#!/bin/sh
#written and tested on openbsd 4.4
#pf.master contains the last known good sha1 of pf.conf
MASTER=`cat ./pf.master`
DGST=`ssh fwmon@192.168.43.132 'sudo sha1 /etc/pf.conf | cut -d" " -f 4'`
#echo $DGST
#echo $MASTER
if [[ "${MASTER}X" == "${DGST}X" ]] ; then
#notify that unscheduled config has changed
#insert incident details into security db
echo "fw Config Secure"
else
#insert incident details into security db
echo "fw Config Breached"
fi
No comments:
Post a Comment