2015-01-28 11:28:46 +01:00
|
|
|
#! /usr/bin/env sh
|
|
|
|
|
|
|
|
#############################################################################
|
|
|
|
#
|
|
|
|
# Usage:
|
|
|
|
# * Run it as user: ./usr/local/bin/dynmotd
|
|
|
|
# * Run it at user login:
|
|
|
|
# <file bash /etc/profile>
|
|
|
|
# /usr/local/bin/dynmotd
|
|
|
|
# </file>
|
|
|
|
# * Or set a cron job with a privileged user (access log files, ...)
|
|
|
|
# <file bash /etc/cron.d/dynmotd>
|
|
|
|
# */30 * * * * root rm -f /etc/motd && /usr/local/bin/dynmotd > /etc/motd
|
|
|
|
# </file>
|
|
|
|
#############################################################################
|
|
|
|
|
|
|
|
#### Colors definition
|
|
|
|
BLACK='\033[30;40m'
|
|
|
|
RED='\033[0;31m'
|
|
|
|
REDB='\033[1;31m'
|
|
|
|
GREEN='\033[1;32m'
|
|
|
|
YELLOW='\033[1;33m'
|
|
|
|
BLUE='\033[34;40m'
|
|
|
|
MAGENTA='\033[0;35m'
|
|
|
|
CYAN='\033[36;40m'
|
|
|
|
WHITE='\033[0;37m'
|
|
|
|
WHITEB='\033[1;37m'
|
|
|
|
RESET='\033[0m'
|
|
|
|
|
|
|
|
## Return the state of processes passed in parameters
|
|
|
|
# process_info $PROCESS_LIST_TO_MONITOR $MESSAGE
|
|
|
|
process_info() {
|
|
|
|
local PROCESS_LIST="${1}"
|
|
|
|
local MSG="${2}"
|
|
|
|
|
|
|
|
for PROCESS in ${PROCESS_LIST}; do
|
|
|
|
MSG="${MSG}${MAGENTA}+ "
|
|
|
|
if (ps ax | grep -v grep | grep ${PROCESS} > /dev/null); then
|
|
|
|
MSG="${MSG}${WHITEB}${PROCESS}${RESET} [ ${GREEN}RUNNING${RESET} ] "
|
|
|
|
else
|
|
|
|
MSG="${MSG}${WHITEB}${PROCESS}${RESET} [ ${REDB}NOT RUNNING${RESET} ] "
|
|
|
|
fi
|
|
|
|
done
|
|
|
|
|
2015-01-28 17:25:37 +01:00
|
|
|
printf '%b' "${MSG}"
|
2015-01-28 11:28:46 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
## Return the listening socket
|
|
|
|
# service_info $PORT_LIST_TO_MONITOR $MESSAGE
|
|
|
|
service_info() {
|
|
|
|
local PORT_LIST="${1}"
|
|
|
|
local MSG="${2}"
|
|
|
|
|
|
|
|
for PORT in ${PORT_LIST}; do
|
|
|
|
MSG="${MSG}${MAGENTA}+ "
|
|
|
|
# If a port listen
|
2015-02-02 09:44:39 +01:00
|
|
|
if (ss -lutn|grep -m1 ":${PORT}" > /dev/null); then
|
2015-01-28 11:28:46 +01:00
|
|
|
# Example: "tcp/127.0.0.1:25"
|
2015-02-02 09:44:39 +01:00
|
|
|
MSG="${MSG}${GREEN}$(ss -lutn|grep -m1 ":${PORT}"|awk '{print $1"/"$5}')${RESET} "
|
2015-01-28 11:28:46 +01:00
|
|
|
else
|
|
|
|
# Example: "22: NOT LISTENING"
|
|
|
|
MSG="${MSG}${REDB}${PORT}: NOT LISTENING${RESET} "
|
|
|
|
fi
|
|
|
|
done
|
|
|
|
|
2015-01-28 17:25:37 +01:00
|
|
|
printf '%b' "${MSG}"
|
2015-01-28 11:28:46 +01:00
|
|
|
}
|
|
|
|
|
2015-01-28 17:25:37 +01:00
|
|
|
## Return the number of occurrence a pattern is present in a file
|
|
|
|
# and a color (red:>0, green:=0)
|
2015-01-28 17:47:55 +01:00
|
|
|
get_pattern_count() {
|
2015-01-28 17:25:37 +01:00
|
|
|
local GREP_PAT="${1}"
|
|
|
|
local FILE="${2}"
|
2015-01-28 17:47:55 +01:00
|
|
|
local EXP_VAL="${3}"
|
2015-01-28 17:25:37 +01:00
|
|
|
|
2015-01-28 17:47:55 +01:00
|
|
|
# Count the pattern in the file
|
|
|
|
NUM=$(grep -E "${GREP_PAT}" "${FILE}" | wc -l)
|
|
|
|
|
|
|
|
# If $EXP_VAL exist ++ the $NUM and $EXP_VAL are equal
|
|
|
|
if [ "${EXP_VAL}" ] && [ "${NUM}" = "${EXP_VAL}" ]; then
|
2015-01-28 17:25:37 +01:00
|
|
|
MSG="${GREEN}${NUM}"
|
|
|
|
else
|
|
|
|
MSG="${REDB}${NUM}"
|
|
|
|
fi
|
|
|
|
|
|
|
|
printf '%b' "${MSG}"
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2015-01-28 11:28:46 +01:00
|
|
|
#+++++++++++++++++++: System Data :+++++++++++++++++++
|
|
|
|
HOSTNAME=$(hostname)
|
|
|
|
NET_ADDR=$(hostname -I)
|
|
|
|
KERNEL_VER=$(uname -r)
|
|
|
|
UPTIME=$(uptime | sed 's/.*up ([^,]*), .*/1/')
|
|
|
|
CORE_NUMBER=$(grep "model name" /proc/cpuinfo | wc -l)
|
|
|
|
CPU_MODEL=$(grep -m1 "model name" /proc/cpuinfo | awk -F: '{print $2}')
|
|
|
|
MEM_FREE=$(grep MemFree /proc/meminfo | awk '{print $2}')
|
|
|
|
MEM_TOTAL=$(grep MemTotal /proc/meminfo | awk '{print $2}')
|
|
|
|
SWAP_FREE=$(grep SwapFree /proc/meminfo | awk '{print $2}')
|
|
|
|
SWAP_TOTAL=$(grep SwapTotal /proc/meminfo | awk '{print $2}')
|
|
|
|
|
|
|
|
#++++++++++++++++++++: User Data :++++++++++++++++++++++
|
|
|
|
USERNAME=$(whoami)
|
|
|
|
USER_SESSION=$(who | grep $USER | wc -l)
|
2015-01-28 16:29:24 +01:00
|
|
|
PROC_COUNT=$(ps -Afl | wc -l)
|
|
|
|
PROC_COUNT=$(expr $PROC_COUNT - 5)
|
|
|
|
# The "ulimit" from sh don't support the -u option
|
|
|
|
PROC_LIMIT=$(ulimit)
|
2015-01-28 11:28:46 +01:00
|
|
|
|
|
|
|
#++++++++++++: Authentication Information :+++++++++++++
|
2015-01-28 16:31:33 +01:00
|
|
|
# Get only one "auth.log" file path, the most recent
|
|
|
|
# Simpliest way to get it?
|
|
|
|
AUTH_LOG_FILE=$(find /var/log -iname 'auth.log' -type f -printf '%TY-%Tm-%Td_%TT %p\n' | sort -r | tail -n1 | cut -d' ' -f2)
|
|
|
|
SSH_USER_LOGIN=$(grep 'session opened' "${AUTH_LOG_FILE}" | awk '/sshd/' | awk "/${USERNAME}/" | wc -l)
|
2015-01-28 11:28:46 +01:00
|
|
|
|
|
|
|
|
|
|
|
MOTD_ORIG='/etc/motd.orig'
|
|
|
|
# If an original Motd exist, print it
|
|
|
|
if [ -f ${MOTD_ORIG} ]; then
|
2015-01-28 17:47:55 +01:00
|
|
|
printf '%b' "${RESET}${MAGENTA}+++++++++++++++++++++++: ${WHITE}MoTD${MAGENTA} :++++++++++++++++++++++++${RESET}"
|
2015-01-28 11:28:46 +01:00
|
|
|
while read -r line; do
|
|
|
|
printf '\n%s' "${line}"
|
|
|
|
done < ${MOTD_ORIG}
|
|
|
|
fi
|
|
|
|
|
|
|
|
|
2015-01-28 17:47:55 +01:00
|
|
|
printf '%b' "\n${RESET}${MAGENTA}+++++++++++++++++++: ${WHITE}System Data${MAGENTA} :+++++++++++++++++++++${RESET}
|
2015-01-28 16:29:24 +01:00
|
|
|
${MAGENTA}+ ${WHITE}Hostname\t${MAGENTA}= ${GREEN}${HOSTNAME}
|
|
|
|
${MAGENTA}+ ${WHITE}Addresses\t${MAGENTA}= ${GREEN}${NET_ADDR}
|
|
|
|
${MAGENTA}+ ${WHITE}Kernel\t${MAGENTA}= ${GREEN}${KERNEL_VER}
|
|
|
|
${MAGENTA}+ ${WHITE}Uptime\t${MAGENTA}=${GREEN}${UPTIME}
|
|
|
|
${MAGENTA}+ ${WHITE}CPU\t\t${MAGENTA}= ${GREEN}${CORE_NUMBER}x${CPU_MODEL}
|
|
|
|
${MAGENTA}+ ${WHITE}Memory\t${MAGENTA}= ${GREEN}${MEM_FREE}(free)/${MEM_TOTAL}(total) kB
|
|
|
|
${MAGENTA}+ ${WHITE}Swap\t\t${MAGENTA}= ${GREEN}${SWAP_FREE}(free)/${SWAP_TOTAL}(total) kB"
|
2015-01-28 11:28:46 +01:00
|
|
|
|
|
|
|
|
2015-01-28 17:47:55 +01:00
|
|
|
printf '%b' "\n${RESET}${MAGENTA}++++++++++++++++++++: ${WHITE}User Data${MAGENTA} :++++++++++++++++++++++${RESET}
|
2015-01-28 16:29:24 +01:00
|
|
|
${MAGENTA}+ ${WHITE}Username\t${MAGENTA}= ${GREEN}${USERNAME}
|
|
|
|
${MAGENTA}+ ${WHITE}Sessions\t${MAGENTA}= ${GREEN}${USER_SESSION}
|
|
|
|
${MAGENTA}+ ${WHITE}Processes\t${MAGENTA}= ${GREEN}$PROC_COUNT of ${PROC_LIMIT} MAX"
|
2015-01-28 11:28:46 +01:00
|
|
|
|
|
|
|
|
|
|
|
printf '%b' "\n${MAGENTA}++++++++++++: ${WHITE}Authentication Information${MAGENTA} :+++++++++++++${RESET}"
|
|
|
|
## Count the number of session for all standard's user (with a home/)
|
|
|
|
#for SSH_USER in `ls -1 /home/`; do
|
|
|
|
#echo -e "${MAGENTA}+ ${WHITE}SSH login ${MAGENTA}= ${GREEN}`grep 'session opened' "${AUTH_LOG_FILE}" | awk '/sshd/' | awk "/${SSH_USER}/" | wc -l` times this week ("${SSH_USER}")"
|
|
|
|
##echo -e "${MAGENTA}+ ${WHITE}SSH login ${MAGENTA}= ${GREEN}`grep 'session opened' "${AUTH_LOG_FILE}".1 | awk '/login/' | awk "/${SSH_USER}/" | wc -l` times this week ("${SSH_USER}")"
|
|
|
|
#done
|
2015-01-28 17:25:37 +01:00
|
|
|
|
2015-01-28 16:31:33 +01:00
|
|
|
# Count the number of failed ssh authentication
|
2015-01-28 17:47:55 +01:00
|
|
|
SSH_FAIL_LOGIN=$(get_pattern_count 'sshd.*Failed' "${AUTH_LOG_FILE}" '0')
|
2015-01-28 17:25:37 +01:00
|
|
|
printf '%b' "\n${MAGENTA}+ ${WHITE}SSH fail\t${MAGENTA}= ${SSH_FAIL_LOGIN} fail(s) this week"
|
2015-01-28 16:31:33 +01:00
|
|
|
# Count the number of failed sudo authentication
|
2015-01-28 17:47:55 +01:00
|
|
|
SUDO_FAIL=$(get_pattern_count 'sudo.*authentication failure' "${AUTH_LOG_FILE}" '0')
|
|
|
|
SUDO_3_FAIL=$(get_pattern_count 'sudo.*3 incorrect password' "${AUTH_LOG_FILE}" '0')
|
2015-01-28 16:31:33 +01:00
|
|
|
printf '%b' "\n${MAGENTA}+ ${WHITE}Sudo fail\t${MAGENTA}= ${GREEN}${SUDO_FAIL} fail(s) this week
|
|
|
|
${MAGENTA}+ ${WHITE}Sudo 3 fails\t${MAGENTA}= ${GREEN}${SUDO_3_FAIL} fail(s) this week"
|
|
|
|
|
2015-01-28 11:28:46 +01:00
|
|
|
|
|
|
|
printf '%b' "\n${MAGENTA}++++++++++++++++++++: ${WHITE}Disk Usage${MAGENTA} :+++++++++++++++++++++${RESET}"
|
|
|
|
# Root partition
|
|
|
|
# Replace by rootfs in few kernel version
|
|
|
|
DISK_USAGE=$(df | grep -m1 "/$" | awk '{print $5}')
|
2015-01-28 16:29:24 +01:00
|
|
|
printf '%b' "\n${MAGENTA}+ ${WHITEB}/${RESET}\t[ ${DISK_USAGE} ] "
|
2015-01-28 11:28:46 +01:00
|
|
|
|
|
|
|
# Other partition
|
|
|
|
for PART in /boot /home /opt /tmp /usr /var /var/lib/vz; do
|
|
|
|
# "/...$" : $ to grep only the mount point and not sub-directories (/var: OK; /mnt/temp: nOK)
|
|
|
|
if (df | grep "${PART}$" > /dev/null); then
|
|
|
|
DISK_USAGE=$(df | grep "${PART}$" | awk '{print $5}')
|
2015-01-28 16:29:24 +01:00
|
|
|
printf '%b' "\n${MAGENTA}+ ${WHITEB}${PART}${RESET}\t[ ${DISK_USAGE} ] "
|
2015-01-28 11:28:46 +01:00
|
|
|
fi
|
|
|
|
done
|
|
|
|
|
|
|
|
|
|
|
|
printf '%b' "\n${MAGENTA}+++++++++++++++++++: ${WHITE}Service Info${MAGENTA} :++++++++++++++++++++${RESET}"
|
|
|
|
|
|
|
|
## IF POSTFIX
|
2015-02-02 09:40:57 +01:00
|
|
|
if [ $(which postfix) ]; then
|
|
|
|
MSG=$(process_info "postfix" '')
|
|
|
|
MSG=$(service_info "25" "${MSG}")
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
2015-01-28 11:28:46 +01:00
|
|
|
## FI POSTFIX
|
|
|
|
|
2015-02-02 09:40:57 +01:00
|
|
|
### IF APACHE2
|
|
|
|
if [ $(which apache2) ]; then
|
|
|
|
MSG=$(process_info "apache2" '')
|
|
|
|
MSG=$(service_info "80 443" "${MSG}")
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
|
|
|
### FI APACHE2
|
|
|
|
|
|
|
|
### IF NGINX
|
|
|
|
if [ $(which nginx) ]; then
|
|
|
|
MSG=$(process_info "nginx" '')
|
|
|
|
MSG=$(service_info "80 443" "${MSG}")
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
|
|
|
### FI NGINX
|
|
|
|
|
|
|
|
### IF MYSQLD
|
|
|
|
if [ $(which mysqld) ]; then
|
|
|
|
MSG=$(process_info "mysqld" '')
|
|
|
|
MSG=$(service_info "3306" "${MSG}")
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
|
|
|
### IF MYSQLD
|
|
|
|
|
|
|
|
### IF SLAPD
|
|
|
|
if [ $(which slapd) ]; then
|
|
|
|
MSG=$(process_info "slapd" '')
|
|
|
|
MSG=$(service_info "389 636" "${MSG}")
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
|
|
|
### IF SLAPD
|
|
|
|
|
|
|
|
### IF ZFS
|
|
|
|
if [ $(which zfs) ]; then
|
|
|
|
MSG=$(process_info "zfs" '')
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
|
|
|
### FI ZFS
|
|
|
|
|
|
|
|
### IF PUPPETMASTER
|
|
|
|
if [ $(which puppetmaster) ]; then
|
|
|
|
MSG=$(process_info "puppetmaster" '')
|
|
|
|
MSG=$(service_info "8140" "${MSG}")
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
|
|
|
### IF SLAPD
|
|
|
|
|
|
|
|
### IF NFS Server
|
|
|
|
if [ $(which nfsd) ]; then
|
|
|
|
MSG=$(process_info "nfsd" '')
|
|
|
|
MSG=$(service_info "111 2049" "${MSG}")
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
|
|
|
### IF SLAPD
|
|
|
|
|
|
|
|
### IF TFTPD
|
|
|
|
if [ $(which in.tftpd) ]; then
|
|
|
|
MSG=$(process_info "in.tftpd" '')
|
|
|
|
#MSG=$(service_info "69" "${MSG}")
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
|
|
|
### FI TFTPD
|
|
|
|
|
|
|
|
### IF SQUID3
|
|
|
|
if [ $(which squid3) ]; then
|
|
|
|
MSG=$(process_info "squid3" '')
|
|
|
|
MSG=$(service_info "3128" "${MSG}")
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
|
|
|
### FI SQUID3
|
|
|
|
|
|
|
|
### IF APT-CACHER-NG
|
|
|
|
if [ $(which apt-cacher-ng) ]; then
|
|
|
|
MSG=$(process_info "apt-cacher-ng" '')
|
|
|
|
MSG=$(service_info "3142" "${MSG}")
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
|
|
|
### FI APT-CACHER-NG
|
|
|
|
|
|
|
|
### IF SSHD
|
|
|
|
if [ $(which sshd) ]; then
|
|
|
|
MSG=$(process_info "sshd" '')
|
|
|
|
MSG=$(service_info "22" "${MSG}")
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
|
|
|
### FI SSH
|
|
|
|
|
|
|
|
### IF DHCPD
|
|
|
|
if [ $(which dhcpd) ]; then
|
|
|
|
MSG=$(process_info "dhcpd" '')
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
|
|
|
### IF DHCPD
|
|
|
|
|
|
|
|
### IF FAIL2BAN
|
|
|
|
if [ $(which fail2ban-server) ]; then
|
|
|
|
MSG=$(process_info "fail2ban" '')
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
|
|
|
### IF FAIL2BAN
|
|
|
|
|
|
|
|
### IF ETHERPAD
|
|
|
|
if [ $(which etherpad) ]; then
|
|
|
|
MSG=$(process_info "etherpad" '')
|
|
|
|
MSG=$(service_info "9001" "${MSG}")
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
|
|
|
### IF ETHERPAD
|
|
|
|
|
|
|
|
### IF ETHERCALC
|
|
|
|
if [ $(which ethercalc) ]; then
|
|
|
|
MSG=$(process_info "ethercalc" '')
|
|
|
|
MSG=$(service_info "8000" "${MSG}")
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
|
|
|
### IF ETHERCALC
|
|
|
|
|
|
|
|
### IF GITLAB
|
|
|
|
if [ $(which gitlab-ctl) ]; then
|
|
|
|
MSG=$(process_info "nginx" '')
|
|
|
|
MSG=$(service_info "80 443" "${MSG}")
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
MSG=$(process_info "gitlab" '')
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
|
|
|
### IF GITLAB
|
|
|
|
|
|
|
|
### IF XYMONSERVER
|
|
|
|
if [ $(which xymond) ]; then
|
|
|
|
MSG=$(process_info "xymond" '')
|
|
|
|
MSG=$(service_info "1984" "${MSG}")
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
|
|
|
### IF XYMONSERVER
|
|
|
|
|
|
|
|
### IF XYMONCLIENT
|
|
|
|
if [ $(which xymon) ]; then
|
|
|
|
MSG=$(process_info "xymonlaunch" '')
|
|
|
|
printf '%b' "\n${MSG}"
|
|
|
|
fi
|
|
|
|
### IF XYMONCLIENT
|
|
|
|
|
|
|
|
|
2015-01-28 11:28:46 +01:00
|
|
|
## Service need a warning if running
|
|
|
|
YELLOW_SERVICE='tmux screen glances htop automysqlbackup vzdump puppet aptitude'
|
|
|
|
for SERVICE in ${YELLOW_SERVICE}; do
|
|
|
|
if (ps ax | grep -v grep | grep ${SERVICE} > /dev/null); then
|
|
|
|
printf '%b' "\n${MAGENTA}+ ${WHITEB}${SERVICE}${RESET} [ ${YELLOW}RUNNING${RESET} ]"
|
|
|
|
fi
|
|
|
|
done
|
|
|
|
|
|
|
|
|
|
|
|
#echo -e "${MAGENTA}+++++++++++++: ${RED}Maintenance Information${MAGENTA} :+++++++++++++++${RESET}
|
|
|
|
#${MAGENTA}+${RED}""
|
|
|
|
#echo -e "${MAGENTA}+++++++++++++++++++++++++++++++++++++++++++++++++++++++${RESET}"
|