Added gpg scripts to contrib

RichieB2B · RichieB2B · commit f52c72bd3660 · 2005-11-03T11:39:22.000Z
diff --git a/ChangeLog b/ChangeLog
@@ -2,7 +2,9 @@
 	* Remove russian translations; they are out of date and there is no static version of gettext available
 	* Do not stop parsing directory at unescaped .
 	* Fix "make dist" and "make check"
+	* Added gpg scripts to contrib
 	* Released version 0.11-rc2
+	* Changed version to post-0.11-rc2
 
 2005-10-30	Richard van den Berg  <richard@vdberg.org>
 	* Warn if 'I' and 'c' are used together
diff --git a/Todo b/Todo
@@ -11,5 +11,4 @@ Rewrite for smaller memory footprint.
 Localization
 Relative paths in databases
 Checksum of the binary at the start of the report
-PGP support
 @@ifdef foo || ( bar && baz )
diff --git a/configure.in b/configure.in
@@ -1,7 +1,7 @@
 
 dnl Initialize autoconf/automake
 AC_INIT(src/aide.c)
-AM_INIT_AUTOMAKE(aide, "0.11-rc2")
+AM_INIT_AUTOMAKE(aide, "post-0.11-rc2")
 
 dnl The name of the configure h-file.
 AM_CONFIG_HEADER(config.h)
diff --git a/contrib/gpg_check.sh b/contrib/gpg_check.sh
@@ -0,0 +1,36 @@
+#!/bin/bash
+
+# $Id$
+
+# aide check script
+# Written by: charlie heselton 
+# Email: echo "hfouvyAdpy/ofu" | perl -pe 's/(.)/chr(ord($1)-1)/ge'
+# 09/23/2005
+
+# Set up some variables
+DBDIR="/your/aide/db/directory"
+DBFILE="${DBDIR}/aide.db"
+ENC_DBFILE="${DBDIR}/aide.db.gpg"
+
+# make the assumption that the database exists and is encrypted
+# but test for it  ;-)
+[[ -f ${ENC_DBFILE} ]] && /usr/bin/gpg --batch -d ${ENC_DBFILE} > ${DBFILE}
+rm -f ${ENC_DBFILE}
+
+# (for now, we'll assume that encrypting the file includes an integrity check )
+# Run the check.
+/usr/bin/aide -C > /tmp/aide_check.out 2>&1
+
+# mail out the results
+/usr/bin/cat /tmp/aide_check.out | /usr/bin/mutt -s "AIDE Check for `date`" your_valid_email@somewhere.com
+
+# cleanup
+# if the mail was successful, delete the output file
+if [ $? -eq 0 ]
+then
+	rm -f /tmp/aide_check.out
+fi
+
+# re-encrypt the database and delete the unencrypted version
+/usr/bin/gpg --batch -se -r gentoo_root ${DBFILE} 
+rm -f ${DBFILE}
diff --git a/contrib/gpg_update.sh b/contrib/gpg_update.sh
@@ -0,0 +1,42 @@
+#!/bin/bash
+
+# $Id$
+
+# aide update script
+# Written by: charlie heselton
+# Email: echo "hfouvyAdpy/ofu" | perl -pe 's/(.)/chr(ord($1)-1)/ge'
+# 09/23/2005
+
+DBDIR="/etc/aide/db"
+DBFILE="${DBDIR}/aide.db"
+ENC_DBFILE="${DBDIR}/aide.db.gpg"
+
+# make the assumption that the database exists and is encrypted
+# but test for it  ;-)
+[[ -f ${ENC_DBFILE} ]] && /usr/bin/gpg --batch -d ${ENC_DBFILE} > ${DBFILE}
+rm -f ${ENC_DBFILE}
+
+# (for now, we'll assume that encrypting the file includes an integrity check )
+# Run the update.  
+/usr/bin/aide --update > /tmp/aide_update.out 2>&1
+
+# mail out the results
+# set the "Reply-to" address
+REPLYTO="root@charlesheselton.no-ip.org"
+export REPLYTO
+# send the mail
+/usr/bin/cat /tmp/aide_update.out | /usr/bin/mutt -s "AIDE Update for `date`" your_valid_email@somewhere.com
+
+# cleanup
+# if the mailing was successful then delete the output file
+if [ $? -eq 0 ]
+then
+	rm -f /tmp/aide_update.out
+fi
+
+# move the aide.db.new file to the aide.db
+mv ${DBDIR}/aide.db.new ${DBFILE}
+
+# encrypt the new db file and remove the unencrypted version
+/usr/bin/gpg --batch -se -r gentoo_root ${DBFILE}
+rm -f ${DBFILE}
