROUP $DIRECTORY/etc/decoder.xml
85 chown root:$OSSEC_GROUP $DIRECTORY/etc/internal_options.conf
86 chown root:$OSSEC_GROUP $DIRECTORY/etc/client.keys >/dev/null 2>&1 || true
87 chown root:$OSSEC_GROUP $DIRECTORY/agentless/*
88 chown $OSSEC_USER:$OSSEC_GROUP $DIRECTORY/.ssh
89 chown -R root:$OSSEC_GROUP $DIRECTORY/etc/shared
90 chown root:$OSSEC_GROUP $DIRECTORY/var/run
91 chown root:$OSSEC_GROUP $DIRECTORY/active-response/bin/*
92 chown root:$OSSEC_GROUP $DIRECTORY/bin/*
93 chown root:$OSSEC_GROUP $DIRECTORY/etc/ossec.conf
96 chmod -R 550 $DIRECTORY
97 chmod -R 770 $DIRECTORY/queue/alerts
98 chmod -R 770 $DIRECTORY/queue/ossec
99 chmod -R 750 $DIRECTORY/queue/fts
100 chmod -R 750 $DIRECTORY/queue/syscheck
101 chmod -R 750 $DIRECTORY/queue/rootcheck
102 chmod -R 750 $DIRECTORY/queue/diff
103 chmod -R 755 $DIRECTORY/queue/agent-info
104 chmod -R 755 $DIRECTORY/queue/rids
105 chmod -R 755 $DIRECTORY/queue/agentless
106 chmod -R 750 $DIRECTORY/stats
107 chmod -R 750 $DIRECTORY/logs
108 chmod -R 550 $DIRECTORY/rules
109 chmod 770 $DIRECTORY/var/run
110 chmod 550 $DIRECTORY/etc
111 chmod 440 $DIRECTORY/etc/internal_options.conf
112 chmod -R 770 $DIRECTORY/etc/shared
113 chmod 700 $DIRECTORY/.ssh
114 chmod 755 $DIRECTORY/active-response/bin/*
115 chmod 550 $DIRECTORY/bin/*
116 chmod 440 $DIRECTORY/etc/ossec.conf
118 # fixups: no need for execute bits on files there
119 find $DIRECTORY/rules -type f -exec chmod ugo-x '{}' ';'
120 find $DIRECTORY/etc -type f -exec chmod ugo-x '{}' ';'
122 # copy timezone and localtime
123 if [ -e /etc/timezone ]; then
124 cmp -s /etc/timezone $DIRECTORY/etc/timezone || \
125 cp -a /etc/timezone $DIRECTORY/etc/timezone
127 if [ -e /etc/localtime ]; then
128 cmp -s /etc/localtime $DIRECTORY/etc/localtime || \
129 cp -a /etc/localtime $DIRECTORY/etc/localtime
132 # update system v init links
133 update-rc.d ossec-hids defaults >/dev/null
135 # and start the service
136 if [ -x /usr/sbin/invoke-rc.d ]; then
137 invoke-rc.d ossec-hids restart
139 /etc/init.d/ossec-hids restart
142 # dh_installdeb will replace this with shell code automatically
143 # generated by other debhelper scripts.