WHAT'S RFC?

RFC (Remote Filesystem Checker) is a set of scripts that aims to help System-Administrators run a filesystem-checker (like tripwire, aide and so on...) from a "master-node" to several "slave-nodes" using ssh, scp, sudo and few other common shell commands.


REQUIREMENTS:

• bash on any (?) POSIX system
• base utils (chown, chmod, adduser, sed, grep...)
• "mail" executable on master-node
• ssh/scp client & ssh-keygen on master-node
• ssh/scp server on slave-nodes
• sudo on slave-nodes

FEATURES

• crate/update FileSystem-Checker's (FSC) database
• execute FSC and create a log-report
• allow parallel execution, mass-check and mass-upgrade!
• support non-interactive operations
• use scp/ssh for all connections
• use an arbitrary port for ssh/scp connections (may be different for each host!)
• send (ONE) email to administrator(s)
• rotate logs, databases and other files
• support for AFICK, AIDE and INTEGRIT FileSystem-Checkers
• check users creation/removal
• check group creation/removal
• check if someone changes UID, GID or shell
• check for group's members or ID changes
• check for SUID/SGID on remote host via a separate PERL script
• check if remote-host is up before run checks on it
• kill the processes that take too long (you can set an arbitrary timeout value)

TO DO

• Add the possibility to send special warnings to SysLog
• Bugfix
• Suggestions are welcome! ;-)

Back to the home-page