skeyaudit.sh revision 1.1
1 1.1 deraadt #!/bin/sh 2 1.1 deraadt # $Id: skeyaudit.sh,v 1.1 1994/06/24 08:06:38 deraadt Exp $ 3 1.1 deraadt # This script will look thru the skeykeys file for 4 1.1 deraadt # people with sequence numbers less then LOWLIMIT=12 5 1.1 deraadt # and send them an e-mail reminder to use skeyinit soon 6 1.1 deraadt # 7 1.1 deraadt 8 1.1 deraadt AWK=/usr/bin/awk 9 1.1 deraadt GREP=/usr/bin/grep 10 1.1 deraadt ECHO=/bin/echo 11 1.1 deraadt KEYDB=/etc/skeykeys 12 1.1 deraadt LOWLIMIT=12 13 1.1 deraadt ADMIN=root 14 1.1 deraadt SUBJECT="Reminder: Run skeyinit" 15 1.1 deraadt HOST=`/bin/hostname` 16 1.1 deraadt 17 1.1 deraadt 18 1.1 deraadt if [ "$1" != "" ] 19 1.1 deraadt then 20 1.1 deraadt LOWLIMIT=$1 21 1.1 deraadt fi 22 1.1 deraadt 23 1.1 deraadt 24 1.1 deraadt # an skeykeys entry looks like 25 1.1 deraadt # jsw 0076 la13079 ba20a75528de9d3a 26 1.1 deraadt # the sequence number is the second entry 27 1.1 deraadt # 28 1.1 deraadt 29 1.1 deraadt for i in `$AWK '{print $1}' $KEYDB` 30 1.1 deraadt do 31 1.1 deraadt SEQ=`$GREP "^$i[ ]" $KEYDB | $AWK '{print $2}'` 32 1.1 deraadt if [ $SEQ -lt $LOWLIMIT ] 33 1.1 deraadt then 34 1.1 deraadt KEY=`$GREP "^$i[ ]" $KEYDB | $AWK '{print $3}'` 35 1.1 deraadt if [ $SEQ -lt 3 ] 36 1.1 deraadt then 37 1.1 deraadt SUBJECT="IMPORTANT action required" 38 1.1 deraadt fi 39 1.1 deraadt ( 40 1.1 deraadt $ECHO "You are nearing the end of your current S/Key sequence for account $i" 41 1.1 deraadt $ECHO "on system $HOST." 42 1.1 deraadt $ECHO "" 43 1.1 deraadt $ECHO "Your S/key sequence number is now $SEQ. When it reaches zero you" 44 1.1 deraadt $ECHO "will no longer be able to use S/Key to login into the system. " 45 1.1 deraadt $ECHO " " 46 1.1 deraadt $ECHO "Type \"skeyinit -s\" to reinitialize your sequence number." 47 1.1 deraadt $ECHO "" 48 1.1 deraadt ) | /usr/bin/Mail -s "$SUBJECT" $i $ADMIN 49 1.1 deraadt fi 50 1.1 deraadt done 51
Indexes created Mon Oct 20 15:10:11 GMT 2025