Annotation of src/etc/daily, Revision 1.51
1.1 deraadt 1: #!/bin/sh -
2: #
1.51 ! deraadt 3: # $OpenBSD: daily,v 1.50 2005/03/17 18:16:52 millert Exp $
1.17 millert 4: # From: @(#)daily 8.2 (Berkeley) 1/25/94
1.1 deraadt 5: #
1.17 millert 6: PATH=/bin:/usr/bin:/sbin:/usr/sbin:/usr/local/bin
7: bak=/var/backups
1.47 nick 8:
9: sysctl -n kern.version
1.51 ! deraadt 10: uptime
1.1 deraadt 11:
1.21 deraadt 12: if [ -f /etc/daily.local ]; then
1.2 david 13: echo ""
14: echo "Running daily.local:"
15: . /etc/daily.local
16: fi
17:
1.45 avsm 18: TMP=`mktemp /tmp/_daily.XXXXXXXXXX` || exit 1
19: OUT=`mktemp /tmp/_security.XXXXXXXXXX` || {
1.42 pvalchev 20: rm -f ${TMP}
21: exit 1
22: }
1.16 millert 23:
1.33 marc 24: trap 'rm -f $TMP $OUT' 0 1 15
1.14 millert 25:
1.1 deraadt 26: echo ""
1.17 millert 27: echo "Removing scratch and junk files:"
1.32 aaron 28: if [ -d /tmp -a ! -L /tmp ]; then
1.17 millert 29: cd /tmp && {
1.50 millert 30: find -x . \
31: \( -path './ssh-*' -o -path ./.X11-unix -o -path ./.ICE-unix \) \
32: -prune -o -type f -atime +3 -execdir rm -f -- {} \;
1.49 millert 33: find -x . -type d -mtime +1 ! -path ./vi.recover ! -path ./.X11-unix \
1.50 millert 34: ! -path ./.ICE-unix ! -name . -execdir rmdir -- {} \; >/dev/null 2>&1; }
1.17 millert 35: fi
1.1 deraadt 36:
1.32 aaron 37: if [ -d /var/tmp -a ! -L /var/tmp ]; then
1.17 millert 38: cd /var/tmp && {
1.50 millert 39: find -x . \
40: \( -path './ssh-*' -o -path ./.X11-unix -o -path ./.ICE-unix \) \
41: -prune -o ! -type d -atime +7 -execdir rm -f -- {} \;
1.49 millert 42: find -x . -type d -mtime +1 ! -path ./vi.recover ! -path ./.X11-unix \
1.50 millert 43: ! -path ./.ICE-unix ! -name . -execdir rmdir -- {} \; >/dev/null 2>&1; }
1.17 millert 44: fi
1.1 deraadt 45:
1.3 deraadt 46: # Additional junk directory cleanup would go like this:
1.32 aaron 47: #if [ -d /scratch -a ! -L /scratch ]; then
1.3 deraadt 48: # cd /scratch && {
1.17 millert 49: # find . ! -name . -atime +1 -execdir rm -f -- {} \;
50: # find . ! -name . -type d -mtime +1 -execdir rmdir -- {} \; \
1.3 deraadt 51: # >/dev/null 2>&1; }
52: #fi
1.17 millert 53:
1.32 aaron 54: if [ -d /var/rwho -a ! -L /var/rwho ] ; then
1.17 millert 55: cd /var/rwho && {
56: find . ! -name . -mtime +7 -execdir rm -f -- {} \; ; }
57: fi
1.1 deraadt 58:
1.24 deraadt 59: #find / \( ! -fstype local -o -fstype rdonly -o -fstype fdesc \
60: # -o -fstype kernfs -o -fstype procfs \) -a -prune -o \
61: # -name 'lost+found' -a -prune -o \
62: # -name '*.core' -a -print -o \
63: # \( -name '[#,]*' -o -name '.#*' -o -name a.out \
64: # -o -name '*.CKP' -o -name '.emacs_[0-9]*' \) \
65: # -a -atime +3 -a -execdir rm -f -- {} \; -a -print > $TMP
1.1 deraadt 66:
1.14 millert 67: if egrep -q '\.core$' $TMP; then
1.17 millert 68: echo ""
69: echo "Possible core dumps:"
70: egrep '\.core$' $TMP
71: fi
72:
73: if egrep -qv '\.core$' $TMP; then
74: echo ""
75: echo "Deleted files:"
76: egrep -v '\.core$' $TMP
1.14 millert 77: fi
1.1 deraadt 78:
1.26 downsj 79: if [ -d /var/msgs -a ! -L /var/msgs ]; then
80: msgs -c
1.1 deraadt 81: fi
82:
83: if [ -f /var/account/acct ]; then
1.17 millert 84: echo ""
85: echo "Purging accounting records:"
1.44 mickey 86: mv -f /var/account/acct.2 /var/account/acct.3
87: mv -f /var/account/acct.1 /var/account/acct.2
88: mv -f /var/account/acct.0 /var/account/acct.1
89: cp -f /var/account/acct /var/account/acct.0
1.17 millert 90: sa -sq
91: fi
92:
93: # If ROOTBACKUP is set to 1 in the environment, and
94: # if filesystem named /altroot is type ffs, on /dev/* and mounted "xx",
95: # use it as a backup root filesystem to be updated daily.
96: [ "X$ROOTBACKUP" = X1 ] && {
1.48 millert 97: rootdev=`df -n / | awk '/^\/dev\// { print substr($1, 6) }'`
1.17 millert 98: rootbak=`awk '$2 == "/altroot" && $1 ~ /^\/dev\// && $3 == "ffs" && \
1.29 todd 99: $4 ~ /xx/ \
1.17 millert 100: { print substr($1, 6) }' < /etc/fstab`
1.48 millert 101: [ X$rootdev != X -a X$rootbak != X -a X$rootdev != X$rootbak ] && {
1.17 millert 102: sync
103: echo ""
104: echo "Backing up root filesystem:"
105: echo "copying /dev/r$rootdev to /dev/r$rootbak"
106: dd if=/dev/r$rootdev of=/dev/r$rootbak bs=16b seek=1 skip=1 \
1.22 mickey 107: conv=noerror
1.17 millert 108: fsck -y /dev/r$rootbak
109: }
110: }
1.1 deraadt 111:
112: # Rotation of mail log now handled automatically by cron and 'newsyslog'
113:
114: echo ""
115: echo "Checking subsystem status:"
116: echo ""
117: echo "disks:"
1.40 danh 118: df -kl
1.1 deraadt 119: echo ""
120: dump W
121: echo ""
122:
1.15 millert 123: mailq > $TMP
1.34 angelos 124: if ! grep -q "^/var/spool/mqueue is empty$" $TMP; then
1.15 millert 125: echo ""
126: echo "mail:"
127: cat $TMP
1.1 deraadt 128: fi
129:
130: echo ""
131: echo "network:"
1.35 niklas 132: netstat -ivn
1.1 deraadt 133: echo ""
1.14 millert 134:
1.15 millert 135: t=/var/rwho/*
136: if [ "$t" != '/var/rwho/*' ]; then
1.17 millert 137: echo ""
1.14 millert 138: ruptime
1.38 millert 139: fi
140:
141: echo ""
142: if [ -d /var/yp/binding -a ! -d /var/yp/`domainname` -o "X$CALENDAR" = X0 ]
143: then
144: if [ "X$CALENDAR" = X0 ]; then
145: echo "Not running calendar, (disabled)."
146: else
147: echo "Not running calendar, (yp client)."
148: fi
149: else
150: echo "Running calendar in the background."
151: calendar -a &
1.14 millert 152: fi
1.1 deraadt 153:
1.17 millert 154: # If CHECKFILESYSTEMS is set to 1 in the environment, run fsck
155: # with the no-write flag.
156: [ "X$CHECKFILESYSTEMS" = X1 ] && {
157: echo ""
158: echo "Checking filesystems:"
159: fsck -n | grep -v '^\*\* Phase'
160: }
1.1 deraadt 161:
162: if [ -f /etc/Distfile ]; then
1.17 millert 163: echo ""
1.1 deraadt 164: echo "Running rdist:"
1.17 millert 165: if [ -d /var/log/rdist ]; then
1.19 deraadt 166: logf=`date +%Y.%b.%e`
1.17 millert 167: rdist -f /etc/Distfile 2>&1 | tee /var/log/rdist/$logf
168: else
1.39 deraadt 169: rdist -f /etc/Distfile
1.17 millert 170: fi
1.1 deraadt 171: fi
172:
1.33 marc 173: sh /etc/security 2>&1 > $OUT
174: if [ -s $OUT ]; then
1.41 millert 175: mail -s "`hostname` daily insecurity output" root < $OUT
1.33 marc 176: fi
![[BACK]](/icons/back.gif){kind=icon}
Return to daily CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / src / etc