#!/bin/sh
# Shell script update functions for the OSSEC HIDS
# Author: Daniel B. Cid <daniel.cid@gmail.com>
-# Last modification: May 24, 2006
-
FALSE="false"
TRUE="true"
-
-##########
-# isUpdate
-##########
isUpdate()
{
ls -la ${OSSEC_INIT} > /dev/null 2>&1
return 1;
}
-
-##########
-# doUpdatecleanup
-##########
doUpdatecleanup()
{
. ${OSSEC_INIT}
fi
# Checking if the directory is valid.
- local _dir_pattern="^/[-a-zA-Z0-9/\.-]{3,128}$"
- echo $DIRECTORY | grep -E "$_dir_pattern" > /dev/null 2>&1
+ _dir_pattern_update="^/[-a-zA-Z0-9/\.-]{3,128}$"
+ echo $DIRECTORY | grep -E "$_dir_pattern_update" > /dev/null 2>&1
if [ ! $? = 0 ]; then
- echo "# ($FUNCNAME) ERROR: directory name ($DIRECTORY) doesn't match the pattern $_dir_pattern" 1>&2
+ echo "# ($FUNCNAME) ERROR: directory name ($DIRECTORY) doesn't match the pattern $_dir_pattern_update" 1>&2
echo "${FALSE}"
return 1;
fi
}
-
-##########
-# getPreinstalled
-##########
getPreinstalled()
{
. ${OSSEC_INIT}
return 0;
}
-
-##########
-# getPreinstalledDir
-##########
getPreinstalledDir()
{
. ${OSSEC_INIT}
return 0;
}
-
-##########
-# UpdateStartOSSEC
-##########
UpdateStartOSSEC()
{
. ${OSSEC_INIT}
$DIRECTORY/bin/ossec-control start
}
-
-##########
-# UpdateStopOSSEC
-##########
UpdateStopOSSEC()
{
. ${OSSEC_INIT}
rm -f $DIRECTORY/queue/syscheck/.* > /dev/null 2>&1
}
-##########
-# UpdateOSSECRules
-##########
UpdateOSSECRules()
{
. ${OSSEC_INIT}
grep -E '<decoder>|<decoder_dir|<rule_dir>' ${OSSEC_CONF_FILE} | grep -v '<!--' >> "${OSSEC_CONF_FILE}.$$.tmp2"
# Check for custom files that may have been added in <rules> element
- for i in $(grep -E '<include>|<list>' ${OSSEC_CONF_FILE} | grep -v '<!--')
+ for i in `grep -E '<include>|<list>' ${OSSEC_CONF_FILE} | grep -v '<!--'`
do
grep "$i" ${RULES_TEMPLATE}>/dev/null || echo " $i" >> "${OSSEC_CONF_FILE}.$$.tmp2"
done
echo "</ossec_config> <!-- rules global entry -->" >> ${OSSEC_CONF_FILE}
rm "${OSSEC_CONF_FILE}.$$.tmp2"
}
+