mirror of
https://github.com/ovh/debian-cis.git
synced 2024-12-23 14:35:26 +01:00
Fixed 8.2.4 check file exists before testing rights
This commit is contained in:
parent
c5b4aa220d
commit
799b3b5145
@ -19,18 +19,23 @@ GROUP='adm'
|
||||
audit () {
|
||||
FILES=$(grep "file(" $SYSLOG_BASEDIR/syslog-ng.conf | grep '"' | cut -d'"' -f 2)
|
||||
for FILE in $FILES; do
|
||||
has_file_correct_ownership $FILE $USER $GROUP
|
||||
if [ $FNRET = 0 ]; then
|
||||
ok "$FILE has correct ownership"
|
||||
does_file_exist $FILE
|
||||
if [ $FNRET != 0 ]; then
|
||||
crit "$FILE does not exist"
|
||||
else
|
||||
crit "$FILE is not $USER:$GROUP ownership set"
|
||||
has_file_correct_ownership $FILE $USER $GROUP
|
||||
if [ $FNRET = 0 ]; then
|
||||
ok "$FILE has correct ownership"
|
||||
else
|
||||
crit "$FILE is not $USER:$GROUP ownership set"
|
||||
fi
|
||||
has_file_correct_permissions $FILE $PERMISSIONS
|
||||
if [ $FNRET = 0 ]; then
|
||||
ok "$FILE has correct permissions"
|
||||
else
|
||||
crit "$FILE has not $PERMISSIONS permissions set"
|
||||
fi
|
||||
fi
|
||||
has_file_correct_permissions $FILE $PERMISSIONS
|
||||
if [ $FNRET = 0 ]; then
|
||||
ok "$FILE has correct permissions"
|
||||
else
|
||||
crit "$FILE has not $PERMISSIONS permissions set"
|
||||
fi
|
||||
done
|
||||
}
|
||||
|
||||
|
@ -4,7 +4,7 @@
|
||||
# CIS Debian 7 Hardening
|
||||
#
|
||||
|
||||
# If you followed this CIS hardenning, this script follows 8.3.1_install_tripwire.sh
|
||||
# If you followed this CIS hardening, this script follows 8.3.1_install_tripwire.sh
|
||||
# After installing tripwire, you may want to run those few commented commands to make it fully functionnal
|
||||
|
||||
echo "Generating Site key file..."
|
||||
|
4
debian/default
vendored
4
debian/default
vendored
@ -1,5 +1,5 @@
|
||||
# Default file for CIS Debian hardenning scripts
|
||||
# Default file for CIS Debian hardening scripts
|
||||
|
||||
# Define here root directory for CIS debian hardenning scripts
|
||||
# Define here root directory for CIS debian hardening scripts
|
||||
CIS_ROOT_DIR='/opt/cis-hardening'
|
||||
|
||||
|
Loading…
Reference in New Issue
Block a user