]>
Commit | Line | Data |
---|---|---|
4dee4001 AM |
1 | #!/bin/sh |
2 | # | |
3 | # snort Start/Stop the snort IDS daemon. | |
4 | # | |
5 | # chkconfig: 2345 40 60 | |
6 | # description: snort is a lightweight network intrusion detection tool that | |
7 | # currently detects more than 1100 host and network | |
8 | # vulnerabilities, portscans, backdoors, and more. | |
9 | # | |
10 | ||
11 | # Source function library. | |
12 | . /etc/rc.d/init.d/functions | |
13 | ||
14 | # Get service config - may override defaults | |
15 | [ -f /etc/sysconfig/snort ] && . /etc/sysconfig/snort | |
16 | ||
17 | # Check that networking is up. | |
18 | if is_yes "${NETWORKING}"; then | |
19 | if [ ! -f /var/lock/subsys/network ]; then | |
20 | # nls "ERROR: Networking is down. %s can't be run." <service> | |
21 | msg_network_down snort | |
22 | exit 1 | |
23 | fi | |
24 | else | |
25 | exit 0 | |
26 | fi | |
27 | ||
28 | # See how we were called. | |
29 | case "$1" in | |
30 | start) | |
31 | # Check if the service is already running? | |
32 | if [ ! -f /var/lock/subsys/snort ]; then | |
33 | # show "Starting %s service." <service> | |
34 | msg_starting snort | |
35 | daemon \ | |
36 | snort -u snort -g snort -s -d -D \ | |
37 | -l /var/log/snort -c /etc/snort/rules.base | |
38 | RETVAL=$? | |
39 | [ $RETVAL -eq 0 ] && touch /var/lock/subsys/snort | |
40 | else | |
41 | # show "%s service is already running." <service> | |
42 | msg_already_running snort | |
43 | exit 1 | |
44 | fi | |
45 | ;; | |
46 | stop) | |
47 | # Stop daemons. | |
48 | # show "Stopping %s service" <service> | |
49 | if [ -f /var/lock/subsys/snort ]; then | |
50 | msg_stopping snort | |
51 | killproc snort | |
52 | RETVAL=$? | |
53 | rm -f /var/lock/subsys/snort | |
54 | else | |
55 | # show "%s service is not running." <service> | |
56 | msg_not_running snort | |
57 | exit 1 | |
58 | fi | |
59 | ;; | |
60 | restart) | |
61 | $0 stop | |
62 | $0 start | |
63 | ;; | |
64 | status) | |
65 | status snort | |
66 | ;; | |
67 | *) | |
68 | echo "Usage: $0 {start|stop|restart|status}" | |
69 | exit 1 | |
70 | esac | |
71 | ||
72 | exit $RETVAL |