ban2fail/ban2fail.sh

#!/bin/bash -e
#
# JDR Wed 27 Nov 2019 01:30:29 PM EST
# The purpose of this script is to be run from a systemd service
# file, or sysvinit script.
#

BAN2FAIL=/usr/local/bin/ban2fail
BAN2FAIL_CFG=/etc/ban2fail/ban2fail.cfg
INOTIFYWAIT=/usr/bin/inotifywait

# Uncomment this if you wish to see output from the time command
#TIME=time

# Always do initial check
echo "Initial run for $BAN2FAIL"
$TIME $BAN2FAIL

while true; do
   echo "Starting main loop"
   LOG_NAMES=$($BAN2FAIL --print-lfn | tr $'\n' ' ')
   LOG_NAMES="$LOG_NAMES $BAN2FAIL_CFG"

   echo "Monitoring: $LOG_NAMES"

   while read; do
      # if a file gets renamed, logrotate is doing it's thing.
      [[ "$REPLY" =~ MOVE_SELF ]] && break
      [[ "$REPLY" == $BAN2FAIL_CFG\ MODIFY ]] && break

      [[ "$REPLY" =~ MODIFY ]] || continue

# Uncomment this to see the inotifywait output which triggered this cycle
#echo "REPLY= '$REPLY'"

      # Avoid running ban2fail multiple times if possible
      while read -t 0; do
         read
      done

      echo "Running $BAN2FAIL"
      # Check for offenses
      # If ban2fail failed, then pause to avoid DOS on CPU
      while ! $TIME $BAN2FAIL; do
         sleep 1
      done

   done < <(exec $INOTIFYWAIT -m $LOG_NAMES)

   echo ' Exiting main loop'

   sleep 1
done


exit 0
Implemented event driven behavior script and service file 2019-11-27 19:17:34 +00:00			`#!/bin/bash -e`
Added cron wrapper script 2019-11-23 15:50:13 +00:00			`#`
Implemented event driven behavior script and service file 2019-11-27 19:17:34 +00:00			`# JDR Wed 27 Nov 2019 01:30:29 PM EST`
			`# The purpose of this script is to be run from a systemd service`
			`# file, or sysvinit script.`
Added cron wrapper script 2019-11-23 15:50:13 +00:00			`#`

Updated to run every 5 seconds 2019-11-25 14:12:19 +00:00			`BAN2FAIL=/usr/local/bin/ban2fail`
Implemented event driven behavior script and service file 2019-11-27 19:17:34 +00:00			`BAN2FAIL_CFG=/etc/ban2fail/ban2fail.cfg`
Fixed never unblocking regression. 2019-11-27 22:31:15 +00:00			`INOTIFYWAIT=/usr/bin/inotifywait`
Added cron wrapper script 2019-11-23 15:50:13 +00:00
Implemented event driven behavior script and service file 2019-11-27 19:17:34 +00:00			`# Uncomment this if you wish to see output from the time command`
			`#TIME=time`
Added cron wrapper script 2019-11-23 15:50:13 +00:00
Implemented event driven behavior script and service file 2019-11-27 19:17:34 +00:00			`# Always do initial check`
			`echo "Initial run for $BAN2FAIL"`
			`$TIME $BAN2FAIL`
Added cron wrapper script 2019-11-23 15:50:13 +00:00
			`while true; do`
Implemented event driven behavior script and service file 2019-11-27 19:17:34 +00:00			`echo "Starting main loop"`
			`LOG_NAMES=$($BAN2FAIL --print-lfn \| tr $'\n' ' ')`
			`LOG_NAMES="$LOG_NAMES $BAN2FAIL_CFG"`
Added cron wrapper script 2019-11-23 15:50:13 +00:00
Implemented event driven behavior script and service file 2019-11-27 19:17:34 +00:00			`echo "Monitoring: $LOG_NAMES"`
Added cron wrapper script 2019-11-23 15:50:13 +00:00
Implemented event driven behavior script and service file 2019-11-27 19:17:34 +00:00			`while read; do`
			`# if a file gets renamed, logrotate is doing it's thing.`
			`[[ "$REPLY" =~ MOVE_SELF ]] && break`
			`[[ "$REPLY" == $BAN2FAIL_CFG\ MODIFY ]] && break`
Added cron wrapper script 2019-11-23 15:50:13 +00:00
Implemented event driven behavior script and service file 2019-11-27 19:17:34 +00:00			`[[ "$REPLY" =~ MODIFY ]] \|\| continue`
Added cron wrapper script 2019-11-23 15:50:13 +00:00
Implemented event driven behavior script and service file 2019-11-27 19:17:34 +00:00			`# Uncomment this to see the inotifywait output which triggered this cycle`
			`#echo "REPLY= '$REPLY'"`
Added cron wrapper script 2019-11-23 15:50:13 +00:00
Minor improvements to service script 2019-11-27 20:06:13 +00:00			`# Avoid running ban2fail multiple times if possible`
			`while read -t 0; do`
			`read`
			`done`

Implemented event driven behavior script and service file 2019-11-27 19:17:34 +00:00			`echo "Running $BAN2FAIL"`
			`# Check for offenses`
			`# If ban2fail failed, then pause to avoid DOS on CPU`
Improvements to scripts, add cron script for report 2019-11-28 01:25:03 +00:00			`while ! $TIME $BAN2FAIL; do`
			`sleep 1`
			`done`
Added cron wrapper script 2019-11-23 15:50:13 +00:00
Fixed never unblocking regression. 2019-11-27 22:31:15 +00:00			`done < <(exec $INOTIFYWAIT -m $LOG_NAMES)`
Added cron wrapper script 2019-11-23 15:50:13 +00:00
Implemented event driven behavior script and service file 2019-11-27 19:17:34 +00:00			`echo ' Exiting main loop'`
Added cron wrapper script 2019-11-23 15:50:13 +00:00
Implemented event driven behavior script and service file 2019-11-27 19:17:34 +00:00			`sleep 1`
Added cron wrapper script 2019-11-23 15:50:13 +00:00			`done`


			`exit 0`