Annotation of src/etc/daily, Revision 1.44
1.1 deraadt 1: #!/bin/sh -
2: #
1.44 ! mickey 3: # $OpenBSD: daily,v 1.43 2003/03/28 21:32:30 jmc Exp $
1.17 millert 4: # From: @(#)daily 8.2 (Berkeley) 1/25/94
1.1 deraadt 5: #
1.17 millert 6: PATH=/bin:/usr/bin:/sbin:/usr/sbin:/usr/local/bin
7: bak=/var/backups
1.1 deraadt 8:
1.21 deraadt 9: if [ -f /etc/daily.local ]; then
1.2 david 10: echo ""
11: echo "Running daily.local:"
12: . /etc/daily.local
13: fi
14:
1.16 millert 15: TMP=`mktemp /tmp/_daily.XXXXXX` || exit 1
1.42 pvalchev 16: OUT=`mktemp /tmp/_security.XXXXXX` || {
17: rm -f ${TMP}
18: exit 1
19: }
1.16 millert 20:
1.33 marc 21: trap 'rm -f $TMP $OUT' 0 1 15
1.14 millert 22:
1.1 deraadt 23: echo ""
1.17 millert 24: echo "Removing scratch and junk files:"
1.32 aaron 25: if [ -d /tmp -a ! -L /tmp ]; then
1.17 millert 26: cd /tmp && {
1.37 espie 27: find -x . \( -path './ssh-*' -o -path './.X11-unix' \) -prune -o \
1.31 millert 28: -type f -atime +3 -execdir rm -f -- {} \;
1.28 deraadt 29: find -x . ! -name . -type d -mtime +1 -execdir rmdir -- {} \; \
1.17 millert 30: >/dev/null 2>&1; }
31: fi
1.1 deraadt 32:
1.32 aaron 33: if [ -d /var/tmp -a ! -L /var/tmp ]; then
1.17 millert 34: cd /var/tmp && {
1.37 espie 35: find -x . \( -path './ssh-*' -o -path './.X11-unix' \) -prune -o \
1.31 millert 36: ! -type d -atime +7 -execdir rm -f -- {} \;
1.28 deraadt 37: find -x . ! -name . -type d -mtime +1 -execdir rmdir -- {} \; \
1.17 millert 38: >/dev/null 2>&1; }
39: fi
1.1 deraadt 40:
1.3 deraadt 41: # Additional junk directory cleanup would go like this:
1.32 aaron 42: #if [ -d /scratch -a ! -L /scratch ]; then
1.3 deraadt 43: # cd /scratch && {
1.17 millert 44: # find . ! -name . -atime +1 -execdir rm -f -- {} \;
45: # find . ! -name . -type d -mtime +1 -execdir rmdir -- {} \; \
1.3 deraadt 46: # >/dev/null 2>&1; }
47: #fi
1.17 millert 48:
1.32 aaron 49: if [ -d /var/rwho -a ! -L /var/rwho ] ; then
1.17 millert 50: cd /var/rwho && {
51: find . ! -name . -mtime +7 -execdir rm -f -- {} \; ; }
52: fi
1.1 deraadt 53:
1.24 deraadt 54: #find / \( ! -fstype local -o -fstype rdonly -o -fstype fdesc \
55: # -o -fstype kernfs -o -fstype procfs \) -a -prune -o \
56: # -name 'lost+found' -a -prune -o \
57: # -name '*.core' -a -print -o \
58: # \( -name '[#,]*' -o -name '.#*' -o -name a.out \
59: # -o -name '*.CKP' -o -name '.emacs_[0-9]*' \) \
60: # -a -atime +3 -a -execdir rm -f -- {} \; -a -print > $TMP
1.1 deraadt 61:
1.14 millert 62: if egrep -q '\.core$' $TMP; then
1.17 millert 63: echo ""
64: echo "Possible core dumps:"
65: egrep '\.core$' $TMP
66: fi
67:
68: if egrep -qv '\.core$' $TMP; then
69: echo ""
70: echo "Deleted files:"
71: egrep -v '\.core$' $TMP
1.14 millert 72: fi
1.1 deraadt 73:
1.26 downsj 74: if [ -d /var/msgs -a ! -L /var/msgs ]; then
75: msgs -c
76: fi
1.1 deraadt 77:
1.17 millert 78: if [ -s /etc/news.expire ]; then
1.1 deraadt 79: /etc/news.expire
80: fi
81:
82: if [ -f /var/account/acct ]; then
1.17 millert 83: echo ""
84: echo "Purging accounting records:"
1.44 ! mickey 85: mv -f /var/account/acct.2 /var/account/acct.3
! 86: mv -f /var/account/acct.1 /var/account/acct.2
! 87: mv -f /var/account/acct.0 /var/account/acct.1
! 88: cp -f /var/account/acct /var/account/acct.0
1.17 millert 89: sa -sq
90: fi
91:
92: # If ROOTBACKUP is set to 1 in the environment, and
93: # if filesystem named /altroot is type ffs, on /dev/* and mounted "xx",
94: # use it as a backup root filesystem to be updated daily.
95: [ "X$ROOTBACKUP" = X1 ] && {
96: rootdev=`awk '$2 == "/" && $1 ~ /^\/dev\// && $3 == "ffs" && \
1.29 todd 97: $4 ~ /rw/ \
1.17 millert 98: { print substr($1, 6) }' < /etc/fstab`
99: rootbak=`awk '$2 == "/altroot" && $1 ~ /^\/dev\// && $3 == "ffs" && \
1.29 todd 100: $4 ~ /xx/ \
1.17 millert 101: { print substr($1, 6) }' < /etc/fstab`
102: [ X$rootdev != X -a X$rootbak != X ] && {
103: sync
104: echo ""
105: echo "Backing up root filesystem:"
106: echo "copying /dev/r$rootdev to /dev/r$rootbak"
107: dd if=/dev/r$rootdev of=/dev/r$rootbak bs=16b seek=1 skip=1 \
1.22 mickey 108: conv=noerror
1.17 millert 109: fsck -y /dev/r$rootbak
110: }
111: }
1.1 deraadt 112:
113: # Rotation of mail log now handled automatically by cron and 'newsyslog'
114:
115: echo ""
116: echo "Checking subsystem status:"
117: echo ""
118: echo "disks:"
1.40 danh 119: df -kl
1.1 deraadt 120: echo ""
121: dump W
122: echo ""
123:
1.15 millert 124: mailq > $TMP
1.34 angelos 125: if ! grep -q "^/var/spool/mqueue is empty$" $TMP; then
1.15 millert 126: echo ""
127: echo "mail:"
128: cat $TMP
1.1 deraadt 129: fi
130:
131: echo ""
132: echo "network:"
1.35 niklas 133: netstat -ivn
1.1 deraadt 134: echo ""
1.14 millert 135:
1.15 millert 136: t=/var/rwho/*
137: if [ "$t" != '/var/rwho/*' ]; then
1.17 millert 138: echo ""
1.14 millert 139: ruptime
1.38 millert 140: fi
141:
142: echo ""
143: if [ -d /var/yp/binding -a ! -d /var/yp/`domainname` -o "X$CALENDAR" = X0 ]
144: then
145: if [ "X$CALENDAR" = X0 ]; then
146: echo "Not running calendar, (disabled)."
147: else
148: echo "Not running calendar, (yp client)."
149: fi
150: else
151: echo "Running calendar in the background."
152: calendar -a &
1.14 millert 153: fi
1.1 deraadt 154:
1.17 millert 155: # If CHECKFILESYSTEMS is set to 1 in the environment, run fsck
156: # with the no-write flag.
157: [ "X$CHECKFILESYSTEMS" = X1 ] && {
158: echo ""
159: echo "Checking filesystems:"
160: fsck -n | grep -v '^\*\* Phase'
161: }
1.1 deraadt 162:
163: if [ -f /etc/Distfile ]; then
1.17 millert 164: echo ""
1.1 deraadt 165: echo "Running rdist:"
1.17 millert 166: if [ -d /var/log/rdist ]; then
1.19 deraadt 167: logf=`date +%Y.%b.%e`
1.17 millert 168: rdist -f /etc/Distfile 2>&1 | tee /var/log/rdist/$logf
169: else
1.39 deraadt 170: rdist -f /etc/Distfile
1.17 millert 171: fi
1.1 deraadt 172: fi
173:
1.33 marc 174: sh /etc/security 2>&1 > $OUT
175: if [ -s $OUT ]; then
1.41 millert 176: mail -s "`hostname` daily insecurity output" root < $OUT
1.33 marc 177: fi
![[BACK]](/icons/back.gif){kind=icon}
Return to daily CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / src / etc