a

2026-05-11 09:15:08 +02:00
parent 9bec2b9e42
commit 404ee3fec4
641 changed files with 416825 additions and 0 deletions
@@ -0,0 +1,20 @@
+#!/usr/bin/env bash
+
+perm_mask="0022"
+maxperm="$(printf '%o' $((0777 & ~$perm_mask)))"
+audit_tools=("/sbin/auditctl" "/sbin/aureport" "/sbin/ausearch" "/sbin/autrace" "/sbin/auditd" "/sbin/augenrules")
+
+for a_tool in "${audit_tools[@]}"; do
+	if [ -e "$a_tool" ]; then
+		mode="$(stat -c '%#a' "$a_tool")"
+		if ((mode & perm_mask)); then
+			echo "Error: $a_tool has permissions that are too permissive."
+			exit 1
+		fi
+	else
+		echo "Warning: $a_tool does not exist."
+	fi
+done
+
+unset audit_tools
+exit 0