[ossec-dev] ossec-hids: InstallAgent.sh (HEAD) InstallServer.sh (HEAD) Makeall (HEAD) [dcid]

[OSSEC CVS <cvs-commit@xxxxxxxxx>]

Module name:	ossec-hids
Changes by:	dcid	06/08/28 15:45:23

Modified files:
	InstallAgent.sh InstallServer.sh Makeall

Log message:
Description: Long commit.
-Increased size requirement for agent names.
-Added monitor daemon.
-Re organized client/server comminication.
-Removed false positives from rootkits.
Reviewed by: dcid (more tests needed)
Bug:

Index: InstallAgent.sh
===================================================================
RCS file: /usr/cvsroot/ossec-hids/src/InstallAgent.sh,v
diff -u -r1.29 -r1.30
--- InstallAgent.sh	17 Aug 2006 00:41:19 -0000	1.29
+++ InstallAgent.sh	28 Aug 2006 18:45:23 -0000	1.30
@@ -109,11 +109,14 @@
     mkdir -p ${DIR}/usr/share/lib/zoneinfo/
     chmod -R 555 ${DIR}/usr/
     cp -pr /usr/share/lib/zoneinfo/* ${DIR}/usr/share/lib/zoneinfo/
+    chown -R root:${GROUP} ${DIR}/usr/
 fi    
 
 ls /etc/TIMEZONE > /dev/null 2>&1
 if [ $? = 0 ]; then
     cp -p /etc/TIMEZONE ${DIR}/etc/;
+    chown root:${GROUP} ${DIR}/etc/TIMEZONE
+    chmod 555 ${DIR}/etc/TIMEZONE
 fi
             
         
@@ -121,9 +124,11 @@
 # For the /etc/shared
 cp -pr rootcheck/db/*.txt ${DIR}/etc/shared/
 cp -pr ../etc/internal_options.conf ${DIR}/etc/
-chown root:ossec ${DIR}/etc/internal_options.conf
+chown root:${GROUP} ${DIR}/etc/internal_options.conf
+chown -R root:${GROUP} ${DIR}/etc/shared
+
 chmod 550 ${DIR}/etc
-chmod -R 440 ${DIR}/etc/*
+chmod 440 ${DIR}/etc/internal_options.conf
 chmod -R 770 ${DIR}/etc/shared # ossec must be able to write to it
 
 
@@ -163,6 +168,8 @@
 else    
     cp -pr ../etc/ossec-agent.conf ${DIR}/etc/ossec.conf
 fi
+chown root:${GROUP} ${DIR}/etc/ossec.conf
+chmod 440 ${DIR}/etc/ossec.conf
 
 
 

Index: InstallServer.sh
===================================================================
RCS file: /usr/cvsroot/ossec-hids/src/InstallServer.sh,v
diff -u -r1.39 -r1.40
--- InstallServer.sh	18 Aug 2006 16:43:07 -0000	1.39
+++ InstallServer.sh	28 Aug 2006 18:45:23 -0000	1.40
@@ -150,7 +150,9 @@
 chown -R root:${GROUP} ${DIR}/etc
 ls /etc/localtime > /dev/null 2>&1
 if [ $? = 0 ]; then
-    cp -pL /etc/localtime ${DIR}/etc/; 
+    cp -pL /etc/localtime ${DIR}/etc/;
+    chmod 555 ${DIR}/etc/localtime
+    chown root:${GROUP} ${DIR}/etc/localtime 
 fi
 
 # Solaris Needs some extra files
@@ -163,6 +165,7 @@
 ls /etc/TIMEZONE > /dev/null 2>&1
 if [ $? = 0 ]; then
     cp -p /etc/TIMEZONE ${DIR}/etc/;
+    chmod 555 ${DIR}/etc/TIMEZONE
 fi
                         
 
@@ -175,6 +178,7 @@
 cp -pr ../bin/manage_agents ${DIR}/bin/
 cp -pr ../bin/syscheck_update ${DIR}/bin/
 cp -pr ../bin/clear_stats ${DIR}/bin/
+cp -pr ../bin/list_agents ${DIR}/bin/
 
 # Local install chosen
 if [ "X$LOCAL" = "Xlocal" ]; then
@@ -187,12 +191,14 @@
 cp -pr ../etc/decoder.xml ${DIR}/etc/
 cp -pr ../etc/internal_options.conf ${DIR}/etc/
 cp -pr rootcheck/db/*.txt ${DIR}/etc/shared/
-chown root:ossec ${DIR}/etc/decoder.xml
-chown root:ossec ${DIR}/etc/internal_options.conf
-chown root:ossec ${DIR}/etc/shared/rootkit*
+chown root:${GROUP} ${DIR}/etc/decoder.xml
+chown root:${GROUP} ${DIR}/etc/internal_options.conf
+chown root:${GROUP} ${DIR}/etc/shared/*
+chmod 440 ${DIR}/etc/decoder.xml
+chmod 440 ${DIR}/etc/internal_options.conf
 chmod 550 ${DIR}/etc
-chmod -R 440 ${DIR}/etc/*
 chmod 550 ${DIR}/etc/shared
+chmod 440 ${DIR}/etc/shared/*
 
 
 # Copying active response modules
@@ -217,6 +223,9 @@
 else    
     cp -pr ../etc/ossec-server.conf ${DIR}/etc/ossec.conf
 fi
+chown root:${GROUP} ${DIR}/etc/ossec.conf
+chmod 440 ${DIR}/etc/ossec.conf
+
 
 
 exit 0;

Index: Makeall
===================================================================
RCS file: /usr/cvsroot/ossec-hids/src/Makeall,v
diff -u -r1.20 -r1.21
--- Makeall	23 Jul 2006 19:32:07 -0000	1.20
+++ Makeall	28 Aug 2006 18:45:23 -0000	1.21
@@ -29,7 +29,7 @@
 # Shares sources
 SOURCES="shared config"
 # Binaries
-BINARIES="os_maild os_execd analysisd logcollector remoted client-agent addagent util rootcheck syscheckd"
+BINARIES="os_maild os_execd analysisd logcollector remoted client-agent addagent util rootcheck syscheckd monitord"
 DIRECTORIES=""      # Directories to make