Security Script Overboard?
I may be getting a little paranoid lately, but I was wondering if the following script might be going a little overboard. I have 2 linux machines & a windows ME machine on my network along with a smoothwall firewall. I just got a p3 633 machine & am thinking about setting it up as a hidden (hopefully) central log server & would like to know if maybe I'm checking a few too many things when I run a security check on my systems - the following is a script that I'm testing for a single machine running on redhat 9 (can't upgrade quite yet because of 2 in house programs so).
#!/bin/bash # Show startup time date # Start internet /sbin/ifup ppp0 # synchronize system time echo "Synching System Time" rdate -s XXXXXXXX # Update Antivir echo "Updating Antivirus" antivir --update # Update Rkhunter echo "Checking for rkhunter Updates" rkhunter --update # Stop Internet /sbin/ifdown ppp0 # Run Rkhunter echo "Running Rkhunter" rkhunter --cronjob # Run Tiger Security Check echo "Running Tiger" /usr/local/sbin/tiger # Run chkrootkit echo "Running chkrootkit" /opt/templates/chk*/./chkrootkit -q # Run Linux Security Auditing Tool echo "Running lsat" lsat --silent --exclude=/home/something/exclude # Check for viruses antivir / --allfiles -s -nolnk # Show time again echo "Showing Stop Time" date |
This reminds me of a recent post on cryptography. It basically boils down to what you use your computer for.
If you work for the FBI or a university CS department (notorious, of course, for clever students) then maybe not. If it's a computer in your kitchen used for downloading recipes, probably. ;) |
All times are GMT -5. The time now is 10:07 PM. |