The util.sh
script can add a file to be monitored by ospatrol-logcollector
.
It can also add a full_command to check for changes to a website, or for changes to the name server of a domain.
A blogpost from Daniel Cid (for 3WoO) introduced this utility.
.. program:: util.sh
.. option:: addfile <filename> [<format>]
Add a file to be monitored by ``ospatrol-logtest``. A ``localfile`` will be added to the ospatrol.conf.
.. option:: addsite <domain>
Monitor a website for changes. A ``full_command`` will be added to the ``ospatrol.conf`` using lynx to dump the initial page.
A rule can be written to monitor this output for changes.
.. note::
Requires `lynx <http://lynx.isc.org/current/>`_.
.. warning::
This may not be useful on pages with dynamic content.
.. option:: adddns <domain>
Monitor the name server of a domain for changes. A ``full_command`` will be added to the ospatrol.conf using host
.. note::
Requites the ``host`` command.
Running the following command:
# /var/ospatrol/bin/util.sh adddns ospatrol.net
will add the folling to that system's ospatrol.conf
:
<ospatrol_config>
<localfile>
<log_format>full_command</log_format>
<command>host -W 5 -t NS ospatrol.net; host -W 5 -t A ospatrol.net | sort</command>
</localfile>
</ospatrol_config>