aboutsummaryrefslogtreecommitdiff
path: root/system
diff options
context:
space:
mode:
authorDavid Spencer <baildon.research@googlemail.com>2016-11-09 17:05:56 +0000
committerDavid Spencer <idlemoor@slackbuilds.org>2016-11-11 20:36:22 +0000
commita175ac8983b7f5e33773ca43091b27322776aed8 (patch)
tree59dc6f6c9a9213b913f86e2f2cc078d98b3b06e5 /system
parentd50dc96bce019252df8d1ebb577a38507d264f45 (diff)
system/ossec-agent: Fix exit status, add uid/gid info.
Signed-off-by: David Spencer <baildon.research@googlemail.com> Signed-off-by: David Spencer <idlemoor@slackbuilds.org>
Diffstat (limited to 'system')
-rw-r--r--system/ossec-agent/README2
-rw-r--r--system/ossec-agent/README.SLACKWARE8
-rw-r--r--system/ossec-agent/ossec-agent.SlackBuild6
3 files changed, 13 insertions, 3 deletions
diff --git a/system/ossec-agent/README b/system/ossec-agent/README
index 955a80fcad5a..f9733320313b 100644
--- a/system/ossec-agent/README
+++ b/system/ossec-agent/README
@@ -1,3 +1,5 @@
OSSEC is an Open Source Host-based Intrusion Detection System that performs log
analysis, file integrity checking, policy monitoring, rootkit detection,
real-time alerting and active response.
+
+See README.SLACKWARE for installation instructions.
diff --git a/system/ossec-agent/README.SLACKWARE b/system/ossec-agent/README.SLACKWARE
index e07808bfc66d..14aba4be39bc 100644
--- a/system/ossec-agent/README.SLACKWARE
+++ b/system/ossec-agent/README.SLACKWARE
@@ -1,3 +1,11 @@
+These users and group need to be added:
+
+ groupadd -g 333 ossec
+ useradd -u 333 -g 333 -d /var/ossec -s /bin/false ossec
+ useradd -u 334 -g 333 -d /var/ossec -s /bin/false ossecm
+ useradd -u 335 -g 333 -d /var/ossec -s /bin/false ossecr
+
+
You may wish to add these lines to /etc/rc.d/rc.local to start the service:
if [ -x /etc/rc.d/rc.ossec ]; then
diff --git a/system/ossec-agent/ossec-agent.SlackBuild b/system/ossec-agent/ossec-agent.SlackBuild
index 8522b3143f41..988fb3ee2d63 100644
--- a/system/ossec-agent/ossec-agent.SlackBuild
+++ b/system/ossec-agent/ossec-agent.SlackBuild
@@ -62,7 +62,7 @@ USERID_REMOTE=${USERID_REMOTE:-335}
GROUPID=${GROUPID:-333}
if ! grep ^ossec: /etc/group 2>&1 > /dev/null \
-|| ! grep -E '^(ossec|ossecm|ossecr):' /etc/passwd 2>&1 > /dev/null; then
+ || ! grep -E '^(ossec|ossecm|ossecr):' /etc/passwd 2>&1 > /dev/null; then
echo -e "\n You must have ossec users and a group to run this script\n"
fi
@@ -86,9 +86,9 @@ if ! grep ^ossecr: /etc/passwd 2>&1 > /dev/null; then
fi
if ! grep ^ossec: /etc/group 2>&1 > /dev/null \
-|| ! grep -E '^(ossec|ossecm|ossecr):' /etc/passwd 2>&1 > /dev/null; then
+ || ! grep -E '^(ossec|ossecm|ossecr):' /etc/passwd 2>&1 > /dev/null; then
echo
- exit
+ exit 1
fi
set -e