Annotation of src/etc/daily, Revision 1.41
1.1 deraadt 1: #!/bin/sh -
2: #
1.41 ! millert 3: # $OpenBSD: daily,v 1.40 2002/09/12 02:36:31 danh Exp $
1.17 millert 4: # From: @(#)daily 8.2 (Berkeley) 1/25/94
1.1 deraadt 5: #
1.17 millert 6: PATH=/bin:/usr/bin:/sbin:/usr/sbin:/usr/local/bin
7: bak=/var/backups
1.1 deraadt 8:
1.21 deraadt 9: if [ -f /etc/daily.local ]; then
1.2 david 10: echo ""
11: echo "Running daily.local:"
12: . /etc/daily.local
13: fi
14:
1.16 millert 15: TMP=`mktemp /tmp/_daily.XXXXXX` || exit 1
1.33 marc 16: OUT=`mktemp /tmp/_security.XXXXXX` || exit 1
1.16 millert 17:
1.33 marc 18: trap 'rm -f $TMP $OUT' 0 1 15
1.14 millert 19:
1.1 deraadt 20: echo ""
1.17 millert 21: echo "Removing scratch and junk files:"
1.32 aaron 22: if [ -d /tmp -a ! -L /tmp ]; then
1.17 millert 23: cd /tmp && {
1.37 espie 24: find -x . \( -path './ssh-*' -o -path './.X11-unix' \) -prune -o \
1.31 millert 25: -type f -atime +3 -execdir rm -f -- {} \;
1.28 deraadt 26: find -x . ! -name . -type d -mtime +1 -execdir rmdir -- {} \; \
1.17 millert 27: >/dev/null 2>&1; }
28: fi
1.1 deraadt 29:
1.32 aaron 30: if [ -d /var/tmp -a ! -L /var/tmp ]; then
1.17 millert 31: cd /var/tmp && {
1.37 espie 32: find -x . \( -path './ssh-*' -o -path './.X11-unix' \) -prune -o \
1.31 millert 33: ! -type d -atime +7 -execdir rm -f -- {} \;
1.28 deraadt 34: find -x . ! -name . -type d -mtime +1 -execdir rmdir -- {} \; \
1.17 millert 35: >/dev/null 2>&1; }
36: fi
1.1 deraadt 37:
1.3 deraadt 38: # Additional junk directory cleanup would go like this:
1.32 aaron 39: #if [ -d /scratch -a ! -L /scratch ]; then
1.3 deraadt 40: # cd /scratch && {
1.17 millert 41: # find . ! -name . -atime +1 -execdir rm -f -- {} \;
42: # find . ! -name . -type d -mtime +1 -execdir rmdir -- {} \; \
1.3 deraadt 43: # >/dev/null 2>&1; }
44: #fi
1.1 deraadt 45:
1.32 aaron 46: if [ -d /var/preserve -a ! -L /var/preserve ]; then
1.17 millert 47: cd /var/preserve && {
48: find . ! -name . -mtime +7 -execdir rm -f -- {} \; ; }
49: fi
50:
1.32 aaron 51: if [ -d /var/rwho -a ! -L /var/rwho ] ; then
1.17 millert 52: cd /var/rwho && {
53: find . ! -name . -mtime +7 -execdir rm -f -- {} \; ; }
54: fi
1.1 deraadt 55:
1.24 deraadt 56: #find / \( ! -fstype local -o -fstype rdonly -o -fstype fdesc \
57: # -o -fstype kernfs -o -fstype procfs \) -a -prune -o \
58: # -name 'lost+found' -a -prune -o \
59: # -name '*.core' -a -print -o \
60: # \( -name '[#,]*' -o -name '.#*' -o -name a.out \
61: # -o -name '*.CKP' -o -name '.emacs_[0-9]*' \) \
62: # -a -atime +3 -a -execdir rm -f -- {} \; -a -print > $TMP
1.1 deraadt 63:
1.14 millert 64: if egrep -q '\.core$' $TMP; then
1.17 millert 65: echo ""
66: echo "Possible core dumps:"
67: egrep '\.core$' $TMP
68: fi
69:
70: if egrep -qv '\.core$' $TMP; then
71: echo ""
72: echo "Deleted files:"
73: egrep -v '\.core$' $TMP
1.14 millert 74: fi
1.1 deraadt 75:
1.26 downsj 76: if [ -d /var/msgs -a ! -L /var/msgs ]; then
77: msgs -c
78: fi
1.1 deraadt 79:
1.17 millert 80: if [ -s /etc/news.expire ]; then
1.1 deraadt 81: /etc/news.expire
82: fi
83:
84: if [ -f /var/account/acct ]; then
1.17 millert 85: echo ""
86: echo "Purging accounting records:"
87: mv /var/account/acct.2 /var/account/acct.3
88: mv /var/account/acct.1 /var/account/acct.2
89: mv /var/account/acct.0 /var/account/acct.1
90: cp /var/account/acct /var/account/acct.0
91: sa -sq
92: fi
93:
94: # If ROOTBACKUP is set to 1 in the environment, and
95: # if filesystem named /altroot is type ffs, on /dev/* and mounted "xx",
96: # use it as a backup root filesystem to be updated daily.
97: [ "X$ROOTBACKUP" = X1 ] && {
98: rootdev=`awk '$2 == "/" && $1 ~ /^\/dev\// && $3 == "ffs" && \
1.29 todd 99: $4 ~ /rw/ \
1.17 millert 100: { print substr($1, 6) }' < /etc/fstab`
101: rootbak=`awk '$2 == "/altroot" && $1 ~ /^\/dev\// && $3 == "ffs" && \
1.29 todd 102: $4 ~ /xx/ \
1.17 millert 103: { print substr($1, 6) }' < /etc/fstab`
104: [ X$rootdev != X -a X$rootbak != X ] && {
105: sync
106: echo ""
107: echo "Backing up root filesystem:"
108: echo "copying /dev/r$rootdev to /dev/r$rootbak"
109: dd if=/dev/r$rootdev of=/dev/r$rootbak bs=16b seek=1 skip=1 \
1.22 mickey 110: conv=noerror
1.17 millert 111: fsck -y /dev/r$rootbak
112: }
113: }
1.1 deraadt 114:
115: # Rotation of mail log now handled automatically by cron and 'newsyslog'
116:
117: echo ""
118: echo "Checking subsystem status:"
119: echo ""
120: echo "disks:"
1.40 danh 121: df -kl
1.1 deraadt 122: echo ""
123: dump W
124: echo ""
125:
1.15 millert 126: mailq > $TMP
1.34 angelos 127: if ! grep -q "^/var/spool/mqueue is empty$" $TMP; then
1.15 millert 128: echo ""
129: echo "mail:"
130: cat $TMP
1.1 deraadt 131: fi
132:
133: echo ""
134: echo "network:"
1.35 niklas 135: netstat -ivn
1.1 deraadt 136: echo ""
1.14 millert 137:
1.15 millert 138: t=/var/rwho/*
139: if [ "$t" != '/var/rwho/*' ]; then
1.17 millert 140: echo ""
1.14 millert 141: ruptime
1.38 millert 142: fi
143:
144: echo ""
145: if [ -d /var/yp/binding -a ! -d /var/yp/`domainname` -o "X$CALENDAR" = X0 ]
146: then
147: if [ "X$CALENDAR" = X0 ]; then
148: echo "Not running calendar, (disabled)."
149: else
150: echo "Not running calendar, (yp client)."
151: fi
152: else
153: echo "Running calendar in the background."
154: calendar -a &
1.14 millert 155: fi
1.1 deraadt 156:
1.17 millert 157: # If CHECKFILESYSTEMS is set to 1 in the environment, run fsck
158: # with the no-write flag.
159: [ "X$CHECKFILESYSTEMS" = X1 ] && {
160: echo ""
161: echo "Checking filesystems:"
162: fsck -n | grep -v '^\*\* Phase'
163: }
1.1 deraadt 164:
165: if [ -f /etc/Distfile ]; then
1.17 millert 166: echo ""
1.1 deraadt 167: echo "Running rdist:"
1.17 millert 168: if [ -d /var/log/rdist ]; then
1.19 deraadt 169: logf=`date +%Y.%b.%e`
1.17 millert 170: rdist -f /etc/Distfile 2>&1 | tee /var/log/rdist/$logf
171: else
1.39 deraadt 172: rdist -f /etc/Distfile
1.17 millert 173: fi
1.1 deraadt 174: fi
175:
1.33 marc 176: sh /etc/security 2>&1 > $OUT
177: if [ -s $OUT ]; then
1.41 ! millert 178: mail -s "`hostname` daily insecurity output" root < $OUT
1.33 marc 179: fi
![[BACK]](/icons/back.gif){kind=icon}
Return to daily CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / src / etc