dprevot/evocheck
1
0
Fork 0
forked from evolix/evocheck
Code Issues Pull requests Projects Releases Wiki Activity

IS_BINDCHROOT is relevant only if bind listen to public interface.

Browse source
This commit is contained in:
Romain Dessort 2016-05-12 12:23:58 -04:00
parent 89c58093f8
commit 4509f6d0e4
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
evocheck.sh
View file

@ -321,7 +321,7 @@ if [ -e /etc/debian_version ]; then
# Verification si bind est chroote
if [ "$IS_BINDCHROOT" = 1 ]; then
if is_installed bind9; then
if is_installed bind9 && $(netstat -utpln |grep "/named" |grep :53 |grep -qv 127.0.0.1); then
if grep -q '^OPTIONS=".*-t' /etc/default/bind9 && grep -q '^OPTIONS=".*-u' /etc/default/bind9; then
if [ "$(md5sum /usr/sbin/named |cut -f 1 -d ' ')" != "$(md5sum /var/chroot-bind/usr/sbin/named |cut -f 1 -d ' ')" ]; then
echo 'IS_BINDCHROOT FAILED!'