HEX
Server: Apache/2.4.52 (Ubuntu)
System: Linux mail.btech-izolacje.pl 5.15.0-140-generic #150-Ubuntu SMP Sat Apr 12 06:00:09 UTC 2025 x86_64
User: pewna6876 (1017)
PHP: 8.2.28
Disabled: NONE
$ pwd: /var/lib/dpkg/info/
Upload Files
File: //var/lib/dpkg/info/imunify360-ossec-server.postinst
#!/bin/sh
# postinst script for ossec-hids-server

set -e

sslkey=/var/ossec/etc/sslmanager.key
sslcert=/var/ossec/etc/sslmanager.cert

case "$1" in
    configure)
        /bin/systemctl daemon-reload >/dev/null 2>&1 || :

        sed -i -e 's/analysisd.stats_maxdiff=.*/analysisd.stats_maxdiff=25000/' /var/ossec/etc/internal_options.conf

        echo "TYPE=\"server\"" >> /etc/ossec-init.conf

        ln -sf ossec-server.sh /var/ossec/bin/ossec-control

        chmod 600 /etc/ossec-init.conf
        chmod 640 /var/ossec/etc/shared/agent.conf
        chmod 750 /var/ossec/logs/archives/
        chmod 770 /var/ossec/logs/alerts/
        chmod 750 /var/ossec/logs/firewall/
        chmod 755 /var/ossec/queue/agent-info/
        chmod 755 /var/ossec/queue/agentless/
        chmod 770 /var/ossec/queue/alerts/
        chmod 750 /var/ossec/queue/fts/
        chmod 755 /var/ossec/queue/rids/
        chmod 750 /var/ossec/queue/rootcheck/
        chmod 750 /var/ossec/queue/syscheck/
        chmod 550 /var/ossec/rules/
        chmod 750 /var/ossec/stats/
        chmod 550 /var/ossec/agentless/

        chown root:root /etc/ossec-init.conf
        chown ossec:ossec /var/ossec/etc/shared/agent.conf
        chown ossec:ossec /var/ossec/logs/archives
        chown ossec:ossec /var/ossec/logs/alerts
        chown ossec:ossec /var/ossec/logs/firewall
        chown ossecr:ossec /var/ossec/queue/agent-info
        chown ossec:ossec /var/ossec/queue/agentless
        chown ossec:ossec /var/ossec/queue/alerts
        chown ossec:ossec /var/ossec/queue/fts
        chown ossecr:ossec /var/ossec/queue/rids
        chown ossec:ossec /var/ossec/queue/rootcheck
        chown ossec:ossec /var/ossec/queue/syscheck
        chown root:ossec /var/ossec/rules
        chown ossec:ossec /var/ossec/stats
        chown root:ossec /var/ossec/agentless

        touch /var/ossec/logs/ossec.log
        chown ossec:ossec /var/ossec/logs/ossec.log

        touch /var/ossec/logs/active-responses.log
        chown ossec:ossec /var/ossec/logs/active-responses.log

        if [ ! -f ${sslkey} ] ; then
            /usr/bin/openssl genrsa -rand /proc/apm:/proc/cpuinfo:/proc/dma:/proc/filesystems:/proc/interrupts:/proc/ioports:/proc/pci:/proc/rtc:/proc/uptime 2048 > ${sslkey} 2> /dev/null || :
        fi

        if [ ! -f ${sslcert} ] ; then
        cat << EOF | /usr/bin/openssl req -new -key ${sslkey} \
                 -x509 -days 1095 -set_serial $RANDOM \
                 -out ${sslcert} 2>/dev/null || :
--
AtomicState
AtomicCity
Atomicorp
AtomicOrganizationalUnit
${FQDN}
root@${FQDN}
EOF
        fi

        /var/ossec/bin/manage_agents -f /var/ossec/etc/agents >/dev/null 2>&1 || :

        /bin/systemctl enable ossec-hids.service >/dev/null
        /bin/systemctl start ossec-hids.service >/dev/null
    ;;

    abort-upgrade|abort-remove|abort-deconfigure)
    ;;

    *)
        echo "postinst called with unknown argument \`$1'" >22
        exit 1
    ;;

esac

exit 0
@ Telegram