Annotation of src/etc/daily, Revision 1.50
1.1 deraadt 1: #!/bin/sh -
2: #
1.50 ! millert 3: # $OpenBSD: daily,v 1.49 2005/03/16 18:29:58 millert Exp $
1.17 millert 4: # From: @(#)daily 8.2 (Berkeley) 1/25/94
1.1 deraadt 5: #
1.17 millert 6: PATH=/bin:/usr/bin:/sbin:/usr/sbin:/usr/local/bin
7: bak=/var/backups
1.47 nick 8:
9: sysctl -n kern.version
1.1 deraadt 10:
1.21 deraadt 11: if [ -f /etc/daily.local ]; then
1.2 david 12: echo ""
13: echo "Running daily.local:"
14: . /etc/daily.local
15: fi
16:
1.45 avsm 17: TMP=`mktemp /tmp/_daily.XXXXXXXXXX` || exit 1
18: OUT=`mktemp /tmp/_security.XXXXXXXXXX` || {
1.42 pvalchev 19: rm -f ${TMP}
20: exit 1
21: }
1.16 millert 22:
1.33 marc 23: trap 'rm -f $TMP $OUT' 0 1 15
1.14 millert 24:
1.1 deraadt 25: echo ""
1.17 millert 26: echo "Removing scratch and junk files:"
1.32 aaron 27: if [ -d /tmp -a ! -L /tmp ]; then
1.17 millert 28: cd /tmp && {
1.50 ! millert 29: find -x . \
! 30: \( -path './ssh-*' -o -path ./.X11-unix -o -path ./.ICE-unix \) \
! 31: -prune -o -type f -atime +3 -execdir rm -f -- {} \;
1.49 millert 32: find -x . -type d -mtime +1 ! -path ./vi.recover ! -path ./.X11-unix \
1.50 ! millert 33: ! -path ./.ICE-unix ! -name . -execdir rmdir -- {} \; >/dev/null 2>&1; }
1.17 millert 34: fi
1.1 deraadt 35:
1.32 aaron 36: if [ -d /var/tmp -a ! -L /var/tmp ]; then
1.17 millert 37: cd /var/tmp && {
1.50 ! millert 38: find -x . \
! 39: \( -path './ssh-*' -o -path ./.X11-unix -o -path ./.ICE-unix \) \
! 40: -prune -o ! -type d -atime +7 -execdir rm -f -- {} \;
1.49 millert 41: find -x . -type d -mtime +1 ! -path ./vi.recover ! -path ./.X11-unix \
1.50 ! millert 42: ! -path ./.ICE-unix ! -name . -execdir rmdir -- {} \; >/dev/null 2>&1; }
1.17 millert 43: fi
1.1 deraadt 44:
1.3 deraadt 45: # Additional junk directory cleanup would go like this:
1.32 aaron 46: #if [ -d /scratch -a ! -L /scratch ]; then
1.3 deraadt 47: # cd /scratch && {
1.17 millert 48: # find . ! -name . -atime +1 -execdir rm -f -- {} \;
49: # find . ! -name . -type d -mtime +1 -execdir rmdir -- {} \; \
1.3 deraadt 50: # >/dev/null 2>&1; }
51: #fi
1.17 millert 52:
1.32 aaron 53: if [ -d /var/rwho -a ! -L /var/rwho ] ; then
1.17 millert 54: cd /var/rwho && {
55: find . ! -name . -mtime +7 -execdir rm -f -- {} \; ; }
56: fi
1.1 deraadt 57:
1.24 deraadt 58: #find / \( ! -fstype local -o -fstype rdonly -o -fstype fdesc \
59: # -o -fstype kernfs -o -fstype procfs \) -a -prune -o \
60: # -name 'lost+found' -a -prune -o \
61: # -name '*.core' -a -print -o \
62: # \( -name '[#,]*' -o -name '.#*' -o -name a.out \
63: # -o -name '*.CKP' -o -name '.emacs_[0-9]*' \) \
64: # -a -atime +3 -a -execdir rm -f -- {} \; -a -print > $TMP
1.1 deraadt 65:
1.14 millert 66: if egrep -q '\.core$' $TMP; then
1.17 millert 67: echo ""
68: echo "Possible core dumps:"
69: egrep '\.core$' $TMP
70: fi
71:
72: if egrep -qv '\.core$' $TMP; then
73: echo ""
74: echo "Deleted files:"
75: egrep -v '\.core$' $TMP
1.14 millert 76: fi
1.1 deraadt 77:
1.26 downsj 78: if [ -d /var/msgs -a ! -L /var/msgs ]; then
79: msgs -c
1.1 deraadt 80: fi
81:
82: if [ -f /var/account/acct ]; then
1.17 millert 83: echo ""
84: echo "Purging accounting records:"
1.44 mickey 85: mv -f /var/account/acct.2 /var/account/acct.3
86: mv -f /var/account/acct.1 /var/account/acct.2
87: mv -f /var/account/acct.0 /var/account/acct.1
88: cp -f /var/account/acct /var/account/acct.0
1.17 millert 89: sa -sq
90: fi
91:
92: # If ROOTBACKUP is set to 1 in the environment, and
93: # if filesystem named /altroot is type ffs, on /dev/* and mounted "xx",
94: # use it as a backup root filesystem to be updated daily.
95: [ "X$ROOTBACKUP" = X1 ] && {
1.48 millert 96: rootdev=`df -n / | awk '/^\/dev\// { print substr($1, 6) }'`
1.17 millert 97: rootbak=`awk '$2 == "/altroot" && $1 ~ /^\/dev\// && $3 == "ffs" && \
1.29 todd 98: $4 ~ /xx/ \
1.17 millert 99: { print substr($1, 6) }' < /etc/fstab`
1.48 millert 100: [ X$rootdev != X -a X$rootbak != X -a X$rootdev != X$rootbak ] && {
1.17 millert 101: sync
102: echo ""
103: echo "Backing up root filesystem:"
104: echo "copying /dev/r$rootdev to /dev/r$rootbak"
105: dd if=/dev/r$rootdev of=/dev/r$rootbak bs=16b seek=1 skip=1 \
1.22 mickey 106: conv=noerror
1.17 millert 107: fsck -y /dev/r$rootbak
108: }
109: }
1.1 deraadt 110:
111: # Rotation of mail log now handled automatically by cron and 'newsyslog'
112:
113: echo ""
114: echo "Checking subsystem status:"
115: echo ""
116: echo "disks:"
1.40 danh 117: df -kl
1.1 deraadt 118: echo ""
119: dump W
120: echo ""
121:
1.15 millert 122: mailq > $TMP
1.34 angelos 123: if ! grep -q "^/var/spool/mqueue is empty$" $TMP; then
1.15 millert 124: echo ""
125: echo "mail:"
126: cat $TMP
1.1 deraadt 127: fi
128:
129: echo ""
130: echo "network:"
1.35 niklas 131: netstat -ivn
1.1 deraadt 132: echo ""
1.14 millert 133:
1.15 millert 134: t=/var/rwho/*
135: if [ "$t" != '/var/rwho/*' ]; then
1.17 millert 136: echo ""
1.14 millert 137: ruptime
1.38 millert 138: fi
139:
140: echo ""
141: if [ -d /var/yp/binding -a ! -d /var/yp/`domainname` -o "X$CALENDAR" = X0 ]
142: then
143: if [ "X$CALENDAR" = X0 ]; then
144: echo "Not running calendar, (disabled)."
145: else
146: echo "Not running calendar, (yp client)."
147: fi
148: else
149: echo "Running calendar in the background."
150: calendar -a &
1.14 millert 151: fi
1.1 deraadt 152:
1.17 millert 153: # If CHECKFILESYSTEMS is set to 1 in the environment, run fsck
154: # with the no-write flag.
155: [ "X$CHECKFILESYSTEMS" = X1 ] && {
156: echo ""
157: echo "Checking filesystems:"
158: fsck -n | grep -v '^\*\* Phase'
159: }
1.1 deraadt 160:
161: if [ -f /etc/Distfile ]; then
1.17 millert 162: echo ""
1.1 deraadt 163: echo "Running rdist:"
1.17 millert 164: if [ -d /var/log/rdist ]; then
1.19 deraadt 165: logf=`date +%Y.%b.%e`
1.17 millert 166: rdist -f /etc/Distfile 2>&1 | tee /var/log/rdist/$logf
167: else
1.39 deraadt 168: rdist -f /etc/Distfile
1.17 millert 169: fi
1.1 deraadt 170: fi
171:
1.33 marc 172: sh /etc/security 2>&1 > $OUT
173: if [ -s $OUT ]; then
1.41 millert 174: mail -s "`hostname` daily insecurity output" root < $OUT
1.33 marc 175: fi
![[BACK]](/icons/back.gif){kind=icon}
Return to daily CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / src / etc