-
Notifications
You must be signed in to change notification settings - Fork 0
/
lynis.sh
36 lines (27 loc) · 895 Bytes
/
lynis.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
#!/usr/bin/env bash
function install_lynis {
# Check if fail2ban is already installed.
if yum list --installed | grep lynis > /dev/null
then
log '[!!!] Lynis is already installed, not installing again.' 'r'
exit 1
fi
# Activate epel-release
log '[i] Activating epel-release' 'g'
yum install -y epel-release > /dev/null
# Intall fail2ban.
log '[i] Installing Lynis' 'g'
yum install -y lynis > /dev/null
# Add cronjob
log '[i] Adding cronjob for lynis.' 'g'
cp lynis.cron /etc/cron.weekly/lynis
log '[i] Setting permissions for the cronjob.' 'g'
chmod 700 /etc/cron.weekly/lynis
chown root:root /etc/cron.weekly/lynis
# Create log directory, if necessary.
if ! directory_check "${LYNIS_LOG}"
then
log "[i] Creating ${LYNIS_LOG} " 'g'
mkdir "${LYNIS_LOG}"
fi
}