Subject: bin/17887: Unwanted daily insecurity output.
To: None <email@example.com>
From: None <firstname.lastname@example.org>
Date: 08/09/2002 02:05:13
>Synopsis: Unnecessary daily insecurity output.
>Arrival-Date: Thu Aug 08 16:06:00 PDT 2002
>Release: NetBSD 1.6D
The one of rules of Unix philosophy is "if some program
works well, no any output from it needed". Every day I
start with reading following message about insecurity state
of each of my systems:
"Nothing to report on $DATE"
It sounds great, but I think it would be much greater if
that message just will not be sent :)
Such, if no any insecurity outputs, we not recieve any
messages. But if some problems occurs, the old good "daily
insecurity..." message will be sent to operator as well as
posting additional line inside simple daily output (for
It will be automatically genrated at every night.
Please use the following patch to basesrc/etc/daily, v 1.46:
--- etc/daily Fri Aug 9 01:30:00 2002
+++ etc/daily.new Fri Aug 9 01:31:10 2002
@@ -227,10 +227,12 @@
if checkyesno run_security; then
sh /etc/security 2>&1 > "$SECOUT"
- if [ ! -s "$SECOUT" ]; then
- echo "Nothing to report on $date" > "$SECOUT"
+ if [ -s "$SECOUT" ]; then
+ echo ""
+ echo "Insecurity report mailed separately."
+ mail -s "$host daily insecurity output for $date" \
+ $MAILTO < "$SECOUT"
- mail -s "$host daily insecurity output for $date" $MAILTO < "$SECOUT"
if checkyesno run_skeyaudit; then