salt/monitoring-scripts
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Fix a myriad of issues with that last script

Browse Source
This commit is contained in:
Salt 2022-04-27 17:39:20 -05:00
parent 815044fca0
commit edf1588c27
1 changed files with 12 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
check_executables_in_tmp
View File

@ -1,4 +1,4 @@
#! /bin/sh #! /bin/bash
# #
# check_executables_in_tmpdir # check_executables_in_tmpdir
# Check a directory for executables and become angry if we find them # Check a directory for executables and become angry if we find them
@ -12,15 +12,24 @@ set -e
tmpdir="/tmp" tmpdir="/tmp"
#
# Compile a list of executables found in /tmp # Compile a list of executables found in /tmp
#
# Note that we deliberately use the -perm flag instead of the -executable flag
#
# This is by design, as -executable will fail on systems with noexec on the
# filesystem we're checking. This runs counter to our goal here, which is just
# to see if some skid has dumped a cryptominer on the machine.
#
executables="" executables=""
find "$tmpdir" -type f -executable 2>/dev/null | while read line; do while read line; do
if [ -z "$executables" ]; then if [ -z "$executables" ]; then
executables="$line" executables="$line"
else else
executables="$executables, $line" executables="$executables, $line"
fi fi
done done < <(find "$tmpdir" -type f -perm /u=x,g=x,o=x 2>/dev/null || true )
# If we found any, become angry # If we found any, become angry
if [ -n "$executables" ]; then if [ -n "$executables" ]; then