[packages/snort.git] / snort.init

#!/bin/sh
#
# snort		Start/Stop the snort IDS daemon.
#
# chkconfig:	2345 85 24
# description:	snort is a lightweight network intrusion detection tool that \
#		currently detects more than 1100 host and network \
#		vulnerabilities, portscans, backdoors, and more.
#

# Source function library.
. /etc/rc.d/init.d/functions
. /etc/sysconfig/network

# Get service config - may override defaults
[ -f /etc/sysconfig/snort ] && . /etc/sysconfig/snort

# Check that networking is up.
if is_yes "${NETWORKING}"; then
	if [ ! -f /var/lock/subsys/network -a "$1" != stop -a "$1" != status ]; then
		msg_network_down snort
		exit 1
	fi
else
	exit 0
fi

RETVAL=0
# See how we were called.
case "$1" in
  start)
	# Check if the service is already running?
	if [ ! -f /var/lock/subsys/snort ]; then
		msg_starting snort
		# we need full path here; see SnortUsersManual.pdf
		daemon 	/usr/sbin/snort \
			-u snort -g snort -d -D \
			-l /var/log/snort -c /etc/snort/snort.conf
		RETVAL=$?
		[ $RETVAL -eq 0 ] && touch /var/lock/subsys/snort
	else
		msg_already_running snort
	fi
	;;
  stop)
	if [ -f /var/lock/subsys/snort ]; then
		# Stop daemons.
		msg_stopping snort
		killproc snort
		rm -f /var/lock/subsys/snort
	else
		msg_not_running snort
	fi
	;;
  reload|force-reload)
	if [ -f /var/lock/subsys/snort ]; then
		msg_reloading snort
		killproc snort -HUP
		RETVAL=$?
	else
		msg_not_running snort >&2
		exit 7
	fi
	;;
  restart)
	$0 stop
	$0 start
	exit $?
	;;
  status)
	status snort
	exit $?
	;;
  *)
	msg_usage "$0 {start|stop|restart|reload|force-reload|status}"
	exit 3
esac

exit $RETVAL
Commit	Line	Data
4dee4001 AM	1	#!/bin/sh
4dee4001 AM	2	#
1396af1f	3	# snort Start/Stop the snort IDS daemon.
4dee4001	4	#
1396af1f	5	# chkconfig: 2345 85 24
0eb27715	6	# description: snort is a lightweight network intrusion detection tool that \
0eb27715	7	# currently detects more than 1100 host and network \
4dee4001 AM	8	# vulnerabilities, portscans, backdoors, and more.
	9	#
	10
	11	# Source function library.
	12	. /etc/rc.d/init.d/functions
06da3568	13	. /etc/sysconfig/network
4dee4001 AM	14
	15	# Get service config - may override defaults
	16	[ -f /etc/sysconfig/snort ] && . /etc/sysconfig/snort
	17
	18	# Check that networking is up.
	19	if is_yes "${NETWORKING}"; then
f3f7371d	20	if [ ! -f /var/lock/subsys/network -a "$1" != stop -a "$1" != status ]; then
1396af1f	21	msg_network_down snort
	22	exit 1
	23	fi
4dee4001	24	else
1396af1f	25	exit 0
4dee4001 AM	26	fi
4dee4001 AM	27
21789670	28	RETVAL=0
4dee4001 AM	29	# See how we were called.
	30	case "$1" in
	31	start)
1396af1f	32	# Check if the service is already running?
1396af1f	33	if [ ! -f /var/lock/subsys/snort ]; then
1396af1f	34	msg_starting snort
197e01fd	35	# we need full path here; see SnortUsersManual.pdf
1396af1f	36	daemon /usr/sbin/snort \
c649dd1c	37	-u snort -g snort -d -D \
197e01fd	38	-l /var/log/snort -c /etc/snort/snort.conf
1396af1f	39	RETVAL=$?
	40	[ $RETVAL -eq 0 ] && touch /var/lock/subsys/snort
	41	else
1396af1f	42	msg_already_running snort
1396af1f	43	fi
4dee4001 AM	44	;;
4dee4001 AM	45	stop)
1396af1f	46	if [ -f /var/lock/subsys/snort ]; then
86cb99cc	47	# Stop daemons.
1396af1f	48	msg_stopping snort
1396af1f	49	killproc snort
1396af1f	50	rm -f /var/lock/subsys/snort
21789670	51	else
	52	msg_not_running snort
	53	fi
86cb99cc	54	;;
	55	reload\|force-reload)
	56	if [ -f /var/lock/subsys/snort ]; then
	57	msg_reloading snort
	58	killproc snort -HUP
	59	RETVAL=$?
1396af1f	60	else
21789670	61	msg_not_running snort >&2
21789670	62	exit 7
1396af1f	63	fi
4dee4001 AM	64	;;
	65	restart)
	66	$0 stop
	67	$0 start
21789670	68	exit $?
4dee4001 AM	69	;;
	70	status)
	71	status snort
21789670	72	exit $?
4dee4001 AM	73	;;
4dee4001 AM	74	*)
86cb99cc	75	msg_usage "$0 {start\|stop\|restart\|reload\|force-reload\|status}"
21789670	76	exit 3
4dee4001 AM	77	esac
	78
	79	exit $RETVAL