#!/bin/sh # Installation script for the OSSEC # Author: Daniel B. Cid # Last modification: Mar 02, 2006 # Changelog 19/03/2006 - Rafael M. Capovilla # New function AddWhite to allow users to add more Ips in the white_list # Minor *echos* modifications to better look # Bug fix - When email address is blank # Bug fix - delete INSTALLDIR - Default is yes but if the user just press enter the script wasn't deleting it as it should # Changelog 15/07/2006 - Rafael M. Capovilla # New function AddTable to add support for OpenBSD pf rules in firewall-drop active response ### Looking up for the execution directory LOCAL=`dirname $0`; cd $LOCAL ### Looking for for echo -n ECHO="echo -n" hs=`echo -n "a"` if [ ! "X$hs" = "Xa" ]; then ls "/usr/ucb/echo" > /dev/null 2>&1 if [ $? = 0 ]; then ECHO="/usr/ucb/echo -n" else ECHO=echo fi fi # For solaris echo "xxxx" | grep -E "xxx" > /dev/null 2>&1 if [ ! $? = 0 ]; then ls "/usr/xpg4/bin/grep" > /dev/null 2>&1 if [ $? = 0 ]; then PATH=/usr/xpg4/bin:$PATH fi fi # Initializing vars SET_DEBUG="" # Checking for command line arguments for i in $*; do if [ "X$i" = "Xdebug" ]; then SET_DEBUG="debug" elif [ "X$i" = "Xbinary-install" ]; then USER_BINARYINSTALL="yes" elif [ "X$i" = "Xhelp" ]; then echo "$0 debug" echo "$0 binary-install" exit 1; fi done ########## # install() ########## Install() { echo "" echo "5- ${installing}" echo "DIR=\"${INSTALLDIR}\"" > ${LOCATION} echo "CC=${CC}" >> ${LOCATION} # Changing Config.OS with the new C flags # Checking if debug is enabled if [ "X${SET_DEBUG}" = "Xdebug" ]; then CEXTRA="${CEXTRA} -DDEBUGAD" fi echo "CEXTRA=${CEXTRA}" > ./src/Config.OS # Makefile echo " - ${runningmake}" cd ./src # Binary install will use the previous generated code. if [ "X${USER_BINARYINSTALL}" = "X" ]; then make all if [ $? != 0 ]; then cd ../ catError "0x5-build" fi # Building everything make build fi # If update, stop ossec if [ "X${update_only}" = "Xyes" ]; then UpdateStopOSSEC fi # Making the right installation type if [ "X$INSTYPE" = "Xserver" ]; then make server elif [ "X$INSTYPE" = "Xagent" ]; then make agent elif [ "X$INSTYPE" = "Xlocal" ]; then make local fi cd ../ # Generate the /etc/ossec-init.conf VERSION_FILE="./src/VERSION" VERSION=`cat ${VERSION_FILE}` chmod 700 ${OSSEC_INIT} > /dev/null 2>&1 echo "DIRECTORY=\"${INSTALLDIR}\"" > ${OSSEC_INIT} echo "VERSION=\"${VERSION}\"" >> ${OSSEC_INIT} echo "DATE=\"`date`\"" >> ${OSSEC_INIT} echo "TYPE=\"${INSTYPE}\"" >> ${OSSEC_INIT} chmod 600 ${OSSEC_INIT} # If update_rules is set, we need to tweak # ossec.conf to read the new signatures. if [ "X${update_rules}" = "Xyes" ]; then UpdateOSSECRules fi # If update, start OSSEC if [ "X${update_only}" = "Xyes" ]; then UpdateStartOSSEC fi # Calling the init script to start ossec hids during boot if [ "X${update_only}" = "X" ]; then runInit if [ $? = 1 ]; then notmodified="yes" fi fi } ########## # UseSyscheck() ########## UseSyscheck() { # Integrity check config echo "" $ECHO " 3.2- ${runsyscheck} ($yes/$no) [$yes]: " if [ "X${USER_ENABLE_SYSCHECK}" = "X" ]; then read AS else AS=${USER_ENABLE_SYSCHECK} fi echo "" case $AS in $nomatch) echo " - ${nosyscheck}." ;; *) SYSCHECK="yes" echo " - ${yessyscheck}." ;; esac # Adding to the config file if [ "X$SYSCHECK" = "Xyes" ]; then cat ${SYSCHECK_TEMPLATE} >> $NEWCONFIG fi } ########## # UseRootcheck() ########## UseRootcheck() { # Rootkit detection configuration echo "" $ECHO " 3.3- ${runrootcheck} ($yes/$no) [$yes]: " if [ "X${USER_ENABLE_ROOTCHECK}" = "X" ]; then read ES else ES=${USER_ENABLE_ROOTCHECK} fi echo "" case $ES in $nomatch) echo " - ${norootcheck}." ;; *) ROOTCHECK="yes" echo " - ${yesrootcheck}." ;; esac # Adding to the config file if [ "X$ROOTCHECK" = "Xyes" ]; then echo "" >> $NEWCONFIG echo " " >> $NEWCONFIG echo " $INSTALLDIR/etc/shared/rootkit_files.txt" >> $NEWCONFIG echo " $INSTALLDIR/etc/shared/rootkit_trojans.txt" >> $NEWCONFIG echo " " >> $NEWCONFIG fi } ########## # SetupLogs() ########## SetupLogs() { NB=$1 echo "" echo " $NB- ${readlogs}" echo " " >> $NEWCONFIG LOG_FILES=`cat ${SYSLOG_TEMPLATE}` for i in ${LOG_FILES}; do # If log file present, add it ls $i > /dev/null 2>&1 if [ $? = 0 ]; then echo " -- $i" echo "" >> $NEWCONFIG echo " " >> $NEWCONFIG echo " syslog" >> $NEWCONFIG echo " $i" >>$NEWCONFIG echo " " >> $NEWCONFIG fi done # Getting snort files SNORT_FILES=`cat ${SNORT_TEMPLATE}` for i in ${SNORT_FILES}; do ls $i > /dev/null 2>&1 if [ $? = 0 ]; then echo "" >> $NEWCONFIG echo " " >> $NEWCONFIG head -n 1 $i|grep "\[**\] "|grep -v "Classification:" > /dev/null if [ $? = 0 ]; then echo " snort-full" >> $NEWCONFIG echo " -- $i (snort-full file)" else echo " snort-fast" >> $NEWCONFIG echo " -- $i (snort-fast file)" fi echo " $i" >>$NEWCONFIG echo " " >> $NEWCONFIG fi done # Getting apache logs APACHE_FILES=`cat ${APACHE_TEMPLATE}` for i in ${APACHE_FILES}; do ls $i > /dev/null 2>&1 if [ $? = 0 ]; then echo "" >> $NEWCONFIG echo " " >> $NEWCONFIG echo " apache" >> $NEWCONFIG echo " $i" >>$NEWCONFIG echo " " >> $NEWCONFIG echo " -- $i (apache log)" fi done echo "" catMsg "0x106-logs" if [ "X$USER_NO_STOP" = "X" ]; then read ANY fi } ########## # ConfigureClient() ########## ConfigureClient() { echo "" echo "3- ${configuring} $NAME." echo "" if [ "X${USER_AGENT_SERVER_IP}" = "X" ]; then # Looping and asking for server ip while [ 1 ]; do $ECHO " 3.1- ${serverip}: " read IPANSWER echo $IPANSWER | grep -E "^[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}$" > /dev/null 2>&1 if [ $? = 0 ]; then echo "" IP=$IPANSWER echo " - ${addingip} $IP" break; fi done else IP=${USER_AGENT_SERVER_IP} fi echo "" > $NEWCONFIG echo " " >> $NEWCONFIG echo " $IP" >> $NEWCONFIG echo " " >> $NEWCONFIG echo "" >> $NEWCONFIG # Syscheck? UseSyscheck # Rootcheck? UseRootcheck echo "" $ECHO " 3.4 - ${enable_ar} ($yes/$no) [$yes]: " if [ "X${USER_ENABLE_ACTIVE_RESPONSE}" = "X" ]; then read ANY else ANY=${USER_ENABLE_ACTIVE_RESPONSE} fi case $ANY in $nomatch) echo "" echo " - ${noactive}." echo "" >> $NEWCONFIG echo " " >> $NEWCONFIG echo " yes" >> $NEWCONFIG echo " " >> $NEWCONFIG echo "" >> $NEWCONFIG ;; *) ACTIVERESPONSE="yes" echo "" ;; esac # Set up the log files SetupLogs "3.5" echo "" >> $NEWCONFIG } ########## # ConfigureServer() ########## ConfigureServer() { echo "" echo "3- ${configuring} $NAME." # Configuring e-mail notification echo "" $ECHO " 3.1- ${mailnotify} ($yes/$no) [$yes]: " if [ "X${USER_ENABLE_EMAIL}" = "X" ]; then read ANSWER else ANSWER=${USER_ENABLE_EMAIL} fi case $ANSWER in $nomatch) echo "" echo " --- ${nomail}." EMAILNOTIFY="no" ;; *) EMAILNOTIFY="yes" $ECHO " - ${whatsemail} " if [ "X${USER_EMAIL_ADDRESS}" = "X" ]; then read EMAIL echo "${EMAIL}" | grep -E "^[a-zA-Z0-9_.-]{1,36}@[a-zA-Z0-9_.-]{1,54}$" > /dev/null 2>&1 ;RVAL=$?; # Ugly e-mail validation while [ "$EMAIL" = "" -o ! ${RVAL} = 0 ] ; do $ECHO " - ${whatsemail} " read EMAIL echo "${EMAIL}" | grep -E "^[a-zA-Z0-9_.-]{1,36}@[a-zA-Z0-9_.-]{1,54}$" > /dev/null 2>&1 ;RVAL=$?; done else EMAIL=${USER_EMAIL_ADDRESS} fi ls ${HOST_CMD} > /dev/null 2>&1 if [ $? = 0 ]; then HOSTTMP=`${HOST_CMD} -W 5 -t mx devmail.ossec.net 2>/dev/null` if [ $? = 1 ]; then # Trying without the -W HOSTTMP=`${HOST_CMD} -t mx devmail.ossec.net 2>/dev/null` fi if [ "X$HOSTTMP" = "X${OSSECMX}" -o "X$HOSTTMP" = "X${OSSECMX2}" -o "X$HOSTTMP" = "X${OSSECMX3}" ];then # Breaking down the user e-mail EMAILHOST=`echo ${EMAIL} | cut -d "@" -f 2` if [ "X${EMAILHOST}" = "Xlocalhost" ]; then SMTPHOST="127.0.0.1" else HOSTTMP=`${HOST_CMD} -W 5 -t mx ${EMAILHOST}` SMTPHOST=`echo ${HOSTTMP} | cut -d " " -f 7` fi fi fi if [ "X${USER_EMAIL_SMTP}" = "X" ]; then if [ "X${SMTPHOST}" != "X" ]; then echo "" echo " - ${yoursmtp}: ${SMTPHOST}" $ECHO " - ${usesmtp} ($yes/$no) [$yes]: " read EMAIL2 case ${EMAIL2} in $nomatch) echo "" SMTP="" ;; *) SMTP=${SMTPHOST} echo "" echo " --- ${usingsmtp} ${SMTP}" ;; esac fi if [ "X${SMTP}" = "X" ]; then $ECHO " - ${whatsmtp} " read SMTP fi else SMTP=${USER_EMAIL_SMTP} fi ;; esac # Writting global parameters echo "" > $NEWCONFIG echo " " >> $NEWCONFIG if [ "$EMAILNOTIFY" = "yes" ]; then echo " yes" >> $NEWCONFIG echo " $EMAIL" >> $NEWCONFIG echo " $SMTP" >> $NEWCONFIG echo " ossecm@${HOST}" >> $NEWCONFIG else echo " no" >> $NEWCONFIG fi echo " " >> $NEWCONFIG echo "" >> $NEWCONFIG # Writting rules configuration cat ${RULES_TEMPLATE} >> $NEWCONFIG echo "" >> $NEWCONFIG # Checking if syscheck should run UseSyscheck # Checking if rootcheck should run UseRootcheck # Active response catMsg "0x107-ar" $ECHO " - ${enable_ar} ($yes/$no) [$yes]: " if [ "X${USER_ENABLE_ACTIVE_RESPONSE}" = "X" ]; then read AR else AR=${USER_ENABLE_ACTIVE_RESPONSE} fi case $AR in $nomatch) echo "" echo " - ${noactive}." echo "" >> $NEWCONFIG echo " " >> $NEWCONFIG echo " yes" >> $NEWCONFIG echo " " >> $NEWCONFIG echo "" >> $NEWCONFIG ;; *) ACTIVERESPONSE="yes" echo "" catMsg "0x108-ar-enabled" echo "" $ECHO " - ${firewallar} ($yes/$no) [$yes]: " if [ "X${USER_ENABLE_FIREWALL_RESPONSE}" = "X" ]; then read HD2 else HD2=${USER_ENABLE_FIREWALL_RESPONSE} fi echo "" case $HD2 in $nomatch) echo " - ${nofirewall}" ;; *) echo " - ${yesfirewall}" FIREWALLDROP="yes" ;; esac echo "" >> $NEWCONFIG echo " " >> $NEWCONFIG echo " 127.0.0.1" >> $NEWCONFIG echo " ^localhost.localdomain$">>$NEWCONFIG echo "" echo " - ${defaultwhitelist}" for ip in ${NAMESERVERS} ${NAMESERVERS2}; do if [ ! "X${ip}" = "X" ]; then echo " - ${ip}" echo " ${ip}" >>$NEWCONFIG fi done AddWhite # If Openbsd or Freebsd with pf enable, ask about # automatically setting it up. # Commenting it out in case I change my mind about it # later. #if [ "X`sh ./src/init/fw-check.sh`" = "XPF" ]; then # echo "" # $ECHO " - ${pfenable} ($yes/$no) [$yes]: " # if [ "X${USER_ENABLE_PF}" = "X" ]; then # read PFENABLE # else # PFENABLE=${USER_ENABLE_PF} # fi # # echo "" # case $PFENABLE in # $nomatch) # echo " - ${nopf}" # ;; # *) # AddPFTable # ;; # esac #fi echo " " >> $NEWCONFIG ;; esac if [ "X$INSTYPE" = "Xserver" ]; then # Configuring remote syslog echo "" $ECHO " 3.5- ${syslog} ($yes/$no) [$yes]: " if [ "X${USER_ENABLE_SYSLOG}" = "X" ]; then read ANSWER else ANSWER=${USER_ENABLE_SYSLOG} fi echo "" case $ANSWER in $nomatch) echo " --- ${nosyslog}." ;; *) echo " - ${yessyslog}." RLOG="yes" ;; esac # Configuring remote connections SLOG="yes" fi if [ "X$RLOG" = "Xyes" ]; then echo "" >> $NEWCONFIG echo " " >> $NEWCONFIG echo " syslog" >> $NEWCONFIG echo " " >> $NEWCONFIG fi if [ "X$SLOG" = "Xyes" ]; then echo "" >> $NEWCONFIG echo " " >> $NEWCONFIG echo " secure" >> $NEWCONFIG echo " " >> $NEWCONFIG fi # Email/log alerts echo "" >> $NEWCONFIG echo " " >> $NEWCONFIG echo " 1" >> $NEWCONFIG if [ "$EMAILNOTIFY" = "yes" ]; then echo " 7">> $NEWCONFIG fi echo " " >> $NEWCONFIG if [ "X$ACTIVERESPONSE" = "Xyes" ]; then # Add commands in here echo "" >> $NEWCONFIG cat ${HOST_DENY_TEMPLATE} >> $NEWCONFIG echo "" >> $NEWCONFIG cat ${FIREWALL_DROP_TEMPLATE} >> $NEWCONFIG echo "" >> $NEWCONFIG cat ${DISABLE_ACCOUNT_TEMPLATE} >> $NEWCONFIG echo "" >> $NEWCONFIG cat ${ROUTENULL_TEMPLATE} >> $NEWCONFIG echo "" >> $NEWCONFIG if [ "X$FIREWALLDROP" = "Xyes" ]; then echo "" >> $NEWCONFIG cat ${ACTIVE_RESPONSE_TEMPLATE} >> $NEWCONFIG echo "" >> $NEWCONFIG fi fi # Setting up the logs SetupLogs "3.6" echo "" >> $NEWCONFIG } ########## # setEnv() ########## setEnv() { echo "" echo "2- ${settingupenv}." echo "" if [ "X${USER_DIR}" = "X" ]; then while [ 1 ]; do $ECHO " - ${wheretoinstall} [$INSTALLDIR]: " read ANSWER if [ ! "X$ANSWER" = "X" ]; then echo $ANSWER |grep -E "^/[a-zA-Z0-9/-]{3,128}$">/dev/null 2>&1 if [ $? = 0 ]; then INSTALLDIR=$ANSWER; WORKDIR=$ANSWER; break; fi else break; fi done else INSTALLDIR=${USER_DIR} WORKDIR=${USER_DIR} fi CEXTRA="$CEXTRA -DDEFAULTDIR=\\\"${WORKDIR}\\\"" echo "" echo " - ${installat} ${INSTALLDIR} ." if [ "X$INSTYPE" = "Xagent" ]; then CEXTRA="$CEXTRA -DCLIENT" elif [ "X$INSTYPE" = "Xlocal" ]; then CEXTRA="$CEXTRA -DLOCAL" fi ls $INSTALLDIR >/dev/null 2>&1 if [ $? = 0 ]; then if [ "X${USER_DELETE_DIR}" = "X" ]; then echo "" $ECHO " - ${deletedir} ($yes/$no) [$yes]: " read ANSWER else ANSWER=${USER_DELETE_DIR} fi case $ANSWER in $yesmatch) rm -rf $INSTALLDIR ;; esac fi } ########## # checkDependencies() # Thanks to gabriel@macacos.org ########## checkDependencies() { echo "" OLDOPATH=$PATH if [ "X$NUNAME" = "XSunOS" ]; then PATH=$PATH:/usr/ccs/bin:/usr/xpg4/bin:/opt/csw/gcc3/bin:/opt/csw/bin:/usr/sfw/bin export PATH elif [ "X$NUNAME" = "XAIX" ]; then PATH=$PATH:/usr/vac/bin export PATH fi ls "`which gcc`" > /dev/null 2>&1 if [ ! $? = 0 ]; then ls "`which cc`" > /dev/null 2>&1 if [ "X${USER_BINARYINSTALL}" = "X" ]; then if [ ! $? = 0 ]; then catError "0x3-dependencies" fi fi CC="cc" else CC="gcc" fi PATH=$OLDOPATH export PATH } ########## # AddWhite() ########## AddWhite() { while [ 1 ] do echo "" $ECHO " - ${addwhite} ($yes/$no)? [$no]: " # If white list is set, we don't need to ask it here. if [ "X${USER_WHITE_LIST}" = "X" ]; then read ANSWER else ANSWER=$yes fi if [ "X${ANSWER}" = "X" ] ; then ANSWER=$no fi case $ANSWER in $no) break; ;; *) $ECHO " - ${ipswhite}" if [ "X${USER_WHITE_LIST}" = "X" ]; then read IPS else IPS=${USER_WHITE_LIST} fi for ip in ${IPS}; do if [ ! "X${ip}" = "X" ]; then echo $ip | grep -E "^[0-9./]{5,20}$" > /dev/null 2>&1 if [ $? = 0 ]; then echo " ${ip}" >>$NEWCONFIG fi fi done break; ;; esac done } ########## # AddPFTable() ########## AddPFTable() { #default pf rules TABLE="ossec_fwtable" # Add table to the first line echo "" echo " - ${pfmessage}:" echo " ${moreinfo}" echo " http://www.ossec.net/en/manual.html#active-response-tools" echo "" echo "" echo " table <${TABLE}> persist #$TABLE " echo " block in quick from <${TABLE}> to any" echo " block out quick from any to <${TABLE}>" echo "" echo "" } ########## # main() ########## main() { LG="en" LANGUAGE="en" . ./src/init/shared.sh . ./src/init/functions.sh # Reading pre-defined file if [ ! `isFile ${PREDEF_FILE}` = "${FALSE}" ]; then . ${PREDEF_FILE} fi # If user language is not set if [ "X${USER_LANGUAGE}" = "X" ]; then # Choosing the language. while [ 1 ]; do echo "" for i in `ls ${TEMPLATE}`; do # ignore CVS (should not be there anyways and config) if [ "$i" = "CVS" -o "$i" = "config" ]; then continue; fi cat "${TEMPLATE}/$i/language.txt" if [ ! "$i" = "en" ]; then LG="${LG}/$i" fi done $ECHO " (${LG}) [en]: " read USER_LG; if [ "X${USER_LG}" = "X" ]; then USER_LG="en" fi ls "${TEMPLATE}/${USER_LG}" > /dev/null 2>&1 if [ $? = 0 ]; then break; fi done; LANGUAGE=${USER_LG} else # If provided language is not valid, default to english ls "${TEMPLATE}/${USER_LANGUAGE}" > /dev/null 2>&1 if [ $? = 0 ]; then LANGUAGE=${USER_LANGUAGE} else LANGUAGE="en" fi fi # for USER_LANGUAGE . ./src/init/shared.sh . ./src/init/language.sh . ./src/init/functions.sh . ./src/init/init.sh . ${TEMPLATE}/${LANGUAGE}/messages.txt # Must be executed as ./install.sh if [ `isFile ${VERSION_FILE}` = "${FALSE}" ]; then catError "0x1-location"; fi # Must be root if [ ! "X$ME" = "Xroot" ]; then catError "0x2-beroot"; fi # Checking dependencies checkDependencies clear # Initial message echo " $NAME $VERSION ${installscript} - http://www.ossec.net" catMsg "0x101-initial" echo " - $system: $UNAME" echo " - $user: $ME" echo " - $host: $HOST" echo "" echo "" echo " -- $hitanyorabort --" if [ "X$USER_NO_STOP" = "X" ]; then read ANY fi . ./src/init/update.sh # Is this an update? if [ "`isUpdate`" = "${TRUE}" ]; then echo "" ct="1" while [ $ct = "1" ]; do ct="0" $ECHO " - ${wanttoupdate} ($yes/$no): " if [ "X${USER_UPDATE}" = "X" ]; then read ANY else ANY=$yes fi case $ANY in $yes) update_only="yes" break; ;; $no) break; ;; *) ct="1" ;; esac done # Do some of the update steps. if [ "X${update_only}" = "Xyes" ]; then . ./src/init/update.sh if [ "`doUpdatecleanup`" = "${FALSE}" ]; then # Disabling update echo "" echo "${unabletoupdate}" sleep 5; update_only="" else # Get update USER_INSTALL_TYPE=`getPreinstalled` USER_DIR=`getPreinstalledDir` USER_DELETE_DIR="$nomatch" fi ct="1" # We dont need to update the rules on agent installs if [ "X${USER_INSTALL_TYPE}" = "Xagent" ]; then ct="0" fi while [ $ct = "1" ]; do ct="0" $ECHO " - ${updaterules} ($yes/$no): " if [ "X${USER_UPDATE_RULES}" = "X" ]; then read ANY else ANY=$yes fi case $ANY in $yes) update_rules="yes" break; ;; $no) break; ;; *) ct="1" ;; esac done fi echo "" fi serverm=`echo ${server} | cut -b 1` localm=`echo ${local} | cut -b 1` agentm=`echo ${agent} | cut -b 1` helpm=`echo ${help} | cut -b 1` # If user install type is not set, ask for it. if [ "X${USER_INSTALL_TYPE}" = "X" ]; then # Loop for the installation options while [ 1 ] do echo "" $ECHO "1- ${whattoinstall} " read ANSWER case $ANSWER in ${helpm}|${help}) catMsg "0x102-installhelp" ;; ${server}|${serverm}) echo "" echo " - ${serverchose}." INSTYPE="server" break; ;; ${agent}|${agentm}) echo "" echo " - ${clientchose}." INSTYPE="agent" break; ;; ${local}|${localm}) echo "" echo " - ${localchose}." INSTYPE="local" break; ;; esac done else INSTYPE=${USER_INSTALL_TYPE} fi # Setting up the environment setEnv # Configuring the system (based on the installation type) if [ "X${update_only}" = "X" ]; then if [ "X$INSTYPE" = "Xserver" ]; then ConfigureServer elif [ "X$INSTYPE" = "Xagent" ]; then ConfigureClient elif [ "X$INSTYPE" = "Xlocal" ]; then ConfigureServer else catError "0x4-installtype" fi fi # Installing (calls the respective script # -- InstallAgent.sh pr InstallServer.sh Install # User messages echo "" echo " - ${configurationdone}." echo "" echo " - ${tostart}:" echo " $WORKDIR/bin/ossec-control start" echo "" echo " - ${tostop}:" echo " $WORKDIR/bin/ossec-control stop" echo "" echo " - ${configat} $WORKDIR/etc/ossec.conf" echo "" catMsg "0x103-thanksforusing" if [ "X${update_only}" = "Xyes" ]; then # Message for the update if [ "X`sh ./src/init/fw-check.sh`" = "XPF" -a "X${ACTIVERESPONSE}" = "Xyes" ]; then if [ "X$USER_NO_STOP" = "X" ]; then read ANY fi AddPFTable fi echo "" echo " - ${updatecompleted}" echo "" exit 0; fi if [ "X$USER_NO_STOP" = "X" ]; then read ANY fi # PF firewall message if [ "X`sh ./src/init/fw-check.sh`" = "XPF" -a "X${ACTIVERESPONSE}" = "Xyes" ]; then AddPFTable fi if [ "X$INSTYPE" = "Xserver" ]; then echo "" echo " - ${addserveragent}" echo " ${runma}:" echo "" echo " $INSTALLDIR/bin/manage_agents" echo "" echo " ${moreinfo}" echo " http://www.ossec.net/en/manual.html#ma" echo "" elif [ "X$INSTYPE" = "Xagent" ]; then catMsg "0x104-client" echo " $WORKDIR/bin/manage_agents" echo "" echo " ${moreinfo}" echo " http://www.ossec.net/en/manual.html#ma" echo "" fi if [ "X$notmodified" = "Xyes" ]; then catMsg "0x105-noboot" echo " $WORKDIR/bin/ossec-control start" echo "" fi } ### Calling main function where everything happens main exit 0 ## EOF ##