Rename check_clamav_signatures to dsa-check-clamav-signatures to avoid possible namin...

diff --git a/config/nagios-master.cfg b/config/nagios-master.cfg
index 0dfd208..d574490 100644 (file)
--- a/config/nagios-master.cfg
+++ b/config/nagios-master.cfg
@@ -2194,7 +2194,7 @@ services:
     excludehostgroups: heavy-exim, heavy-postfix
   -
     name: signature freshness - clamav
-    nrpe: "/usr/lib/nagios/plugins/check_clamav_signatures"
+    nrpe: "/usr/lib/nagios/plugins/dsa-check-clamav-signatures"
     hostgroups: heavy-exim, heavy-postfix
   # }}}
   # {{{ anti-spam

diff --git a/dsa-nagios-checks/checks/check_clamav_signatures b/dsa-nagios-checks/checks/check_clamav_signatures
deleted file mode 100755 (executable)
index 56c39d2..0000000
--- a/dsa-nagios-checks/checks/check_clamav_signatures
+++ /dev/null
@@ -1,181 +0,0 @@
-#!/usr/bin/env bash
-
-#
-# check_clamav_signatures - Nagios plugin to monitor ClamAV signatures are up to date.
-#
-# Released under the MIT License.
-#
-# https://github.com/tommarshall/nagios-check-clamav-signatures
-#
-
-VERSION=0.1.0
-OK=0
-WARNING=1
-CRITICAL=2
-UNKNOWN=3
-CLAM_LIB_DIR=/var/lib/clamav
-NUMERICAL_REGEX='^[0-9]+$'
-WARN_THRESHOLD=1
-CRIT_THRESHOLD=2
-
-#
-# Output version.
-#
-
-version() {
-  echo "check_clamav_signatures $VERSION"
-}
-
-#
-# Output usage information.
-#
-
-usage() {
-  echo 'Usage: ./check_clamav_signatures [options]'
-}
-
-#
-# Output help information.
-#
-
-help() {
-  usage
-  cat <<-EOF
-
-  Examples:
-    ./check_clamav_signatures
-
-  Options:
-    -p, --path <path>           path to ClamAV lib directory, if not $CLAM_LIB_DIR
-    -w, --warning <number>      number of revisions sigs can be out of date (warning)
-    -c, --critical <number>     number of revisions sigs can be out of date (critical)
-    -V, --version               output version
-    -h, --help                  output help information
-
-  For more information, see https://github.com/tommarshall/nagios-check-clamav-signatures
-
-EOF
-}
-
-#
-# Parse argv.
-#
-
-while test $# -ne 0; do
-  ARG=$1; shift
-  case $ARG in
-    -p|--path) CLAM_LIB_DIR=$1; shift ;;
-    -V|--version) version; exit ;;
-    -h|--help) help; exit ;;
-    -w|--warning) WARN_THRESHOLD=$1; shift ;;
-    -c|--critical) CRIT_THRESHOLD=$1; shift ;;
-    *)
-      echo "UNKNOWN: Unrecognised argument: $ARG"
-      usage >&2
-      exit $UNKNOWN
-      ;;
-  esac
-done
-
-if ! [[ $WARN_THRESHOLD =~ $NUMERICAL_REGEX ]]; then
-  echo "UNKNOWN: Warning threshold must be numeric!"
-  exit $UNKNOWN
-fi
-if ! [[ $CRIT_THRESHOLD =~ $NUMERICAL_REGEX ]]; then
-  echo "UNKNOWN: Critical threshold must be numeric!"
-  exit $UNKNOWN
-fi
-
-#
-# Showtime.
-#
-
-# ensure we have executable dependencies
-for dependency in cut host grep sigtool sed; do
-  if ! hash $dependency >/dev/null 2>&1; then
-    echo "UNKNOWN: Missing dependency: ${dependency}"
-    exit $UNKNOWN
-  fi
-done
-
-# ensure the clam lib dir exists
-if [ ! -d "$CLAM_LIB_DIR" ]; then
-  echo "UNKNOWN: Unable to locate ClamAV lib directory"
-  exit $UNKNOWN
-fi
-
-# ensure we have a daily signatures file
-if [ -e ${CLAM_LIB_DIR}/daily.cld ]; then
-  DAILY_SIGNATURES_PATH="${CLAM_LIB_DIR}/daily.cld"
-elif [ -e ${CLAM_LIB_DIR}/daily.cvd ]; then
-  DAILY_SIGNATURES_PATH="${CLAM_LIB_DIR}/daily.cvd"
-else
-  echo "UNKNOWN: Unable to locate installed daily signatures"
-  exit $UNKNOWN
-fi
-
-# ensure we have a main signatures file
-if [ -e ${CLAM_LIB_DIR}/main.cvd ]; then
-  MAIN_SIGNATURES_PATH="${CLAM_LIB_DIR}/main.cvd"
-elif [ -e ${CLAM_LIB_DIR}/main.cld ]; then
-  MAIN_SIGNATURES_PATH="${CLAM_LIB_DIR}/main.cld"
-else
-  echo "UNKNOWN: Unable to locate installed main signatures"
-  exit $UNKNOWN
-fi
-
-# extract the daily signatures version
-INSTALLED_DAILY_VERSION=$(sigtool -i ${DAILY_SIGNATURES_PATH} 2>/dev/null | grep Version | sed -e 's/Version: //')
-if ! [[ $INSTALLED_DAILY_VERSION =~ $NUMERICAL_REGEX ]]; then
-  echo "UNKNOWN: Unable to establish installed daily signatures version"
-  exit $UNKNOWN
-fi
-
-# extract the main signatures version
-INSTALLED_MAIN_VERSION=$(sigtool -i ${MAIN_SIGNATURES_PATH} 2>/dev/null | grep Version | sed -e 's/Version: //')
-if ! [[ $INSTALLED_MAIN_VERSION =~ $NUMERICAL_REGEX ]]; then
-  echo "UNKNOWN: Unable to establish installed main signatures version"
-  exit $UNKNOWN
-fi
-
-# query the DNS record
-DNS_TXT_RECORD=$(host -t txt current.cvd.clamav.net)
-if [ $? -ne 0 ]; then
-  echo "UNKNOWN: DNS query to current.cvd.clamav.net failed"
-  exit $UNKNOWN
-fi
-
-# extract the current daily signatures version from the DNS TXT record
-CURRENT_DAILY_VERSION=$(echo $DNS_TXT_RECORD | cut -d : -f 3)
-if ! [[ $CURRENT_DAILY_VERSION =~ $NUMERICAL_REGEX ]]; then
-  echo "UNKNOWN: Unable to establish current daily signatures version from DNS query"
-  exit $UNKNOWN
-fi
-
-# extract the current main signatures version from the DNS TXT record
-CURRENT_MAIN_VERSION=$(echo $DNS_TXT_RECORD | cut -d : -f 2)
-if ! [[ $CURRENT_MAIN_VERSION =~ $NUMERICAL_REGEX ]]; then
-  echo "UNKNOWN: Unable to establish current main signatures version from DNS query"
-  exit $UNKNOWN
-fi
-
-# determine the difference between the current and installed versions
-DAILY_VERSION_DELTA=$((CURRENT_DAILY_VERSION-INSTALLED_DAILY_VERSION))
-MAIN_VERSION_DELTA=$((CURRENT_MAIN_VERSION-INSTALLED_MAIN_VERSION))
-
-if [ $DAILY_VERSION_DELTA -gt $CRIT_THRESHOLD -o $MAIN_VERSION_DELTA -gt $CRIT_THRESHOLD ]; then
-  echo "CRITICAL: Signatures expired;" \
-    "daily version: ${INSTALLED_DAILY_VERSION} (${DAILY_VERSION_DELTA} behind)," \
-    "main version: ${INSTALLED_MAIN_VERSION} (${MAIN_VERSION_DELTA} behind)"
-  exit $CRITICAL
-elif [ $DAILY_VERSION_DELTA -gt $WARN_THRESHOLD -o $MAIN_VERSION_DELTA -gt $WARN_THRESHOLD ]; then
-  echo "WARNING: Signatures expired;" \
-    "daily version: ${INSTALLED_DAILY_VERSION} (${DAILY_VERSION_DELTA} behind)," \
-    "main version: ${INSTALLED_MAIN_VERSION} (${MAIN_VERSION_DELTA} behind)"
-  exit $WARNING
-fi
-
-echo "OK: Signatures up to date;"\
-  "daily version: ${INSTALLED_DAILY_VERSION}," \
-  "main version: ${INSTALLED_MAIN_VERSION}"
-exit $OK

diff --git a/dsa-nagios-checks/checks/dsa-check-clamav-signatures b/dsa-nagios-checks/checks/dsa-check-clamav-signatures
new file mode 100755 (executable)
index 0000000..56c39d2
--- /dev/null
+++ b/dsa-nagios-checks/checks/dsa-check-clamav-signatures
@@ -0,0 +1,181 @@
+#!/usr/bin/env bash
+
+#
+# check_clamav_signatures - Nagios plugin to monitor ClamAV signatures are up to date.
+#
+# Released under the MIT License.
+#
+# https://github.com/tommarshall/nagios-check-clamav-signatures
+#
+
+VERSION=0.1.0
+OK=0
+WARNING=1
+CRITICAL=2
+UNKNOWN=3
+CLAM_LIB_DIR=/var/lib/clamav
+NUMERICAL_REGEX='^[0-9]+$'
+WARN_THRESHOLD=1
+CRIT_THRESHOLD=2
+
+#
+# Output version.
+#
+
+version() {
+  echo "check_clamav_signatures $VERSION"
+}
+
+#
+# Output usage information.
+#
+
+usage() {
+  echo 'Usage: ./check_clamav_signatures [options]'
+}
+
+#
+# Output help information.
+#
+
+help() {
+  usage
+  cat <<-EOF
+
+  Examples:
+    ./check_clamav_signatures
+
+  Options:
+    -p, --path <path>           path to ClamAV lib directory, if not $CLAM_LIB_DIR
+    -w, --warning <number>      number of revisions sigs can be out of date (warning)
+    -c, --critical <number>     number of revisions sigs can be out of date (critical)
+    -V, --version               output version
+    -h, --help                  output help information
+
+  For more information, see https://github.com/tommarshall/nagios-check-clamav-signatures
+
+EOF
+}
+
+#
+# Parse argv.
+#
+
+while test $# -ne 0; do
+  ARG=$1; shift
+  case $ARG in
+    -p|--path) CLAM_LIB_DIR=$1; shift ;;
+    -V|--version) version; exit ;;
+    -h|--help) help; exit ;;
+    -w|--warning) WARN_THRESHOLD=$1; shift ;;
+    -c|--critical) CRIT_THRESHOLD=$1; shift ;;
+    *)
+      echo "UNKNOWN: Unrecognised argument: $ARG"
+      usage >&2
+      exit $UNKNOWN
+      ;;
+  esac
+done
+
+if ! [[ $WARN_THRESHOLD =~ $NUMERICAL_REGEX ]]; then
+  echo "UNKNOWN: Warning threshold must be numeric!"
+  exit $UNKNOWN
+fi
+if ! [[ $CRIT_THRESHOLD =~ $NUMERICAL_REGEX ]]; then
+  echo "UNKNOWN: Critical threshold must be numeric!"
+  exit $UNKNOWN
+fi
+
+#
+# Showtime.
+#
+
+# ensure we have executable dependencies
+for dependency in cut host grep sigtool sed; do
+  if ! hash $dependency >/dev/null 2>&1; then
+    echo "UNKNOWN: Missing dependency: ${dependency}"
+    exit $UNKNOWN
+  fi
+done
+
+# ensure the clam lib dir exists
+if [ ! -d "$CLAM_LIB_DIR" ]; then
+  echo "UNKNOWN: Unable to locate ClamAV lib directory"
+  exit $UNKNOWN
+fi
+
+# ensure we have a daily signatures file
+if [ -e ${CLAM_LIB_DIR}/daily.cld ]; then
+  DAILY_SIGNATURES_PATH="${CLAM_LIB_DIR}/daily.cld"
+elif [ -e ${CLAM_LIB_DIR}/daily.cvd ]; then
+  DAILY_SIGNATURES_PATH="${CLAM_LIB_DIR}/daily.cvd"
+else
+  echo "UNKNOWN: Unable to locate installed daily signatures"
+  exit $UNKNOWN
+fi
+
+# ensure we have a main signatures file
+if [ -e ${CLAM_LIB_DIR}/main.cvd ]; then
+  MAIN_SIGNATURES_PATH="${CLAM_LIB_DIR}/main.cvd"
+elif [ -e ${CLAM_LIB_DIR}/main.cld ]; then
+  MAIN_SIGNATURES_PATH="${CLAM_LIB_DIR}/main.cld"
+else
+  echo "UNKNOWN: Unable to locate installed main signatures"
+  exit $UNKNOWN
+fi
+
+# extract the daily signatures version
+INSTALLED_DAILY_VERSION=$(sigtool -i ${DAILY_SIGNATURES_PATH} 2>/dev/null | grep Version | sed -e 's/Version: //')
+if ! [[ $INSTALLED_DAILY_VERSION =~ $NUMERICAL_REGEX ]]; then
+  echo "UNKNOWN: Unable to establish installed daily signatures version"
+  exit $UNKNOWN
+fi
+
+# extract the main signatures version
+INSTALLED_MAIN_VERSION=$(sigtool -i ${MAIN_SIGNATURES_PATH} 2>/dev/null | grep Version | sed -e 's/Version: //')
+if ! [[ $INSTALLED_MAIN_VERSION =~ $NUMERICAL_REGEX ]]; then
+  echo "UNKNOWN: Unable to establish installed main signatures version"
+  exit $UNKNOWN
+fi
+
+# query the DNS record
+DNS_TXT_RECORD=$(host -t txt current.cvd.clamav.net)
+if [ $? -ne 0 ]; then
+  echo "UNKNOWN: DNS query to current.cvd.clamav.net failed"
+  exit $UNKNOWN
+fi
+
+# extract the current daily signatures version from the DNS TXT record
+CURRENT_DAILY_VERSION=$(echo $DNS_TXT_RECORD | cut -d : -f 3)
+if ! [[ $CURRENT_DAILY_VERSION =~ $NUMERICAL_REGEX ]]; then
+  echo "UNKNOWN: Unable to establish current daily signatures version from DNS query"
+  exit $UNKNOWN
+fi
+
+# extract the current main signatures version from the DNS TXT record
+CURRENT_MAIN_VERSION=$(echo $DNS_TXT_RECORD | cut -d : -f 2)
+if ! [[ $CURRENT_MAIN_VERSION =~ $NUMERICAL_REGEX ]]; then
+  echo "UNKNOWN: Unable to establish current main signatures version from DNS query"
+  exit $UNKNOWN
+fi
+
+# determine the difference between the current and installed versions
+DAILY_VERSION_DELTA=$((CURRENT_DAILY_VERSION-INSTALLED_DAILY_VERSION))
+MAIN_VERSION_DELTA=$((CURRENT_MAIN_VERSION-INSTALLED_MAIN_VERSION))
+
+if [ $DAILY_VERSION_DELTA -gt $CRIT_THRESHOLD -o $MAIN_VERSION_DELTA -gt $CRIT_THRESHOLD ]; then
+  echo "CRITICAL: Signatures expired;" \
+    "daily version: ${INSTALLED_DAILY_VERSION} (${DAILY_VERSION_DELTA} behind)," \
+    "main version: ${INSTALLED_MAIN_VERSION} (${MAIN_VERSION_DELTA} behind)"
+  exit $CRITICAL
+elif [ $DAILY_VERSION_DELTA -gt $WARN_THRESHOLD -o $MAIN_VERSION_DELTA -gt $WARN_THRESHOLD ]; then
+  echo "WARNING: Signatures expired;" \
+    "daily version: ${INSTALLED_DAILY_VERSION} (${DAILY_VERSION_DELTA} behind)," \
+    "main version: ${INSTALLED_MAIN_VERSION} (${MAIN_VERSION_DELTA} behind)"
+  exit $WARNING
+fi
+
+echo "OK: Signatures up to date;"\
+  "daily version: ${INSTALLED_DAILY_VERSION}," \
+  "main version: ${INSTALLED_MAIN_VERSION}"
+exit $OK